fms

package
v3.33.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 15, 2021 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AdminAccount 

type AdminAccount struct {
	pulumi.CustomResourceState

	// The AWS account ID to associate with AWS Firewall Manager as the AWS Firewall Manager administrator account. This can be an AWS Organizations master account or a member account. Defaults to the current account. Must be configured to perform drift detection.
	AccountId pulumi.StringOutput `pulumi:"accountId"`
}

Provides a resource to associate/disassociate an AWS Firewall Manager administrator account. This operation must be performed in the `us-east-1` region.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/fms"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := fms.NewAdminAccount(ctx, "example", nil)
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

Firewall Manager administrator account association can be imported using the account ID, e.g.

```sh 

$ pulumi import aws:fms/adminAccount:AdminAccount example 123456789012

```

func GetAdminAccount 

func GetAdminAccount(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *AdminAccountState, opts ...pulumi.ResourceOption) (*AdminAccount, error)

GetAdminAccount gets an existing AdminAccount resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewAdminAccount 

func NewAdminAccount(ctx *pulumi.Context,
	name string, args *AdminAccountArgs, opts ...pulumi.ResourceOption) (*AdminAccount, error)

NewAdminAccount registers a new resource with the given unique name, arguments, and options.

func (*AdminAccount) ElementType added in v3.13.0 

func (*AdminAccount) ElementType() reflect.Type

func (*AdminAccount) ToAdminAccountOutput added in v3.13.0 

func (i *AdminAccount) ToAdminAccountOutput() AdminAccountOutput

func (*AdminAccount) ToAdminAccountOutputWithContext added in v3.13.0 

func (i *AdminAccount) ToAdminAccountOutputWithContext(ctx context.Context) AdminAccountOutput

func (*AdminAccount) ToAdminAccountPtrOutput added in v3.25.0 

func (i *AdminAccount) ToAdminAccountPtrOutput() AdminAccountPtrOutput

func (*AdminAccount) ToAdminAccountPtrOutputWithContext added in v3.25.0 

func (i *AdminAccount) ToAdminAccountPtrOutputWithContext(ctx context.Context) AdminAccountPtrOutput

type AdminAccountArgs 

type AdminAccountArgs struct {
	// The AWS account ID to associate with AWS Firewall Manager as the AWS Firewall Manager administrator account. This can be an AWS Organizations master account or a member account. Defaults to the current account. Must be configured to perform drift detection.
	AccountId pulumi.StringPtrInput
}

The set of arguments for constructing a AdminAccount resource.

func (AdminAccountArgs) ElementType 

func (AdminAccountArgs) ElementType() reflect.Type

type AdminAccountArray added in v3.25.0 

type AdminAccountArray []AdminAccountInput

func (AdminAccountArray) ElementType added in v3.25.0 

func (AdminAccountArray) ElementType() reflect.Type

func (AdminAccountArray) ToAdminAccountArrayOutput added in v3.25.0 

func (i AdminAccountArray) ToAdminAccountArrayOutput() AdminAccountArrayOutput

func (AdminAccountArray) ToAdminAccountArrayOutputWithContext added in v3.25.0 

func (i AdminAccountArray) ToAdminAccountArrayOutputWithContext(ctx context.Context) AdminAccountArrayOutput

type AdminAccountArrayInput added in v3.25.0 

type AdminAccountArrayInput interface {
	pulumi.Input

	ToAdminAccountArrayOutput() AdminAccountArrayOutput
	ToAdminAccountArrayOutputWithContext(context.Context) AdminAccountArrayOutput
}

AdminAccountArrayInput is an input type that accepts AdminAccountArray and AdminAccountArrayOutput values. You can construct a concrete instance of `AdminAccountArrayInput` via: 

AdminAccountArray{ AdminAccountArgs{...} }

type AdminAccountArrayOutput added in v3.25.0 

type AdminAccountArrayOutput struct{ *pulumi.OutputState }

func (AdminAccountArrayOutput) ElementType added in v3.25.0 

func (AdminAccountArrayOutput) ElementType() reflect.Type

func (AdminAccountArrayOutput) Index added in v3.25.0 

func (o AdminAccountArrayOutput) Index(i pulumi.IntInput) AdminAccountOutput

func (AdminAccountArrayOutput) ToAdminAccountArrayOutput added in v3.25.0 

func (o AdminAccountArrayOutput) ToAdminAccountArrayOutput() AdminAccountArrayOutput

func (AdminAccountArrayOutput) ToAdminAccountArrayOutputWithContext added in v3.25.0 

func (o AdminAccountArrayOutput) ToAdminAccountArrayOutputWithContext(ctx context.Context) AdminAccountArrayOutput

type AdminAccountInput added in v3.13.0 

type AdminAccountInput interface {
	pulumi.Input

	ToAdminAccountOutput() AdminAccountOutput
	ToAdminAccountOutputWithContext(ctx context.Context) AdminAccountOutput
}

type AdminAccountMap added in v3.25.0 

type AdminAccountMap map[string]AdminAccountInput

func (AdminAccountMap) ElementType added in v3.25.0 

func (AdminAccountMap) ElementType() reflect.Type

func (AdminAccountMap) ToAdminAccountMapOutput added in v3.25.0 

func (i AdminAccountMap) ToAdminAccountMapOutput() AdminAccountMapOutput

func (AdminAccountMap) ToAdminAccountMapOutputWithContext added in v3.25.0 

func (i AdminAccountMap) ToAdminAccountMapOutputWithContext(ctx context.Context) AdminAccountMapOutput

type AdminAccountMapInput added in v3.25.0 

type AdminAccountMapInput interface {
	pulumi.Input

	ToAdminAccountMapOutput() AdminAccountMapOutput
	ToAdminAccountMapOutputWithContext(context.Context) AdminAccountMapOutput
}

AdminAccountMapInput is an input type that accepts AdminAccountMap and AdminAccountMapOutput values. You can construct a concrete instance of `AdminAccountMapInput` via: 

AdminAccountMap{ "key": AdminAccountArgs{...} }

type AdminAccountMapOutput added in v3.25.0 

type AdminAccountMapOutput struct{ *pulumi.OutputState }

func (AdminAccountMapOutput) ElementType added in v3.25.0 

func (AdminAccountMapOutput) ElementType() reflect.Type

func (AdminAccountMapOutput) MapIndex added in v3.25.0 

func (o AdminAccountMapOutput) MapIndex(k pulumi.StringInput) AdminAccountOutput

func (AdminAccountMapOutput) ToAdminAccountMapOutput added in v3.25.0 

func (o AdminAccountMapOutput) ToAdminAccountMapOutput() AdminAccountMapOutput

func (AdminAccountMapOutput) ToAdminAccountMapOutputWithContext added in v3.25.0 

func (o AdminAccountMapOutput) ToAdminAccountMapOutputWithContext(ctx context.Context) AdminAccountMapOutput

type AdminAccountOutput added in v3.13.0 

type AdminAccountOutput struct {
	*pulumi.OutputState
}

func (AdminAccountOutput) ElementType added in v3.13.0 

func (AdminAccountOutput) ElementType() reflect.Type

func (AdminAccountOutput) ToAdminAccountOutput added in v3.13.0 

func (o AdminAccountOutput) ToAdminAccountOutput() AdminAccountOutput

func (AdminAccountOutput) ToAdminAccountOutputWithContext added in v3.13.0 

func (o AdminAccountOutput) ToAdminAccountOutputWithContext(ctx context.Context) AdminAccountOutput

func (AdminAccountOutput) ToAdminAccountPtrOutput added in v3.25.0 

func (o AdminAccountOutput) ToAdminAccountPtrOutput() AdminAccountPtrOutput

func (AdminAccountOutput) ToAdminAccountPtrOutputWithContext added in v3.25.0 

func (o AdminAccountOutput) ToAdminAccountPtrOutputWithContext(ctx context.Context) AdminAccountPtrOutput

type AdminAccountPtrInput added in v3.25.0 

type AdminAccountPtrInput interface {
	pulumi.Input

	ToAdminAccountPtrOutput() AdminAccountPtrOutput
	ToAdminAccountPtrOutputWithContext(ctx context.Context) AdminAccountPtrOutput
}

type AdminAccountPtrOutput added in v3.25.0 

type AdminAccountPtrOutput struct {
	*pulumi.OutputState
}

func (AdminAccountPtrOutput) ElementType added in v3.25.0 

func (AdminAccountPtrOutput) ElementType() reflect.Type

func (AdminAccountPtrOutput) ToAdminAccountPtrOutput added in v3.25.0 

func (o AdminAccountPtrOutput) ToAdminAccountPtrOutput() AdminAccountPtrOutput

func (AdminAccountPtrOutput) ToAdminAccountPtrOutputWithContext added in v3.25.0 

func (o AdminAccountPtrOutput) ToAdminAccountPtrOutputWithContext(ctx context.Context) AdminAccountPtrOutput

type AdminAccountState 

type AdminAccountState struct {
	// The AWS account ID to associate with AWS Firewall Manager as the AWS Firewall Manager administrator account. This can be an AWS Organizations master account or a member account. Defaults to the current account. Must be configured to perform drift detection.
	AccountId pulumi.StringPtrInput
}

func (AdminAccountState) ElementType 

func (AdminAccountState) ElementType() reflect.Type

type Policy added in v3.24.0 

type Policy struct {
	pulumi.CustomResourceState

	Arn pulumi.StringOutput `pulumi:"arn"`
	// If true, the request will also perform a clean-up process. Defaults to `true`. More information can be found here [AWS Firewall Manager delete policy](https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_DeletePolicy.html)
	DeleteAllPolicyResources pulumi.BoolPtrOutput `pulumi:"deleteAllPolicyResources"`
	// A map of lists, with a single key named 'account' with a list of AWS Account IDs to exclude from this policy.
	ExcludeMap PolicyExcludeMapPtrOutput `pulumi:"excludeMap"`
	// A boolean value, if true the tags that are specified in the `resourceTags` are not protected by this policy. If set to false and resourceTags are populated, resources that contain tags will be protected by this policy.
	ExcludeResourceTags pulumi.BoolOutput `pulumi:"excludeResourceTags"`
	// A map of lists, with a single key named 'account' with a list of AWS Account IDs to include for this policy.
	IncludeMap PolicyIncludeMapPtrOutput `pulumi:"includeMap"`
	// The friendly name of the AWS Firewall Manager Policy.
	Name pulumi.StringOutput `pulumi:"name"`
	// A unique identifier for each update to the policy.
	PolicyUpdateToken pulumi.StringOutput `pulumi:"policyUpdateToken"`
	// A boolean value, indicates if the policy should automatically applied to resources that already exist in the account.
	RemediationEnabled pulumi.BoolPtrOutput `pulumi:"remediationEnabled"`
	// A map of resource tags, that if present will filter protections on resources based on the exclude_resource_tags.
	ResourceTags pulumi.StringMapOutput `pulumi:"resourceTags"`
	// A resource type to protect, valid values are: `AWS::ElasticLoadBalancingV2::LoadBalancer`, `AWS::ApiGateway::Stage`, `AWS::CloudFront::Distribution`, `AWS::EC2::Instance`, `AWS::EC2::NetworkInterface`, `AWS::EC2::SecurityGroup`. Conflicts with `resourceTypeList`.
	ResourceType pulumi.StringOutput `pulumi:"resourceType"`
	// A list of resource types to protect, valid values are: `AWS::ElasticLoadBalancingV2::LoadBalancer`, `AWS::ApiGateway::Stage`, `AWS::CloudFront::Distribution`, `AWS::EC2::Instance`, `AWS::EC2::NetworkInterface`, `AWS::EC2::SecurityGroup`, and `AWS::EC2::VPC`. Conflicts with `resourceType`.
	ResourceTypeLists pulumi.StringArrayOutput `pulumi:"resourceTypeLists"`
	// The objects to include in Security Service Policy Data. Documented below.
	SecurityServicePolicyData PolicySecurityServicePolicyDataOutput `pulumi:"securityServicePolicyData"`
}

Provides a resource to create an AWS Firewall Manager policy. You need to be using AWS organizations and have enabled the Firewall Manager administrator account.

## Example Usage

```go package main

import ( 

"encoding/json"

"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/fms"
"github.com/pulumi/pulumi-aws/sdk/v3/go/aws/wafregional"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleRuleGroup, err := wafregional.NewRuleGroup(ctx, "exampleRuleGroup", &wafregional.RuleGroupArgs{
			MetricName: pulumi.String("WAFRuleGroupExample"),
		})
		if err != nil {
			return err
		}
		_, err = fms.NewPolicy(ctx, "examplePolicy", &fms.PolicyArgs{
			ExcludeResourceTags: pulumi.Bool(false),
			RemediationEnabled:  pulumi.Bool(false),
			ResourceTypeLists: pulumi.StringArray{
				pulumi.String("AWS::ElasticLoadBalancingV2::LoadBalancer"),
			},
			SecurityServicePolicyData: &fms.PolicySecurityServicePolicyDataArgs{
				Type: pulumi.String("WAF"),
				ManagedServiceData: exampleRuleGroup.ID().ApplyT(func(id string) (pulumi.String, error) {
					var _zero pulumi.String
					tmpJSON0, err := json.Marshal(map[string]interface{}{
						"type": "WAF",
						"ruleGroups": []map[string]interface{}{
							map[string]interface{}{
								"id": id,
								"overrideAction": map[string]interface{}{
									"type": "COUNT",
								},
							},
						},
						"defaultAction": map[string]interface{}{
							"type": "BLOCK",
						},
						"overrideCustomerWebACLAssociation": false,
					})
					if err != nil {
						return _zero, err
					}
					json0 := string(tmpJSON0)
					return pulumi.String(json0), nil
				}).(pulumi.StringOutput),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

Firewall Manager policies can be imported using the policy ID, e.g.

```sh 

$ pulumi import aws:fms/policy:Policy example 5be49585-a7e3-4c49-dde1-a179fe4a619a

```

func GetPolicy added in v3.24.0 

func GetPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PolicyState, opts ...pulumi.ResourceOption) (*Policy, error)

GetPolicy gets an existing Policy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPolicy added in v3.24.0 

func NewPolicy(ctx *pulumi.Context,
	name string, args *PolicyArgs, opts ...pulumi.ResourceOption) (*Policy, error)

NewPolicy registers a new resource with the given unique name, arguments, and options.

func (*Policy) ElementType added in v3.24.0 

func (*Policy) ElementType() reflect.Type

func (*Policy) ToPolicyOutput added in v3.24.0 

func (i *Policy) ToPolicyOutput() PolicyOutput

func (*Policy) ToPolicyOutputWithContext added in v3.24.0 

func (i *Policy) ToPolicyOutputWithContext(ctx context.Context) PolicyOutput

func (*Policy) ToPolicyPtrOutput added in v3.25.0 

func (i *Policy) ToPolicyPtrOutput() PolicyPtrOutput

func (*Policy) ToPolicyPtrOutputWithContext added in v3.25.0 

func (i *Policy) ToPolicyPtrOutputWithContext(ctx context.Context) PolicyPtrOutput

type PolicyArgs added in v3.24.0 

type PolicyArgs struct {
	// If true, the request will also perform a clean-up process. Defaults to `true`. More information can be found here [AWS Firewall Manager delete policy](https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_DeletePolicy.html)
	DeleteAllPolicyResources pulumi.BoolPtrInput
	// A map of lists, with a single key named 'account' with a list of AWS Account IDs to exclude from this policy.
	ExcludeMap PolicyExcludeMapPtrInput
	// A boolean value, if true the tags that are specified in the `resourceTags` are not protected by this policy. If set to false and resourceTags are populated, resources that contain tags will be protected by this policy.
	ExcludeResourceTags pulumi.BoolInput
	// A map of lists, with a single key named 'account' with a list of AWS Account IDs to include for this policy.
	IncludeMap PolicyIncludeMapPtrInput
	// The friendly name of the AWS Firewall Manager Policy.
	Name pulumi.StringPtrInput
	// A boolean value, indicates if the policy should automatically applied to resources that already exist in the account.
	RemediationEnabled pulumi.BoolPtrInput
	// A map of resource tags, that if present will filter protections on resources based on the exclude_resource_tags.
	ResourceTags pulumi.StringMapInput
	// A resource type to protect, valid values are: `AWS::ElasticLoadBalancingV2::LoadBalancer`, `AWS::ApiGateway::Stage`, `AWS::CloudFront::Distribution`, `AWS::EC2::Instance`, `AWS::EC2::NetworkInterface`, `AWS::EC2::SecurityGroup`. Conflicts with `resourceTypeList`.
	ResourceType pulumi.StringPtrInput
	// A list of resource types to protect, valid values are: `AWS::ElasticLoadBalancingV2::LoadBalancer`, `AWS::ApiGateway::Stage`, `AWS::CloudFront::Distribution`, `AWS::EC2::Instance`, `AWS::EC2::NetworkInterface`, `AWS::EC2::SecurityGroup`, and `AWS::EC2::VPC`. Conflicts with `resourceType`.
	ResourceTypeLists pulumi.StringArrayInput
	// The objects to include in Security Service Policy Data. Documented below.
	SecurityServicePolicyData PolicySecurityServicePolicyDataInput
}

The set of arguments for constructing a Policy resource.

func (PolicyArgs) ElementType added in v3.24.0 

func (PolicyArgs) ElementType() reflect.Type

type PolicyArray added in v3.25.0 

type PolicyArray []PolicyInput

func (PolicyArray) ElementType added in v3.25.0 

func (PolicyArray) ElementType() reflect.Type

func (PolicyArray) ToPolicyArrayOutput added in v3.25.0 

func (i PolicyArray) ToPolicyArrayOutput() PolicyArrayOutput

func (PolicyArray) ToPolicyArrayOutputWithContext added in v3.25.0 

func (i PolicyArray) ToPolicyArrayOutputWithContext(ctx context.Context) PolicyArrayOutput

type PolicyArrayInput added in v3.25.0 

type PolicyArrayInput interface {
	pulumi.Input

	ToPolicyArrayOutput() PolicyArrayOutput
	ToPolicyArrayOutputWithContext(context.Context) PolicyArrayOutput
}

PolicyArrayInput is an input type that accepts PolicyArray and PolicyArrayOutput values. You can construct a concrete instance of `PolicyArrayInput` via: 

PolicyArray{ PolicyArgs{...} }

type PolicyArrayOutput added in v3.25.0 

type PolicyArrayOutput struct{ *pulumi.OutputState }

func (PolicyArrayOutput) ElementType added in v3.25.0 

func (PolicyArrayOutput) ElementType() reflect.Type

func (PolicyArrayOutput) Index added in v3.25.0 

func (o PolicyArrayOutput) Index(i pulumi.IntInput) PolicyOutput

func (PolicyArrayOutput) ToPolicyArrayOutput added in v3.25.0 

func (o PolicyArrayOutput) ToPolicyArrayOutput() PolicyArrayOutput

func (PolicyArrayOutput) ToPolicyArrayOutputWithContext added in v3.25.0 

func (o PolicyArrayOutput) ToPolicyArrayOutputWithContext(ctx context.Context) PolicyArrayOutput

type PolicyExcludeMap added in v3.24.0 

type PolicyExcludeMap struct {
	// A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.
	Accounts []string `pulumi:"accounts"`
	Orgunits []string `pulumi:"orgunits"`
}

type PolicyExcludeMapArgs added in v3.24.0 

type PolicyExcludeMapArgs struct {
	// A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.
	Accounts pulumi.StringArrayInput `pulumi:"accounts"`
	Orgunits pulumi.StringArrayInput `pulumi:"orgunits"`
}

func (PolicyExcludeMapArgs) ElementType added in v3.24.0 

func (PolicyExcludeMapArgs) ElementType() reflect.Type

func (PolicyExcludeMapArgs) ToPolicyExcludeMapOutput added in v3.24.0 

func (i PolicyExcludeMapArgs) ToPolicyExcludeMapOutput() PolicyExcludeMapOutput

func (PolicyExcludeMapArgs) ToPolicyExcludeMapOutputWithContext added in v3.24.0 

func (i PolicyExcludeMapArgs) ToPolicyExcludeMapOutputWithContext(ctx context.Context) PolicyExcludeMapOutput

func (PolicyExcludeMapArgs) ToPolicyExcludeMapPtrOutput added in v3.24.0 

func (i PolicyExcludeMapArgs) ToPolicyExcludeMapPtrOutput() PolicyExcludeMapPtrOutput

func (PolicyExcludeMapArgs) ToPolicyExcludeMapPtrOutputWithContext added in v3.24.0 

func (i PolicyExcludeMapArgs) ToPolicyExcludeMapPtrOutputWithContext(ctx context.Context) PolicyExcludeMapPtrOutput

type PolicyExcludeMapInput added in v3.24.0 

type PolicyExcludeMapInput interface {
	pulumi.Input

	ToPolicyExcludeMapOutput() PolicyExcludeMapOutput
	ToPolicyExcludeMapOutputWithContext(context.Context) PolicyExcludeMapOutput
}

PolicyExcludeMapInput is an input type that accepts PolicyExcludeMap and PolicyExcludeMapOutput values. You can construct a concrete instance of `PolicyExcludeMapInput` via: 

PolicyExcludeMap{ "key": PolicyExcludeArgs{...} }

type PolicyExcludeMapOutput added in v3.24.0 

type PolicyExcludeMapOutput struct{ *pulumi.OutputState }

func (PolicyExcludeMapOutput) Accounts added in v3.24.0 

func (o PolicyExcludeMapOutput) Accounts() pulumi.StringArrayOutput

A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.

func (PolicyExcludeMapOutput) ElementType added in v3.24.0 

func (PolicyExcludeMapOutput) ElementType() reflect.Type

func (PolicyExcludeMapOutput) Orgunits added in v3.24.0 

func (o PolicyExcludeMapOutput) Orgunits() pulumi.StringArrayOutput

func (PolicyExcludeMapOutput) ToPolicyExcludeMapOutput added in v3.24.0 

func (o PolicyExcludeMapOutput) ToPolicyExcludeMapOutput() PolicyExcludeMapOutput

func (PolicyExcludeMapOutput) ToPolicyExcludeMapOutputWithContext added in v3.24.0 

func (o PolicyExcludeMapOutput) ToPolicyExcludeMapOutputWithContext(ctx context.Context) PolicyExcludeMapOutput

func (PolicyExcludeMapOutput) ToPolicyExcludeMapPtrOutput added in v3.24.0 

func (o PolicyExcludeMapOutput) ToPolicyExcludeMapPtrOutput() PolicyExcludeMapPtrOutput

func (PolicyExcludeMapOutput) ToPolicyExcludeMapPtrOutputWithContext added in v3.24.0 

func (o PolicyExcludeMapOutput) ToPolicyExcludeMapPtrOutputWithContext(ctx context.Context) PolicyExcludeMapPtrOutput

type PolicyExcludeMapPtrInput added in v3.24.0 

type PolicyExcludeMapPtrInput interface {
	pulumi.Input

	ToPolicyExcludeMapPtrOutput() PolicyExcludeMapPtrOutput
	ToPolicyExcludeMapPtrOutputWithContext(context.Context) PolicyExcludeMapPtrOutput
}

PolicyExcludeMapPtrInput is an input type that accepts PolicyExcludeMapArgs, PolicyExcludeMapPtr and PolicyExcludeMapPtrOutput values. You can construct a concrete instance of `PolicyExcludeMapPtrInput` via: 

        PolicyExcludeMapArgs{...}

or:

        nil

func PolicyExcludeMapPtr added in v3.24.0 

func PolicyExcludeMapPtr(v *PolicyExcludeMapArgs) PolicyExcludeMapPtrInput

type PolicyExcludeMapPtrOutput added in v3.24.0 

type PolicyExcludeMapPtrOutput struct{ *pulumi.OutputState }

func (PolicyExcludeMapPtrOutput) Accounts added in v3.24.0 

func (o PolicyExcludeMapPtrOutput) Accounts() pulumi.StringArrayOutput

A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.

func (PolicyExcludeMapPtrOutput) Elem added in v3.24.0 

func (o PolicyExcludeMapPtrOutput) Elem() PolicyExcludeMapOutput

func (PolicyExcludeMapPtrOutput) ElementType added in v3.24.0 

func (PolicyExcludeMapPtrOutput) ElementType() reflect.Type

func (PolicyExcludeMapPtrOutput) Orgunits added in v3.24.0 

func (o PolicyExcludeMapPtrOutput) Orgunits() pulumi.StringArrayOutput

func (PolicyExcludeMapPtrOutput) ToPolicyExcludeMapPtrOutput added in v3.24.0 

func (o PolicyExcludeMapPtrOutput) ToPolicyExcludeMapPtrOutput() PolicyExcludeMapPtrOutput

func (PolicyExcludeMapPtrOutput) ToPolicyExcludeMapPtrOutputWithContext added in v3.24.0 

func (o PolicyExcludeMapPtrOutput) ToPolicyExcludeMapPtrOutputWithContext(ctx context.Context) PolicyExcludeMapPtrOutput

type PolicyIncludeMap added in v3.24.0 

type PolicyIncludeMap struct {
	// A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.
	Accounts []string `pulumi:"accounts"`
	Orgunits []string `pulumi:"orgunits"`
}

type PolicyIncludeMapArgs added in v3.24.0 

type PolicyIncludeMapArgs struct {
	// A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.
	Accounts pulumi.StringArrayInput `pulumi:"accounts"`
	Orgunits pulumi.StringArrayInput `pulumi:"orgunits"`
}

func (PolicyIncludeMapArgs) ElementType added in v3.24.0 

func (PolicyIncludeMapArgs) ElementType() reflect.Type

func (PolicyIncludeMapArgs) ToPolicyIncludeMapOutput added in v3.24.0 

func (i PolicyIncludeMapArgs) ToPolicyIncludeMapOutput() PolicyIncludeMapOutput

func (PolicyIncludeMapArgs) ToPolicyIncludeMapOutputWithContext added in v3.24.0 

func (i PolicyIncludeMapArgs) ToPolicyIncludeMapOutputWithContext(ctx context.Context) PolicyIncludeMapOutput

func (PolicyIncludeMapArgs) ToPolicyIncludeMapPtrOutput added in v3.24.0 

func (i PolicyIncludeMapArgs) ToPolicyIncludeMapPtrOutput() PolicyIncludeMapPtrOutput

func (PolicyIncludeMapArgs) ToPolicyIncludeMapPtrOutputWithContext added in v3.24.0 

func (i PolicyIncludeMapArgs) ToPolicyIncludeMapPtrOutputWithContext(ctx context.Context) PolicyIncludeMapPtrOutput

type PolicyIncludeMapInput added in v3.24.0 

type PolicyIncludeMapInput interface {
	pulumi.Input

	ToPolicyIncludeMapOutput() PolicyIncludeMapOutput
	ToPolicyIncludeMapOutputWithContext(context.Context) PolicyIncludeMapOutput
}

PolicyIncludeMapInput is an input type that accepts PolicyIncludeMap and PolicyIncludeMapOutput values. You can construct a concrete instance of `PolicyIncludeMapInput` via: 

PolicyIncludeMap{ "key": PolicyIncludeArgs{...} }

type PolicyIncludeMapOutput added in v3.24.0 

type PolicyIncludeMapOutput struct{ *pulumi.OutputState }

func (PolicyIncludeMapOutput) Accounts added in v3.24.0 

func (o PolicyIncludeMapOutput) Accounts() pulumi.StringArrayOutput

A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.

func (PolicyIncludeMapOutput) ElementType added in v3.24.0 

func (PolicyIncludeMapOutput) ElementType() reflect.Type

func (PolicyIncludeMapOutput) Orgunits added in v3.24.0 

func (o PolicyIncludeMapOutput) Orgunits() pulumi.StringArrayOutput

func (PolicyIncludeMapOutput) ToPolicyIncludeMapOutput added in v3.24.0 

func (o PolicyIncludeMapOutput) ToPolicyIncludeMapOutput() PolicyIncludeMapOutput

func (PolicyIncludeMapOutput) ToPolicyIncludeMapOutputWithContext added in v3.24.0 

func (o PolicyIncludeMapOutput) ToPolicyIncludeMapOutputWithContext(ctx context.Context) PolicyIncludeMapOutput

func (PolicyIncludeMapOutput) ToPolicyIncludeMapPtrOutput added in v3.24.0 

func (o PolicyIncludeMapOutput) ToPolicyIncludeMapPtrOutput() PolicyIncludeMapPtrOutput

func (PolicyIncludeMapOutput) ToPolicyIncludeMapPtrOutputWithContext added in v3.24.0 

func (o PolicyIncludeMapOutput) ToPolicyIncludeMapPtrOutputWithContext(ctx context.Context) PolicyIncludeMapPtrOutput

type PolicyIncludeMapPtrInput added in v3.24.0 

type PolicyIncludeMapPtrInput interface {
	pulumi.Input

	ToPolicyIncludeMapPtrOutput() PolicyIncludeMapPtrOutput
	ToPolicyIncludeMapPtrOutputWithContext(context.Context) PolicyIncludeMapPtrOutput
}

PolicyIncludeMapPtrInput is an input type that accepts PolicyIncludeMapArgs, PolicyIncludeMapPtr and PolicyIncludeMapPtrOutput values. You can construct a concrete instance of `PolicyIncludeMapPtrInput` via: 

        PolicyIncludeMapArgs{...}

or:

        nil

func PolicyIncludeMapPtr added in v3.24.0 

func PolicyIncludeMapPtr(v *PolicyIncludeMapArgs) PolicyIncludeMapPtrInput

type PolicyIncludeMapPtrOutput added in v3.24.0 

type PolicyIncludeMapPtrOutput struct{ *pulumi.OutputState }

func (PolicyIncludeMapPtrOutput) Accounts added in v3.24.0 

func (o PolicyIncludeMapPtrOutput) Accounts() pulumi.StringArrayOutput

A list of AWS Organization member Accounts that you want to include for this AWS FMS Policy.

func (PolicyIncludeMapPtrOutput) Elem added in v3.24.0 

func (o PolicyIncludeMapPtrOutput) Elem() PolicyIncludeMapOutput

func (PolicyIncludeMapPtrOutput) ElementType added in v3.24.0 

func (PolicyIncludeMapPtrOutput) ElementType() reflect.Type

func (PolicyIncludeMapPtrOutput) Orgunits added in v3.24.0 

func (o PolicyIncludeMapPtrOutput) Orgunits() pulumi.StringArrayOutput

func (PolicyIncludeMapPtrOutput) ToPolicyIncludeMapPtrOutput added in v3.24.0 

func (o PolicyIncludeMapPtrOutput) ToPolicyIncludeMapPtrOutput() PolicyIncludeMapPtrOutput

func (PolicyIncludeMapPtrOutput) ToPolicyIncludeMapPtrOutputWithContext added in v3.24.0 

func (o PolicyIncludeMapPtrOutput) ToPolicyIncludeMapPtrOutputWithContext(ctx context.Context) PolicyIncludeMapPtrOutput

type PolicyInput added in v3.24.0 

type PolicyInput interface {
	pulumi.Input

	ToPolicyOutput() PolicyOutput
	ToPolicyOutputWithContext(ctx context.Context) PolicyOutput
}

type PolicyMap added in v3.25.0 

type PolicyMap map[string]PolicyInput

func (PolicyMap) ElementType added in v3.25.0 

func (PolicyMap) ElementType() reflect.Type

func (PolicyMap) ToPolicyMapOutput added in v3.25.0 

func (i PolicyMap) ToPolicyMapOutput() PolicyMapOutput

func (PolicyMap) ToPolicyMapOutputWithContext added in v3.25.0 

func (i PolicyMap) ToPolicyMapOutputWithContext(ctx context.Context) PolicyMapOutput

type PolicyMapInput added in v3.25.0 

type PolicyMapInput interface {
	pulumi.Input

	ToPolicyMapOutput() PolicyMapOutput
	ToPolicyMapOutputWithContext(context.Context) PolicyMapOutput
}

PolicyMapInput is an input type that accepts PolicyMap and PolicyMapOutput values. You can construct a concrete instance of `PolicyMapInput` via: 

PolicyMap{ "key": PolicyArgs{...} }

type PolicyMapOutput added in v3.25.0 

type PolicyMapOutput struct{ *pulumi.OutputState }

func (PolicyMapOutput) ElementType added in v3.25.0 

func (PolicyMapOutput) ElementType() reflect.Type

func (PolicyMapOutput) MapIndex added in v3.25.0 

func (o PolicyMapOutput) MapIndex(k pulumi.StringInput) PolicyOutput

func (PolicyMapOutput) ToPolicyMapOutput added in v3.25.0 

func (o PolicyMapOutput) ToPolicyMapOutput() PolicyMapOutput

func (PolicyMapOutput) ToPolicyMapOutputWithContext added in v3.25.0 

func (o PolicyMapOutput) ToPolicyMapOutputWithContext(ctx context.Context) PolicyMapOutput

type PolicyOutput added in v3.24.0 

type PolicyOutput struct {
	*pulumi.OutputState
}

func (PolicyOutput) ElementType added in v3.24.0 

func (PolicyOutput) ElementType() reflect.Type

func (PolicyOutput) ToPolicyOutput added in v3.24.0 

func (o PolicyOutput) ToPolicyOutput() PolicyOutput

func (PolicyOutput) ToPolicyOutputWithContext added in v3.24.0 

func (o PolicyOutput) ToPolicyOutputWithContext(ctx context.Context) PolicyOutput

func (PolicyOutput) ToPolicyPtrOutput added in v3.25.0 

func (o PolicyOutput) ToPolicyPtrOutput() PolicyPtrOutput

func (PolicyOutput) ToPolicyPtrOutputWithContext added in v3.25.0 

func (o PolicyOutput) ToPolicyPtrOutputWithContext(ctx context.Context) PolicyPtrOutput

type PolicyPtrInput added in v3.25.0 

type PolicyPtrInput interface {
	pulumi.Input

	ToPolicyPtrOutput() PolicyPtrOutput
	ToPolicyPtrOutputWithContext(ctx context.Context) PolicyPtrOutput
}

type PolicyPtrOutput added in v3.25.0 

type PolicyPtrOutput struct {
	*pulumi.OutputState
}

func (PolicyPtrOutput) ElementType added in v3.25.0 

func (PolicyPtrOutput) ElementType() reflect.Type

func (PolicyPtrOutput) ToPolicyPtrOutput added in v3.25.0 

func (o PolicyPtrOutput) ToPolicyPtrOutput() PolicyPtrOutput

func (PolicyPtrOutput) ToPolicyPtrOutputWithContext added in v3.25.0 

func (o PolicyPtrOutput) ToPolicyPtrOutputWithContext(ctx context.Context) PolicyPtrOutput

type PolicySecurityServicePolicyData added in v3.24.0 

type PolicySecurityServicePolicyData struct {
	// Details about the service that are specific to the service type, in JSON format. For service type `SHIELD_ADVANCED`, this is an empty string. Examples depending on `type` can be found in the [AWS Firewall Manager SecurityServicePolicyData API Reference](https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_SecurityServicePolicyData.html).
	ManagedServiceData *string `pulumi:"managedServiceData"`
	// The service that the policy is using to protect the resources. Valid values are `WAFV2`, `WAF`, `SHIELD_ADVANCED`, `SECURITY_GROUPS_COMMON`, `SECURITY_GROUPS_CONTENT_AUDIT`, and `SECURITY_GROUPS_USAGE_AUDIT`.
	Type string `pulumi:"type"`
}

type PolicySecurityServicePolicyDataArgs added in v3.24.0 

type PolicySecurityServicePolicyDataArgs struct {
	// Details about the service that are specific to the service type, in JSON format. For service type `SHIELD_ADVANCED`, this is an empty string. Examples depending on `type` can be found in the [AWS Firewall Manager SecurityServicePolicyData API Reference](https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_SecurityServicePolicyData.html).
	ManagedServiceData pulumi.StringPtrInput `pulumi:"managedServiceData"`
	// The service that the policy is using to protect the resources. Valid values are `WAFV2`, `WAF`, `SHIELD_ADVANCED`, `SECURITY_GROUPS_COMMON`, `SECURITY_GROUPS_CONTENT_AUDIT`, and `SECURITY_GROUPS_USAGE_AUDIT`.
	Type pulumi.StringInput `pulumi:"type"`
}

func (PolicySecurityServicePolicyDataArgs) ElementType added in v3.24.0 

func (PolicySecurityServicePolicyDataArgs) ElementType() reflect.Type

func (PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataOutput added in v3.24.0 

func (i PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataOutput() PolicySecurityServicePolicyDataOutput

func (PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataOutputWithContext added in v3.24.0 

func (i PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataOutputWithContext(ctx context.Context) PolicySecurityServicePolicyDataOutput

func (PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataPtrOutput added in v3.24.0 

func (i PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataPtrOutput() PolicySecurityServicePolicyDataPtrOutput

func (PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataPtrOutputWithContext added in v3.24.0 

func (i PolicySecurityServicePolicyDataArgs) ToPolicySecurityServicePolicyDataPtrOutputWithContext(ctx context.Context) PolicySecurityServicePolicyDataPtrOutput

type PolicySecurityServicePolicyDataInput added in v3.24.0 

type PolicySecurityServicePolicyDataInput interface {
	pulumi.Input

	ToPolicySecurityServicePolicyDataOutput() PolicySecurityServicePolicyDataOutput
	ToPolicySecurityServicePolicyDataOutputWithContext(context.Context) PolicySecurityServicePolicyDataOutput
}

PolicySecurityServicePolicyDataInput is an input type that accepts PolicySecurityServicePolicyDataArgs and PolicySecurityServicePolicyDataOutput values. You can construct a concrete instance of `PolicySecurityServicePolicyDataInput` via: 

PolicySecurityServicePolicyDataArgs{...}

type PolicySecurityServicePolicyDataOutput added in v3.24.0 

type PolicySecurityServicePolicyDataOutput struct{ *pulumi.OutputState }

func (PolicySecurityServicePolicyDataOutput) ElementType added in v3.24.0 

func (PolicySecurityServicePolicyDataOutput) ElementType() reflect.Type

func (PolicySecurityServicePolicyDataOutput) ManagedServiceData added in v3.24.0 

func (o PolicySecurityServicePolicyDataOutput) ManagedServiceData() pulumi.StringPtrOutput

Details about the service that are specific to the service type, in JSON format. For service type `SHIELD_ADVANCED`, this is an empty string. Examples depending on `type` can be found in the [AWS Firewall Manager SecurityServicePolicyData API Reference](https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_SecurityServicePolicyData.html).

func (PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataOutput added in v3.24.0 

func (o PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataOutput() PolicySecurityServicePolicyDataOutput

func (PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataOutputWithContext added in v3.24.0 

func (o PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataOutputWithContext(ctx context.Context) PolicySecurityServicePolicyDataOutput

func (PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataPtrOutput added in v3.24.0 

func (o PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataPtrOutput() PolicySecurityServicePolicyDataPtrOutput

func (PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataPtrOutputWithContext added in v3.24.0 

func (o PolicySecurityServicePolicyDataOutput) ToPolicySecurityServicePolicyDataPtrOutputWithContext(ctx context.Context) PolicySecurityServicePolicyDataPtrOutput

func (PolicySecurityServicePolicyDataOutput) Type added in v3.24.0 

func (o PolicySecurityServicePolicyDataOutput) Type() pulumi.StringOutput

The service that the policy is using to protect the resources. Valid values are `WAFV2`, `WAF`, `SHIELD_ADVANCED`, `SECURITY_GROUPS_COMMON`, `SECURITY_GROUPS_CONTENT_AUDIT`, and `SECURITY_GROUPS_USAGE_AUDIT`.

type PolicySecurityServicePolicyDataPtrInput added in v3.24.0 

type PolicySecurityServicePolicyDataPtrInput interface {
	pulumi.Input

	ToPolicySecurityServicePolicyDataPtrOutput() PolicySecurityServicePolicyDataPtrOutput
	ToPolicySecurityServicePolicyDataPtrOutputWithContext(context.Context) PolicySecurityServicePolicyDataPtrOutput
}

PolicySecurityServicePolicyDataPtrInput is an input type that accepts PolicySecurityServicePolicyDataArgs, PolicySecurityServicePolicyDataPtr and PolicySecurityServicePolicyDataPtrOutput values. You can construct a concrete instance of `PolicySecurityServicePolicyDataPtrInput` via: 

        PolicySecurityServicePolicyDataArgs{...}

or:

        nil

func PolicySecurityServicePolicyDataPtr added in v3.24.0 

func PolicySecurityServicePolicyDataPtr(v *PolicySecurityServicePolicyDataArgs) PolicySecurityServicePolicyDataPtrInput

type PolicySecurityServicePolicyDataPtrOutput added in v3.24.0 

type PolicySecurityServicePolicyDataPtrOutput struct{ *pulumi.OutputState }

func (PolicySecurityServicePolicyDataPtrOutput) Elem added in v3.24.0 

func (o PolicySecurityServicePolicyDataPtrOutput) Elem() PolicySecurityServicePolicyDataOutput

func (PolicySecurityServicePolicyDataPtrOutput) ElementType added in v3.24.0 

func (PolicySecurityServicePolicyDataPtrOutput) ElementType() reflect.Type

func (PolicySecurityServicePolicyDataPtrOutput) ManagedServiceData added in v3.24.0 

func (o PolicySecurityServicePolicyDataPtrOutput) ManagedServiceData() pulumi.StringPtrOutput

Details about the service that are specific to the service type, in JSON format. For service type `SHIELD_ADVANCED`, this is an empty string. Examples depending on `type` can be found in the [AWS Firewall Manager SecurityServicePolicyData API Reference](https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_SecurityServicePolicyData.html).

func (PolicySecurityServicePolicyDataPtrOutput) ToPolicySecurityServicePolicyDataPtrOutput added in v3.24.0 

func (o PolicySecurityServicePolicyDataPtrOutput) ToPolicySecurityServicePolicyDataPtrOutput() PolicySecurityServicePolicyDataPtrOutput

func (PolicySecurityServicePolicyDataPtrOutput) ToPolicySecurityServicePolicyDataPtrOutputWithContext added in v3.24.0 

func (o PolicySecurityServicePolicyDataPtrOutput) ToPolicySecurityServicePolicyDataPtrOutputWithContext(ctx context.Context) PolicySecurityServicePolicyDataPtrOutput

func (PolicySecurityServicePolicyDataPtrOutput) Type added in v3.24.0 

func (o PolicySecurityServicePolicyDataPtrOutput) Type() pulumi.StringPtrOutput

The service that the policy is using to protect the resources. Valid values are `WAFV2`, `WAF`, `SHIELD_ADVANCED`, `SECURITY_GROUPS_COMMON`, `SECURITY_GROUPS_CONTENT_AUDIT`, and `SECURITY_GROUPS_USAGE_AUDIT`.

type PolicyState added in v3.24.0 

type PolicyState struct {
	Arn pulumi.StringPtrInput
	// If true, the request will also perform a clean-up process. Defaults to `true`. More information can be found here [AWS Firewall Manager delete policy](https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_DeletePolicy.html)
	DeleteAllPolicyResources pulumi.BoolPtrInput
	// A map of lists, with a single key named 'account' with a list of AWS Account IDs to exclude from this policy.
	ExcludeMap PolicyExcludeMapPtrInput
	// A boolean value, if true the tags that are specified in the `resourceTags` are not protected by this policy. If set to false and resourceTags are populated, resources that contain tags will be protected by this policy.
	ExcludeResourceTags pulumi.BoolPtrInput
	// A map of lists, with a single key named 'account' with a list of AWS Account IDs to include for this policy.
	IncludeMap PolicyIncludeMapPtrInput
	// The friendly name of the AWS Firewall Manager Policy.
	Name pulumi.StringPtrInput
	// A unique identifier for each update to the policy.
	PolicyUpdateToken pulumi.StringPtrInput
	// A boolean value, indicates if the policy should automatically applied to resources that already exist in the account.
	RemediationEnabled pulumi.BoolPtrInput
	// A map of resource tags, that if present will filter protections on resources based on the exclude_resource_tags.
	ResourceTags pulumi.StringMapInput
	// A resource type to protect, valid values are: `AWS::ElasticLoadBalancingV2::LoadBalancer`, `AWS::ApiGateway::Stage`, `AWS::CloudFront::Distribution`, `AWS::EC2::Instance`, `AWS::EC2::NetworkInterface`, `AWS::EC2::SecurityGroup`. Conflicts with `resourceTypeList`.
	ResourceType pulumi.StringPtrInput
	// A list of resource types to protect, valid values are: `AWS::ElasticLoadBalancingV2::LoadBalancer`, `AWS::ApiGateway::Stage`, `AWS::CloudFront::Distribution`, `AWS::EC2::Instance`, `AWS::EC2::NetworkInterface`, `AWS::EC2::SecurityGroup`, and `AWS::EC2::VPC`. Conflicts with `resourceType`.
	ResourceTypeLists pulumi.StringArrayInput
	// The objects to include in Security Service Policy Data. Documented below.
	SecurityServicePolicyData PolicySecurityServicePolicyDataPtrInput
}

func (PolicyState) ElementType added in v3.24.0 

func (PolicyState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.