guardduty

package
v3.28.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Feb 5, 2021 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Detector

type Detector struct {
	pulumi.CustomResourceState

	// The AWS account ID of the GuardDuty detector
	AccountId pulumi.StringOutput `pulumi:"accountId"`
	// Amazon Resource Name (ARN) of the GuardDuty detector
	Arn pulumi.StringOutput `pulumi:"arn"`
	// Enable monitoring and feedback reporting. Setting to `false` is equivalent to "suspending" GuardDuty. Defaults to `true`.
	Enable pulumi.BoolPtrOutput `pulumi:"enable"`
	// Specifies the frequency of notifications sent for subsequent finding occurrences. If the detector is a GuardDuty member account, the value is determined by the GuardDuty primary account and cannot be modified, otherwise defaults to `SIX_HOURS`. For standalone and GuardDuty primary accounts, it must be configured in this provider to enable drift detection. Valid values for standalone and primary accounts: `FIFTEEN_MINUTES`, `ONE_HOUR`, `SIX_HOURS`. See [AWS Documentation](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings_cloudwatch.html#guardduty_findings_cloudwatch_notification_frequency) for more information.
	FindingPublishingFrequency pulumi.StringOutput `pulumi:"findingPublishingFrequency"`
	// Key-value map of resource tags.
	Tags pulumi.StringMapOutput `pulumi:"tags"`
}

Provides a resource to manage a GuardDuty detector.

> **NOTE:** Deleting this resource is equivalent to "disabling" GuardDuty for an AWS region, which removes all existing findings. You can set the `enable` attribute to `false` to instead "suspend" monitoring and feedback reporting while keeping existing data. See the [Suspending or Disabling Amazon GuardDuty documentation](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_suspend-disable.html) for more information.

## Example Usage

```go package main

import (

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := guardduty.NewDetector(ctx, "myDetector", &guardduty.DetectorArgs{
			Enable: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

GuardDuty detectors can be imported using the detector ID, e.g.

```sh

$ pulumi import aws:guardduty/detector:Detector MyDetector 00b00fd5aecc0ab60a708659477e9617

```

func GetDetector

func GetDetector(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DetectorState, opts ...pulumi.ResourceOption) (*Detector, error)

GetDetector gets an existing Detector resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDetector

func NewDetector(ctx *pulumi.Context,
	name string, args *DetectorArgs, opts ...pulumi.ResourceOption) (*Detector, error)

NewDetector registers a new resource with the given unique name, arguments, and options.

func (*Detector) ElementType added in v3.13.0

func (*Detector) ElementType() reflect.Type

func (*Detector) ToDetectorOutput added in v3.13.0

func (i *Detector) ToDetectorOutput() DetectorOutput

func (*Detector) ToDetectorOutputWithContext added in v3.13.0

func (i *Detector) ToDetectorOutputWithContext(ctx context.Context) DetectorOutput

func (*Detector) ToDetectorPtrOutput added in v3.25.0

func (i *Detector) ToDetectorPtrOutput() DetectorPtrOutput

func (*Detector) ToDetectorPtrOutputWithContext added in v3.25.0

func (i *Detector) ToDetectorPtrOutputWithContext(ctx context.Context) DetectorPtrOutput

type DetectorArgs

type DetectorArgs struct {
	// Enable monitoring and feedback reporting. Setting to `false` is equivalent to "suspending" GuardDuty. Defaults to `true`.
	Enable pulumi.BoolPtrInput
	// Specifies the frequency of notifications sent for subsequent finding occurrences. If the detector is a GuardDuty member account, the value is determined by the GuardDuty primary account and cannot be modified, otherwise defaults to `SIX_HOURS`. For standalone and GuardDuty primary accounts, it must be configured in this provider to enable drift detection. Valid values for standalone and primary accounts: `FIFTEEN_MINUTES`, `ONE_HOUR`, `SIX_HOURS`. See [AWS Documentation](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings_cloudwatch.html#guardduty_findings_cloudwatch_notification_frequency) for more information.
	FindingPublishingFrequency pulumi.StringPtrInput
	// Key-value map of resource tags.
	Tags pulumi.StringMapInput
}

The set of arguments for constructing a Detector resource.

func (DetectorArgs) ElementType

func (DetectorArgs) ElementType() reflect.Type

type DetectorArray added in v3.25.0

type DetectorArray []DetectorInput

func (DetectorArray) ElementType added in v3.25.0

func (DetectorArray) ElementType() reflect.Type

func (DetectorArray) ToDetectorArrayOutput added in v3.25.0

func (i DetectorArray) ToDetectorArrayOutput() DetectorArrayOutput

func (DetectorArray) ToDetectorArrayOutputWithContext added in v3.25.0

func (i DetectorArray) ToDetectorArrayOutputWithContext(ctx context.Context) DetectorArrayOutput

type DetectorArrayInput added in v3.25.0

type DetectorArrayInput interface {
	pulumi.Input

	ToDetectorArrayOutput() DetectorArrayOutput
	ToDetectorArrayOutputWithContext(context.Context) DetectorArrayOutput
}

DetectorArrayInput is an input type that accepts DetectorArray and DetectorArrayOutput values. You can construct a concrete instance of `DetectorArrayInput` via:

DetectorArray{ DetectorArgs{...} }

type DetectorArrayOutput added in v3.25.0

type DetectorArrayOutput struct{ *pulumi.OutputState }

func (DetectorArrayOutput) ElementType added in v3.25.0

func (DetectorArrayOutput) ElementType() reflect.Type

func (DetectorArrayOutput) Index added in v3.25.0

func (DetectorArrayOutput) ToDetectorArrayOutput added in v3.25.0

func (o DetectorArrayOutput) ToDetectorArrayOutput() DetectorArrayOutput

func (DetectorArrayOutput) ToDetectorArrayOutputWithContext added in v3.25.0

func (o DetectorArrayOutput) ToDetectorArrayOutputWithContext(ctx context.Context) DetectorArrayOutput

type DetectorInput added in v3.13.0

type DetectorInput interface {
	pulumi.Input

	ToDetectorOutput() DetectorOutput
	ToDetectorOutputWithContext(ctx context.Context) DetectorOutput
}

type DetectorMap added in v3.25.0

type DetectorMap map[string]DetectorInput

func (DetectorMap) ElementType added in v3.25.0

func (DetectorMap) ElementType() reflect.Type

func (DetectorMap) ToDetectorMapOutput added in v3.25.0

func (i DetectorMap) ToDetectorMapOutput() DetectorMapOutput

func (DetectorMap) ToDetectorMapOutputWithContext added in v3.25.0

func (i DetectorMap) ToDetectorMapOutputWithContext(ctx context.Context) DetectorMapOutput

type DetectorMapInput added in v3.25.0

type DetectorMapInput interface {
	pulumi.Input

	ToDetectorMapOutput() DetectorMapOutput
	ToDetectorMapOutputWithContext(context.Context) DetectorMapOutput
}

DetectorMapInput is an input type that accepts DetectorMap and DetectorMapOutput values. You can construct a concrete instance of `DetectorMapInput` via:

DetectorMap{ "key": DetectorArgs{...} }

type DetectorMapOutput added in v3.25.0

type DetectorMapOutput struct{ *pulumi.OutputState }

func (DetectorMapOutput) ElementType added in v3.25.0

func (DetectorMapOutput) ElementType() reflect.Type

func (DetectorMapOutput) MapIndex added in v3.25.0

func (DetectorMapOutput) ToDetectorMapOutput added in v3.25.0

func (o DetectorMapOutput) ToDetectorMapOutput() DetectorMapOutput

func (DetectorMapOutput) ToDetectorMapOutputWithContext added in v3.25.0

func (o DetectorMapOutput) ToDetectorMapOutputWithContext(ctx context.Context) DetectorMapOutput

type DetectorOutput added in v3.13.0

type DetectorOutput struct {
	*pulumi.OutputState
}

func (DetectorOutput) ElementType added in v3.13.0

func (DetectorOutput) ElementType() reflect.Type

func (DetectorOutput) ToDetectorOutput added in v3.13.0

func (o DetectorOutput) ToDetectorOutput() DetectorOutput

func (DetectorOutput) ToDetectorOutputWithContext added in v3.13.0

func (o DetectorOutput) ToDetectorOutputWithContext(ctx context.Context) DetectorOutput

func (DetectorOutput) ToDetectorPtrOutput added in v3.25.0

func (o DetectorOutput) ToDetectorPtrOutput() DetectorPtrOutput

func (DetectorOutput) ToDetectorPtrOutputWithContext added in v3.25.0

func (o DetectorOutput) ToDetectorPtrOutputWithContext(ctx context.Context) DetectorPtrOutput

type DetectorPtrInput added in v3.25.0

type DetectorPtrInput interface {
	pulumi.Input

	ToDetectorPtrOutput() DetectorPtrOutput
	ToDetectorPtrOutputWithContext(ctx context.Context) DetectorPtrOutput
}

type DetectorPtrOutput added in v3.25.0

type DetectorPtrOutput struct {
	*pulumi.OutputState
}

func (DetectorPtrOutput) ElementType added in v3.25.0

func (DetectorPtrOutput) ElementType() reflect.Type

func (DetectorPtrOutput) ToDetectorPtrOutput added in v3.25.0

func (o DetectorPtrOutput) ToDetectorPtrOutput() DetectorPtrOutput

func (DetectorPtrOutput) ToDetectorPtrOutputWithContext added in v3.25.0

func (o DetectorPtrOutput) ToDetectorPtrOutputWithContext(ctx context.Context) DetectorPtrOutput

type DetectorState

type DetectorState struct {
	// The AWS account ID of the GuardDuty detector
	AccountId pulumi.StringPtrInput
	// Amazon Resource Name (ARN) of the GuardDuty detector
	Arn pulumi.StringPtrInput
	// Enable monitoring and feedback reporting. Setting to `false` is equivalent to "suspending" GuardDuty. Defaults to `true`.
	Enable pulumi.BoolPtrInput
	// Specifies the frequency of notifications sent for subsequent finding occurrences. If the detector is a GuardDuty member account, the value is determined by the GuardDuty primary account and cannot be modified, otherwise defaults to `SIX_HOURS`. For standalone and GuardDuty primary accounts, it must be configured in this provider to enable drift detection. Valid values for standalone and primary accounts: `FIFTEEN_MINUTES`, `ONE_HOUR`, `SIX_HOURS`. See [AWS Documentation](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings_cloudwatch.html#guardduty_findings_cloudwatch_notification_frequency) for more information.
	FindingPublishingFrequency pulumi.StringPtrInput
	// Key-value map of resource tags.
	Tags pulumi.StringMapInput
}

func (DetectorState) ElementType

func (DetectorState) ElementType() reflect.Type

type Filter added in v3.3.0

type Filter struct {
	pulumi.CustomResourceState

	// Specifies the action that is to be applied to the findings that match the filter. Can be one of `ARCHIVE` or `NOOP`.
	Action pulumi.StringOutput `pulumi:"action"`
	// The ARN of the GuardDuty filter.
	Arn pulumi.StringOutput `pulumi:"arn"`
	// Description of the filter.
	Description pulumi.StringPtrOutput `pulumi:"description"`
	// ID of a GuardDuty detector, attached to your account.
	DetectorId pulumi.StringOutput `pulumi:"detectorId"`
	// Represents the criteria to be used in the filter for querying findings. Contains one or more `criterion` blocks, documented below.
	FindingCriteria FilterFindingCriteriaOutput `pulumi:"findingCriteria"`
	// The name of your filter.
	Name pulumi.StringOutput `pulumi:"name"`
	// Specifies the position of the filter in the list of current filters. Also specifies the order in which this filter is applied to the findings.
	Rank pulumi.IntOutput `pulumi:"rank"`
	// The tags that you want to add to the Filter resource. A tag consists of a key and a value.
	Tags pulumi.StringMapOutput `pulumi:"tags"`
}

Provides a resource to manage a GuardDuty filter.

## Example Usage

```go package main

import (

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := guardduty.NewFilter(ctx, "myFilter", &guardduty.FilterArgs{
			Action:     pulumi.String("ARCHIVE"),
			DetectorId: pulumi.Any(aws_guardduty_detector.Example.Id),
			Rank:       pulumi.Int(1),
			FindingCriteria: &guardduty.FilterFindingCriteriaArgs{
				Criterions: guardduty.FilterFindingCriteriaCriterionArray{
					&guardduty.FilterFindingCriteriaCriterionArgs{
						Field: pulumi.String("region"),
						Equals: pulumi.StringArray{
							pulumi.String("eu-west-1"),
						},
					},
					&guardduty.FilterFindingCriteriaCriterionArgs{
						Field: pulumi.String("service.additionalInfo.threatListName"),
						NotEquals: pulumi.StringArray{
							pulumi.String("some-threat"),
							pulumi.String("another-threat"),
						},
					},
					&guardduty.FilterFindingCriteriaCriterionArgs{
						Field:       pulumi.String("updatedAt"),
						GreaterThan: pulumi.String("2020-01-01T00:00:00Z"),
						LessThan:    pulumi.String("2020-02-01T00:00:00Z"),
					},
					&guardduty.FilterFindingCriteriaCriterionArgs{
						Field:              pulumi.String("severity"),
						GreaterThanOrEqual: pulumi.String("4"),
					},
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

GuardDuty filters can be imported using the detector ID and filter's name separated by a colon, e.g.

```sh

$ pulumi import aws:guardduty/filter:Filter MyFilter 00b00fd5aecc0ab60a708659477e9617:MyFilter

```

func GetFilter added in v3.3.0

func GetFilter(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *FilterState, opts ...pulumi.ResourceOption) (*Filter, error)

GetFilter gets an existing Filter resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewFilter added in v3.3.0

func NewFilter(ctx *pulumi.Context,
	name string, args *FilterArgs, opts ...pulumi.ResourceOption) (*Filter, error)

NewFilter registers a new resource with the given unique name, arguments, and options.

func (*Filter) ElementType added in v3.13.0

func (*Filter) ElementType() reflect.Type

func (*Filter) ToFilterOutput added in v3.13.0

func (i *Filter) ToFilterOutput() FilterOutput

func (*Filter) ToFilterOutputWithContext added in v3.13.0

func (i *Filter) ToFilterOutputWithContext(ctx context.Context) FilterOutput

func (*Filter) ToFilterPtrOutput added in v3.25.0

func (i *Filter) ToFilterPtrOutput() FilterPtrOutput

func (*Filter) ToFilterPtrOutputWithContext added in v3.25.0

func (i *Filter) ToFilterPtrOutputWithContext(ctx context.Context) FilterPtrOutput

type FilterArgs added in v3.3.0

type FilterArgs struct {
	// Specifies the action that is to be applied to the findings that match the filter. Can be one of `ARCHIVE` or `NOOP`.
	Action pulumi.StringInput
	// Description of the filter.
	Description pulumi.StringPtrInput
	// ID of a GuardDuty detector, attached to your account.
	DetectorId pulumi.StringInput
	// Represents the criteria to be used in the filter for querying findings. Contains one or more `criterion` blocks, documented below.
	FindingCriteria FilterFindingCriteriaInput
	// The name of your filter.
	Name pulumi.StringPtrInput
	// Specifies the position of the filter in the list of current filters. Also specifies the order in which this filter is applied to the findings.
	Rank pulumi.IntInput
	// The tags that you want to add to the Filter resource. A tag consists of a key and a value.
	Tags pulumi.StringMapInput
}

The set of arguments for constructing a Filter resource.

func (FilterArgs) ElementType added in v3.3.0

func (FilterArgs) ElementType() reflect.Type

type FilterArray added in v3.25.0

type FilterArray []FilterInput

func (FilterArray) ElementType added in v3.25.0

func (FilterArray) ElementType() reflect.Type

func (FilterArray) ToFilterArrayOutput added in v3.25.0

func (i FilterArray) ToFilterArrayOutput() FilterArrayOutput

func (FilterArray) ToFilterArrayOutputWithContext added in v3.25.0

func (i FilterArray) ToFilterArrayOutputWithContext(ctx context.Context) FilterArrayOutput

type FilterArrayInput added in v3.25.0

type FilterArrayInput interface {
	pulumi.Input

	ToFilterArrayOutput() FilterArrayOutput
	ToFilterArrayOutputWithContext(context.Context) FilterArrayOutput
}

FilterArrayInput is an input type that accepts FilterArray and FilterArrayOutput values. You can construct a concrete instance of `FilterArrayInput` via:

FilterArray{ FilterArgs{...} }

type FilterArrayOutput added in v3.25.0

type FilterArrayOutput struct{ *pulumi.OutputState }

func (FilterArrayOutput) ElementType added in v3.25.0

func (FilterArrayOutput) ElementType() reflect.Type

func (FilterArrayOutput) Index added in v3.25.0

func (FilterArrayOutput) ToFilterArrayOutput added in v3.25.0

func (o FilterArrayOutput) ToFilterArrayOutput() FilterArrayOutput

func (FilterArrayOutput) ToFilterArrayOutputWithContext added in v3.25.0

func (o FilterArrayOutput) ToFilterArrayOutputWithContext(ctx context.Context) FilterArrayOutput

type FilterFindingCriteria added in v3.3.0

type FilterFindingCriteria struct {
	Criterions []FilterFindingCriteriaCriterion `pulumi:"criterions"`
}

type FilterFindingCriteriaArgs added in v3.3.0

type FilterFindingCriteriaArgs struct {
	Criterions FilterFindingCriteriaCriterionArrayInput `pulumi:"criterions"`
}

func (FilterFindingCriteriaArgs) ElementType added in v3.3.0

func (FilterFindingCriteriaArgs) ElementType() reflect.Type

func (FilterFindingCriteriaArgs) ToFilterFindingCriteriaOutput added in v3.3.0

func (i FilterFindingCriteriaArgs) ToFilterFindingCriteriaOutput() FilterFindingCriteriaOutput

func (FilterFindingCriteriaArgs) ToFilterFindingCriteriaOutputWithContext added in v3.3.0

func (i FilterFindingCriteriaArgs) ToFilterFindingCriteriaOutputWithContext(ctx context.Context) FilterFindingCriteriaOutput

func (FilterFindingCriteriaArgs) ToFilterFindingCriteriaPtrOutput added in v3.3.0

func (i FilterFindingCriteriaArgs) ToFilterFindingCriteriaPtrOutput() FilterFindingCriteriaPtrOutput

func (FilterFindingCriteriaArgs) ToFilterFindingCriteriaPtrOutputWithContext added in v3.3.0

func (i FilterFindingCriteriaArgs) ToFilterFindingCriteriaPtrOutputWithContext(ctx context.Context) FilterFindingCriteriaPtrOutput

type FilterFindingCriteriaCriterion added in v3.3.0

type FilterFindingCriteriaCriterion struct {
	// List of string values to be evaluated.
	Equals []string `pulumi:"equals"`
	// The name of the field to be evaluated. The full list of field names can be found in [AWS documentation](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_filter-findings.html#filter_criteria).
	Field string `pulumi:"field"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	GreaterThan *string `pulumi:"greaterThan"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	GreaterThanOrEqual *string `pulumi:"greaterThanOrEqual"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	LessThan *string `pulumi:"lessThan"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	LessThanOrEqual *string `pulumi:"lessThanOrEqual"`
	// List of string values to be evaluated.
	NotEquals []string `pulumi:"notEquals"`
}

type FilterFindingCriteriaCriterionArgs added in v3.3.0

type FilterFindingCriteriaCriterionArgs struct {
	// List of string values to be evaluated.
	Equals pulumi.StringArrayInput `pulumi:"equals"`
	// The name of the field to be evaluated. The full list of field names can be found in [AWS documentation](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_filter-findings.html#filter_criteria).
	Field pulumi.StringInput `pulumi:"field"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	GreaterThan pulumi.StringPtrInput `pulumi:"greaterThan"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	GreaterThanOrEqual pulumi.StringPtrInput `pulumi:"greaterThanOrEqual"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	LessThan pulumi.StringPtrInput `pulumi:"lessThan"`
	// A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	LessThanOrEqual pulumi.StringPtrInput `pulumi:"lessThanOrEqual"`
	// List of string values to be evaluated.
	NotEquals pulumi.StringArrayInput `pulumi:"notEquals"`
}

func (FilterFindingCriteriaCriterionArgs) ElementType added in v3.3.0

func (FilterFindingCriteriaCriterionArgs) ToFilterFindingCriteriaCriterionOutput added in v3.3.0

func (i FilterFindingCriteriaCriterionArgs) ToFilterFindingCriteriaCriterionOutput() FilterFindingCriteriaCriterionOutput

func (FilterFindingCriteriaCriterionArgs) ToFilterFindingCriteriaCriterionOutputWithContext added in v3.3.0

func (i FilterFindingCriteriaCriterionArgs) ToFilterFindingCriteriaCriterionOutputWithContext(ctx context.Context) FilterFindingCriteriaCriterionOutput

type FilterFindingCriteriaCriterionArray added in v3.3.0

type FilterFindingCriteriaCriterionArray []FilterFindingCriteriaCriterionInput

func (FilterFindingCriteriaCriterionArray) ElementType added in v3.3.0

func (FilterFindingCriteriaCriterionArray) ToFilterFindingCriteriaCriterionArrayOutput added in v3.3.0

func (i FilterFindingCriteriaCriterionArray) ToFilterFindingCriteriaCriterionArrayOutput() FilterFindingCriteriaCriterionArrayOutput

func (FilterFindingCriteriaCriterionArray) ToFilterFindingCriteriaCriterionArrayOutputWithContext added in v3.3.0

func (i FilterFindingCriteriaCriterionArray) ToFilterFindingCriteriaCriterionArrayOutputWithContext(ctx context.Context) FilterFindingCriteriaCriterionArrayOutput

type FilterFindingCriteriaCriterionArrayInput added in v3.3.0

type FilterFindingCriteriaCriterionArrayInput interface {
	pulumi.Input

	ToFilterFindingCriteriaCriterionArrayOutput() FilterFindingCriteriaCriterionArrayOutput
	ToFilterFindingCriteriaCriterionArrayOutputWithContext(context.Context) FilterFindingCriteriaCriterionArrayOutput
}

FilterFindingCriteriaCriterionArrayInput is an input type that accepts FilterFindingCriteriaCriterionArray and FilterFindingCriteriaCriterionArrayOutput values. You can construct a concrete instance of `FilterFindingCriteriaCriterionArrayInput` via:

FilterFindingCriteriaCriterionArray{ FilterFindingCriteriaCriterionArgs{...} }

type FilterFindingCriteriaCriterionArrayOutput added in v3.3.0

type FilterFindingCriteriaCriterionArrayOutput struct{ *pulumi.OutputState }

func (FilterFindingCriteriaCriterionArrayOutput) ElementType added in v3.3.0

func (FilterFindingCriteriaCriterionArrayOutput) Index added in v3.3.0

func (FilterFindingCriteriaCriterionArrayOutput) ToFilterFindingCriteriaCriterionArrayOutput added in v3.3.0

func (o FilterFindingCriteriaCriterionArrayOutput) ToFilterFindingCriteriaCriterionArrayOutput() FilterFindingCriteriaCriterionArrayOutput

func (FilterFindingCriteriaCriterionArrayOutput) ToFilterFindingCriteriaCriterionArrayOutputWithContext added in v3.3.0

func (o FilterFindingCriteriaCriterionArrayOutput) ToFilterFindingCriteriaCriterionArrayOutputWithContext(ctx context.Context) FilterFindingCriteriaCriterionArrayOutput

type FilterFindingCriteriaCriterionInput added in v3.3.0

type FilterFindingCriteriaCriterionInput interface {
	pulumi.Input

	ToFilterFindingCriteriaCriterionOutput() FilterFindingCriteriaCriterionOutput
	ToFilterFindingCriteriaCriterionOutputWithContext(context.Context) FilterFindingCriteriaCriterionOutput
}

FilterFindingCriteriaCriterionInput is an input type that accepts FilterFindingCriteriaCriterionArgs and FilterFindingCriteriaCriterionOutput values. You can construct a concrete instance of `FilterFindingCriteriaCriterionInput` via:

FilterFindingCriteriaCriterionArgs{...}

type FilterFindingCriteriaCriterionOutput added in v3.3.0

type FilterFindingCriteriaCriterionOutput struct{ *pulumi.OutputState }

func (FilterFindingCriteriaCriterionOutput) ElementType added in v3.3.0

func (FilterFindingCriteriaCriterionOutput) Equals added in v3.3.0

List of string values to be evaluated.

func (FilterFindingCriteriaCriterionOutput) Field added in v3.3.0

The name of the field to be evaluated. The full list of field names can be found in [AWS documentation](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_filter-findings.html#filter_criteria).

func (FilterFindingCriteriaCriterionOutput) GreaterThan added in v3.3.0

A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).

func (FilterFindingCriteriaCriterionOutput) GreaterThanOrEqual added in v3.3.0

A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).

func (FilterFindingCriteriaCriterionOutput) LessThan added in v3.3.0

A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).

func (FilterFindingCriteriaCriterionOutput) LessThanOrEqual added in v3.3.0

A value to be evaluated. Accepts either an integer or a date in [RFC 3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).

func (FilterFindingCriteriaCriterionOutput) NotEquals added in v3.3.0

List of string values to be evaluated.

func (FilterFindingCriteriaCriterionOutput) ToFilterFindingCriteriaCriterionOutput added in v3.3.0

func (o FilterFindingCriteriaCriterionOutput) ToFilterFindingCriteriaCriterionOutput() FilterFindingCriteriaCriterionOutput

func (FilterFindingCriteriaCriterionOutput) ToFilterFindingCriteriaCriterionOutputWithContext added in v3.3.0

func (o FilterFindingCriteriaCriterionOutput) ToFilterFindingCriteriaCriterionOutputWithContext(ctx context.Context) FilterFindingCriteriaCriterionOutput

type FilterFindingCriteriaInput added in v3.3.0

type FilterFindingCriteriaInput interface {
	pulumi.Input

	ToFilterFindingCriteriaOutput() FilterFindingCriteriaOutput
	ToFilterFindingCriteriaOutputWithContext(context.Context) FilterFindingCriteriaOutput
}

FilterFindingCriteriaInput is an input type that accepts FilterFindingCriteriaArgs and FilterFindingCriteriaOutput values. You can construct a concrete instance of `FilterFindingCriteriaInput` via:

FilterFindingCriteriaArgs{...}

type FilterFindingCriteriaOutput added in v3.3.0

type FilterFindingCriteriaOutput struct{ *pulumi.OutputState }

func (FilterFindingCriteriaOutput) Criterions added in v3.3.0

func (FilterFindingCriteriaOutput) ElementType added in v3.3.0

func (FilterFindingCriteriaOutput) ToFilterFindingCriteriaOutput added in v3.3.0

func (o FilterFindingCriteriaOutput) ToFilterFindingCriteriaOutput() FilterFindingCriteriaOutput

func (FilterFindingCriteriaOutput) ToFilterFindingCriteriaOutputWithContext added in v3.3.0

func (o FilterFindingCriteriaOutput) ToFilterFindingCriteriaOutputWithContext(ctx context.Context) FilterFindingCriteriaOutput

func (FilterFindingCriteriaOutput) ToFilterFindingCriteriaPtrOutput added in v3.3.0

func (o FilterFindingCriteriaOutput) ToFilterFindingCriteriaPtrOutput() FilterFindingCriteriaPtrOutput

func (FilterFindingCriteriaOutput) ToFilterFindingCriteriaPtrOutputWithContext added in v3.3.0

func (o FilterFindingCriteriaOutput) ToFilterFindingCriteriaPtrOutputWithContext(ctx context.Context) FilterFindingCriteriaPtrOutput

type FilterFindingCriteriaPtrInput added in v3.3.0

type FilterFindingCriteriaPtrInput interface {
	pulumi.Input

	ToFilterFindingCriteriaPtrOutput() FilterFindingCriteriaPtrOutput
	ToFilterFindingCriteriaPtrOutputWithContext(context.Context) FilterFindingCriteriaPtrOutput
}

FilterFindingCriteriaPtrInput is an input type that accepts FilterFindingCriteriaArgs, FilterFindingCriteriaPtr and FilterFindingCriteriaPtrOutput values. You can construct a concrete instance of `FilterFindingCriteriaPtrInput` via:

        FilterFindingCriteriaArgs{...}

or:

        nil

func FilterFindingCriteriaPtr added in v3.3.0

func FilterFindingCriteriaPtr(v *FilterFindingCriteriaArgs) FilterFindingCriteriaPtrInput

type FilterFindingCriteriaPtrOutput added in v3.3.0

type FilterFindingCriteriaPtrOutput struct{ *pulumi.OutputState }

func (FilterFindingCriteriaPtrOutput) Criterions added in v3.3.0

func (FilterFindingCriteriaPtrOutput) Elem added in v3.3.0

func (FilterFindingCriteriaPtrOutput) ElementType added in v3.3.0

func (FilterFindingCriteriaPtrOutput) ToFilterFindingCriteriaPtrOutput added in v3.3.0

func (o FilterFindingCriteriaPtrOutput) ToFilterFindingCriteriaPtrOutput() FilterFindingCriteriaPtrOutput

func (FilterFindingCriteriaPtrOutput) ToFilterFindingCriteriaPtrOutputWithContext added in v3.3.0

func (o FilterFindingCriteriaPtrOutput) ToFilterFindingCriteriaPtrOutputWithContext(ctx context.Context) FilterFindingCriteriaPtrOutput

type FilterInput added in v3.13.0

type FilterInput interface {
	pulumi.Input

	ToFilterOutput() FilterOutput
	ToFilterOutputWithContext(ctx context.Context) FilterOutput
}

type FilterMap added in v3.25.0

type FilterMap map[string]FilterInput

func (FilterMap) ElementType added in v3.25.0

func (FilterMap) ElementType() reflect.Type

func (FilterMap) ToFilterMapOutput added in v3.25.0

func (i FilterMap) ToFilterMapOutput() FilterMapOutput

func (FilterMap) ToFilterMapOutputWithContext added in v3.25.0

func (i FilterMap) ToFilterMapOutputWithContext(ctx context.Context) FilterMapOutput

type FilterMapInput added in v3.25.0

type FilterMapInput interface {
	pulumi.Input

	ToFilterMapOutput() FilterMapOutput
	ToFilterMapOutputWithContext(context.Context) FilterMapOutput
}

FilterMapInput is an input type that accepts FilterMap and FilterMapOutput values. You can construct a concrete instance of `FilterMapInput` via:

FilterMap{ "key": FilterArgs{...} }

type FilterMapOutput added in v3.25.0

type FilterMapOutput struct{ *pulumi.OutputState }

func (FilterMapOutput) ElementType added in v3.25.0

func (FilterMapOutput) ElementType() reflect.Type

func (FilterMapOutput) MapIndex added in v3.25.0

func (FilterMapOutput) ToFilterMapOutput added in v3.25.0

func (o FilterMapOutput) ToFilterMapOutput() FilterMapOutput

func (FilterMapOutput) ToFilterMapOutputWithContext added in v3.25.0

func (o FilterMapOutput) ToFilterMapOutputWithContext(ctx context.Context) FilterMapOutput

type FilterOutput added in v3.13.0

type FilterOutput struct {
	*pulumi.OutputState
}

func (FilterOutput) ElementType added in v3.13.0

func (FilterOutput) ElementType() reflect.Type

func (FilterOutput) ToFilterOutput added in v3.13.0

func (o FilterOutput) ToFilterOutput() FilterOutput

func (FilterOutput) ToFilterOutputWithContext added in v3.13.0

func (o FilterOutput) ToFilterOutputWithContext(ctx context.Context) FilterOutput

func (FilterOutput) ToFilterPtrOutput added in v3.25.0

func (o FilterOutput) ToFilterPtrOutput() FilterPtrOutput

func (FilterOutput) ToFilterPtrOutputWithContext added in v3.25.0

func (o FilterOutput) ToFilterPtrOutputWithContext(ctx context.Context) FilterPtrOutput

type FilterPtrInput added in v3.25.0

type FilterPtrInput interface {
	pulumi.Input

	ToFilterPtrOutput() FilterPtrOutput
	ToFilterPtrOutputWithContext(ctx context.Context) FilterPtrOutput
}

type FilterPtrOutput added in v3.25.0

type FilterPtrOutput struct {
	*pulumi.OutputState
}

func (FilterPtrOutput) ElementType added in v3.25.0

func (FilterPtrOutput) ElementType() reflect.Type

func (FilterPtrOutput) ToFilterPtrOutput added in v3.25.0

func (o FilterPtrOutput) ToFilterPtrOutput() FilterPtrOutput

func (FilterPtrOutput) ToFilterPtrOutputWithContext added in v3.25.0

func (o FilterPtrOutput) ToFilterPtrOutputWithContext(ctx context.Context) FilterPtrOutput

type FilterState added in v3.3.0

type FilterState struct {
	// Specifies the action that is to be applied to the findings that match the filter. Can be one of `ARCHIVE` or `NOOP`.
	Action pulumi.StringPtrInput
	// The ARN of the GuardDuty filter.
	Arn pulumi.StringPtrInput
	// Description of the filter.
	Description pulumi.StringPtrInput
	// ID of a GuardDuty detector, attached to your account.
	DetectorId pulumi.StringPtrInput
	// Represents the criteria to be used in the filter for querying findings. Contains one or more `criterion` blocks, documented below.
	FindingCriteria FilterFindingCriteriaPtrInput
	// The name of your filter.
	Name pulumi.StringPtrInput
	// Specifies the position of the filter in the list of current filters. Also specifies the order in which this filter is applied to the findings.
	Rank pulumi.IntPtrInput
	// The tags that you want to add to the Filter resource. A tag consists of a key and a value.
	Tags pulumi.StringMapInput
}

func (FilterState) ElementType added in v3.3.0

func (FilterState) ElementType() reflect.Type

type IPSet

type IPSet struct {
	pulumi.CustomResourceState

	// Specifies whether GuardDuty is to start using the uploaded IPSet.
	Activate pulumi.BoolOutput `pulumi:"activate"`
	// Amazon Resource Name (ARN) of the GuardDuty IPSet.
	Arn pulumi.StringOutput `pulumi:"arn"`
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringOutput `pulumi:"detectorId"`
	// The format of the file that contains the IPSet. Valid values: `TXT` | `STIX` | `OTX_CSV` | `ALIEN_VAULT` | `PROOF_POINT` | `FIRE_EYE`
	Format pulumi.StringOutput `pulumi:"format"`
	// The URI of the file that contains the IPSet.
	Location pulumi.StringOutput `pulumi:"location"`
	// The friendly name to identify the IPSet.
	Name pulumi.StringOutput `pulumi:"name"`
	// Key-value map of resource tags.
	Tags pulumi.StringMapOutput `pulumi:"tags"`
}

Provides a resource to manage a GuardDuty IPSet.

> **Note:** Currently in GuardDuty, users from member accounts cannot upload and further manage IPSets. IPSets that are uploaded by the primary account are imposed on GuardDuty functionality in its member accounts. See the [GuardDuty API Documentation](https://docs.aws.amazon.com/guardduty/latest/ug/create-ip-set.html)

## Example Usage

```go package main

import (

"fmt"

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/s3"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		primary, err := guardduty.NewDetector(ctx, "primary", &guardduty.DetectorArgs{
			Enable: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		bucket, err := s3.NewBucket(ctx, "bucket", &s3.BucketArgs{
			Acl: pulumi.String("private"),
		})
		if err != nil {
			return err
		}
		myIPSet, err := s3.NewBucketObject(ctx, "myIPSet", &s3.BucketObjectArgs{
			Acl:     pulumi.String("public-read"),
			Content: pulumi.String("10.0.0.0/8\n"),
			Bucket:  bucket.ID(),
			Key:     pulumi.String("MyIPSet"),
		})
		if err != nil {
			return err
		}
		_, err = guardduty.NewIPSet(ctx, "example", &guardduty.IPSetArgs{
			Activate:   pulumi.Bool(true),
			DetectorId: primary.ID(),
			Format:     pulumi.String("TXT"),
			Location: pulumi.All(myIPSet.Bucket, myIPSet.Key).ApplyT(func(_args []interface{}) (string, error) {
				bucket := _args[0].(string)
				key := _args[1].(string)
				return fmt.Sprintf("%v%v%v%v", "https://s3.amazonaws.com/", bucket, "/", key), nil
			}).(pulumi.StringOutput),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

GuardDuty IPSet can be imported using the the primary GuardDuty detector ID and IPSet ID, e.g.

```sh

$ pulumi import aws:guardduty/iPSet:IPSet MyIPSet 00b00fd5aecc0ab60a708659477e9617:123456789012

```

func GetIPSet

func GetIPSet(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *IPSetState, opts ...pulumi.ResourceOption) (*IPSet, error)

GetIPSet gets an existing IPSet resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewIPSet

func NewIPSet(ctx *pulumi.Context,
	name string, args *IPSetArgs, opts ...pulumi.ResourceOption) (*IPSet, error)

NewIPSet registers a new resource with the given unique name, arguments, and options.

func (*IPSet) ElementType added in v3.13.0

func (*IPSet) ElementType() reflect.Type

func (*IPSet) ToIPSetOutput added in v3.13.0

func (i *IPSet) ToIPSetOutput() IPSetOutput

func (*IPSet) ToIPSetOutputWithContext added in v3.13.0

func (i *IPSet) ToIPSetOutputWithContext(ctx context.Context) IPSetOutput

func (*IPSet) ToIPSetPtrOutput added in v3.25.0

func (i *IPSet) ToIPSetPtrOutput() IPSetPtrOutput

func (*IPSet) ToIPSetPtrOutputWithContext added in v3.25.0

func (i *IPSet) ToIPSetPtrOutputWithContext(ctx context.Context) IPSetPtrOutput

type IPSetArgs

type IPSetArgs struct {
	// Specifies whether GuardDuty is to start using the uploaded IPSet.
	Activate pulumi.BoolInput
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringInput
	// The format of the file that contains the IPSet. Valid values: `TXT` | `STIX` | `OTX_CSV` | `ALIEN_VAULT` | `PROOF_POINT` | `FIRE_EYE`
	Format pulumi.StringInput
	// The URI of the file that contains the IPSet.
	Location pulumi.StringInput
	// The friendly name to identify the IPSet.
	Name pulumi.StringPtrInput
	// Key-value map of resource tags.
	Tags pulumi.StringMapInput
}

The set of arguments for constructing a IPSet resource.

func (IPSetArgs) ElementType

func (IPSetArgs) ElementType() reflect.Type

type IPSetArray added in v3.25.0

type IPSetArray []IPSetInput

func (IPSetArray) ElementType added in v3.25.0

func (IPSetArray) ElementType() reflect.Type

func (IPSetArray) ToIPSetArrayOutput added in v3.25.0

func (i IPSetArray) ToIPSetArrayOutput() IPSetArrayOutput

func (IPSetArray) ToIPSetArrayOutputWithContext added in v3.25.0

func (i IPSetArray) ToIPSetArrayOutputWithContext(ctx context.Context) IPSetArrayOutput

type IPSetArrayInput added in v3.25.0

type IPSetArrayInput interface {
	pulumi.Input

	ToIPSetArrayOutput() IPSetArrayOutput
	ToIPSetArrayOutputWithContext(context.Context) IPSetArrayOutput
}

IPSetArrayInput is an input type that accepts IPSetArray and IPSetArrayOutput values. You can construct a concrete instance of `IPSetArrayInput` via:

IPSetArray{ IPSetArgs{...} }

type IPSetArrayOutput added in v3.25.0

type IPSetArrayOutput struct{ *pulumi.OutputState }

func (IPSetArrayOutput) ElementType added in v3.25.0

func (IPSetArrayOutput) ElementType() reflect.Type

func (IPSetArrayOutput) Index added in v3.25.0

func (IPSetArrayOutput) ToIPSetArrayOutput added in v3.25.0

func (o IPSetArrayOutput) ToIPSetArrayOutput() IPSetArrayOutput

func (IPSetArrayOutput) ToIPSetArrayOutputWithContext added in v3.25.0

func (o IPSetArrayOutput) ToIPSetArrayOutputWithContext(ctx context.Context) IPSetArrayOutput

type IPSetInput added in v3.13.0

type IPSetInput interface {
	pulumi.Input

	ToIPSetOutput() IPSetOutput
	ToIPSetOutputWithContext(ctx context.Context) IPSetOutput
}

type IPSetMap added in v3.25.0

type IPSetMap map[string]IPSetInput

func (IPSetMap) ElementType added in v3.25.0

func (IPSetMap) ElementType() reflect.Type

func (IPSetMap) ToIPSetMapOutput added in v3.25.0

func (i IPSetMap) ToIPSetMapOutput() IPSetMapOutput

func (IPSetMap) ToIPSetMapOutputWithContext added in v3.25.0

func (i IPSetMap) ToIPSetMapOutputWithContext(ctx context.Context) IPSetMapOutput

type IPSetMapInput added in v3.25.0

type IPSetMapInput interface {
	pulumi.Input

	ToIPSetMapOutput() IPSetMapOutput
	ToIPSetMapOutputWithContext(context.Context) IPSetMapOutput
}

IPSetMapInput is an input type that accepts IPSetMap and IPSetMapOutput values. You can construct a concrete instance of `IPSetMapInput` via:

IPSetMap{ "key": IPSetArgs{...} }

type IPSetMapOutput added in v3.25.0

type IPSetMapOutput struct{ *pulumi.OutputState }

func (IPSetMapOutput) ElementType added in v3.25.0

func (IPSetMapOutput) ElementType() reflect.Type

func (IPSetMapOutput) MapIndex added in v3.25.0

func (IPSetMapOutput) ToIPSetMapOutput added in v3.25.0

func (o IPSetMapOutput) ToIPSetMapOutput() IPSetMapOutput

func (IPSetMapOutput) ToIPSetMapOutputWithContext added in v3.25.0

func (o IPSetMapOutput) ToIPSetMapOutputWithContext(ctx context.Context) IPSetMapOutput

type IPSetOutput added in v3.13.0

type IPSetOutput struct {
	*pulumi.OutputState
}

func (IPSetOutput) ElementType added in v3.13.0

func (IPSetOutput) ElementType() reflect.Type

func (IPSetOutput) ToIPSetOutput added in v3.13.0

func (o IPSetOutput) ToIPSetOutput() IPSetOutput

func (IPSetOutput) ToIPSetOutputWithContext added in v3.13.0

func (o IPSetOutput) ToIPSetOutputWithContext(ctx context.Context) IPSetOutput

func (IPSetOutput) ToIPSetPtrOutput added in v3.25.0

func (o IPSetOutput) ToIPSetPtrOutput() IPSetPtrOutput

func (IPSetOutput) ToIPSetPtrOutputWithContext added in v3.25.0

func (o IPSetOutput) ToIPSetPtrOutputWithContext(ctx context.Context) IPSetPtrOutput

type IPSetPtrInput added in v3.25.0

type IPSetPtrInput interface {
	pulumi.Input

	ToIPSetPtrOutput() IPSetPtrOutput
	ToIPSetPtrOutputWithContext(ctx context.Context) IPSetPtrOutput
}

type IPSetPtrOutput added in v3.25.0

type IPSetPtrOutput struct {
	*pulumi.OutputState
}

func (IPSetPtrOutput) ElementType added in v3.25.0

func (IPSetPtrOutput) ElementType() reflect.Type

func (IPSetPtrOutput) ToIPSetPtrOutput added in v3.25.0

func (o IPSetPtrOutput) ToIPSetPtrOutput() IPSetPtrOutput

func (IPSetPtrOutput) ToIPSetPtrOutputWithContext added in v3.25.0

func (o IPSetPtrOutput) ToIPSetPtrOutputWithContext(ctx context.Context) IPSetPtrOutput

type IPSetState

type IPSetState struct {
	// Specifies whether GuardDuty is to start using the uploaded IPSet.
	Activate pulumi.BoolPtrInput
	// Amazon Resource Name (ARN) of the GuardDuty IPSet.
	Arn pulumi.StringPtrInput
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringPtrInput
	// The format of the file that contains the IPSet. Valid values: `TXT` | `STIX` | `OTX_CSV` | `ALIEN_VAULT` | `PROOF_POINT` | `FIRE_EYE`
	Format pulumi.StringPtrInput
	// The URI of the file that contains the IPSet.
	Location pulumi.StringPtrInput
	// The friendly name to identify the IPSet.
	Name pulumi.StringPtrInput
	// Key-value map of resource tags.
	Tags pulumi.StringMapInput
}

func (IPSetState) ElementType

func (IPSetState) ElementType() reflect.Type

type InviteAccepter

type InviteAccepter struct {
	pulumi.CustomResourceState

	// The detector ID of the member GuardDuty account.
	DetectorId pulumi.StringOutput `pulumi:"detectorId"`
	// AWS account ID for primary account.
	MasterAccountId pulumi.StringOutput `pulumi:"masterAccountId"`
}

Provides a resource to accept a pending GuardDuty invite on creation, ensure the detector has the correct primary account on read, and disassociate with the primary account upon removal.

## Example Usage

```go package main

import (

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/providers"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := providers.Newaws(ctx, "primary", nil)
		if err != nil {
			return err
		}
		_, err = providers.Newaws(ctx, "member", nil)
		if err != nil {
			return err
		}
		primaryDetector, err := guardduty.NewDetector(ctx, "primaryDetector", nil, pulumi.Provider(aws.Primary))
		if err != nil {
			return err
		}
		memberDetector, err := guardduty.NewDetector(ctx, "memberDetector", nil, pulumi.Provider(aws.Member))
		if err != nil {
			return err
		}
		memberMember, err := guardduty.NewMember(ctx, "memberMember", &guardduty.MemberArgs{
			AccountId:  memberDetector.AccountId,
			DetectorId: primaryDetector.ID(),
			Email:      pulumi.String("required@example.com"),
			Invite:     pulumi.Bool(true),
		}, pulumi.Provider(aws.Primary))
		if err != nil {
			return err
		}
		_, err = guardduty.NewInviteAccepter(ctx, "memberInviteAccepter", &guardduty.InviteAccepterArgs{
			DetectorId:      memberDetector.ID(),
			MasterAccountId: primaryDetector.AccountId,
		}, pulumi.Provider(aws.Member), pulumi.DependsOn([]pulumi.Resource{
			memberMember,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

`aws_guardduty_invite_accepter` can be imported using the the member GuardDuty detector ID, e.g.

```sh

$ pulumi import aws:guardduty/inviteAccepter:InviteAccepter member 00b00fd5aecc0ab60a708659477e9617

```

func GetInviteAccepter

func GetInviteAccepter(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *InviteAccepterState, opts ...pulumi.ResourceOption) (*InviteAccepter, error)

GetInviteAccepter gets an existing InviteAccepter resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewInviteAccepter

func NewInviteAccepter(ctx *pulumi.Context,
	name string, args *InviteAccepterArgs, opts ...pulumi.ResourceOption) (*InviteAccepter, error)

NewInviteAccepter registers a new resource with the given unique name, arguments, and options.

func (*InviteAccepter) ElementType added in v3.13.0

func (*InviteAccepter) ElementType() reflect.Type

func (*InviteAccepter) ToInviteAccepterOutput added in v3.13.0

func (i *InviteAccepter) ToInviteAccepterOutput() InviteAccepterOutput

func (*InviteAccepter) ToInviteAccepterOutputWithContext added in v3.13.0

func (i *InviteAccepter) ToInviteAccepterOutputWithContext(ctx context.Context) InviteAccepterOutput

func (*InviteAccepter) ToInviteAccepterPtrOutput added in v3.25.0

func (i *InviteAccepter) ToInviteAccepterPtrOutput() InviteAccepterPtrOutput

func (*InviteAccepter) ToInviteAccepterPtrOutputWithContext added in v3.25.0

func (i *InviteAccepter) ToInviteAccepterPtrOutputWithContext(ctx context.Context) InviteAccepterPtrOutput

type InviteAccepterArgs

type InviteAccepterArgs struct {
	// The detector ID of the member GuardDuty account.
	DetectorId pulumi.StringInput
	// AWS account ID for primary account.
	MasterAccountId pulumi.StringInput
}

The set of arguments for constructing a InviteAccepter resource.

func (InviteAccepterArgs) ElementType

func (InviteAccepterArgs) ElementType() reflect.Type

type InviteAccepterArray added in v3.25.0

type InviteAccepterArray []InviteAccepterInput

func (InviteAccepterArray) ElementType added in v3.25.0

func (InviteAccepterArray) ElementType() reflect.Type

func (InviteAccepterArray) ToInviteAccepterArrayOutput added in v3.25.0

func (i InviteAccepterArray) ToInviteAccepterArrayOutput() InviteAccepterArrayOutput

func (InviteAccepterArray) ToInviteAccepterArrayOutputWithContext added in v3.25.0

func (i InviteAccepterArray) ToInviteAccepterArrayOutputWithContext(ctx context.Context) InviteAccepterArrayOutput

type InviteAccepterArrayInput added in v3.25.0

type InviteAccepterArrayInput interface {
	pulumi.Input

	ToInviteAccepterArrayOutput() InviteAccepterArrayOutput
	ToInviteAccepterArrayOutputWithContext(context.Context) InviteAccepterArrayOutput
}

InviteAccepterArrayInput is an input type that accepts InviteAccepterArray and InviteAccepterArrayOutput values. You can construct a concrete instance of `InviteAccepterArrayInput` via:

InviteAccepterArray{ InviteAccepterArgs{...} }

type InviteAccepterArrayOutput added in v3.25.0

type InviteAccepterArrayOutput struct{ *pulumi.OutputState }

func (InviteAccepterArrayOutput) ElementType added in v3.25.0

func (InviteAccepterArrayOutput) ElementType() reflect.Type

func (InviteAccepterArrayOutput) Index added in v3.25.0

func (InviteAccepterArrayOutput) ToInviteAccepterArrayOutput added in v3.25.0

func (o InviteAccepterArrayOutput) ToInviteAccepterArrayOutput() InviteAccepterArrayOutput

func (InviteAccepterArrayOutput) ToInviteAccepterArrayOutputWithContext added in v3.25.0

func (o InviteAccepterArrayOutput) ToInviteAccepterArrayOutputWithContext(ctx context.Context) InviteAccepterArrayOutput

type InviteAccepterInput added in v3.13.0

type InviteAccepterInput interface {
	pulumi.Input

	ToInviteAccepterOutput() InviteAccepterOutput
	ToInviteAccepterOutputWithContext(ctx context.Context) InviteAccepterOutput
}

type InviteAccepterMap added in v3.25.0

type InviteAccepterMap map[string]InviteAccepterInput

func (InviteAccepterMap) ElementType added in v3.25.0

func (InviteAccepterMap) ElementType() reflect.Type

func (InviteAccepterMap) ToInviteAccepterMapOutput added in v3.25.0

func (i InviteAccepterMap) ToInviteAccepterMapOutput() InviteAccepterMapOutput

func (InviteAccepterMap) ToInviteAccepterMapOutputWithContext added in v3.25.0

func (i InviteAccepterMap) ToInviteAccepterMapOutputWithContext(ctx context.Context) InviteAccepterMapOutput

type InviteAccepterMapInput added in v3.25.0

type InviteAccepterMapInput interface {
	pulumi.Input

	ToInviteAccepterMapOutput() InviteAccepterMapOutput
	ToInviteAccepterMapOutputWithContext(context.Context) InviteAccepterMapOutput
}

InviteAccepterMapInput is an input type that accepts InviteAccepterMap and InviteAccepterMapOutput values. You can construct a concrete instance of `InviteAccepterMapInput` via:

InviteAccepterMap{ "key": InviteAccepterArgs{...} }

type InviteAccepterMapOutput added in v3.25.0

type InviteAccepterMapOutput struct{ *pulumi.OutputState }

func (InviteAccepterMapOutput) ElementType added in v3.25.0

func (InviteAccepterMapOutput) ElementType() reflect.Type

func (InviteAccepterMapOutput) MapIndex added in v3.25.0

func (InviteAccepterMapOutput) ToInviteAccepterMapOutput added in v3.25.0

func (o InviteAccepterMapOutput) ToInviteAccepterMapOutput() InviteAccepterMapOutput

func (InviteAccepterMapOutput) ToInviteAccepterMapOutputWithContext added in v3.25.0

func (o InviteAccepterMapOutput) ToInviteAccepterMapOutputWithContext(ctx context.Context) InviteAccepterMapOutput

type InviteAccepterOutput added in v3.13.0

type InviteAccepterOutput struct {
	*pulumi.OutputState
}

func (InviteAccepterOutput) ElementType added in v3.13.0

func (InviteAccepterOutput) ElementType() reflect.Type

func (InviteAccepterOutput) ToInviteAccepterOutput added in v3.13.0

func (o InviteAccepterOutput) ToInviteAccepterOutput() InviteAccepterOutput

func (InviteAccepterOutput) ToInviteAccepterOutputWithContext added in v3.13.0

func (o InviteAccepterOutput) ToInviteAccepterOutputWithContext(ctx context.Context) InviteAccepterOutput

func (InviteAccepterOutput) ToInviteAccepterPtrOutput added in v3.25.0

func (o InviteAccepterOutput) ToInviteAccepterPtrOutput() InviteAccepterPtrOutput

func (InviteAccepterOutput) ToInviteAccepterPtrOutputWithContext added in v3.25.0

func (o InviteAccepterOutput) ToInviteAccepterPtrOutputWithContext(ctx context.Context) InviteAccepterPtrOutput

type InviteAccepterPtrInput added in v3.25.0

type InviteAccepterPtrInput interface {
	pulumi.Input

	ToInviteAccepterPtrOutput() InviteAccepterPtrOutput
	ToInviteAccepterPtrOutputWithContext(ctx context.Context) InviteAccepterPtrOutput
}

type InviteAccepterPtrOutput added in v3.25.0

type InviteAccepterPtrOutput struct {
	*pulumi.OutputState
}

func (InviteAccepterPtrOutput) ElementType added in v3.25.0

func (InviteAccepterPtrOutput) ElementType() reflect.Type

func (InviteAccepterPtrOutput) ToInviteAccepterPtrOutput added in v3.25.0

func (o InviteAccepterPtrOutput) ToInviteAccepterPtrOutput() InviteAccepterPtrOutput

func (InviteAccepterPtrOutput) ToInviteAccepterPtrOutputWithContext added in v3.25.0

func (o InviteAccepterPtrOutput) ToInviteAccepterPtrOutputWithContext(ctx context.Context) InviteAccepterPtrOutput

type InviteAccepterState

type InviteAccepterState struct {
	// The detector ID of the member GuardDuty account.
	DetectorId pulumi.StringPtrInput
	// AWS account ID for primary account.
	MasterAccountId pulumi.StringPtrInput
}

func (InviteAccepterState) ElementType

func (InviteAccepterState) ElementType() reflect.Type

type LookupDetectorArgs

type LookupDetectorArgs struct {
	// The ID of the detector.
	Id *string `pulumi:"id"`
}

A collection of arguments for invoking getDetector.

type LookupDetectorResult

type LookupDetectorResult struct {
	// The frequency of notifications sent about subsequent finding occurrences.
	FindingPublishingFrequency string `pulumi:"findingPublishingFrequency"`
	Id                         string `pulumi:"id"`
	// The service-linked role that grants GuardDuty access to the resources in the AWS account.
	ServiceRoleArn string `pulumi:"serviceRoleArn"`
	// The current status of the detector.
	Status string `pulumi:"status"`
}

A collection of values returned by getDetector.

func LookupDetector

func LookupDetector(ctx *pulumi.Context, args *LookupDetectorArgs, opts ...pulumi.InvokeOption) (*LookupDetectorResult, error)

Retrieve information about a GuardDuty detector.

## Example Usage

```go package main

import (

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := guardduty.LookupDetector(ctx, nil, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

```

type Member

type Member struct {
	pulumi.CustomResourceState

	// AWS account ID for member account.
	AccountId pulumi.StringOutput `pulumi:"accountId"`
	// The detector ID of the GuardDuty account where you want to create member accounts.
	DetectorId pulumi.StringOutput `pulumi:"detectorId"`
	// Boolean whether an email notification is sent to the accounts. Defaults to `false`.
	DisableEmailNotification pulumi.BoolPtrOutput `pulumi:"disableEmailNotification"`
	// Email address for member account.
	Email pulumi.StringOutput `pulumi:"email"`
	// Message for invitation.
	InvitationMessage pulumi.StringPtrOutput `pulumi:"invitationMessage"`
	// Boolean whether to invite the account to GuardDuty as a member. Defaults to `false`. To detect if an invitation needs to be (re-)sent, the this provider state value is `true` based on a `relationshipStatus` of `Disabled`, `Enabled`, `Invited`, or `EmailVerificationInProgress`.
	Invite pulumi.BoolPtrOutput `pulumi:"invite"`
	// The status of the relationship between the member account and its primary account. More information can be found in [Amazon GuardDuty API Reference](https://docs.aws.amazon.com/guardduty/latest/ug/get-members.html).
	RelationshipStatus pulumi.StringOutput `pulumi:"relationshipStatus"`
}

Provides a resource to manage a GuardDuty member. To accept invitations in member accounts, see the `guardduty.InviteAccepter` resource.

## Example Usage

```go package main

import (

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		primary, err := guardduty.NewDetector(ctx, "primary", &guardduty.DetectorArgs{
			Enable: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		memberDetector, err := guardduty.NewDetector(ctx, "memberDetector", &guardduty.DetectorArgs{
			Enable: pulumi.Bool(true),
		}, pulumi.Provider(aws.Dev))
		if err != nil {
			return err
		}
		_, err = guardduty.NewMember(ctx, "memberMember", &guardduty.MemberArgs{
			AccountId:         memberDetector.AccountId,
			DetectorId:        primary.ID(),
			Email:             pulumi.String("required@example.com"),
			Invite:            pulumi.Bool(true),
			InvitationMessage: pulumi.String("please accept guardduty invitation"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

GuardDuty members can be imported using the the primary GuardDuty detector ID and member AWS account ID, e.g.

```sh

$ pulumi import aws:guardduty/member:Member MyMember 00b00fd5aecc0ab60a708659477e9617:123456789012

```

func GetMember

func GetMember(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *MemberState, opts ...pulumi.ResourceOption) (*Member, error)

GetMember gets an existing Member resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewMember

func NewMember(ctx *pulumi.Context,
	name string, args *MemberArgs, opts ...pulumi.ResourceOption) (*Member, error)

NewMember registers a new resource with the given unique name, arguments, and options.

func (*Member) ElementType added in v3.13.0

func (*Member) ElementType() reflect.Type

func (*Member) ToMemberOutput added in v3.13.0

func (i *Member) ToMemberOutput() MemberOutput

func (*Member) ToMemberOutputWithContext added in v3.13.0

func (i *Member) ToMemberOutputWithContext(ctx context.Context) MemberOutput

func (*Member) ToMemberPtrOutput added in v3.25.0

func (i *Member) ToMemberPtrOutput() MemberPtrOutput

func (*Member) ToMemberPtrOutputWithContext added in v3.25.0

func (i *Member) ToMemberPtrOutputWithContext(ctx context.Context) MemberPtrOutput

type MemberArgs

type MemberArgs struct {
	// AWS account ID for member account.
	AccountId pulumi.StringInput
	// The detector ID of the GuardDuty account where you want to create member accounts.
	DetectorId pulumi.StringInput
	// Boolean whether an email notification is sent to the accounts. Defaults to `false`.
	DisableEmailNotification pulumi.BoolPtrInput
	// Email address for member account.
	Email pulumi.StringInput
	// Message for invitation.
	InvitationMessage pulumi.StringPtrInput
	// Boolean whether to invite the account to GuardDuty as a member. Defaults to `false`. To detect if an invitation needs to be (re-)sent, the this provider state value is `true` based on a `relationshipStatus` of `Disabled`, `Enabled`, `Invited`, or `EmailVerificationInProgress`.
	Invite pulumi.BoolPtrInput
}

The set of arguments for constructing a Member resource.

func (MemberArgs) ElementType

func (MemberArgs) ElementType() reflect.Type

type MemberArray added in v3.25.0

type MemberArray []MemberInput

func (MemberArray) ElementType added in v3.25.0

func (MemberArray) ElementType() reflect.Type

func (MemberArray) ToMemberArrayOutput added in v3.25.0

func (i MemberArray) ToMemberArrayOutput() MemberArrayOutput

func (MemberArray) ToMemberArrayOutputWithContext added in v3.25.0

func (i MemberArray) ToMemberArrayOutputWithContext(ctx context.Context) MemberArrayOutput

type MemberArrayInput added in v3.25.0

type MemberArrayInput interface {
	pulumi.Input

	ToMemberArrayOutput() MemberArrayOutput
	ToMemberArrayOutputWithContext(context.Context) MemberArrayOutput
}

MemberArrayInput is an input type that accepts MemberArray and MemberArrayOutput values. You can construct a concrete instance of `MemberArrayInput` via:

MemberArray{ MemberArgs{...} }

type MemberArrayOutput added in v3.25.0

type MemberArrayOutput struct{ *pulumi.OutputState }

func (MemberArrayOutput) ElementType added in v3.25.0

func (MemberArrayOutput) ElementType() reflect.Type

func (MemberArrayOutput) Index added in v3.25.0

func (MemberArrayOutput) ToMemberArrayOutput added in v3.25.0

func (o MemberArrayOutput) ToMemberArrayOutput() MemberArrayOutput

func (MemberArrayOutput) ToMemberArrayOutputWithContext added in v3.25.0

func (o MemberArrayOutput) ToMemberArrayOutputWithContext(ctx context.Context) MemberArrayOutput

type MemberInput added in v3.13.0

type MemberInput interface {
	pulumi.Input

	ToMemberOutput() MemberOutput
	ToMemberOutputWithContext(ctx context.Context) MemberOutput
}

type MemberMap added in v3.25.0

type MemberMap map[string]MemberInput

func (MemberMap) ElementType added in v3.25.0

func (MemberMap) ElementType() reflect.Type

func (MemberMap) ToMemberMapOutput added in v3.25.0

func (i MemberMap) ToMemberMapOutput() MemberMapOutput

func (MemberMap) ToMemberMapOutputWithContext added in v3.25.0

func (i MemberMap) ToMemberMapOutputWithContext(ctx context.Context) MemberMapOutput

type MemberMapInput added in v3.25.0

type MemberMapInput interface {
	pulumi.Input

	ToMemberMapOutput() MemberMapOutput
	ToMemberMapOutputWithContext(context.Context) MemberMapOutput
}

MemberMapInput is an input type that accepts MemberMap and MemberMapOutput values. You can construct a concrete instance of `MemberMapInput` via:

MemberMap{ "key": MemberArgs{...} }

type MemberMapOutput added in v3.25.0

type MemberMapOutput struct{ *pulumi.OutputState }

func (MemberMapOutput) ElementType added in v3.25.0

func (MemberMapOutput) ElementType() reflect.Type

func (MemberMapOutput) MapIndex added in v3.25.0

func (MemberMapOutput) ToMemberMapOutput added in v3.25.0

func (o MemberMapOutput) ToMemberMapOutput() MemberMapOutput

func (MemberMapOutput) ToMemberMapOutputWithContext added in v3.25.0

func (o MemberMapOutput) ToMemberMapOutputWithContext(ctx context.Context) MemberMapOutput

type MemberOutput added in v3.13.0

type MemberOutput struct {
	*pulumi.OutputState
}

func (MemberOutput) ElementType added in v3.13.0

func (MemberOutput) ElementType() reflect.Type

func (MemberOutput) ToMemberOutput added in v3.13.0

func (o MemberOutput) ToMemberOutput() MemberOutput

func (MemberOutput) ToMemberOutputWithContext added in v3.13.0

func (o MemberOutput) ToMemberOutputWithContext(ctx context.Context) MemberOutput

func (MemberOutput) ToMemberPtrOutput added in v3.25.0

func (o MemberOutput) ToMemberPtrOutput() MemberPtrOutput

func (MemberOutput) ToMemberPtrOutputWithContext added in v3.25.0

func (o MemberOutput) ToMemberPtrOutputWithContext(ctx context.Context) MemberPtrOutput

type MemberPtrInput added in v3.25.0

type MemberPtrInput interface {
	pulumi.Input

	ToMemberPtrOutput() MemberPtrOutput
	ToMemberPtrOutputWithContext(ctx context.Context) MemberPtrOutput
}

type MemberPtrOutput added in v3.25.0

type MemberPtrOutput struct {
	*pulumi.OutputState
}

func (MemberPtrOutput) ElementType added in v3.25.0

func (MemberPtrOutput) ElementType() reflect.Type

func (MemberPtrOutput) ToMemberPtrOutput added in v3.25.0

func (o MemberPtrOutput) ToMemberPtrOutput() MemberPtrOutput

func (MemberPtrOutput) ToMemberPtrOutputWithContext added in v3.25.0

func (o MemberPtrOutput) ToMemberPtrOutputWithContext(ctx context.Context) MemberPtrOutput

type MemberState

type MemberState struct {
	// AWS account ID for member account.
	AccountId pulumi.StringPtrInput
	// The detector ID of the GuardDuty account where you want to create member accounts.
	DetectorId pulumi.StringPtrInput
	// Boolean whether an email notification is sent to the accounts. Defaults to `false`.
	DisableEmailNotification pulumi.BoolPtrInput
	// Email address for member account.
	Email pulumi.StringPtrInput
	// Message for invitation.
	InvitationMessage pulumi.StringPtrInput
	// Boolean whether to invite the account to GuardDuty as a member. Defaults to `false`. To detect if an invitation needs to be (re-)sent, the this provider state value is `true` based on a `relationshipStatus` of `Disabled`, `Enabled`, `Invited`, or `EmailVerificationInProgress`.
	Invite pulumi.BoolPtrInput
	// The status of the relationship between the member account and its primary account. More information can be found in [Amazon GuardDuty API Reference](https://docs.aws.amazon.com/guardduty/latest/ug/get-members.html).
	RelationshipStatus pulumi.StringPtrInput
}

func (MemberState) ElementType

func (MemberState) ElementType() reflect.Type

type OrganizationAdminAccount

type OrganizationAdminAccount struct {
	pulumi.CustomResourceState

	// AWS account identifier to designate as a delegated administrator for GuardDuty.
	AdminAccountId pulumi.StringOutput `pulumi:"adminAccountId"`
}

Manages a GuardDuty Organization Admin Account. The AWS account utilizing this resource must be an Organizations primary account. More information about Organizations support in GuardDuty can be found in the [GuardDuty User Guide](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html).

## Example Usage

```go package main

import (

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/organizations"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleOrganization, err := organizations.NewOrganization(ctx, "exampleOrganization", &organizations.OrganizationArgs{
			AwsServiceAccessPrincipals: pulumi.StringArray{
				pulumi.String("guardduty.amazonaws.com"),
			},
			FeatureSet: pulumi.String("ALL"),
		})
		if err != nil {
			return err
		}
		_, err = guardduty.NewDetector(ctx, "exampleDetector", nil)
		if err != nil {
			return err
		}
		_, err = guardduty.NewOrganizationAdminAccount(ctx, "exampleOrganizationAdminAccount", &guardduty.OrganizationAdminAccountArgs{
			AdminAccountId: pulumi.String("123456789012"),
		}, pulumi.DependsOn([]pulumi.Resource{
			exampleOrganization,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

GuardDuty Organization Admin Account can be imported using the AWS account ID, e.g.

```sh

$ pulumi import aws:guardduty/organizationAdminAccount:OrganizationAdminAccount example 123456789012

```

func GetOrganizationAdminAccount

func GetOrganizationAdminAccount(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OrganizationAdminAccountState, opts ...pulumi.ResourceOption) (*OrganizationAdminAccount, error)

GetOrganizationAdminAccount gets an existing OrganizationAdminAccount resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOrganizationAdminAccount

func NewOrganizationAdminAccount(ctx *pulumi.Context,
	name string, args *OrganizationAdminAccountArgs, opts ...pulumi.ResourceOption) (*OrganizationAdminAccount, error)

NewOrganizationAdminAccount registers a new resource with the given unique name, arguments, and options.

func (*OrganizationAdminAccount) ElementType added in v3.13.0

func (*OrganizationAdminAccount) ElementType() reflect.Type

func (*OrganizationAdminAccount) ToOrganizationAdminAccountOutput added in v3.13.0

func (i *OrganizationAdminAccount) ToOrganizationAdminAccountOutput() OrganizationAdminAccountOutput

func (*OrganizationAdminAccount) ToOrganizationAdminAccountOutputWithContext added in v3.13.0

func (i *OrganizationAdminAccount) ToOrganizationAdminAccountOutputWithContext(ctx context.Context) OrganizationAdminAccountOutput

func (*OrganizationAdminAccount) ToOrganizationAdminAccountPtrOutput added in v3.25.0

func (i *OrganizationAdminAccount) ToOrganizationAdminAccountPtrOutput() OrganizationAdminAccountPtrOutput

func (*OrganizationAdminAccount) ToOrganizationAdminAccountPtrOutputWithContext added in v3.25.0

func (i *OrganizationAdminAccount) ToOrganizationAdminAccountPtrOutputWithContext(ctx context.Context) OrganizationAdminAccountPtrOutput

type OrganizationAdminAccountArgs

type OrganizationAdminAccountArgs struct {
	// AWS account identifier to designate as a delegated administrator for GuardDuty.
	AdminAccountId pulumi.StringInput
}

The set of arguments for constructing a OrganizationAdminAccount resource.

func (OrganizationAdminAccountArgs) ElementType

type OrganizationAdminAccountArray added in v3.25.0

type OrganizationAdminAccountArray []OrganizationAdminAccountInput

func (OrganizationAdminAccountArray) ElementType added in v3.25.0

func (OrganizationAdminAccountArray) ToOrganizationAdminAccountArrayOutput added in v3.25.0

func (i OrganizationAdminAccountArray) ToOrganizationAdminAccountArrayOutput() OrganizationAdminAccountArrayOutput

func (OrganizationAdminAccountArray) ToOrganizationAdminAccountArrayOutputWithContext added in v3.25.0

func (i OrganizationAdminAccountArray) ToOrganizationAdminAccountArrayOutputWithContext(ctx context.Context) OrganizationAdminAccountArrayOutput

type OrganizationAdminAccountArrayInput added in v3.25.0

type OrganizationAdminAccountArrayInput interface {
	pulumi.Input

	ToOrganizationAdminAccountArrayOutput() OrganizationAdminAccountArrayOutput
	ToOrganizationAdminAccountArrayOutputWithContext(context.Context) OrganizationAdminAccountArrayOutput
}

OrganizationAdminAccountArrayInput is an input type that accepts OrganizationAdminAccountArray and OrganizationAdminAccountArrayOutput values. You can construct a concrete instance of `OrganizationAdminAccountArrayInput` via:

OrganizationAdminAccountArray{ OrganizationAdminAccountArgs{...} }

type OrganizationAdminAccountArrayOutput added in v3.25.0

type OrganizationAdminAccountArrayOutput struct{ *pulumi.OutputState }

func (OrganizationAdminAccountArrayOutput) ElementType added in v3.25.0

func (OrganizationAdminAccountArrayOutput) Index added in v3.25.0

func (OrganizationAdminAccountArrayOutput) ToOrganizationAdminAccountArrayOutput added in v3.25.0

func (o OrganizationAdminAccountArrayOutput) ToOrganizationAdminAccountArrayOutput() OrganizationAdminAccountArrayOutput

func (OrganizationAdminAccountArrayOutput) ToOrganizationAdminAccountArrayOutputWithContext added in v3.25.0

func (o OrganizationAdminAccountArrayOutput) ToOrganizationAdminAccountArrayOutputWithContext(ctx context.Context) OrganizationAdminAccountArrayOutput

type OrganizationAdminAccountInput added in v3.13.0

type OrganizationAdminAccountInput interface {
	pulumi.Input

	ToOrganizationAdminAccountOutput() OrganizationAdminAccountOutput
	ToOrganizationAdminAccountOutputWithContext(ctx context.Context) OrganizationAdminAccountOutput
}

type OrganizationAdminAccountMap added in v3.25.0

type OrganizationAdminAccountMap map[string]OrganizationAdminAccountInput

func (OrganizationAdminAccountMap) ElementType added in v3.25.0

func (OrganizationAdminAccountMap) ToOrganizationAdminAccountMapOutput added in v3.25.0

func (i OrganizationAdminAccountMap) ToOrganizationAdminAccountMapOutput() OrganizationAdminAccountMapOutput

func (OrganizationAdminAccountMap) ToOrganizationAdminAccountMapOutputWithContext added in v3.25.0

func (i OrganizationAdminAccountMap) ToOrganizationAdminAccountMapOutputWithContext(ctx context.Context) OrganizationAdminAccountMapOutput

type OrganizationAdminAccountMapInput added in v3.25.0

type OrganizationAdminAccountMapInput interface {
	pulumi.Input

	ToOrganizationAdminAccountMapOutput() OrganizationAdminAccountMapOutput
	ToOrganizationAdminAccountMapOutputWithContext(context.Context) OrganizationAdminAccountMapOutput
}

OrganizationAdminAccountMapInput is an input type that accepts OrganizationAdminAccountMap and OrganizationAdminAccountMapOutput values. You can construct a concrete instance of `OrganizationAdminAccountMapInput` via:

OrganizationAdminAccountMap{ "key": OrganizationAdminAccountArgs{...} }

type OrganizationAdminAccountMapOutput added in v3.25.0

type OrganizationAdminAccountMapOutput struct{ *pulumi.OutputState }

func (OrganizationAdminAccountMapOutput) ElementType added in v3.25.0

func (OrganizationAdminAccountMapOutput) MapIndex added in v3.25.0

func (OrganizationAdminAccountMapOutput) ToOrganizationAdminAccountMapOutput added in v3.25.0

func (o OrganizationAdminAccountMapOutput) ToOrganizationAdminAccountMapOutput() OrganizationAdminAccountMapOutput

func (OrganizationAdminAccountMapOutput) ToOrganizationAdminAccountMapOutputWithContext added in v3.25.0

func (o OrganizationAdminAccountMapOutput) ToOrganizationAdminAccountMapOutputWithContext(ctx context.Context) OrganizationAdminAccountMapOutput

type OrganizationAdminAccountOutput added in v3.13.0

type OrganizationAdminAccountOutput struct {
	*pulumi.OutputState
}

func (OrganizationAdminAccountOutput) ElementType added in v3.13.0

func (OrganizationAdminAccountOutput) ToOrganizationAdminAccountOutput added in v3.13.0

func (o OrganizationAdminAccountOutput) ToOrganizationAdminAccountOutput() OrganizationAdminAccountOutput

func (OrganizationAdminAccountOutput) ToOrganizationAdminAccountOutputWithContext added in v3.13.0

func (o OrganizationAdminAccountOutput) ToOrganizationAdminAccountOutputWithContext(ctx context.Context) OrganizationAdminAccountOutput

func (OrganizationAdminAccountOutput) ToOrganizationAdminAccountPtrOutput added in v3.25.0

func (o OrganizationAdminAccountOutput) ToOrganizationAdminAccountPtrOutput() OrganizationAdminAccountPtrOutput

func (OrganizationAdminAccountOutput) ToOrganizationAdminAccountPtrOutputWithContext added in v3.25.0

func (o OrganizationAdminAccountOutput) ToOrganizationAdminAccountPtrOutputWithContext(ctx context.Context) OrganizationAdminAccountPtrOutput

type OrganizationAdminAccountPtrInput added in v3.25.0

type OrganizationAdminAccountPtrInput interface {
	pulumi.Input

	ToOrganizationAdminAccountPtrOutput() OrganizationAdminAccountPtrOutput
	ToOrganizationAdminAccountPtrOutputWithContext(ctx context.Context) OrganizationAdminAccountPtrOutput
}

type OrganizationAdminAccountPtrOutput added in v3.25.0

type OrganizationAdminAccountPtrOutput struct {
	*pulumi.OutputState
}

func (OrganizationAdminAccountPtrOutput) ElementType added in v3.25.0

func (OrganizationAdminAccountPtrOutput) ToOrganizationAdminAccountPtrOutput added in v3.25.0

func (o OrganizationAdminAccountPtrOutput) ToOrganizationAdminAccountPtrOutput() OrganizationAdminAccountPtrOutput

func (OrganizationAdminAccountPtrOutput) ToOrganizationAdminAccountPtrOutputWithContext added in v3.25.0

func (o OrganizationAdminAccountPtrOutput) ToOrganizationAdminAccountPtrOutputWithContext(ctx context.Context) OrganizationAdminAccountPtrOutput

type OrganizationAdminAccountState

type OrganizationAdminAccountState struct {
	// AWS account identifier to designate as a delegated administrator for GuardDuty.
	AdminAccountId pulumi.StringPtrInput
}

func (OrganizationAdminAccountState) ElementType

type OrganizationConfiguration

type OrganizationConfiguration struct {
	pulumi.CustomResourceState

	// When this setting is enabled, all new accounts that are created in, or added to, the organization are added as a member accounts of the organization’s GuardDuty delegated administrator and GuardDuty is enabled in that AWS Region.
	AutoEnable pulumi.BoolOutput `pulumi:"autoEnable"`
	// The detector ID of the GuardDuty account.
	DetectorId pulumi.StringOutput `pulumi:"detectorId"`
}

Manages the GuardDuty Organization Configuration in the current AWS Region. The AWS account utilizing this resource must have been assigned as a delegated Organization administrator account, e.g. via the `guardduty.OrganizationAdminAccount` resource. More information about Organizations support in GuardDuty can be found in the [GuardDuty User Guide](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html).

> **NOTE:** This is an advanced resource. The provider will automatically assume management of the GuardDuty Organization Configuration without import and perform no actions on removal from the resource configuration.

## Example Usage

```go package main

import (

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleDetector, err := guardduty.NewDetector(ctx, "exampleDetector", &guardduty.DetectorArgs{
			Enable: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		_, err = guardduty.NewOrganizationConfiguration(ctx, "exampleOrganizationConfiguration", &guardduty.OrganizationConfigurationArgs{
			AutoEnable: pulumi.Bool(true),
			DetectorId: exampleDetector.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

GuardDuty Organization Configurations can be imported using the GuardDuty Detector ID, e.g.

```sh

$ pulumi import aws:guardduty/organizationConfiguration:OrganizationConfiguration example 00b00fd5aecc0ab60a708659477e9617

```

func GetOrganizationConfiguration

func GetOrganizationConfiguration(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OrganizationConfigurationState, opts ...pulumi.ResourceOption) (*OrganizationConfiguration, error)

GetOrganizationConfiguration gets an existing OrganizationConfiguration resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOrganizationConfiguration

func NewOrganizationConfiguration(ctx *pulumi.Context,
	name string, args *OrganizationConfigurationArgs, opts ...pulumi.ResourceOption) (*OrganizationConfiguration, error)

NewOrganizationConfiguration registers a new resource with the given unique name, arguments, and options.

func (*OrganizationConfiguration) ElementType added in v3.13.0

func (*OrganizationConfiguration) ElementType() reflect.Type

func (*OrganizationConfiguration) ToOrganizationConfigurationOutput added in v3.13.0

func (i *OrganizationConfiguration) ToOrganizationConfigurationOutput() OrganizationConfigurationOutput

func (*OrganizationConfiguration) ToOrganizationConfigurationOutputWithContext added in v3.13.0

func (i *OrganizationConfiguration) ToOrganizationConfigurationOutputWithContext(ctx context.Context) OrganizationConfigurationOutput

func (*OrganizationConfiguration) ToOrganizationConfigurationPtrOutput added in v3.25.0

func (i *OrganizationConfiguration) ToOrganizationConfigurationPtrOutput() OrganizationConfigurationPtrOutput

func (*OrganizationConfiguration) ToOrganizationConfigurationPtrOutputWithContext added in v3.25.0

func (i *OrganizationConfiguration) ToOrganizationConfigurationPtrOutputWithContext(ctx context.Context) OrganizationConfigurationPtrOutput

type OrganizationConfigurationArgs

type OrganizationConfigurationArgs struct {
	// When this setting is enabled, all new accounts that are created in, or added to, the organization are added as a member accounts of the organization’s GuardDuty delegated administrator and GuardDuty is enabled in that AWS Region.
	AutoEnable pulumi.BoolInput
	// The detector ID of the GuardDuty account.
	DetectorId pulumi.StringInput
}

The set of arguments for constructing a OrganizationConfiguration resource.

func (OrganizationConfigurationArgs) ElementType

type OrganizationConfigurationArray added in v3.25.0

type OrganizationConfigurationArray []OrganizationConfigurationInput

func (OrganizationConfigurationArray) ElementType added in v3.25.0

func (OrganizationConfigurationArray) ToOrganizationConfigurationArrayOutput added in v3.25.0

func (i OrganizationConfigurationArray) ToOrganizationConfigurationArrayOutput() OrganizationConfigurationArrayOutput

func (OrganizationConfigurationArray) ToOrganizationConfigurationArrayOutputWithContext added in v3.25.0

func (i OrganizationConfigurationArray) ToOrganizationConfigurationArrayOutputWithContext(ctx context.Context) OrganizationConfigurationArrayOutput

type OrganizationConfigurationArrayInput added in v3.25.0

type OrganizationConfigurationArrayInput interface {
	pulumi.Input

	ToOrganizationConfigurationArrayOutput() OrganizationConfigurationArrayOutput
	ToOrganizationConfigurationArrayOutputWithContext(context.Context) OrganizationConfigurationArrayOutput
}

OrganizationConfigurationArrayInput is an input type that accepts OrganizationConfigurationArray and OrganizationConfigurationArrayOutput values. You can construct a concrete instance of `OrganizationConfigurationArrayInput` via:

OrganizationConfigurationArray{ OrganizationConfigurationArgs{...} }

type OrganizationConfigurationArrayOutput added in v3.25.0

type OrganizationConfigurationArrayOutput struct{ *pulumi.OutputState }

func (OrganizationConfigurationArrayOutput) ElementType added in v3.25.0

func (OrganizationConfigurationArrayOutput) Index added in v3.25.0

func (OrganizationConfigurationArrayOutput) ToOrganizationConfigurationArrayOutput added in v3.25.0

func (o OrganizationConfigurationArrayOutput) ToOrganizationConfigurationArrayOutput() OrganizationConfigurationArrayOutput

func (OrganizationConfigurationArrayOutput) ToOrganizationConfigurationArrayOutputWithContext added in v3.25.0

func (o OrganizationConfigurationArrayOutput) ToOrganizationConfigurationArrayOutputWithContext(ctx context.Context) OrganizationConfigurationArrayOutput

type OrganizationConfigurationInput added in v3.13.0

type OrganizationConfigurationInput interface {
	pulumi.Input

	ToOrganizationConfigurationOutput() OrganizationConfigurationOutput
	ToOrganizationConfigurationOutputWithContext(ctx context.Context) OrganizationConfigurationOutput
}

type OrganizationConfigurationMap added in v3.25.0

type OrganizationConfigurationMap map[string]OrganizationConfigurationInput

func (OrganizationConfigurationMap) ElementType added in v3.25.0

func (OrganizationConfigurationMap) ToOrganizationConfigurationMapOutput added in v3.25.0

func (i OrganizationConfigurationMap) ToOrganizationConfigurationMapOutput() OrganizationConfigurationMapOutput

func (OrganizationConfigurationMap) ToOrganizationConfigurationMapOutputWithContext added in v3.25.0

func (i OrganizationConfigurationMap) ToOrganizationConfigurationMapOutputWithContext(ctx context.Context) OrganizationConfigurationMapOutput

type OrganizationConfigurationMapInput added in v3.25.0

type OrganizationConfigurationMapInput interface {
	pulumi.Input

	ToOrganizationConfigurationMapOutput() OrganizationConfigurationMapOutput
	ToOrganizationConfigurationMapOutputWithContext(context.Context) OrganizationConfigurationMapOutput
}

OrganizationConfigurationMapInput is an input type that accepts OrganizationConfigurationMap and OrganizationConfigurationMapOutput values. You can construct a concrete instance of `OrganizationConfigurationMapInput` via:

OrganizationConfigurationMap{ "key": OrganizationConfigurationArgs{...} }

type OrganizationConfigurationMapOutput added in v3.25.0

type OrganizationConfigurationMapOutput struct{ *pulumi.OutputState }

func (OrganizationConfigurationMapOutput) ElementType added in v3.25.0

func (OrganizationConfigurationMapOutput) MapIndex added in v3.25.0

func (OrganizationConfigurationMapOutput) ToOrganizationConfigurationMapOutput added in v3.25.0

func (o OrganizationConfigurationMapOutput) ToOrganizationConfigurationMapOutput() OrganizationConfigurationMapOutput

func (OrganizationConfigurationMapOutput) ToOrganizationConfigurationMapOutputWithContext added in v3.25.0

func (o OrganizationConfigurationMapOutput) ToOrganizationConfigurationMapOutputWithContext(ctx context.Context) OrganizationConfigurationMapOutput

type OrganizationConfigurationOutput added in v3.13.0

type OrganizationConfigurationOutput struct {
	*pulumi.OutputState
}

func (OrganizationConfigurationOutput) ElementType added in v3.13.0

func (OrganizationConfigurationOutput) ToOrganizationConfigurationOutput added in v3.13.0

func (o OrganizationConfigurationOutput) ToOrganizationConfigurationOutput() OrganizationConfigurationOutput

func (OrganizationConfigurationOutput) ToOrganizationConfigurationOutputWithContext added in v3.13.0

func (o OrganizationConfigurationOutput) ToOrganizationConfigurationOutputWithContext(ctx context.Context) OrganizationConfigurationOutput

func (OrganizationConfigurationOutput) ToOrganizationConfigurationPtrOutput added in v3.25.0

func (o OrganizationConfigurationOutput) ToOrganizationConfigurationPtrOutput() OrganizationConfigurationPtrOutput

func (OrganizationConfigurationOutput) ToOrganizationConfigurationPtrOutputWithContext added in v3.25.0

func (o OrganizationConfigurationOutput) ToOrganizationConfigurationPtrOutputWithContext(ctx context.Context) OrganizationConfigurationPtrOutput

type OrganizationConfigurationPtrInput added in v3.25.0

type OrganizationConfigurationPtrInput interface {
	pulumi.Input

	ToOrganizationConfigurationPtrOutput() OrganizationConfigurationPtrOutput
	ToOrganizationConfigurationPtrOutputWithContext(ctx context.Context) OrganizationConfigurationPtrOutput
}

type OrganizationConfigurationPtrOutput added in v3.25.0

type OrganizationConfigurationPtrOutput struct {
	*pulumi.OutputState
}

func (OrganizationConfigurationPtrOutput) ElementType added in v3.25.0

func (OrganizationConfigurationPtrOutput) ToOrganizationConfigurationPtrOutput added in v3.25.0

func (o OrganizationConfigurationPtrOutput) ToOrganizationConfigurationPtrOutput() OrganizationConfigurationPtrOutput

func (OrganizationConfigurationPtrOutput) ToOrganizationConfigurationPtrOutputWithContext added in v3.25.0

func (o OrganizationConfigurationPtrOutput) ToOrganizationConfigurationPtrOutputWithContext(ctx context.Context) OrganizationConfigurationPtrOutput

type OrganizationConfigurationState

type OrganizationConfigurationState struct {
	// When this setting is enabled, all new accounts that are created in, or added to, the organization are added as a member accounts of the organization’s GuardDuty delegated administrator and GuardDuty is enabled in that AWS Region.
	AutoEnable pulumi.BoolPtrInput
	// The detector ID of the GuardDuty account.
	DetectorId pulumi.StringPtrInput
}

func (OrganizationConfigurationState) ElementType

type PublishingDestination added in v3.3.0

type PublishingDestination struct {
	pulumi.CustomResourceState

	// The bucket arn and prefix under which the findings get exported. Bucket-ARN is required, the prefix is optional and will be `AWSLogs/[Account-ID]/GuardDuty/[Region]/` if not provided
	DestinationArn pulumi.StringOutput `pulumi:"destinationArn"`
	// Currently there is only "S3" available as destination type which is also the default value
	DestinationType pulumi.StringPtrOutput `pulumi:"destinationType"`
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringOutput `pulumi:"detectorId"`
	// The ARN of the KMS key used to encrypt GuardDuty findings. GuardDuty enforces this to be encrypted.
	KmsKeyArn pulumi.StringOutput `pulumi:"kmsKeyArn"`
}

Provides a resource to manage a GuardDuty PublishingDestination. Requires an existing GuardDuty Detector.

## Example Usage

```go package main

import (

"fmt"

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/iam"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/kms"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/s3"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		currentCallerIdentity, err := aws.GetCallerIdentity(ctx, nil, nil)
		if err != nil {
			return err
		}
		currentRegion, err := aws.GetRegion(ctx, nil, nil)
		if err != nil {
			return err
		}
		gdBucket, err := s3.NewBucket(ctx, "gdBucket", &s3.BucketArgs{
			Acl:          pulumi.String("private"),
			ForceDestroy: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		kmsPol, err := iam.GetPolicyDocument(ctx, &iam.GetPolicyDocumentArgs{
			Statements: []iam.GetPolicyDocumentStatement{
				iam.GetPolicyDocumentStatement{
					Sid: "Allow GuardDuty to encrypt findings",
					Actions: []string{
						"kms:GenerateDataKey",
					},
					Resources: []string{
						fmt.Sprintf("%v%v%v%v%v", "arn:aws:kms:", currentRegion.Name, ":", currentCallerIdentity.AccountId, ":key/*"),
					},
					Principals: []iam.GetPolicyDocumentStatementPrincipal{
						iam.GetPolicyDocumentStatementPrincipal{
							Type: "Service",
							Identifiers: []string{
								"guardduty.amazonaws.com",
							},
						},
					},
				},
				iam.GetPolicyDocumentStatement{
					Sid: "Allow all users to modify/delete key (test only)",
					Actions: []string{
						"kms:*",
					},
					Resources: []string{
						fmt.Sprintf("%v%v%v%v%v", "arn:aws:kms:", currentRegion.Name, ":", currentCallerIdentity.AccountId, ":key/*"),
					},
					Principals: []iam.GetPolicyDocumentStatementPrincipal{
						iam.GetPolicyDocumentStatementPrincipal{
							Type: "AWS",
							Identifiers: []string{
								fmt.Sprintf("%v%v%v", "arn:aws:iam::", currentCallerIdentity.AccountId, ":root"),
							},
						},
					},
				},
			},
		}, nil)
		if err != nil {
			return err
		}
		testGd, err := guardduty.NewDetector(ctx, "testGd", &guardduty.DetectorArgs{
			Enable: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		gdBucketPolicy, err := s3.NewBucketPolicy(ctx, "gdBucketPolicy", &s3.BucketPolicyArgs{
			Bucket: gdBucket.ID(),
			Policy: bucketPol.ApplyT(func(bucketPol iam.GetPolicyDocumentResult) (string, error) {
				return bucketPol.Json, nil
			}).(pulumi.StringOutput),
		})
		if err != nil {
			return err
		}
		gdKey, err := kms.NewKey(ctx, "gdKey", &kms.KeyArgs{
			Description:          pulumi.String("Temporary key for AccTest of TF"),
			DeletionWindowInDays: pulumi.Int(7),
			Policy:               pulumi.String(kmsPol.Json),
		})
		if err != nil {
			return err
		}
		_, err = guardduty.NewPublishingDestination(ctx, "test", &guardduty.PublishingDestinationArgs{
			DetectorId:     testGd.ID(),
			DestinationArn: gdBucket.Arn,
			KmsKeyArn:      gdKey.Arn,
		}, pulumi.DependsOn([]pulumi.Resource{
			gdBucketPolicy,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}

```

> **Note:** Please do not use this simple example for Bucket-Policy and KMS Key Policy in a production environment. It is much too open for such a use-case. Refer to the AWS documentation here: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_exportfindings.html

## Import

GuardDuty PublishingDestination can be imported using the the master GuardDuty detector ID and PublishingDestinationID, e.g.

```sh

$ pulumi import aws:guardduty/publishingDestination:PublishingDestination test a4b86f26fa42e7e7cf0d1c333ea77777:a4b86f27a0e464e4a7e0516d242f1234

```

func GetPublishingDestination added in v3.3.0

func GetPublishingDestination(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PublishingDestinationState, opts ...pulumi.ResourceOption) (*PublishingDestination, error)

GetPublishingDestination gets an existing PublishingDestination resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPublishingDestination added in v3.3.0

func NewPublishingDestination(ctx *pulumi.Context,
	name string, args *PublishingDestinationArgs, opts ...pulumi.ResourceOption) (*PublishingDestination, error)

NewPublishingDestination registers a new resource with the given unique name, arguments, and options.

func (*PublishingDestination) ElementType added in v3.13.0

func (*PublishingDestination) ElementType() reflect.Type

func (*PublishingDestination) ToPublishingDestinationOutput added in v3.13.0

func (i *PublishingDestination) ToPublishingDestinationOutput() PublishingDestinationOutput

func (*PublishingDestination) ToPublishingDestinationOutputWithContext added in v3.13.0

func (i *PublishingDestination) ToPublishingDestinationOutputWithContext(ctx context.Context) PublishingDestinationOutput

func (*PublishingDestination) ToPublishingDestinationPtrOutput added in v3.25.0

func (i *PublishingDestination) ToPublishingDestinationPtrOutput() PublishingDestinationPtrOutput

func (*PublishingDestination) ToPublishingDestinationPtrOutputWithContext added in v3.25.0

func (i *PublishingDestination) ToPublishingDestinationPtrOutputWithContext(ctx context.Context) PublishingDestinationPtrOutput

type PublishingDestinationArgs added in v3.3.0

type PublishingDestinationArgs struct {
	// The bucket arn and prefix under which the findings get exported. Bucket-ARN is required, the prefix is optional and will be `AWSLogs/[Account-ID]/GuardDuty/[Region]/` if not provided
	DestinationArn pulumi.StringInput
	// Currently there is only "S3" available as destination type which is also the default value
	DestinationType pulumi.StringPtrInput
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringInput
	// The ARN of the KMS key used to encrypt GuardDuty findings. GuardDuty enforces this to be encrypted.
	KmsKeyArn pulumi.StringInput
}

The set of arguments for constructing a PublishingDestination resource.

func (PublishingDestinationArgs) ElementType added in v3.3.0

func (PublishingDestinationArgs) ElementType() reflect.Type

type PublishingDestinationArray added in v3.25.0

type PublishingDestinationArray []PublishingDestinationInput

func (PublishingDestinationArray) ElementType added in v3.25.0

func (PublishingDestinationArray) ElementType() reflect.Type

func (PublishingDestinationArray) ToPublishingDestinationArrayOutput added in v3.25.0

func (i PublishingDestinationArray) ToPublishingDestinationArrayOutput() PublishingDestinationArrayOutput

func (PublishingDestinationArray) ToPublishingDestinationArrayOutputWithContext added in v3.25.0

func (i PublishingDestinationArray) ToPublishingDestinationArrayOutputWithContext(ctx context.Context) PublishingDestinationArrayOutput

type PublishingDestinationArrayInput added in v3.25.0

type PublishingDestinationArrayInput interface {
	pulumi.Input

	ToPublishingDestinationArrayOutput() PublishingDestinationArrayOutput
	ToPublishingDestinationArrayOutputWithContext(context.Context) PublishingDestinationArrayOutput
}

PublishingDestinationArrayInput is an input type that accepts PublishingDestinationArray and PublishingDestinationArrayOutput values. You can construct a concrete instance of `PublishingDestinationArrayInput` via:

PublishingDestinationArray{ PublishingDestinationArgs{...} }

type PublishingDestinationArrayOutput added in v3.25.0

type PublishingDestinationArrayOutput struct{ *pulumi.OutputState }

func (PublishingDestinationArrayOutput) ElementType added in v3.25.0

func (PublishingDestinationArrayOutput) Index added in v3.25.0

func (PublishingDestinationArrayOutput) ToPublishingDestinationArrayOutput added in v3.25.0

func (o PublishingDestinationArrayOutput) ToPublishingDestinationArrayOutput() PublishingDestinationArrayOutput

func (PublishingDestinationArrayOutput) ToPublishingDestinationArrayOutputWithContext added in v3.25.0

func (o PublishingDestinationArrayOutput) ToPublishingDestinationArrayOutputWithContext(ctx context.Context) PublishingDestinationArrayOutput

type PublishingDestinationInput added in v3.13.0

type PublishingDestinationInput interface {
	pulumi.Input

	ToPublishingDestinationOutput() PublishingDestinationOutput
	ToPublishingDestinationOutputWithContext(ctx context.Context) PublishingDestinationOutput
}

type PublishingDestinationMap added in v3.25.0

type PublishingDestinationMap map[string]PublishingDestinationInput

func (PublishingDestinationMap) ElementType added in v3.25.0

func (PublishingDestinationMap) ElementType() reflect.Type

func (PublishingDestinationMap) ToPublishingDestinationMapOutput added in v3.25.0

func (i PublishingDestinationMap) ToPublishingDestinationMapOutput() PublishingDestinationMapOutput

func (PublishingDestinationMap) ToPublishingDestinationMapOutputWithContext added in v3.25.0

func (i PublishingDestinationMap) ToPublishingDestinationMapOutputWithContext(ctx context.Context) PublishingDestinationMapOutput

type PublishingDestinationMapInput added in v3.25.0

type PublishingDestinationMapInput interface {
	pulumi.Input

	ToPublishingDestinationMapOutput() PublishingDestinationMapOutput
	ToPublishingDestinationMapOutputWithContext(context.Context) PublishingDestinationMapOutput
}

PublishingDestinationMapInput is an input type that accepts PublishingDestinationMap and PublishingDestinationMapOutput values. You can construct a concrete instance of `PublishingDestinationMapInput` via:

PublishingDestinationMap{ "key": PublishingDestinationArgs{...} }

type PublishingDestinationMapOutput added in v3.25.0

type PublishingDestinationMapOutput struct{ *pulumi.OutputState }

func (PublishingDestinationMapOutput) ElementType added in v3.25.0

func (PublishingDestinationMapOutput) MapIndex added in v3.25.0

func (PublishingDestinationMapOutput) ToPublishingDestinationMapOutput added in v3.25.0

func (o PublishingDestinationMapOutput) ToPublishingDestinationMapOutput() PublishingDestinationMapOutput

func (PublishingDestinationMapOutput) ToPublishingDestinationMapOutputWithContext added in v3.25.0

func (o PublishingDestinationMapOutput) ToPublishingDestinationMapOutputWithContext(ctx context.Context) PublishingDestinationMapOutput

type PublishingDestinationOutput added in v3.13.0

type PublishingDestinationOutput struct {
	*pulumi.OutputState
}

func (PublishingDestinationOutput) ElementType added in v3.13.0

func (PublishingDestinationOutput) ToPublishingDestinationOutput added in v3.13.0

func (o PublishingDestinationOutput) ToPublishingDestinationOutput() PublishingDestinationOutput

func (PublishingDestinationOutput) ToPublishingDestinationOutputWithContext added in v3.13.0

func (o PublishingDestinationOutput) ToPublishingDestinationOutputWithContext(ctx context.Context) PublishingDestinationOutput

func (PublishingDestinationOutput) ToPublishingDestinationPtrOutput added in v3.25.0

func (o PublishingDestinationOutput) ToPublishingDestinationPtrOutput() PublishingDestinationPtrOutput

func (PublishingDestinationOutput) ToPublishingDestinationPtrOutputWithContext added in v3.25.0

func (o PublishingDestinationOutput) ToPublishingDestinationPtrOutputWithContext(ctx context.Context) PublishingDestinationPtrOutput

type PublishingDestinationPtrInput added in v3.25.0

type PublishingDestinationPtrInput interface {
	pulumi.Input

	ToPublishingDestinationPtrOutput() PublishingDestinationPtrOutput
	ToPublishingDestinationPtrOutputWithContext(ctx context.Context) PublishingDestinationPtrOutput
}

type PublishingDestinationPtrOutput added in v3.25.0

type PublishingDestinationPtrOutput struct {
	*pulumi.OutputState
}

func (PublishingDestinationPtrOutput) ElementType added in v3.25.0

func (PublishingDestinationPtrOutput) ToPublishingDestinationPtrOutput added in v3.25.0

func (o PublishingDestinationPtrOutput) ToPublishingDestinationPtrOutput() PublishingDestinationPtrOutput

func (PublishingDestinationPtrOutput) ToPublishingDestinationPtrOutputWithContext added in v3.25.0

func (o PublishingDestinationPtrOutput) ToPublishingDestinationPtrOutputWithContext(ctx context.Context) PublishingDestinationPtrOutput

type PublishingDestinationState added in v3.3.0

type PublishingDestinationState struct {
	// The bucket arn and prefix under which the findings get exported. Bucket-ARN is required, the prefix is optional and will be `AWSLogs/[Account-ID]/GuardDuty/[Region]/` if not provided
	DestinationArn pulumi.StringPtrInput
	// Currently there is only "S3" available as destination type which is also the default value
	DestinationType pulumi.StringPtrInput
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringPtrInput
	// The ARN of the KMS key used to encrypt GuardDuty findings. GuardDuty enforces this to be encrypted.
	KmsKeyArn pulumi.StringPtrInput
}

func (PublishingDestinationState) ElementType added in v3.3.0

func (PublishingDestinationState) ElementType() reflect.Type

type ThreatIntelSet

type ThreatIntelSet struct {
	pulumi.CustomResourceState

	// Specifies whether GuardDuty is to start using the uploaded ThreatIntelSet.
	Activate pulumi.BoolOutput `pulumi:"activate"`
	// Amazon Resource Name (ARN) of the GuardDuty ThreatIntelSet.
	Arn pulumi.StringOutput `pulumi:"arn"`
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringOutput `pulumi:"detectorId"`
	// The format of the file that contains the ThreatIntelSet. Valid values: `TXT` | `STIX` | `OTX_CSV` | `ALIEN_VAULT` | `PROOF_POINT` | `FIRE_EYE`
	Format pulumi.StringOutput `pulumi:"format"`
	// The URI of the file that contains the ThreatIntelSet.
	Location pulumi.StringOutput `pulumi:"location"`
	// The friendly name to identify the ThreatIntelSet.
	Name pulumi.StringOutput `pulumi:"name"`
	// Key-value map of resource tags.
	Tags pulumi.StringMapOutput `pulumi:"tags"`
}

Provides a resource to manage a GuardDuty ThreatIntelSet.

> **Note:** Currently in GuardDuty, users from member accounts cannot upload and further manage ThreatIntelSets. ThreatIntelSets that are uploaded by the primary account are imposed on GuardDuty functionality in its member accounts. See the [GuardDuty API Documentation](https://docs.aws.amazon.com/guardduty/latest/ug/create-threat-intel-set.html)

## Example Usage

```go package main

import (

"fmt"

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/guardduty"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/s3"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		primary, err := guardduty.NewDetector(ctx, "primary", &guardduty.DetectorArgs{
			Enable: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		bucket, err := s3.NewBucket(ctx, "bucket", &s3.BucketArgs{
			Acl: pulumi.String("private"),
		})
		if err != nil {
			return err
		}
		myThreatIntelSetBucketObject, err := s3.NewBucketObject(ctx, "myThreatIntelSetBucketObject", &s3.BucketObjectArgs{
			Acl:     pulumi.String("public-read"),
			Content: pulumi.String("10.0.0.0/8\n"),
			Bucket:  bucket.ID(),
			Key:     pulumi.String("MyThreatIntelSet"),
		})
		if err != nil {
			return err
		}
		_, err = guardduty.NewThreatIntelSet(ctx, "myThreatIntelSetThreatIntelSet", &guardduty.ThreatIntelSetArgs{
			Activate:   pulumi.Bool(true),
			DetectorId: primary.ID(),
			Format:     pulumi.String("TXT"),
			Location: pulumi.All(myThreatIntelSetBucketObject.Bucket, myThreatIntelSetBucketObject.Key).ApplyT(func(_args []interface{}) (string, error) {
				bucket := _args[0].(string)
				key := _args[1].(string)
				return fmt.Sprintf("%v%v%v%v", "https://s3.amazonaws.com/", bucket, "/", key), nil
			}).(pulumi.StringOutput),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

GuardDuty ThreatIntelSet can be imported using the the primary GuardDuty detector ID and ThreatIntelSetID, e.g.

```sh

$ pulumi import aws:guardduty/threatIntelSet:ThreatIntelSet MyThreatIntelSet 00b00fd5aecc0ab60a708659477e9617:123456789012

```

func GetThreatIntelSet

func GetThreatIntelSet(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ThreatIntelSetState, opts ...pulumi.ResourceOption) (*ThreatIntelSet, error)

GetThreatIntelSet gets an existing ThreatIntelSet resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewThreatIntelSet

func NewThreatIntelSet(ctx *pulumi.Context,
	name string, args *ThreatIntelSetArgs, opts ...pulumi.ResourceOption) (*ThreatIntelSet, error)

NewThreatIntelSet registers a new resource with the given unique name, arguments, and options.

func (*ThreatIntelSet) ElementType added in v3.13.0

func (*ThreatIntelSet) ElementType() reflect.Type

func (*ThreatIntelSet) ToThreatIntelSetOutput added in v3.13.0

func (i *ThreatIntelSet) ToThreatIntelSetOutput() ThreatIntelSetOutput

func (*ThreatIntelSet) ToThreatIntelSetOutputWithContext added in v3.13.0

func (i *ThreatIntelSet) ToThreatIntelSetOutputWithContext(ctx context.Context) ThreatIntelSetOutput

func (*ThreatIntelSet) ToThreatIntelSetPtrOutput added in v3.25.0

func (i *ThreatIntelSet) ToThreatIntelSetPtrOutput() ThreatIntelSetPtrOutput

func (*ThreatIntelSet) ToThreatIntelSetPtrOutputWithContext added in v3.25.0

func (i *ThreatIntelSet) ToThreatIntelSetPtrOutputWithContext(ctx context.Context) ThreatIntelSetPtrOutput

type ThreatIntelSetArgs

type ThreatIntelSetArgs struct {
	// Specifies whether GuardDuty is to start using the uploaded ThreatIntelSet.
	Activate pulumi.BoolInput
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringInput
	// The format of the file that contains the ThreatIntelSet. Valid values: `TXT` | `STIX` | `OTX_CSV` | `ALIEN_VAULT` | `PROOF_POINT` | `FIRE_EYE`
	Format pulumi.StringInput
	// The URI of the file that contains the ThreatIntelSet.
	Location pulumi.StringInput
	// The friendly name to identify the ThreatIntelSet.
	Name pulumi.StringPtrInput
	// Key-value map of resource tags.
	Tags pulumi.StringMapInput
}

The set of arguments for constructing a ThreatIntelSet resource.

func (ThreatIntelSetArgs) ElementType

func (ThreatIntelSetArgs) ElementType() reflect.Type

type ThreatIntelSetArray added in v3.25.0

type ThreatIntelSetArray []ThreatIntelSetInput

func (ThreatIntelSetArray) ElementType added in v3.25.0

func (ThreatIntelSetArray) ElementType() reflect.Type

func (ThreatIntelSetArray) ToThreatIntelSetArrayOutput added in v3.25.0

func (i ThreatIntelSetArray) ToThreatIntelSetArrayOutput() ThreatIntelSetArrayOutput

func (ThreatIntelSetArray) ToThreatIntelSetArrayOutputWithContext added in v3.25.0

func (i ThreatIntelSetArray) ToThreatIntelSetArrayOutputWithContext(ctx context.Context) ThreatIntelSetArrayOutput

type ThreatIntelSetArrayInput added in v3.25.0

type ThreatIntelSetArrayInput interface {
	pulumi.Input

	ToThreatIntelSetArrayOutput() ThreatIntelSetArrayOutput
	ToThreatIntelSetArrayOutputWithContext(context.Context) ThreatIntelSetArrayOutput
}

ThreatIntelSetArrayInput is an input type that accepts ThreatIntelSetArray and ThreatIntelSetArrayOutput values. You can construct a concrete instance of `ThreatIntelSetArrayInput` via:

ThreatIntelSetArray{ ThreatIntelSetArgs{...} }

type ThreatIntelSetArrayOutput added in v3.25.0

type ThreatIntelSetArrayOutput struct{ *pulumi.OutputState }

func (ThreatIntelSetArrayOutput) ElementType added in v3.25.0

func (ThreatIntelSetArrayOutput) ElementType() reflect.Type

func (ThreatIntelSetArrayOutput) Index added in v3.25.0

func (ThreatIntelSetArrayOutput) ToThreatIntelSetArrayOutput added in v3.25.0

func (o ThreatIntelSetArrayOutput) ToThreatIntelSetArrayOutput() ThreatIntelSetArrayOutput

func (ThreatIntelSetArrayOutput) ToThreatIntelSetArrayOutputWithContext added in v3.25.0

func (o ThreatIntelSetArrayOutput) ToThreatIntelSetArrayOutputWithContext(ctx context.Context) ThreatIntelSetArrayOutput

type ThreatIntelSetInput added in v3.13.0

type ThreatIntelSetInput interface {
	pulumi.Input

	ToThreatIntelSetOutput() ThreatIntelSetOutput
	ToThreatIntelSetOutputWithContext(ctx context.Context) ThreatIntelSetOutput
}

type ThreatIntelSetMap added in v3.25.0

type ThreatIntelSetMap map[string]ThreatIntelSetInput

func (ThreatIntelSetMap) ElementType added in v3.25.0

func (ThreatIntelSetMap) ElementType() reflect.Type

func (ThreatIntelSetMap) ToThreatIntelSetMapOutput added in v3.25.0

func (i ThreatIntelSetMap) ToThreatIntelSetMapOutput() ThreatIntelSetMapOutput

func (ThreatIntelSetMap) ToThreatIntelSetMapOutputWithContext added in v3.25.0

func (i ThreatIntelSetMap) ToThreatIntelSetMapOutputWithContext(ctx context.Context) ThreatIntelSetMapOutput

type ThreatIntelSetMapInput added in v3.25.0

type ThreatIntelSetMapInput interface {
	pulumi.Input

	ToThreatIntelSetMapOutput() ThreatIntelSetMapOutput
	ToThreatIntelSetMapOutputWithContext(context.Context) ThreatIntelSetMapOutput
}

ThreatIntelSetMapInput is an input type that accepts ThreatIntelSetMap and ThreatIntelSetMapOutput values. You can construct a concrete instance of `ThreatIntelSetMapInput` via:

ThreatIntelSetMap{ "key": ThreatIntelSetArgs{...} }

type ThreatIntelSetMapOutput added in v3.25.0

type ThreatIntelSetMapOutput struct{ *pulumi.OutputState }

func (ThreatIntelSetMapOutput) ElementType added in v3.25.0

func (ThreatIntelSetMapOutput) ElementType() reflect.Type

func (ThreatIntelSetMapOutput) MapIndex added in v3.25.0

func (ThreatIntelSetMapOutput) ToThreatIntelSetMapOutput added in v3.25.0

func (o ThreatIntelSetMapOutput) ToThreatIntelSetMapOutput() ThreatIntelSetMapOutput

func (ThreatIntelSetMapOutput) ToThreatIntelSetMapOutputWithContext added in v3.25.0

func (o ThreatIntelSetMapOutput) ToThreatIntelSetMapOutputWithContext(ctx context.Context) ThreatIntelSetMapOutput

type ThreatIntelSetOutput added in v3.13.0

type ThreatIntelSetOutput struct {
	*pulumi.OutputState
}

func (ThreatIntelSetOutput) ElementType added in v3.13.0

func (ThreatIntelSetOutput) ElementType() reflect.Type

func (ThreatIntelSetOutput) ToThreatIntelSetOutput added in v3.13.0

func (o ThreatIntelSetOutput) ToThreatIntelSetOutput() ThreatIntelSetOutput

func (ThreatIntelSetOutput) ToThreatIntelSetOutputWithContext added in v3.13.0

func (o ThreatIntelSetOutput) ToThreatIntelSetOutputWithContext(ctx context.Context) ThreatIntelSetOutput

func (ThreatIntelSetOutput) ToThreatIntelSetPtrOutput added in v3.25.0

func (o ThreatIntelSetOutput) ToThreatIntelSetPtrOutput() ThreatIntelSetPtrOutput

func (ThreatIntelSetOutput) ToThreatIntelSetPtrOutputWithContext added in v3.25.0

func (o ThreatIntelSetOutput) ToThreatIntelSetPtrOutputWithContext(ctx context.Context) ThreatIntelSetPtrOutput

type ThreatIntelSetPtrInput added in v3.25.0

type ThreatIntelSetPtrInput interface {
	pulumi.Input

	ToThreatIntelSetPtrOutput() ThreatIntelSetPtrOutput
	ToThreatIntelSetPtrOutputWithContext(ctx context.Context) ThreatIntelSetPtrOutput
}

type ThreatIntelSetPtrOutput added in v3.25.0

type ThreatIntelSetPtrOutput struct {
	*pulumi.OutputState
}

func (ThreatIntelSetPtrOutput) ElementType added in v3.25.0

func (ThreatIntelSetPtrOutput) ElementType() reflect.Type

func (ThreatIntelSetPtrOutput) ToThreatIntelSetPtrOutput added in v3.25.0

func (o ThreatIntelSetPtrOutput) ToThreatIntelSetPtrOutput() ThreatIntelSetPtrOutput

func (ThreatIntelSetPtrOutput) ToThreatIntelSetPtrOutputWithContext added in v3.25.0

func (o ThreatIntelSetPtrOutput) ToThreatIntelSetPtrOutputWithContext(ctx context.Context) ThreatIntelSetPtrOutput

type ThreatIntelSetState

type ThreatIntelSetState struct {
	// Specifies whether GuardDuty is to start using the uploaded ThreatIntelSet.
	Activate pulumi.BoolPtrInput
	// Amazon Resource Name (ARN) of the GuardDuty ThreatIntelSet.
	Arn pulumi.StringPtrInput
	// The detector ID of the GuardDuty.
	DetectorId pulumi.StringPtrInput
	// The format of the file that contains the ThreatIntelSet. Valid values: `TXT` | `STIX` | `OTX_CSV` | `ALIEN_VAULT` | `PROOF_POINT` | `FIRE_EYE`
	Format pulumi.StringPtrInput
	// The URI of the file that contains the ThreatIntelSet.
	Location pulumi.StringPtrInput
	// The friendly name to identify the ThreatIntelSet.
	Name pulumi.StringPtrInput
	// Key-value map of resource tags.
	Tags pulumi.StringMapInput
}

func (ThreatIntelSetState) ElementType

func (ThreatIntelSetState) ElementType() reflect.Type

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL