Documentation ¶
Overview ¶
Package accessanalyzer provides the client and types for making API requests to Access Analyzer.
Identity and Access Management Access Analyzer helps you to set, verify, and refine your IAM policies by providing a suite of capabilities. Its features include findings for external and unused access, basic and custom policy checks for validating policies, and policy generation to generate fine-grained policies. To start using IAM Access Analyzer to identify external or unused access, you first need to create an analyzer.
External access analyzers help identify potential risks of accessing resources by enabling you to identify any resource policies that grant access to an external principal. It does this by using logic-based reasoning to analyze resource-based policies in your Amazon Web Services environment. An external principal can be another Amazon Web Services account, a root user, an IAM user or role, a federated user, an Amazon Web Services service, or an anonymous user. You can also use IAM Access Analyzer to preview public and cross-account access to your resources before deploying permissions changes.
Unused access analyzers help identify potential identity access risks by enabling you to identify unused IAM roles, unused access keys, unused console passwords, and IAM principals with unused service and action-level permissions.
Beyond findings, IAM Access Analyzer provides basic and custom policy checks to validate IAM policies before deploying permissions changes. You can use policy generation to refine permissions by attaching a policy generated using access activity logged in CloudTrail logs.
This guide describes the IAM Access Analyzer operations that you can call programmatically. For general information about IAM Access Analyzer, see Identity and Access Management Access Analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html) in the IAM User Guide.
See https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01 for more information on this service.
See accessanalyzer package documentation for more information. https://docs.aws.amazon.com/sdk-for-go/api/service/accessanalyzer/
Using the Client ¶
To contact Access Analyzer with the SDK use the New function to create a new service client. With that client you can make API requests to the service. These clients are safe to use concurrently.
See the SDK's documentation for more information on how to use the SDK. https://docs.aws.amazon.com/sdk-for-go/api/
See aws.Config documentation for more information on configuring SDK clients. https://docs.aws.amazon.com/sdk-for-go/api/aws/#Config
See the Access Analyzer client AccessAnalyzer for more information on creating client for this service. https://docs.aws.amazon.com/sdk-for-go/api/service/accessanalyzer/#New
Index ¶
- Constants
- func AccessCheckPolicyType_Values() []string
- func AccessCheckResourceType_Values() []string
- func AccessPreviewStatusReasonCode_Values() []string
- func AccessPreviewStatus_Values() []string
- func AclPermission_Values() []string
- func AnalyzerStatus_Values() []string
- func CheckAccessNotGrantedResult_Values() []string
- func CheckNoNewAccessResult_Values() []string
- func CheckNoPublicAccessResult_Values() []string
- func FindingChangeType_Values() []string
- func FindingSourceType_Values() []string
- func FindingStatusUpdate_Values() []string
- func FindingStatus_Values() []string
- func FindingType_Values() []string
- func JobErrorCode_Values() []string
- func JobStatus_Values() []string
- func KmsGrantOperation_Values() []string
- func Locale_Values() []string
- func OrderBy_Values() []string
- func PolicyType_Values() []string
- func ReasonCode_Values() []string
- func RecommendationType_Values() []string
- func RecommendedRemediationAction_Values() []string
- func ResourceType_Values() []string
- func Status_Values() []string
- func Type_Values() []string
- func ValidatePolicyFindingType_Values() []string
- func ValidatePolicyResourceType_Values() []string
- func ValidationExceptionReason_Values() []string
- type Access
- type AccessAnalyzer
- func (c *AccessAnalyzer) ApplyArchiveRule(input *ApplyArchiveRuleInput) (*ApplyArchiveRuleOutput, error)
- func (c *AccessAnalyzer) ApplyArchiveRuleRequest(input *ApplyArchiveRuleInput) (req *request.Request, output *ApplyArchiveRuleOutput)
- func (c *AccessAnalyzer) ApplyArchiveRuleWithContext(ctx aws.Context, input *ApplyArchiveRuleInput, opts ...request.Option) (*ApplyArchiveRuleOutput, error)
- func (c *AccessAnalyzer) CancelPolicyGeneration(input *CancelPolicyGenerationInput) (*CancelPolicyGenerationOutput, error)
- func (c *AccessAnalyzer) CancelPolicyGenerationRequest(input *CancelPolicyGenerationInput) (req *request.Request, output *CancelPolicyGenerationOutput)
- func (c *AccessAnalyzer) CancelPolicyGenerationWithContext(ctx aws.Context, input *CancelPolicyGenerationInput, opts ...request.Option) (*CancelPolicyGenerationOutput, error)
- func (c *AccessAnalyzer) CheckAccessNotGranted(input *CheckAccessNotGrantedInput) (*CheckAccessNotGrantedOutput, error)
- func (c *AccessAnalyzer) CheckAccessNotGrantedRequest(input *CheckAccessNotGrantedInput) (req *request.Request, output *CheckAccessNotGrantedOutput)
- func (c *AccessAnalyzer) CheckAccessNotGrantedWithContext(ctx aws.Context, input *CheckAccessNotGrantedInput, opts ...request.Option) (*CheckAccessNotGrantedOutput, error)
- func (c *AccessAnalyzer) CheckNoNewAccess(input *CheckNoNewAccessInput) (*CheckNoNewAccessOutput, error)
- func (c *AccessAnalyzer) CheckNoNewAccessRequest(input *CheckNoNewAccessInput) (req *request.Request, output *CheckNoNewAccessOutput)
- func (c *AccessAnalyzer) CheckNoNewAccessWithContext(ctx aws.Context, input *CheckNoNewAccessInput, opts ...request.Option) (*CheckNoNewAccessOutput, error)
- func (c *AccessAnalyzer) CheckNoPublicAccess(input *CheckNoPublicAccessInput) (*CheckNoPublicAccessOutput, error)
- func (c *AccessAnalyzer) CheckNoPublicAccessRequest(input *CheckNoPublicAccessInput) (req *request.Request, output *CheckNoPublicAccessOutput)
- func (c *AccessAnalyzer) CheckNoPublicAccessWithContext(ctx aws.Context, input *CheckNoPublicAccessInput, opts ...request.Option) (*CheckNoPublicAccessOutput, error)
- func (c *AccessAnalyzer) CreateAccessPreview(input *CreateAccessPreviewInput) (*CreateAccessPreviewOutput, error)
- func (c *AccessAnalyzer) CreateAccessPreviewRequest(input *CreateAccessPreviewInput) (req *request.Request, output *CreateAccessPreviewOutput)
- func (c *AccessAnalyzer) CreateAccessPreviewWithContext(ctx aws.Context, input *CreateAccessPreviewInput, opts ...request.Option) (*CreateAccessPreviewOutput, error)
- func (c *AccessAnalyzer) CreateAnalyzer(input *CreateAnalyzerInput) (*CreateAnalyzerOutput, error)
- func (c *AccessAnalyzer) CreateAnalyzerRequest(input *CreateAnalyzerInput) (req *request.Request, output *CreateAnalyzerOutput)
- func (c *AccessAnalyzer) CreateAnalyzerWithContext(ctx aws.Context, input *CreateAnalyzerInput, opts ...request.Option) (*CreateAnalyzerOutput, error)
- func (c *AccessAnalyzer) CreateArchiveRule(input *CreateArchiveRuleInput) (*CreateArchiveRuleOutput, error)
- func (c *AccessAnalyzer) CreateArchiveRuleRequest(input *CreateArchiveRuleInput) (req *request.Request, output *CreateArchiveRuleOutput)
- func (c *AccessAnalyzer) CreateArchiveRuleWithContext(ctx aws.Context, input *CreateArchiveRuleInput, opts ...request.Option) (*CreateArchiveRuleOutput, error)
- func (c *AccessAnalyzer) DeleteAnalyzer(input *DeleteAnalyzerInput) (*DeleteAnalyzerOutput, error)
- func (c *AccessAnalyzer) DeleteAnalyzerRequest(input *DeleteAnalyzerInput) (req *request.Request, output *DeleteAnalyzerOutput)
- func (c *AccessAnalyzer) DeleteAnalyzerWithContext(ctx aws.Context, input *DeleteAnalyzerInput, opts ...request.Option) (*DeleteAnalyzerOutput, error)
- func (c *AccessAnalyzer) DeleteArchiveRule(input *DeleteArchiveRuleInput) (*DeleteArchiveRuleOutput, error)
- func (c *AccessAnalyzer) DeleteArchiveRuleRequest(input *DeleteArchiveRuleInput) (req *request.Request, output *DeleteArchiveRuleOutput)
- func (c *AccessAnalyzer) DeleteArchiveRuleWithContext(ctx aws.Context, input *DeleteArchiveRuleInput, opts ...request.Option) (*DeleteArchiveRuleOutput, error)
- func (c *AccessAnalyzer) GenerateFindingRecommendation(input *GenerateFindingRecommendationInput) (*GenerateFindingRecommendationOutput, error)
- func (c *AccessAnalyzer) GenerateFindingRecommendationRequest(input *GenerateFindingRecommendationInput) (req *request.Request, output *GenerateFindingRecommendationOutput)
- func (c *AccessAnalyzer) GenerateFindingRecommendationWithContext(ctx aws.Context, input *GenerateFindingRecommendationInput, ...) (*GenerateFindingRecommendationOutput, error)
- func (c *AccessAnalyzer) GetAccessPreview(input *GetAccessPreviewInput) (*GetAccessPreviewOutput, error)
- func (c *AccessAnalyzer) GetAccessPreviewRequest(input *GetAccessPreviewInput) (req *request.Request, output *GetAccessPreviewOutput)
- func (c *AccessAnalyzer) GetAccessPreviewWithContext(ctx aws.Context, input *GetAccessPreviewInput, opts ...request.Option) (*GetAccessPreviewOutput, error)
- func (c *AccessAnalyzer) GetAnalyzedResource(input *GetAnalyzedResourceInput) (*GetAnalyzedResourceOutput, error)
- func (c *AccessAnalyzer) GetAnalyzedResourceRequest(input *GetAnalyzedResourceInput) (req *request.Request, output *GetAnalyzedResourceOutput)
- func (c *AccessAnalyzer) GetAnalyzedResourceWithContext(ctx aws.Context, input *GetAnalyzedResourceInput, opts ...request.Option) (*GetAnalyzedResourceOutput, error)
- func (c *AccessAnalyzer) GetAnalyzer(input *GetAnalyzerInput) (*GetAnalyzerOutput, error)
- func (c *AccessAnalyzer) GetAnalyzerRequest(input *GetAnalyzerInput) (req *request.Request, output *GetAnalyzerOutput)
- func (c *AccessAnalyzer) GetAnalyzerWithContext(ctx aws.Context, input *GetAnalyzerInput, opts ...request.Option) (*GetAnalyzerOutput, error)
- func (c *AccessAnalyzer) GetArchiveRule(input *GetArchiveRuleInput) (*GetArchiveRuleOutput, error)
- func (c *AccessAnalyzer) GetArchiveRuleRequest(input *GetArchiveRuleInput) (req *request.Request, output *GetArchiveRuleOutput)
- func (c *AccessAnalyzer) GetArchiveRuleWithContext(ctx aws.Context, input *GetArchiveRuleInput, opts ...request.Option) (*GetArchiveRuleOutput, error)
- func (c *AccessAnalyzer) GetFinding(input *GetFindingInput) (*GetFindingOutput, error)
- func (c *AccessAnalyzer) GetFindingRecommendation(input *GetFindingRecommendationInput) (*GetFindingRecommendationOutput, error)
- func (c *AccessAnalyzer) GetFindingRecommendationPages(input *GetFindingRecommendationInput, ...) error
- func (c *AccessAnalyzer) GetFindingRecommendationPagesWithContext(ctx aws.Context, input *GetFindingRecommendationInput, ...) error
- func (c *AccessAnalyzer) GetFindingRecommendationRequest(input *GetFindingRecommendationInput) (req *request.Request, output *GetFindingRecommendationOutput)
- func (c *AccessAnalyzer) GetFindingRecommendationWithContext(ctx aws.Context, input *GetFindingRecommendationInput, opts ...request.Option) (*GetFindingRecommendationOutput, error)
- func (c *AccessAnalyzer) GetFindingRequest(input *GetFindingInput) (req *request.Request, output *GetFindingOutput)
- func (c *AccessAnalyzer) GetFindingV2(input *GetFindingV2Input) (*GetFindingV2Output, error)
- func (c *AccessAnalyzer) GetFindingV2Pages(input *GetFindingV2Input, fn func(*GetFindingV2Output, bool) bool) error
- func (c *AccessAnalyzer) GetFindingV2PagesWithContext(ctx aws.Context, input *GetFindingV2Input, ...) error
- func (c *AccessAnalyzer) GetFindingV2Request(input *GetFindingV2Input) (req *request.Request, output *GetFindingV2Output)
- func (c *AccessAnalyzer) GetFindingV2WithContext(ctx aws.Context, input *GetFindingV2Input, opts ...request.Option) (*GetFindingV2Output, error)
- func (c *AccessAnalyzer) GetFindingWithContext(ctx aws.Context, input *GetFindingInput, opts ...request.Option) (*GetFindingOutput, error)
- func (c *AccessAnalyzer) GetGeneratedPolicy(input *GetGeneratedPolicyInput) (*GetGeneratedPolicyOutput, error)
- func (c *AccessAnalyzer) GetGeneratedPolicyRequest(input *GetGeneratedPolicyInput) (req *request.Request, output *GetGeneratedPolicyOutput)
- func (c *AccessAnalyzer) GetGeneratedPolicyWithContext(ctx aws.Context, input *GetGeneratedPolicyInput, opts ...request.Option) (*GetGeneratedPolicyOutput, error)
- func (c *AccessAnalyzer) ListAccessPreviewFindings(input *ListAccessPreviewFindingsInput) (*ListAccessPreviewFindingsOutput, error)
- func (c *AccessAnalyzer) ListAccessPreviewFindingsPages(input *ListAccessPreviewFindingsInput, ...) error
- func (c *AccessAnalyzer) ListAccessPreviewFindingsPagesWithContext(ctx aws.Context, input *ListAccessPreviewFindingsInput, ...) error
- func (c *AccessAnalyzer) ListAccessPreviewFindingsRequest(input *ListAccessPreviewFindingsInput) (req *request.Request, output *ListAccessPreviewFindingsOutput)
- func (c *AccessAnalyzer) ListAccessPreviewFindingsWithContext(ctx aws.Context, input *ListAccessPreviewFindingsInput, opts ...request.Option) (*ListAccessPreviewFindingsOutput, error)
- func (c *AccessAnalyzer) ListAccessPreviews(input *ListAccessPreviewsInput) (*ListAccessPreviewsOutput, error)
- func (c *AccessAnalyzer) ListAccessPreviewsPages(input *ListAccessPreviewsInput, fn func(*ListAccessPreviewsOutput, bool) bool) error
- func (c *AccessAnalyzer) ListAccessPreviewsPagesWithContext(ctx aws.Context, input *ListAccessPreviewsInput, ...) error
- func (c *AccessAnalyzer) ListAccessPreviewsRequest(input *ListAccessPreviewsInput) (req *request.Request, output *ListAccessPreviewsOutput)
- func (c *AccessAnalyzer) ListAccessPreviewsWithContext(ctx aws.Context, input *ListAccessPreviewsInput, opts ...request.Option) (*ListAccessPreviewsOutput, error)
- func (c *AccessAnalyzer) ListAnalyzedResources(input *ListAnalyzedResourcesInput) (*ListAnalyzedResourcesOutput, error)
- func (c *AccessAnalyzer) ListAnalyzedResourcesPages(input *ListAnalyzedResourcesInput, ...) error
- func (c *AccessAnalyzer) ListAnalyzedResourcesPagesWithContext(ctx aws.Context, input *ListAnalyzedResourcesInput, ...) error
- func (c *AccessAnalyzer) ListAnalyzedResourcesRequest(input *ListAnalyzedResourcesInput) (req *request.Request, output *ListAnalyzedResourcesOutput)
- func (c *AccessAnalyzer) ListAnalyzedResourcesWithContext(ctx aws.Context, input *ListAnalyzedResourcesInput, opts ...request.Option) (*ListAnalyzedResourcesOutput, error)
- func (c *AccessAnalyzer) ListAnalyzers(input *ListAnalyzersInput) (*ListAnalyzersOutput, error)
- func (c *AccessAnalyzer) ListAnalyzersPages(input *ListAnalyzersInput, fn func(*ListAnalyzersOutput, bool) bool) error
- func (c *AccessAnalyzer) ListAnalyzersPagesWithContext(ctx aws.Context, input *ListAnalyzersInput, ...) error
- func (c *AccessAnalyzer) ListAnalyzersRequest(input *ListAnalyzersInput) (req *request.Request, output *ListAnalyzersOutput)
- func (c *AccessAnalyzer) ListAnalyzersWithContext(ctx aws.Context, input *ListAnalyzersInput, opts ...request.Option) (*ListAnalyzersOutput, error)
- func (c *AccessAnalyzer) ListArchiveRules(input *ListArchiveRulesInput) (*ListArchiveRulesOutput, error)
- func (c *AccessAnalyzer) ListArchiveRulesPages(input *ListArchiveRulesInput, fn func(*ListArchiveRulesOutput, bool) bool) error
- func (c *AccessAnalyzer) ListArchiveRulesPagesWithContext(ctx aws.Context, input *ListArchiveRulesInput, ...) error
- func (c *AccessAnalyzer) ListArchiveRulesRequest(input *ListArchiveRulesInput) (req *request.Request, output *ListArchiveRulesOutput)
- func (c *AccessAnalyzer) ListArchiveRulesWithContext(ctx aws.Context, input *ListArchiveRulesInput, opts ...request.Option) (*ListArchiveRulesOutput, error)
- func (c *AccessAnalyzer) ListFindings(input *ListFindingsInput) (*ListFindingsOutput, error)
- func (c *AccessAnalyzer) ListFindingsPages(input *ListFindingsInput, fn func(*ListFindingsOutput, bool) bool) error
- func (c *AccessAnalyzer) ListFindingsPagesWithContext(ctx aws.Context, input *ListFindingsInput, ...) error
- func (c *AccessAnalyzer) ListFindingsRequest(input *ListFindingsInput) (req *request.Request, output *ListFindingsOutput)
- func (c *AccessAnalyzer) ListFindingsV2(input *ListFindingsV2Input) (*ListFindingsV2Output, error)
- func (c *AccessAnalyzer) ListFindingsV2Pages(input *ListFindingsV2Input, fn func(*ListFindingsV2Output, bool) bool) error
- func (c *AccessAnalyzer) ListFindingsV2PagesWithContext(ctx aws.Context, input *ListFindingsV2Input, ...) error
- func (c *AccessAnalyzer) ListFindingsV2Request(input *ListFindingsV2Input) (req *request.Request, output *ListFindingsV2Output)
- func (c *AccessAnalyzer) ListFindingsV2WithContext(ctx aws.Context, input *ListFindingsV2Input, opts ...request.Option) (*ListFindingsV2Output, error)
- func (c *AccessAnalyzer) ListFindingsWithContext(ctx aws.Context, input *ListFindingsInput, opts ...request.Option) (*ListFindingsOutput, error)
- func (c *AccessAnalyzer) ListPolicyGenerations(input *ListPolicyGenerationsInput) (*ListPolicyGenerationsOutput, error)
- func (c *AccessAnalyzer) ListPolicyGenerationsPages(input *ListPolicyGenerationsInput, ...) error
- func (c *AccessAnalyzer) ListPolicyGenerationsPagesWithContext(ctx aws.Context, input *ListPolicyGenerationsInput, ...) error
- func (c *AccessAnalyzer) ListPolicyGenerationsRequest(input *ListPolicyGenerationsInput) (req *request.Request, output *ListPolicyGenerationsOutput)
- func (c *AccessAnalyzer) ListPolicyGenerationsWithContext(ctx aws.Context, input *ListPolicyGenerationsInput, opts ...request.Option) (*ListPolicyGenerationsOutput, error)
- func (c *AccessAnalyzer) ListTagsForResource(input *ListTagsForResourceInput) (*ListTagsForResourceOutput, error)
- func (c *AccessAnalyzer) ListTagsForResourceRequest(input *ListTagsForResourceInput) (req *request.Request, output *ListTagsForResourceOutput)
- func (c *AccessAnalyzer) ListTagsForResourceWithContext(ctx aws.Context, input *ListTagsForResourceInput, opts ...request.Option) (*ListTagsForResourceOutput, error)
- func (c *AccessAnalyzer) StartPolicyGeneration(input *StartPolicyGenerationInput) (*StartPolicyGenerationOutput, error)
- func (c *AccessAnalyzer) StartPolicyGenerationRequest(input *StartPolicyGenerationInput) (req *request.Request, output *StartPolicyGenerationOutput)
- func (c *AccessAnalyzer) StartPolicyGenerationWithContext(ctx aws.Context, input *StartPolicyGenerationInput, opts ...request.Option) (*StartPolicyGenerationOutput, error)
- func (c *AccessAnalyzer) StartResourceScan(input *StartResourceScanInput) (*StartResourceScanOutput, error)
- func (c *AccessAnalyzer) StartResourceScanRequest(input *StartResourceScanInput) (req *request.Request, output *StartResourceScanOutput)
- func (c *AccessAnalyzer) StartResourceScanWithContext(ctx aws.Context, input *StartResourceScanInput, opts ...request.Option) (*StartResourceScanOutput, error)
- func (c *AccessAnalyzer) TagResource(input *TagResourceInput) (*TagResourceOutput, error)
- func (c *AccessAnalyzer) TagResourceRequest(input *TagResourceInput) (req *request.Request, output *TagResourceOutput)
- func (c *AccessAnalyzer) TagResourceWithContext(ctx aws.Context, input *TagResourceInput, opts ...request.Option) (*TagResourceOutput, error)
- func (c *AccessAnalyzer) UntagResource(input *UntagResourceInput) (*UntagResourceOutput, error)
- func (c *AccessAnalyzer) UntagResourceRequest(input *UntagResourceInput) (req *request.Request, output *UntagResourceOutput)
- func (c *AccessAnalyzer) UntagResourceWithContext(ctx aws.Context, input *UntagResourceInput, opts ...request.Option) (*UntagResourceOutput, error)
- func (c *AccessAnalyzer) UpdateArchiveRule(input *UpdateArchiveRuleInput) (*UpdateArchiveRuleOutput, error)
- func (c *AccessAnalyzer) UpdateArchiveRuleRequest(input *UpdateArchiveRuleInput) (req *request.Request, output *UpdateArchiveRuleOutput)
- func (c *AccessAnalyzer) UpdateArchiveRuleWithContext(ctx aws.Context, input *UpdateArchiveRuleInput, opts ...request.Option) (*UpdateArchiveRuleOutput, error)
- func (c *AccessAnalyzer) UpdateFindings(input *UpdateFindingsInput) (*UpdateFindingsOutput, error)
- func (c *AccessAnalyzer) UpdateFindingsRequest(input *UpdateFindingsInput) (req *request.Request, output *UpdateFindingsOutput)
- func (c *AccessAnalyzer) UpdateFindingsWithContext(ctx aws.Context, input *UpdateFindingsInput, opts ...request.Option) (*UpdateFindingsOutput, error)
- func (c *AccessAnalyzer) ValidatePolicy(input *ValidatePolicyInput) (*ValidatePolicyOutput, error)
- func (c *AccessAnalyzer) ValidatePolicyPages(input *ValidatePolicyInput, fn func(*ValidatePolicyOutput, bool) bool) error
- func (c *AccessAnalyzer) ValidatePolicyPagesWithContext(ctx aws.Context, input *ValidatePolicyInput, ...) error
- func (c *AccessAnalyzer) ValidatePolicyRequest(input *ValidatePolicyInput) (req *request.Request, output *ValidatePolicyOutput)
- func (c *AccessAnalyzer) ValidatePolicyWithContext(ctx aws.Context, input *ValidatePolicyInput, opts ...request.Option) (*ValidatePolicyOutput, error)
- type AccessDeniedException
- func (s *AccessDeniedException) Code() string
- func (s *AccessDeniedException) Error() string
- func (s AccessDeniedException) GoString() string
- func (s *AccessDeniedException) Message() string
- func (s *AccessDeniedException) OrigErr() error
- func (s *AccessDeniedException) RequestID() string
- func (s *AccessDeniedException) StatusCode() int
- func (s AccessDeniedException) String() string
- type AccessPreview
- func (s AccessPreview) GoString() string
- func (s *AccessPreview) SetAnalyzerArn(v string) *AccessPreview
- func (s *AccessPreview) SetConfigurations(v map[string]*Configuration) *AccessPreview
- func (s *AccessPreview) SetCreatedAt(v time.Time) *AccessPreview
- func (s *AccessPreview) SetId(v string) *AccessPreview
- func (s *AccessPreview) SetStatus(v string) *AccessPreview
- func (s *AccessPreview) SetStatusReason(v *AccessPreviewStatusReason) *AccessPreview
- func (s AccessPreview) String() string
- type AccessPreviewFinding
- func (s AccessPreviewFinding) GoString() string
- func (s *AccessPreviewFinding) SetAction(v []*string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetChangeType(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetCondition(v map[string]*string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetCreatedAt(v time.Time) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetError(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetExistingFindingId(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetExistingFindingStatus(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetId(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetIsPublic(v bool) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetPrincipal(v map[string]*string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetResource(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetResourceOwnerAccount(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetResourceType(v string) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetSources(v []*FindingSource) *AccessPreviewFinding
- func (s *AccessPreviewFinding) SetStatus(v string) *AccessPreviewFinding
- func (s AccessPreviewFinding) String() string
- type AccessPreviewStatusReason
- type AccessPreviewSummary
- func (s AccessPreviewSummary) GoString() string
- func (s *AccessPreviewSummary) SetAnalyzerArn(v string) *AccessPreviewSummary
- func (s *AccessPreviewSummary) SetCreatedAt(v time.Time) *AccessPreviewSummary
- func (s *AccessPreviewSummary) SetId(v string) *AccessPreviewSummary
- func (s *AccessPreviewSummary) SetStatus(v string) *AccessPreviewSummary
- func (s *AccessPreviewSummary) SetStatusReason(v *AccessPreviewStatusReason) *AccessPreviewSummary
- func (s AccessPreviewSummary) String() string
- type AclGrantee
- type AnalyzedResource
- func (s AnalyzedResource) GoString() string
- func (s *AnalyzedResource) SetActions(v []*string) *AnalyzedResource
- func (s *AnalyzedResource) SetAnalyzedAt(v time.Time) *AnalyzedResource
- func (s *AnalyzedResource) SetCreatedAt(v time.Time) *AnalyzedResource
- func (s *AnalyzedResource) SetError(v string) *AnalyzedResource
- func (s *AnalyzedResource) SetIsPublic(v bool) *AnalyzedResource
- func (s *AnalyzedResource) SetResourceArn(v string) *AnalyzedResource
- func (s *AnalyzedResource) SetResourceOwnerAccount(v string) *AnalyzedResource
- func (s *AnalyzedResource) SetResourceType(v string) *AnalyzedResource
- func (s *AnalyzedResource) SetSharedVia(v []*string) *AnalyzedResource
- func (s *AnalyzedResource) SetStatus(v string) *AnalyzedResource
- func (s *AnalyzedResource) SetUpdatedAt(v time.Time) *AnalyzedResource
- func (s AnalyzedResource) String() string
- type AnalyzedResourceSummary
- func (s AnalyzedResourceSummary) GoString() string
- func (s *AnalyzedResourceSummary) SetResourceArn(v string) *AnalyzedResourceSummary
- func (s *AnalyzedResourceSummary) SetResourceOwnerAccount(v string) *AnalyzedResourceSummary
- func (s *AnalyzedResourceSummary) SetResourceType(v string) *AnalyzedResourceSummary
- func (s AnalyzedResourceSummary) String() string
- type AnalyzerConfiguration
- type AnalyzerSummary
- func (s AnalyzerSummary) GoString() string
- func (s *AnalyzerSummary) SetArn(v string) *AnalyzerSummary
- func (s *AnalyzerSummary) SetConfiguration(v *AnalyzerConfiguration) *AnalyzerSummary
- func (s *AnalyzerSummary) SetCreatedAt(v time.Time) *AnalyzerSummary
- func (s *AnalyzerSummary) SetLastResourceAnalyzed(v string) *AnalyzerSummary
- func (s *AnalyzerSummary) SetLastResourceAnalyzedAt(v time.Time) *AnalyzerSummary
- func (s *AnalyzerSummary) SetName(v string) *AnalyzerSummary
- func (s *AnalyzerSummary) SetStatus(v string) *AnalyzerSummary
- func (s *AnalyzerSummary) SetStatusReason(v *StatusReason) *AnalyzerSummary
- func (s *AnalyzerSummary) SetTags(v map[string]*string) *AnalyzerSummary
- func (s *AnalyzerSummary) SetType(v string) *AnalyzerSummary
- func (s AnalyzerSummary) String() string
- type ApplyArchiveRuleInput
- func (s ApplyArchiveRuleInput) GoString() string
- func (s *ApplyArchiveRuleInput) SetAnalyzerArn(v string) *ApplyArchiveRuleInput
- func (s *ApplyArchiveRuleInput) SetClientToken(v string) *ApplyArchiveRuleInput
- func (s *ApplyArchiveRuleInput) SetRuleName(v string) *ApplyArchiveRuleInput
- func (s ApplyArchiveRuleInput) String() string
- func (s *ApplyArchiveRuleInput) Validate() error
- type ApplyArchiveRuleOutput
- type ArchiveRuleSummary
- func (s ArchiveRuleSummary) GoString() string
- func (s *ArchiveRuleSummary) SetCreatedAt(v time.Time) *ArchiveRuleSummary
- func (s *ArchiveRuleSummary) SetFilter(v map[string]*Criterion) *ArchiveRuleSummary
- func (s *ArchiveRuleSummary) SetRuleName(v string) *ArchiveRuleSummary
- func (s *ArchiveRuleSummary) SetUpdatedAt(v time.Time) *ArchiveRuleSummary
- func (s ArchiveRuleSummary) String() string
- type CancelPolicyGenerationInput
- type CancelPolicyGenerationOutput
- type CheckAccessNotGrantedInput
- func (s CheckAccessNotGrantedInput) GoString() string
- func (s *CheckAccessNotGrantedInput) SetAccess(v []*Access) *CheckAccessNotGrantedInput
- func (s *CheckAccessNotGrantedInput) SetPolicyDocument(v string) *CheckAccessNotGrantedInput
- func (s *CheckAccessNotGrantedInput) SetPolicyType(v string) *CheckAccessNotGrantedInput
- func (s CheckAccessNotGrantedInput) String() string
- func (s *CheckAccessNotGrantedInput) Validate() error
- type CheckAccessNotGrantedOutput
- func (s CheckAccessNotGrantedOutput) GoString() string
- func (s *CheckAccessNotGrantedOutput) SetMessage(v string) *CheckAccessNotGrantedOutput
- func (s *CheckAccessNotGrantedOutput) SetReasons(v []*ReasonSummary) *CheckAccessNotGrantedOutput
- func (s *CheckAccessNotGrantedOutput) SetResult(v string) *CheckAccessNotGrantedOutput
- func (s CheckAccessNotGrantedOutput) String() string
- type CheckNoNewAccessInput
- func (s CheckNoNewAccessInput) GoString() string
- func (s *CheckNoNewAccessInput) SetExistingPolicyDocument(v string) *CheckNoNewAccessInput
- func (s *CheckNoNewAccessInput) SetNewPolicyDocument(v string) *CheckNoNewAccessInput
- func (s *CheckNoNewAccessInput) SetPolicyType(v string) *CheckNoNewAccessInput
- func (s CheckNoNewAccessInput) String() string
- func (s *CheckNoNewAccessInput) Validate() error
- type CheckNoNewAccessOutput
- func (s CheckNoNewAccessOutput) GoString() string
- func (s *CheckNoNewAccessOutput) SetMessage(v string) *CheckNoNewAccessOutput
- func (s *CheckNoNewAccessOutput) SetReasons(v []*ReasonSummary) *CheckNoNewAccessOutput
- func (s *CheckNoNewAccessOutput) SetResult(v string) *CheckNoNewAccessOutput
- func (s CheckNoNewAccessOutput) String() string
- type CheckNoPublicAccessInput
- func (s CheckNoPublicAccessInput) GoString() string
- func (s *CheckNoPublicAccessInput) SetPolicyDocument(v string) *CheckNoPublicAccessInput
- func (s *CheckNoPublicAccessInput) SetResourceType(v string) *CheckNoPublicAccessInput
- func (s CheckNoPublicAccessInput) String() string
- func (s *CheckNoPublicAccessInput) Validate() error
- type CheckNoPublicAccessOutput
- func (s CheckNoPublicAccessOutput) GoString() string
- func (s *CheckNoPublicAccessOutput) SetMessage(v string) *CheckNoPublicAccessOutput
- func (s *CheckNoPublicAccessOutput) SetReasons(v []*ReasonSummary) *CheckNoPublicAccessOutput
- func (s *CheckNoPublicAccessOutput) SetResult(v string) *CheckNoPublicAccessOutput
- func (s CheckNoPublicAccessOutput) String() string
- type CloudTrailDetails
- func (s CloudTrailDetails) GoString() string
- func (s *CloudTrailDetails) SetAccessRole(v string) *CloudTrailDetails
- func (s *CloudTrailDetails) SetEndTime(v time.Time) *CloudTrailDetails
- func (s *CloudTrailDetails) SetStartTime(v time.Time) *CloudTrailDetails
- func (s *CloudTrailDetails) SetTrails(v []*Trail) *CloudTrailDetails
- func (s CloudTrailDetails) String() string
- func (s *CloudTrailDetails) Validate() error
- type CloudTrailProperties
- func (s CloudTrailProperties) GoString() string
- func (s *CloudTrailProperties) SetEndTime(v time.Time) *CloudTrailProperties
- func (s *CloudTrailProperties) SetStartTime(v time.Time) *CloudTrailProperties
- func (s *CloudTrailProperties) SetTrailProperties(v []*TrailProperties) *CloudTrailProperties
- func (s CloudTrailProperties) String() string
- type Configuration
- func (s Configuration) GoString() string
- func (s *Configuration) SetDynamodbStream(v *DynamodbStreamConfiguration) *Configuration
- func (s *Configuration) SetDynamodbTable(v *DynamodbTableConfiguration) *Configuration
- func (s *Configuration) SetEbsSnapshot(v *EbsSnapshotConfiguration) *Configuration
- func (s *Configuration) SetEcrRepository(v *EcrRepositoryConfiguration) *Configuration
- func (s *Configuration) SetEfsFileSystem(v *EfsFileSystemConfiguration) *Configuration
- func (s *Configuration) SetIamRole(v *IamRoleConfiguration) *Configuration
- func (s *Configuration) SetKmsKey(v *KmsKeyConfiguration) *Configuration
- func (s *Configuration) SetRdsDbClusterSnapshot(v *RdsDbClusterSnapshotConfiguration) *Configuration
- func (s *Configuration) SetRdsDbSnapshot(v *RdsDbSnapshotConfiguration) *Configuration
- func (s *Configuration) SetS3Bucket(v *S3BucketConfiguration) *Configuration
- func (s *Configuration) SetS3ExpressDirectoryBucket(v *S3ExpressDirectoryBucketConfiguration) *Configuration
- func (s *Configuration) SetSecretsManagerSecret(v *SecretsManagerSecretConfiguration) *Configuration
- func (s *Configuration) SetSnsTopic(v *SnsTopicConfiguration) *Configuration
- func (s *Configuration) SetSqsQueue(v *SqsQueueConfiguration) *Configuration
- func (s Configuration) String() string
- func (s *Configuration) Validate() error
- type ConflictException
- func (s *ConflictException) Code() string
- func (s *ConflictException) Error() string
- func (s ConflictException) GoString() string
- func (s *ConflictException) Message() string
- func (s *ConflictException) OrigErr() error
- func (s *ConflictException) RequestID() string
- func (s *ConflictException) StatusCode() int
- func (s ConflictException) String() string
- type CreateAccessPreviewInput
- func (s CreateAccessPreviewInput) GoString() string
- func (s *CreateAccessPreviewInput) SetAnalyzerArn(v string) *CreateAccessPreviewInput
- func (s *CreateAccessPreviewInput) SetClientToken(v string) *CreateAccessPreviewInput
- func (s *CreateAccessPreviewInput) SetConfigurations(v map[string]*Configuration) *CreateAccessPreviewInput
- func (s CreateAccessPreviewInput) String() string
- func (s *CreateAccessPreviewInput) Validate() error
- type CreateAccessPreviewOutput
- type CreateAnalyzerInput
- func (s CreateAnalyzerInput) GoString() string
- func (s *CreateAnalyzerInput) SetAnalyzerName(v string) *CreateAnalyzerInput
- func (s *CreateAnalyzerInput) SetArchiveRules(v []*InlineArchiveRule) *CreateAnalyzerInput
- func (s *CreateAnalyzerInput) SetClientToken(v string) *CreateAnalyzerInput
- func (s *CreateAnalyzerInput) SetConfiguration(v *AnalyzerConfiguration) *CreateAnalyzerInput
- func (s *CreateAnalyzerInput) SetTags(v map[string]*string) *CreateAnalyzerInput
- func (s *CreateAnalyzerInput) SetType(v string) *CreateAnalyzerInput
- func (s CreateAnalyzerInput) String() string
- func (s *CreateAnalyzerInput) Validate() error
- type CreateAnalyzerOutput
- type CreateArchiveRuleInput
- func (s CreateArchiveRuleInput) GoString() string
- func (s *CreateArchiveRuleInput) SetAnalyzerName(v string) *CreateArchiveRuleInput
- func (s *CreateArchiveRuleInput) SetClientToken(v string) *CreateArchiveRuleInput
- func (s *CreateArchiveRuleInput) SetFilter(v map[string]*Criterion) *CreateArchiveRuleInput
- func (s *CreateArchiveRuleInput) SetRuleName(v string) *CreateArchiveRuleInput
- func (s CreateArchiveRuleInput) String() string
- func (s *CreateArchiveRuleInput) Validate() error
- type CreateArchiveRuleOutput
- type Criterion
- func (s Criterion) GoString() string
- func (s *Criterion) SetContains(v []*string) *Criterion
- func (s *Criterion) SetEq(v []*string) *Criterion
- func (s *Criterion) SetExists(v bool) *Criterion
- func (s *Criterion) SetNeq(v []*string) *Criterion
- func (s Criterion) String() string
- func (s *Criterion) Validate() error
- type DeleteAnalyzerInput
- type DeleteAnalyzerOutput
- type DeleteArchiveRuleInput
- func (s DeleteArchiveRuleInput) GoString() string
- func (s *DeleteArchiveRuleInput) SetAnalyzerName(v string) *DeleteArchiveRuleInput
- func (s *DeleteArchiveRuleInput) SetClientToken(v string) *DeleteArchiveRuleInput
- func (s *DeleteArchiveRuleInput) SetRuleName(v string) *DeleteArchiveRuleInput
- func (s DeleteArchiveRuleInput) String() string
- func (s *DeleteArchiveRuleInput) Validate() error
- type DeleteArchiveRuleOutput
- type DynamodbStreamConfiguration
- type DynamodbTableConfiguration
- type EbsSnapshotConfiguration
- func (s EbsSnapshotConfiguration) GoString() string
- func (s *EbsSnapshotConfiguration) SetGroups(v []*string) *EbsSnapshotConfiguration
- func (s *EbsSnapshotConfiguration) SetKmsKeyId(v string) *EbsSnapshotConfiguration
- func (s *EbsSnapshotConfiguration) SetUserIds(v []*string) *EbsSnapshotConfiguration
- func (s EbsSnapshotConfiguration) String() string
- type EcrRepositoryConfiguration
- type EfsFileSystemConfiguration
- type ExternalAccessDetails
- func (s ExternalAccessDetails) GoString() string
- func (s *ExternalAccessDetails) SetAction(v []*string) *ExternalAccessDetails
- func (s *ExternalAccessDetails) SetCondition(v map[string]*string) *ExternalAccessDetails
- func (s *ExternalAccessDetails) SetIsPublic(v bool) *ExternalAccessDetails
- func (s *ExternalAccessDetails) SetPrincipal(v map[string]*string) *ExternalAccessDetails
- func (s *ExternalAccessDetails) SetSources(v []*FindingSource) *ExternalAccessDetails
- func (s ExternalAccessDetails) String() string
- type Finding
- func (s Finding) GoString() string
- func (s *Finding) SetAction(v []*string) *Finding
- func (s *Finding) SetAnalyzedAt(v time.Time) *Finding
- func (s *Finding) SetCondition(v map[string]*string) *Finding
- func (s *Finding) SetCreatedAt(v time.Time) *Finding
- func (s *Finding) SetError(v string) *Finding
- func (s *Finding) SetId(v string) *Finding
- func (s *Finding) SetIsPublic(v bool) *Finding
- func (s *Finding) SetPrincipal(v map[string]*string) *Finding
- func (s *Finding) SetResource(v string) *Finding
- func (s *Finding) SetResourceOwnerAccount(v string) *Finding
- func (s *Finding) SetResourceType(v string) *Finding
- func (s *Finding) SetSources(v []*FindingSource) *Finding
- func (s *Finding) SetStatus(v string) *Finding
- func (s *Finding) SetUpdatedAt(v time.Time) *Finding
- func (s Finding) String() string
- type FindingDetails
- func (s FindingDetails) GoString() string
- func (s *FindingDetails) SetExternalAccessDetails(v *ExternalAccessDetails) *FindingDetails
- func (s *FindingDetails) SetUnusedIamRoleDetails(v *UnusedIamRoleDetails) *FindingDetails
- func (s *FindingDetails) SetUnusedIamUserAccessKeyDetails(v *UnusedIamUserAccessKeyDetails) *FindingDetails
- func (s *FindingDetails) SetUnusedIamUserPasswordDetails(v *UnusedIamUserPasswordDetails) *FindingDetails
- func (s *FindingDetails) SetUnusedPermissionDetails(v *UnusedPermissionDetails) *FindingDetails
- func (s FindingDetails) String() string
- type FindingSource
- type FindingSourceDetail
- type FindingSummary
- func (s FindingSummary) GoString() string
- func (s *FindingSummary) SetAction(v []*string) *FindingSummary
- func (s *FindingSummary) SetAnalyzedAt(v time.Time) *FindingSummary
- func (s *FindingSummary) SetCondition(v map[string]*string) *FindingSummary
- func (s *FindingSummary) SetCreatedAt(v time.Time) *FindingSummary
- func (s *FindingSummary) SetError(v string) *FindingSummary
- func (s *FindingSummary) SetId(v string) *FindingSummary
- func (s *FindingSummary) SetIsPublic(v bool) *FindingSummary
- func (s *FindingSummary) SetPrincipal(v map[string]*string) *FindingSummary
- func (s *FindingSummary) SetResource(v string) *FindingSummary
- func (s *FindingSummary) SetResourceOwnerAccount(v string) *FindingSummary
- func (s *FindingSummary) SetResourceType(v string) *FindingSummary
- func (s *FindingSummary) SetSources(v []*FindingSource) *FindingSummary
- func (s *FindingSummary) SetStatus(v string) *FindingSummary
- func (s *FindingSummary) SetUpdatedAt(v time.Time) *FindingSummary
- func (s FindingSummary) String() string
- type FindingSummaryV2
- func (s FindingSummaryV2) GoString() string
- func (s *FindingSummaryV2) SetAnalyzedAt(v time.Time) *FindingSummaryV2
- func (s *FindingSummaryV2) SetCreatedAt(v time.Time) *FindingSummaryV2
- func (s *FindingSummaryV2) SetError(v string) *FindingSummaryV2
- func (s *FindingSummaryV2) SetFindingType(v string) *FindingSummaryV2
- func (s *FindingSummaryV2) SetId(v string) *FindingSummaryV2
- func (s *FindingSummaryV2) SetResource(v string) *FindingSummaryV2
- func (s *FindingSummaryV2) SetResourceOwnerAccount(v string) *FindingSummaryV2
- func (s *FindingSummaryV2) SetResourceType(v string) *FindingSummaryV2
- func (s *FindingSummaryV2) SetStatus(v string) *FindingSummaryV2
- func (s *FindingSummaryV2) SetUpdatedAt(v time.Time) *FindingSummaryV2
- func (s FindingSummaryV2) String() string
- type GenerateFindingRecommendationInput
- func (s GenerateFindingRecommendationInput) GoString() string
- func (s *GenerateFindingRecommendationInput) SetAnalyzerArn(v string) *GenerateFindingRecommendationInput
- func (s *GenerateFindingRecommendationInput) SetId(v string) *GenerateFindingRecommendationInput
- func (s GenerateFindingRecommendationInput) String() string
- func (s *GenerateFindingRecommendationInput) Validate() error
- type GenerateFindingRecommendationOutput
- type GeneratedPolicy
- type GeneratedPolicyProperties
- func (s GeneratedPolicyProperties) GoString() string
- func (s *GeneratedPolicyProperties) SetCloudTrailProperties(v *CloudTrailProperties) *GeneratedPolicyProperties
- func (s *GeneratedPolicyProperties) SetIsComplete(v bool) *GeneratedPolicyProperties
- func (s *GeneratedPolicyProperties) SetPrincipalArn(v string) *GeneratedPolicyProperties
- func (s GeneratedPolicyProperties) String() string
- type GeneratedPolicyResult
- type GetAccessPreviewInput
- func (s GetAccessPreviewInput) GoString() string
- func (s *GetAccessPreviewInput) SetAccessPreviewId(v string) *GetAccessPreviewInput
- func (s *GetAccessPreviewInput) SetAnalyzerArn(v string) *GetAccessPreviewInput
- func (s GetAccessPreviewInput) String() string
- func (s *GetAccessPreviewInput) Validate() error
- type GetAccessPreviewOutput
- type GetAnalyzedResourceInput
- func (s GetAnalyzedResourceInput) GoString() string
- func (s *GetAnalyzedResourceInput) SetAnalyzerArn(v string) *GetAnalyzedResourceInput
- func (s *GetAnalyzedResourceInput) SetResourceArn(v string) *GetAnalyzedResourceInput
- func (s GetAnalyzedResourceInput) String() string
- func (s *GetAnalyzedResourceInput) Validate() error
- type GetAnalyzedResourceOutput
- type GetAnalyzerInput
- type GetAnalyzerOutput
- type GetArchiveRuleInput
- type GetArchiveRuleOutput
- type GetFindingInput
- type GetFindingOutput
- type GetFindingRecommendationInput
- func (s GetFindingRecommendationInput) GoString() string
- func (s *GetFindingRecommendationInput) SetAnalyzerArn(v string) *GetFindingRecommendationInput
- func (s *GetFindingRecommendationInput) SetId(v string) *GetFindingRecommendationInput
- func (s *GetFindingRecommendationInput) SetMaxResults(v int64) *GetFindingRecommendationInput
- func (s *GetFindingRecommendationInput) SetNextToken(v string) *GetFindingRecommendationInput
- func (s GetFindingRecommendationInput) String() string
- func (s *GetFindingRecommendationInput) Validate() error
- type GetFindingRecommendationOutput
- func (s GetFindingRecommendationOutput) GoString() string
- func (s *GetFindingRecommendationOutput) SetCompletedAt(v time.Time) *GetFindingRecommendationOutput
- func (s *GetFindingRecommendationOutput) SetError(v *RecommendationError) *GetFindingRecommendationOutput
- func (s *GetFindingRecommendationOutput) SetNextToken(v string) *GetFindingRecommendationOutput
- func (s *GetFindingRecommendationOutput) SetRecommendationType(v string) *GetFindingRecommendationOutput
- func (s *GetFindingRecommendationOutput) SetRecommendedSteps(v []*RecommendedStep) *GetFindingRecommendationOutput
- func (s *GetFindingRecommendationOutput) SetResourceArn(v string) *GetFindingRecommendationOutput
- func (s *GetFindingRecommendationOutput) SetStartedAt(v time.Time) *GetFindingRecommendationOutput
- func (s *GetFindingRecommendationOutput) SetStatus(v string) *GetFindingRecommendationOutput
- func (s GetFindingRecommendationOutput) String() string
- type GetFindingV2Input
- func (s GetFindingV2Input) GoString() string
- func (s *GetFindingV2Input) SetAnalyzerArn(v string) *GetFindingV2Input
- func (s *GetFindingV2Input) SetId(v string) *GetFindingV2Input
- func (s *GetFindingV2Input) SetMaxResults(v int64) *GetFindingV2Input
- func (s *GetFindingV2Input) SetNextToken(v string) *GetFindingV2Input
- func (s GetFindingV2Input) String() string
- func (s *GetFindingV2Input) Validate() error
- type GetFindingV2Output
- func (s GetFindingV2Output) GoString() string
- func (s *GetFindingV2Output) SetAnalyzedAt(v time.Time) *GetFindingV2Output
- func (s *GetFindingV2Output) SetCreatedAt(v time.Time) *GetFindingV2Output
- func (s *GetFindingV2Output) SetError(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetFindingDetails(v []*FindingDetails) *GetFindingV2Output
- func (s *GetFindingV2Output) SetFindingType(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetId(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetNextToken(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetResource(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetResourceOwnerAccount(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetResourceType(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetStatus(v string) *GetFindingV2Output
- func (s *GetFindingV2Output) SetUpdatedAt(v time.Time) *GetFindingV2Output
- func (s GetFindingV2Output) String() string
- type GetGeneratedPolicyInput
- func (s GetGeneratedPolicyInput) GoString() string
- func (s *GetGeneratedPolicyInput) SetIncludeResourcePlaceholders(v bool) *GetGeneratedPolicyInput
- func (s *GetGeneratedPolicyInput) SetIncludeServiceLevelTemplate(v bool) *GetGeneratedPolicyInput
- func (s *GetGeneratedPolicyInput) SetJobId(v string) *GetGeneratedPolicyInput
- func (s GetGeneratedPolicyInput) String() string
- func (s *GetGeneratedPolicyInput) Validate() error
- type GetGeneratedPolicyOutput
- func (s GetGeneratedPolicyOutput) GoString() string
- func (s *GetGeneratedPolicyOutput) SetGeneratedPolicyResult(v *GeneratedPolicyResult) *GetGeneratedPolicyOutput
- func (s *GetGeneratedPolicyOutput) SetJobDetails(v *JobDetails) *GetGeneratedPolicyOutput
- func (s GetGeneratedPolicyOutput) String() string
- type IamRoleConfiguration
- type InlineArchiveRule
- type InternalServerException
- func (s *InternalServerException) Code() string
- func (s *InternalServerException) Error() string
- func (s InternalServerException) GoString() string
- func (s *InternalServerException) Message() string
- func (s *InternalServerException) OrigErr() error
- func (s *InternalServerException) RequestID() string
- func (s *InternalServerException) StatusCode() int
- func (s InternalServerException) String() string
- type InternetConfiguration
- type InvalidParameterException
- func (s *InvalidParameterException) Code() string
- func (s *InvalidParameterException) Error() string
- func (s InvalidParameterException) GoString() string
- func (s *InvalidParameterException) Message() string
- func (s *InvalidParameterException) OrigErr() error
- func (s *InvalidParameterException) RequestID() string
- func (s *InvalidParameterException) StatusCode() int
- func (s InvalidParameterException) String() string
- type JobDetails
- func (s JobDetails) GoString() string
- func (s *JobDetails) SetCompletedOn(v time.Time) *JobDetails
- func (s *JobDetails) SetJobError(v *JobError) *JobDetails
- func (s *JobDetails) SetJobId(v string) *JobDetails
- func (s *JobDetails) SetStartedOn(v time.Time) *JobDetails
- func (s *JobDetails) SetStatus(v string) *JobDetails
- func (s JobDetails) String() string
- type JobError
- type KmsGrantConfiguration
- func (s KmsGrantConfiguration) GoString() string
- func (s *KmsGrantConfiguration) SetConstraints(v *KmsGrantConstraints) *KmsGrantConfiguration
- func (s *KmsGrantConfiguration) SetGranteePrincipal(v string) *KmsGrantConfiguration
- func (s *KmsGrantConfiguration) SetIssuingAccount(v string) *KmsGrantConfiguration
- func (s *KmsGrantConfiguration) SetOperations(v []*string) *KmsGrantConfiguration
- func (s *KmsGrantConfiguration) SetRetiringPrincipal(v string) *KmsGrantConfiguration
- func (s KmsGrantConfiguration) String() string
- func (s *KmsGrantConfiguration) Validate() error
- type KmsGrantConstraints
- type KmsKeyConfiguration
- func (s KmsKeyConfiguration) GoString() string
- func (s *KmsKeyConfiguration) SetGrants(v []*KmsGrantConfiguration) *KmsKeyConfiguration
- func (s *KmsKeyConfiguration) SetKeyPolicies(v map[string]*string) *KmsKeyConfiguration
- func (s KmsKeyConfiguration) String() string
- func (s *KmsKeyConfiguration) Validate() error
- type ListAccessPreviewFindingsInput
- func (s ListAccessPreviewFindingsInput) GoString() string
- func (s *ListAccessPreviewFindingsInput) SetAccessPreviewId(v string) *ListAccessPreviewFindingsInput
- func (s *ListAccessPreviewFindingsInput) SetAnalyzerArn(v string) *ListAccessPreviewFindingsInput
- func (s *ListAccessPreviewFindingsInput) SetFilter(v map[string]*Criterion) *ListAccessPreviewFindingsInput
- func (s *ListAccessPreviewFindingsInput) SetMaxResults(v int64) *ListAccessPreviewFindingsInput
- func (s *ListAccessPreviewFindingsInput) SetNextToken(v string) *ListAccessPreviewFindingsInput
- func (s ListAccessPreviewFindingsInput) String() string
- func (s *ListAccessPreviewFindingsInput) Validate() error
- type ListAccessPreviewFindingsOutput
- func (s ListAccessPreviewFindingsOutput) GoString() string
- func (s *ListAccessPreviewFindingsOutput) SetFindings(v []*AccessPreviewFinding) *ListAccessPreviewFindingsOutput
- func (s *ListAccessPreviewFindingsOutput) SetNextToken(v string) *ListAccessPreviewFindingsOutput
- func (s ListAccessPreviewFindingsOutput) String() string
- type ListAccessPreviewsInput
- func (s ListAccessPreviewsInput) GoString() string
- func (s *ListAccessPreviewsInput) SetAnalyzerArn(v string) *ListAccessPreviewsInput
- func (s *ListAccessPreviewsInput) SetMaxResults(v int64) *ListAccessPreviewsInput
- func (s *ListAccessPreviewsInput) SetNextToken(v string) *ListAccessPreviewsInput
- func (s ListAccessPreviewsInput) String() string
- func (s *ListAccessPreviewsInput) Validate() error
- type ListAccessPreviewsOutput
- type ListAnalyzedResourcesInput
- func (s ListAnalyzedResourcesInput) GoString() string
- func (s *ListAnalyzedResourcesInput) SetAnalyzerArn(v string) *ListAnalyzedResourcesInput
- func (s *ListAnalyzedResourcesInput) SetMaxResults(v int64) *ListAnalyzedResourcesInput
- func (s *ListAnalyzedResourcesInput) SetNextToken(v string) *ListAnalyzedResourcesInput
- func (s *ListAnalyzedResourcesInput) SetResourceType(v string) *ListAnalyzedResourcesInput
- func (s ListAnalyzedResourcesInput) String() string
- func (s *ListAnalyzedResourcesInput) Validate() error
- type ListAnalyzedResourcesOutput
- func (s ListAnalyzedResourcesOutput) GoString() string
- func (s *ListAnalyzedResourcesOutput) SetAnalyzedResources(v []*AnalyzedResourceSummary) *ListAnalyzedResourcesOutput
- func (s *ListAnalyzedResourcesOutput) SetNextToken(v string) *ListAnalyzedResourcesOutput
- func (s ListAnalyzedResourcesOutput) String() string
- type ListAnalyzersInput
- func (s ListAnalyzersInput) GoString() string
- func (s *ListAnalyzersInput) SetMaxResults(v int64) *ListAnalyzersInput
- func (s *ListAnalyzersInput) SetNextToken(v string) *ListAnalyzersInput
- func (s *ListAnalyzersInput) SetType(v string) *ListAnalyzersInput
- func (s ListAnalyzersInput) String() string
- type ListAnalyzersOutput
- type ListArchiveRulesInput
- func (s ListArchiveRulesInput) GoString() string
- func (s *ListArchiveRulesInput) SetAnalyzerName(v string) *ListArchiveRulesInput
- func (s *ListArchiveRulesInput) SetMaxResults(v int64) *ListArchiveRulesInput
- func (s *ListArchiveRulesInput) SetNextToken(v string) *ListArchiveRulesInput
- func (s ListArchiveRulesInput) String() string
- func (s *ListArchiveRulesInput) Validate() error
- type ListArchiveRulesOutput
- type ListFindingsInput
- func (s ListFindingsInput) GoString() string
- func (s *ListFindingsInput) SetAnalyzerArn(v string) *ListFindingsInput
- func (s *ListFindingsInput) SetFilter(v map[string]*Criterion) *ListFindingsInput
- func (s *ListFindingsInput) SetMaxResults(v int64) *ListFindingsInput
- func (s *ListFindingsInput) SetNextToken(v string) *ListFindingsInput
- func (s *ListFindingsInput) SetSort(v *SortCriteria) *ListFindingsInput
- func (s ListFindingsInput) String() string
- func (s *ListFindingsInput) Validate() error
- type ListFindingsOutput
- type ListFindingsV2Input
- func (s ListFindingsV2Input) GoString() string
- func (s *ListFindingsV2Input) SetAnalyzerArn(v string) *ListFindingsV2Input
- func (s *ListFindingsV2Input) SetFilter(v map[string]*Criterion) *ListFindingsV2Input
- func (s *ListFindingsV2Input) SetMaxResults(v int64) *ListFindingsV2Input
- func (s *ListFindingsV2Input) SetNextToken(v string) *ListFindingsV2Input
- func (s *ListFindingsV2Input) SetSort(v *SortCriteria) *ListFindingsV2Input
- func (s ListFindingsV2Input) String() string
- func (s *ListFindingsV2Input) Validate() error
- type ListFindingsV2Output
- type ListPolicyGenerationsInput
- func (s ListPolicyGenerationsInput) GoString() string
- func (s *ListPolicyGenerationsInput) SetMaxResults(v int64) *ListPolicyGenerationsInput
- func (s *ListPolicyGenerationsInput) SetNextToken(v string) *ListPolicyGenerationsInput
- func (s *ListPolicyGenerationsInput) SetPrincipalArn(v string) *ListPolicyGenerationsInput
- func (s ListPolicyGenerationsInput) String() string
- func (s *ListPolicyGenerationsInput) Validate() error
- type ListPolicyGenerationsOutput
- func (s ListPolicyGenerationsOutput) GoString() string
- func (s *ListPolicyGenerationsOutput) SetNextToken(v string) *ListPolicyGenerationsOutput
- func (s *ListPolicyGenerationsOutput) SetPolicyGenerations(v []*PolicyGeneration) *ListPolicyGenerationsOutput
- func (s ListPolicyGenerationsOutput) String() string
- type ListTagsForResourceInput
- type ListTagsForResourceOutput
- type Location
- type NetworkOriginConfiguration
- func (s NetworkOriginConfiguration) GoString() string
- func (s *NetworkOriginConfiguration) SetInternetConfiguration(v *InternetConfiguration) *NetworkOriginConfiguration
- func (s *NetworkOriginConfiguration) SetVpcConfiguration(v *VpcConfiguration) *NetworkOriginConfiguration
- func (s NetworkOriginConfiguration) String() string
- func (s *NetworkOriginConfiguration) Validate() error
- type PathElement
- type PolicyGeneration
- func (s PolicyGeneration) GoString() string
- func (s *PolicyGeneration) SetCompletedOn(v time.Time) *PolicyGeneration
- func (s *PolicyGeneration) SetJobId(v string) *PolicyGeneration
- func (s *PolicyGeneration) SetPrincipalArn(v string) *PolicyGeneration
- func (s *PolicyGeneration) SetStartedOn(v time.Time) *PolicyGeneration
- func (s *PolicyGeneration) SetStatus(v string) *PolicyGeneration
- func (s PolicyGeneration) String() string
- type PolicyGenerationDetails
- type Position
- type RdsDbClusterSnapshotAttributeValue
- type RdsDbClusterSnapshotConfiguration
- func (s RdsDbClusterSnapshotConfiguration) GoString() string
- func (s *RdsDbClusterSnapshotConfiguration) SetAttributes(v map[string]*RdsDbClusterSnapshotAttributeValue) *RdsDbClusterSnapshotConfiguration
- func (s *RdsDbClusterSnapshotConfiguration) SetKmsKeyId(v string) *RdsDbClusterSnapshotConfiguration
- func (s RdsDbClusterSnapshotConfiguration) String() string
- type RdsDbSnapshotAttributeValue
- type RdsDbSnapshotConfiguration
- func (s RdsDbSnapshotConfiguration) GoString() string
- func (s *RdsDbSnapshotConfiguration) SetAttributes(v map[string]*RdsDbSnapshotAttributeValue) *RdsDbSnapshotConfiguration
- func (s *RdsDbSnapshotConfiguration) SetKmsKeyId(v string) *RdsDbSnapshotConfiguration
- func (s RdsDbSnapshotConfiguration) String() string
- type ReasonSummary
- type RecommendationError
- type RecommendedStep
- type ResourceNotFoundException
- func (s *ResourceNotFoundException) Code() string
- func (s *ResourceNotFoundException) Error() string
- func (s ResourceNotFoundException) GoString() string
- func (s *ResourceNotFoundException) Message() string
- func (s *ResourceNotFoundException) OrigErr() error
- func (s *ResourceNotFoundException) RequestID() string
- func (s *ResourceNotFoundException) StatusCode() int
- func (s ResourceNotFoundException) String() string
- type S3AccessPointConfiguration
- func (s S3AccessPointConfiguration) GoString() string
- func (s *S3AccessPointConfiguration) SetAccessPointPolicy(v string) *S3AccessPointConfiguration
- func (s *S3AccessPointConfiguration) SetNetworkOrigin(v *NetworkOriginConfiguration) *S3AccessPointConfiguration
- func (s *S3AccessPointConfiguration) SetPublicAccessBlock(v *S3PublicAccessBlockConfiguration) *S3AccessPointConfiguration
- func (s S3AccessPointConfiguration) String() string
- func (s *S3AccessPointConfiguration) Validate() error
- type S3BucketAclGrantConfiguration
- func (s S3BucketAclGrantConfiguration) GoString() string
- func (s *S3BucketAclGrantConfiguration) SetGrantee(v *AclGrantee) *S3BucketAclGrantConfiguration
- func (s *S3BucketAclGrantConfiguration) SetPermission(v string) *S3BucketAclGrantConfiguration
- func (s S3BucketAclGrantConfiguration) String() string
- func (s *S3BucketAclGrantConfiguration) Validate() error
- type S3BucketConfiguration
- func (s S3BucketConfiguration) GoString() string
- func (s *S3BucketConfiguration) SetAccessPoints(v map[string]*S3AccessPointConfiguration) *S3BucketConfiguration
- func (s *S3BucketConfiguration) SetBucketAclGrants(v []*S3BucketAclGrantConfiguration) *S3BucketConfiguration
- func (s *S3BucketConfiguration) SetBucketPolicy(v string) *S3BucketConfiguration
- func (s *S3BucketConfiguration) SetBucketPublicAccessBlock(v *S3PublicAccessBlockConfiguration) *S3BucketConfiguration
- func (s S3BucketConfiguration) String() string
- func (s *S3BucketConfiguration) Validate() error
- type S3ExpressDirectoryBucketConfiguration
- type S3PublicAccessBlockConfiguration
- func (s S3PublicAccessBlockConfiguration) GoString() string
- func (s *S3PublicAccessBlockConfiguration) SetIgnorePublicAcls(v bool) *S3PublicAccessBlockConfiguration
- func (s *S3PublicAccessBlockConfiguration) SetRestrictPublicBuckets(v bool) *S3PublicAccessBlockConfiguration
- func (s S3PublicAccessBlockConfiguration) String() string
- func (s *S3PublicAccessBlockConfiguration) Validate() error
- type SecretsManagerSecretConfiguration
- func (s SecretsManagerSecretConfiguration) GoString() string
- func (s *SecretsManagerSecretConfiguration) SetKmsKeyId(v string) *SecretsManagerSecretConfiguration
- func (s *SecretsManagerSecretConfiguration) SetSecretPolicy(v string) *SecretsManagerSecretConfiguration
- func (s SecretsManagerSecretConfiguration) String() string
- type ServiceQuotaExceededException
- func (s *ServiceQuotaExceededException) Code() string
- func (s *ServiceQuotaExceededException) Error() string
- func (s ServiceQuotaExceededException) GoString() string
- func (s *ServiceQuotaExceededException) Message() string
- func (s *ServiceQuotaExceededException) OrigErr() error
- func (s *ServiceQuotaExceededException) RequestID() string
- func (s *ServiceQuotaExceededException) StatusCode() int
- func (s ServiceQuotaExceededException) String() string
- type SnsTopicConfiguration
- type SortCriteria
- type Span
- type SqsQueueConfiguration
- type StartPolicyGenerationInput
- func (s StartPolicyGenerationInput) GoString() string
- func (s *StartPolicyGenerationInput) SetClientToken(v string) *StartPolicyGenerationInput
- func (s *StartPolicyGenerationInput) SetCloudTrailDetails(v *CloudTrailDetails) *StartPolicyGenerationInput
- func (s *StartPolicyGenerationInput) SetPolicyGenerationDetails(v *PolicyGenerationDetails) *StartPolicyGenerationInput
- func (s StartPolicyGenerationInput) String() string
- func (s *StartPolicyGenerationInput) Validate() error
- type StartPolicyGenerationOutput
- type StartResourceScanInput
- func (s StartResourceScanInput) GoString() string
- func (s *StartResourceScanInput) SetAnalyzerArn(v string) *StartResourceScanInput
- func (s *StartResourceScanInput) SetResourceArn(v string) *StartResourceScanInput
- func (s *StartResourceScanInput) SetResourceOwnerAccount(v string) *StartResourceScanInput
- func (s StartResourceScanInput) String() string
- func (s *StartResourceScanInput) Validate() error
- type StartResourceScanOutput
- type StatusReason
- type Substring
- type TagResourceInput
- type TagResourceOutput
- type ThrottlingException
- func (s *ThrottlingException) Code() string
- func (s *ThrottlingException) Error() string
- func (s ThrottlingException) GoString() string
- func (s *ThrottlingException) Message() string
- func (s *ThrottlingException) OrigErr() error
- func (s *ThrottlingException) RequestID() string
- func (s *ThrottlingException) StatusCode() int
- func (s ThrottlingException) String() string
- type Trail
- type TrailProperties
- type UnprocessableEntityException
- func (s *UnprocessableEntityException) Code() string
- func (s *UnprocessableEntityException) Error() string
- func (s UnprocessableEntityException) GoString() string
- func (s *UnprocessableEntityException) Message() string
- func (s *UnprocessableEntityException) OrigErr() error
- func (s *UnprocessableEntityException) RequestID() string
- func (s *UnprocessableEntityException) StatusCode() int
- func (s UnprocessableEntityException) String() string
- type UntagResourceInput
- type UntagResourceOutput
- type UnusedAccessConfiguration
- type UnusedAction
- type UnusedIamRoleDetails
- type UnusedIamUserAccessKeyDetails
- func (s UnusedIamUserAccessKeyDetails) GoString() string
- func (s *UnusedIamUserAccessKeyDetails) SetAccessKeyId(v string) *UnusedIamUserAccessKeyDetails
- func (s *UnusedIamUserAccessKeyDetails) SetLastAccessed(v time.Time) *UnusedIamUserAccessKeyDetails
- func (s UnusedIamUserAccessKeyDetails) String() string
- type UnusedIamUserPasswordDetails
- type UnusedPermissionDetails
- func (s UnusedPermissionDetails) GoString() string
- func (s *UnusedPermissionDetails) SetActions(v []*UnusedAction) *UnusedPermissionDetails
- func (s *UnusedPermissionDetails) SetLastAccessed(v time.Time) *UnusedPermissionDetails
- func (s *UnusedPermissionDetails) SetServiceNamespace(v string) *UnusedPermissionDetails
- func (s UnusedPermissionDetails) String() string
- type UnusedPermissionsRecommendedStep
- func (s UnusedPermissionsRecommendedStep) GoString() string
- func (s *UnusedPermissionsRecommendedStep) SetExistingPolicyId(v string) *UnusedPermissionsRecommendedStep
- func (s *UnusedPermissionsRecommendedStep) SetPolicyUpdatedAt(v time.Time) *UnusedPermissionsRecommendedStep
- func (s *UnusedPermissionsRecommendedStep) SetRecommendedAction(v string) *UnusedPermissionsRecommendedStep
- func (s *UnusedPermissionsRecommendedStep) SetRecommendedPolicy(v string) *UnusedPermissionsRecommendedStep
- func (s UnusedPermissionsRecommendedStep) String() string
- type UpdateArchiveRuleInput
- func (s UpdateArchiveRuleInput) GoString() string
- func (s *UpdateArchiveRuleInput) SetAnalyzerName(v string) *UpdateArchiveRuleInput
- func (s *UpdateArchiveRuleInput) SetClientToken(v string) *UpdateArchiveRuleInput
- func (s *UpdateArchiveRuleInput) SetFilter(v map[string]*Criterion) *UpdateArchiveRuleInput
- func (s *UpdateArchiveRuleInput) SetRuleName(v string) *UpdateArchiveRuleInput
- func (s UpdateArchiveRuleInput) String() string
- func (s *UpdateArchiveRuleInput) Validate() error
- type UpdateArchiveRuleOutput
- type UpdateFindingsInput
- func (s UpdateFindingsInput) GoString() string
- func (s *UpdateFindingsInput) SetAnalyzerArn(v string) *UpdateFindingsInput
- func (s *UpdateFindingsInput) SetClientToken(v string) *UpdateFindingsInput
- func (s *UpdateFindingsInput) SetIds(v []*string) *UpdateFindingsInput
- func (s *UpdateFindingsInput) SetResourceArn(v string) *UpdateFindingsInput
- func (s *UpdateFindingsInput) SetStatus(v string) *UpdateFindingsInput
- func (s UpdateFindingsInput) String() string
- func (s *UpdateFindingsInput) Validate() error
- type UpdateFindingsOutput
- type ValidatePolicyFinding
- func (s ValidatePolicyFinding) GoString() string
- func (s *ValidatePolicyFinding) SetFindingDetails(v string) *ValidatePolicyFinding
- func (s *ValidatePolicyFinding) SetFindingType(v string) *ValidatePolicyFinding
- func (s *ValidatePolicyFinding) SetIssueCode(v string) *ValidatePolicyFinding
- func (s *ValidatePolicyFinding) SetLearnMoreLink(v string) *ValidatePolicyFinding
- func (s *ValidatePolicyFinding) SetLocations(v []*Location) *ValidatePolicyFinding
- func (s ValidatePolicyFinding) String() string
- type ValidatePolicyInput
- func (s ValidatePolicyInput) GoString() string
- func (s *ValidatePolicyInput) SetLocale(v string) *ValidatePolicyInput
- func (s *ValidatePolicyInput) SetMaxResults(v int64) *ValidatePolicyInput
- func (s *ValidatePolicyInput) SetNextToken(v string) *ValidatePolicyInput
- func (s *ValidatePolicyInput) SetPolicyDocument(v string) *ValidatePolicyInput
- func (s *ValidatePolicyInput) SetPolicyType(v string) *ValidatePolicyInput
- func (s *ValidatePolicyInput) SetValidatePolicyResourceType(v string) *ValidatePolicyInput
- func (s ValidatePolicyInput) String() string
- func (s *ValidatePolicyInput) Validate() error
- type ValidatePolicyOutput
- type ValidationException
- func (s *ValidationException) Code() string
- func (s *ValidationException) Error() string
- func (s ValidationException) GoString() string
- func (s *ValidationException) Message() string
- func (s *ValidationException) OrigErr() error
- func (s *ValidationException) RequestID() string
- func (s *ValidationException) StatusCode() int
- func (s ValidationException) String() string
- type ValidationExceptionField
- type VpcConfiguration
Examples ¶
- AccessAnalyzer.CheckAccessNotGranted (Shared00)
- AccessAnalyzer.CheckAccessNotGranted (Shared01)
- AccessAnalyzer.CheckAccessNotGranted (Shared02)
- AccessAnalyzer.CheckNoPublicAccess (Shared00)
- AccessAnalyzer.CheckNoPublicAccess (Shared01)
- AccessAnalyzer.GenerateFindingRecommendation (Shared00)
- AccessAnalyzer.GenerateFindingRecommendation (Shared01)
- AccessAnalyzer.GetFindingRecommendation (Shared00)
- AccessAnalyzer.GetFindingRecommendation (Shared01)
- AccessAnalyzer.GetFindingRecommendation (Shared02)
- AccessAnalyzer.GetFindingRecommendation (Shared03)
Constants ¶
const ( // AccessCheckPolicyTypeIdentityPolicy is a AccessCheckPolicyType enum value AccessCheckPolicyTypeIdentityPolicy = "IDENTITY_POLICY" // AccessCheckPolicyTypeResourcePolicy is a AccessCheckPolicyType enum value AccessCheckPolicyTypeResourcePolicy = "RESOURCE_POLICY" )
const ( // AccessCheckResourceTypeAwsDynamoDbTable is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsDynamoDbTable = "AWS::DynamoDB::Table" // AccessCheckResourceTypeAwsDynamoDbStream is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsDynamoDbStream = "AWS::DynamoDB::Stream" // AccessCheckResourceTypeAwsEfsFileSystem is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsEfsFileSystem = "AWS::EFS::FileSystem" // AccessCheckResourceTypeAwsOpenSearchServiceDomain is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsOpenSearchServiceDomain = "AWS::OpenSearchService::Domain" // AccessCheckResourceTypeAwsKinesisStream is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsKinesisStream = "AWS::Kinesis::Stream" // AccessCheckResourceTypeAwsKinesisStreamConsumer is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsKinesisStreamConsumer = "AWS::Kinesis::StreamConsumer" // AccessCheckResourceTypeAwsKmsKey is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsKmsKey = "AWS::KMS::Key" // AccessCheckResourceTypeAwsLambdaFunction is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsLambdaFunction = "AWS::Lambda::Function" // AccessCheckResourceTypeAwsS3Bucket is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsS3Bucket = "AWS::S3::Bucket" // AccessCheckResourceTypeAwsS3AccessPoint is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsS3AccessPoint = "AWS::S3::AccessPoint" // AccessCheckResourceTypeAwsS3expressDirectoryBucket is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsS3expressDirectoryBucket = "AWS::S3Express::DirectoryBucket" // AccessCheckResourceTypeAwsS3Glacier is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsS3Glacier = "AWS::S3::Glacier" // AccessCheckResourceTypeAwsS3outpostsBucket is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsS3outpostsBucket = "AWS::S3Outposts::Bucket" // AccessCheckResourceTypeAwsS3outpostsAccessPoint is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsS3outpostsAccessPoint = "AWS::S3Outposts::AccessPoint" // AccessCheckResourceTypeAwsSecretsManagerSecret is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsSecretsManagerSecret = "AWS::SecretsManager::Secret" // AccessCheckResourceTypeAwsSnsTopic is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsSnsTopic = "AWS::SNS::Topic" // AccessCheckResourceTypeAwsSqsQueue is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsSqsQueue = "AWS::SQS::Queue" // AccessCheckResourceTypeAwsIamAssumeRolePolicyDocument is a AccessCheckResourceType enum value AccessCheckResourceTypeAwsIamAssumeRolePolicyDocument = "AWS::IAM::AssumeRolePolicyDocument" )
const ( // AccessPreviewStatusCompleted is a AccessPreviewStatus enum value AccessPreviewStatusCompleted = "COMPLETED" // AccessPreviewStatusCreating is a AccessPreviewStatus enum value AccessPreviewStatusCreating = "CREATING" // AccessPreviewStatusFailed is a AccessPreviewStatus enum value AccessPreviewStatusFailed = "FAILED" )
const ( // AccessPreviewStatusReasonCodeInternalError is a AccessPreviewStatusReasonCode enum value AccessPreviewStatusReasonCodeInternalError = "INTERNAL_ERROR" // AccessPreviewStatusReasonCodeInvalidConfiguration is a AccessPreviewStatusReasonCode enum value AccessPreviewStatusReasonCodeInvalidConfiguration = "INVALID_CONFIGURATION" )
const ( // AclPermissionRead is a AclPermission enum value AclPermissionRead = "READ" // AclPermissionWrite is a AclPermission enum value AclPermissionWrite = "WRITE" // AclPermissionReadAcp is a AclPermission enum value AclPermissionReadAcp = "READ_ACP" // AclPermissionWriteAcp is a AclPermission enum value AclPermissionWriteAcp = "WRITE_ACP" // AclPermissionFullControl is a AclPermission enum value AclPermissionFullControl = "FULL_CONTROL" )
const ( // AnalyzerStatusActive is a AnalyzerStatus enum value AnalyzerStatusActive = "ACTIVE" // AnalyzerStatusCreating is a AnalyzerStatus enum value AnalyzerStatusCreating = "CREATING" // AnalyzerStatusDisabled is a AnalyzerStatus enum value AnalyzerStatusDisabled = "DISABLED" // AnalyzerStatusFailed is a AnalyzerStatus enum value AnalyzerStatusFailed = "FAILED" )
const ( // CheckAccessNotGrantedResultPass is a CheckAccessNotGrantedResult enum value CheckAccessNotGrantedResultPass = "PASS" // CheckAccessNotGrantedResultFail is a CheckAccessNotGrantedResult enum value CheckAccessNotGrantedResultFail = "FAIL" )
const ( // CheckNoNewAccessResultPass is a CheckNoNewAccessResult enum value CheckNoNewAccessResultPass = "PASS" // CheckNoNewAccessResultFail is a CheckNoNewAccessResult enum value CheckNoNewAccessResultFail = "FAIL" )
const ( // CheckNoPublicAccessResultPass is a CheckNoPublicAccessResult enum value CheckNoPublicAccessResultPass = "PASS" // CheckNoPublicAccessResultFail is a CheckNoPublicAccessResult enum value CheckNoPublicAccessResultFail = "FAIL" )
const ( // FindingChangeTypeChanged is a FindingChangeType enum value FindingChangeTypeChanged = "CHANGED" // FindingChangeTypeNew is a FindingChangeType enum value FindingChangeTypeNew = "NEW" // FindingChangeTypeUnchanged is a FindingChangeType enum value FindingChangeTypeUnchanged = "UNCHANGED" )
const ( // FindingSourceTypePolicy is a FindingSourceType enum value FindingSourceTypePolicy = "POLICY" // FindingSourceTypeBucketAcl is a FindingSourceType enum value FindingSourceTypeBucketAcl = "BUCKET_ACL" // FindingSourceTypeS3AccessPoint is a FindingSourceType enum value FindingSourceTypeS3AccessPoint = "S3_ACCESS_POINT" // FindingSourceTypeS3AccessPointAccount is a FindingSourceType enum value FindingSourceTypeS3AccessPointAccount = "S3_ACCESS_POINT_ACCOUNT" )
const ( // FindingStatusActive is a FindingStatus enum value FindingStatusActive = "ACTIVE" // FindingStatusArchived is a FindingStatus enum value FindingStatusArchived = "ARCHIVED" // FindingStatusResolved is a FindingStatus enum value FindingStatusResolved = "RESOLVED" )
const ( // FindingStatusUpdateActive is a FindingStatusUpdate enum value FindingStatusUpdateActive = "ACTIVE" // FindingStatusUpdateArchived is a FindingStatusUpdate enum value FindingStatusUpdateArchived = "ARCHIVED" )
const ( // FindingTypeExternalAccess is a FindingType enum value FindingTypeExternalAccess = "ExternalAccess" // FindingTypeUnusedIamrole is a FindingType enum value FindingTypeUnusedIamrole = "UnusedIAMRole" // FindingTypeUnusedIamuserAccessKey is a FindingType enum value FindingTypeUnusedIamuserAccessKey = "UnusedIAMUserAccessKey" // FindingTypeUnusedIamuserPassword is a FindingType enum value FindingTypeUnusedIamuserPassword = "UnusedIAMUserPassword" // FindingTypeUnusedPermission is a FindingType enum value FindingTypeUnusedPermission = "UnusedPermission" )
const ( // JobErrorCodeAuthorizationError is a JobErrorCode enum value JobErrorCodeAuthorizationError = "AUTHORIZATION_ERROR" // JobErrorCodeResourceNotFoundError is a JobErrorCode enum value JobErrorCodeResourceNotFoundError = "RESOURCE_NOT_FOUND_ERROR" // JobErrorCodeServiceQuotaExceededError is a JobErrorCode enum value JobErrorCodeServiceQuotaExceededError = "SERVICE_QUOTA_EXCEEDED_ERROR" // JobErrorCodeServiceError is a JobErrorCode enum value JobErrorCodeServiceError = "SERVICE_ERROR" )
const ( // JobStatusInProgress is a JobStatus enum value JobStatusInProgress = "IN_PROGRESS" // JobStatusSucceeded is a JobStatus enum value JobStatusSucceeded = "SUCCEEDED" // JobStatusFailed is a JobStatus enum value JobStatusFailed = "FAILED" // JobStatusCanceled is a JobStatus enum value JobStatusCanceled = "CANCELED" )
const ( // KmsGrantOperationCreateGrant is a KmsGrantOperation enum value KmsGrantOperationCreateGrant = "CreateGrant" // KmsGrantOperationDecrypt is a KmsGrantOperation enum value KmsGrantOperationDecrypt = "Decrypt" // KmsGrantOperationDescribeKey is a KmsGrantOperation enum value KmsGrantOperationDescribeKey = "DescribeKey" // KmsGrantOperationEncrypt is a KmsGrantOperation enum value KmsGrantOperationEncrypt = "Encrypt" // KmsGrantOperationGenerateDataKey is a KmsGrantOperation enum value KmsGrantOperationGenerateDataKey = "GenerateDataKey" // KmsGrantOperationGenerateDataKeyPair is a KmsGrantOperation enum value KmsGrantOperationGenerateDataKeyPair = "GenerateDataKeyPair" // KmsGrantOperationGenerateDataKeyPairWithoutPlaintext is a KmsGrantOperation enum value KmsGrantOperationGenerateDataKeyPairWithoutPlaintext = "GenerateDataKeyPairWithoutPlaintext" // KmsGrantOperationGenerateDataKeyWithoutPlaintext is a KmsGrantOperation enum value KmsGrantOperationGenerateDataKeyWithoutPlaintext = "GenerateDataKeyWithoutPlaintext" // KmsGrantOperationGetPublicKey is a KmsGrantOperation enum value KmsGrantOperationGetPublicKey = "GetPublicKey" // KmsGrantOperationReEncryptFrom is a KmsGrantOperation enum value KmsGrantOperationReEncryptFrom = "ReEncryptFrom" // KmsGrantOperationReEncryptTo is a KmsGrantOperation enum value KmsGrantOperationReEncryptTo = "ReEncryptTo" // KmsGrantOperationRetireGrant is a KmsGrantOperation enum value KmsGrantOperationRetireGrant = "RetireGrant" // KmsGrantOperationSign is a KmsGrantOperation enum value KmsGrantOperationSign = "Sign" // KmsGrantOperationVerify is a KmsGrantOperation enum value KmsGrantOperationVerify = "Verify" )
const ( // LocaleDe is a Locale enum value LocaleDe = "DE" // LocaleEn is a Locale enum value LocaleEn = "EN" // LocaleEs is a Locale enum value LocaleEs = "ES" // LocaleFr is a Locale enum value LocaleFr = "FR" // LocaleIt is a Locale enum value LocaleIt = "IT" // LocaleJa is a Locale enum value LocaleJa = "JA" // LocaleKo is a Locale enum value LocaleKo = "KO" // LocalePtBr is a Locale enum value LocalePtBr = "PT_BR" // LocaleZhCn is a Locale enum value LocaleZhCn = "ZH_CN" // LocaleZhTw is a Locale enum value LocaleZhTw = "ZH_TW" )
const ( // OrderByAsc is a OrderBy enum value OrderByAsc = "ASC" // OrderByDesc is a OrderBy enum value OrderByDesc = "DESC" )
const ( // PolicyTypeIdentityPolicy is a PolicyType enum value PolicyTypeIdentityPolicy = "IDENTITY_POLICY" // PolicyTypeResourcePolicy is a PolicyType enum value PolicyTypeResourcePolicy = "RESOURCE_POLICY" // PolicyTypeServiceControlPolicy is a PolicyType enum value PolicyTypeServiceControlPolicy = "SERVICE_CONTROL_POLICY" )
const ( // ReasonCodeAwsServiceAccessDisabled is a ReasonCode enum value ReasonCodeAwsServiceAccessDisabled = "AWS_SERVICE_ACCESS_DISABLED" // ReasonCodeDelegatedAdministratorDeregistered is a ReasonCode enum value ReasonCodeDelegatedAdministratorDeregistered = "DELEGATED_ADMINISTRATOR_DEREGISTERED" // ReasonCodeOrganizationDeleted is a ReasonCode enum value ReasonCodeOrganizationDeleted = "ORGANIZATION_DELETED" // ReasonCodeServiceLinkedRoleCreationFailed is a ReasonCode enum value ReasonCodeServiceLinkedRoleCreationFailed = "SERVICE_LINKED_ROLE_CREATION_FAILED" )
const ( // RecommendedRemediationActionCreatePolicy is a RecommendedRemediationAction enum value RecommendedRemediationActionCreatePolicy = "CREATE_POLICY" // RecommendedRemediationActionDetachPolicy is a RecommendedRemediationAction enum value RecommendedRemediationActionDetachPolicy = "DETACH_POLICY" )
const ( // ResourceTypeAwsS3Bucket is a ResourceType enum value ResourceTypeAwsS3Bucket = "AWS::S3::Bucket" // ResourceTypeAwsIamRole is a ResourceType enum value ResourceTypeAwsIamRole = "AWS::IAM::Role" // ResourceTypeAwsSqsQueue is a ResourceType enum value ResourceTypeAwsSqsQueue = "AWS::SQS::Queue" // ResourceTypeAwsLambdaFunction is a ResourceType enum value ResourceTypeAwsLambdaFunction = "AWS::Lambda::Function" // ResourceTypeAwsLambdaLayerVersion is a ResourceType enum value ResourceTypeAwsLambdaLayerVersion = "AWS::Lambda::LayerVersion" // ResourceTypeAwsKmsKey is a ResourceType enum value ResourceTypeAwsKmsKey = "AWS::KMS::Key" // ResourceTypeAwsSecretsManagerSecret is a ResourceType enum value ResourceTypeAwsSecretsManagerSecret = "AWS::SecretsManager::Secret" // ResourceTypeAwsEfsFileSystem is a ResourceType enum value ResourceTypeAwsEfsFileSystem = "AWS::EFS::FileSystem" // ResourceTypeAwsEc2Snapshot is a ResourceType enum value ResourceTypeAwsEc2Snapshot = "AWS::EC2::Snapshot" // ResourceTypeAwsEcrRepository is a ResourceType enum value ResourceTypeAwsEcrRepository = "AWS::ECR::Repository" // ResourceTypeAwsRdsDbsnapshot is a ResourceType enum value ResourceTypeAwsRdsDbsnapshot = "AWS::RDS::DBSnapshot" // ResourceTypeAwsRdsDbclusterSnapshot is a ResourceType enum value ResourceTypeAwsRdsDbclusterSnapshot = "AWS::RDS::DBClusterSnapshot" // ResourceTypeAwsSnsTopic is a ResourceType enum value ResourceTypeAwsSnsTopic = "AWS::SNS::Topic" // ResourceTypeAwsS3expressDirectoryBucket is a ResourceType enum value ResourceTypeAwsS3expressDirectoryBucket = "AWS::S3Express::DirectoryBucket" // ResourceTypeAwsDynamoDbTable is a ResourceType enum value ResourceTypeAwsDynamoDbTable = "AWS::DynamoDB::Table" // ResourceTypeAwsDynamoDbStream is a ResourceType enum value ResourceTypeAwsDynamoDbStream = "AWS::DynamoDB::Stream" )
const ( // StatusSucceeded is a Status enum value StatusSucceeded = "SUCCEEDED" // StatusFailed is a Status enum value StatusFailed = "FAILED" // StatusInProgress is a Status enum value StatusInProgress = "IN_PROGRESS" )
const ( // TypeAccount is a Type enum value TypeAccount = "ACCOUNT" // TypeOrganization is a Type enum value TypeOrganization = "ORGANIZATION" // TypeAccountUnusedAccess is a Type enum value TypeAccountUnusedAccess = "ACCOUNT_UNUSED_ACCESS" // TypeOrganizationUnusedAccess is a Type enum value TypeOrganizationUnusedAccess = "ORGANIZATION_UNUSED_ACCESS" )
const ( // ValidatePolicyFindingTypeError is a ValidatePolicyFindingType enum value ValidatePolicyFindingTypeError = "ERROR" // ValidatePolicyFindingTypeSecurityWarning is a ValidatePolicyFindingType enum value ValidatePolicyFindingTypeSecurityWarning = "SECURITY_WARNING" // ValidatePolicyFindingTypeSuggestion is a ValidatePolicyFindingType enum value ValidatePolicyFindingTypeSuggestion = "SUGGESTION" // ValidatePolicyFindingTypeWarning is a ValidatePolicyFindingType enum value ValidatePolicyFindingTypeWarning = "WARNING" )
const ( // ValidatePolicyResourceTypeAwsS3Bucket is a ValidatePolicyResourceType enum value ValidatePolicyResourceTypeAwsS3Bucket = "AWS::S3::Bucket" // ValidatePolicyResourceTypeAwsS3AccessPoint is a ValidatePolicyResourceType enum value ValidatePolicyResourceTypeAwsS3AccessPoint = "AWS::S3::AccessPoint" // ValidatePolicyResourceTypeAwsS3MultiRegionAccessPoint is a ValidatePolicyResourceType enum value ValidatePolicyResourceTypeAwsS3MultiRegionAccessPoint = "AWS::S3::MultiRegionAccessPoint" // ValidatePolicyResourceTypeAwsS3objectLambdaAccessPoint is a ValidatePolicyResourceType enum value ValidatePolicyResourceTypeAwsS3objectLambdaAccessPoint = "AWS::S3ObjectLambda::AccessPoint" // ValidatePolicyResourceTypeAwsIamAssumeRolePolicyDocument is a ValidatePolicyResourceType enum value ValidatePolicyResourceTypeAwsIamAssumeRolePolicyDocument = "AWS::IAM::AssumeRolePolicyDocument" // ValidatePolicyResourceTypeAwsDynamoDbTable is a ValidatePolicyResourceType enum value ValidatePolicyResourceTypeAwsDynamoDbTable = "AWS::DynamoDB::Table" )
const ( // ValidationExceptionReasonUnknownOperation is a ValidationExceptionReason enum value ValidationExceptionReasonUnknownOperation = "unknownOperation" // ValidationExceptionReasonCannotParse is a ValidationExceptionReason enum value ValidationExceptionReasonCannotParse = "cannotParse" // ValidationExceptionReasonFieldValidationFailed is a ValidationExceptionReason enum value ValidationExceptionReasonFieldValidationFailed = "fieldValidationFailed" // ValidationExceptionReasonOther is a ValidationExceptionReason enum value ValidationExceptionReasonOther = "other" // ValidationExceptionReasonNotSupported is a ValidationExceptionReason enum value ValidationExceptionReasonNotSupported = "notSupported" )
const ( // ErrCodeAccessDeniedException for service response error code // "AccessDeniedException". // // You do not have sufficient access to perform this action. ErrCodeAccessDeniedException = "AccessDeniedException" // ErrCodeConflictException for service response error code // "ConflictException". // // A conflict exception error. ErrCodeConflictException = "ConflictException" // ErrCodeInternalServerException for service response error code // "InternalServerException". // // Internal server error. ErrCodeInternalServerException = "InternalServerException" // ErrCodeInvalidParameterException for service response error code // "InvalidParameterException". // // The specified parameter is invalid. ErrCodeInvalidParameterException = "InvalidParameterException" // ErrCodeResourceNotFoundException for service response error code // "ResourceNotFoundException". // // The specified resource could not be found. ErrCodeResourceNotFoundException = "ResourceNotFoundException" // ErrCodeServiceQuotaExceededException for service response error code // "ServiceQuotaExceededException". // // Service quote met error. ErrCodeServiceQuotaExceededException = "ServiceQuotaExceededException" // ErrCodeThrottlingException for service response error code // "ThrottlingException". // // Throttling limit exceeded error. ErrCodeThrottlingException = "ThrottlingException" // ErrCodeUnprocessableEntityException for service response error code // "UnprocessableEntityException". // // The specified entity could not be processed. ErrCodeUnprocessableEntityException = "UnprocessableEntityException" // ErrCodeValidationException for service response error code // "ValidationException". // // Validation exception error. ErrCodeValidationException = "ValidationException" )
const ( ServiceName = "AccessAnalyzer" // Name of service. EndpointsID = "access-analyzer" // ID to lookup a service endpoint with. ServiceID = "AccessAnalyzer" // ServiceID is a unique identifier of a specific service. )
Service information constants
const (
// RecommendationTypeUnusedPermissionRecommendation is a RecommendationType enum value
RecommendationTypeUnusedPermissionRecommendation = "UnusedPermissionRecommendation"
)
Variables ¶
This section is empty.
Functions ¶
func AccessCheckPolicyType_Values ¶ added in v1.48.4
func AccessCheckPolicyType_Values() []string
AccessCheckPolicyType_Values returns all elements of the AccessCheckPolicyType enum
func AccessCheckResourceType_Values ¶ added in v1.53.21
func AccessCheckResourceType_Values() []string
AccessCheckResourceType_Values returns all elements of the AccessCheckResourceType enum
func AccessPreviewStatusReasonCode_Values ¶ added in v1.37.28
func AccessPreviewStatusReasonCode_Values() []string
AccessPreviewStatusReasonCode_Values returns all elements of the AccessPreviewStatusReasonCode enum
func AccessPreviewStatus_Values ¶ added in v1.37.28
func AccessPreviewStatus_Values() []string
AccessPreviewStatus_Values returns all elements of the AccessPreviewStatus enum
func AclPermission_Values ¶ added in v1.37.28
func AclPermission_Values() []string
AclPermission_Values returns all elements of the AclPermission enum
func AnalyzerStatus_Values ¶ added in v1.34.3
func AnalyzerStatus_Values() []string
AnalyzerStatus_Values returns all elements of the AnalyzerStatus enum
func CheckAccessNotGrantedResult_Values ¶ added in v1.48.4
func CheckAccessNotGrantedResult_Values() []string
CheckAccessNotGrantedResult_Values returns all elements of the CheckAccessNotGrantedResult enum
func CheckNoNewAccessResult_Values ¶ added in v1.48.4
func CheckNoNewAccessResult_Values() []string
CheckNoNewAccessResult_Values returns all elements of the CheckNoNewAccessResult enum
func CheckNoPublicAccessResult_Values ¶ added in v1.53.21
func CheckNoPublicAccessResult_Values() []string
CheckNoPublicAccessResult_Values returns all elements of the CheckNoPublicAccessResult enum
func FindingChangeType_Values ¶ added in v1.37.28
func FindingChangeType_Values() []string
FindingChangeType_Values returns all elements of the FindingChangeType enum
func FindingSourceType_Values ¶ added in v1.34.3
func FindingSourceType_Values() []string
FindingSourceType_Values returns all elements of the FindingSourceType enum
func FindingStatusUpdate_Values ¶ added in v1.34.3
func FindingStatusUpdate_Values() []string
FindingStatusUpdate_Values returns all elements of the FindingStatusUpdate enum
func FindingStatus_Values ¶ added in v1.34.3
func FindingStatus_Values() []string
FindingStatus_Values returns all elements of the FindingStatus enum
func FindingType_Values ¶ added in v1.48.4
func FindingType_Values() []string
FindingType_Values returns all elements of the FindingType enum
func JobErrorCode_Values ¶ added in v1.38.15
func JobErrorCode_Values() []string
JobErrorCode_Values returns all elements of the JobErrorCode enum
func JobStatus_Values ¶ added in v1.38.15
func JobStatus_Values() []string
JobStatus_Values returns all elements of the JobStatus enum
func KmsGrantOperation_Values ¶ added in v1.37.28
func KmsGrantOperation_Values() []string
KmsGrantOperation_Values returns all elements of the KmsGrantOperation enum
func Locale_Values ¶ added in v1.37.32
func Locale_Values() []string
Locale_Values returns all elements of the Locale enum
func OrderBy_Values ¶ added in v1.34.3
func OrderBy_Values() []string
OrderBy_Values returns all elements of the OrderBy enum
func PolicyType_Values ¶ added in v1.37.32
func PolicyType_Values() []string
PolicyType_Values returns all elements of the PolicyType enum
func ReasonCode_Values ¶ added in v1.34.3
func ReasonCode_Values() []string
ReasonCode_Values returns all elements of the ReasonCode enum
func RecommendationType_Values ¶ added in v1.53.21
func RecommendationType_Values() []string
RecommendationType_Values returns all elements of the RecommendationType enum
func RecommendedRemediationAction_Values ¶ added in v1.53.21
func RecommendedRemediationAction_Values() []string
RecommendedRemediationAction_Values returns all elements of the RecommendedRemediationAction enum
func ResourceType_Values ¶ added in v1.34.3
func ResourceType_Values() []string
ResourceType_Values returns all elements of the ResourceType enum
func Status_Values ¶ added in v1.53.21
func Status_Values() []string
Status_Values returns all elements of the Status enum
func Type_Values ¶ added in v1.34.3
func Type_Values() []string
Type_Values returns all elements of the Type enum
func ValidatePolicyFindingType_Values ¶ added in v1.37.32
func ValidatePolicyFindingType_Values() []string
ValidatePolicyFindingType_Values returns all elements of the ValidatePolicyFindingType enum
func ValidatePolicyResourceType_Values ¶ added in v1.42.16
func ValidatePolicyResourceType_Values() []string
ValidatePolicyResourceType_Values returns all elements of the ValidatePolicyResourceType enum
func ValidationExceptionReason_Values ¶ added in v1.34.3
func ValidationExceptionReason_Values() []string
ValidationExceptionReason_Values returns all elements of the ValidationExceptionReason enum
Types ¶
type Access ¶ added in v1.48.4
type Access struct { // A list of actions for the access permissions. Any strings that can be used // as an action in an IAM policy can be used in the list of actions to check. Actions []*string `locationName:"actions" type:"list"` // A list of resources for the access permissions. Any strings that can be used // as a resource in an IAM policy can be used in the list of resources to check. Resources []*string `locationName:"resources" type:"list"` // contains filtered or unexported fields }
Contains information about actions and resources that define permissions to check against a policy.
func (Access) GoString ¶ added in v1.48.4
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*Access) SetActions ¶ added in v1.48.4
SetActions sets the Actions field's value.
func (*Access) SetResources ¶ added in v1.53.21
SetResources sets the Resources field's value.
type AccessAnalyzer ¶
AccessAnalyzer provides the API operation methods for making requests to Access Analyzer. See this package's package overview docs for details on the service.
AccessAnalyzer methods are safe to use concurrently. It is not safe to modify mutate any of the struct's properties though.
func New ¶
func New(p client.ConfigProvider, cfgs ...*aws.Config) *AccessAnalyzer
New creates a new instance of the AccessAnalyzer client with a session. If additional configuration is needed for the client instance use the optional aws.Config parameter to add your extra config.
Example:
mySession := session.Must(session.NewSession()) // Create a AccessAnalyzer client from just a session. svc := accessanalyzer.New(mySession) // Create a AccessAnalyzer client with additional configuration svc := accessanalyzer.New(mySession, aws.NewConfig().WithRegion("us-west-2"))
func (*AccessAnalyzer) ApplyArchiveRule ¶ added in v1.35.8
func (c *AccessAnalyzer) ApplyArchiveRule(input *ApplyArchiveRuleInput) (*ApplyArchiveRuleOutput, error)
ApplyArchiveRule API operation for Access Analyzer.
Retroactively applies the archive rule to existing findings that meet the archive rule criteria.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ApplyArchiveRule for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ApplyArchiveRule
func (*AccessAnalyzer) ApplyArchiveRuleRequest ¶ added in v1.35.8
func (c *AccessAnalyzer) ApplyArchiveRuleRequest(input *ApplyArchiveRuleInput) (req *request.Request, output *ApplyArchiveRuleOutput)
ApplyArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the ApplyArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ApplyArchiveRule for more information on using the ApplyArchiveRule API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ApplyArchiveRuleRequest method. req, resp := client.ApplyArchiveRuleRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ApplyArchiveRule
func (*AccessAnalyzer) ApplyArchiveRuleWithContext ¶ added in v1.35.8
func (c *AccessAnalyzer) ApplyArchiveRuleWithContext(ctx aws.Context, input *ApplyArchiveRuleInput, opts ...request.Option) (*ApplyArchiveRuleOutput, error)
ApplyArchiveRuleWithContext is the same as ApplyArchiveRule with the addition of the ability to pass a context and additional request options.
See ApplyArchiveRule for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) CancelPolicyGeneration ¶ added in v1.38.15
func (c *AccessAnalyzer) CancelPolicyGeneration(input *CancelPolicyGenerationInput) (*CancelPolicyGenerationOutput, error)
CancelPolicyGeneration API operation for Access Analyzer.
Cancels the requested policy generation.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation CancelPolicyGeneration for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CancelPolicyGeneration
func (*AccessAnalyzer) CancelPolicyGenerationRequest ¶ added in v1.38.15
func (c *AccessAnalyzer) CancelPolicyGenerationRequest(input *CancelPolicyGenerationInput) (req *request.Request, output *CancelPolicyGenerationOutput)
CancelPolicyGenerationRequest generates a "aws/request.Request" representing the client's request for the CancelPolicyGeneration operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CancelPolicyGeneration for more information on using the CancelPolicyGeneration API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CancelPolicyGenerationRequest method. req, resp := client.CancelPolicyGenerationRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CancelPolicyGeneration
func (*AccessAnalyzer) CancelPolicyGenerationWithContext ¶ added in v1.38.15
func (c *AccessAnalyzer) CancelPolicyGenerationWithContext(ctx aws.Context, input *CancelPolicyGenerationInput, opts ...request.Option) (*CancelPolicyGenerationOutput, error)
CancelPolicyGenerationWithContext is the same as CancelPolicyGeneration with the addition of the ability to pass a context and additional request options.
See CancelPolicyGeneration for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) CheckAccessNotGranted ¶ added in v1.48.4
func (c *AccessAnalyzer) CheckAccessNotGranted(input *CheckAccessNotGrantedInput) (*CheckAccessNotGrantedOutput, error)
CheckAccessNotGranted API operation for Access Analyzer.
Checks whether the specified access isn't allowed by a policy.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation CheckAccessNotGranted for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
InvalidParameterException The specified parameter is invalid.
UnprocessableEntityException The specified entity could not be processed.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CheckAccessNotGranted
func (*AccessAnalyzer) CheckAccessNotGrantedRequest ¶ added in v1.48.4
func (c *AccessAnalyzer) CheckAccessNotGrantedRequest(input *CheckAccessNotGrantedInput) (req *request.Request, output *CheckAccessNotGrantedOutput)
CheckAccessNotGrantedRequest generates a "aws/request.Request" representing the client's request for the CheckAccessNotGranted operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CheckAccessNotGranted for more information on using the CheckAccessNotGranted API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CheckAccessNotGrantedRequest method. req, resp := client.CheckAccessNotGrantedRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CheckAccessNotGranted
func (*AccessAnalyzer) CheckAccessNotGrantedWithContext ¶ added in v1.48.4
func (c *AccessAnalyzer) CheckAccessNotGrantedWithContext(ctx aws.Context, input *CheckAccessNotGrantedInput, opts ...request.Option) (*CheckAccessNotGrantedOutput, error)
CheckAccessNotGrantedWithContext is the same as CheckAccessNotGranted with the addition of the ability to pass a context and additional request options.
See CheckAccessNotGranted for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) CheckNoNewAccess ¶ added in v1.48.4
func (c *AccessAnalyzer) CheckNoNewAccess(input *CheckNoNewAccessInput) (*CheckNoNewAccessOutput, error)
CheckNoNewAccess API operation for Access Analyzer.
Checks whether new access is allowed for an updated policy when compared to the existing policy.
You can find examples for reference policies and learn how to set up and run a custom policy check for new access in the IAM Access Analyzer custom policy checks samples (https://github.com/aws-samples/iam-access-analyzer-custom-policy-check-samples) repository on GitHub. The reference policies in this repository are meant to be passed to the existingPolicyDocument request parameter.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation CheckNoNewAccess for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
InvalidParameterException The specified parameter is invalid.
UnprocessableEntityException The specified entity could not be processed.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CheckNoNewAccess
func (*AccessAnalyzer) CheckNoNewAccessRequest ¶ added in v1.48.4
func (c *AccessAnalyzer) CheckNoNewAccessRequest(input *CheckNoNewAccessInput) (req *request.Request, output *CheckNoNewAccessOutput)
CheckNoNewAccessRequest generates a "aws/request.Request" representing the client's request for the CheckNoNewAccess operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CheckNoNewAccess for more information on using the CheckNoNewAccess API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CheckNoNewAccessRequest method. req, resp := client.CheckNoNewAccessRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CheckNoNewAccess
func (*AccessAnalyzer) CheckNoNewAccessWithContext ¶ added in v1.48.4
func (c *AccessAnalyzer) CheckNoNewAccessWithContext(ctx aws.Context, input *CheckNoNewAccessInput, opts ...request.Option) (*CheckNoNewAccessOutput, error)
CheckNoNewAccessWithContext is the same as CheckNoNewAccess with the addition of the ability to pass a context and additional request options.
See CheckNoNewAccess for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) CheckNoPublicAccess ¶ added in v1.53.21
func (c *AccessAnalyzer) CheckNoPublicAccess(input *CheckNoPublicAccessInput) (*CheckNoPublicAccessOutput, error)
CheckNoPublicAccess API operation for Access Analyzer.
Checks whether a resource policy can grant public access to the specified resource type.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation CheckNoPublicAccess for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
InvalidParameterException The specified parameter is invalid.
UnprocessableEntityException The specified entity could not be processed.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CheckNoPublicAccess
func (*AccessAnalyzer) CheckNoPublicAccessRequest ¶ added in v1.53.21
func (c *AccessAnalyzer) CheckNoPublicAccessRequest(input *CheckNoPublicAccessInput) (req *request.Request, output *CheckNoPublicAccessOutput)
CheckNoPublicAccessRequest generates a "aws/request.Request" representing the client's request for the CheckNoPublicAccess operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CheckNoPublicAccess for more information on using the CheckNoPublicAccess API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CheckNoPublicAccessRequest method. req, resp := client.CheckNoPublicAccessRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CheckNoPublicAccess
func (*AccessAnalyzer) CheckNoPublicAccessWithContext ¶ added in v1.53.21
func (c *AccessAnalyzer) CheckNoPublicAccessWithContext(ctx aws.Context, input *CheckNoPublicAccessInput, opts ...request.Option) (*CheckNoPublicAccessOutput, error)
CheckNoPublicAccessWithContext is the same as CheckNoPublicAccess with the addition of the ability to pass a context and additional request options.
See CheckNoPublicAccess for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) CreateAccessPreview ¶ added in v1.37.28
func (c *AccessAnalyzer) CreateAccessPreview(input *CreateAccessPreviewInput) (*CreateAccessPreviewOutput, error)
CreateAccessPreview API operation for Access Analyzer.
Creates an access preview that allows you to preview IAM Access Analyzer findings for your resource before deploying resource permissions.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation CreateAccessPreview for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ConflictException A conflict exception error.
ValidationException Validation exception error.
InternalServerException Internal server error.
ServiceQuotaExceededException Service quote met error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAccessPreview
func (*AccessAnalyzer) CreateAccessPreviewRequest ¶ added in v1.37.28
func (c *AccessAnalyzer) CreateAccessPreviewRequest(input *CreateAccessPreviewInput) (req *request.Request, output *CreateAccessPreviewOutput)
CreateAccessPreviewRequest generates a "aws/request.Request" representing the client's request for the CreateAccessPreview operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateAccessPreview for more information on using the CreateAccessPreview API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateAccessPreviewRequest method. req, resp := client.CreateAccessPreviewRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAccessPreview
func (*AccessAnalyzer) CreateAccessPreviewWithContext ¶ added in v1.37.28
func (c *AccessAnalyzer) CreateAccessPreviewWithContext(ctx aws.Context, input *CreateAccessPreviewInput, opts ...request.Option) (*CreateAccessPreviewOutput, error)
CreateAccessPreviewWithContext is the same as CreateAccessPreview with the addition of the ability to pass a context and additional request options.
See CreateAccessPreview for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) CreateAnalyzer ¶
func (c *AccessAnalyzer) CreateAnalyzer(input *CreateAnalyzerInput) (*CreateAnalyzerOutput, error)
CreateAnalyzer API operation for Access Analyzer.
Creates an analyzer for your account.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation CreateAnalyzer for usage and error information.
Returned Error Types:
ConflictException A conflict exception error.
ValidationException Validation exception error.
InternalServerException Internal server error.
ServiceQuotaExceededException Service quote met error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAnalyzer
func (*AccessAnalyzer) CreateAnalyzerRequest ¶
func (c *AccessAnalyzer) CreateAnalyzerRequest(input *CreateAnalyzerInput) (req *request.Request, output *CreateAnalyzerOutput)
CreateAnalyzerRequest generates a "aws/request.Request" representing the client's request for the CreateAnalyzer operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateAnalyzer for more information on using the CreateAnalyzer API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateAnalyzerRequest method. req, resp := client.CreateAnalyzerRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAnalyzer
func (*AccessAnalyzer) CreateAnalyzerWithContext ¶
func (c *AccessAnalyzer) CreateAnalyzerWithContext(ctx aws.Context, input *CreateAnalyzerInput, opts ...request.Option) (*CreateAnalyzerOutput, error)
CreateAnalyzerWithContext is the same as CreateAnalyzer with the addition of the ability to pass a context and additional request options.
See CreateAnalyzer for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) CreateArchiveRule ¶
func (c *AccessAnalyzer) CreateArchiveRule(input *CreateArchiveRuleInput) (*CreateArchiveRuleOutput, error)
CreateArchiveRule API operation for Access Analyzer.
Creates an archive rule for the specified analyzer. Archive rules automatically archive new findings that meet the criteria you define when you create the rule.
To learn about filter keys that you can use to create an archive rule, see IAM Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation CreateArchiveRule for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ConflictException A conflict exception error.
ValidationException Validation exception error.
InternalServerException Internal server error.
ServiceQuotaExceededException Service quote met error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateArchiveRule
func (*AccessAnalyzer) CreateArchiveRuleRequest ¶
func (c *AccessAnalyzer) CreateArchiveRuleRequest(input *CreateArchiveRuleInput) (req *request.Request, output *CreateArchiveRuleOutput)
CreateArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the CreateArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateArchiveRule for more information on using the CreateArchiveRule API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateArchiveRuleRequest method. req, resp := client.CreateArchiveRuleRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateArchiveRule
func (*AccessAnalyzer) CreateArchiveRuleWithContext ¶
func (c *AccessAnalyzer) CreateArchiveRuleWithContext(ctx aws.Context, input *CreateArchiveRuleInput, opts ...request.Option) (*CreateArchiveRuleOutput, error)
CreateArchiveRuleWithContext is the same as CreateArchiveRule with the addition of the ability to pass a context and additional request options.
See CreateArchiveRule for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) DeleteAnalyzer ¶
func (c *AccessAnalyzer) DeleteAnalyzer(input *DeleteAnalyzerInput) (*DeleteAnalyzerOutput, error)
DeleteAnalyzer API operation for Access Analyzer.
Deletes the specified analyzer. When you delete an analyzer, IAM Access Analyzer is disabled for the account or organization in the current or specific Region. All findings that were generated by the analyzer are deleted. You cannot undo this action.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation DeleteAnalyzer for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteAnalyzer
func (*AccessAnalyzer) DeleteAnalyzerRequest ¶
func (c *AccessAnalyzer) DeleteAnalyzerRequest(input *DeleteAnalyzerInput) (req *request.Request, output *DeleteAnalyzerOutput)
DeleteAnalyzerRequest generates a "aws/request.Request" representing the client's request for the DeleteAnalyzer operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteAnalyzer for more information on using the DeleteAnalyzer API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteAnalyzerRequest method. req, resp := client.DeleteAnalyzerRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteAnalyzer
func (*AccessAnalyzer) DeleteAnalyzerWithContext ¶
func (c *AccessAnalyzer) DeleteAnalyzerWithContext(ctx aws.Context, input *DeleteAnalyzerInput, opts ...request.Option) (*DeleteAnalyzerOutput, error)
DeleteAnalyzerWithContext is the same as DeleteAnalyzer with the addition of the ability to pass a context and additional request options.
See DeleteAnalyzer for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) DeleteArchiveRule ¶
func (c *AccessAnalyzer) DeleteArchiveRule(input *DeleteArchiveRuleInput) (*DeleteArchiveRuleOutput, error)
DeleteArchiveRule API operation for Access Analyzer.
Deletes the specified archive rule.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation DeleteArchiveRule for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteArchiveRule
func (*AccessAnalyzer) DeleteArchiveRuleRequest ¶
func (c *AccessAnalyzer) DeleteArchiveRuleRequest(input *DeleteArchiveRuleInput) (req *request.Request, output *DeleteArchiveRuleOutput)
DeleteArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the DeleteArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteArchiveRule for more information on using the DeleteArchiveRule API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteArchiveRuleRequest method. req, resp := client.DeleteArchiveRuleRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteArchiveRule
func (*AccessAnalyzer) DeleteArchiveRuleWithContext ¶
func (c *AccessAnalyzer) DeleteArchiveRuleWithContext(ctx aws.Context, input *DeleteArchiveRuleInput, opts ...request.Option) (*DeleteArchiveRuleOutput, error)
DeleteArchiveRuleWithContext is the same as DeleteArchiveRule with the addition of the ability to pass a context and additional request options.
See DeleteArchiveRule for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GenerateFindingRecommendation ¶ added in v1.53.21
func (c *AccessAnalyzer) GenerateFindingRecommendation(input *GenerateFindingRecommendationInput) (*GenerateFindingRecommendationOutput, error)
GenerateFindingRecommendation API operation for Access Analyzer.
Creates a recommendation for an unused permissions finding.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GenerateFindingRecommendation for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GenerateFindingRecommendation
func (*AccessAnalyzer) GenerateFindingRecommendationRequest ¶ added in v1.53.21
func (c *AccessAnalyzer) GenerateFindingRecommendationRequest(input *GenerateFindingRecommendationInput) (req *request.Request, output *GenerateFindingRecommendationOutput)
GenerateFindingRecommendationRequest generates a "aws/request.Request" representing the client's request for the GenerateFindingRecommendation operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GenerateFindingRecommendation for more information on using the GenerateFindingRecommendation API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GenerateFindingRecommendationRequest method. req, resp := client.GenerateFindingRecommendationRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GenerateFindingRecommendation
func (*AccessAnalyzer) GenerateFindingRecommendationWithContext ¶ added in v1.53.21
func (c *AccessAnalyzer) GenerateFindingRecommendationWithContext(ctx aws.Context, input *GenerateFindingRecommendationInput, opts ...request.Option) (*GenerateFindingRecommendationOutput, error)
GenerateFindingRecommendationWithContext is the same as GenerateFindingRecommendation with the addition of the ability to pass a context and additional request options.
See GenerateFindingRecommendation for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetAccessPreview ¶ added in v1.37.28
func (c *AccessAnalyzer) GetAccessPreview(input *GetAccessPreviewInput) (*GetAccessPreviewOutput, error)
GetAccessPreview API operation for Access Analyzer.
Retrieves information about an access preview for the specified analyzer.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetAccessPreview for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAccessPreview
func (*AccessAnalyzer) GetAccessPreviewRequest ¶ added in v1.37.28
func (c *AccessAnalyzer) GetAccessPreviewRequest(input *GetAccessPreviewInput) (req *request.Request, output *GetAccessPreviewOutput)
GetAccessPreviewRequest generates a "aws/request.Request" representing the client's request for the GetAccessPreview operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetAccessPreview for more information on using the GetAccessPreview API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetAccessPreviewRequest method. req, resp := client.GetAccessPreviewRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAccessPreview
func (*AccessAnalyzer) GetAccessPreviewWithContext ¶ added in v1.37.28
func (c *AccessAnalyzer) GetAccessPreviewWithContext(ctx aws.Context, input *GetAccessPreviewInput, opts ...request.Option) (*GetAccessPreviewOutput, error)
GetAccessPreviewWithContext is the same as GetAccessPreview with the addition of the ability to pass a context and additional request options.
See GetAccessPreview for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetAnalyzedResource ¶
func (c *AccessAnalyzer) GetAnalyzedResource(input *GetAnalyzedResourceInput) (*GetAnalyzedResourceOutput, error)
GetAnalyzedResource API operation for Access Analyzer.
Retrieves information about a resource that was analyzed.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetAnalyzedResource for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzedResource
func (*AccessAnalyzer) GetAnalyzedResourceRequest ¶
func (c *AccessAnalyzer) GetAnalyzedResourceRequest(input *GetAnalyzedResourceInput) (req *request.Request, output *GetAnalyzedResourceOutput)
GetAnalyzedResourceRequest generates a "aws/request.Request" representing the client's request for the GetAnalyzedResource operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetAnalyzedResource for more information on using the GetAnalyzedResource API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetAnalyzedResourceRequest method. req, resp := client.GetAnalyzedResourceRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzedResource
func (*AccessAnalyzer) GetAnalyzedResourceWithContext ¶
func (c *AccessAnalyzer) GetAnalyzedResourceWithContext(ctx aws.Context, input *GetAnalyzedResourceInput, opts ...request.Option) (*GetAnalyzedResourceOutput, error)
GetAnalyzedResourceWithContext is the same as GetAnalyzedResource with the addition of the ability to pass a context and additional request options.
See GetAnalyzedResource for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetAnalyzer ¶
func (c *AccessAnalyzer) GetAnalyzer(input *GetAnalyzerInput) (*GetAnalyzerOutput, error)
GetAnalyzer API operation for Access Analyzer.
Retrieves information about the specified analyzer.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetAnalyzer for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzer
func (*AccessAnalyzer) GetAnalyzerRequest ¶
func (c *AccessAnalyzer) GetAnalyzerRequest(input *GetAnalyzerInput) (req *request.Request, output *GetAnalyzerOutput)
GetAnalyzerRequest generates a "aws/request.Request" representing the client's request for the GetAnalyzer operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetAnalyzer for more information on using the GetAnalyzer API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetAnalyzerRequest method. req, resp := client.GetAnalyzerRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzer
func (*AccessAnalyzer) GetAnalyzerWithContext ¶
func (c *AccessAnalyzer) GetAnalyzerWithContext(ctx aws.Context, input *GetAnalyzerInput, opts ...request.Option) (*GetAnalyzerOutput, error)
GetAnalyzerWithContext is the same as GetAnalyzer with the addition of the ability to pass a context and additional request options.
See GetAnalyzer for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetArchiveRule ¶
func (c *AccessAnalyzer) GetArchiveRule(input *GetArchiveRuleInput) (*GetArchiveRuleOutput, error)
GetArchiveRule API operation for Access Analyzer.
Retrieves information about an archive rule.
To learn about filter keys that you can use to create an archive rule, see IAM Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetArchiveRule for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetArchiveRule
func (*AccessAnalyzer) GetArchiveRuleRequest ¶
func (c *AccessAnalyzer) GetArchiveRuleRequest(input *GetArchiveRuleInput) (req *request.Request, output *GetArchiveRuleOutput)
GetArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the GetArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetArchiveRule for more information on using the GetArchiveRule API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetArchiveRuleRequest method. req, resp := client.GetArchiveRuleRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetArchiveRule
func (*AccessAnalyzer) GetArchiveRuleWithContext ¶
func (c *AccessAnalyzer) GetArchiveRuleWithContext(ctx aws.Context, input *GetArchiveRuleInput, opts ...request.Option) (*GetArchiveRuleOutput, error)
GetArchiveRuleWithContext is the same as GetArchiveRule with the addition of the ability to pass a context and additional request options.
See GetArchiveRule for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetFinding ¶
func (c *AccessAnalyzer) GetFinding(input *GetFindingInput) (*GetFindingOutput, error)
GetFinding API operation for Access Analyzer.
Retrieves information about the specified finding. GetFinding and GetFindingV2 both use access-analyzer:GetFinding in the Action element of an IAM policy statement. You must have permission to perform the access-analyzer:GetFinding action.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetFinding for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFinding
func (*AccessAnalyzer) GetFindingRecommendation ¶ added in v1.53.21
func (c *AccessAnalyzer) GetFindingRecommendation(input *GetFindingRecommendationInput) (*GetFindingRecommendationOutput, error)
GetFindingRecommendation API operation for Access Analyzer.
Retrieves information about a finding recommendation for the specified analyzer.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetFindingRecommendation for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFindingRecommendation
func (*AccessAnalyzer) GetFindingRecommendationPages ¶ added in v1.53.21
func (c *AccessAnalyzer) GetFindingRecommendationPages(input *GetFindingRecommendationInput, fn func(*GetFindingRecommendationOutput, bool) bool) error
GetFindingRecommendationPages iterates over the pages of a GetFindingRecommendation operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See GetFindingRecommendation method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a GetFindingRecommendation operation. pageNum := 0 err := client.GetFindingRecommendationPages(params, func(page *accessanalyzer.GetFindingRecommendationOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) GetFindingRecommendationPagesWithContext ¶ added in v1.53.21
func (c *AccessAnalyzer) GetFindingRecommendationPagesWithContext(ctx aws.Context, input *GetFindingRecommendationInput, fn func(*GetFindingRecommendationOutput, bool) bool, opts ...request.Option) error
GetFindingRecommendationPagesWithContext same as GetFindingRecommendationPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetFindingRecommendationRequest ¶ added in v1.53.21
func (c *AccessAnalyzer) GetFindingRecommendationRequest(input *GetFindingRecommendationInput) (req *request.Request, output *GetFindingRecommendationOutput)
GetFindingRecommendationRequest generates a "aws/request.Request" representing the client's request for the GetFindingRecommendation operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetFindingRecommendation for more information on using the GetFindingRecommendation API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetFindingRecommendationRequest method. req, resp := client.GetFindingRecommendationRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFindingRecommendation
func (*AccessAnalyzer) GetFindingRecommendationWithContext ¶ added in v1.53.21
func (c *AccessAnalyzer) GetFindingRecommendationWithContext(ctx aws.Context, input *GetFindingRecommendationInput, opts ...request.Option) (*GetFindingRecommendationOutput, error)
GetFindingRecommendationWithContext is the same as GetFindingRecommendation with the addition of the ability to pass a context and additional request options.
See GetFindingRecommendation for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetFindingRequest ¶
func (c *AccessAnalyzer) GetFindingRequest(input *GetFindingInput) (req *request.Request, output *GetFindingOutput)
GetFindingRequest generates a "aws/request.Request" representing the client's request for the GetFinding operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetFinding for more information on using the GetFinding API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetFindingRequest method. req, resp := client.GetFindingRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFinding
func (*AccessAnalyzer) GetFindingV2 ¶ added in v1.48.4
func (c *AccessAnalyzer) GetFindingV2(input *GetFindingV2Input) (*GetFindingV2Output, error)
GetFindingV2 API operation for Access Analyzer.
Retrieves information about the specified finding. GetFinding and GetFindingV2 both use access-analyzer:GetFinding in the Action element of an IAM policy statement. You must have permission to perform the access-analyzer:GetFinding action.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetFindingV2 for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFindingV2
func (*AccessAnalyzer) GetFindingV2Pages ¶ added in v1.48.4
func (c *AccessAnalyzer) GetFindingV2Pages(input *GetFindingV2Input, fn func(*GetFindingV2Output, bool) bool) error
GetFindingV2Pages iterates over the pages of a GetFindingV2 operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See GetFindingV2 method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a GetFindingV2 operation. pageNum := 0 err := client.GetFindingV2Pages(params, func(page *accessanalyzer.GetFindingV2Output, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) GetFindingV2PagesWithContext ¶ added in v1.48.4
func (c *AccessAnalyzer) GetFindingV2PagesWithContext(ctx aws.Context, input *GetFindingV2Input, fn func(*GetFindingV2Output, bool) bool, opts ...request.Option) error
GetFindingV2PagesWithContext same as GetFindingV2Pages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetFindingV2Request ¶ added in v1.48.4
func (c *AccessAnalyzer) GetFindingV2Request(input *GetFindingV2Input) (req *request.Request, output *GetFindingV2Output)
GetFindingV2Request generates a "aws/request.Request" representing the client's request for the GetFindingV2 operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetFindingV2 for more information on using the GetFindingV2 API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetFindingV2Request method. req, resp := client.GetFindingV2Request(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFindingV2
func (*AccessAnalyzer) GetFindingV2WithContext ¶ added in v1.48.4
func (c *AccessAnalyzer) GetFindingV2WithContext(ctx aws.Context, input *GetFindingV2Input, opts ...request.Option) (*GetFindingV2Output, error)
GetFindingV2WithContext is the same as GetFindingV2 with the addition of the ability to pass a context and additional request options.
See GetFindingV2 for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetFindingWithContext ¶
func (c *AccessAnalyzer) GetFindingWithContext(ctx aws.Context, input *GetFindingInput, opts ...request.Option) (*GetFindingOutput, error)
GetFindingWithContext is the same as GetFinding with the addition of the ability to pass a context and additional request options.
See GetFinding for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) GetGeneratedPolicy ¶ added in v1.38.15
func (c *AccessAnalyzer) GetGeneratedPolicy(input *GetGeneratedPolicyInput) (*GetGeneratedPolicyOutput, error)
GetGeneratedPolicy API operation for Access Analyzer.
Retrieves the policy that was generated using StartPolicyGeneration.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation GetGeneratedPolicy for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetGeneratedPolicy
func (*AccessAnalyzer) GetGeneratedPolicyRequest ¶ added in v1.38.15
func (c *AccessAnalyzer) GetGeneratedPolicyRequest(input *GetGeneratedPolicyInput) (req *request.Request, output *GetGeneratedPolicyOutput)
GetGeneratedPolicyRequest generates a "aws/request.Request" representing the client's request for the GetGeneratedPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See GetGeneratedPolicy for more information on using the GetGeneratedPolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the GetGeneratedPolicyRequest method. req, resp := client.GetGeneratedPolicyRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetGeneratedPolicy
func (*AccessAnalyzer) GetGeneratedPolicyWithContext ¶ added in v1.38.15
func (c *AccessAnalyzer) GetGeneratedPolicyWithContext(ctx aws.Context, input *GetGeneratedPolicyInput, opts ...request.Option) (*GetGeneratedPolicyOutput, error)
GetGeneratedPolicyWithContext is the same as GetGeneratedPolicy with the addition of the ability to pass a context and additional request options.
See GetGeneratedPolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAccessPreviewFindings ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewFindings(input *ListAccessPreviewFindingsInput) (*ListAccessPreviewFindingsOutput, error)
ListAccessPreviewFindings API operation for Access Analyzer.
Retrieves a list of access preview findings generated by the specified access preview.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListAccessPreviewFindings for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ConflictException A conflict exception error.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviewFindings
func (*AccessAnalyzer) ListAccessPreviewFindingsPages ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewFindingsPages(input *ListAccessPreviewFindingsInput, fn func(*ListAccessPreviewFindingsOutput, bool) bool) error
ListAccessPreviewFindingsPages iterates over the pages of a ListAccessPreviewFindings operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListAccessPreviewFindings method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListAccessPreviewFindings operation. pageNum := 0 err := client.ListAccessPreviewFindingsPages(params, func(page *accessanalyzer.ListAccessPreviewFindingsOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListAccessPreviewFindingsPagesWithContext ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewFindingsPagesWithContext(ctx aws.Context, input *ListAccessPreviewFindingsInput, fn func(*ListAccessPreviewFindingsOutput, bool) bool, opts ...request.Option) error
ListAccessPreviewFindingsPagesWithContext same as ListAccessPreviewFindingsPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAccessPreviewFindingsRequest ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewFindingsRequest(input *ListAccessPreviewFindingsInput) (req *request.Request, output *ListAccessPreviewFindingsOutput)
ListAccessPreviewFindingsRequest generates a "aws/request.Request" representing the client's request for the ListAccessPreviewFindings operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListAccessPreviewFindings for more information on using the ListAccessPreviewFindings API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListAccessPreviewFindingsRequest method. req, resp := client.ListAccessPreviewFindingsRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviewFindings
func (*AccessAnalyzer) ListAccessPreviewFindingsWithContext ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewFindingsWithContext(ctx aws.Context, input *ListAccessPreviewFindingsInput, opts ...request.Option) (*ListAccessPreviewFindingsOutput, error)
ListAccessPreviewFindingsWithContext is the same as ListAccessPreviewFindings with the addition of the ability to pass a context and additional request options.
See ListAccessPreviewFindings for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAccessPreviews ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviews(input *ListAccessPreviewsInput) (*ListAccessPreviewsOutput, error)
ListAccessPreviews API operation for Access Analyzer.
Retrieves a list of access previews for the specified analyzer.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListAccessPreviews for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviews
func (*AccessAnalyzer) ListAccessPreviewsPages ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewsPages(input *ListAccessPreviewsInput, fn func(*ListAccessPreviewsOutput, bool) bool) error
ListAccessPreviewsPages iterates over the pages of a ListAccessPreviews operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListAccessPreviews method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListAccessPreviews operation. pageNum := 0 err := client.ListAccessPreviewsPages(params, func(page *accessanalyzer.ListAccessPreviewsOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListAccessPreviewsPagesWithContext ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewsPagesWithContext(ctx aws.Context, input *ListAccessPreviewsInput, fn func(*ListAccessPreviewsOutput, bool) bool, opts ...request.Option) error
ListAccessPreviewsPagesWithContext same as ListAccessPreviewsPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAccessPreviewsRequest ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewsRequest(input *ListAccessPreviewsInput) (req *request.Request, output *ListAccessPreviewsOutput)
ListAccessPreviewsRequest generates a "aws/request.Request" representing the client's request for the ListAccessPreviews operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListAccessPreviews for more information on using the ListAccessPreviews API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListAccessPreviewsRequest method. req, resp := client.ListAccessPreviewsRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviews
func (*AccessAnalyzer) ListAccessPreviewsWithContext ¶ added in v1.37.28
func (c *AccessAnalyzer) ListAccessPreviewsWithContext(ctx aws.Context, input *ListAccessPreviewsInput, opts ...request.Option) (*ListAccessPreviewsOutput, error)
ListAccessPreviewsWithContext is the same as ListAccessPreviews with the addition of the ability to pass a context and additional request options.
See ListAccessPreviews for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAnalyzedResources ¶
func (c *AccessAnalyzer) ListAnalyzedResources(input *ListAnalyzedResourcesInput) (*ListAnalyzedResourcesOutput, error)
ListAnalyzedResources API operation for Access Analyzer.
Retrieves a list of resources of the specified type that have been analyzed by the specified external access analyzer. This action is not supported for unused access analyzers.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListAnalyzedResources for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzedResources
func (*AccessAnalyzer) ListAnalyzedResourcesPages ¶
func (c *AccessAnalyzer) ListAnalyzedResourcesPages(input *ListAnalyzedResourcesInput, fn func(*ListAnalyzedResourcesOutput, bool) bool) error
ListAnalyzedResourcesPages iterates over the pages of a ListAnalyzedResources operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListAnalyzedResources method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListAnalyzedResources operation. pageNum := 0 err := client.ListAnalyzedResourcesPages(params, func(page *accessanalyzer.ListAnalyzedResourcesOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListAnalyzedResourcesPagesWithContext ¶
func (c *AccessAnalyzer) ListAnalyzedResourcesPagesWithContext(ctx aws.Context, input *ListAnalyzedResourcesInput, fn func(*ListAnalyzedResourcesOutput, bool) bool, opts ...request.Option) error
ListAnalyzedResourcesPagesWithContext same as ListAnalyzedResourcesPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAnalyzedResourcesRequest ¶
func (c *AccessAnalyzer) ListAnalyzedResourcesRequest(input *ListAnalyzedResourcesInput) (req *request.Request, output *ListAnalyzedResourcesOutput)
ListAnalyzedResourcesRequest generates a "aws/request.Request" representing the client's request for the ListAnalyzedResources operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListAnalyzedResources for more information on using the ListAnalyzedResources API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListAnalyzedResourcesRequest method. req, resp := client.ListAnalyzedResourcesRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzedResources
func (*AccessAnalyzer) ListAnalyzedResourcesWithContext ¶
func (c *AccessAnalyzer) ListAnalyzedResourcesWithContext(ctx aws.Context, input *ListAnalyzedResourcesInput, opts ...request.Option) (*ListAnalyzedResourcesOutput, error)
ListAnalyzedResourcesWithContext is the same as ListAnalyzedResources with the addition of the ability to pass a context and additional request options.
See ListAnalyzedResources for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAnalyzers ¶
func (c *AccessAnalyzer) ListAnalyzers(input *ListAnalyzersInput) (*ListAnalyzersOutput, error)
ListAnalyzers API operation for Access Analyzer.
Retrieves a list of analyzers.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListAnalyzers for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzers
func (*AccessAnalyzer) ListAnalyzersPages ¶
func (c *AccessAnalyzer) ListAnalyzersPages(input *ListAnalyzersInput, fn func(*ListAnalyzersOutput, bool) bool) error
ListAnalyzersPages iterates over the pages of a ListAnalyzers operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListAnalyzers method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListAnalyzers operation. pageNum := 0 err := client.ListAnalyzersPages(params, func(page *accessanalyzer.ListAnalyzersOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListAnalyzersPagesWithContext ¶
func (c *AccessAnalyzer) ListAnalyzersPagesWithContext(ctx aws.Context, input *ListAnalyzersInput, fn func(*ListAnalyzersOutput, bool) bool, opts ...request.Option) error
ListAnalyzersPagesWithContext same as ListAnalyzersPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListAnalyzersRequest ¶
func (c *AccessAnalyzer) ListAnalyzersRequest(input *ListAnalyzersInput) (req *request.Request, output *ListAnalyzersOutput)
ListAnalyzersRequest generates a "aws/request.Request" representing the client's request for the ListAnalyzers operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListAnalyzers for more information on using the ListAnalyzers API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListAnalyzersRequest method. req, resp := client.ListAnalyzersRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzers
func (*AccessAnalyzer) ListAnalyzersWithContext ¶
func (c *AccessAnalyzer) ListAnalyzersWithContext(ctx aws.Context, input *ListAnalyzersInput, opts ...request.Option) (*ListAnalyzersOutput, error)
ListAnalyzersWithContext is the same as ListAnalyzers with the addition of the ability to pass a context and additional request options.
See ListAnalyzers for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListArchiveRules ¶
func (c *AccessAnalyzer) ListArchiveRules(input *ListArchiveRulesInput) (*ListArchiveRulesOutput, error)
ListArchiveRules API operation for Access Analyzer.
Retrieves a list of archive rules created for the specified analyzer.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListArchiveRules for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListArchiveRules
func (*AccessAnalyzer) ListArchiveRulesPages ¶
func (c *AccessAnalyzer) ListArchiveRulesPages(input *ListArchiveRulesInput, fn func(*ListArchiveRulesOutput, bool) bool) error
ListArchiveRulesPages iterates over the pages of a ListArchiveRules operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListArchiveRules method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListArchiveRules operation. pageNum := 0 err := client.ListArchiveRulesPages(params, func(page *accessanalyzer.ListArchiveRulesOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListArchiveRulesPagesWithContext ¶
func (c *AccessAnalyzer) ListArchiveRulesPagesWithContext(ctx aws.Context, input *ListArchiveRulesInput, fn func(*ListArchiveRulesOutput, bool) bool, opts ...request.Option) error
ListArchiveRulesPagesWithContext same as ListArchiveRulesPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListArchiveRulesRequest ¶
func (c *AccessAnalyzer) ListArchiveRulesRequest(input *ListArchiveRulesInput) (req *request.Request, output *ListArchiveRulesOutput)
ListArchiveRulesRequest generates a "aws/request.Request" representing the client's request for the ListArchiveRules operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListArchiveRules for more information on using the ListArchiveRules API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListArchiveRulesRequest method. req, resp := client.ListArchiveRulesRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListArchiveRules
func (*AccessAnalyzer) ListArchiveRulesWithContext ¶
func (c *AccessAnalyzer) ListArchiveRulesWithContext(ctx aws.Context, input *ListArchiveRulesInput, opts ...request.Option) (*ListArchiveRulesOutput, error)
ListArchiveRulesWithContext is the same as ListArchiveRules with the addition of the ability to pass a context and additional request options.
See ListArchiveRules for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListFindings ¶
func (c *AccessAnalyzer) ListFindings(input *ListFindingsInput) (*ListFindingsOutput, error)
ListFindings API operation for Access Analyzer.
Retrieves a list of findings generated by the specified analyzer. ListFindings and ListFindingsV2 both use access-analyzer:ListFindings in the Action element of an IAM policy statement. You must have permission to perform the access-analyzer:ListFindings action.
To learn about filter keys that you can use to retrieve a list of findings, see IAM Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListFindings for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListFindings
func (*AccessAnalyzer) ListFindingsPages ¶
func (c *AccessAnalyzer) ListFindingsPages(input *ListFindingsInput, fn func(*ListFindingsOutput, bool) bool) error
ListFindingsPages iterates over the pages of a ListFindings operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListFindings method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListFindings operation. pageNum := 0 err := client.ListFindingsPages(params, func(page *accessanalyzer.ListFindingsOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListFindingsPagesWithContext ¶
func (c *AccessAnalyzer) ListFindingsPagesWithContext(ctx aws.Context, input *ListFindingsInput, fn func(*ListFindingsOutput, bool) bool, opts ...request.Option) error
ListFindingsPagesWithContext same as ListFindingsPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListFindingsRequest ¶
func (c *AccessAnalyzer) ListFindingsRequest(input *ListFindingsInput) (req *request.Request, output *ListFindingsOutput)
ListFindingsRequest generates a "aws/request.Request" representing the client's request for the ListFindings operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListFindings for more information on using the ListFindings API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListFindingsRequest method. req, resp := client.ListFindingsRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListFindings
func (*AccessAnalyzer) ListFindingsV2 ¶ added in v1.48.4
func (c *AccessAnalyzer) ListFindingsV2(input *ListFindingsV2Input) (*ListFindingsV2Output, error)
ListFindingsV2 API operation for Access Analyzer.
Retrieves a list of findings generated by the specified analyzer. ListFindings and ListFindingsV2 both use access-analyzer:ListFindings in the Action element of an IAM policy statement. You must have permission to perform the access-analyzer:ListFindings action.
To learn about filter keys that you can use to retrieve a list of findings, see IAM Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListFindingsV2 for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListFindingsV2
func (*AccessAnalyzer) ListFindingsV2Pages ¶ added in v1.48.4
func (c *AccessAnalyzer) ListFindingsV2Pages(input *ListFindingsV2Input, fn func(*ListFindingsV2Output, bool) bool) error
ListFindingsV2Pages iterates over the pages of a ListFindingsV2 operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListFindingsV2 method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListFindingsV2 operation. pageNum := 0 err := client.ListFindingsV2Pages(params, func(page *accessanalyzer.ListFindingsV2Output, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListFindingsV2PagesWithContext ¶ added in v1.48.4
func (c *AccessAnalyzer) ListFindingsV2PagesWithContext(ctx aws.Context, input *ListFindingsV2Input, fn func(*ListFindingsV2Output, bool) bool, opts ...request.Option) error
ListFindingsV2PagesWithContext same as ListFindingsV2Pages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListFindingsV2Request ¶ added in v1.48.4
func (c *AccessAnalyzer) ListFindingsV2Request(input *ListFindingsV2Input) (req *request.Request, output *ListFindingsV2Output)
ListFindingsV2Request generates a "aws/request.Request" representing the client's request for the ListFindingsV2 operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListFindingsV2 for more information on using the ListFindingsV2 API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListFindingsV2Request method. req, resp := client.ListFindingsV2Request(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListFindingsV2
func (*AccessAnalyzer) ListFindingsV2WithContext ¶ added in v1.48.4
func (c *AccessAnalyzer) ListFindingsV2WithContext(ctx aws.Context, input *ListFindingsV2Input, opts ...request.Option) (*ListFindingsV2Output, error)
ListFindingsV2WithContext is the same as ListFindingsV2 with the addition of the ability to pass a context and additional request options.
See ListFindingsV2 for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListFindingsWithContext ¶
func (c *AccessAnalyzer) ListFindingsWithContext(ctx aws.Context, input *ListFindingsInput, opts ...request.Option) (*ListFindingsOutput, error)
ListFindingsWithContext is the same as ListFindings with the addition of the ability to pass a context and additional request options.
See ListFindings for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListPolicyGenerations ¶ added in v1.38.15
func (c *AccessAnalyzer) ListPolicyGenerations(input *ListPolicyGenerationsInput) (*ListPolicyGenerationsOutput, error)
ListPolicyGenerations API operation for Access Analyzer.
Lists all of the policy generations requested in the last seven days.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListPolicyGenerations for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListPolicyGenerations
func (*AccessAnalyzer) ListPolicyGenerationsPages ¶ added in v1.38.15
func (c *AccessAnalyzer) ListPolicyGenerationsPages(input *ListPolicyGenerationsInput, fn func(*ListPolicyGenerationsOutput, bool) bool) error
ListPolicyGenerationsPages iterates over the pages of a ListPolicyGenerations operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ListPolicyGenerations method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ListPolicyGenerations operation. pageNum := 0 err := client.ListPolicyGenerationsPages(params, func(page *accessanalyzer.ListPolicyGenerationsOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ListPolicyGenerationsPagesWithContext ¶ added in v1.38.15
func (c *AccessAnalyzer) ListPolicyGenerationsPagesWithContext(ctx aws.Context, input *ListPolicyGenerationsInput, fn func(*ListPolicyGenerationsOutput, bool) bool, opts ...request.Option) error
ListPolicyGenerationsPagesWithContext same as ListPolicyGenerationsPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListPolicyGenerationsRequest ¶ added in v1.38.15
func (c *AccessAnalyzer) ListPolicyGenerationsRequest(input *ListPolicyGenerationsInput) (req *request.Request, output *ListPolicyGenerationsOutput)
ListPolicyGenerationsRequest generates a "aws/request.Request" representing the client's request for the ListPolicyGenerations operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListPolicyGenerations for more information on using the ListPolicyGenerations API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListPolicyGenerationsRequest method. req, resp := client.ListPolicyGenerationsRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListPolicyGenerations
func (*AccessAnalyzer) ListPolicyGenerationsWithContext ¶ added in v1.38.15
func (c *AccessAnalyzer) ListPolicyGenerationsWithContext(ctx aws.Context, input *ListPolicyGenerationsInput, opts ...request.Option) (*ListPolicyGenerationsOutput, error)
ListPolicyGenerationsWithContext is the same as ListPolicyGenerations with the addition of the ability to pass a context and additional request options.
See ListPolicyGenerations for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ListTagsForResource ¶
func (c *AccessAnalyzer) ListTagsForResource(input *ListTagsForResourceInput) (*ListTagsForResourceOutput, error)
ListTagsForResource API operation for Access Analyzer.
Retrieves a list of tags applied to the specified resource.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ListTagsForResource for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListTagsForResource
func (*AccessAnalyzer) ListTagsForResourceRequest ¶
func (c *AccessAnalyzer) ListTagsForResourceRequest(input *ListTagsForResourceInput) (req *request.Request, output *ListTagsForResourceOutput)
ListTagsForResourceRequest generates a "aws/request.Request" representing the client's request for the ListTagsForResource operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ListTagsForResource for more information on using the ListTagsForResource API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ListTagsForResourceRequest method. req, resp := client.ListTagsForResourceRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListTagsForResource
func (*AccessAnalyzer) ListTagsForResourceWithContext ¶
func (c *AccessAnalyzer) ListTagsForResourceWithContext(ctx aws.Context, input *ListTagsForResourceInput, opts ...request.Option) (*ListTagsForResourceOutput, error)
ListTagsForResourceWithContext is the same as ListTagsForResource with the addition of the ability to pass a context and additional request options.
See ListTagsForResource for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) StartPolicyGeneration ¶ added in v1.38.15
func (c *AccessAnalyzer) StartPolicyGeneration(input *StartPolicyGenerationInput) (*StartPolicyGenerationOutput, error)
StartPolicyGeneration API operation for Access Analyzer.
Starts the policy generation request.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation StartPolicyGeneration for usage and error information.
Returned Error Types:
ConflictException A conflict exception error.
ValidationException Validation exception error.
InternalServerException Internal server error.
ServiceQuotaExceededException Service quote met error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartPolicyGeneration
func (*AccessAnalyzer) StartPolicyGenerationRequest ¶ added in v1.38.15
func (c *AccessAnalyzer) StartPolicyGenerationRequest(input *StartPolicyGenerationInput) (req *request.Request, output *StartPolicyGenerationOutput)
StartPolicyGenerationRequest generates a "aws/request.Request" representing the client's request for the StartPolicyGeneration operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See StartPolicyGeneration for more information on using the StartPolicyGeneration API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the StartPolicyGenerationRequest method. req, resp := client.StartPolicyGenerationRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartPolicyGeneration
func (*AccessAnalyzer) StartPolicyGenerationWithContext ¶ added in v1.38.15
func (c *AccessAnalyzer) StartPolicyGenerationWithContext(ctx aws.Context, input *StartPolicyGenerationInput, opts ...request.Option) (*StartPolicyGenerationOutput, error)
StartPolicyGenerationWithContext is the same as StartPolicyGeneration with the addition of the ability to pass a context and additional request options.
See StartPolicyGeneration for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) StartResourceScan ¶
func (c *AccessAnalyzer) StartResourceScan(input *StartResourceScanInput) (*StartResourceScanOutput, error)
StartResourceScan API operation for Access Analyzer.
Immediately starts a scan of the policies applied to the specified resource.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation StartResourceScan for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartResourceScan
func (*AccessAnalyzer) StartResourceScanRequest ¶
func (c *AccessAnalyzer) StartResourceScanRequest(input *StartResourceScanInput) (req *request.Request, output *StartResourceScanOutput)
StartResourceScanRequest generates a "aws/request.Request" representing the client's request for the StartResourceScan operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See StartResourceScan for more information on using the StartResourceScan API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the StartResourceScanRequest method. req, resp := client.StartResourceScanRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartResourceScan
func (*AccessAnalyzer) StartResourceScanWithContext ¶
func (c *AccessAnalyzer) StartResourceScanWithContext(ctx aws.Context, input *StartResourceScanInput, opts ...request.Option) (*StartResourceScanOutput, error)
StartResourceScanWithContext is the same as StartResourceScan with the addition of the ability to pass a context and additional request options.
See StartResourceScan for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) TagResource ¶
func (c *AccessAnalyzer) TagResource(input *TagResourceInput) (*TagResourceOutput, error)
TagResource API operation for Access Analyzer.
Adds a tag to the specified resource.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation TagResource for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/TagResource
func (*AccessAnalyzer) TagResourceRequest ¶
func (c *AccessAnalyzer) TagResourceRequest(input *TagResourceInput) (req *request.Request, output *TagResourceOutput)
TagResourceRequest generates a "aws/request.Request" representing the client's request for the TagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See TagResource for more information on using the TagResource API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the TagResourceRequest method. req, resp := client.TagResourceRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/TagResource
func (*AccessAnalyzer) TagResourceWithContext ¶
func (c *AccessAnalyzer) TagResourceWithContext(ctx aws.Context, input *TagResourceInput, opts ...request.Option) (*TagResourceOutput, error)
TagResourceWithContext is the same as TagResource with the addition of the ability to pass a context and additional request options.
See TagResource for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) UntagResource ¶
func (c *AccessAnalyzer) UntagResource(input *UntagResourceInput) (*UntagResourceOutput, error)
UntagResource API operation for Access Analyzer.
Removes a tag from the specified resource.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation UntagResource for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UntagResource
func (*AccessAnalyzer) UntagResourceRequest ¶
func (c *AccessAnalyzer) UntagResourceRequest(input *UntagResourceInput) (req *request.Request, output *UntagResourceOutput)
UntagResourceRequest generates a "aws/request.Request" representing the client's request for the UntagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See UntagResource for more information on using the UntagResource API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the UntagResourceRequest method. req, resp := client.UntagResourceRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UntagResource
func (*AccessAnalyzer) UntagResourceWithContext ¶
func (c *AccessAnalyzer) UntagResourceWithContext(ctx aws.Context, input *UntagResourceInput, opts ...request.Option) (*UntagResourceOutput, error)
UntagResourceWithContext is the same as UntagResource with the addition of the ability to pass a context and additional request options.
See UntagResource for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) UpdateArchiveRule ¶
func (c *AccessAnalyzer) UpdateArchiveRule(input *UpdateArchiveRuleInput) (*UpdateArchiveRuleOutput, error)
UpdateArchiveRule API operation for Access Analyzer.
Updates the criteria and values for the specified archive rule.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation UpdateArchiveRule for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateArchiveRule
func (*AccessAnalyzer) UpdateArchiveRuleRequest ¶
func (c *AccessAnalyzer) UpdateArchiveRuleRequest(input *UpdateArchiveRuleInput) (req *request.Request, output *UpdateArchiveRuleOutput)
UpdateArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the UpdateArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See UpdateArchiveRule for more information on using the UpdateArchiveRule API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the UpdateArchiveRuleRequest method. req, resp := client.UpdateArchiveRuleRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateArchiveRule
func (*AccessAnalyzer) UpdateArchiveRuleWithContext ¶
func (c *AccessAnalyzer) UpdateArchiveRuleWithContext(ctx aws.Context, input *UpdateArchiveRuleInput, opts ...request.Option) (*UpdateArchiveRuleOutput, error)
UpdateArchiveRuleWithContext is the same as UpdateArchiveRule with the addition of the ability to pass a context and additional request options.
See UpdateArchiveRule for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) UpdateFindings ¶
func (c *AccessAnalyzer) UpdateFindings(input *UpdateFindingsInput) (*UpdateFindingsOutput, error)
UpdateFindings API operation for Access Analyzer.
Updates the status for the specified findings.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation UpdateFindings for usage and error information.
Returned Error Types:
ResourceNotFoundException The specified resource could not be found.
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateFindings
func (*AccessAnalyzer) UpdateFindingsRequest ¶
func (c *AccessAnalyzer) UpdateFindingsRequest(input *UpdateFindingsInput) (req *request.Request, output *UpdateFindingsOutput)
UpdateFindingsRequest generates a "aws/request.Request" representing the client's request for the UpdateFindings operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See UpdateFindings for more information on using the UpdateFindings API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the UpdateFindingsRequest method. req, resp := client.UpdateFindingsRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateFindings
func (*AccessAnalyzer) UpdateFindingsWithContext ¶
func (c *AccessAnalyzer) UpdateFindingsWithContext(ctx aws.Context, input *UpdateFindingsInput, opts ...request.Option) (*UpdateFindingsOutput, error)
UpdateFindingsWithContext is the same as UpdateFindings with the addition of the ability to pass a context and additional request options.
See UpdateFindings for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ValidatePolicy ¶ added in v1.37.32
func (c *AccessAnalyzer) ValidatePolicy(input *ValidatePolicyInput) (*ValidatePolicyOutput, error)
ValidatePolicy API operation for Access Analyzer.
Requests the validation of a policy and returns a list of findings. The findings help you identify issues and provide actionable recommendations to resolve the issue and enable you to author functional policies that meet security best practices.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for Access Analyzer's API operation ValidatePolicy for usage and error information.
Returned Error Types:
ValidationException Validation exception error.
InternalServerException Internal server error.
ThrottlingException Throttling limit exceeded error.
AccessDeniedException You do not have sufficient access to perform this action.
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ValidatePolicy
func (*AccessAnalyzer) ValidatePolicyPages ¶ added in v1.37.32
func (c *AccessAnalyzer) ValidatePolicyPages(input *ValidatePolicyInput, fn func(*ValidatePolicyOutput, bool) bool) error
ValidatePolicyPages iterates over the pages of a ValidatePolicy operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.
See ValidatePolicy method for more information on how to use this operation.
Note: This operation can generate multiple requests to a service.
// Example iterating over at most 3 pages of a ValidatePolicy operation. pageNum := 0 err := client.ValidatePolicyPages(params, func(page *accessanalyzer.ValidatePolicyOutput, lastPage bool) bool { pageNum++ fmt.Println(page) return pageNum <= 3 })
func (*AccessAnalyzer) ValidatePolicyPagesWithContext ¶ added in v1.37.32
func (c *AccessAnalyzer) ValidatePolicyPagesWithContext(ctx aws.Context, input *ValidatePolicyInput, fn func(*ValidatePolicyOutput, bool) bool, opts ...request.Option) error
ValidatePolicyPagesWithContext same as ValidatePolicyPages except it takes a Context and allows setting request options on the pages.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (*AccessAnalyzer) ValidatePolicyRequest ¶ added in v1.37.32
func (c *AccessAnalyzer) ValidatePolicyRequest(input *ValidatePolicyInput) (req *request.Request, output *ValidatePolicyOutput)
ValidatePolicyRequest generates a "aws/request.Request" representing the client's request for the ValidatePolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ValidatePolicy for more information on using the ValidatePolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ValidatePolicyRequest method. req, resp := client.ValidatePolicyRequest(params) err := req.Send() if err == nil { // resp is now filled fmt.Println(resp) }
See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ValidatePolicy
func (*AccessAnalyzer) ValidatePolicyWithContext ¶ added in v1.37.32
func (c *AccessAnalyzer) ValidatePolicyWithContext(ctx aws.Context, input *ValidatePolicyInput, opts ...request.Option) (*ValidatePolicyOutput, error)
ValidatePolicyWithContext is the same as ValidatePolicy with the addition of the ability to pass a context and additional request options.
See ValidatePolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
type AccessDeniedException ¶ added in v1.28.0
type AccessDeniedException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // contains filtered or unexported fields }
You do not have sufficient access to perform this action.
func (*AccessDeniedException) Code ¶ added in v1.28.0
func (s *AccessDeniedException) Code() string
Code returns the exception type name.
func (*AccessDeniedException) Error ¶ added in v1.28.0
func (s *AccessDeniedException) Error() string
func (AccessDeniedException) GoString ¶ added in v1.28.0
func (s AccessDeniedException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AccessDeniedException) Message ¶ added in v1.28.0
func (s *AccessDeniedException) Message() string
Message returns the exception's message.
func (*AccessDeniedException) OrigErr ¶ added in v1.28.0
func (s *AccessDeniedException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*AccessDeniedException) RequestID ¶ added in v1.28.0
func (s *AccessDeniedException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*AccessDeniedException) StatusCode ¶ added in v1.28.0
func (s *AccessDeniedException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (AccessDeniedException) String ¶ added in v1.28.0
func (s AccessDeniedException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AccessPreview ¶ added in v1.37.28
type AccessPreview struct { // The ARN of the analyzer used to generate the access preview. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // A map of resource ARNs for the proposed resource configuration. // // Configurations is a required field Configurations map[string]*Configuration `locationName:"configurations" type:"map" required:"true"` // The time at which the access preview was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The unique ID for the access preview. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // The status of the access preview. // // * Creating - The access preview creation is in progress. // // * Completed - The access preview is complete. You can preview findings // for external access to the resource. // // * Failed - The access preview creation has failed. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"AccessPreviewStatus"` // Provides more details about the current status of the access preview. // // For example, if the creation of the access preview fails, a Failed status // is returned. This failure can be due to an internal issue with the analysis // or due to an invalid resource configuration. StatusReason *AccessPreviewStatusReason `locationName:"statusReason" type:"structure"` // contains filtered or unexported fields }
Contains information about an access preview.
func (AccessPreview) GoString ¶ added in v1.37.28
func (s AccessPreview) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AccessPreview) SetAnalyzerArn ¶ added in v1.37.28
func (s *AccessPreview) SetAnalyzerArn(v string) *AccessPreview
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*AccessPreview) SetConfigurations ¶ added in v1.37.28
func (s *AccessPreview) SetConfigurations(v map[string]*Configuration) *AccessPreview
SetConfigurations sets the Configurations field's value.
func (*AccessPreview) SetCreatedAt ¶ added in v1.37.28
func (s *AccessPreview) SetCreatedAt(v time.Time) *AccessPreview
SetCreatedAt sets the CreatedAt field's value.
func (*AccessPreview) SetId ¶ added in v1.37.28
func (s *AccessPreview) SetId(v string) *AccessPreview
SetId sets the Id field's value.
func (*AccessPreview) SetStatus ¶ added in v1.37.28
func (s *AccessPreview) SetStatus(v string) *AccessPreview
SetStatus sets the Status field's value.
func (*AccessPreview) SetStatusReason ¶ added in v1.37.28
func (s *AccessPreview) SetStatusReason(v *AccessPreviewStatusReason) *AccessPreview
SetStatusReason sets the StatusReason field's value.
func (AccessPreview) String ¶ added in v1.37.28
func (s AccessPreview) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AccessPreviewFinding ¶ added in v1.37.28
type AccessPreviewFinding struct { // The action in the analyzed policy statement that an external principal has // permission to perform. Action []*string `locationName:"action" type:"list"` // Provides context on how the access preview finding compares to existing access // identified in IAM Access Analyzer. // // * New - The finding is for newly-introduced access. // // * Unchanged - The preview finding is an existing finding that would remain // unchanged. // // * Changed - The preview finding is an existing finding with a change in // status. // // For example, a Changed finding with preview status Resolved and existing // status Active indicates the existing Active finding would become Resolved // as a result of the proposed permissions change. // // ChangeType is a required field ChangeType *string `locationName:"changeType" type:"string" required:"true" enum:"FindingChangeType"` // The condition in the analyzed policy statement that resulted in a finding. Condition map[string]*string `locationName:"condition" type:"map"` // The time at which the access preview finding was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // An error. Error *string `locationName:"error" type:"string"` // The existing ID of the finding in IAM Access Analyzer, provided only for // existing findings. ExistingFindingId *string `locationName:"existingFindingId" type:"string"` // The existing status of the finding, provided only for existing findings. ExistingFindingStatus *string `locationName:"existingFindingStatus" type:"string" enum:"FindingStatus"` // The ID of the access preview finding. This ID uniquely identifies the element // in the list of access preview findings and is not related to the finding // ID in Access Analyzer. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // Indicates whether the policy that generated the finding allows public access // to the resource. IsPublic *bool `locationName:"isPublic" type:"boolean"` // The external principal that has access to a resource within the zone of trust. Principal map[string]*string `locationName:"principal" type:"map"` // The resource that an external principal has access to. This is the resource // associated with the access preview. Resource *string `locationName:"resource" type:"string"` // The Amazon Web Services account ID that owns the resource. For most Amazon // Web Services resources, the owning account is the account in which the resource // was created. // // ResourceOwnerAccount is a required field ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"` // The type of the resource that can be accessed in the finding. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"` // The sources of the finding. This indicates how the access that generated // the finding is granted. It is populated for Amazon S3 bucket findings. Sources []*FindingSource `locationName:"sources" type:"list"` // The preview status of the finding. This is what the status of the finding // would be after permissions deployment. For example, a Changed finding with // preview status Resolved and existing status Active indicates the existing // Active finding would become Resolved as a result of the proposed permissions // change. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"` // contains filtered or unexported fields }
An access preview finding generated by the access preview.
func (AccessPreviewFinding) GoString ¶ added in v1.37.28
func (s AccessPreviewFinding) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AccessPreviewFinding) SetAction ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetAction(v []*string) *AccessPreviewFinding
SetAction sets the Action field's value.
func (*AccessPreviewFinding) SetChangeType ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetChangeType(v string) *AccessPreviewFinding
SetChangeType sets the ChangeType field's value.
func (*AccessPreviewFinding) SetCondition ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetCondition(v map[string]*string) *AccessPreviewFinding
SetCondition sets the Condition field's value.
func (*AccessPreviewFinding) SetCreatedAt ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetCreatedAt(v time.Time) *AccessPreviewFinding
SetCreatedAt sets the CreatedAt field's value.
func (*AccessPreviewFinding) SetError ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetError(v string) *AccessPreviewFinding
SetError sets the Error field's value.
func (*AccessPreviewFinding) SetExistingFindingId ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetExistingFindingId(v string) *AccessPreviewFinding
SetExistingFindingId sets the ExistingFindingId field's value.
func (*AccessPreviewFinding) SetExistingFindingStatus ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetExistingFindingStatus(v string) *AccessPreviewFinding
SetExistingFindingStatus sets the ExistingFindingStatus field's value.
func (*AccessPreviewFinding) SetId ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetId(v string) *AccessPreviewFinding
SetId sets the Id field's value.
func (*AccessPreviewFinding) SetIsPublic ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetIsPublic(v bool) *AccessPreviewFinding
SetIsPublic sets the IsPublic field's value.
func (*AccessPreviewFinding) SetPrincipal ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetPrincipal(v map[string]*string) *AccessPreviewFinding
SetPrincipal sets the Principal field's value.
func (*AccessPreviewFinding) SetResource ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetResource(v string) *AccessPreviewFinding
SetResource sets the Resource field's value.
func (*AccessPreviewFinding) SetResourceOwnerAccount ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetResourceOwnerAccount(v string) *AccessPreviewFinding
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (*AccessPreviewFinding) SetResourceType ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetResourceType(v string) *AccessPreviewFinding
SetResourceType sets the ResourceType field's value.
func (*AccessPreviewFinding) SetSources ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetSources(v []*FindingSource) *AccessPreviewFinding
SetSources sets the Sources field's value.
func (*AccessPreviewFinding) SetStatus ¶ added in v1.37.28
func (s *AccessPreviewFinding) SetStatus(v string) *AccessPreviewFinding
SetStatus sets the Status field's value.
func (AccessPreviewFinding) String ¶ added in v1.37.28
func (s AccessPreviewFinding) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AccessPreviewStatusReason ¶ added in v1.37.28
type AccessPreviewStatusReason struct { // The reason code for the current status of the access preview. // // Code is a required field Code *string `locationName:"code" type:"string" required:"true" enum:"AccessPreviewStatusReasonCode"` // contains filtered or unexported fields }
Provides more details about the current status of the access preview. For example, if the creation of the access preview fails, a Failed status is returned. This failure can be due to an internal issue with the analysis or due to an invalid proposed resource configuration.
func (AccessPreviewStatusReason) GoString ¶ added in v1.37.28
func (s AccessPreviewStatusReason) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AccessPreviewStatusReason) SetCode ¶ added in v1.37.28
func (s *AccessPreviewStatusReason) SetCode(v string) *AccessPreviewStatusReason
SetCode sets the Code field's value.
func (AccessPreviewStatusReason) String ¶ added in v1.37.28
func (s AccessPreviewStatusReason) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AccessPreviewSummary ¶ added in v1.37.28
type AccessPreviewSummary struct { // The ARN of the analyzer used to generate the access preview. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // The time at which the access preview was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The unique ID for the access preview. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // The status of the access preview. // // * Creating - The access preview creation is in progress. // // * Completed - The access preview is complete and previews the findings // for external access to the resource. // // * Failed - The access preview creation has failed. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"AccessPreviewStatus"` // Provides more details about the current status of the access preview. For // example, if the creation of the access preview fails, a Failed status is // returned. This failure can be due to an internal issue with the analysis // or due to an invalid proposed resource configuration. StatusReason *AccessPreviewStatusReason `locationName:"statusReason" type:"structure"` // contains filtered or unexported fields }
Contains a summary of information about an access preview.
func (AccessPreviewSummary) GoString ¶ added in v1.37.28
func (s AccessPreviewSummary) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AccessPreviewSummary) SetAnalyzerArn ¶ added in v1.37.28
func (s *AccessPreviewSummary) SetAnalyzerArn(v string) *AccessPreviewSummary
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*AccessPreviewSummary) SetCreatedAt ¶ added in v1.37.28
func (s *AccessPreviewSummary) SetCreatedAt(v time.Time) *AccessPreviewSummary
SetCreatedAt sets the CreatedAt field's value.
func (*AccessPreviewSummary) SetId ¶ added in v1.37.28
func (s *AccessPreviewSummary) SetId(v string) *AccessPreviewSummary
SetId sets the Id field's value.
func (*AccessPreviewSummary) SetStatus ¶ added in v1.37.28
func (s *AccessPreviewSummary) SetStatus(v string) *AccessPreviewSummary
SetStatus sets the Status field's value.
func (*AccessPreviewSummary) SetStatusReason ¶ added in v1.37.28
func (s *AccessPreviewSummary) SetStatusReason(v *AccessPreviewStatusReason) *AccessPreviewSummary
SetStatusReason sets the StatusReason field's value.
func (AccessPreviewSummary) String ¶ added in v1.37.28
func (s AccessPreviewSummary) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AclGrantee ¶ added in v1.37.28
type AclGrantee struct { // The value specified is the canonical user ID of an Amazon Web Services account. Id *string `locationName:"id" type:"string"` // Used for granting permissions to a predefined group. Uri *string `locationName:"uri" type:"string"` // contains filtered or unexported fields }
You specify each grantee as a type-value pair using one of these types. You can specify only one type of grantee. For more information, see PutBucketAcl (https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketAcl.html).
func (AclGrantee) GoString ¶ added in v1.37.28
func (s AclGrantee) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AclGrantee) SetId ¶ added in v1.37.28
func (s *AclGrantee) SetId(v string) *AclGrantee
SetId sets the Id field's value.
func (*AclGrantee) SetUri ¶ added in v1.37.28
func (s *AclGrantee) SetUri(v string) *AclGrantee
SetUri sets the Uri field's value.
func (AclGrantee) String ¶ added in v1.37.28
func (s AclGrantee) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AnalyzedResource ¶
type AnalyzedResource struct { // The actions that an external principal is granted permission to use by the // policy that generated the finding. Actions []*string `locationName:"actions" type:"list"` // The time at which the resource was analyzed. // // AnalyzedAt is a required field AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The time at which the finding was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // An error message. Error *string `locationName:"error" type:"string"` // Indicates whether the policy that generated the finding grants public access // to the resource. // // IsPublic is a required field IsPublic *bool `locationName:"isPublic" type:"boolean" required:"true"` // The ARN of the resource that was analyzed. // // ResourceArn is a required field ResourceArn *string `locationName:"resourceArn" type:"string" required:"true"` // The Amazon Web Services account ID that owns the resource. // // ResourceOwnerAccount is a required field ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"` // The type of the resource that was analyzed. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"` // for Amazon S3 bucket findings. SharedVia []*string `locationName:"sharedVia" type:"list"` // The current status of the finding generated from the analyzed resource. Status *string `locationName:"status" type:"string" enum:"FindingStatus"` // The time at which the finding was updated. // // UpdatedAt is a required field UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // contains filtered or unexported fields }
Contains details about the analyzed resource.
func (AnalyzedResource) GoString ¶
func (s AnalyzedResource) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AnalyzedResource) SetActions ¶
func (s *AnalyzedResource) SetActions(v []*string) *AnalyzedResource
SetActions sets the Actions field's value.
func (*AnalyzedResource) SetAnalyzedAt ¶
func (s *AnalyzedResource) SetAnalyzedAt(v time.Time) *AnalyzedResource
SetAnalyzedAt sets the AnalyzedAt field's value.
func (*AnalyzedResource) SetCreatedAt ¶
func (s *AnalyzedResource) SetCreatedAt(v time.Time) *AnalyzedResource
SetCreatedAt sets the CreatedAt field's value.
func (*AnalyzedResource) SetError ¶
func (s *AnalyzedResource) SetError(v string) *AnalyzedResource
SetError sets the Error field's value.
func (*AnalyzedResource) SetIsPublic ¶
func (s *AnalyzedResource) SetIsPublic(v bool) *AnalyzedResource
SetIsPublic sets the IsPublic field's value.
func (*AnalyzedResource) SetResourceArn ¶
func (s *AnalyzedResource) SetResourceArn(v string) *AnalyzedResource
SetResourceArn sets the ResourceArn field's value.
func (*AnalyzedResource) SetResourceOwnerAccount ¶ added in v1.30.0
func (s *AnalyzedResource) SetResourceOwnerAccount(v string) *AnalyzedResource
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (*AnalyzedResource) SetResourceType ¶
func (s *AnalyzedResource) SetResourceType(v string) *AnalyzedResource
SetResourceType sets the ResourceType field's value.
func (*AnalyzedResource) SetSharedVia ¶
func (s *AnalyzedResource) SetSharedVia(v []*string) *AnalyzedResource
SetSharedVia sets the SharedVia field's value.
func (*AnalyzedResource) SetStatus ¶
func (s *AnalyzedResource) SetStatus(v string) *AnalyzedResource
SetStatus sets the Status field's value.
func (*AnalyzedResource) SetUpdatedAt ¶
func (s *AnalyzedResource) SetUpdatedAt(v time.Time) *AnalyzedResource
SetUpdatedAt sets the UpdatedAt field's value.
func (AnalyzedResource) String ¶
func (s AnalyzedResource) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AnalyzedResourceSummary ¶
type AnalyzedResourceSummary struct { // The ARN of the analyzed resource. // // ResourceArn is a required field ResourceArn *string `locationName:"resourceArn" type:"string" required:"true"` // The Amazon Web Services account ID that owns the resource. // // ResourceOwnerAccount is a required field ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"` // The type of resource that was analyzed. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"` // contains filtered or unexported fields }
Contains the ARN of the analyzed resource.
func (AnalyzedResourceSummary) GoString ¶
func (s AnalyzedResourceSummary) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AnalyzedResourceSummary) SetResourceArn ¶
func (s *AnalyzedResourceSummary) SetResourceArn(v string) *AnalyzedResourceSummary
SetResourceArn sets the ResourceArn field's value.
func (*AnalyzedResourceSummary) SetResourceOwnerAccount ¶ added in v1.30.0
func (s *AnalyzedResourceSummary) SetResourceOwnerAccount(v string) *AnalyzedResourceSummary
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (*AnalyzedResourceSummary) SetResourceType ¶
func (s *AnalyzedResourceSummary) SetResourceType(v string) *AnalyzedResourceSummary
SetResourceType sets the ResourceType field's value.
func (AnalyzedResourceSummary) String ¶
func (s AnalyzedResourceSummary) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AnalyzerConfiguration ¶ added in v1.48.4
type AnalyzerConfiguration struct { // Specifies the configuration of an unused access analyzer for an Amazon Web // Services organization or account. External access analyzers do not support // any configuration. UnusedAccess *UnusedAccessConfiguration `locationName:"unusedAccess" type:"structure"` // contains filtered or unexported fields }
Contains information about the configuration of an unused access analyzer for an Amazon Web Services organization or account.
func (AnalyzerConfiguration) GoString ¶ added in v1.48.4
func (s AnalyzerConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AnalyzerConfiguration) SetUnusedAccess ¶ added in v1.48.4
func (s *AnalyzerConfiguration) SetUnusedAccess(v *UnusedAccessConfiguration) *AnalyzerConfiguration
SetUnusedAccess sets the UnusedAccess field's value.
func (AnalyzerConfiguration) String ¶ added in v1.48.4
func (s AnalyzerConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type AnalyzerSummary ¶
type AnalyzerSummary struct { // The ARN of the analyzer. // // Arn is a required field Arn *string `locationName:"arn" type:"string" required:"true"` // Specifies whether the analyzer is an external access or unused access analyzer. Configuration *AnalyzerConfiguration `locationName:"configuration" type:"structure"` // A timestamp for the time at which the analyzer was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The resource that was most recently analyzed by the analyzer. LastResourceAnalyzed *string `locationName:"lastResourceAnalyzed" type:"string"` // The time at which the most recently analyzed resource was analyzed. LastResourceAnalyzedAt *time.Time `locationName:"lastResourceAnalyzedAt" type:"timestamp" timestampFormat:"iso8601"` // The name of the analyzer. // // Name is a required field Name *string `locationName:"name" min:"1" type:"string" required:"true"` // The status of the analyzer. An Active analyzer successfully monitors supported // resources and generates new findings. The analyzer is Disabled when a user // action, such as removing trusted access for Identity and Access Management // Access Analyzer from Organizations, causes the analyzer to stop generating // new findings. The status is Creating when the analyzer creation is in progress // and Failed when the analyzer creation has failed. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"AnalyzerStatus"` // The statusReason provides more details about the current status of the analyzer. // For example, if the creation for the analyzer fails, a Failed status is returned. // For an analyzer with organization as the type, this failure can be due to // an issue with creating the service-linked roles required in the member accounts // of the Amazon Web Services organization. StatusReason *StatusReason `locationName:"statusReason" type:"structure"` // The tags added to the analyzer. Tags map[string]*string `locationName:"tags" type:"map"` // The type of analyzer, which corresponds to the zone of trust chosen for the // analyzer. // // Type is a required field Type *string `locationName:"type" type:"string" required:"true" enum:"Type"` // contains filtered or unexported fields }
Contains information about the analyzer.
func (AnalyzerSummary) GoString ¶
func (s AnalyzerSummary) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*AnalyzerSummary) SetArn ¶
func (s *AnalyzerSummary) SetArn(v string) *AnalyzerSummary
SetArn sets the Arn field's value.
func (*AnalyzerSummary) SetConfiguration ¶ added in v1.48.4
func (s *AnalyzerSummary) SetConfiguration(v *AnalyzerConfiguration) *AnalyzerSummary
SetConfiguration sets the Configuration field's value.
func (*AnalyzerSummary) SetCreatedAt ¶
func (s *AnalyzerSummary) SetCreatedAt(v time.Time) *AnalyzerSummary
SetCreatedAt sets the CreatedAt field's value.
func (*AnalyzerSummary) SetLastResourceAnalyzed ¶
func (s *AnalyzerSummary) SetLastResourceAnalyzed(v string) *AnalyzerSummary
SetLastResourceAnalyzed sets the LastResourceAnalyzed field's value.
func (*AnalyzerSummary) SetLastResourceAnalyzedAt ¶
func (s *AnalyzerSummary) SetLastResourceAnalyzedAt(v time.Time) *AnalyzerSummary
SetLastResourceAnalyzedAt sets the LastResourceAnalyzedAt field's value.
func (*AnalyzerSummary) SetName ¶
func (s *AnalyzerSummary) SetName(v string) *AnalyzerSummary
SetName sets the Name field's value.
func (*AnalyzerSummary) SetStatus ¶ added in v1.30.0
func (s *AnalyzerSummary) SetStatus(v string) *AnalyzerSummary
SetStatus sets the Status field's value.
func (*AnalyzerSummary) SetStatusReason ¶ added in v1.30.0
func (s *AnalyzerSummary) SetStatusReason(v *StatusReason) *AnalyzerSummary
SetStatusReason sets the StatusReason field's value.
func (*AnalyzerSummary) SetTags ¶
func (s *AnalyzerSummary) SetTags(v map[string]*string) *AnalyzerSummary
SetTags sets the Tags field's value.
func (*AnalyzerSummary) SetType ¶
func (s *AnalyzerSummary) SetType(v string) *AnalyzerSummary
SetType sets the Type field's value.
func (AnalyzerSummary) String ¶
func (s AnalyzerSummary) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ApplyArchiveRuleInput ¶ added in v1.35.8
type ApplyArchiveRuleInput struct { // The Amazon resource name (ARN) of the analyzer. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // A client token. ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"` // The name of the rule to apply. // // RuleName is a required field RuleName *string `locationName:"ruleName" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
Retroactively applies an archive rule.
func (ApplyArchiveRuleInput) GoString ¶ added in v1.35.8
func (s ApplyArchiveRuleInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ApplyArchiveRuleInput) SetAnalyzerArn ¶ added in v1.35.8
func (s *ApplyArchiveRuleInput) SetAnalyzerArn(v string) *ApplyArchiveRuleInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*ApplyArchiveRuleInput) SetClientToken ¶ added in v1.35.8
func (s *ApplyArchiveRuleInput) SetClientToken(v string) *ApplyArchiveRuleInput
SetClientToken sets the ClientToken field's value.
func (*ApplyArchiveRuleInput) SetRuleName ¶ added in v1.35.8
func (s *ApplyArchiveRuleInput) SetRuleName(v string) *ApplyArchiveRuleInput
SetRuleName sets the RuleName field's value.
func (ApplyArchiveRuleInput) String ¶ added in v1.35.8
func (s ApplyArchiveRuleInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ApplyArchiveRuleInput) Validate ¶ added in v1.35.8
func (s *ApplyArchiveRuleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ApplyArchiveRuleOutput ¶ added in v1.35.8
type ApplyArchiveRuleOutput struct {
// contains filtered or unexported fields
}
func (ApplyArchiveRuleOutput) GoString ¶ added in v1.35.8
func (s ApplyArchiveRuleOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (ApplyArchiveRuleOutput) String ¶ added in v1.35.8
func (s ApplyArchiveRuleOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ArchiveRuleSummary ¶
type ArchiveRuleSummary struct { // The time at which the archive rule was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // A filter used to define the archive rule. // // Filter is a required field Filter map[string]*Criterion `locationName:"filter" type:"map" required:"true"` // The name of the archive rule. // // RuleName is a required field RuleName *string `locationName:"ruleName" min:"1" type:"string" required:"true"` // The time at which the archive rule was last updated. // // UpdatedAt is a required field UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // contains filtered or unexported fields }
Contains information about an archive rule.
func (ArchiveRuleSummary) GoString ¶
func (s ArchiveRuleSummary) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ArchiveRuleSummary) SetCreatedAt ¶
func (s *ArchiveRuleSummary) SetCreatedAt(v time.Time) *ArchiveRuleSummary
SetCreatedAt sets the CreatedAt field's value.
func (*ArchiveRuleSummary) SetFilter ¶
func (s *ArchiveRuleSummary) SetFilter(v map[string]*Criterion) *ArchiveRuleSummary
SetFilter sets the Filter field's value.
func (*ArchiveRuleSummary) SetRuleName ¶
func (s *ArchiveRuleSummary) SetRuleName(v string) *ArchiveRuleSummary
SetRuleName sets the RuleName field's value.
func (*ArchiveRuleSummary) SetUpdatedAt ¶
func (s *ArchiveRuleSummary) SetUpdatedAt(v time.Time) *ArchiveRuleSummary
SetUpdatedAt sets the UpdatedAt field's value.
func (ArchiveRuleSummary) String ¶
func (s ArchiveRuleSummary) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CancelPolicyGenerationInput ¶ added in v1.38.15
type CancelPolicyGenerationInput struct { // The JobId that is returned by the StartPolicyGeneration operation. The JobId // can be used with GetGeneratedPolicy to retrieve the generated policies or // used with CancelPolicyGeneration to cancel the policy generation request. // // JobId is a required field JobId *string `location:"uri" locationName:"jobId" type:"string" required:"true"` // contains filtered or unexported fields }
func (CancelPolicyGenerationInput) GoString ¶ added in v1.38.15
func (s CancelPolicyGenerationInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CancelPolicyGenerationInput) SetJobId ¶ added in v1.38.15
func (s *CancelPolicyGenerationInput) SetJobId(v string) *CancelPolicyGenerationInput
SetJobId sets the JobId field's value.
func (CancelPolicyGenerationInput) String ¶ added in v1.38.15
func (s CancelPolicyGenerationInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CancelPolicyGenerationInput) Validate ¶ added in v1.38.15
func (s *CancelPolicyGenerationInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CancelPolicyGenerationOutput ¶ added in v1.38.15
type CancelPolicyGenerationOutput struct {
// contains filtered or unexported fields
}
func (CancelPolicyGenerationOutput) GoString ¶ added in v1.38.15
func (s CancelPolicyGenerationOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (CancelPolicyGenerationOutput) String ¶ added in v1.38.15
func (s CancelPolicyGenerationOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CheckAccessNotGrantedInput ¶ added in v1.48.4
type CheckAccessNotGrantedInput struct { // An access object containing the permissions that shouldn't be granted by // the specified policy. If only actions are specified, IAM Access Analyzer // checks for access of the actions on all resources in the policy. If only // resources are specified, then IAM Access Analyzer checks which actions have // access to the specified resources. If both actions and resources are specified, // then IAM Access Analyzer checks which of the specified actions have access // to the specified resources. // // Access is a required field Access []*Access `locationName:"access" type:"list" required:"true"` // The JSON policy document to use as the content for the policy. // // PolicyDocument is a sensitive parameter and its value will be // replaced with "sensitive" in string returned by CheckAccessNotGrantedInput's // String and GoString methods. // // PolicyDocument is a required field PolicyDocument *string `locationName:"policyDocument" type:"string" required:"true" sensitive:"true"` // The type of policy. Identity policies grant permissions to IAM principals. // Identity policies include managed and inline policies for IAM roles, users, // and groups. // // Resource policies grant permissions on Amazon Web Services resources. Resource // policies include trust policies for IAM roles and bucket policies for Amazon // S3 buckets. You can provide a generic input such as identity policy or resource // policy or a specific input such as managed policy or Amazon S3 bucket policy. // // PolicyType is a required field PolicyType *string `locationName:"policyType" type:"string" required:"true" enum:"AccessCheckPolicyType"` // contains filtered or unexported fields }
func (CheckAccessNotGrantedInput) GoString ¶ added in v1.48.4
func (s CheckAccessNotGrantedInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckAccessNotGrantedInput) SetAccess ¶ added in v1.48.4
func (s *CheckAccessNotGrantedInput) SetAccess(v []*Access) *CheckAccessNotGrantedInput
SetAccess sets the Access field's value.
func (*CheckAccessNotGrantedInput) SetPolicyDocument ¶ added in v1.48.4
func (s *CheckAccessNotGrantedInput) SetPolicyDocument(v string) *CheckAccessNotGrantedInput
SetPolicyDocument sets the PolicyDocument field's value.
func (*CheckAccessNotGrantedInput) SetPolicyType ¶ added in v1.48.4
func (s *CheckAccessNotGrantedInput) SetPolicyType(v string) *CheckAccessNotGrantedInput
SetPolicyType sets the PolicyType field's value.
func (CheckAccessNotGrantedInput) String ¶ added in v1.48.4
func (s CheckAccessNotGrantedInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckAccessNotGrantedInput) Validate ¶ added in v1.48.4
func (s *CheckAccessNotGrantedInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CheckAccessNotGrantedOutput ¶ added in v1.48.4
type CheckAccessNotGrantedOutput struct { // The message indicating whether the specified access is allowed. Message *string `locationName:"message" type:"string"` // A description of the reasoning of the result. Reasons []*ReasonSummary `locationName:"reasons" type:"list"` // The result of the check for whether the access is allowed. If the result // is PASS, the specified policy doesn't allow any of the specified permissions // in the access object. If the result is FAIL, the specified policy might allow // some or all of the permissions in the access object. Result *string `locationName:"result" type:"string" enum:"CheckAccessNotGrantedResult"` // contains filtered or unexported fields }
func (CheckAccessNotGrantedOutput) GoString ¶ added in v1.48.4
func (s CheckAccessNotGrantedOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckAccessNotGrantedOutput) SetMessage ¶ added in v1.48.4
func (s *CheckAccessNotGrantedOutput) SetMessage(v string) *CheckAccessNotGrantedOutput
SetMessage sets the Message field's value.
func (*CheckAccessNotGrantedOutput) SetReasons ¶ added in v1.48.4
func (s *CheckAccessNotGrantedOutput) SetReasons(v []*ReasonSummary) *CheckAccessNotGrantedOutput
SetReasons sets the Reasons field's value.
func (*CheckAccessNotGrantedOutput) SetResult ¶ added in v1.48.4
func (s *CheckAccessNotGrantedOutput) SetResult(v string) *CheckAccessNotGrantedOutput
SetResult sets the Result field's value.
func (CheckAccessNotGrantedOutput) String ¶ added in v1.48.4
func (s CheckAccessNotGrantedOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CheckNoNewAccessInput ¶ added in v1.48.4
type CheckNoNewAccessInput struct { // The JSON policy document to use as the content for the existing policy. // // ExistingPolicyDocument is a sensitive parameter and its value will be // replaced with "sensitive" in string returned by CheckNoNewAccessInput's // String and GoString methods. // // ExistingPolicyDocument is a required field ExistingPolicyDocument *string `locationName:"existingPolicyDocument" type:"string" required:"true" sensitive:"true"` // The JSON policy document to use as the content for the updated policy. // // NewPolicyDocument is a sensitive parameter and its value will be // replaced with "sensitive" in string returned by CheckNoNewAccessInput's // String and GoString methods. // // NewPolicyDocument is a required field NewPolicyDocument *string `locationName:"newPolicyDocument" type:"string" required:"true" sensitive:"true"` // The type of policy to compare. Identity policies grant permissions to IAM // principals. Identity policies include managed and inline policies for IAM // roles, users, and groups. // // Resource policies grant permissions on Amazon Web Services resources. Resource // policies include trust policies for IAM roles and bucket policies for Amazon // S3 buckets. You can provide a generic input such as identity policy or resource // policy or a specific input such as managed policy or Amazon S3 bucket policy. // // PolicyType is a required field PolicyType *string `locationName:"policyType" type:"string" required:"true" enum:"AccessCheckPolicyType"` // contains filtered or unexported fields }
func (CheckNoNewAccessInput) GoString ¶ added in v1.48.4
func (s CheckNoNewAccessInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckNoNewAccessInput) SetExistingPolicyDocument ¶ added in v1.48.4
func (s *CheckNoNewAccessInput) SetExistingPolicyDocument(v string) *CheckNoNewAccessInput
SetExistingPolicyDocument sets the ExistingPolicyDocument field's value.
func (*CheckNoNewAccessInput) SetNewPolicyDocument ¶ added in v1.48.4
func (s *CheckNoNewAccessInput) SetNewPolicyDocument(v string) *CheckNoNewAccessInput
SetNewPolicyDocument sets the NewPolicyDocument field's value.
func (*CheckNoNewAccessInput) SetPolicyType ¶ added in v1.48.4
func (s *CheckNoNewAccessInput) SetPolicyType(v string) *CheckNoNewAccessInput
SetPolicyType sets the PolicyType field's value.
func (CheckNoNewAccessInput) String ¶ added in v1.48.4
func (s CheckNoNewAccessInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckNoNewAccessInput) Validate ¶ added in v1.48.4
func (s *CheckNoNewAccessInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CheckNoNewAccessOutput ¶ added in v1.48.4
type CheckNoNewAccessOutput struct { // The message indicating whether the updated policy allows new access. Message *string `locationName:"message" type:"string"` // A description of the reasoning of the result. Reasons []*ReasonSummary `locationName:"reasons" type:"list"` // The result of the check for new access. If the result is PASS, no new access // is allowed by the updated policy. If the result is FAIL, the updated policy // might allow new access. Result *string `locationName:"result" type:"string" enum:"CheckNoNewAccessResult"` // contains filtered or unexported fields }
func (CheckNoNewAccessOutput) GoString ¶ added in v1.48.4
func (s CheckNoNewAccessOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckNoNewAccessOutput) SetMessage ¶ added in v1.48.4
func (s *CheckNoNewAccessOutput) SetMessage(v string) *CheckNoNewAccessOutput
SetMessage sets the Message field's value.
func (*CheckNoNewAccessOutput) SetReasons ¶ added in v1.48.4
func (s *CheckNoNewAccessOutput) SetReasons(v []*ReasonSummary) *CheckNoNewAccessOutput
SetReasons sets the Reasons field's value.
func (*CheckNoNewAccessOutput) SetResult ¶ added in v1.48.4
func (s *CheckNoNewAccessOutput) SetResult(v string) *CheckNoNewAccessOutput
SetResult sets the Result field's value.
func (CheckNoNewAccessOutput) String ¶ added in v1.48.4
func (s CheckNoNewAccessOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CheckNoPublicAccessInput ¶ added in v1.53.21
type CheckNoPublicAccessInput struct { // The JSON policy document to evaluate for public access. // // PolicyDocument is a sensitive parameter and its value will be // replaced with "sensitive" in string returned by CheckNoPublicAccessInput's // String and GoString methods. // // PolicyDocument is a required field PolicyDocument *string `locationName:"policyDocument" type:"string" required:"true" sensitive:"true"` // The type of resource to evaluate for public access. For example, to check // for public access to Amazon S3 buckets, you can choose AWS::S3::Bucket for // the resource type. // // For resource types not supported as valid values, IAM Access Analyzer will // return an error. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"AccessCheckResourceType"` // contains filtered or unexported fields }
func (CheckNoPublicAccessInput) GoString ¶ added in v1.53.21
func (s CheckNoPublicAccessInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckNoPublicAccessInput) SetPolicyDocument ¶ added in v1.53.21
func (s *CheckNoPublicAccessInput) SetPolicyDocument(v string) *CheckNoPublicAccessInput
SetPolicyDocument sets the PolicyDocument field's value.
func (*CheckNoPublicAccessInput) SetResourceType ¶ added in v1.53.21
func (s *CheckNoPublicAccessInput) SetResourceType(v string) *CheckNoPublicAccessInput
SetResourceType sets the ResourceType field's value.
func (CheckNoPublicAccessInput) String ¶ added in v1.53.21
func (s CheckNoPublicAccessInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckNoPublicAccessInput) Validate ¶ added in v1.53.21
func (s *CheckNoPublicAccessInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CheckNoPublicAccessOutput ¶ added in v1.53.21
type CheckNoPublicAccessOutput struct { // The message indicating whether the specified policy allows public access // to resources. Message *string `locationName:"message" type:"string"` // A list of reasons why the specified resource policy grants public access // for the resource type. Reasons []*ReasonSummary `locationName:"reasons" type:"list"` // The result of the check for public access to the specified resource type. // If the result is PASS, the policy doesn't allow public access to the specified // resource type. If the result is FAIL, the policy might allow public access // to the specified resource type. Result *string `locationName:"result" type:"string" enum:"CheckNoPublicAccessResult"` // contains filtered or unexported fields }
func (CheckNoPublicAccessOutput) GoString ¶ added in v1.53.21
func (s CheckNoPublicAccessOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CheckNoPublicAccessOutput) SetMessage ¶ added in v1.53.21
func (s *CheckNoPublicAccessOutput) SetMessage(v string) *CheckNoPublicAccessOutput
SetMessage sets the Message field's value.
func (*CheckNoPublicAccessOutput) SetReasons ¶ added in v1.53.21
func (s *CheckNoPublicAccessOutput) SetReasons(v []*ReasonSummary) *CheckNoPublicAccessOutput
SetReasons sets the Reasons field's value.
func (*CheckNoPublicAccessOutput) SetResult ¶ added in v1.53.21
func (s *CheckNoPublicAccessOutput) SetResult(v string) *CheckNoPublicAccessOutput
SetResult sets the Result field's value.
func (CheckNoPublicAccessOutput) String ¶ added in v1.53.21
func (s CheckNoPublicAccessOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CloudTrailDetails ¶ added in v1.38.15
type CloudTrailDetails struct { // The ARN of the service role that IAM Access Analyzer uses to access your // CloudTrail trail and service last accessed information. // // AccessRole is a required field AccessRole *string `locationName:"accessRole" type:"string" required:"true"` // The end of the time range for which IAM Access Analyzer reviews your CloudTrail // events. Events with a timestamp after this time are not considered to generate // a policy. If this is not included in the request, the default value is the // current time. EndTime *time.Time `locationName:"endTime" type:"timestamp" timestampFormat:"iso8601"` // The start of the time range for which IAM Access Analyzer reviews your CloudTrail // events. Events with a timestamp before this time are not considered to generate // a policy. // // StartTime is a required field StartTime *time.Time `locationName:"startTime" type:"timestamp" timestampFormat:"iso8601" required:"true"` // A Trail object that contains settings for a trail. // // Trails is a required field Trails []*Trail `locationName:"trails" type:"list" required:"true"` // contains filtered or unexported fields }
Contains information about CloudTrail access.
func (CloudTrailDetails) GoString ¶ added in v1.38.15
func (s CloudTrailDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CloudTrailDetails) SetAccessRole ¶ added in v1.38.15
func (s *CloudTrailDetails) SetAccessRole(v string) *CloudTrailDetails
SetAccessRole sets the AccessRole field's value.
func (*CloudTrailDetails) SetEndTime ¶ added in v1.38.15
func (s *CloudTrailDetails) SetEndTime(v time.Time) *CloudTrailDetails
SetEndTime sets the EndTime field's value.
func (*CloudTrailDetails) SetStartTime ¶ added in v1.38.15
func (s *CloudTrailDetails) SetStartTime(v time.Time) *CloudTrailDetails
SetStartTime sets the StartTime field's value.
func (*CloudTrailDetails) SetTrails ¶ added in v1.38.15
func (s *CloudTrailDetails) SetTrails(v []*Trail) *CloudTrailDetails
SetTrails sets the Trails field's value.
func (CloudTrailDetails) String ¶ added in v1.38.15
func (s CloudTrailDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CloudTrailDetails) Validate ¶ added in v1.38.15
func (s *CloudTrailDetails) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CloudTrailProperties ¶ added in v1.38.15
type CloudTrailProperties struct { // The end of the time range for which IAM Access Analyzer reviews your CloudTrail // events. Events with a timestamp after this time are not considered to generate // a policy. If this is not included in the request, the default value is the // current time. // // EndTime is a required field EndTime *time.Time `locationName:"endTime" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The start of the time range for which IAM Access Analyzer reviews your CloudTrail // events. Events with a timestamp before this time are not considered to generate // a policy. // // StartTime is a required field StartTime *time.Time `locationName:"startTime" type:"timestamp" timestampFormat:"iso8601" required:"true"` // A TrailProperties object that contains settings for trail properties. // // TrailProperties is a required field TrailProperties []*TrailProperties `locationName:"trailProperties" type:"list" required:"true"` // contains filtered or unexported fields }
Contains information about CloudTrail access.
func (CloudTrailProperties) GoString ¶ added in v1.38.15
func (s CloudTrailProperties) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CloudTrailProperties) SetEndTime ¶ added in v1.38.15
func (s *CloudTrailProperties) SetEndTime(v time.Time) *CloudTrailProperties
SetEndTime sets the EndTime field's value.
func (*CloudTrailProperties) SetStartTime ¶ added in v1.38.15
func (s *CloudTrailProperties) SetStartTime(v time.Time) *CloudTrailProperties
SetStartTime sets the StartTime field's value.
func (*CloudTrailProperties) SetTrailProperties ¶ added in v1.38.15
func (s *CloudTrailProperties) SetTrailProperties(v []*TrailProperties) *CloudTrailProperties
SetTrailProperties sets the TrailProperties field's value.
func (CloudTrailProperties) String ¶ added in v1.38.15
func (s CloudTrailProperties) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type Configuration ¶ added in v1.37.28
type Configuration struct { // The access control configuration is for a DynamoDB stream. DynamodbStream *DynamodbStreamConfiguration `locationName:"dynamodbStream" type:"structure"` // The access control configuration is for a DynamoDB table or index. DynamodbTable *DynamodbTableConfiguration `locationName:"dynamodbTable" type:"structure"` // The access control configuration is for an Amazon EBS volume snapshot. EbsSnapshot *EbsSnapshotConfiguration `locationName:"ebsSnapshot" type:"structure"` // The access control configuration is for an Amazon ECR repository. EcrRepository *EcrRepositoryConfiguration `locationName:"ecrRepository" type:"structure"` // The access control configuration is for an Amazon EFS file system. EfsFileSystem *EfsFileSystemConfiguration `locationName:"efsFileSystem" type:"structure"` // The access control configuration is for an IAM role. IamRole *IamRoleConfiguration `locationName:"iamRole" type:"structure"` // The access control configuration is for a KMS key. KmsKey *KmsKeyConfiguration `locationName:"kmsKey" type:"structure"` // The access control configuration is for an Amazon RDS DB cluster snapshot. RdsDbClusterSnapshot *RdsDbClusterSnapshotConfiguration `locationName:"rdsDbClusterSnapshot" type:"structure"` // The access control configuration is for an Amazon RDS DB snapshot. RdsDbSnapshot *RdsDbSnapshotConfiguration `locationName:"rdsDbSnapshot" type:"structure"` // The access control configuration is for an Amazon S3 bucket. S3Bucket *S3BucketConfiguration `locationName:"s3Bucket" type:"structure"` // The access control configuration is for an Amazon S3 directory bucket. S3ExpressDirectoryBucket *S3ExpressDirectoryBucketConfiguration `locationName:"s3ExpressDirectoryBucket" type:"structure"` // The access control configuration is for a Secrets Manager secret. SecretsManagerSecret *SecretsManagerSecretConfiguration `locationName:"secretsManagerSecret" type:"structure"` // The access control configuration is for an Amazon SNS topic SnsTopic *SnsTopicConfiguration `locationName:"snsTopic" type:"structure"` // The access control configuration is for an Amazon SQS queue. SqsQueue *SqsQueueConfiguration `locationName:"sqsQueue" type:"structure"` // contains filtered or unexported fields }
Access control configuration structures for your resource. You specify the configuration as a type-value pair. You can specify only one type of access control configuration.
func (Configuration) GoString ¶ added in v1.37.28
func (s Configuration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*Configuration) SetDynamodbStream ¶ added in v1.51.4
func (s *Configuration) SetDynamodbStream(v *DynamodbStreamConfiguration) *Configuration
SetDynamodbStream sets the DynamodbStream field's value.
func (*Configuration) SetDynamodbTable ¶ added in v1.51.4
func (s *Configuration) SetDynamodbTable(v *DynamodbTableConfiguration) *Configuration
SetDynamodbTable sets the DynamodbTable field's value.
func (*Configuration) SetEbsSnapshot ¶ added in v1.44.123
func (s *Configuration) SetEbsSnapshot(v *EbsSnapshotConfiguration) *Configuration
SetEbsSnapshot sets the EbsSnapshot field's value.
func (*Configuration) SetEcrRepository ¶ added in v1.44.123
func (s *Configuration) SetEcrRepository(v *EcrRepositoryConfiguration) *Configuration
SetEcrRepository sets the EcrRepository field's value.
func (*Configuration) SetEfsFileSystem ¶ added in v1.44.123
func (s *Configuration) SetEfsFileSystem(v *EfsFileSystemConfiguration) *Configuration
SetEfsFileSystem sets the EfsFileSystem field's value.
func (*Configuration) SetIamRole ¶ added in v1.37.28
func (s *Configuration) SetIamRole(v *IamRoleConfiguration) *Configuration
SetIamRole sets the IamRole field's value.
func (*Configuration) SetKmsKey ¶ added in v1.37.28
func (s *Configuration) SetKmsKey(v *KmsKeyConfiguration) *Configuration
SetKmsKey sets the KmsKey field's value.
func (*Configuration) SetRdsDbClusterSnapshot ¶ added in v1.44.123
func (s *Configuration) SetRdsDbClusterSnapshot(v *RdsDbClusterSnapshotConfiguration) *Configuration
SetRdsDbClusterSnapshot sets the RdsDbClusterSnapshot field's value.
func (*Configuration) SetRdsDbSnapshot ¶ added in v1.44.123
func (s *Configuration) SetRdsDbSnapshot(v *RdsDbSnapshotConfiguration) *Configuration
SetRdsDbSnapshot sets the RdsDbSnapshot field's value.
func (*Configuration) SetS3Bucket ¶ added in v1.37.28
func (s *Configuration) SetS3Bucket(v *S3BucketConfiguration) *Configuration
SetS3Bucket sets the S3Bucket field's value.
func (*Configuration) SetS3ExpressDirectoryBucket ¶ added in v1.48.7
func (s *Configuration) SetS3ExpressDirectoryBucket(v *S3ExpressDirectoryBucketConfiguration) *Configuration
SetS3ExpressDirectoryBucket sets the S3ExpressDirectoryBucket field's value.
func (*Configuration) SetSecretsManagerSecret ¶ added in v1.37.28
func (s *Configuration) SetSecretsManagerSecret(v *SecretsManagerSecretConfiguration) *Configuration
SetSecretsManagerSecret sets the SecretsManagerSecret field's value.
func (*Configuration) SetSnsTopic ¶ added in v1.44.123
func (s *Configuration) SetSnsTopic(v *SnsTopicConfiguration) *Configuration
SetSnsTopic sets the SnsTopic field's value.
func (*Configuration) SetSqsQueue ¶ added in v1.37.28
func (s *Configuration) SetSqsQueue(v *SqsQueueConfiguration) *Configuration
SetSqsQueue sets the SqsQueue field's value.
func (Configuration) String ¶ added in v1.37.28
func (s Configuration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*Configuration) Validate ¶ added in v1.37.28
func (s *Configuration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ConflictException ¶ added in v1.28.0
type ConflictException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // The ID of the resource. // // ResourceId is a required field ResourceId *string `locationName:"resourceId" type:"string" required:"true"` // The resource type. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true"` // contains filtered or unexported fields }
A conflict exception error.
func (*ConflictException) Code ¶ added in v1.28.0
func (s *ConflictException) Code() string
Code returns the exception type name.
func (*ConflictException) Error ¶ added in v1.28.0
func (s *ConflictException) Error() string
func (ConflictException) GoString ¶ added in v1.28.0
func (s ConflictException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ConflictException) Message ¶ added in v1.28.0
func (s *ConflictException) Message() string
Message returns the exception's message.
func (*ConflictException) OrigErr ¶ added in v1.28.0
func (s *ConflictException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*ConflictException) RequestID ¶ added in v1.28.0
func (s *ConflictException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*ConflictException) StatusCode ¶ added in v1.28.0
func (s *ConflictException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (ConflictException) String ¶ added in v1.28.0
func (s ConflictException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CreateAccessPreviewInput ¶ added in v1.37.28
type CreateAccessPreviewInput struct { // The ARN of the account analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // used to generate the access preview. You can only create an access preview // for analyzers with an Account type and Active status. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // A client token. ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"` // Access control configuration for your resource that is used to generate the // access preview. The access preview includes findings for external access // allowed to the resource with the proposed access control configuration. The // configuration must contain exactly one element. // // Configurations is a required field Configurations map[string]*Configuration `locationName:"configurations" type:"map" required:"true"` // contains filtered or unexported fields }
func (CreateAccessPreviewInput) GoString ¶ added in v1.37.28
func (s CreateAccessPreviewInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateAccessPreviewInput) SetAnalyzerArn ¶ added in v1.37.28
func (s *CreateAccessPreviewInput) SetAnalyzerArn(v string) *CreateAccessPreviewInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*CreateAccessPreviewInput) SetClientToken ¶ added in v1.37.28
func (s *CreateAccessPreviewInput) SetClientToken(v string) *CreateAccessPreviewInput
SetClientToken sets the ClientToken field's value.
func (*CreateAccessPreviewInput) SetConfigurations ¶ added in v1.37.28
func (s *CreateAccessPreviewInput) SetConfigurations(v map[string]*Configuration) *CreateAccessPreviewInput
SetConfigurations sets the Configurations field's value.
func (CreateAccessPreviewInput) String ¶ added in v1.37.28
func (s CreateAccessPreviewInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateAccessPreviewInput) Validate ¶ added in v1.37.28
func (s *CreateAccessPreviewInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateAccessPreviewOutput ¶ added in v1.37.28
type CreateAccessPreviewOutput struct { // The unique ID for the access preview. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // contains filtered or unexported fields }
func (CreateAccessPreviewOutput) GoString ¶ added in v1.37.28
func (s CreateAccessPreviewOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateAccessPreviewOutput) SetId ¶ added in v1.37.28
func (s *CreateAccessPreviewOutput) SetId(v string) *CreateAccessPreviewOutput
SetId sets the Id field's value.
func (CreateAccessPreviewOutput) String ¶ added in v1.37.28
func (s CreateAccessPreviewOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CreateAnalyzerInput ¶
type CreateAnalyzerInput struct { // The name of the analyzer to create. // // AnalyzerName is a required field AnalyzerName *string `locationName:"analyzerName" min:"1" type:"string" required:"true"` // Specifies the archive rules to add for the analyzer. Archive rules automatically // archive findings that meet the criteria you define for the rule. ArchiveRules []*InlineArchiveRule `locationName:"archiveRules" type:"list"` // A client token. ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"` // Specifies the configuration of the analyzer. If the analyzer is an unused // access analyzer, the specified scope of unused access is used for the configuration. // If the analyzer is an external access analyzer, this field is not used. Configuration *AnalyzerConfiguration `locationName:"configuration" type:"structure"` // An array of key-value pairs to apply to the analyzer. Tags map[string]*string `locationName:"tags" type:"map"` // The type of analyzer to create. Only ACCOUNT, ORGANIZATION, ACCOUNT_UNUSED_ACCESS, // and ORGANIZATION_UNUSED_ACCESS analyzers are supported. You can create only // one analyzer per account per Region. You can create up to 5 analyzers per // organization per Region. // // Type is a required field Type *string `locationName:"type" type:"string" required:"true" enum:"Type"` // contains filtered or unexported fields }
Creates an analyzer.
func (CreateAnalyzerInput) GoString ¶
func (s CreateAnalyzerInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateAnalyzerInput) SetAnalyzerName ¶
func (s *CreateAnalyzerInput) SetAnalyzerName(v string) *CreateAnalyzerInput
SetAnalyzerName sets the AnalyzerName field's value.
func (*CreateAnalyzerInput) SetArchiveRules ¶
func (s *CreateAnalyzerInput) SetArchiveRules(v []*InlineArchiveRule) *CreateAnalyzerInput
SetArchiveRules sets the ArchiveRules field's value.
func (*CreateAnalyzerInput) SetClientToken ¶
func (s *CreateAnalyzerInput) SetClientToken(v string) *CreateAnalyzerInput
SetClientToken sets the ClientToken field's value.
func (*CreateAnalyzerInput) SetConfiguration ¶ added in v1.48.4
func (s *CreateAnalyzerInput) SetConfiguration(v *AnalyzerConfiguration) *CreateAnalyzerInput
SetConfiguration sets the Configuration field's value.
func (*CreateAnalyzerInput) SetTags ¶
func (s *CreateAnalyzerInput) SetTags(v map[string]*string) *CreateAnalyzerInput
SetTags sets the Tags field's value.
func (*CreateAnalyzerInput) SetType ¶
func (s *CreateAnalyzerInput) SetType(v string) *CreateAnalyzerInput
SetType sets the Type field's value.
func (CreateAnalyzerInput) String ¶
func (s CreateAnalyzerInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateAnalyzerInput) Validate ¶
func (s *CreateAnalyzerInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateAnalyzerOutput ¶
type CreateAnalyzerOutput struct { // The ARN of the analyzer that was created by the request. Arn *string `locationName:"arn" type:"string"` // contains filtered or unexported fields }
The response to the request to create an analyzer.
func (CreateAnalyzerOutput) GoString ¶
func (s CreateAnalyzerOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateAnalyzerOutput) SetArn ¶
func (s *CreateAnalyzerOutput) SetArn(v string) *CreateAnalyzerOutput
SetArn sets the Arn field's value.
func (CreateAnalyzerOutput) String ¶
func (s CreateAnalyzerOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type CreateArchiveRuleInput ¶
type CreateArchiveRuleInput struct { // The name of the created analyzer. // // AnalyzerName is a required field AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"` // A client token. ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"` // The criteria for the rule. // // Filter is a required field Filter map[string]*Criterion `locationName:"filter" type:"map" required:"true"` // The name of the rule to create. // // RuleName is a required field RuleName *string `locationName:"ruleName" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
Creates an archive rule.
func (CreateArchiveRuleInput) GoString ¶
func (s CreateArchiveRuleInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateArchiveRuleInput) SetAnalyzerName ¶
func (s *CreateArchiveRuleInput) SetAnalyzerName(v string) *CreateArchiveRuleInput
SetAnalyzerName sets the AnalyzerName field's value.
func (*CreateArchiveRuleInput) SetClientToken ¶
func (s *CreateArchiveRuleInput) SetClientToken(v string) *CreateArchiveRuleInput
SetClientToken sets the ClientToken field's value.
func (*CreateArchiveRuleInput) SetFilter ¶
func (s *CreateArchiveRuleInput) SetFilter(v map[string]*Criterion) *CreateArchiveRuleInput
SetFilter sets the Filter field's value.
func (*CreateArchiveRuleInput) SetRuleName ¶
func (s *CreateArchiveRuleInput) SetRuleName(v string) *CreateArchiveRuleInput
SetRuleName sets the RuleName field's value.
func (CreateArchiveRuleInput) String ¶
func (s CreateArchiveRuleInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*CreateArchiveRuleInput) Validate ¶
func (s *CreateArchiveRuleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateArchiveRuleOutput ¶
type CreateArchiveRuleOutput struct {
// contains filtered or unexported fields
}
func (CreateArchiveRuleOutput) GoString ¶
func (s CreateArchiveRuleOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (CreateArchiveRuleOutput) String ¶
func (s CreateArchiveRuleOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type Criterion ¶
type Criterion struct { // A "contains" operator to match for the filter used to create the rule. Contains []*string `locationName:"contains" min:"1" type:"list"` // An "equals" operator to match for the filter used to create the rule. Eq []*string `locationName:"eq" min:"1" type:"list"` // An "exists" operator to match for the filter used to create the rule. Exists *bool `locationName:"exists" type:"boolean"` // A "not equals" operator to match for the filter used to create the rule. Neq []*string `locationName:"neq" min:"1" type:"list"` // contains filtered or unexported fields }
The criteria to use in the filter that defines the archive rule. For more information on available filter keys, see IAM Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html).
func (Criterion) GoString ¶
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*Criterion) SetContains ¶
SetContains sets the Contains field's value.
type DeleteAnalyzerInput ¶
type DeleteAnalyzerInput struct { // The name of the analyzer to delete. // // AnalyzerName is a required field AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"` // A client token. ClientToken *string `location:"querystring" locationName:"clientToken" type:"string" idempotencyToken:"true"` // contains filtered or unexported fields }
Deletes an analyzer.
func (DeleteAnalyzerInput) GoString ¶
func (s DeleteAnalyzerInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*DeleteAnalyzerInput) SetAnalyzerName ¶
func (s *DeleteAnalyzerInput) SetAnalyzerName(v string) *DeleteAnalyzerInput
SetAnalyzerName sets the AnalyzerName field's value.
func (*DeleteAnalyzerInput) SetClientToken ¶
func (s *DeleteAnalyzerInput) SetClientToken(v string) *DeleteAnalyzerInput
SetClientToken sets the ClientToken field's value.
func (DeleteAnalyzerInput) String ¶
func (s DeleteAnalyzerInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*DeleteAnalyzerInput) Validate ¶
func (s *DeleteAnalyzerInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteAnalyzerOutput ¶
type DeleteAnalyzerOutput struct {
// contains filtered or unexported fields
}
func (DeleteAnalyzerOutput) GoString ¶
func (s DeleteAnalyzerOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (DeleteAnalyzerOutput) String ¶
func (s DeleteAnalyzerOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type DeleteArchiveRuleInput ¶
type DeleteArchiveRuleInput struct { // The name of the analyzer that associated with the archive rule to delete. // // AnalyzerName is a required field AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"` // A client token. ClientToken *string `location:"querystring" locationName:"clientToken" type:"string" idempotencyToken:"true"` // The name of the rule to delete. // // RuleName is a required field RuleName *string `location:"uri" locationName:"ruleName" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
Deletes an archive rule.
func (DeleteArchiveRuleInput) GoString ¶
func (s DeleteArchiveRuleInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*DeleteArchiveRuleInput) SetAnalyzerName ¶
func (s *DeleteArchiveRuleInput) SetAnalyzerName(v string) *DeleteArchiveRuleInput
SetAnalyzerName sets the AnalyzerName field's value.
func (*DeleteArchiveRuleInput) SetClientToken ¶
func (s *DeleteArchiveRuleInput) SetClientToken(v string) *DeleteArchiveRuleInput
SetClientToken sets the ClientToken field's value.
func (*DeleteArchiveRuleInput) SetRuleName ¶
func (s *DeleteArchiveRuleInput) SetRuleName(v string) *DeleteArchiveRuleInput
SetRuleName sets the RuleName field's value.
func (DeleteArchiveRuleInput) String ¶
func (s DeleteArchiveRuleInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*DeleteArchiveRuleInput) Validate ¶
func (s *DeleteArchiveRuleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteArchiveRuleOutput ¶
type DeleteArchiveRuleOutput struct {
// contains filtered or unexported fields
}
func (DeleteArchiveRuleOutput) GoString ¶
func (s DeleteArchiveRuleOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (DeleteArchiveRuleOutput) String ¶
func (s DeleteArchiveRuleOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type DynamodbStreamConfiguration ¶ added in v1.51.4
type DynamodbStreamConfiguration struct { // The proposed resource policy defining who can access or manage the DynamoDB // stream. StreamPolicy *string `locationName:"streamPolicy" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for a DynamoDB stream. You can propose a configuration for a new DynamoDB stream or an existing DynamoDB stream that you own by specifying the policy for the DynamoDB stream. For more information, see PutResourcePolicy (https://docs.aws.amazon.com/amazondynamodb/latest/APIReference/API_PutResourcePolicy.html).
If the configuration is for an existing DynamoDB stream and you do not specify the DynamoDB policy, then the access preview uses the existing DynamoDB policy for the stream.
If the access preview is for a new resource and you do not specify the policy, then the access preview assumes a DynamoDB stream without a policy.
To propose deletion of an existing DynamoDB stream policy, you can specify an empty string for the DynamoDB policy.
func (DynamodbStreamConfiguration) GoString ¶ added in v1.51.4
func (s DynamodbStreamConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*DynamodbStreamConfiguration) SetStreamPolicy ¶ added in v1.51.4
func (s *DynamodbStreamConfiguration) SetStreamPolicy(v string) *DynamodbStreamConfiguration
SetStreamPolicy sets the StreamPolicy field's value.
func (DynamodbStreamConfiguration) String ¶ added in v1.51.4
func (s DynamodbStreamConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type DynamodbTableConfiguration ¶ added in v1.51.4
type DynamodbTableConfiguration struct { // The proposed resource policy defining who can access or manage the DynamoDB // table. TablePolicy *string `locationName:"tablePolicy" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for a DynamoDB table or index. You can propose a configuration for a new DynamoDB table or index or an existing DynamoDB table or index that you own by specifying the policy for the DynamoDB table or index. For more information, see PutResourcePolicy (https://docs.aws.amazon.com/amazondynamodb/latest/APIReference/API_PutResourcePolicy.html).
If the configuration is for an existing DynamoDB table or index and you do not specify the DynamoDB policy, then the access preview uses the existing DynamoDB policy for the table or index.
If the access preview is for a new resource and you do not specify the policy, then the access preview assumes a DynamoDB table without a policy.
To propose deletion of an existing DynamoDB table or index policy, you can specify an empty string for the DynamoDB policy.
func (DynamodbTableConfiguration) GoString ¶ added in v1.51.4
func (s DynamodbTableConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*DynamodbTableConfiguration) SetTablePolicy ¶ added in v1.51.4
func (s *DynamodbTableConfiguration) SetTablePolicy(v string) *DynamodbTableConfiguration
SetTablePolicy sets the TablePolicy field's value.
func (DynamodbTableConfiguration) String ¶ added in v1.51.4
func (s DynamodbTableConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type EbsSnapshotConfiguration ¶ added in v1.44.123
type EbsSnapshotConfiguration struct { // The groups that have access to the Amazon EBS volume snapshot. If the value // all is specified, then the Amazon EBS volume snapshot is public. // // * If the configuration is for an existing Amazon EBS volume snapshot and // you do not specify the groups, then the access preview uses the existing // shared groups for the snapshot. // // * If the access preview is for a new resource and you do not specify the // groups, then the access preview considers the snapshot without any groups. // // * To propose deletion of existing shared groups, you can specify an empty // list for groups. Groups []*string `locationName:"groups" type:"list"` // The KMS key identifier for an encrypted Amazon EBS volume snapshot. The KMS // key identifier is the key ARN, key ID, alias ARN, or alias name for the KMS // key. // // * If the configuration is for an existing Amazon EBS volume snapshot and // you do not specify the kmsKeyId, or you specify an empty string, then // the access preview uses the existing kmsKeyId of the snapshot. // // * If the access preview is for a new resource and you do not specify the // kmsKeyId, the access preview considers the snapshot as unencrypted. KmsKeyId *string `locationName:"kmsKeyId" type:"string"` // The IDs of the Amazon Web Services accounts that have access to the Amazon // EBS volume snapshot. // // * If the configuration is for an existing Amazon EBS volume snapshot and // you do not specify the userIds, then the access preview uses the existing // shared userIds for the snapshot. // // * If the access preview is for a new resource and you do not specify the // userIds, then the access preview considers the snapshot without any userIds. // // * To propose deletion of existing shared accountIds, you can specify an // empty list for userIds. UserIds []*string `locationName:"userIds" type:"list"` // contains filtered or unexported fields }
The proposed access control configuration for an Amazon EBS volume snapshot. You can propose a configuration for a new Amazon EBS volume snapshot or an Amazon EBS volume snapshot that you own by specifying the user IDs, groups, and optional KMS encryption key. For more information, see ModifySnapshotAttribute (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifySnapshotAttribute.html).
func (EbsSnapshotConfiguration) GoString ¶ added in v1.44.123
func (s EbsSnapshotConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*EbsSnapshotConfiguration) SetGroups ¶ added in v1.44.123
func (s *EbsSnapshotConfiguration) SetGroups(v []*string) *EbsSnapshotConfiguration
SetGroups sets the Groups field's value.
func (*EbsSnapshotConfiguration) SetKmsKeyId ¶ added in v1.44.123
func (s *EbsSnapshotConfiguration) SetKmsKeyId(v string) *EbsSnapshotConfiguration
SetKmsKeyId sets the KmsKeyId field's value.
func (*EbsSnapshotConfiguration) SetUserIds ¶ added in v1.44.123
func (s *EbsSnapshotConfiguration) SetUserIds(v []*string) *EbsSnapshotConfiguration
SetUserIds sets the UserIds field's value.
func (EbsSnapshotConfiguration) String ¶ added in v1.44.123
func (s EbsSnapshotConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type EcrRepositoryConfiguration ¶ added in v1.44.123
type EcrRepositoryConfiguration struct { // The JSON repository policy text to apply to the Amazon ECR repository. For // more information, see Private repository policy examples (https://docs.aws.amazon.com/AmazonECR/latest/userguide/repository-policy-examples.html) // in the Amazon ECR User Guide. RepositoryPolicy *string `locationName:"repositoryPolicy" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for an Amazon ECR repository. You can propose a configuration for a new Amazon ECR repository or an existing Amazon ECR repository that you own by specifying the Amazon ECR policy. For more information, see Repository (https://docs.aws.amazon.com/AmazonECR/latest/APIReference/API_Repository.html).
If the configuration is for an existing Amazon ECR repository and you do not specify the Amazon ECR policy, then the access preview uses the existing Amazon ECR policy for the repository.
If the access preview is for a new resource and you do not specify the policy, then the access preview assumes an Amazon ECR repository without a policy.
To propose deletion of an existing Amazon ECR repository policy, you can specify an empty string for the Amazon ECR policy.
func (EcrRepositoryConfiguration) GoString ¶ added in v1.44.123
func (s EcrRepositoryConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*EcrRepositoryConfiguration) SetRepositoryPolicy ¶ added in v1.44.123
func (s *EcrRepositoryConfiguration) SetRepositoryPolicy(v string) *EcrRepositoryConfiguration
SetRepositoryPolicy sets the RepositoryPolicy field's value.
func (EcrRepositoryConfiguration) String ¶ added in v1.44.123
func (s EcrRepositoryConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type EfsFileSystemConfiguration ¶ added in v1.44.123
type EfsFileSystemConfiguration struct { // The JSON policy definition to apply to the Amazon EFS file system. For more // information on the elements that make up a file system policy, see Amazon // EFS Resource-based policies (https://docs.aws.amazon.com/efs/latest/ug/access-control-overview.html#access-control-manage-access-intro-resource-policies). FileSystemPolicy *string `locationName:"fileSystemPolicy" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for an Amazon EFS file system. You can propose a configuration for a new Amazon EFS file system or an existing Amazon EFS file system that you own by specifying the Amazon EFS policy. For more information, see Using file systems in Amazon EFS (https://docs.aws.amazon.com/efs/latest/ug/using-fs.html).
If the configuration is for an existing Amazon EFS file system and you do not specify the Amazon EFS policy, then the access preview uses the existing Amazon EFS policy for the file system.
If the access preview is for a new resource and you do not specify the policy, then the access preview assumes an Amazon EFS file system without a policy.
To propose deletion of an existing Amazon EFS file system policy, you can specify an empty string for the Amazon EFS policy.
func (EfsFileSystemConfiguration) GoString ¶ added in v1.44.123
func (s EfsFileSystemConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*EfsFileSystemConfiguration) SetFileSystemPolicy ¶ added in v1.44.123
func (s *EfsFileSystemConfiguration) SetFileSystemPolicy(v string) *EfsFileSystemConfiguration
SetFileSystemPolicy sets the FileSystemPolicy field's value.
func (EfsFileSystemConfiguration) String ¶ added in v1.44.123
func (s EfsFileSystemConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ExternalAccessDetails ¶ added in v1.48.4
type ExternalAccessDetails struct { // The action in the analyzed policy statement that an external principal has // permission to use. Action []*string `locationName:"action" type:"list"` // The condition in the analyzed policy statement that resulted in an external // access finding. // // Condition is a required field Condition map[string]*string `locationName:"condition" type:"map" required:"true"` // Specifies whether the external access finding is public. IsPublic *bool `locationName:"isPublic" type:"boolean"` // The external principal that has access to a resource within the zone of trust. Principal map[string]*string `locationName:"principal" type:"map"` // The sources of the external access finding. This indicates how the access // that generated the finding is granted. It is populated for Amazon S3 bucket // findings. Sources []*FindingSource `locationName:"sources" type:"list"` // contains filtered or unexported fields }
Contains information about an external access finding.
func (ExternalAccessDetails) GoString ¶ added in v1.48.4
func (s ExternalAccessDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ExternalAccessDetails) SetAction ¶ added in v1.48.4
func (s *ExternalAccessDetails) SetAction(v []*string) *ExternalAccessDetails
SetAction sets the Action field's value.
func (*ExternalAccessDetails) SetCondition ¶ added in v1.48.4
func (s *ExternalAccessDetails) SetCondition(v map[string]*string) *ExternalAccessDetails
SetCondition sets the Condition field's value.
func (*ExternalAccessDetails) SetIsPublic ¶ added in v1.48.4
func (s *ExternalAccessDetails) SetIsPublic(v bool) *ExternalAccessDetails
SetIsPublic sets the IsPublic field's value.
func (*ExternalAccessDetails) SetPrincipal ¶ added in v1.48.4
func (s *ExternalAccessDetails) SetPrincipal(v map[string]*string) *ExternalAccessDetails
SetPrincipal sets the Principal field's value.
func (*ExternalAccessDetails) SetSources ¶ added in v1.48.4
func (s *ExternalAccessDetails) SetSources(v []*FindingSource) *ExternalAccessDetails
SetSources sets the Sources field's value.
func (ExternalAccessDetails) String ¶ added in v1.48.4
func (s ExternalAccessDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type Finding ¶
type Finding struct { // The action in the analyzed policy statement that an external principal has // permission to use. Action []*string `locationName:"action" type:"list"` // The time at which the resource was analyzed. // // AnalyzedAt is a required field AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The condition in the analyzed policy statement that resulted in a finding. // // Condition is a required field Condition map[string]*string `locationName:"condition" type:"map" required:"true"` // The time at which the finding was generated. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // An error. Error *string `locationName:"error" type:"string"` // The ID of the finding. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // Indicates whether the policy that generated the finding allows public access // to the resource. IsPublic *bool `locationName:"isPublic" type:"boolean"` // The external principal that has access to a resource within the zone of trust. Principal map[string]*string `locationName:"principal" type:"map"` // The resource that an external principal has access to. Resource *string `locationName:"resource" type:"string"` // The Amazon Web Services account ID that owns the resource. // // ResourceOwnerAccount is a required field ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"` // The type of the resource identified in the finding. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"` // The sources of the finding. This indicates how the access that generated // the finding is granted. It is populated for Amazon S3 bucket findings. Sources []*FindingSource `locationName:"sources" type:"list"` // The current status of the finding. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"` // The time at which the finding was updated. // // UpdatedAt is a required field UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // contains filtered or unexported fields }
Contains information about a finding.
func (Finding) GoString ¶
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*Finding) SetAnalyzedAt ¶
SetAnalyzedAt sets the AnalyzedAt field's value.
func (*Finding) SetCondition ¶
SetCondition sets the Condition field's value.
func (*Finding) SetCreatedAt ¶
SetCreatedAt sets the CreatedAt field's value.
func (*Finding) SetIsPublic ¶
SetIsPublic sets the IsPublic field's value.
func (*Finding) SetPrincipal ¶
SetPrincipal sets the Principal field's value.
func (*Finding) SetResource ¶
SetResource sets the Resource field's value.
func (*Finding) SetResourceOwnerAccount ¶ added in v1.30.0
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (*Finding) SetResourceType ¶
SetResourceType sets the ResourceType field's value.
func (*Finding) SetSources ¶ added in v1.30.15
func (s *Finding) SetSources(v []*FindingSource) *Finding
SetSources sets the Sources field's value.
func (*Finding) SetUpdatedAt ¶
SetUpdatedAt sets the UpdatedAt field's value.
type FindingDetails ¶ added in v1.48.4
type FindingDetails struct { // The details for an external access analyzer finding. ExternalAccessDetails *ExternalAccessDetails `locationName:"externalAccessDetails" type:"structure"` // The details for an unused access analyzer finding with an unused IAM role // finding type. UnusedIamRoleDetails *UnusedIamRoleDetails `locationName:"unusedIamRoleDetails" type:"structure"` // The details for an unused access analyzer finding with an unused IAM user // access key finding type. UnusedIamUserAccessKeyDetails *UnusedIamUserAccessKeyDetails `locationName:"unusedIamUserAccessKeyDetails" type:"structure"` // The details for an unused access analyzer finding with an unused IAM user // password finding type. UnusedIamUserPasswordDetails *UnusedIamUserPasswordDetails `locationName:"unusedIamUserPasswordDetails" type:"structure"` // The details for an unused access analyzer finding with an unused permission // finding type. UnusedPermissionDetails *UnusedPermissionDetails `locationName:"unusedPermissionDetails" type:"structure"` // contains filtered or unexported fields }
Contains information about an external access or unused access finding. Only one parameter can be used in a FindingDetails object.
func (FindingDetails) GoString ¶ added in v1.48.4
func (s FindingDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*FindingDetails) SetExternalAccessDetails ¶ added in v1.48.4
func (s *FindingDetails) SetExternalAccessDetails(v *ExternalAccessDetails) *FindingDetails
SetExternalAccessDetails sets the ExternalAccessDetails field's value.
func (*FindingDetails) SetUnusedIamRoleDetails ¶ added in v1.48.4
func (s *FindingDetails) SetUnusedIamRoleDetails(v *UnusedIamRoleDetails) *FindingDetails
SetUnusedIamRoleDetails sets the UnusedIamRoleDetails field's value.
func (*FindingDetails) SetUnusedIamUserAccessKeyDetails ¶ added in v1.48.4
func (s *FindingDetails) SetUnusedIamUserAccessKeyDetails(v *UnusedIamUserAccessKeyDetails) *FindingDetails
SetUnusedIamUserAccessKeyDetails sets the UnusedIamUserAccessKeyDetails field's value.
func (*FindingDetails) SetUnusedIamUserPasswordDetails ¶ added in v1.48.4
func (s *FindingDetails) SetUnusedIamUserPasswordDetails(v *UnusedIamUserPasswordDetails) *FindingDetails
SetUnusedIamUserPasswordDetails sets the UnusedIamUserPasswordDetails field's value.
func (*FindingDetails) SetUnusedPermissionDetails ¶ added in v1.48.4
func (s *FindingDetails) SetUnusedPermissionDetails(v *UnusedPermissionDetails) *FindingDetails
SetUnusedPermissionDetails sets the UnusedPermissionDetails field's value.
func (FindingDetails) String ¶ added in v1.48.4
func (s FindingDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type FindingSource ¶ added in v1.30.15
type FindingSource struct { // Includes details about how the access that generated the finding is granted. // This is populated for Amazon S3 bucket findings. Detail *FindingSourceDetail `locationName:"detail" type:"structure"` // Indicates the type of access that generated the finding. // // Type is a required field Type *string `locationName:"type" type:"string" required:"true" enum:"FindingSourceType"` // contains filtered or unexported fields }
The source of the finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.
func (FindingSource) GoString ¶ added in v1.30.15
func (s FindingSource) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*FindingSource) SetDetail ¶ added in v1.30.15
func (s *FindingSource) SetDetail(v *FindingSourceDetail) *FindingSource
SetDetail sets the Detail field's value.
func (*FindingSource) SetType ¶ added in v1.30.15
func (s *FindingSource) SetType(v string) *FindingSource
SetType sets the Type field's value.
func (FindingSource) String ¶ added in v1.30.15
func (s FindingSource) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type FindingSourceDetail ¶ added in v1.30.15
type FindingSourceDetail struct { // The account of the cross-account access point that generated the finding. AccessPointAccount *string `locationName:"accessPointAccount" type:"string"` // The ARN of the access point that generated the finding. The ARN format depends // on whether the ARN represents an access point or a multi-region access point. AccessPointArn *string `locationName:"accessPointArn" type:"string"` // contains filtered or unexported fields }
Includes details about how the access that generated the finding is granted. This is populated for Amazon S3 bucket findings.
func (FindingSourceDetail) GoString ¶ added in v1.30.15
func (s FindingSourceDetail) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*FindingSourceDetail) SetAccessPointAccount ¶ added in v1.44.150
func (s *FindingSourceDetail) SetAccessPointAccount(v string) *FindingSourceDetail
SetAccessPointAccount sets the AccessPointAccount field's value.
func (*FindingSourceDetail) SetAccessPointArn ¶ added in v1.30.15
func (s *FindingSourceDetail) SetAccessPointArn(v string) *FindingSourceDetail
SetAccessPointArn sets the AccessPointArn field's value.
func (FindingSourceDetail) String ¶ added in v1.30.15
func (s FindingSourceDetail) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type FindingSummary ¶
type FindingSummary struct { // The action in the analyzed policy statement that an external principal has // permission to use. Action []*string `locationName:"action" type:"list"` // The time at which the resource-based policy that generated the finding was // analyzed. // // AnalyzedAt is a required field AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The condition in the analyzed policy statement that resulted in a finding. // // Condition is a required field Condition map[string]*string `locationName:"condition" type:"map" required:"true"` // The time at which the finding was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The error that resulted in an Error finding. Error *string `locationName:"error" type:"string"` // The ID of the finding. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // Indicates whether the finding reports a resource that has a policy that allows // public access. IsPublic *bool `locationName:"isPublic" type:"boolean"` // The external principal that has access to a resource within the zone of trust. Principal map[string]*string `locationName:"principal" type:"map"` // The resource that the external principal has access to. Resource *string `locationName:"resource" type:"string"` // The Amazon Web Services account ID that owns the resource. // // ResourceOwnerAccount is a required field ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"` // The type of the resource that the external principal has access to. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"` // The sources of the finding. This indicates how the access that generated // the finding is granted. It is populated for Amazon S3 bucket findings. Sources []*FindingSource `locationName:"sources" type:"list"` // The status of the finding. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"` // The time at which the finding was most recently updated. // // UpdatedAt is a required field UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // contains filtered or unexported fields }
Contains information about a finding.
func (FindingSummary) GoString ¶
func (s FindingSummary) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*FindingSummary) SetAction ¶
func (s *FindingSummary) SetAction(v []*string) *FindingSummary
SetAction sets the Action field's value.
func (*FindingSummary) SetAnalyzedAt ¶
func (s *FindingSummary) SetAnalyzedAt(v time.Time) *FindingSummary
SetAnalyzedAt sets the AnalyzedAt field's value.
func (*FindingSummary) SetCondition ¶
func (s *FindingSummary) SetCondition(v map[string]*string) *FindingSummary
SetCondition sets the Condition field's value.
func (*FindingSummary) SetCreatedAt ¶
func (s *FindingSummary) SetCreatedAt(v time.Time) *FindingSummary
SetCreatedAt sets the CreatedAt field's value.
func (*FindingSummary) SetError ¶
func (s *FindingSummary) SetError(v string) *FindingSummary
SetError sets the Error field's value.
func (*FindingSummary) SetId ¶
func (s *FindingSummary) SetId(v string) *FindingSummary
SetId sets the Id field's value.
func (*FindingSummary) SetIsPublic ¶
func (s *FindingSummary) SetIsPublic(v bool) *FindingSummary
SetIsPublic sets the IsPublic field's value.
func (*FindingSummary) SetPrincipal ¶
func (s *FindingSummary) SetPrincipal(v map[string]*string) *FindingSummary
SetPrincipal sets the Principal field's value.
func (*FindingSummary) SetResource ¶
func (s *FindingSummary) SetResource(v string) *FindingSummary
SetResource sets the Resource field's value.
func (*FindingSummary) SetResourceOwnerAccount ¶ added in v1.30.0
func (s *FindingSummary) SetResourceOwnerAccount(v string) *FindingSummary
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (*FindingSummary) SetResourceType ¶
func (s *FindingSummary) SetResourceType(v string) *FindingSummary
SetResourceType sets the ResourceType field's value.
func (*FindingSummary) SetSources ¶ added in v1.30.15
func (s *FindingSummary) SetSources(v []*FindingSource) *FindingSummary
SetSources sets the Sources field's value.
func (*FindingSummary) SetStatus ¶
func (s *FindingSummary) SetStatus(v string) *FindingSummary
SetStatus sets the Status field's value.
func (*FindingSummary) SetUpdatedAt ¶
func (s *FindingSummary) SetUpdatedAt(v time.Time) *FindingSummary
SetUpdatedAt sets the UpdatedAt field's value.
func (FindingSummary) String ¶
func (s FindingSummary) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type FindingSummaryV2 ¶ added in v1.48.4
type FindingSummaryV2 struct { // The time at which the resource-based policy or IAM entity that generated // the finding was analyzed. // // AnalyzedAt is a required field AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The time at which the finding was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The error that resulted in an Error finding. Error *string `locationName:"error" type:"string"` // The type of the external access or unused access finding. FindingType *string `locationName:"findingType" type:"string" enum:"FindingType"` // The ID of the finding. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // The resource that the external principal has access to. Resource *string `locationName:"resource" type:"string"` // The Amazon Web Services account ID that owns the resource. // // ResourceOwnerAccount is a required field ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"` // The type of the resource that the external principal has access to. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"` // The status of the finding. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"` // The time at which the finding was most recently updated. // // UpdatedAt is a required field UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // contains filtered or unexported fields }
Contains information about a finding.
func (FindingSummaryV2) GoString ¶ added in v1.48.4
func (s FindingSummaryV2) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*FindingSummaryV2) SetAnalyzedAt ¶ added in v1.48.4
func (s *FindingSummaryV2) SetAnalyzedAt(v time.Time) *FindingSummaryV2
SetAnalyzedAt sets the AnalyzedAt field's value.
func (*FindingSummaryV2) SetCreatedAt ¶ added in v1.48.4
func (s *FindingSummaryV2) SetCreatedAt(v time.Time) *FindingSummaryV2
SetCreatedAt sets the CreatedAt field's value.
func (*FindingSummaryV2) SetError ¶ added in v1.48.4
func (s *FindingSummaryV2) SetError(v string) *FindingSummaryV2
SetError sets the Error field's value.
func (*FindingSummaryV2) SetFindingType ¶ added in v1.48.4
func (s *FindingSummaryV2) SetFindingType(v string) *FindingSummaryV2
SetFindingType sets the FindingType field's value.
func (*FindingSummaryV2) SetId ¶ added in v1.48.4
func (s *FindingSummaryV2) SetId(v string) *FindingSummaryV2
SetId sets the Id field's value.
func (*FindingSummaryV2) SetResource ¶ added in v1.48.4
func (s *FindingSummaryV2) SetResource(v string) *FindingSummaryV2
SetResource sets the Resource field's value.
func (*FindingSummaryV2) SetResourceOwnerAccount ¶ added in v1.48.4
func (s *FindingSummaryV2) SetResourceOwnerAccount(v string) *FindingSummaryV2
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (*FindingSummaryV2) SetResourceType ¶ added in v1.48.4
func (s *FindingSummaryV2) SetResourceType(v string) *FindingSummaryV2
SetResourceType sets the ResourceType field's value.
func (*FindingSummaryV2) SetStatus ¶ added in v1.48.4
func (s *FindingSummaryV2) SetStatus(v string) *FindingSummaryV2
SetStatus sets the Status field's value.
func (*FindingSummaryV2) SetUpdatedAt ¶ added in v1.48.4
func (s *FindingSummaryV2) SetUpdatedAt(v time.Time) *FindingSummaryV2
SetUpdatedAt sets the UpdatedAt field's value.
func (FindingSummaryV2) String ¶ added in v1.48.4
func (s FindingSummaryV2) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GenerateFindingRecommendationInput ¶ added in v1.53.21
type GenerateFindingRecommendationInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // used to generate the finding recommendation. // // AnalyzerArn is a required field AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"` // The unique ID for the finding recommendation. // // Id is a required field Id *string `location:"uri" locationName:"id" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
func (GenerateFindingRecommendationInput) GoString ¶ added in v1.53.21
func (s GenerateFindingRecommendationInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GenerateFindingRecommendationInput) SetAnalyzerArn ¶ added in v1.53.21
func (s *GenerateFindingRecommendationInput) SetAnalyzerArn(v string) *GenerateFindingRecommendationInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*GenerateFindingRecommendationInput) SetId ¶ added in v1.53.21
func (s *GenerateFindingRecommendationInput) SetId(v string) *GenerateFindingRecommendationInput
SetId sets the Id field's value.
func (GenerateFindingRecommendationInput) String ¶ added in v1.53.21
func (s GenerateFindingRecommendationInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GenerateFindingRecommendationInput) Validate ¶ added in v1.53.21
func (s *GenerateFindingRecommendationInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GenerateFindingRecommendationOutput ¶ added in v1.53.21
type GenerateFindingRecommendationOutput struct {
// contains filtered or unexported fields
}
func (GenerateFindingRecommendationOutput) GoString ¶ added in v1.53.21
func (s GenerateFindingRecommendationOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (GenerateFindingRecommendationOutput) String ¶ added in v1.53.21
func (s GenerateFindingRecommendationOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GeneratedPolicy ¶ added in v1.38.15
type GeneratedPolicy struct { // The text to use as the content for the new policy. The policy is created // using the CreatePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html) // action. // // Policy is a required field Policy *string `locationName:"policy" type:"string" required:"true"` // contains filtered or unexported fields }
Contains the text for the generated policy.
func (GeneratedPolicy) GoString ¶ added in v1.38.15
func (s GeneratedPolicy) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GeneratedPolicy) SetPolicy ¶ added in v1.38.15
func (s *GeneratedPolicy) SetPolicy(v string) *GeneratedPolicy
SetPolicy sets the Policy field's value.
func (GeneratedPolicy) String ¶ added in v1.38.15
func (s GeneratedPolicy) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GeneratedPolicyProperties ¶ added in v1.38.15
type GeneratedPolicyProperties struct { // Lists details about the Trail used to generated policy. CloudTrailProperties *CloudTrailProperties `locationName:"cloudTrailProperties" type:"structure"` // This value is set to true if the generated policy contains all possible actions // for a service that IAM Access Analyzer identified from the CloudTrail trail // that you specified, and false otherwise. IsComplete *bool `locationName:"isComplete" type:"boolean"` // The ARN of the IAM entity (user or role) for which you are generating a policy. // // PrincipalArn is a required field PrincipalArn *string `locationName:"principalArn" type:"string" required:"true"` // contains filtered or unexported fields }
Contains the generated policy details.
func (GeneratedPolicyProperties) GoString ¶ added in v1.38.15
func (s GeneratedPolicyProperties) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GeneratedPolicyProperties) SetCloudTrailProperties ¶ added in v1.38.15
func (s *GeneratedPolicyProperties) SetCloudTrailProperties(v *CloudTrailProperties) *GeneratedPolicyProperties
SetCloudTrailProperties sets the CloudTrailProperties field's value.
func (*GeneratedPolicyProperties) SetIsComplete ¶ added in v1.38.15
func (s *GeneratedPolicyProperties) SetIsComplete(v bool) *GeneratedPolicyProperties
SetIsComplete sets the IsComplete field's value.
func (*GeneratedPolicyProperties) SetPrincipalArn ¶ added in v1.38.15
func (s *GeneratedPolicyProperties) SetPrincipalArn(v string) *GeneratedPolicyProperties
SetPrincipalArn sets the PrincipalArn field's value.
func (GeneratedPolicyProperties) String ¶ added in v1.38.15
func (s GeneratedPolicyProperties) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GeneratedPolicyResult ¶ added in v1.38.15
type GeneratedPolicyResult struct { // The text to use as the content for the new policy. The policy is created // using the CreatePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html) // action. GeneratedPolicies []*GeneratedPolicy `locationName:"generatedPolicies" type:"list"` // A GeneratedPolicyProperties object that contains properties of the generated // policy. // // Properties is a required field Properties *GeneratedPolicyProperties `locationName:"properties" type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the text for the generated policy and its details.
func (GeneratedPolicyResult) GoString ¶ added in v1.38.15
func (s GeneratedPolicyResult) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GeneratedPolicyResult) SetGeneratedPolicies ¶ added in v1.38.15
func (s *GeneratedPolicyResult) SetGeneratedPolicies(v []*GeneratedPolicy) *GeneratedPolicyResult
SetGeneratedPolicies sets the GeneratedPolicies field's value.
func (*GeneratedPolicyResult) SetProperties ¶ added in v1.38.15
func (s *GeneratedPolicyResult) SetProperties(v *GeneratedPolicyProperties) *GeneratedPolicyResult
SetProperties sets the Properties field's value.
func (GeneratedPolicyResult) String ¶ added in v1.38.15
func (s GeneratedPolicyResult) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetAccessPreviewInput ¶ added in v1.37.28
type GetAccessPreviewInput struct { // The unique ID for the access preview. // // AccessPreviewId is a required field AccessPreviewId *string `location:"uri" locationName:"accessPreviewId" type:"string" required:"true"` // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // used to generate the access preview. // // AnalyzerArn is a required field AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"` // contains filtered or unexported fields }
func (GetAccessPreviewInput) GoString ¶ added in v1.37.28
func (s GetAccessPreviewInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAccessPreviewInput) SetAccessPreviewId ¶ added in v1.37.28
func (s *GetAccessPreviewInput) SetAccessPreviewId(v string) *GetAccessPreviewInput
SetAccessPreviewId sets the AccessPreviewId field's value.
func (*GetAccessPreviewInput) SetAnalyzerArn ¶ added in v1.37.28
func (s *GetAccessPreviewInput) SetAnalyzerArn(v string) *GetAccessPreviewInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (GetAccessPreviewInput) String ¶ added in v1.37.28
func (s GetAccessPreviewInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAccessPreviewInput) Validate ¶ added in v1.37.28
func (s *GetAccessPreviewInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetAccessPreviewOutput ¶ added in v1.37.28
type GetAccessPreviewOutput struct { // An object that contains information about the access preview. // // AccessPreview is a required field AccessPreview *AccessPreview `locationName:"accessPreview" type:"structure" required:"true"` // contains filtered or unexported fields }
func (GetAccessPreviewOutput) GoString ¶ added in v1.37.28
func (s GetAccessPreviewOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAccessPreviewOutput) SetAccessPreview ¶ added in v1.37.28
func (s *GetAccessPreviewOutput) SetAccessPreview(v *AccessPreview) *GetAccessPreviewOutput
SetAccessPreview sets the AccessPreview field's value.
func (GetAccessPreviewOutput) String ¶ added in v1.37.28
func (s GetAccessPreviewOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetAnalyzedResourceInput ¶
type GetAnalyzedResourceInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // to retrieve information from. // // AnalyzerArn is a required field AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"` // The ARN of the resource to retrieve information about. // // ResourceArn is a required field ResourceArn *string `location:"querystring" locationName:"resourceArn" type:"string" required:"true"` // contains filtered or unexported fields }
Retrieves an analyzed resource.
func (GetAnalyzedResourceInput) GoString ¶
func (s GetAnalyzedResourceInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAnalyzedResourceInput) SetAnalyzerArn ¶
func (s *GetAnalyzedResourceInput) SetAnalyzerArn(v string) *GetAnalyzedResourceInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*GetAnalyzedResourceInput) SetResourceArn ¶
func (s *GetAnalyzedResourceInput) SetResourceArn(v string) *GetAnalyzedResourceInput
SetResourceArn sets the ResourceArn field's value.
func (GetAnalyzedResourceInput) String ¶
func (s GetAnalyzedResourceInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAnalyzedResourceInput) Validate ¶
func (s *GetAnalyzedResourceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetAnalyzedResourceOutput ¶
type GetAnalyzedResourceOutput struct { // An AnalyzedResource object that contains information that IAM Access Analyzer // found when it analyzed the resource. Resource *AnalyzedResource `locationName:"resource" type:"structure"` // contains filtered or unexported fields }
The response to the request.
func (GetAnalyzedResourceOutput) GoString ¶
func (s GetAnalyzedResourceOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAnalyzedResourceOutput) SetResource ¶
func (s *GetAnalyzedResourceOutput) SetResource(v *AnalyzedResource) *GetAnalyzedResourceOutput
SetResource sets the Resource field's value.
func (GetAnalyzedResourceOutput) String ¶
func (s GetAnalyzedResourceOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetAnalyzerInput ¶
type GetAnalyzerInput struct { // The name of the analyzer retrieved. // // AnalyzerName is a required field AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
Retrieves an analyzer.
func (GetAnalyzerInput) GoString ¶
func (s GetAnalyzerInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAnalyzerInput) SetAnalyzerName ¶
func (s *GetAnalyzerInput) SetAnalyzerName(v string) *GetAnalyzerInput
SetAnalyzerName sets the AnalyzerName field's value.
func (GetAnalyzerInput) String ¶
func (s GetAnalyzerInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAnalyzerInput) Validate ¶
func (s *GetAnalyzerInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetAnalyzerOutput ¶
type GetAnalyzerOutput struct { // An AnalyzerSummary object that contains information about the analyzer. // // Analyzer is a required field Analyzer *AnalyzerSummary `locationName:"analyzer" type:"structure" required:"true"` // contains filtered or unexported fields }
The response to the request.
func (GetAnalyzerOutput) GoString ¶
func (s GetAnalyzerOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetAnalyzerOutput) SetAnalyzer ¶
func (s *GetAnalyzerOutput) SetAnalyzer(v *AnalyzerSummary) *GetAnalyzerOutput
SetAnalyzer sets the Analyzer field's value.
func (GetAnalyzerOutput) String ¶
func (s GetAnalyzerOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetArchiveRuleInput ¶
type GetArchiveRuleInput struct { // The name of the analyzer to retrieve rules from. // // AnalyzerName is a required field AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"` // The name of the rule to retrieve. // // RuleName is a required field RuleName *string `location:"uri" locationName:"ruleName" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
Retrieves an archive rule.
func (GetArchiveRuleInput) GoString ¶
func (s GetArchiveRuleInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetArchiveRuleInput) SetAnalyzerName ¶
func (s *GetArchiveRuleInput) SetAnalyzerName(v string) *GetArchiveRuleInput
SetAnalyzerName sets the AnalyzerName field's value.
func (*GetArchiveRuleInput) SetRuleName ¶
func (s *GetArchiveRuleInput) SetRuleName(v string) *GetArchiveRuleInput
SetRuleName sets the RuleName field's value.
func (GetArchiveRuleInput) String ¶
func (s GetArchiveRuleInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetArchiveRuleInput) Validate ¶
func (s *GetArchiveRuleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetArchiveRuleOutput ¶
type GetArchiveRuleOutput struct { // Contains information about an archive rule. // // ArchiveRule is a required field ArchiveRule *ArchiveRuleSummary `locationName:"archiveRule" type:"structure" required:"true"` // contains filtered or unexported fields }
The response to the request.
func (GetArchiveRuleOutput) GoString ¶
func (s GetArchiveRuleOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetArchiveRuleOutput) SetArchiveRule ¶
func (s *GetArchiveRuleOutput) SetArchiveRule(v *ArchiveRuleSummary) *GetArchiveRuleOutput
SetArchiveRule sets the ArchiveRule field's value.
func (GetArchiveRuleOutput) String ¶
func (s GetArchiveRuleOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetFindingInput ¶
type GetFindingInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // that generated the finding. // // AnalyzerArn is a required field AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"` // The ID of the finding to retrieve. // // Id is a required field Id *string `location:"uri" locationName:"id" type:"string" required:"true"` // contains filtered or unexported fields }
Retrieves a finding.
func (GetFindingInput) GoString ¶
func (s GetFindingInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingInput) SetAnalyzerArn ¶
func (s *GetFindingInput) SetAnalyzerArn(v string) *GetFindingInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*GetFindingInput) SetId ¶
func (s *GetFindingInput) SetId(v string) *GetFindingInput
SetId sets the Id field's value.
func (GetFindingInput) String ¶
func (s GetFindingInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingInput) Validate ¶
func (s *GetFindingInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetFindingOutput ¶
type GetFindingOutput struct { // A finding object that contains finding details. Finding *Finding `locationName:"finding" type:"structure"` // contains filtered or unexported fields }
The response to the request.
func (GetFindingOutput) GoString ¶
func (s GetFindingOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingOutput) SetFinding ¶
func (s *GetFindingOutput) SetFinding(v *Finding) *GetFindingOutput
SetFinding sets the Finding field's value.
func (GetFindingOutput) String ¶
func (s GetFindingOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetFindingRecommendationInput ¶ added in v1.53.21
type GetFindingRecommendationInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // used to generate the finding recommendation. // // AnalyzerArn is a required field AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"` // The unique ID for the finding recommendation. // // Id is a required field Id *string `location:"uri" locationName:"id" min:"1" type:"string" required:"true"` // The maximum number of results to return in the response. MaxResults *int64 `location:"querystring" locationName:"maxResults" min:"1" type:"integer"` // A token used for pagination of results returned. NextToken *string `location:"querystring" locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (GetFindingRecommendationInput) GoString ¶ added in v1.53.21
func (s GetFindingRecommendationInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingRecommendationInput) SetAnalyzerArn ¶ added in v1.53.21
func (s *GetFindingRecommendationInput) SetAnalyzerArn(v string) *GetFindingRecommendationInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*GetFindingRecommendationInput) SetId ¶ added in v1.53.21
func (s *GetFindingRecommendationInput) SetId(v string) *GetFindingRecommendationInput
SetId sets the Id field's value.
func (*GetFindingRecommendationInput) SetMaxResults ¶ added in v1.53.21
func (s *GetFindingRecommendationInput) SetMaxResults(v int64) *GetFindingRecommendationInput
SetMaxResults sets the MaxResults field's value.
func (*GetFindingRecommendationInput) SetNextToken ¶ added in v1.53.21
func (s *GetFindingRecommendationInput) SetNextToken(v string) *GetFindingRecommendationInput
SetNextToken sets the NextToken field's value.
func (GetFindingRecommendationInput) String ¶ added in v1.53.21
func (s GetFindingRecommendationInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingRecommendationInput) Validate ¶ added in v1.53.21
func (s *GetFindingRecommendationInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetFindingRecommendationOutput ¶ added in v1.53.21
type GetFindingRecommendationOutput struct { // The time at which the retrieval of the finding recommendation was completed. CompletedAt *time.Time `locationName:"completedAt" type:"timestamp" timestampFormat:"iso8601"` // Detailed information about the reason that the retrieval of a recommendation // for the finding failed. Error *RecommendationError `locationName:"error" type:"structure"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // The type of recommendation for the finding. // // RecommendationType is a required field RecommendationType *string `locationName:"recommendationType" type:"string" required:"true" enum:"RecommendationType"` // A group of recommended steps for the finding. RecommendedSteps []*RecommendedStep `locationName:"recommendedSteps" type:"list"` // The ARN of the resource of the finding. // // ResourceArn is a required field ResourceArn *string `locationName:"resourceArn" type:"string" required:"true"` // The time at which the retrieval of the finding recommendation was started. // // StartedAt is a required field StartedAt *time.Time `locationName:"startedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The status of the retrieval of the finding recommendation. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"Status"` // contains filtered or unexported fields }
func (GetFindingRecommendationOutput) GoString ¶ added in v1.53.21
func (s GetFindingRecommendationOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingRecommendationOutput) SetCompletedAt ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetCompletedAt(v time.Time) *GetFindingRecommendationOutput
SetCompletedAt sets the CompletedAt field's value.
func (*GetFindingRecommendationOutput) SetError ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetError(v *RecommendationError) *GetFindingRecommendationOutput
SetError sets the Error field's value.
func (*GetFindingRecommendationOutput) SetNextToken ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetNextToken(v string) *GetFindingRecommendationOutput
SetNextToken sets the NextToken field's value.
func (*GetFindingRecommendationOutput) SetRecommendationType ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetRecommendationType(v string) *GetFindingRecommendationOutput
SetRecommendationType sets the RecommendationType field's value.
func (*GetFindingRecommendationOutput) SetRecommendedSteps ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetRecommendedSteps(v []*RecommendedStep) *GetFindingRecommendationOutput
SetRecommendedSteps sets the RecommendedSteps field's value.
func (*GetFindingRecommendationOutput) SetResourceArn ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetResourceArn(v string) *GetFindingRecommendationOutput
SetResourceArn sets the ResourceArn field's value.
func (*GetFindingRecommendationOutput) SetStartedAt ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetStartedAt(v time.Time) *GetFindingRecommendationOutput
SetStartedAt sets the StartedAt field's value.
func (*GetFindingRecommendationOutput) SetStatus ¶ added in v1.53.21
func (s *GetFindingRecommendationOutput) SetStatus(v string) *GetFindingRecommendationOutput
SetStatus sets the Status field's value.
func (GetFindingRecommendationOutput) String ¶ added in v1.53.21
func (s GetFindingRecommendationOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetFindingV2Input ¶ added in v1.48.4
type GetFindingV2Input struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // that generated the finding. // // AnalyzerArn is a required field AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"` // The ID of the finding to retrieve. // // Id is a required field Id *string `location:"uri" locationName:"id" type:"string" required:"true"` // The maximum number of results to return in the response. MaxResults *int64 `location:"querystring" locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `location:"querystring" locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (GetFindingV2Input) GoString ¶ added in v1.48.4
func (s GetFindingV2Input) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingV2Input) SetAnalyzerArn ¶ added in v1.48.4
func (s *GetFindingV2Input) SetAnalyzerArn(v string) *GetFindingV2Input
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*GetFindingV2Input) SetId ¶ added in v1.48.4
func (s *GetFindingV2Input) SetId(v string) *GetFindingV2Input
SetId sets the Id field's value.
func (*GetFindingV2Input) SetMaxResults ¶ added in v1.48.4
func (s *GetFindingV2Input) SetMaxResults(v int64) *GetFindingV2Input
SetMaxResults sets the MaxResults field's value.
func (*GetFindingV2Input) SetNextToken ¶ added in v1.48.4
func (s *GetFindingV2Input) SetNextToken(v string) *GetFindingV2Input
SetNextToken sets the NextToken field's value.
func (GetFindingV2Input) String ¶ added in v1.48.4
func (s GetFindingV2Input) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingV2Input) Validate ¶ added in v1.48.4
func (s *GetFindingV2Input) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetFindingV2Output ¶ added in v1.48.4
type GetFindingV2Output struct { // The time at which the resource-based policy or IAM entity that generated // the finding was analyzed. // // AnalyzedAt is a required field AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The time at which the finding was created. // // CreatedAt is a required field CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // An error. Error *string `locationName:"error" type:"string"` // A localized message that explains the finding and provides guidance on how // to address it. // // FindingDetails is a required field FindingDetails []*FindingDetails `locationName:"findingDetails" type:"list" required:"true"` // The type of the finding. For external access analyzers, the type is ExternalAccess. // For unused access analyzers, the type can be UnusedIAMRole, UnusedIAMUserAccessKey, // UnusedIAMUserPassword, or UnusedPermission. FindingType *string `locationName:"findingType" type:"string" enum:"FindingType"` // The ID of the finding to retrieve. // // Id is a required field Id *string `locationName:"id" type:"string" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // The resource that generated the finding. Resource *string `locationName:"resource" type:"string"` // Tye Amazon Web Services account ID that owns the resource. // // ResourceOwnerAccount is a required field ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"` // The type of the resource identified in the finding. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"` // The status of the finding. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"` // The time at which the finding was updated. // // UpdatedAt is a required field UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"` // contains filtered or unexported fields }
func (GetFindingV2Output) GoString ¶ added in v1.48.4
func (s GetFindingV2Output) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetFindingV2Output) SetAnalyzedAt ¶ added in v1.48.4
func (s *GetFindingV2Output) SetAnalyzedAt(v time.Time) *GetFindingV2Output
SetAnalyzedAt sets the AnalyzedAt field's value.
func (*GetFindingV2Output) SetCreatedAt ¶ added in v1.48.4
func (s *GetFindingV2Output) SetCreatedAt(v time.Time) *GetFindingV2Output
SetCreatedAt sets the CreatedAt field's value.
func (*GetFindingV2Output) SetError ¶ added in v1.48.4
func (s *GetFindingV2Output) SetError(v string) *GetFindingV2Output
SetError sets the Error field's value.
func (*GetFindingV2Output) SetFindingDetails ¶ added in v1.48.4
func (s *GetFindingV2Output) SetFindingDetails(v []*FindingDetails) *GetFindingV2Output
SetFindingDetails sets the FindingDetails field's value.
func (*GetFindingV2Output) SetFindingType ¶ added in v1.48.4
func (s *GetFindingV2Output) SetFindingType(v string) *GetFindingV2Output
SetFindingType sets the FindingType field's value.
func (*GetFindingV2Output) SetId ¶ added in v1.48.4
func (s *GetFindingV2Output) SetId(v string) *GetFindingV2Output
SetId sets the Id field's value.
func (*GetFindingV2Output) SetNextToken ¶ added in v1.48.4
func (s *GetFindingV2Output) SetNextToken(v string) *GetFindingV2Output
SetNextToken sets the NextToken field's value.
func (*GetFindingV2Output) SetResource ¶ added in v1.48.4
func (s *GetFindingV2Output) SetResource(v string) *GetFindingV2Output
SetResource sets the Resource field's value.
func (*GetFindingV2Output) SetResourceOwnerAccount ¶ added in v1.48.4
func (s *GetFindingV2Output) SetResourceOwnerAccount(v string) *GetFindingV2Output
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (*GetFindingV2Output) SetResourceType ¶ added in v1.48.4
func (s *GetFindingV2Output) SetResourceType(v string) *GetFindingV2Output
SetResourceType sets the ResourceType field's value.
func (*GetFindingV2Output) SetStatus ¶ added in v1.48.4
func (s *GetFindingV2Output) SetStatus(v string) *GetFindingV2Output
SetStatus sets the Status field's value.
func (*GetFindingV2Output) SetUpdatedAt ¶ added in v1.48.4
func (s *GetFindingV2Output) SetUpdatedAt(v time.Time) *GetFindingV2Output
SetUpdatedAt sets the UpdatedAt field's value.
func (GetFindingV2Output) String ¶ added in v1.48.4
func (s GetFindingV2Output) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type GetGeneratedPolicyInput ¶ added in v1.38.15
type GetGeneratedPolicyInput struct { // The level of detail that you want to generate. You can specify whether to // generate policies with placeholders for resource ARNs for actions that support // resource level granularity in policies. // // For example, in the resource section of a policy, you can receive a placeholder // such as "Resource":"arn:aws:s3:::${BucketName}" instead of "*". IncludeResourcePlaceholders *bool `location:"querystring" locationName:"includeResourcePlaceholders" type:"boolean"` // The level of detail that you want to generate. You can specify whether to // generate service-level policies. // // IAM Access Analyzer uses iam:servicelastaccessed to identify services that // have been used recently to create this service-level template. IncludeServiceLevelTemplate *bool `location:"querystring" locationName:"includeServiceLevelTemplate" type:"boolean"` // The JobId that is returned by the StartPolicyGeneration operation. The JobId // can be used with GetGeneratedPolicy to retrieve the generated policies or // used with CancelPolicyGeneration to cancel the policy generation request. // // JobId is a required field JobId *string `location:"uri" locationName:"jobId" type:"string" required:"true"` // contains filtered or unexported fields }
func (GetGeneratedPolicyInput) GoString ¶ added in v1.38.15
func (s GetGeneratedPolicyInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetGeneratedPolicyInput) SetIncludeResourcePlaceholders ¶ added in v1.38.15
func (s *GetGeneratedPolicyInput) SetIncludeResourcePlaceholders(v bool) *GetGeneratedPolicyInput
SetIncludeResourcePlaceholders sets the IncludeResourcePlaceholders field's value.
func (*GetGeneratedPolicyInput) SetIncludeServiceLevelTemplate ¶ added in v1.38.15
func (s *GetGeneratedPolicyInput) SetIncludeServiceLevelTemplate(v bool) *GetGeneratedPolicyInput
SetIncludeServiceLevelTemplate sets the IncludeServiceLevelTemplate field's value.
func (*GetGeneratedPolicyInput) SetJobId ¶ added in v1.38.15
func (s *GetGeneratedPolicyInput) SetJobId(v string) *GetGeneratedPolicyInput
SetJobId sets the JobId field's value.
func (GetGeneratedPolicyInput) String ¶ added in v1.38.15
func (s GetGeneratedPolicyInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetGeneratedPolicyInput) Validate ¶ added in v1.38.15
func (s *GetGeneratedPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetGeneratedPolicyOutput ¶ added in v1.38.15
type GetGeneratedPolicyOutput struct { // A GeneratedPolicyResult object that contains the generated policies and associated // details. // // GeneratedPolicyResult is a required field GeneratedPolicyResult *GeneratedPolicyResult `locationName:"generatedPolicyResult" type:"structure" required:"true"` // A GeneratedPolicyDetails object that contains details about the generated // policy. // // JobDetails is a required field JobDetails *JobDetails `locationName:"jobDetails" type:"structure" required:"true"` // contains filtered or unexported fields }
func (GetGeneratedPolicyOutput) GoString ¶ added in v1.38.15
func (s GetGeneratedPolicyOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*GetGeneratedPolicyOutput) SetGeneratedPolicyResult ¶ added in v1.38.15
func (s *GetGeneratedPolicyOutput) SetGeneratedPolicyResult(v *GeneratedPolicyResult) *GetGeneratedPolicyOutput
SetGeneratedPolicyResult sets the GeneratedPolicyResult field's value.
func (*GetGeneratedPolicyOutput) SetJobDetails ¶ added in v1.38.15
func (s *GetGeneratedPolicyOutput) SetJobDetails(v *JobDetails) *GetGeneratedPolicyOutput
SetJobDetails sets the JobDetails field's value.
func (GetGeneratedPolicyOutput) String ¶ added in v1.38.15
func (s GetGeneratedPolicyOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type IamRoleConfiguration ¶ added in v1.37.28
type IamRoleConfiguration struct { // The proposed trust policy for the IAM role. TrustPolicy *string `locationName:"trustPolicy" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for an IAM role. You can propose a configuration for a new IAM role or an existing IAM role that you own by specifying the trust policy. If the configuration is for a new IAM role, you must specify the trust policy. If the configuration is for an existing IAM role that you own and you do not propose the trust policy, the access preview uses the existing trust policy for the role. The proposed trust policy cannot be an empty string. For more information about role trust policy limits, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html).
func (IamRoleConfiguration) GoString ¶ added in v1.37.28
func (s IamRoleConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*IamRoleConfiguration) SetTrustPolicy ¶ added in v1.37.28
func (s *IamRoleConfiguration) SetTrustPolicy(v string) *IamRoleConfiguration
SetTrustPolicy sets the TrustPolicy field's value.
func (IamRoleConfiguration) String ¶ added in v1.37.28
func (s IamRoleConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type InlineArchiveRule ¶
type InlineArchiveRule struct { // The condition and values for a criterion. // // Filter is a required field Filter map[string]*Criterion `locationName:"filter" type:"map" required:"true"` // The name of the rule. // // RuleName is a required field RuleName *string `locationName:"ruleName" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
An criterion statement in an archive rule. Each archive rule may have multiple criteria.
func (InlineArchiveRule) GoString ¶
func (s InlineArchiveRule) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*InlineArchiveRule) SetFilter ¶
func (s *InlineArchiveRule) SetFilter(v map[string]*Criterion) *InlineArchiveRule
SetFilter sets the Filter field's value.
func (*InlineArchiveRule) SetRuleName ¶
func (s *InlineArchiveRule) SetRuleName(v string) *InlineArchiveRule
SetRuleName sets the RuleName field's value.
func (InlineArchiveRule) String ¶
func (s InlineArchiveRule) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*InlineArchiveRule) Validate ¶
func (s *InlineArchiveRule) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type InternalServerException ¶ added in v1.28.0
type InternalServerException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // The seconds to wait to retry. RetryAfterSeconds *int64 `location:"header" locationName:"Retry-After" type:"integer"` // contains filtered or unexported fields }
Internal server error.
func (*InternalServerException) Code ¶ added in v1.28.0
func (s *InternalServerException) Code() string
Code returns the exception type name.
func (*InternalServerException) Error ¶ added in v1.28.0
func (s *InternalServerException) Error() string
func (InternalServerException) GoString ¶ added in v1.28.0
func (s InternalServerException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*InternalServerException) Message ¶ added in v1.28.0
func (s *InternalServerException) Message() string
Message returns the exception's message.
func (*InternalServerException) OrigErr ¶ added in v1.28.0
func (s *InternalServerException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*InternalServerException) RequestID ¶ added in v1.28.0
func (s *InternalServerException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*InternalServerException) StatusCode ¶ added in v1.28.0
func (s *InternalServerException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (InternalServerException) String ¶ added in v1.28.0
func (s InternalServerException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type InternetConfiguration ¶ added in v1.37.28
type InternetConfiguration struct {
// contains filtered or unexported fields
}
This configuration sets the network origin for the Amazon S3 access point or multi-region access point to Internet.
func (InternetConfiguration) GoString ¶ added in v1.37.28
func (s InternetConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (InternetConfiguration) String ¶ added in v1.37.28
func (s InternetConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type InvalidParameterException ¶ added in v1.48.4
type InvalidParameterException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // contains filtered or unexported fields }
The specified parameter is invalid.
func (*InvalidParameterException) Code ¶ added in v1.48.4
func (s *InvalidParameterException) Code() string
Code returns the exception type name.
func (*InvalidParameterException) Error ¶ added in v1.48.4
func (s *InvalidParameterException) Error() string
func (InvalidParameterException) GoString ¶ added in v1.48.4
func (s InvalidParameterException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*InvalidParameterException) Message ¶ added in v1.48.4
func (s *InvalidParameterException) Message() string
Message returns the exception's message.
func (*InvalidParameterException) OrigErr ¶ added in v1.48.4
func (s *InvalidParameterException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*InvalidParameterException) RequestID ¶ added in v1.48.4
func (s *InvalidParameterException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*InvalidParameterException) StatusCode ¶ added in v1.48.4
func (s *InvalidParameterException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (InvalidParameterException) String ¶ added in v1.48.4
func (s InvalidParameterException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type JobDetails ¶ added in v1.38.15
type JobDetails struct { // A timestamp of when the job was completed. CompletedOn *time.Time `locationName:"completedOn" type:"timestamp" timestampFormat:"iso8601"` // The job error for the policy generation request. JobError *JobError `locationName:"jobError" type:"structure"` // The JobId that is returned by the StartPolicyGeneration operation. The JobId // can be used with GetGeneratedPolicy to retrieve the generated policies or // used with CancelPolicyGeneration to cancel the policy generation request. // // JobId is a required field JobId *string `locationName:"jobId" type:"string" required:"true"` // A timestamp of when the job was started. // // StartedOn is a required field StartedOn *time.Time `locationName:"startedOn" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The status of the job request. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"JobStatus"` // contains filtered or unexported fields }
Contains details about the policy generation request.
func (JobDetails) GoString ¶ added in v1.38.15
func (s JobDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*JobDetails) SetCompletedOn ¶ added in v1.38.15
func (s *JobDetails) SetCompletedOn(v time.Time) *JobDetails
SetCompletedOn sets the CompletedOn field's value.
func (*JobDetails) SetJobError ¶ added in v1.38.15
func (s *JobDetails) SetJobError(v *JobError) *JobDetails
SetJobError sets the JobError field's value.
func (*JobDetails) SetJobId ¶ added in v1.38.15
func (s *JobDetails) SetJobId(v string) *JobDetails
SetJobId sets the JobId field's value.
func (*JobDetails) SetStartedOn ¶ added in v1.38.15
func (s *JobDetails) SetStartedOn(v time.Time) *JobDetails
SetStartedOn sets the StartedOn field's value.
func (*JobDetails) SetStatus ¶ added in v1.38.15
func (s *JobDetails) SetStatus(v string) *JobDetails
SetStatus sets the Status field's value.
func (JobDetails) String ¶ added in v1.38.15
func (s JobDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type JobError ¶ added in v1.38.15
type JobError struct { // The job error code. // // Code is a required field Code *string `locationName:"code" type:"string" required:"true" enum:"JobErrorCode"` // Specific information about the error. For example, which service quota was // exceeded or which resource was not found. // // Message is a required field Message *string `locationName:"message" type:"string" required:"true"` // contains filtered or unexported fields }
Contains the details about the policy generation error.
func (JobError) GoString ¶ added in v1.38.15
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*JobError) SetMessage ¶ added in v1.38.15
SetMessage sets the Message field's value.
type KmsGrantConfiguration ¶ added in v1.37.28
type KmsGrantConfiguration struct { // Use this structure to propose allowing cryptographic operations (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations) // in the grant only when the operation request includes the specified encryption // context (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#encrypt_context). Constraints *KmsGrantConstraints `locationName:"constraints" type:"structure"` // The principal that is given permission to perform the operations that the // grant permits. // // GranteePrincipal is a required field GranteePrincipal *string `locationName:"granteePrincipal" type:"string" required:"true"` // The Amazon Web Services account under which the grant was issued. The account // is used to propose KMS grants issued by accounts other than the owner of // the key. // // IssuingAccount is a required field IssuingAccount *string `locationName:"issuingAccount" type:"string" required:"true"` // A list of operations that the grant permits. // // Operations is a required field Operations []*string `locationName:"operations" type:"list" required:"true" enum:"KmsGrantOperation"` // The principal that is given permission to retire the grant by using RetireGrant // (https://docs.aws.amazon.com/kms/latest/APIReference/API_RetireGrant.html) // operation. RetiringPrincipal *string `locationName:"retiringPrincipal" type:"string"` // contains filtered or unexported fields }
A proposed grant configuration for a KMS key. For more information, see CreateGrant (https://docs.aws.amazon.com/kms/latest/APIReference/API_CreateGrant.html).
func (KmsGrantConfiguration) GoString ¶ added in v1.37.28
func (s KmsGrantConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*KmsGrantConfiguration) SetConstraints ¶ added in v1.37.28
func (s *KmsGrantConfiguration) SetConstraints(v *KmsGrantConstraints) *KmsGrantConfiguration
SetConstraints sets the Constraints field's value.
func (*KmsGrantConfiguration) SetGranteePrincipal ¶ added in v1.37.28
func (s *KmsGrantConfiguration) SetGranteePrincipal(v string) *KmsGrantConfiguration
SetGranteePrincipal sets the GranteePrincipal field's value.
func (*KmsGrantConfiguration) SetIssuingAccount ¶ added in v1.37.28
func (s *KmsGrantConfiguration) SetIssuingAccount(v string) *KmsGrantConfiguration
SetIssuingAccount sets the IssuingAccount field's value.
func (*KmsGrantConfiguration) SetOperations ¶ added in v1.37.28
func (s *KmsGrantConfiguration) SetOperations(v []*string) *KmsGrantConfiguration
SetOperations sets the Operations field's value.
func (*KmsGrantConfiguration) SetRetiringPrincipal ¶ added in v1.37.28
func (s *KmsGrantConfiguration) SetRetiringPrincipal(v string) *KmsGrantConfiguration
SetRetiringPrincipal sets the RetiringPrincipal field's value.
func (KmsGrantConfiguration) String ¶ added in v1.37.28
func (s KmsGrantConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*KmsGrantConfiguration) Validate ¶ added in v1.37.28
func (s *KmsGrantConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type KmsGrantConstraints ¶ added in v1.37.28
type KmsGrantConstraints struct { // A list of key-value pairs that must match the encryption context in the cryptographic // operation (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations) // request. The grant allows the operation only when the encryption context // in the request is the same as the encryption context specified in this constraint. EncryptionContextEquals map[string]*string `locationName:"encryptionContextEquals" type:"map"` // A list of key-value pairs that must be included in the encryption context // of the cryptographic operation (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations) // request. The grant allows the cryptographic operation only when the encryption // context in the request includes the key-value pairs specified in this constraint, // although it can include additional key-value pairs. EncryptionContextSubset map[string]*string `locationName:"encryptionContextSubset" type:"map"` // contains filtered or unexported fields }
Use this structure to propose allowing cryptographic operations (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations) in the grant only when the operation request includes the specified encryption context (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#encrypt_context). You can specify only one type of encryption context. An empty map is treated as not specified. For more information, see GrantConstraints (https://docs.aws.amazon.com/kms/latest/APIReference/API_GrantConstraints.html).
func (KmsGrantConstraints) GoString ¶ added in v1.37.28
func (s KmsGrantConstraints) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*KmsGrantConstraints) SetEncryptionContextEquals ¶ added in v1.37.28
func (s *KmsGrantConstraints) SetEncryptionContextEquals(v map[string]*string) *KmsGrantConstraints
SetEncryptionContextEquals sets the EncryptionContextEquals field's value.
func (*KmsGrantConstraints) SetEncryptionContextSubset ¶ added in v1.37.28
func (s *KmsGrantConstraints) SetEncryptionContextSubset(v map[string]*string) *KmsGrantConstraints
SetEncryptionContextSubset sets the EncryptionContextSubset field's value.
func (KmsGrantConstraints) String ¶ added in v1.37.28
func (s KmsGrantConstraints) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type KmsKeyConfiguration ¶ added in v1.37.28
type KmsKeyConfiguration struct { // A list of proposed grant configurations for the KMS key. If the proposed // grant configuration is for an existing key, the access preview uses the proposed // list of grant configurations in place of the existing grants. Otherwise, // the access preview uses the existing grants for the key. Grants []*KmsGrantConfiguration `locationName:"grants" type:"list"` // Resource policy configuration for the KMS key. The only valid value for the // name of the key policy is default. For more information, see Default key // policy (https://docs.aws.amazon.com/kms/latest/developerguide/key-policies.html#key-policy-default). KeyPolicies map[string]*string `locationName:"keyPolicies" type:"map"` // contains filtered or unexported fields }
Proposed access control configuration for a KMS key. You can propose a configuration for a new KMS key or an existing KMS key that you own by specifying the key policy and KMS grant configuration. If the configuration is for an existing key and you do not specify the key policy, the access preview uses the existing policy for the key. If the access preview is for a new resource and you do not specify the key policy, then the access preview uses the default key policy. The proposed key policy cannot be an empty string. For more information, see Default key policy (https://docs.aws.amazon.com/kms/latest/developerguide/key-policies.html#key-policy-default). For more information about key policy limits, see Resource quotas (https://docs.aws.amazon.com/kms/latest/developerguide/resource-limits.html).
func (KmsKeyConfiguration) GoString ¶ added in v1.37.28
func (s KmsKeyConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*KmsKeyConfiguration) SetGrants ¶ added in v1.37.28
func (s *KmsKeyConfiguration) SetGrants(v []*KmsGrantConfiguration) *KmsKeyConfiguration
SetGrants sets the Grants field's value.
func (*KmsKeyConfiguration) SetKeyPolicies ¶ added in v1.37.28
func (s *KmsKeyConfiguration) SetKeyPolicies(v map[string]*string) *KmsKeyConfiguration
SetKeyPolicies sets the KeyPolicies field's value.
func (KmsKeyConfiguration) String ¶ added in v1.37.28
func (s KmsKeyConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*KmsKeyConfiguration) Validate ¶ added in v1.37.28
func (s *KmsKeyConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListAccessPreviewFindingsInput ¶ added in v1.37.28
type ListAccessPreviewFindingsInput struct { // The unique ID for the access preview. // // AccessPreviewId is a required field AccessPreviewId *string `location:"uri" locationName:"accessPreviewId" type:"string" required:"true"` // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // used to generate the access. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // Criteria to filter the returned findings. Filter map[string]*Criterion `locationName:"filter" type:"map"` // The maximum number of results to return in the response. MaxResults *int64 `locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (ListAccessPreviewFindingsInput) GoString ¶ added in v1.37.28
func (s ListAccessPreviewFindingsInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAccessPreviewFindingsInput) SetAccessPreviewId ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsInput) SetAccessPreviewId(v string) *ListAccessPreviewFindingsInput
SetAccessPreviewId sets the AccessPreviewId field's value.
func (*ListAccessPreviewFindingsInput) SetAnalyzerArn ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsInput) SetAnalyzerArn(v string) *ListAccessPreviewFindingsInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*ListAccessPreviewFindingsInput) SetFilter ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsInput) SetFilter(v map[string]*Criterion) *ListAccessPreviewFindingsInput
SetFilter sets the Filter field's value.
func (*ListAccessPreviewFindingsInput) SetMaxResults ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsInput) SetMaxResults(v int64) *ListAccessPreviewFindingsInput
SetMaxResults sets the MaxResults field's value.
func (*ListAccessPreviewFindingsInput) SetNextToken ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsInput) SetNextToken(v string) *ListAccessPreviewFindingsInput
SetNextToken sets the NextToken field's value.
func (ListAccessPreviewFindingsInput) String ¶ added in v1.37.28
func (s ListAccessPreviewFindingsInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAccessPreviewFindingsInput) Validate ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListAccessPreviewFindingsOutput ¶ added in v1.37.28
type ListAccessPreviewFindingsOutput struct { // A list of access preview findings that match the specified filter criteria. // // Findings is a required field Findings []*AccessPreviewFinding `locationName:"findings" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (ListAccessPreviewFindingsOutput) GoString ¶ added in v1.37.28
func (s ListAccessPreviewFindingsOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAccessPreviewFindingsOutput) SetFindings ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsOutput) SetFindings(v []*AccessPreviewFinding) *ListAccessPreviewFindingsOutput
SetFindings sets the Findings field's value.
func (*ListAccessPreviewFindingsOutput) SetNextToken ¶ added in v1.37.28
func (s *ListAccessPreviewFindingsOutput) SetNextToken(v string) *ListAccessPreviewFindingsOutput
SetNextToken sets the NextToken field's value.
func (ListAccessPreviewFindingsOutput) String ¶ added in v1.37.28
func (s ListAccessPreviewFindingsOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListAccessPreviewsInput ¶ added in v1.37.28
type ListAccessPreviewsInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // used to generate the access preview. // // AnalyzerArn is a required field AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"` // The maximum number of results to return in the response. MaxResults *int64 `location:"querystring" locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `location:"querystring" locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (ListAccessPreviewsInput) GoString ¶ added in v1.37.28
func (s ListAccessPreviewsInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAccessPreviewsInput) SetAnalyzerArn ¶ added in v1.37.28
func (s *ListAccessPreviewsInput) SetAnalyzerArn(v string) *ListAccessPreviewsInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*ListAccessPreviewsInput) SetMaxResults ¶ added in v1.37.28
func (s *ListAccessPreviewsInput) SetMaxResults(v int64) *ListAccessPreviewsInput
SetMaxResults sets the MaxResults field's value.
func (*ListAccessPreviewsInput) SetNextToken ¶ added in v1.37.28
func (s *ListAccessPreviewsInput) SetNextToken(v string) *ListAccessPreviewsInput
SetNextToken sets the NextToken field's value.
func (ListAccessPreviewsInput) String ¶ added in v1.37.28
func (s ListAccessPreviewsInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAccessPreviewsInput) Validate ¶ added in v1.37.28
func (s *ListAccessPreviewsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListAccessPreviewsOutput ¶ added in v1.37.28
type ListAccessPreviewsOutput struct { // A list of access previews retrieved for the analyzer. // // AccessPreviews is a required field AccessPreviews []*AccessPreviewSummary `locationName:"accessPreviews" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (ListAccessPreviewsOutput) GoString ¶ added in v1.37.28
func (s ListAccessPreviewsOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAccessPreviewsOutput) SetAccessPreviews ¶ added in v1.37.28
func (s *ListAccessPreviewsOutput) SetAccessPreviews(v []*AccessPreviewSummary) *ListAccessPreviewsOutput
SetAccessPreviews sets the AccessPreviews field's value.
func (*ListAccessPreviewsOutput) SetNextToken ¶ added in v1.37.28
func (s *ListAccessPreviewsOutput) SetNextToken(v string) *ListAccessPreviewsOutput
SetNextToken sets the NextToken field's value.
func (ListAccessPreviewsOutput) String ¶ added in v1.37.28
func (s ListAccessPreviewsOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListAnalyzedResourcesInput ¶
type ListAnalyzedResourcesInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // to retrieve a list of analyzed resources from. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // The maximum number of results to return in the response. MaxResults *int64 `locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // The type of resource. ResourceType *string `locationName:"resourceType" type:"string" enum:"ResourceType"` // contains filtered or unexported fields }
Retrieves a list of resources that have been analyzed.
func (ListAnalyzedResourcesInput) GoString ¶
func (s ListAnalyzedResourcesInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAnalyzedResourcesInput) SetAnalyzerArn ¶
func (s *ListAnalyzedResourcesInput) SetAnalyzerArn(v string) *ListAnalyzedResourcesInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*ListAnalyzedResourcesInput) SetMaxResults ¶
func (s *ListAnalyzedResourcesInput) SetMaxResults(v int64) *ListAnalyzedResourcesInput
SetMaxResults sets the MaxResults field's value.
func (*ListAnalyzedResourcesInput) SetNextToken ¶
func (s *ListAnalyzedResourcesInput) SetNextToken(v string) *ListAnalyzedResourcesInput
SetNextToken sets the NextToken field's value.
func (*ListAnalyzedResourcesInput) SetResourceType ¶
func (s *ListAnalyzedResourcesInput) SetResourceType(v string) *ListAnalyzedResourcesInput
SetResourceType sets the ResourceType field's value.
func (ListAnalyzedResourcesInput) String ¶
func (s ListAnalyzedResourcesInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAnalyzedResourcesInput) Validate ¶
func (s *ListAnalyzedResourcesInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListAnalyzedResourcesOutput ¶
type ListAnalyzedResourcesOutput struct { // A list of resources that were analyzed. // // AnalyzedResources is a required field AnalyzedResources []*AnalyzedResourceSummary `locationName:"analyzedResources" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
The response to the request.
func (ListAnalyzedResourcesOutput) GoString ¶
func (s ListAnalyzedResourcesOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAnalyzedResourcesOutput) SetAnalyzedResources ¶
func (s *ListAnalyzedResourcesOutput) SetAnalyzedResources(v []*AnalyzedResourceSummary) *ListAnalyzedResourcesOutput
SetAnalyzedResources sets the AnalyzedResources field's value.
func (*ListAnalyzedResourcesOutput) SetNextToken ¶
func (s *ListAnalyzedResourcesOutput) SetNextToken(v string) *ListAnalyzedResourcesOutput
SetNextToken sets the NextToken field's value.
func (ListAnalyzedResourcesOutput) String ¶
func (s ListAnalyzedResourcesOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListAnalyzersInput ¶
type ListAnalyzersInput struct { // The maximum number of results to return in the response. MaxResults *int64 `location:"querystring" locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `location:"querystring" locationName:"nextToken" type:"string"` // The type of analyzer. Type *string `location:"querystring" locationName:"type" type:"string" enum:"Type"` // contains filtered or unexported fields }
Retrieves a list of analyzers.
func (ListAnalyzersInput) GoString ¶
func (s ListAnalyzersInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAnalyzersInput) SetMaxResults ¶
func (s *ListAnalyzersInput) SetMaxResults(v int64) *ListAnalyzersInput
SetMaxResults sets the MaxResults field's value.
func (*ListAnalyzersInput) SetNextToken ¶
func (s *ListAnalyzersInput) SetNextToken(v string) *ListAnalyzersInput
SetNextToken sets the NextToken field's value.
func (*ListAnalyzersInput) SetType ¶
func (s *ListAnalyzersInput) SetType(v string) *ListAnalyzersInput
SetType sets the Type field's value.
func (ListAnalyzersInput) String ¶
func (s ListAnalyzersInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListAnalyzersOutput ¶
type ListAnalyzersOutput struct { // The analyzers retrieved. // // Analyzers is a required field Analyzers []*AnalyzerSummary `locationName:"analyzers" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
The response to the request.
func (ListAnalyzersOutput) GoString ¶
func (s ListAnalyzersOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListAnalyzersOutput) SetAnalyzers ¶
func (s *ListAnalyzersOutput) SetAnalyzers(v []*AnalyzerSummary) *ListAnalyzersOutput
SetAnalyzers sets the Analyzers field's value.
func (*ListAnalyzersOutput) SetNextToken ¶
func (s *ListAnalyzersOutput) SetNextToken(v string) *ListAnalyzersOutput
SetNextToken sets the NextToken field's value.
func (ListAnalyzersOutput) String ¶
func (s ListAnalyzersOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListArchiveRulesInput ¶
type ListArchiveRulesInput struct { // The name of the analyzer to retrieve rules from. // // AnalyzerName is a required field AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"` // The maximum number of results to return in the request. MaxResults *int64 `location:"querystring" locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `location:"querystring" locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
Retrieves a list of archive rules created for the specified analyzer.
func (ListArchiveRulesInput) GoString ¶
func (s ListArchiveRulesInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListArchiveRulesInput) SetAnalyzerName ¶
func (s *ListArchiveRulesInput) SetAnalyzerName(v string) *ListArchiveRulesInput
SetAnalyzerName sets the AnalyzerName field's value.
func (*ListArchiveRulesInput) SetMaxResults ¶
func (s *ListArchiveRulesInput) SetMaxResults(v int64) *ListArchiveRulesInput
SetMaxResults sets the MaxResults field's value.
func (*ListArchiveRulesInput) SetNextToken ¶
func (s *ListArchiveRulesInput) SetNextToken(v string) *ListArchiveRulesInput
SetNextToken sets the NextToken field's value.
func (ListArchiveRulesInput) String ¶
func (s ListArchiveRulesInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListArchiveRulesInput) Validate ¶
func (s *ListArchiveRulesInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListArchiveRulesOutput ¶
type ListArchiveRulesOutput struct { // A list of archive rules created for the specified analyzer. // // ArchiveRules is a required field ArchiveRules []*ArchiveRuleSummary `locationName:"archiveRules" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
The response to the request.
func (ListArchiveRulesOutput) GoString ¶
func (s ListArchiveRulesOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListArchiveRulesOutput) SetArchiveRules ¶
func (s *ListArchiveRulesOutput) SetArchiveRules(v []*ArchiveRuleSummary) *ListArchiveRulesOutput
SetArchiveRules sets the ArchiveRules field's value.
func (*ListArchiveRulesOutput) SetNextToken ¶
func (s *ListArchiveRulesOutput) SetNextToken(v string) *ListArchiveRulesOutput
SetNextToken sets the NextToken field's value.
func (ListArchiveRulesOutput) String ¶
func (s ListArchiveRulesOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListFindingsInput ¶
type ListFindingsInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // to retrieve findings from. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // A filter to match for the findings to return. Filter map[string]*Criterion `locationName:"filter" type:"map"` // The maximum number of results to return in the response. MaxResults *int64 `locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // The sort order for the findings returned. Sort *SortCriteria `locationName:"sort" type:"structure"` // contains filtered or unexported fields }
Retrieves a list of findings generated by the specified analyzer.
func (ListFindingsInput) GoString ¶
func (s ListFindingsInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListFindingsInput) SetAnalyzerArn ¶
func (s *ListFindingsInput) SetAnalyzerArn(v string) *ListFindingsInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*ListFindingsInput) SetFilter ¶
func (s *ListFindingsInput) SetFilter(v map[string]*Criterion) *ListFindingsInput
SetFilter sets the Filter field's value.
func (*ListFindingsInput) SetMaxResults ¶
func (s *ListFindingsInput) SetMaxResults(v int64) *ListFindingsInput
SetMaxResults sets the MaxResults field's value.
func (*ListFindingsInput) SetNextToken ¶
func (s *ListFindingsInput) SetNextToken(v string) *ListFindingsInput
SetNextToken sets the NextToken field's value.
func (*ListFindingsInput) SetSort ¶
func (s *ListFindingsInput) SetSort(v *SortCriteria) *ListFindingsInput
SetSort sets the Sort field's value.
func (ListFindingsInput) String ¶
func (s ListFindingsInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListFindingsInput) Validate ¶
func (s *ListFindingsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListFindingsOutput ¶
type ListFindingsOutput struct { // A list of findings retrieved from the analyzer that match the filter criteria // specified, if any. // // Findings is a required field Findings []*FindingSummary `locationName:"findings" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
The response to the request.
func (ListFindingsOutput) GoString ¶
func (s ListFindingsOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListFindingsOutput) SetFindings ¶
func (s *ListFindingsOutput) SetFindings(v []*FindingSummary) *ListFindingsOutput
SetFindings sets the Findings field's value.
func (*ListFindingsOutput) SetNextToken ¶
func (s *ListFindingsOutput) SetNextToken(v string) *ListFindingsOutput
SetNextToken sets the NextToken field's value.
func (ListFindingsOutput) String ¶
func (s ListFindingsOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListFindingsV2Input ¶ added in v1.48.4
type ListFindingsV2Input struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // to retrieve findings from. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // A filter to match for the findings to return. Filter map[string]*Criterion `locationName:"filter" type:"map"` // The maximum number of results to return in the response. MaxResults *int64 `locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // The criteria used to sort. Sort *SortCriteria `locationName:"sort" type:"structure"` // contains filtered or unexported fields }
func (ListFindingsV2Input) GoString ¶ added in v1.48.4
func (s ListFindingsV2Input) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListFindingsV2Input) SetAnalyzerArn ¶ added in v1.48.4
func (s *ListFindingsV2Input) SetAnalyzerArn(v string) *ListFindingsV2Input
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*ListFindingsV2Input) SetFilter ¶ added in v1.48.4
func (s *ListFindingsV2Input) SetFilter(v map[string]*Criterion) *ListFindingsV2Input
SetFilter sets the Filter field's value.
func (*ListFindingsV2Input) SetMaxResults ¶ added in v1.48.4
func (s *ListFindingsV2Input) SetMaxResults(v int64) *ListFindingsV2Input
SetMaxResults sets the MaxResults field's value.
func (*ListFindingsV2Input) SetNextToken ¶ added in v1.48.4
func (s *ListFindingsV2Input) SetNextToken(v string) *ListFindingsV2Input
SetNextToken sets the NextToken field's value.
func (*ListFindingsV2Input) SetSort ¶ added in v1.48.4
func (s *ListFindingsV2Input) SetSort(v *SortCriteria) *ListFindingsV2Input
SetSort sets the Sort field's value.
func (ListFindingsV2Input) String ¶ added in v1.48.4
func (s ListFindingsV2Input) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListFindingsV2Input) Validate ¶ added in v1.48.4
func (s *ListFindingsV2Input) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListFindingsV2Output ¶ added in v1.48.4
type ListFindingsV2Output struct { // A list of findings retrieved from the analyzer that match the filter criteria // specified, if any. // // Findings is a required field Findings []*FindingSummaryV2 `locationName:"findings" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (ListFindingsV2Output) GoString ¶ added in v1.48.4
func (s ListFindingsV2Output) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListFindingsV2Output) SetFindings ¶ added in v1.48.4
func (s *ListFindingsV2Output) SetFindings(v []*FindingSummaryV2) *ListFindingsV2Output
SetFindings sets the Findings field's value.
func (*ListFindingsV2Output) SetNextToken ¶ added in v1.48.4
func (s *ListFindingsV2Output) SetNextToken(v string) *ListFindingsV2Output
SetNextToken sets the NextToken field's value.
func (ListFindingsV2Output) String ¶ added in v1.48.4
func (s ListFindingsV2Output) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListPolicyGenerationsInput ¶ added in v1.38.15
type ListPolicyGenerationsInput struct { // The maximum number of results to return in the response. MaxResults *int64 `location:"querystring" locationName:"maxResults" min:"1" type:"integer"` // A token used for pagination of results returned. NextToken *string `location:"querystring" locationName:"nextToken" type:"string"` // The ARN of the IAM entity (user or role) for which you are generating a policy. // Use this with ListGeneratedPolicies to filter the results to only include // results for a specific principal. PrincipalArn *string `location:"querystring" locationName:"principalArn" type:"string"` // contains filtered or unexported fields }
func (ListPolicyGenerationsInput) GoString ¶ added in v1.38.15
func (s ListPolicyGenerationsInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListPolicyGenerationsInput) SetMaxResults ¶ added in v1.38.15
func (s *ListPolicyGenerationsInput) SetMaxResults(v int64) *ListPolicyGenerationsInput
SetMaxResults sets the MaxResults field's value.
func (*ListPolicyGenerationsInput) SetNextToken ¶ added in v1.38.15
func (s *ListPolicyGenerationsInput) SetNextToken(v string) *ListPolicyGenerationsInput
SetNextToken sets the NextToken field's value.
func (*ListPolicyGenerationsInput) SetPrincipalArn ¶ added in v1.38.15
func (s *ListPolicyGenerationsInput) SetPrincipalArn(v string) *ListPolicyGenerationsInput
SetPrincipalArn sets the PrincipalArn field's value.
func (ListPolicyGenerationsInput) String ¶ added in v1.38.15
func (s ListPolicyGenerationsInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListPolicyGenerationsInput) Validate ¶ added in v1.38.15
func (s *ListPolicyGenerationsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListPolicyGenerationsOutput ¶ added in v1.38.15
type ListPolicyGenerationsOutput struct { // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // A PolicyGeneration object that contains details about the generated policy. // // PolicyGenerations is a required field PolicyGenerations []*PolicyGeneration `locationName:"policyGenerations" type:"list" required:"true"` // contains filtered or unexported fields }
func (ListPolicyGenerationsOutput) GoString ¶ added in v1.38.15
func (s ListPolicyGenerationsOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListPolicyGenerationsOutput) SetNextToken ¶ added in v1.38.15
func (s *ListPolicyGenerationsOutput) SetNextToken(v string) *ListPolicyGenerationsOutput
SetNextToken sets the NextToken field's value.
func (*ListPolicyGenerationsOutput) SetPolicyGenerations ¶ added in v1.38.15
func (s *ListPolicyGenerationsOutput) SetPolicyGenerations(v []*PolicyGeneration) *ListPolicyGenerationsOutput
SetPolicyGenerations sets the PolicyGenerations field's value.
func (ListPolicyGenerationsOutput) String ¶ added in v1.38.15
func (s ListPolicyGenerationsOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ListTagsForResourceInput ¶
type ListTagsForResourceInput struct { // The ARN of the resource to retrieve tags from. // // ResourceArn is a required field ResourceArn *string `location:"uri" locationName:"resourceArn" type:"string" required:"true"` // contains filtered or unexported fields }
Retrieves a list of tags applied to the specified resource.
func (ListTagsForResourceInput) GoString ¶
func (s ListTagsForResourceInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListTagsForResourceInput) SetResourceArn ¶
func (s *ListTagsForResourceInput) SetResourceArn(v string) *ListTagsForResourceInput
SetResourceArn sets the ResourceArn field's value.
func (ListTagsForResourceInput) String ¶
func (s ListTagsForResourceInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListTagsForResourceInput) Validate ¶
func (s *ListTagsForResourceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ListTagsForResourceOutput ¶
type ListTagsForResourceOutput struct { // The tags that are applied to the specified resource. Tags map[string]*string `locationName:"tags" type:"map"` // contains filtered or unexported fields }
The response to the request.
func (ListTagsForResourceOutput) GoString ¶
func (s ListTagsForResourceOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ListTagsForResourceOutput) SetTags ¶
func (s *ListTagsForResourceOutput) SetTags(v map[string]*string) *ListTagsForResourceOutput
SetTags sets the Tags field's value.
func (ListTagsForResourceOutput) String ¶
func (s ListTagsForResourceOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type Location ¶ added in v1.37.32
type Location struct { // A path in a policy, represented as a sequence of path elements. // // Path is a required field Path []*PathElement `locationName:"path" type:"list" required:"true"` // A span in a policy. // // Span is a required field Span *Span `locationName:"span" type:"structure" required:"true"` // contains filtered or unexported fields }
A location in a policy that is represented as a path through the JSON representation and a corresponding span.
func (Location) GoString ¶ added in v1.37.32
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*Location) SetPath ¶ added in v1.37.32
func (s *Location) SetPath(v []*PathElement) *Location
SetPath sets the Path field's value.
type NetworkOriginConfiguration ¶ added in v1.37.28
type NetworkOriginConfiguration struct { // The configuration for the Amazon S3 access point or multi-region access point // with an Internet origin. InternetConfiguration *InternetConfiguration `locationName:"internetConfiguration" type:"structure"` // The proposed virtual private cloud (VPC) configuration for the Amazon S3 // access point. VPC configuration does not apply to multi-region access points. // For more information, see VpcConfiguration (https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_VpcConfiguration.html). VpcConfiguration *VpcConfiguration `locationName:"vpcConfiguration" type:"structure"` // contains filtered or unexported fields }
The proposed InternetConfiguration or VpcConfiguration to apply to the Amazon S3 access point. VpcConfiguration does not apply to multi-region access points. You can make the access point accessible from the internet, or you can specify that all requests made through that access point must originate from a specific virtual private cloud (VPC). You can specify only one type of network configuration. For more information, see Creating access points (https://docs.aws.amazon.com/AmazonS3/latest/dev/creating-access-points.html).
func (NetworkOriginConfiguration) GoString ¶ added in v1.37.28
func (s NetworkOriginConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*NetworkOriginConfiguration) SetInternetConfiguration ¶ added in v1.37.28
func (s *NetworkOriginConfiguration) SetInternetConfiguration(v *InternetConfiguration) *NetworkOriginConfiguration
SetInternetConfiguration sets the InternetConfiguration field's value.
func (*NetworkOriginConfiguration) SetVpcConfiguration ¶ added in v1.37.28
func (s *NetworkOriginConfiguration) SetVpcConfiguration(v *VpcConfiguration) *NetworkOriginConfiguration
SetVpcConfiguration sets the VpcConfiguration field's value.
func (NetworkOriginConfiguration) String ¶ added in v1.37.28
func (s NetworkOriginConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*NetworkOriginConfiguration) Validate ¶ added in v1.37.28
func (s *NetworkOriginConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type PathElement ¶ added in v1.37.32
type PathElement struct { // Refers to an index in a JSON array. Index *int64 `locationName:"index" type:"integer"` // Refers to a key in a JSON object. Key *string `locationName:"key" type:"string"` // Refers to a substring of a literal string in a JSON object. Substring *Substring `locationName:"substring" type:"structure"` // Refers to the value associated with a given key in a JSON object. Value *string `locationName:"value" type:"string"` // contains filtered or unexported fields }
A single element in a path through the JSON representation of a policy.
func (PathElement) GoString ¶ added in v1.37.32
func (s PathElement) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*PathElement) SetIndex ¶ added in v1.37.32
func (s *PathElement) SetIndex(v int64) *PathElement
SetIndex sets the Index field's value.
func (*PathElement) SetKey ¶ added in v1.37.32
func (s *PathElement) SetKey(v string) *PathElement
SetKey sets the Key field's value.
func (*PathElement) SetSubstring ¶ added in v1.37.32
func (s *PathElement) SetSubstring(v *Substring) *PathElement
SetSubstring sets the Substring field's value.
func (*PathElement) SetValue ¶ added in v1.37.32
func (s *PathElement) SetValue(v string) *PathElement
SetValue sets the Value field's value.
func (PathElement) String ¶ added in v1.37.32
func (s PathElement) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type PolicyGeneration ¶ added in v1.38.15
type PolicyGeneration struct { // A timestamp of when the policy generation was completed. CompletedOn *time.Time `locationName:"completedOn" type:"timestamp" timestampFormat:"iso8601"` // The JobId that is returned by the StartPolicyGeneration operation. The JobId // can be used with GetGeneratedPolicy to retrieve the generated policies or // used with CancelPolicyGeneration to cancel the policy generation request. // // JobId is a required field JobId *string `locationName:"jobId" type:"string" required:"true"` // The ARN of the IAM entity (user or role) for which you are generating a policy. // // PrincipalArn is a required field PrincipalArn *string `locationName:"principalArn" type:"string" required:"true"` // A timestamp of when the policy generation started. // // StartedOn is a required field StartedOn *time.Time `locationName:"startedOn" type:"timestamp" timestampFormat:"iso8601" required:"true"` // The status of the policy generation request. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"JobStatus"` // contains filtered or unexported fields }
Contains details about the policy generation status and properties.
func (PolicyGeneration) GoString ¶ added in v1.38.15
func (s PolicyGeneration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*PolicyGeneration) SetCompletedOn ¶ added in v1.38.15
func (s *PolicyGeneration) SetCompletedOn(v time.Time) *PolicyGeneration
SetCompletedOn sets the CompletedOn field's value.
func (*PolicyGeneration) SetJobId ¶ added in v1.38.15
func (s *PolicyGeneration) SetJobId(v string) *PolicyGeneration
SetJobId sets the JobId field's value.
func (*PolicyGeneration) SetPrincipalArn ¶ added in v1.38.15
func (s *PolicyGeneration) SetPrincipalArn(v string) *PolicyGeneration
SetPrincipalArn sets the PrincipalArn field's value.
func (*PolicyGeneration) SetStartedOn ¶ added in v1.38.15
func (s *PolicyGeneration) SetStartedOn(v time.Time) *PolicyGeneration
SetStartedOn sets the StartedOn field's value.
func (*PolicyGeneration) SetStatus ¶ added in v1.38.15
func (s *PolicyGeneration) SetStatus(v string) *PolicyGeneration
SetStatus sets the Status field's value.
func (PolicyGeneration) String ¶ added in v1.38.15
func (s PolicyGeneration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type PolicyGenerationDetails ¶ added in v1.38.15
type PolicyGenerationDetails struct { // The ARN of the IAM entity (user or role) for which you are generating a policy. // // PrincipalArn is a required field PrincipalArn *string `locationName:"principalArn" type:"string" required:"true"` // contains filtered or unexported fields }
Contains the ARN details about the IAM entity for which the policy is generated.
func (PolicyGenerationDetails) GoString ¶ added in v1.38.15
func (s PolicyGenerationDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*PolicyGenerationDetails) SetPrincipalArn ¶ added in v1.38.15
func (s *PolicyGenerationDetails) SetPrincipalArn(v string) *PolicyGenerationDetails
SetPrincipalArn sets the PrincipalArn field's value.
func (PolicyGenerationDetails) String ¶ added in v1.38.15
func (s PolicyGenerationDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*PolicyGenerationDetails) Validate ¶ added in v1.38.15
func (s *PolicyGenerationDetails) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type Position ¶ added in v1.37.32
type Position struct { // The column of the position, starting from 0. // // Column is a required field Column *int64 `locationName:"column" type:"integer" required:"true"` // The line of the position, starting from 1. // // Line is a required field Line *int64 `locationName:"line" type:"integer" required:"true"` // The offset within the policy that corresponds to the position, starting from // 0. // // Offset is a required field Offset *int64 `locationName:"offset" type:"integer" required:"true"` // contains filtered or unexported fields }
A position in a policy.
func (Position) GoString ¶ added in v1.37.32
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type RdsDbClusterSnapshotAttributeValue ¶ added in v1.44.123
type RdsDbClusterSnapshotAttributeValue struct { // The Amazon Web Services account IDs that have access to the manual Amazon // RDS DB cluster snapshot. If the value all is specified, then the Amazon RDS // DB cluster snapshot is public and can be copied or restored by all Amazon // Web Services accounts. // // * If the configuration is for an existing Amazon RDS DB cluster snapshot // and you do not specify the accountIds in RdsDbClusterSnapshotAttributeValue, // then the access preview uses the existing shared accountIds for the snapshot. // // * If the access preview is for a new resource and you do not specify the // specify the accountIds in RdsDbClusterSnapshotAttributeValue, then the // access preview considers the snapshot without any attributes. // // * To propose deletion of existing shared accountIds, you can specify an // empty list for accountIds in the RdsDbClusterSnapshotAttributeValue. AccountIds []*string `locationName:"accountIds" type:"list"` // contains filtered or unexported fields }
The values for a manual Amazon RDS DB cluster snapshot attribute.
func (RdsDbClusterSnapshotAttributeValue) GoString ¶ added in v1.44.123
func (s RdsDbClusterSnapshotAttributeValue) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*RdsDbClusterSnapshotAttributeValue) SetAccountIds ¶ added in v1.44.123
func (s *RdsDbClusterSnapshotAttributeValue) SetAccountIds(v []*string) *RdsDbClusterSnapshotAttributeValue
SetAccountIds sets the AccountIds field's value.
func (RdsDbClusterSnapshotAttributeValue) String ¶ added in v1.44.123
func (s RdsDbClusterSnapshotAttributeValue) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type RdsDbClusterSnapshotConfiguration ¶ added in v1.44.123
type RdsDbClusterSnapshotConfiguration struct { // The names and values of manual DB cluster snapshot attributes. Manual DB // cluster snapshot attributes are used to authorize other Amazon Web Services // accounts to restore a manual DB cluster snapshot. The only valid value for // AttributeName for the attribute map is restore Attributes map[string]*RdsDbClusterSnapshotAttributeValue `locationName:"attributes" type:"map"` // The KMS key identifier for an encrypted Amazon RDS DB cluster snapshot. The // KMS key identifier is the key ARN, key ID, alias ARN, or alias name for the // KMS key. // // * If the configuration is for an existing Amazon RDS DB cluster snapshot // and you do not specify the kmsKeyId, or you specify an empty string, then // the access preview uses the existing kmsKeyId of the snapshot. // // * If the access preview is for a new resource and you do not specify the // specify the kmsKeyId, then the access preview considers the snapshot as // unencrypted. KmsKeyId *string `locationName:"kmsKeyId" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for an Amazon RDS DB cluster snapshot. You can propose a configuration for a new Amazon RDS DB cluster snapshot or an Amazon RDS DB cluster snapshot that you own by specifying the RdsDbClusterSnapshotAttributeValue and optional KMS encryption key. For more information, see ModifyDBClusterSnapshotAttribute (https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBClusterSnapshotAttribute.html).
func (RdsDbClusterSnapshotConfiguration) GoString ¶ added in v1.44.123
func (s RdsDbClusterSnapshotConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*RdsDbClusterSnapshotConfiguration) SetAttributes ¶ added in v1.44.123
func (s *RdsDbClusterSnapshotConfiguration) SetAttributes(v map[string]*RdsDbClusterSnapshotAttributeValue) *RdsDbClusterSnapshotConfiguration
SetAttributes sets the Attributes field's value.
func (*RdsDbClusterSnapshotConfiguration) SetKmsKeyId ¶ added in v1.44.123
func (s *RdsDbClusterSnapshotConfiguration) SetKmsKeyId(v string) *RdsDbClusterSnapshotConfiguration
SetKmsKeyId sets the KmsKeyId field's value.
func (RdsDbClusterSnapshotConfiguration) String ¶ added in v1.44.123
func (s RdsDbClusterSnapshotConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type RdsDbSnapshotAttributeValue ¶ added in v1.44.123
type RdsDbSnapshotAttributeValue struct { // The Amazon Web Services account IDs that have access to the manual Amazon // RDS DB snapshot. If the value all is specified, then the Amazon RDS DB snapshot // is public and can be copied or restored by all Amazon Web Services accounts. // // * If the configuration is for an existing Amazon RDS DB snapshot and you // do not specify the accountIds in RdsDbSnapshotAttributeValue, then the // access preview uses the existing shared accountIds for the snapshot. // // * If the access preview is for a new resource and you do not specify the // specify the accountIds in RdsDbSnapshotAttributeValue, then the access // preview considers the snapshot without any attributes. // // * To propose deletion of an existing shared accountIds, you can specify // an empty list for accountIds in the RdsDbSnapshotAttributeValue. AccountIds []*string `locationName:"accountIds" type:"list"` // contains filtered or unexported fields }
The name and values of a manual Amazon RDS DB snapshot attribute. Manual DB snapshot attributes are used to authorize other Amazon Web Services accounts to restore a manual DB snapshot.
func (RdsDbSnapshotAttributeValue) GoString ¶ added in v1.44.123
func (s RdsDbSnapshotAttributeValue) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*RdsDbSnapshotAttributeValue) SetAccountIds ¶ added in v1.44.123
func (s *RdsDbSnapshotAttributeValue) SetAccountIds(v []*string) *RdsDbSnapshotAttributeValue
SetAccountIds sets the AccountIds field's value.
func (RdsDbSnapshotAttributeValue) String ¶ added in v1.44.123
func (s RdsDbSnapshotAttributeValue) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type RdsDbSnapshotConfiguration ¶ added in v1.44.123
type RdsDbSnapshotConfiguration struct { // The names and values of manual DB snapshot attributes. Manual DB snapshot // attributes are used to authorize other Amazon Web Services accounts to restore // a manual DB snapshot. The only valid value for attributeName for the attribute // map is restore. Attributes map[string]*RdsDbSnapshotAttributeValue `locationName:"attributes" type:"map"` // The KMS key identifier for an encrypted Amazon RDS DB snapshot. The KMS key // identifier is the key ARN, key ID, alias ARN, or alias name for the KMS key. // // * If the configuration is for an existing Amazon RDS DB snapshot and you // do not specify the kmsKeyId, or you specify an empty string, then the // access preview uses the existing kmsKeyId of the snapshot. // // * If the access preview is for a new resource and you do not specify the // specify the kmsKeyId, then the access preview considers the snapshot as // unencrypted. KmsKeyId *string `locationName:"kmsKeyId" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for an Amazon RDS DB snapshot. You can propose a configuration for a new Amazon RDS DB snapshot or an Amazon RDS DB snapshot that you own by specifying the RdsDbSnapshotAttributeValue and optional KMS encryption key. For more information, see ModifyDBSnapshotAttribute (https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBSnapshotAttribute.html).
func (RdsDbSnapshotConfiguration) GoString ¶ added in v1.44.123
func (s RdsDbSnapshotConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*RdsDbSnapshotConfiguration) SetAttributes ¶ added in v1.44.123
func (s *RdsDbSnapshotConfiguration) SetAttributes(v map[string]*RdsDbSnapshotAttributeValue) *RdsDbSnapshotConfiguration
SetAttributes sets the Attributes field's value.
func (*RdsDbSnapshotConfiguration) SetKmsKeyId ¶ added in v1.44.123
func (s *RdsDbSnapshotConfiguration) SetKmsKeyId(v string) *RdsDbSnapshotConfiguration
SetKmsKeyId sets the KmsKeyId field's value.
func (RdsDbSnapshotConfiguration) String ¶ added in v1.44.123
func (s RdsDbSnapshotConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ReasonSummary ¶ added in v1.48.4
type ReasonSummary struct { // A description of the reasoning of a result of checking for access. Description *string `locationName:"description" type:"string"` // The identifier for the reason statement. StatementId *string `locationName:"statementId" type:"string"` // The index number of the reason statement. StatementIndex *int64 `locationName:"statementIndex" type:"integer"` // contains filtered or unexported fields }
Contains information about the reasoning why a check for access passed or failed.
func (ReasonSummary) GoString ¶ added in v1.48.4
func (s ReasonSummary) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ReasonSummary) SetDescription ¶ added in v1.48.4
func (s *ReasonSummary) SetDescription(v string) *ReasonSummary
SetDescription sets the Description field's value.
func (*ReasonSummary) SetStatementId ¶ added in v1.48.4
func (s *ReasonSummary) SetStatementId(v string) *ReasonSummary
SetStatementId sets the StatementId field's value.
func (*ReasonSummary) SetStatementIndex ¶ added in v1.48.4
func (s *ReasonSummary) SetStatementIndex(v int64) *ReasonSummary
SetStatementIndex sets the StatementIndex field's value.
func (ReasonSummary) String ¶ added in v1.48.4
func (s ReasonSummary) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type RecommendationError ¶ added in v1.53.21
type RecommendationError struct { // The error code for a failed retrieval of a recommendation for a finding. // // Code is a required field Code *string `locationName:"code" type:"string" required:"true"` // The error message for a failed retrieval of a recommendation for a finding. // // Message is a required field Message *string `locationName:"message" type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about the reason that the retrieval of a recommendation for a finding failed.
func (RecommendationError) GoString ¶ added in v1.53.21
func (s RecommendationError) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*RecommendationError) SetCode ¶ added in v1.53.21
func (s *RecommendationError) SetCode(v string) *RecommendationError
SetCode sets the Code field's value.
func (*RecommendationError) SetMessage ¶ added in v1.53.21
func (s *RecommendationError) SetMessage(v string) *RecommendationError
SetMessage sets the Message field's value.
func (RecommendationError) String ¶ added in v1.53.21
func (s RecommendationError) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type RecommendedStep ¶ added in v1.53.21
type RecommendedStep struct { // A recommended step for an unused permissions finding. UnusedPermissionsRecommendedStep *UnusedPermissionsRecommendedStep `locationName:"unusedPermissionsRecommendedStep" type:"structure"` // contains filtered or unexported fields }
Contains information about a recommended step for an unused access analyzer finding.
func (RecommendedStep) GoString ¶ added in v1.53.21
func (s RecommendedStep) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*RecommendedStep) SetUnusedPermissionsRecommendedStep ¶ added in v1.53.21
func (s *RecommendedStep) SetUnusedPermissionsRecommendedStep(v *UnusedPermissionsRecommendedStep) *RecommendedStep
SetUnusedPermissionsRecommendedStep sets the UnusedPermissionsRecommendedStep field's value.
func (RecommendedStep) String ¶ added in v1.53.21
func (s RecommendedStep) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ResourceNotFoundException ¶ added in v1.28.0
type ResourceNotFoundException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // The ID of the resource. // // ResourceId is a required field ResourceId *string `locationName:"resourceId" type:"string" required:"true"` // The type of the resource. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true"` // contains filtered or unexported fields }
The specified resource could not be found.
func (*ResourceNotFoundException) Code ¶ added in v1.28.0
func (s *ResourceNotFoundException) Code() string
Code returns the exception type name.
func (*ResourceNotFoundException) Error ¶ added in v1.28.0
func (s *ResourceNotFoundException) Error() string
func (ResourceNotFoundException) GoString ¶ added in v1.28.0
func (s ResourceNotFoundException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ResourceNotFoundException) Message ¶ added in v1.28.0
func (s *ResourceNotFoundException) Message() string
Message returns the exception's message.
func (*ResourceNotFoundException) OrigErr ¶ added in v1.28.0
func (s *ResourceNotFoundException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*ResourceNotFoundException) RequestID ¶ added in v1.28.0
func (s *ResourceNotFoundException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*ResourceNotFoundException) StatusCode ¶ added in v1.28.0
func (s *ResourceNotFoundException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (ResourceNotFoundException) String ¶ added in v1.28.0
func (s ResourceNotFoundException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type S3AccessPointConfiguration ¶ added in v1.37.28
type S3AccessPointConfiguration struct { // The access point or multi-region access point policy. AccessPointPolicy *string `locationName:"accessPointPolicy" type:"string"` // The proposed Internet and VpcConfiguration to apply to this Amazon S3 access // point. VpcConfiguration does not apply to multi-region access points. If // the access preview is for a new resource and neither is specified, the access // preview uses Internet for the network origin. If the access preview is for // an existing resource and neither is specified, the access preview uses the // exiting network origin. NetworkOrigin *NetworkOriginConfiguration `locationName:"networkOrigin" type:"structure"` // The proposed S3PublicAccessBlock configuration to apply to this Amazon S3 // access point or multi-region access point. PublicAccessBlock *S3PublicAccessBlockConfiguration `locationName:"publicAccessBlock" type:"structure"` // contains filtered or unexported fields }
The configuration for an Amazon S3 access point or multi-region access point for the bucket. You can propose up to 10 access points or multi-region access points per bucket. If the proposed Amazon S3 access point configuration is for an existing bucket, the access preview uses the proposed access point configuration in place of the existing access points. To propose an access point without a policy, you can provide an empty string as the access point policy. For more information, see Creating access points (https://docs.aws.amazon.com/AmazonS3/latest/dev/creating-access-points.html). For more information about access point policy limits, see Access points restrictions and limitations (https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points-restrictions-limitations.html).
func (S3AccessPointConfiguration) GoString ¶ added in v1.37.28
func (s S3AccessPointConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3AccessPointConfiguration) SetAccessPointPolicy ¶ added in v1.37.28
func (s *S3AccessPointConfiguration) SetAccessPointPolicy(v string) *S3AccessPointConfiguration
SetAccessPointPolicy sets the AccessPointPolicy field's value.
func (*S3AccessPointConfiguration) SetNetworkOrigin ¶ added in v1.37.28
func (s *S3AccessPointConfiguration) SetNetworkOrigin(v *NetworkOriginConfiguration) *S3AccessPointConfiguration
SetNetworkOrigin sets the NetworkOrigin field's value.
func (*S3AccessPointConfiguration) SetPublicAccessBlock ¶ added in v1.37.28
func (s *S3AccessPointConfiguration) SetPublicAccessBlock(v *S3PublicAccessBlockConfiguration) *S3AccessPointConfiguration
SetPublicAccessBlock sets the PublicAccessBlock field's value.
func (S3AccessPointConfiguration) String ¶ added in v1.37.28
func (s S3AccessPointConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3AccessPointConfiguration) Validate ¶ added in v1.37.28
func (s *S3AccessPointConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type S3BucketAclGrantConfiguration ¶ added in v1.37.28
type S3BucketAclGrantConfiguration struct { // The grantee to whom you’re assigning access rights. // // Grantee is a required field Grantee *AclGrantee `locationName:"grantee" type:"structure" required:"true"` // The permissions being granted. // // Permission is a required field Permission *string `locationName:"permission" type:"string" required:"true" enum:"AclPermission"` // contains filtered or unexported fields }
A proposed access control list grant configuration for an Amazon S3 bucket. For more information, see How to Specify an ACL (https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#setting-acls).
func (S3BucketAclGrantConfiguration) GoString ¶ added in v1.37.28
func (s S3BucketAclGrantConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3BucketAclGrantConfiguration) SetGrantee ¶ added in v1.37.28
func (s *S3BucketAclGrantConfiguration) SetGrantee(v *AclGrantee) *S3BucketAclGrantConfiguration
SetGrantee sets the Grantee field's value.
func (*S3BucketAclGrantConfiguration) SetPermission ¶ added in v1.37.28
func (s *S3BucketAclGrantConfiguration) SetPermission(v string) *S3BucketAclGrantConfiguration
SetPermission sets the Permission field's value.
func (S3BucketAclGrantConfiguration) String ¶ added in v1.37.28
func (s S3BucketAclGrantConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3BucketAclGrantConfiguration) Validate ¶ added in v1.37.28
func (s *S3BucketAclGrantConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type S3BucketConfiguration ¶ added in v1.37.28
type S3BucketConfiguration struct { // The configuration of Amazon S3 access points or multi-region access points // for the bucket. You can propose up to 10 new access points per bucket. AccessPoints map[string]*S3AccessPointConfiguration `locationName:"accessPoints" type:"map"` // The proposed list of ACL grants for the Amazon S3 bucket. You can propose // up to 100 ACL grants per bucket. If the proposed grant configuration is for // an existing bucket, the access preview uses the proposed list of grant configurations // in place of the existing grants. Otherwise, the access preview uses the existing // grants for the bucket. BucketAclGrants []*S3BucketAclGrantConfiguration `locationName:"bucketAclGrants" type:"list"` // The proposed bucket policy for the Amazon S3 bucket. BucketPolicy *string `locationName:"bucketPolicy" type:"string"` // The proposed block public access configuration for the Amazon S3 bucket. BucketPublicAccessBlock *S3PublicAccessBlockConfiguration `locationName:"bucketPublicAccessBlock" type:"structure"` // contains filtered or unexported fields }
Proposed access control configuration for an Amazon S3 bucket. You can propose a configuration for a new Amazon S3 bucket or an existing Amazon S3 bucket that you own by specifying the Amazon S3 bucket policy, bucket ACLs, bucket BPA settings, Amazon S3 access points, and multi-region access points attached to the bucket. If the configuration is for an existing Amazon S3 bucket and you do not specify the Amazon S3 bucket policy, the access preview uses the existing policy attached to the bucket. If the access preview is for a new resource and you do not specify the Amazon S3 bucket policy, the access preview assumes a bucket without a policy. To propose deletion of an existing bucket policy, you can specify an empty string. For more information about bucket policy limits, see Bucket Policy Examples (https://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html).
func (S3BucketConfiguration) GoString ¶ added in v1.37.28
func (s S3BucketConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3BucketConfiguration) SetAccessPoints ¶ added in v1.37.28
func (s *S3BucketConfiguration) SetAccessPoints(v map[string]*S3AccessPointConfiguration) *S3BucketConfiguration
SetAccessPoints sets the AccessPoints field's value.
func (*S3BucketConfiguration) SetBucketAclGrants ¶ added in v1.37.28
func (s *S3BucketConfiguration) SetBucketAclGrants(v []*S3BucketAclGrantConfiguration) *S3BucketConfiguration
SetBucketAclGrants sets the BucketAclGrants field's value.
func (*S3BucketConfiguration) SetBucketPolicy ¶ added in v1.37.28
func (s *S3BucketConfiguration) SetBucketPolicy(v string) *S3BucketConfiguration
SetBucketPolicy sets the BucketPolicy field's value.
func (*S3BucketConfiguration) SetBucketPublicAccessBlock ¶ added in v1.37.28
func (s *S3BucketConfiguration) SetBucketPublicAccessBlock(v *S3PublicAccessBlockConfiguration) *S3BucketConfiguration
SetBucketPublicAccessBlock sets the BucketPublicAccessBlock field's value.
func (S3BucketConfiguration) String ¶ added in v1.37.28
func (s S3BucketConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3BucketConfiguration) Validate ¶ added in v1.37.28
func (s *S3BucketConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type S3ExpressDirectoryBucketConfiguration ¶ added in v1.48.7
type S3ExpressDirectoryBucketConfiguration struct { // The proposed bucket policy for the Amazon S3 directory bucket. BucketPolicy *string `locationName:"bucketPolicy" type:"string"` // contains filtered or unexported fields }
Proposed access control configuration for an Amazon S3 directory bucket. You can propose a configuration for a new Amazon S3 directory bucket or an existing Amazon S3 directory bucket that you own by specifying the Amazon S3 bucket policy. If the configuration is for an existing Amazon S3 directory bucket and you do not specify the Amazon S3 bucket policy, the access preview uses the existing policy attached to the directory bucket. If the access preview is for a new resource and you do not specify the Amazon S3 bucket policy, the access preview assumes an directory bucket without a policy. To propose deletion of an existing bucket policy, you can specify an empty string. For more information about Amazon S3 directory bucket policies, see Example directory bucket policies for S3 Express One Zone (https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-security-iam-example-bucket-policies.html).
func (S3ExpressDirectoryBucketConfiguration) GoString ¶ added in v1.48.7
func (s S3ExpressDirectoryBucketConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3ExpressDirectoryBucketConfiguration) SetBucketPolicy ¶ added in v1.48.7
func (s *S3ExpressDirectoryBucketConfiguration) SetBucketPolicy(v string) *S3ExpressDirectoryBucketConfiguration
SetBucketPolicy sets the BucketPolicy field's value.
func (S3ExpressDirectoryBucketConfiguration) String ¶ added in v1.48.7
func (s S3ExpressDirectoryBucketConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type S3PublicAccessBlockConfiguration ¶ added in v1.37.28
type S3PublicAccessBlockConfiguration struct { // Specifies whether Amazon S3 should ignore public ACLs for this bucket and // objects in this bucket. // // IgnorePublicAcls is a required field IgnorePublicAcls *bool `locationName:"ignorePublicAcls" type:"boolean" required:"true"` // Specifies whether Amazon S3 should restrict public bucket policies for this // bucket. // // RestrictPublicBuckets is a required field RestrictPublicBuckets *bool `locationName:"restrictPublicBuckets" type:"boolean" required:"true"` // contains filtered or unexported fields }
The PublicAccessBlock configuration to apply to this Amazon S3 bucket. If the proposed configuration is for an existing Amazon S3 bucket and the configuration is not specified, the access preview uses the existing setting. If the proposed configuration is for a new bucket and the configuration is not specified, the access preview uses false. If the proposed configuration is for a new access point or multi-region access point and the access point BPA configuration is not specified, the access preview uses true. For more information, see PublicAccessBlockConfiguration (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-publicaccessblockconfiguration.html).
func (S3PublicAccessBlockConfiguration) GoString ¶ added in v1.37.28
func (s S3PublicAccessBlockConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3PublicAccessBlockConfiguration) SetIgnorePublicAcls ¶ added in v1.37.28
func (s *S3PublicAccessBlockConfiguration) SetIgnorePublicAcls(v bool) *S3PublicAccessBlockConfiguration
SetIgnorePublicAcls sets the IgnorePublicAcls field's value.
func (*S3PublicAccessBlockConfiguration) SetRestrictPublicBuckets ¶ added in v1.37.28
func (s *S3PublicAccessBlockConfiguration) SetRestrictPublicBuckets(v bool) *S3PublicAccessBlockConfiguration
SetRestrictPublicBuckets sets the RestrictPublicBuckets field's value.
func (S3PublicAccessBlockConfiguration) String ¶ added in v1.37.28
func (s S3PublicAccessBlockConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*S3PublicAccessBlockConfiguration) Validate ¶ added in v1.37.28
func (s *S3PublicAccessBlockConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type SecretsManagerSecretConfiguration ¶ added in v1.37.28
type SecretsManagerSecretConfiguration struct { // The proposed ARN, key ID, or alias of the KMS key. KmsKeyId *string `locationName:"kmsKeyId" type:"string"` // The proposed resource policy defining who can access or manage the secret. SecretPolicy *string `locationName:"secretPolicy" type:"string"` // contains filtered or unexported fields }
The configuration for a Secrets Manager secret. For more information, see CreateSecret (https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_CreateSecret.html).
You can propose a configuration for a new secret or an existing secret that you own by specifying the secret policy and optional KMS encryption key. If the configuration is for an existing secret and you do not specify the secret policy, the access preview uses the existing policy for the secret. If the access preview is for a new resource and you do not specify the policy, the access preview assumes a secret without a policy. To propose deletion of an existing policy, you can specify an empty string. If the proposed configuration is for a new secret and you do not specify the KMS key ID, the access preview uses the Amazon Web Services managed key aws/secretsmanager. If you specify an empty string for the KMS key ID, the access preview uses the Amazon Web Services managed key of the Amazon Web Services account. For more information about secret policy limits, see Quotas for Secrets Manager. (https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_limits.html).
func (SecretsManagerSecretConfiguration) GoString ¶ added in v1.37.28
func (s SecretsManagerSecretConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*SecretsManagerSecretConfiguration) SetKmsKeyId ¶ added in v1.37.28
func (s *SecretsManagerSecretConfiguration) SetKmsKeyId(v string) *SecretsManagerSecretConfiguration
SetKmsKeyId sets the KmsKeyId field's value.
func (*SecretsManagerSecretConfiguration) SetSecretPolicy ¶ added in v1.37.28
func (s *SecretsManagerSecretConfiguration) SetSecretPolicy(v string) *SecretsManagerSecretConfiguration
SetSecretPolicy sets the SecretPolicy field's value.
func (SecretsManagerSecretConfiguration) String ¶ added in v1.37.28
func (s SecretsManagerSecretConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ServiceQuotaExceededException ¶ added in v1.28.0
type ServiceQuotaExceededException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // The resource ID. // // ResourceId is a required field ResourceId *string `locationName:"resourceId" type:"string" required:"true"` // The resource type. // // ResourceType is a required field ResourceType *string `locationName:"resourceType" type:"string" required:"true"` // contains filtered or unexported fields }
Service quote met error.
func (*ServiceQuotaExceededException) Code ¶ added in v1.28.0
func (s *ServiceQuotaExceededException) Code() string
Code returns the exception type name.
func (*ServiceQuotaExceededException) Error ¶ added in v1.28.0
func (s *ServiceQuotaExceededException) Error() string
func (ServiceQuotaExceededException) GoString ¶ added in v1.28.0
func (s ServiceQuotaExceededException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ServiceQuotaExceededException) Message ¶ added in v1.28.0
func (s *ServiceQuotaExceededException) Message() string
Message returns the exception's message.
func (*ServiceQuotaExceededException) OrigErr ¶ added in v1.28.0
func (s *ServiceQuotaExceededException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*ServiceQuotaExceededException) RequestID ¶ added in v1.28.0
func (s *ServiceQuotaExceededException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*ServiceQuotaExceededException) StatusCode ¶ added in v1.28.0
func (s *ServiceQuotaExceededException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (ServiceQuotaExceededException) String ¶ added in v1.28.0
func (s ServiceQuotaExceededException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type SnsTopicConfiguration ¶ added in v1.44.123
type SnsTopicConfiguration struct { // The JSON policy text that defines who can access an Amazon SNS topic. For // more information, see Example cases for Amazon SNS access control (https://docs.aws.amazon.com/sns/latest/dg/sns-access-policy-use-cases.html) // in the Amazon SNS Developer Guide. TopicPolicy *string `locationName:"topicPolicy" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for an Amazon SNS topic. You can propose a configuration for a new Amazon SNS topic or an existing Amazon SNS topic that you own by specifying the policy. If the configuration is for an existing Amazon SNS topic and you do not specify the Amazon SNS policy, then the access preview uses the existing Amazon SNS policy for the topic. If the access preview is for a new resource and you do not specify the policy, then the access preview assumes an Amazon SNS topic without a policy. To propose deletion of an existing Amazon SNS topic policy, you can specify an empty string for the Amazon SNS policy. For more information, see Topic (https://docs.aws.amazon.com/sns/latest/api/API_Topic.html).
func (SnsTopicConfiguration) GoString ¶ added in v1.44.123
func (s SnsTopicConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*SnsTopicConfiguration) SetTopicPolicy ¶ added in v1.44.123
func (s *SnsTopicConfiguration) SetTopicPolicy(v string) *SnsTopicConfiguration
SetTopicPolicy sets the TopicPolicy field's value.
func (SnsTopicConfiguration) String ¶ added in v1.44.123
func (s SnsTopicConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type SortCriteria ¶
type SortCriteria struct { // The name of the attribute to sort on. AttributeName *string `locationName:"attributeName" type:"string"` // The sort order, ascending or descending. OrderBy *string `locationName:"orderBy" type:"string" enum:"OrderBy"` // contains filtered or unexported fields }
The criteria used to sort.
func (SortCriteria) GoString ¶
func (s SortCriteria) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*SortCriteria) SetAttributeName ¶
func (s *SortCriteria) SetAttributeName(v string) *SortCriteria
SetAttributeName sets the AttributeName field's value.
func (*SortCriteria) SetOrderBy ¶
func (s *SortCriteria) SetOrderBy(v string) *SortCriteria
SetOrderBy sets the OrderBy field's value.
func (SortCriteria) String ¶
func (s SortCriteria) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type Span ¶ added in v1.37.32
type Span struct { // The end position of the span (exclusive). // // End is a required field End *Position `locationName:"end" type:"structure" required:"true"` // The start position of the span (inclusive). // // Start is a required field Start *Position `locationName:"start" type:"structure" required:"true"` // contains filtered or unexported fields }
A span in a policy. The span consists of a start position (inclusive) and end position (exclusive).
func (Span) GoString ¶ added in v1.37.32
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type SqsQueueConfiguration ¶ added in v1.37.28
type SqsQueueConfiguration struct { // The proposed resource policy for the Amazon SQS queue. QueuePolicy *string `locationName:"queuePolicy" type:"string"` // contains filtered or unexported fields }
The proposed access control configuration for an Amazon SQS queue. You can propose a configuration for a new Amazon SQS queue or an existing Amazon SQS queue that you own by specifying the Amazon SQS policy. If the configuration is for an existing Amazon SQS queue and you do not specify the Amazon SQS policy, the access preview uses the existing Amazon SQS policy for the queue. If the access preview is for a new resource and you do not specify the policy, the access preview assumes an Amazon SQS queue without a policy. To propose deletion of an existing Amazon SQS queue policy, you can specify an empty string for the Amazon SQS policy. For more information about Amazon SQS policy limits, see Quotas related to policies (https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/quotas-policies.html).
func (SqsQueueConfiguration) GoString ¶ added in v1.37.28
func (s SqsQueueConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*SqsQueueConfiguration) SetQueuePolicy ¶ added in v1.37.28
func (s *SqsQueueConfiguration) SetQueuePolicy(v string) *SqsQueueConfiguration
SetQueuePolicy sets the QueuePolicy field's value.
func (SqsQueueConfiguration) String ¶ added in v1.37.28
func (s SqsQueueConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type StartPolicyGenerationInput ¶ added in v1.38.15
type StartPolicyGenerationInput struct { // A unique, case-sensitive identifier that you provide to ensure the idempotency // of the request. Idempotency ensures that an API request completes only once. // With an idempotent request, if the original request completes successfully, // the subsequent retries with the same client token return the result from // the original successful request and they have no additional effect. // // If you do not specify a client token, one is automatically generated by the // Amazon Web Services SDK. ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"` // A CloudTrailDetails object that contains details about a Trail that you want // to analyze to generate policies. CloudTrailDetails *CloudTrailDetails `locationName:"cloudTrailDetails" type:"structure"` // Contains the ARN of the IAM entity (user or role) for which you are generating // a policy. // // PolicyGenerationDetails is a required field PolicyGenerationDetails *PolicyGenerationDetails `locationName:"policyGenerationDetails" type:"structure" required:"true"` // contains filtered or unexported fields }
func (StartPolicyGenerationInput) GoString ¶ added in v1.38.15
func (s StartPolicyGenerationInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*StartPolicyGenerationInput) SetClientToken ¶ added in v1.38.15
func (s *StartPolicyGenerationInput) SetClientToken(v string) *StartPolicyGenerationInput
SetClientToken sets the ClientToken field's value.
func (*StartPolicyGenerationInput) SetCloudTrailDetails ¶ added in v1.38.15
func (s *StartPolicyGenerationInput) SetCloudTrailDetails(v *CloudTrailDetails) *StartPolicyGenerationInput
SetCloudTrailDetails sets the CloudTrailDetails field's value.
func (*StartPolicyGenerationInput) SetPolicyGenerationDetails ¶ added in v1.38.15
func (s *StartPolicyGenerationInput) SetPolicyGenerationDetails(v *PolicyGenerationDetails) *StartPolicyGenerationInput
SetPolicyGenerationDetails sets the PolicyGenerationDetails field's value.
func (StartPolicyGenerationInput) String ¶ added in v1.38.15
func (s StartPolicyGenerationInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*StartPolicyGenerationInput) Validate ¶ added in v1.38.15
func (s *StartPolicyGenerationInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type StartPolicyGenerationOutput ¶ added in v1.38.15
type StartPolicyGenerationOutput struct { // The JobId that is returned by the StartPolicyGeneration operation. The JobId // can be used with GetGeneratedPolicy to retrieve the generated policies or // used with CancelPolicyGeneration to cancel the policy generation request. // // JobId is a required field JobId *string `locationName:"jobId" type:"string" required:"true"` // contains filtered or unexported fields }
func (StartPolicyGenerationOutput) GoString ¶ added in v1.38.15
func (s StartPolicyGenerationOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*StartPolicyGenerationOutput) SetJobId ¶ added in v1.38.15
func (s *StartPolicyGenerationOutput) SetJobId(v string) *StartPolicyGenerationOutput
SetJobId sets the JobId field's value.
func (StartPolicyGenerationOutput) String ¶ added in v1.38.15
func (s StartPolicyGenerationOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type StartResourceScanInput ¶
type StartResourceScanInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // to use to scan the policies applied to the specified resource. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // The ARN of the resource to scan. // // ResourceArn is a required field ResourceArn *string `locationName:"resourceArn" type:"string" required:"true"` // The Amazon Web Services account ID that owns the resource. For most Amazon // Web Services resources, the owning account is the account in which the resource // was created. ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string"` // contains filtered or unexported fields }
Starts a scan of the policies applied to the specified resource.
func (StartResourceScanInput) GoString ¶
func (s StartResourceScanInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*StartResourceScanInput) SetAnalyzerArn ¶
func (s *StartResourceScanInput) SetAnalyzerArn(v string) *StartResourceScanInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*StartResourceScanInput) SetResourceArn ¶
func (s *StartResourceScanInput) SetResourceArn(v string) *StartResourceScanInput
SetResourceArn sets the ResourceArn field's value.
func (*StartResourceScanInput) SetResourceOwnerAccount ¶ added in v1.44.123
func (s *StartResourceScanInput) SetResourceOwnerAccount(v string) *StartResourceScanInput
SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.
func (StartResourceScanInput) String ¶
func (s StartResourceScanInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*StartResourceScanInput) Validate ¶
func (s *StartResourceScanInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type StartResourceScanOutput ¶
type StartResourceScanOutput struct {
// contains filtered or unexported fields
}
func (StartResourceScanOutput) GoString ¶
func (s StartResourceScanOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (StartResourceScanOutput) String ¶
func (s StartResourceScanOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type StatusReason ¶ added in v1.30.0
type StatusReason struct { // The reason code for the current status of the analyzer. // // Code is a required field Code *string `locationName:"code" type:"string" required:"true" enum:"ReasonCode"` // contains filtered or unexported fields }
Provides more details about the current status of the analyzer. For example, if the creation for the analyzer fails, a Failed status is returned. For an analyzer with organization as the type, this failure can be due to an issue with creating the service-linked roles required in the member accounts of the Amazon Web Services organization.
func (StatusReason) GoString ¶ added in v1.30.0
func (s StatusReason) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*StatusReason) SetCode ¶ added in v1.30.0
func (s *StatusReason) SetCode(v string) *StatusReason
SetCode sets the Code field's value.
func (StatusReason) String ¶ added in v1.30.0
func (s StatusReason) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type Substring ¶ added in v1.37.32
type Substring struct { // The length of the substring. // // Length is a required field Length *int64 `locationName:"length" type:"integer" required:"true"` // The start index of the substring, starting from 0. // // Start is a required field Start *int64 `locationName:"start" type:"integer" required:"true"` // contains filtered or unexported fields }
A reference to a substring of a literal string in a JSON document.
func (Substring) GoString ¶ added in v1.37.32
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type TagResourceInput ¶
type TagResourceInput struct { // The ARN of the resource to add the tag to. // // ResourceArn is a required field ResourceArn *string `location:"uri" locationName:"resourceArn" type:"string" required:"true"` // The tags to add to the resource. // // Tags is a required field Tags map[string]*string `locationName:"tags" type:"map" required:"true"` // contains filtered or unexported fields }
Adds a tag to the specified resource.
func (TagResourceInput) GoString ¶
func (s TagResourceInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*TagResourceInput) SetResourceArn ¶
func (s *TagResourceInput) SetResourceArn(v string) *TagResourceInput
SetResourceArn sets the ResourceArn field's value.
func (*TagResourceInput) SetTags ¶
func (s *TagResourceInput) SetTags(v map[string]*string) *TagResourceInput
SetTags sets the Tags field's value.
func (TagResourceInput) String ¶
func (s TagResourceInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*TagResourceInput) Validate ¶
func (s *TagResourceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type TagResourceOutput ¶
type TagResourceOutput struct {
// contains filtered or unexported fields
}
The response to the request.
func (TagResourceOutput) GoString ¶
func (s TagResourceOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (TagResourceOutput) String ¶
func (s TagResourceOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ThrottlingException ¶ added in v1.28.0
type ThrottlingException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // The seconds to wait to retry. RetryAfterSeconds *int64 `location:"header" locationName:"Retry-After" type:"integer"` // contains filtered or unexported fields }
Throttling limit exceeded error.
func (*ThrottlingException) Code ¶ added in v1.28.0
func (s *ThrottlingException) Code() string
Code returns the exception type name.
func (*ThrottlingException) Error ¶ added in v1.28.0
func (s *ThrottlingException) Error() string
func (ThrottlingException) GoString ¶ added in v1.28.0
func (s ThrottlingException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ThrottlingException) Message ¶ added in v1.28.0
func (s *ThrottlingException) Message() string
Message returns the exception's message.
func (*ThrottlingException) OrigErr ¶ added in v1.28.0
func (s *ThrottlingException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*ThrottlingException) RequestID ¶ added in v1.28.0
func (s *ThrottlingException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*ThrottlingException) StatusCode ¶ added in v1.28.0
func (s *ThrottlingException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (ThrottlingException) String ¶ added in v1.28.0
func (s ThrottlingException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type Trail ¶ added in v1.38.15
type Trail struct { // Possible values are true or false. If set to true, IAM Access Analyzer retrieves // CloudTrail data from all regions to analyze and generate a policy. AllRegions *bool `locationName:"allRegions" type:"boolean"` // Specifies the ARN of the trail. The format of a trail ARN is arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail. // // CloudTrailArn is a required field CloudTrailArn *string `locationName:"cloudTrailArn" type:"string" required:"true"` // A list of regions to get CloudTrail data from and analyze to generate a policy. Regions []*string `locationName:"regions" type:"list"` // contains filtered or unexported fields }
Contains details about the CloudTrail trail being analyzed to generate a policy.
func (Trail) GoString ¶ added in v1.38.15
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*Trail) SetAllRegions ¶ added in v1.38.15
SetAllRegions sets the AllRegions field's value.
func (*Trail) SetCloudTrailArn ¶ added in v1.38.15
SetCloudTrailArn sets the CloudTrailArn field's value.
func (*Trail) SetRegions ¶ added in v1.38.15
SetRegions sets the Regions field's value.
type TrailProperties ¶ added in v1.38.15
type TrailProperties struct { // Possible values are true or false. If set to true, IAM Access Analyzer retrieves // CloudTrail data from all regions to analyze and generate a policy. AllRegions *bool `locationName:"allRegions" type:"boolean"` // Specifies the ARN of the trail. The format of a trail ARN is arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail. // // CloudTrailArn is a required field CloudTrailArn *string `locationName:"cloudTrailArn" type:"string" required:"true"` // A list of regions to get CloudTrail data from and analyze to generate a policy. Regions []*string `locationName:"regions" type:"list"` // contains filtered or unexported fields }
Contains details about the CloudTrail trail being analyzed to generate a policy.
func (TrailProperties) GoString ¶ added in v1.38.15
func (s TrailProperties) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*TrailProperties) SetAllRegions ¶ added in v1.38.15
func (s *TrailProperties) SetAllRegions(v bool) *TrailProperties
SetAllRegions sets the AllRegions field's value.
func (*TrailProperties) SetCloudTrailArn ¶ added in v1.38.15
func (s *TrailProperties) SetCloudTrailArn(v string) *TrailProperties
SetCloudTrailArn sets the CloudTrailArn field's value.
func (*TrailProperties) SetRegions ¶ added in v1.38.15
func (s *TrailProperties) SetRegions(v []*string) *TrailProperties
SetRegions sets the Regions field's value.
func (TrailProperties) String ¶ added in v1.38.15
func (s TrailProperties) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnprocessableEntityException ¶ added in v1.48.4
type UnprocessableEntityException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` Message_ *string `locationName:"message" type:"string"` // contains filtered or unexported fields }
The specified entity could not be processed.
func (*UnprocessableEntityException) Code ¶ added in v1.48.4
func (s *UnprocessableEntityException) Code() string
Code returns the exception type name.
func (*UnprocessableEntityException) Error ¶ added in v1.48.4
func (s *UnprocessableEntityException) Error() string
func (UnprocessableEntityException) GoString ¶ added in v1.48.4
func (s UnprocessableEntityException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnprocessableEntityException) Message ¶ added in v1.48.4
func (s *UnprocessableEntityException) Message() string
Message returns the exception's message.
func (*UnprocessableEntityException) OrigErr ¶ added in v1.48.4
func (s *UnprocessableEntityException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*UnprocessableEntityException) RequestID ¶ added in v1.48.4
func (s *UnprocessableEntityException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*UnprocessableEntityException) StatusCode ¶ added in v1.48.4
func (s *UnprocessableEntityException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (UnprocessableEntityException) String ¶ added in v1.48.4
func (s UnprocessableEntityException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UntagResourceInput ¶
type UntagResourceInput struct { // The ARN of the resource to remove the tag from. // // ResourceArn is a required field ResourceArn *string `location:"uri" locationName:"resourceArn" type:"string" required:"true"` // The key for the tag to add. // // TagKeys is a required field TagKeys []*string `location:"querystring" locationName:"tagKeys" type:"list" required:"true"` // contains filtered or unexported fields }
Removes a tag from the specified resource.
func (UntagResourceInput) GoString ¶
func (s UntagResourceInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UntagResourceInput) SetResourceArn ¶
func (s *UntagResourceInput) SetResourceArn(v string) *UntagResourceInput
SetResourceArn sets the ResourceArn field's value.
func (*UntagResourceInput) SetTagKeys ¶
func (s *UntagResourceInput) SetTagKeys(v []*string) *UntagResourceInput
SetTagKeys sets the TagKeys field's value.
func (UntagResourceInput) String ¶
func (s UntagResourceInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UntagResourceInput) Validate ¶
func (s *UntagResourceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type UntagResourceOutput ¶
type UntagResourceOutput struct {
// contains filtered or unexported fields
}
The response to the request.
func (UntagResourceOutput) GoString ¶
func (s UntagResourceOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (UntagResourceOutput) String ¶
func (s UntagResourceOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnusedAccessConfiguration ¶ added in v1.48.4
type UnusedAccessConfiguration struct { // The specified access age in days for which to generate findings for unused // access. For example, if you specify 90 days, the analyzer will generate findings // for IAM entities within the accounts of the selected organization for any // access that hasn't been used in 90 or more days since the analyzer's last // scan. You can choose a value between 1 and 180 days. UnusedAccessAge *int64 `locationName:"unusedAccessAge" type:"integer"` // contains filtered or unexported fields }
Contains information about an unused access analyzer.
func (UnusedAccessConfiguration) GoString ¶ added in v1.48.4
func (s UnusedAccessConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnusedAccessConfiguration) SetUnusedAccessAge ¶ added in v1.48.4
func (s *UnusedAccessConfiguration) SetUnusedAccessAge(v int64) *UnusedAccessConfiguration
SetUnusedAccessAge sets the UnusedAccessAge field's value.
func (UnusedAccessConfiguration) String ¶ added in v1.48.4
func (s UnusedAccessConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnusedAction ¶ added in v1.48.4
type UnusedAction struct { // The action for which the unused access finding was generated. // // Action is a required field Action *string `locationName:"action" type:"string" required:"true"` // The time at which the action was last accessed. LastAccessed *time.Time `locationName:"lastAccessed" type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains information about an unused access finding for an action. IAM Access Analyzer charges for unused access analysis based on the number of IAM roles and users analyzed per month. For more details on pricing, see IAM Access Analyzer pricing (https://aws.amazon.com/iam/access-analyzer/pricing).
func (UnusedAction) GoString ¶ added in v1.48.4
func (s UnusedAction) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnusedAction) SetAction ¶ added in v1.48.4
func (s *UnusedAction) SetAction(v string) *UnusedAction
SetAction sets the Action field's value.
func (*UnusedAction) SetLastAccessed ¶ added in v1.48.4
func (s *UnusedAction) SetLastAccessed(v time.Time) *UnusedAction
SetLastAccessed sets the LastAccessed field's value.
func (UnusedAction) String ¶ added in v1.48.4
func (s UnusedAction) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnusedIamRoleDetails ¶ added in v1.48.4
type UnusedIamRoleDetails struct { // The time at which the role was last accessed. LastAccessed *time.Time `locationName:"lastAccessed" type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains information about an unused access finding for an IAM role. IAM Access Analyzer charges for unused access analysis based on the number of IAM roles and users analyzed per month. For more details on pricing, see IAM Access Analyzer pricing (https://aws.amazon.com/iam/access-analyzer/pricing).
func (UnusedIamRoleDetails) GoString ¶ added in v1.48.4
func (s UnusedIamRoleDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnusedIamRoleDetails) SetLastAccessed ¶ added in v1.48.4
func (s *UnusedIamRoleDetails) SetLastAccessed(v time.Time) *UnusedIamRoleDetails
SetLastAccessed sets the LastAccessed field's value.
func (UnusedIamRoleDetails) String ¶ added in v1.48.4
func (s UnusedIamRoleDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnusedIamUserAccessKeyDetails ¶ added in v1.48.4
type UnusedIamUserAccessKeyDetails struct { // The ID of the access key for which the unused access finding was generated. // // AccessKeyId is a required field AccessKeyId *string `locationName:"accessKeyId" type:"string" required:"true"` // The time at which the access key was last accessed. LastAccessed *time.Time `locationName:"lastAccessed" type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains information about an unused access finding for an IAM user access key. IAM Access Analyzer charges for unused access analysis based on the number of IAM roles and users analyzed per month. For more details on pricing, see IAM Access Analyzer pricing (https://aws.amazon.com/iam/access-analyzer/pricing).
func (UnusedIamUserAccessKeyDetails) GoString ¶ added in v1.48.4
func (s UnusedIamUserAccessKeyDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnusedIamUserAccessKeyDetails) SetAccessKeyId ¶ added in v1.48.4
func (s *UnusedIamUserAccessKeyDetails) SetAccessKeyId(v string) *UnusedIamUserAccessKeyDetails
SetAccessKeyId sets the AccessKeyId field's value.
func (*UnusedIamUserAccessKeyDetails) SetLastAccessed ¶ added in v1.48.4
func (s *UnusedIamUserAccessKeyDetails) SetLastAccessed(v time.Time) *UnusedIamUserAccessKeyDetails
SetLastAccessed sets the LastAccessed field's value.
func (UnusedIamUserAccessKeyDetails) String ¶ added in v1.48.4
func (s UnusedIamUserAccessKeyDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnusedIamUserPasswordDetails ¶ added in v1.48.4
type UnusedIamUserPasswordDetails struct { // The time at which the password was last accessed. LastAccessed *time.Time `locationName:"lastAccessed" type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains information about an unused access finding for an IAM user password. IAM Access Analyzer charges for unused access analysis based on the number of IAM roles and users analyzed per month. For more details on pricing, see IAM Access Analyzer pricing (https://aws.amazon.com/iam/access-analyzer/pricing).
func (UnusedIamUserPasswordDetails) GoString ¶ added in v1.48.4
func (s UnusedIamUserPasswordDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnusedIamUserPasswordDetails) SetLastAccessed ¶ added in v1.48.4
func (s *UnusedIamUserPasswordDetails) SetLastAccessed(v time.Time) *UnusedIamUserPasswordDetails
SetLastAccessed sets the LastAccessed field's value.
func (UnusedIamUserPasswordDetails) String ¶ added in v1.48.4
func (s UnusedIamUserPasswordDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnusedPermissionDetails ¶ added in v1.48.4
type UnusedPermissionDetails struct { // A list of unused actions for which the unused access finding was generated. Actions []*UnusedAction `locationName:"actions" type:"list"` // The time at which the permission was last accessed. LastAccessed *time.Time `locationName:"lastAccessed" type:"timestamp" timestampFormat:"iso8601"` // The namespace of the Amazon Web Services service that contains the unused // actions. // // ServiceNamespace is a required field ServiceNamespace *string `locationName:"serviceNamespace" type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about an unused access finding for a permission. IAM Access Analyzer charges for unused access analysis based on the number of IAM roles and users analyzed per month. For more details on pricing, see IAM Access Analyzer pricing (https://aws.amazon.com/iam/access-analyzer/pricing).
func (UnusedPermissionDetails) GoString ¶ added in v1.48.4
func (s UnusedPermissionDetails) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnusedPermissionDetails) SetActions ¶ added in v1.48.4
func (s *UnusedPermissionDetails) SetActions(v []*UnusedAction) *UnusedPermissionDetails
SetActions sets the Actions field's value.
func (*UnusedPermissionDetails) SetLastAccessed ¶ added in v1.48.4
func (s *UnusedPermissionDetails) SetLastAccessed(v time.Time) *UnusedPermissionDetails
SetLastAccessed sets the LastAccessed field's value.
func (*UnusedPermissionDetails) SetServiceNamespace ¶ added in v1.48.4
func (s *UnusedPermissionDetails) SetServiceNamespace(v string) *UnusedPermissionDetails
SetServiceNamespace sets the ServiceNamespace field's value.
func (UnusedPermissionDetails) String ¶ added in v1.48.4
func (s UnusedPermissionDetails) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UnusedPermissionsRecommendedStep ¶ added in v1.53.21
type UnusedPermissionsRecommendedStep struct { // If the recommended action for the unused permissions finding is to detach // a policy, the ID of an existing policy to be detached. ExistingPolicyId *string `locationName:"existingPolicyId" type:"string"` // The time at which the existing policy for the unused permissions finding // was last updated. PolicyUpdatedAt *time.Time `locationName:"policyUpdatedAt" type:"timestamp" timestampFormat:"iso8601"` // A recommendation of whether to create or detach a policy for an unused permissions // finding. // // RecommendedAction is a required field RecommendedAction *string `locationName:"recommendedAction" type:"string" required:"true" enum:"RecommendedRemediationAction"` // If the recommended action for the unused permissions finding is to replace // the existing policy, the contents of the recommended policy to replace the // policy specified in the existingPolicyId field. RecommendedPolicy *string `locationName:"recommendedPolicy" type:"string"` // contains filtered or unexported fields }
Contains information about the action to take for a policy in an unused permissions finding.
func (UnusedPermissionsRecommendedStep) GoString ¶ added in v1.53.21
func (s UnusedPermissionsRecommendedStep) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UnusedPermissionsRecommendedStep) SetExistingPolicyId ¶ added in v1.53.21
func (s *UnusedPermissionsRecommendedStep) SetExistingPolicyId(v string) *UnusedPermissionsRecommendedStep
SetExistingPolicyId sets the ExistingPolicyId field's value.
func (*UnusedPermissionsRecommendedStep) SetPolicyUpdatedAt ¶ added in v1.53.21
func (s *UnusedPermissionsRecommendedStep) SetPolicyUpdatedAt(v time.Time) *UnusedPermissionsRecommendedStep
SetPolicyUpdatedAt sets the PolicyUpdatedAt field's value.
func (*UnusedPermissionsRecommendedStep) SetRecommendedAction ¶ added in v1.53.21
func (s *UnusedPermissionsRecommendedStep) SetRecommendedAction(v string) *UnusedPermissionsRecommendedStep
SetRecommendedAction sets the RecommendedAction field's value.
func (*UnusedPermissionsRecommendedStep) SetRecommendedPolicy ¶ added in v1.53.21
func (s *UnusedPermissionsRecommendedStep) SetRecommendedPolicy(v string) *UnusedPermissionsRecommendedStep
SetRecommendedPolicy sets the RecommendedPolicy field's value.
func (UnusedPermissionsRecommendedStep) String ¶ added in v1.53.21
func (s UnusedPermissionsRecommendedStep) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UpdateArchiveRuleInput ¶
type UpdateArchiveRuleInput struct { // The name of the analyzer to update the archive rules for. // // AnalyzerName is a required field AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"` // A client token. ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"` // A filter to match for the rules to update. Only rules that match the filter // are updated. // // Filter is a required field Filter map[string]*Criterion `locationName:"filter" type:"map" required:"true"` // The name of the rule to update. // // RuleName is a required field RuleName *string `location:"uri" locationName:"ruleName" min:"1" type:"string" required:"true"` // contains filtered or unexported fields }
Updates the specified archive rule.
func (UpdateArchiveRuleInput) GoString ¶
func (s UpdateArchiveRuleInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UpdateArchiveRuleInput) SetAnalyzerName ¶
func (s *UpdateArchiveRuleInput) SetAnalyzerName(v string) *UpdateArchiveRuleInput
SetAnalyzerName sets the AnalyzerName field's value.
func (*UpdateArchiveRuleInput) SetClientToken ¶
func (s *UpdateArchiveRuleInput) SetClientToken(v string) *UpdateArchiveRuleInput
SetClientToken sets the ClientToken field's value.
func (*UpdateArchiveRuleInput) SetFilter ¶
func (s *UpdateArchiveRuleInput) SetFilter(v map[string]*Criterion) *UpdateArchiveRuleInput
SetFilter sets the Filter field's value.
func (*UpdateArchiveRuleInput) SetRuleName ¶
func (s *UpdateArchiveRuleInput) SetRuleName(v string) *UpdateArchiveRuleInput
SetRuleName sets the RuleName field's value.
func (UpdateArchiveRuleInput) String ¶
func (s UpdateArchiveRuleInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UpdateArchiveRuleInput) Validate ¶
func (s *UpdateArchiveRuleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type UpdateArchiveRuleOutput ¶
type UpdateArchiveRuleOutput struct {
// contains filtered or unexported fields
}
func (UpdateArchiveRuleOutput) GoString ¶
func (s UpdateArchiveRuleOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (UpdateArchiveRuleOutput) String ¶
func (s UpdateArchiveRuleOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type UpdateFindingsInput ¶
type UpdateFindingsInput struct { // The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) // that generated the findings to update. // // AnalyzerArn is a required field AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"` // A client token. ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"` // The IDs of the findings to update. Ids []*string `locationName:"ids" type:"list"` // The ARN of the resource identified in the finding. ResourceArn *string `locationName:"resourceArn" type:"string"` // The state represents the action to take to update the finding Status. Use // ARCHIVE to change an Active finding to an Archived finding. Use ACTIVE to // change an Archived finding to an Active finding. // // Status is a required field Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatusUpdate"` // contains filtered or unexported fields }
Updates findings with the new values provided in the request.
func (UpdateFindingsInput) GoString ¶
func (s UpdateFindingsInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UpdateFindingsInput) SetAnalyzerArn ¶
func (s *UpdateFindingsInput) SetAnalyzerArn(v string) *UpdateFindingsInput
SetAnalyzerArn sets the AnalyzerArn field's value.
func (*UpdateFindingsInput) SetClientToken ¶
func (s *UpdateFindingsInput) SetClientToken(v string) *UpdateFindingsInput
SetClientToken sets the ClientToken field's value.
func (*UpdateFindingsInput) SetIds ¶
func (s *UpdateFindingsInput) SetIds(v []*string) *UpdateFindingsInput
SetIds sets the Ids field's value.
func (*UpdateFindingsInput) SetResourceArn ¶
func (s *UpdateFindingsInput) SetResourceArn(v string) *UpdateFindingsInput
SetResourceArn sets the ResourceArn field's value.
func (*UpdateFindingsInput) SetStatus ¶
func (s *UpdateFindingsInput) SetStatus(v string) *UpdateFindingsInput
SetStatus sets the Status field's value.
func (UpdateFindingsInput) String ¶
func (s UpdateFindingsInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*UpdateFindingsInput) Validate ¶
func (s *UpdateFindingsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type UpdateFindingsOutput ¶
type UpdateFindingsOutput struct {
// contains filtered or unexported fields
}
func (UpdateFindingsOutput) GoString ¶
func (s UpdateFindingsOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (UpdateFindingsOutput) String ¶
func (s UpdateFindingsOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ValidatePolicyFinding ¶ added in v1.37.32
type ValidatePolicyFinding struct { // A localized message that explains the finding and provides guidance on how // to address it. // // FindingDetails is a required field FindingDetails *string `locationName:"findingDetails" type:"string" required:"true"` // The impact of the finding. // // Security warnings report when the policy allows access that we consider overly // permissive. // // Errors report when a part of the policy is not functional. // // Warnings report non-security issues when a policy does not conform to policy // writing best practices. // // Suggestions recommend stylistic improvements in the policy that do not impact // access. // // FindingType is a required field FindingType *string `locationName:"findingType" type:"string" required:"true" enum:"ValidatePolicyFindingType"` // The issue code provides an identifier of the issue associated with this finding. // // IssueCode is a required field IssueCode *string `locationName:"issueCode" type:"string" required:"true"` // A link to additional documentation about the type of finding. // // LearnMoreLink is a required field LearnMoreLink *string `locationName:"learnMoreLink" type:"string" required:"true"` // The list of locations in the policy document that are related to the finding. // The issue code provides a summary of an issue identified by the finding. // // Locations is a required field Locations []*Location `locationName:"locations" type:"list" required:"true"` // contains filtered or unexported fields }
A finding in a policy. Each finding is an actionable recommendation that can be used to improve the policy.
func (ValidatePolicyFinding) GoString ¶ added in v1.37.32
func (s ValidatePolicyFinding) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ValidatePolicyFinding) SetFindingDetails ¶ added in v1.37.32
func (s *ValidatePolicyFinding) SetFindingDetails(v string) *ValidatePolicyFinding
SetFindingDetails sets the FindingDetails field's value.
func (*ValidatePolicyFinding) SetFindingType ¶ added in v1.37.32
func (s *ValidatePolicyFinding) SetFindingType(v string) *ValidatePolicyFinding
SetFindingType sets the FindingType field's value.
func (*ValidatePolicyFinding) SetIssueCode ¶ added in v1.37.32
func (s *ValidatePolicyFinding) SetIssueCode(v string) *ValidatePolicyFinding
SetIssueCode sets the IssueCode field's value.
func (*ValidatePolicyFinding) SetLearnMoreLink ¶ added in v1.37.32
func (s *ValidatePolicyFinding) SetLearnMoreLink(v string) *ValidatePolicyFinding
SetLearnMoreLink sets the LearnMoreLink field's value.
func (*ValidatePolicyFinding) SetLocations ¶ added in v1.37.32
func (s *ValidatePolicyFinding) SetLocations(v []*Location) *ValidatePolicyFinding
SetLocations sets the Locations field's value.
func (ValidatePolicyFinding) String ¶ added in v1.37.32
func (s ValidatePolicyFinding) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ValidatePolicyInput ¶ added in v1.37.32
type ValidatePolicyInput struct { // The locale to use for localizing the findings. Locale *string `locationName:"locale" type:"string" enum:"Locale"` // The maximum number of results to return in the response. MaxResults *int64 `location:"querystring" locationName:"maxResults" type:"integer"` // A token used for pagination of results returned. NextToken *string `location:"querystring" locationName:"nextToken" type:"string"` // The JSON policy document to use as the content for the policy. // // PolicyDocument is a required field PolicyDocument *string `locationName:"policyDocument" type:"string" required:"true"` // The type of policy to validate. Identity policies grant permissions to IAM // principals. Identity policies include managed and inline policies for IAM // roles, users, and groups. // // Resource policies grant permissions on Amazon Web Services resources. Resource // policies include trust policies for IAM roles and bucket policies for Amazon // S3 buckets. You can provide a generic input such as identity policy or resource // policy or a specific input such as managed policy or Amazon S3 bucket policy. // // Service control policies (SCPs) are a type of organization policy attached // to an Amazon Web Services organization, organizational unit (OU), or an account. // // PolicyType is a required field PolicyType *string `locationName:"policyType" type:"string" required:"true" enum:"PolicyType"` // The type of resource to attach to your resource policy. Specify a value for // the policy validation resource type only if the policy type is RESOURCE_POLICY. // For example, to validate a resource policy to attach to an Amazon S3 bucket, // you can choose AWS::S3::Bucket for the policy validation resource type. // // For resource types not supported as valid values, IAM Access Analyzer runs // policy checks that apply to all resource policies. For example, to validate // a resource policy to attach to a KMS key, do not specify a value for the // policy validation resource type and IAM Access Analyzer will run policy checks // that apply to all resource policies. ValidatePolicyResourceType *string `locationName:"validatePolicyResourceType" type:"string" enum:"ValidatePolicyResourceType"` // contains filtered or unexported fields }
func (ValidatePolicyInput) GoString ¶ added in v1.37.32
func (s ValidatePolicyInput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ValidatePolicyInput) SetLocale ¶ added in v1.37.32
func (s *ValidatePolicyInput) SetLocale(v string) *ValidatePolicyInput
SetLocale sets the Locale field's value.
func (*ValidatePolicyInput) SetMaxResults ¶ added in v1.37.32
func (s *ValidatePolicyInput) SetMaxResults(v int64) *ValidatePolicyInput
SetMaxResults sets the MaxResults field's value.
func (*ValidatePolicyInput) SetNextToken ¶ added in v1.37.32
func (s *ValidatePolicyInput) SetNextToken(v string) *ValidatePolicyInput
SetNextToken sets the NextToken field's value.
func (*ValidatePolicyInput) SetPolicyDocument ¶ added in v1.37.32
func (s *ValidatePolicyInput) SetPolicyDocument(v string) *ValidatePolicyInput
SetPolicyDocument sets the PolicyDocument field's value.
func (*ValidatePolicyInput) SetPolicyType ¶ added in v1.37.32
func (s *ValidatePolicyInput) SetPolicyType(v string) *ValidatePolicyInput
SetPolicyType sets the PolicyType field's value.
func (*ValidatePolicyInput) SetValidatePolicyResourceType ¶ added in v1.42.16
func (s *ValidatePolicyInput) SetValidatePolicyResourceType(v string) *ValidatePolicyInput
SetValidatePolicyResourceType sets the ValidatePolicyResourceType field's value.
func (ValidatePolicyInput) String ¶ added in v1.37.32
func (s ValidatePolicyInput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ValidatePolicyInput) Validate ¶ added in v1.37.32
func (s *ValidatePolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ValidatePolicyOutput ¶ added in v1.37.32
type ValidatePolicyOutput struct { // The list of findings in a policy returned by IAM Access Analyzer based on // its suite of policy checks. // // Findings is a required field Findings []*ValidatePolicyFinding `locationName:"findings" type:"list" required:"true"` // A token used for pagination of results returned. NextToken *string `locationName:"nextToken" type:"string"` // contains filtered or unexported fields }
func (ValidatePolicyOutput) GoString ¶ added in v1.37.32
func (s ValidatePolicyOutput) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ValidatePolicyOutput) SetFindings ¶ added in v1.37.32
func (s *ValidatePolicyOutput) SetFindings(v []*ValidatePolicyFinding) *ValidatePolicyOutput
SetFindings sets the Findings field's value.
func (*ValidatePolicyOutput) SetNextToken ¶ added in v1.37.32
func (s *ValidatePolicyOutput) SetNextToken(v string) *ValidatePolicyOutput
SetNextToken sets the NextToken field's value.
func (ValidatePolicyOutput) String ¶ added in v1.37.32
func (s ValidatePolicyOutput) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ValidationException ¶ added in v1.28.0
type ValidationException struct { RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` // A list of fields that didn't validate. FieldList []*ValidationExceptionField `locationName:"fieldList" type:"list"` Message_ *string `locationName:"message" type:"string"` // The reason for the exception. // // Reason is a required field Reason *string `locationName:"reason" type:"string" required:"true" enum:"ValidationExceptionReason"` // contains filtered or unexported fields }
Validation exception error.
func (*ValidationException) Code ¶ added in v1.28.0
func (s *ValidationException) Code() string
Code returns the exception type name.
func (*ValidationException) Error ¶ added in v1.28.0
func (s *ValidationException) Error() string
func (ValidationException) GoString ¶ added in v1.28.0
func (s ValidationException) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ValidationException) Message ¶ added in v1.28.0
func (s *ValidationException) Message() string
Message returns the exception's message.
func (*ValidationException) OrigErr ¶ added in v1.28.0
func (s *ValidationException) OrigErr() error
OrigErr always returns nil, satisfies awserr.Error interface.
func (*ValidationException) RequestID ¶ added in v1.28.0
func (s *ValidationException) RequestID() string
RequestID returns the service's response RequestID for request.
func (*ValidationException) StatusCode ¶ added in v1.28.0
func (s *ValidationException) StatusCode() int
Status code returns the HTTP status code for the request's response error.
func (ValidationException) String ¶ added in v1.28.0
func (s ValidationException) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type ValidationExceptionField ¶
type ValidationExceptionField struct { // A message about the validation exception. // // Message is a required field Message *string `locationName:"message" type:"string" required:"true"` // The name of the validation exception. // // Name is a required field Name *string `locationName:"name" type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about a validation exception.
func (ValidationExceptionField) GoString ¶
func (s ValidationExceptionField) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*ValidationExceptionField) SetMessage ¶
func (s *ValidationExceptionField) SetMessage(v string) *ValidationExceptionField
SetMessage sets the Message field's value.
func (*ValidationExceptionField) SetName ¶
func (s *ValidationExceptionField) SetName(v string) *ValidationExceptionField
SetName sets the Name field's value.
func (ValidationExceptionField) String ¶
func (s ValidationExceptionField) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
type VpcConfiguration ¶ added in v1.37.28
type VpcConfiguration struct { // If this field is specified, this access point will only allow connections // from the specified VPC ID. // // VpcId is a required field VpcId *string `locationName:"vpcId" type:"string" required:"true"` // contains filtered or unexported fields }
The proposed virtual private cloud (VPC) configuration for the Amazon S3 access point. VPC configuration does not apply to multi-region access points. For more information, see VpcConfiguration (https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_VpcConfiguration.html).
func (VpcConfiguration) GoString ¶ added in v1.37.28
func (s VpcConfiguration) GoString() string
GoString returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*VpcConfiguration) SetVpcId ¶ added in v1.37.28
func (s *VpcConfiguration) SetVpcId(v string) *VpcConfiguration
SetVpcId sets the VpcId field's value.
func (VpcConfiguration) String ¶ added in v1.37.28
func (s VpcConfiguration) String() string
String returns the string representation.
API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".
func (*VpcConfiguration) Validate ¶ added in v1.37.28
func (s *VpcConfiguration) Validate() error
Validate inspects the fields of the type to determine if they are valid.
Directories ¶
Path | Synopsis |
---|---|
Package accessanalyzeriface provides an interface to enable mocking the Access Analyzer service client for testing your code.
|
Package accessanalyzeriface provides an interface to enable mocking the Access Analyzer service client for testing your code. |