Documentation ¶
Index ¶
- type EventDataStore
- type EventDataStoreAdvancedEventSelector
- type EventDataStoreAdvancedEventSelectorArgs
- func (EventDataStoreAdvancedEventSelectorArgs) ElementType() reflect.Type
- func (i EventDataStoreAdvancedEventSelectorArgs) ToEventDataStoreAdvancedEventSelectorOutput() EventDataStoreAdvancedEventSelectorOutput
- func (i EventDataStoreAdvancedEventSelectorArgs) ToEventDataStoreAdvancedEventSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorOutput
- type EventDataStoreAdvancedEventSelectorArray
- func (EventDataStoreAdvancedEventSelectorArray) ElementType() reflect.Type
- func (i EventDataStoreAdvancedEventSelectorArray) ToEventDataStoreAdvancedEventSelectorArrayOutput() EventDataStoreAdvancedEventSelectorArrayOutput
- func (i EventDataStoreAdvancedEventSelectorArray) ToEventDataStoreAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorArrayOutput
- type EventDataStoreAdvancedEventSelectorArrayInput
- type EventDataStoreAdvancedEventSelectorArrayOutput
- func (EventDataStoreAdvancedEventSelectorArrayOutput) ElementType() reflect.Type
- func (o EventDataStoreAdvancedEventSelectorArrayOutput) Index(i pulumi.IntInput) EventDataStoreAdvancedEventSelectorOutput
- func (o EventDataStoreAdvancedEventSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorArrayOutput() EventDataStoreAdvancedEventSelectorArrayOutput
- func (o EventDataStoreAdvancedEventSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorArrayOutput
- type EventDataStoreAdvancedEventSelectorFieldSelector
- type EventDataStoreAdvancedEventSelectorFieldSelectorArgs
- func (EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ElementType() reflect.Type
- func (i EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutput() EventDataStoreAdvancedEventSelectorFieldSelectorOutput
- func (i EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorOutput
- type EventDataStoreAdvancedEventSelectorFieldSelectorArray
- func (EventDataStoreAdvancedEventSelectorFieldSelectorArray) ElementType() reflect.Type
- func (i EventDataStoreAdvancedEventSelectorFieldSelectorArray) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput() EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
- func (i EventDataStoreAdvancedEventSelectorFieldSelectorArray) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
- type EventDataStoreAdvancedEventSelectorFieldSelectorArrayInput
- type EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
- func (EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ElementType() reflect.Type
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) Index(i pulumi.IntInput) EventDataStoreAdvancedEventSelectorFieldSelectorOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput() EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
- type EventDataStoreAdvancedEventSelectorFieldSelectorInput
- type EventDataStoreAdvancedEventSelectorFieldSelectorOutput
- func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ElementType() reflect.Type
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) EndsWiths() pulumi.StringArrayOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) Equals() pulumi.StringArrayOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) Field() pulumi.StringPtrOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotEndsWiths() pulumi.StringArrayOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotEquals() pulumi.StringArrayOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotStartsWiths() pulumi.StringArrayOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) StartsWiths() pulumi.StringArrayOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutput() EventDataStoreAdvancedEventSelectorFieldSelectorOutput
- func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorOutput
- type EventDataStoreAdvancedEventSelectorInput
- type EventDataStoreAdvancedEventSelectorOutput
- func (EventDataStoreAdvancedEventSelectorOutput) ElementType() reflect.Type
- func (o EventDataStoreAdvancedEventSelectorOutput) FieldSelectors() EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
- func (o EventDataStoreAdvancedEventSelectorOutput) Name() pulumi.StringPtrOutput
- func (o EventDataStoreAdvancedEventSelectorOutput) ToEventDataStoreAdvancedEventSelectorOutput() EventDataStoreAdvancedEventSelectorOutput
- func (o EventDataStoreAdvancedEventSelectorOutput) ToEventDataStoreAdvancedEventSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorOutput
- type EventDataStoreArgs
- type EventDataStoreArray
- type EventDataStoreArrayInput
- type EventDataStoreArrayOutput
- func (EventDataStoreArrayOutput) ElementType() reflect.Type
- func (o EventDataStoreArrayOutput) Index(i pulumi.IntInput) EventDataStoreOutput
- func (o EventDataStoreArrayOutput) ToEventDataStoreArrayOutput() EventDataStoreArrayOutput
- func (o EventDataStoreArrayOutput) ToEventDataStoreArrayOutputWithContext(ctx context.Context) EventDataStoreArrayOutput
- type EventDataStoreInput
- type EventDataStoreMap
- type EventDataStoreMapInput
- type EventDataStoreMapOutput
- func (EventDataStoreMapOutput) ElementType() reflect.Type
- func (o EventDataStoreMapOutput) MapIndex(k pulumi.StringInput) EventDataStoreOutput
- func (o EventDataStoreMapOutput) ToEventDataStoreMapOutput() EventDataStoreMapOutput
- func (o EventDataStoreMapOutput) ToEventDataStoreMapOutputWithContext(ctx context.Context) EventDataStoreMapOutput
- type EventDataStoreOutput
- func (o EventDataStoreOutput) AdvancedEventSelectors() EventDataStoreAdvancedEventSelectorArrayOutput
- func (o EventDataStoreOutput) Arn() pulumi.StringOutput
- func (EventDataStoreOutput) ElementType() reflect.Type
- func (o EventDataStoreOutput) MultiRegionEnabled() pulumi.BoolPtrOutput
- func (o EventDataStoreOutput) Name() pulumi.StringOutput
- func (o EventDataStoreOutput) OrganizationEnabled() pulumi.BoolPtrOutput
- func (o EventDataStoreOutput) RetentionPeriod() pulumi.IntPtrOutput
- func (o EventDataStoreOutput) Tags() pulumi.StringMapOutput
- func (o EventDataStoreOutput) TagsAll() pulumi.StringMapOutput
- func (o EventDataStoreOutput) TerminationProtectionEnabled() pulumi.BoolPtrOutput
- func (o EventDataStoreOutput) ToEventDataStoreOutput() EventDataStoreOutput
- func (o EventDataStoreOutput) ToEventDataStoreOutputWithContext(ctx context.Context) EventDataStoreOutput
- type EventDataStoreState
- type GetFunctionArgs
- type GetFunctionOutputArgs
- type GetFunctionResult
- type GetFunctionResultOutput
- func (o GetFunctionResultOutput) Arn() pulumi.StringOutput
- func (o GetFunctionResultOutput) Code() pulumi.StringOutput
- func (o GetFunctionResultOutput) Comment() pulumi.StringOutput
- func (GetFunctionResultOutput) ElementType() reflect.Type
- func (o GetFunctionResultOutput) Etag() pulumi.StringOutput
- func (o GetFunctionResultOutput) Id() pulumi.StringOutput
- func (o GetFunctionResultOutput) LastModifiedTime() pulumi.StringOutput
- func (o GetFunctionResultOutput) Name() pulumi.StringOutput
- func (o GetFunctionResultOutput) Runtime() pulumi.StringOutput
- func (o GetFunctionResultOutput) Stage() pulumi.StringOutput
- func (o GetFunctionResultOutput) Status() pulumi.StringOutput
- func (o GetFunctionResultOutput) ToGetFunctionResultOutput() GetFunctionResultOutput
- func (o GetFunctionResultOutput) ToGetFunctionResultOutputWithContext(ctx context.Context) GetFunctionResultOutput
- type GetServiceAccountArgs
- type GetServiceAccountOutputArgs
- type GetServiceAccountResult
- type GetServiceAccountResultOutput
- func (o GetServiceAccountResultOutput) Arn() pulumi.StringOutput
- func (GetServiceAccountResultOutput) ElementType() reflect.Type
- func (o GetServiceAccountResultOutput) Id() pulumi.StringOutput
- func (o GetServiceAccountResultOutput) Region() pulumi.StringPtrOutput
- func (o GetServiceAccountResultOutput) ToGetServiceAccountResultOutput() GetServiceAccountResultOutput
- func (o GetServiceAccountResultOutput) ToGetServiceAccountResultOutputWithContext(ctx context.Context) GetServiceAccountResultOutput
- type Trail
- type TrailAdvancedEventSelector
- type TrailAdvancedEventSelectorArgs
- func (TrailAdvancedEventSelectorArgs) ElementType() reflect.Type
- func (i TrailAdvancedEventSelectorArgs) ToTrailAdvancedEventSelectorOutput() TrailAdvancedEventSelectorOutput
- func (i TrailAdvancedEventSelectorArgs) ToTrailAdvancedEventSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorOutput
- type TrailAdvancedEventSelectorArray
- func (TrailAdvancedEventSelectorArray) ElementType() reflect.Type
- func (i TrailAdvancedEventSelectorArray) ToTrailAdvancedEventSelectorArrayOutput() TrailAdvancedEventSelectorArrayOutput
- func (i TrailAdvancedEventSelectorArray) ToTrailAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorArrayOutput
- type TrailAdvancedEventSelectorArrayInput
- type TrailAdvancedEventSelectorArrayOutput
- func (TrailAdvancedEventSelectorArrayOutput) ElementType() reflect.Type
- func (o TrailAdvancedEventSelectorArrayOutput) Index(i pulumi.IntInput) TrailAdvancedEventSelectorOutput
- func (o TrailAdvancedEventSelectorArrayOutput) ToTrailAdvancedEventSelectorArrayOutput() TrailAdvancedEventSelectorArrayOutput
- func (o TrailAdvancedEventSelectorArrayOutput) ToTrailAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorArrayOutput
- type TrailAdvancedEventSelectorFieldSelector
- type TrailAdvancedEventSelectorFieldSelectorArgs
- func (TrailAdvancedEventSelectorFieldSelectorArgs) ElementType() reflect.Type
- func (i TrailAdvancedEventSelectorFieldSelectorArgs) ToTrailAdvancedEventSelectorFieldSelectorOutput() TrailAdvancedEventSelectorFieldSelectorOutput
- func (i TrailAdvancedEventSelectorFieldSelectorArgs) ToTrailAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorOutput
- type TrailAdvancedEventSelectorFieldSelectorArray
- func (TrailAdvancedEventSelectorFieldSelectorArray) ElementType() reflect.Type
- func (i TrailAdvancedEventSelectorFieldSelectorArray) ToTrailAdvancedEventSelectorFieldSelectorArrayOutput() TrailAdvancedEventSelectorFieldSelectorArrayOutput
- func (i TrailAdvancedEventSelectorFieldSelectorArray) ToTrailAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorArrayOutput
- type TrailAdvancedEventSelectorFieldSelectorArrayInput
- type TrailAdvancedEventSelectorFieldSelectorArrayOutput
- func (TrailAdvancedEventSelectorFieldSelectorArrayOutput) ElementType() reflect.Type
- func (o TrailAdvancedEventSelectorFieldSelectorArrayOutput) Index(i pulumi.IntInput) TrailAdvancedEventSelectorFieldSelectorOutput
- func (o TrailAdvancedEventSelectorFieldSelectorArrayOutput) ToTrailAdvancedEventSelectorFieldSelectorArrayOutput() TrailAdvancedEventSelectorFieldSelectorArrayOutput
- func (o TrailAdvancedEventSelectorFieldSelectorArrayOutput) ToTrailAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorArrayOutput
- type TrailAdvancedEventSelectorFieldSelectorInput
- type TrailAdvancedEventSelectorFieldSelectorOutput
- func (TrailAdvancedEventSelectorFieldSelectorOutput) ElementType() reflect.Type
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) EndsWiths() pulumi.StringArrayOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) Equals() pulumi.StringArrayOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) Field() pulumi.StringOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) NotEndsWiths() pulumi.StringArrayOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) NotEquals() pulumi.StringArrayOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) NotStartsWiths() pulumi.StringArrayOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) StartsWiths() pulumi.StringArrayOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) ToTrailAdvancedEventSelectorFieldSelectorOutput() TrailAdvancedEventSelectorFieldSelectorOutput
- func (o TrailAdvancedEventSelectorFieldSelectorOutput) ToTrailAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorOutput
- type TrailAdvancedEventSelectorInput
- type TrailAdvancedEventSelectorOutput
- func (TrailAdvancedEventSelectorOutput) ElementType() reflect.Type
- func (o TrailAdvancedEventSelectorOutput) FieldSelectors() TrailAdvancedEventSelectorFieldSelectorArrayOutput
- func (o TrailAdvancedEventSelectorOutput) Name() pulumi.StringPtrOutput
- func (o TrailAdvancedEventSelectorOutput) ToTrailAdvancedEventSelectorOutput() TrailAdvancedEventSelectorOutput
- func (o TrailAdvancedEventSelectorOutput) ToTrailAdvancedEventSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorOutput
- type TrailArgs
- type TrailArray
- type TrailArrayInput
- type TrailArrayOutput
- type TrailEventSelector
- type TrailEventSelectorArgs
- type TrailEventSelectorArray
- type TrailEventSelectorArrayInput
- type TrailEventSelectorArrayOutput
- func (TrailEventSelectorArrayOutput) ElementType() reflect.Type
- func (o TrailEventSelectorArrayOutput) Index(i pulumi.IntInput) TrailEventSelectorOutput
- func (o TrailEventSelectorArrayOutput) ToTrailEventSelectorArrayOutput() TrailEventSelectorArrayOutput
- func (o TrailEventSelectorArrayOutput) ToTrailEventSelectorArrayOutputWithContext(ctx context.Context) TrailEventSelectorArrayOutput
- type TrailEventSelectorDataResource
- type TrailEventSelectorDataResourceArgs
- func (TrailEventSelectorDataResourceArgs) ElementType() reflect.Type
- func (i TrailEventSelectorDataResourceArgs) ToTrailEventSelectorDataResourceOutput() TrailEventSelectorDataResourceOutput
- func (i TrailEventSelectorDataResourceArgs) ToTrailEventSelectorDataResourceOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceOutput
- type TrailEventSelectorDataResourceArray
- func (TrailEventSelectorDataResourceArray) ElementType() reflect.Type
- func (i TrailEventSelectorDataResourceArray) ToTrailEventSelectorDataResourceArrayOutput() TrailEventSelectorDataResourceArrayOutput
- func (i TrailEventSelectorDataResourceArray) ToTrailEventSelectorDataResourceArrayOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceArrayOutput
- type TrailEventSelectorDataResourceArrayInput
- type TrailEventSelectorDataResourceArrayOutput
- func (TrailEventSelectorDataResourceArrayOutput) ElementType() reflect.Type
- func (o TrailEventSelectorDataResourceArrayOutput) Index(i pulumi.IntInput) TrailEventSelectorDataResourceOutput
- func (o TrailEventSelectorDataResourceArrayOutput) ToTrailEventSelectorDataResourceArrayOutput() TrailEventSelectorDataResourceArrayOutput
- func (o TrailEventSelectorDataResourceArrayOutput) ToTrailEventSelectorDataResourceArrayOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceArrayOutput
- type TrailEventSelectorDataResourceInput
- type TrailEventSelectorDataResourceOutput
- func (TrailEventSelectorDataResourceOutput) ElementType() reflect.Type
- func (o TrailEventSelectorDataResourceOutput) ToTrailEventSelectorDataResourceOutput() TrailEventSelectorDataResourceOutput
- func (o TrailEventSelectorDataResourceOutput) ToTrailEventSelectorDataResourceOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceOutput
- func (o TrailEventSelectorDataResourceOutput) Type() pulumi.StringOutput
- func (o TrailEventSelectorDataResourceOutput) Values() pulumi.StringArrayOutput
- type TrailEventSelectorInput
- type TrailEventSelectorOutput
- func (o TrailEventSelectorOutput) DataResources() TrailEventSelectorDataResourceArrayOutput
- func (TrailEventSelectorOutput) ElementType() reflect.Type
- func (o TrailEventSelectorOutput) ExcludeManagementEventSources() pulumi.StringArrayOutput
- func (o TrailEventSelectorOutput) IncludeManagementEvents() pulumi.BoolPtrOutput
- func (o TrailEventSelectorOutput) ReadWriteType() pulumi.StringPtrOutput
- func (o TrailEventSelectorOutput) ToTrailEventSelectorOutput() TrailEventSelectorOutput
- func (o TrailEventSelectorOutput) ToTrailEventSelectorOutputWithContext(ctx context.Context) TrailEventSelectorOutput
- type TrailInput
- type TrailInsightSelector
- type TrailInsightSelectorArgs
- type TrailInsightSelectorArray
- type TrailInsightSelectorArrayInput
- type TrailInsightSelectorArrayOutput
- func (TrailInsightSelectorArrayOutput) ElementType() reflect.Type
- func (o TrailInsightSelectorArrayOutput) Index(i pulumi.IntInput) TrailInsightSelectorOutput
- func (o TrailInsightSelectorArrayOutput) ToTrailInsightSelectorArrayOutput() TrailInsightSelectorArrayOutput
- func (o TrailInsightSelectorArrayOutput) ToTrailInsightSelectorArrayOutputWithContext(ctx context.Context) TrailInsightSelectorArrayOutput
- type TrailInsightSelectorInput
- type TrailInsightSelectorOutput
- func (TrailInsightSelectorOutput) ElementType() reflect.Type
- func (o TrailInsightSelectorOutput) InsightType() pulumi.StringOutput
- func (o TrailInsightSelectorOutput) ToTrailInsightSelectorOutput() TrailInsightSelectorOutput
- func (o TrailInsightSelectorOutput) ToTrailInsightSelectorOutputWithContext(ctx context.Context) TrailInsightSelectorOutput
- type TrailMap
- type TrailMapInput
- type TrailMapOutput
- type TrailOutput
- func (o TrailOutput) AdvancedEventSelectors() TrailAdvancedEventSelectorArrayOutput
- func (o TrailOutput) Arn() pulumi.StringOutput
- func (o TrailOutput) CloudWatchLogsGroupArn() pulumi.StringPtrOutput
- func (o TrailOutput) CloudWatchLogsRoleArn() pulumi.StringPtrOutput
- func (TrailOutput) ElementType() reflect.Type
- func (o TrailOutput) EnableLogFileValidation() pulumi.BoolPtrOutput
- func (o TrailOutput) EnableLogging() pulumi.BoolPtrOutput
- func (o TrailOutput) EventSelectors() TrailEventSelectorArrayOutput
- func (o TrailOutput) HomeRegion() pulumi.StringOutput
- func (o TrailOutput) IncludeGlobalServiceEvents() pulumi.BoolPtrOutput
- func (o TrailOutput) InsightSelectors() TrailInsightSelectorArrayOutput
- func (o TrailOutput) IsMultiRegionTrail() pulumi.BoolPtrOutput
- func (o TrailOutput) IsOrganizationTrail() pulumi.BoolPtrOutput
- func (o TrailOutput) KmsKeyId() pulumi.StringPtrOutput
- func (o TrailOutput) Name() pulumi.StringOutput
- func (o TrailOutput) S3BucketName() pulumi.StringOutput
- func (o TrailOutput) S3KeyPrefix() pulumi.StringPtrOutput
- func (o TrailOutput) SnsTopicName() pulumi.StringPtrOutput
- func (o TrailOutput) Tags() pulumi.StringMapOutput
- func (o TrailOutput) TagsAll() pulumi.StringMapOutput
- func (o TrailOutput) ToTrailOutput() TrailOutput
- func (o TrailOutput) ToTrailOutputWithContext(ctx context.Context) TrailOutput
- type TrailState
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type EventDataStore ¶ added in v5.1.0
type EventDataStore struct { pulumi.CustomResourceState // The advanced event selectors to use to select the events for the data store. For more information about how to use advanced event selectors, see [Log events by using advanced event selectors](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced) in the CloudTrail User Guide. AdvancedEventSelectors EventDataStoreAdvancedEventSelectorArrayOutput `pulumi:"advancedEventSelectors"` // ARN of the event data store. Arn pulumi.StringOutput `pulumi:"arn"` // Specifies whether the event data store includes events from all regions, or only from the region in which the event data store is created. Default: `true`. MultiRegionEnabled pulumi.BoolPtrOutput `pulumi:"multiRegionEnabled"` // Specifies the name of the advanced event selector. Name pulumi.StringOutput `pulumi:"name"` // Specifies whether an event data store collects events logged for an organization in AWS Organizations. Default: `false`. OrganizationEnabled pulumi.BoolPtrOutput `pulumi:"organizationEnabled"` // The retention period of the event data store, in days. You can set a retention period of up to 2555 days, the equivalent of seven years. Default: `2555`. RetentionPeriod pulumi.IntPtrOutput `pulumi:"retentionPeriod"` // A map of tags to assign to the resource. If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level. Tags pulumi.StringMapOutput `pulumi:"tags"` TagsAll pulumi.StringMapOutput `pulumi:"tagsAll"` // Specifies whether termination protection is enabled for the event data store. If termination protection is enabled, you cannot delete the event data store until termination protection is disabled. Default: `true`. TerminationProtectionEnabled pulumi.BoolPtrOutput `pulumi:"terminationProtectionEnabled"` }
Provides a CloudTrail Event Data Store.
More information about event data stores can be found in the [Event Data Store User Guide](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html).
> **Tip:** For an organization event data store you must create this resource in the management account.
## Example Usage ### Basic
The most simple event data store configuration requires us to only set the `name` attribute. The event data store will automatically capture all management events. To capture management events from all the regions, `multiRegionEnabled` must be `true`.
```go package main
import (
"github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { _, err := cloudtrail.NewEventDataStore(ctx, "example", nil) if err != nil { return err } return nil }) }
``` ### Data Event Logging
CloudTrail can log [Data Events](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) for certain services such as S3 bucket objects and Lambda function invocations. Additional information about data event configuration can be found in the following links:
- [CloudTrail API AdvancedFieldSelector documentation](https://docs.aws.amazon.com/awscloudtrail/latest/APIReference/API_AdvancedFieldSelector.html) ### Log all DynamoDB PutEvent actions for a specific DynamoDB table
```go package main
import (
"github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/dynamodb" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { table, err := dynamodb.LookupTable(ctx, &dynamodb.LookupTableArgs{ Name: "not-important-dynamodb-table", }, nil) if err != nil { return err } _, err = cloudtrail.NewEventDataStore(ctx, "example", &cloudtrail.EventDataStoreArgs{ AdvancedEventSelectors: cloudtrail.EventDataStoreAdvancedEventSelectorArray{ &cloudtrail.EventDataStoreAdvancedEventSelectorArgs{ Name: pulumi.String("Log all DynamoDB PutEvent actions for a specific DynamoDB table"), FieldSelectors: cloudtrail.EventDataStoreAdvancedEventSelectorFieldSelectorArray{ &cloudtrail.EventDataStoreAdvancedEventSelectorFieldSelectorArgs{ Field: pulumi.String("eventCategory"), Equals: pulumi.StringArray{ pulumi.String("Data"), }, }, &cloudtrail.EventDataStoreAdvancedEventSelectorFieldSelectorArgs{ Field: pulumi.String("resources.type"), Equals: pulumi.StringArray{ pulumi.String("AWS::DynamoDB::Table"), }, }, &cloudtrail.EventDataStoreAdvancedEventSelectorFieldSelectorArgs{ Field: pulumi.String("eventName"), Equals: pulumi.StringArray{ pulumi.String("PutItem"), }, }, &cloudtrail.EventDataStoreAdvancedEventSelectorFieldSelectorArgs{ Field: pulumi.String("resources.ARN"), Equals: pulumi.StringArray{ pulumi.String(table.Arn), }, }, }, }, }, }) if err != nil { return err } return nil }) }
```
## Import
Event data stores can be imported using their `arn`, e.g.,
```sh
$ pulumi import aws:cloudtrail/eventDataStore:EventDataStore example arn:aws:cloudtrail:us-east-1:123456789123:eventdatastore/22333815-4414-412c-b155-dd254033gfhf
```
func GetEventDataStore ¶ added in v5.1.0
func GetEventDataStore(ctx *pulumi.Context, name string, id pulumi.IDInput, state *EventDataStoreState, opts ...pulumi.ResourceOption) (*EventDataStore, error)
GetEventDataStore gets an existing EventDataStore resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewEventDataStore ¶ added in v5.1.0
func NewEventDataStore(ctx *pulumi.Context, name string, args *EventDataStoreArgs, opts ...pulumi.ResourceOption) (*EventDataStore, error)
NewEventDataStore registers a new resource with the given unique name, arguments, and options.
func (*EventDataStore) ElementType ¶ added in v5.1.0
func (*EventDataStore) ElementType() reflect.Type
func (*EventDataStore) ToEventDataStoreOutput ¶ added in v5.1.0
func (i *EventDataStore) ToEventDataStoreOutput() EventDataStoreOutput
func (*EventDataStore) ToEventDataStoreOutputWithContext ¶ added in v5.1.0
func (i *EventDataStore) ToEventDataStoreOutputWithContext(ctx context.Context) EventDataStoreOutput
type EventDataStoreAdvancedEventSelector ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelector struct { // Specifies the selector statements in an advanced event selector. Fields documented below. FieldSelectors []EventDataStoreAdvancedEventSelectorFieldSelector `pulumi:"fieldSelectors"` // Specifies the name of the advanced event selector. Name *string `pulumi:"name"` }
type EventDataStoreAdvancedEventSelectorArgs ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorArgs struct { // Specifies the selector statements in an advanced event selector. Fields documented below. FieldSelectors EventDataStoreAdvancedEventSelectorFieldSelectorArrayInput `pulumi:"fieldSelectors"` // Specifies the name of the advanced event selector. Name pulumi.StringPtrInput `pulumi:"name"` }
func (EventDataStoreAdvancedEventSelectorArgs) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorArgs) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorArgs) ToEventDataStoreAdvancedEventSelectorOutput ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorArgs) ToEventDataStoreAdvancedEventSelectorOutput() EventDataStoreAdvancedEventSelectorOutput
func (EventDataStoreAdvancedEventSelectorArgs) ToEventDataStoreAdvancedEventSelectorOutputWithContext ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorArgs) ToEventDataStoreAdvancedEventSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorOutput
type EventDataStoreAdvancedEventSelectorArray ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorArray []EventDataStoreAdvancedEventSelectorInput
func (EventDataStoreAdvancedEventSelectorArray) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorArray) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorArray) ToEventDataStoreAdvancedEventSelectorArrayOutput ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorArray) ToEventDataStoreAdvancedEventSelectorArrayOutput() EventDataStoreAdvancedEventSelectorArrayOutput
func (EventDataStoreAdvancedEventSelectorArray) ToEventDataStoreAdvancedEventSelectorArrayOutputWithContext ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorArray) ToEventDataStoreAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorArrayOutput
type EventDataStoreAdvancedEventSelectorArrayInput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorArrayInput interface { pulumi.Input ToEventDataStoreAdvancedEventSelectorArrayOutput() EventDataStoreAdvancedEventSelectorArrayOutput ToEventDataStoreAdvancedEventSelectorArrayOutputWithContext(context.Context) EventDataStoreAdvancedEventSelectorArrayOutput }
EventDataStoreAdvancedEventSelectorArrayInput is an input type that accepts EventDataStoreAdvancedEventSelectorArray and EventDataStoreAdvancedEventSelectorArrayOutput values. You can construct a concrete instance of `EventDataStoreAdvancedEventSelectorArrayInput` via:
EventDataStoreAdvancedEventSelectorArray{ EventDataStoreAdvancedEventSelectorArgs{...} }
type EventDataStoreAdvancedEventSelectorArrayOutput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorArrayOutput struct{ *pulumi.OutputState }
func (EventDataStoreAdvancedEventSelectorArrayOutput) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorArrayOutput) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorArrayOutput ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorArrayOutput() EventDataStoreAdvancedEventSelectorArrayOutput
func (EventDataStoreAdvancedEventSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorArrayOutputWithContext ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorArrayOutput
type EventDataStoreAdvancedEventSelectorFieldSelector ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorFieldSelector struct { // A list of values that includes events that match the last few characters of the event record field specified as the value of `field`. EndsWiths []string `pulumi:"endsWiths"` // A list of values that includes events that match the exact value of the event record field specified as the value of `field`. This is the only valid operator that you can use with the `readOnly`, `eventCategory`, and `resources.type` fields. Equals []string `pulumi:"equals"` // Specifies a field in an event record on which to filter events to be logged. You can specify only the following values: `readOnly`, `eventSource`, `eventName`, `eventCategory`, `resources.type`, `resources.ARN`. Field *string `pulumi:"field"` // A list of values that excludes events that match the last few characters of the event record field specified as the value of `field`. NotEndsWiths []string `pulumi:"notEndsWiths"` // A list of values that excludes events that match the exact value of the event record field specified as the value of `field`. NotEquals []string `pulumi:"notEquals"` // A list of values that excludes events that match the first few characters of the event record field specified as the value of `field`. NotStartsWiths []string `pulumi:"notStartsWiths"` // A list of values that includes events that match the first few characters of the event record field specified as the value of `field`. StartsWiths []string `pulumi:"startsWiths"` }
type EventDataStoreAdvancedEventSelectorFieldSelectorArgs ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorFieldSelectorArgs struct { // A list of values that includes events that match the last few characters of the event record field specified as the value of `field`. EndsWiths pulumi.StringArrayInput `pulumi:"endsWiths"` // A list of values that includes events that match the exact value of the event record field specified as the value of `field`. This is the only valid operator that you can use with the `readOnly`, `eventCategory`, and `resources.type` fields. Equals pulumi.StringArrayInput `pulumi:"equals"` // Specifies a field in an event record on which to filter events to be logged. You can specify only the following values: `readOnly`, `eventSource`, `eventName`, `eventCategory`, `resources.type`, `resources.ARN`. Field pulumi.StringPtrInput `pulumi:"field"` // A list of values that excludes events that match the last few characters of the event record field specified as the value of `field`. NotEndsWiths pulumi.StringArrayInput `pulumi:"notEndsWiths"` // A list of values that excludes events that match the exact value of the event record field specified as the value of `field`. NotEquals pulumi.StringArrayInput `pulumi:"notEquals"` // A list of values that excludes events that match the first few characters of the event record field specified as the value of `field`. NotStartsWiths pulumi.StringArrayInput `pulumi:"notStartsWiths"` // A list of values that includes events that match the first few characters of the event record field specified as the value of `field`. StartsWiths pulumi.StringArrayInput `pulumi:"startsWiths"` }
func (EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutput ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutput() EventDataStoreAdvancedEventSelectorFieldSelectorOutput
func (EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutputWithContext ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorFieldSelectorArgs) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorOutput
type EventDataStoreAdvancedEventSelectorFieldSelectorArray ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorFieldSelectorArray []EventDataStoreAdvancedEventSelectorFieldSelectorInput
func (EventDataStoreAdvancedEventSelectorFieldSelectorArray) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorFieldSelectorArray) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorFieldSelectorArray) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorFieldSelectorArray) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput() EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
func (EventDataStoreAdvancedEventSelectorFieldSelectorArray) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutputWithContext ¶ added in v5.1.0
func (i EventDataStoreAdvancedEventSelectorFieldSelectorArray) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
type EventDataStoreAdvancedEventSelectorFieldSelectorArrayInput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorFieldSelectorArrayInput interface { pulumi.Input ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput() EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutputWithContext(context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput }
EventDataStoreAdvancedEventSelectorFieldSelectorArrayInput is an input type that accepts EventDataStoreAdvancedEventSelectorFieldSelectorArray and EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput values. You can construct a concrete instance of `EventDataStoreAdvancedEventSelectorFieldSelectorArrayInput` via:
EventDataStoreAdvancedEventSelectorFieldSelectorArray{ EventDataStoreAdvancedEventSelectorFieldSelectorArgs{...} }
type EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput struct{ *pulumi.OutputState }
func (EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput() EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
func (EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutputWithContext ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
type EventDataStoreAdvancedEventSelectorFieldSelectorInput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorFieldSelectorInput interface { pulumi.Input ToEventDataStoreAdvancedEventSelectorFieldSelectorOutput() EventDataStoreAdvancedEventSelectorFieldSelectorOutput ToEventDataStoreAdvancedEventSelectorFieldSelectorOutputWithContext(context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorOutput }
EventDataStoreAdvancedEventSelectorFieldSelectorInput is an input type that accepts EventDataStoreAdvancedEventSelectorFieldSelectorArgs and EventDataStoreAdvancedEventSelectorFieldSelectorOutput values. You can construct a concrete instance of `EventDataStoreAdvancedEventSelectorFieldSelectorInput` via:
EventDataStoreAdvancedEventSelectorFieldSelectorArgs{...}
type EventDataStoreAdvancedEventSelectorFieldSelectorOutput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorFieldSelectorOutput struct{ *pulumi.OutputState }
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) EndsWiths ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) EndsWiths() pulumi.StringArrayOutput
A list of values that includes events that match the last few characters of the event record field specified as the value of `field`.
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) Equals ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) Equals() pulumi.StringArrayOutput
A list of values that includes events that match the exact value of the event record field specified as the value of `field`. This is the only valid operator that you can use with the `readOnly`, `eventCategory`, and `resources.type` fields.
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) Field ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) Field() pulumi.StringPtrOutput
Specifies a field in an event record on which to filter events to be logged. You can specify only the following values: `readOnly`, `eventSource`, `eventName`, `eventCategory`, `resources.type`, `resources.ARN`.
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotEndsWiths ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotEndsWiths() pulumi.StringArrayOutput
A list of values that excludes events that match the last few characters of the event record field specified as the value of `field`.
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotEquals ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotEquals() pulumi.StringArrayOutput
A list of values that excludes events that match the exact value of the event record field specified as the value of `field`.
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotStartsWiths ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) NotStartsWiths() pulumi.StringArrayOutput
A list of values that excludes events that match the first few characters of the event record field specified as the value of `field`.
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) StartsWiths ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) StartsWiths() pulumi.StringArrayOutput
A list of values that includes events that match the first few characters of the event record field specified as the value of `field`.
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutput ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutput() EventDataStoreAdvancedEventSelectorFieldSelectorOutput
func (EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutputWithContext ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorFieldSelectorOutput) ToEventDataStoreAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorFieldSelectorOutput
type EventDataStoreAdvancedEventSelectorInput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorInput interface { pulumi.Input ToEventDataStoreAdvancedEventSelectorOutput() EventDataStoreAdvancedEventSelectorOutput ToEventDataStoreAdvancedEventSelectorOutputWithContext(context.Context) EventDataStoreAdvancedEventSelectorOutput }
EventDataStoreAdvancedEventSelectorInput is an input type that accepts EventDataStoreAdvancedEventSelectorArgs and EventDataStoreAdvancedEventSelectorOutput values. You can construct a concrete instance of `EventDataStoreAdvancedEventSelectorInput` via:
EventDataStoreAdvancedEventSelectorArgs{...}
type EventDataStoreAdvancedEventSelectorOutput ¶ added in v5.1.0
type EventDataStoreAdvancedEventSelectorOutput struct{ *pulumi.OutputState }
func (EventDataStoreAdvancedEventSelectorOutput) ElementType ¶ added in v5.1.0
func (EventDataStoreAdvancedEventSelectorOutput) ElementType() reflect.Type
func (EventDataStoreAdvancedEventSelectorOutput) FieldSelectors ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorOutput) FieldSelectors() EventDataStoreAdvancedEventSelectorFieldSelectorArrayOutput
Specifies the selector statements in an advanced event selector. Fields documented below.
func (EventDataStoreAdvancedEventSelectorOutput) Name ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorOutput) Name() pulumi.StringPtrOutput
Specifies the name of the advanced event selector.
func (EventDataStoreAdvancedEventSelectorOutput) ToEventDataStoreAdvancedEventSelectorOutput ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorOutput) ToEventDataStoreAdvancedEventSelectorOutput() EventDataStoreAdvancedEventSelectorOutput
func (EventDataStoreAdvancedEventSelectorOutput) ToEventDataStoreAdvancedEventSelectorOutputWithContext ¶ added in v5.1.0
func (o EventDataStoreAdvancedEventSelectorOutput) ToEventDataStoreAdvancedEventSelectorOutputWithContext(ctx context.Context) EventDataStoreAdvancedEventSelectorOutput
type EventDataStoreArgs ¶ added in v5.1.0
type EventDataStoreArgs struct { // The advanced event selectors to use to select the events for the data store. For more information about how to use advanced event selectors, see [Log events by using advanced event selectors](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced) in the CloudTrail User Guide. AdvancedEventSelectors EventDataStoreAdvancedEventSelectorArrayInput // Specifies whether the event data store includes events from all regions, or only from the region in which the event data store is created. Default: `true`. MultiRegionEnabled pulumi.BoolPtrInput // Specifies the name of the advanced event selector. Name pulumi.StringPtrInput // Specifies whether an event data store collects events logged for an organization in AWS Organizations. Default: `false`. OrganizationEnabled pulumi.BoolPtrInput // The retention period of the event data store, in days. You can set a retention period of up to 2555 days, the equivalent of seven years. Default: `2555`. RetentionPeriod pulumi.IntPtrInput // A map of tags to assign to the resource. If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level. Tags pulumi.StringMapInput // Specifies whether termination protection is enabled for the event data store. If termination protection is enabled, you cannot delete the event data store until termination protection is disabled. Default: `true`. TerminationProtectionEnabled pulumi.BoolPtrInput }
The set of arguments for constructing a EventDataStore resource.
func (EventDataStoreArgs) ElementType ¶ added in v5.1.0
func (EventDataStoreArgs) ElementType() reflect.Type
type EventDataStoreArray ¶ added in v5.1.0
type EventDataStoreArray []EventDataStoreInput
func (EventDataStoreArray) ElementType ¶ added in v5.1.0
func (EventDataStoreArray) ElementType() reflect.Type
func (EventDataStoreArray) ToEventDataStoreArrayOutput ¶ added in v5.1.0
func (i EventDataStoreArray) ToEventDataStoreArrayOutput() EventDataStoreArrayOutput
func (EventDataStoreArray) ToEventDataStoreArrayOutputWithContext ¶ added in v5.1.0
func (i EventDataStoreArray) ToEventDataStoreArrayOutputWithContext(ctx context.Context) EventDataStoreArrayOutput
type EventDataStoreArrayInput ¶ added in v5.1.0
type EventDataStoreArrayInput interface { pulumi.Input ToEventDataStoreArrayOutput() EventDataStoreArrayOutput ToEventDataStoreArrayOutputWithContext(context.Context) EventDataStoreArrayOutput }
EventDataStoreArrayInput is an input type that accepts EventDataStoreArray and EventDataStoreArrayOutput values. You can construct a concrete instance of `EventDataStoreArrayInput` via:
EventDataStoreArray{ EventDataStoreArgs{...} }
type EventDataStoreArrayOutput ¶ added in v5.1.0
type EventDataStoreArrayOutput struct{ *pulumi.OutputState }
func (EventDataStoreArrayOutput) ElementType ¶ added in v5.1.0
func (EventDataStoreArrayOutput) ElementType() reflect.Type
func (EventDataStoreArrayOutput) Index ¶ added in v5.1.0
func (o EventDataStoreArrayOutput) Index(i pulumi.IntInput) EventDataStoreOutput
func (EventDataStoreArrayOutput) ToEventDataStoreArrayOutput ¶ added in v5.1.0
func (o EventDataStoreArrayOutput) ToEventDataStoreArrayOutput() EventDataStoreArrayOutput
func (EventDataStoreArrayOutput) ToEventDataStoreArrayOutputWithContext ¶ added in v5.1.0
func (o EventDataStoreArrayOutput) ToEventDataStoreArrayOutputWithContext(ctx context.Context) EventDataStoreArrayOutput
type EventDataStoreInput ¶ added in v5.1.0
type EventDataStoreInput interface { pulumi.Input ToEventDataStoreOutput() EventDataStoreOutput ToEventDataStoreOutputWithContext(ctx context.Context) EventDataStoreOutput }
type EventDataStoreMap ¶ added in v5.1.0
type EventDataStoreMap map[string]EventDataStoreInput
func (EventDataStoreMap) ElementType ¶ added in v5.1.0
func (EventDataStoreMap) ElementType() reflect.Type
func (EventDataStoreMap) ToEventDataStoreMapOutput ¶ added in v5.1.0
func (i EventDataStoreMap) ToEventDataStoreMapOutput() EventDataStoreMapOutput
func (EventDataStoreMap) ToEventDataStoreMapOutputWithContext ¶ added in v5.1.0
func (i EventDataStoreMap) ToEventDataStoreMapOutputWithContext(ctx context.Context) EventDataStoreMapOutput
type EventDataStoreMapInput ¶ added in v5.1.0
type EventDataStoreMapInput interface { pulumi.Input ToEventDataStoreMapOutput() EventDataStoreMapOutput ToEventDataStoreMapOutputWithContext(context.Context) EventDataStoreMapOutput }
EventDataStoreMapInput is an input type that accepts EventDataStoreMap and EventDataStoreMapOutput values. You can construct a concrete instance of `EventDataStoreMapInput` via:
EventDataStoreMap{ "key": EventDataStoreArgs{...} }
type EventDataStoreMapOutput ¶ added in v5.1.0
type EventDataStoreMapOutput struct{ *pulumi.OutputState }
func (EventDataStoreMapOutput) ElementType ¶ added in v5.1.0
func (EventDataStoreMapOutput) ElementType() reflect.Type
func (EventDataStoreMapOutput) MapIndex ¶ added in v5.1.0
func (o EventDataStoreMapOutput) MapIndex(k pulumi.StringInput) EventDataStoreOutput
func (EventDataStoreMapOutput) ToEventDataStoreMapOutput ¶ added in v5.1.0
func (o EventDataStoreMapOutput) ToEventDataStoreMapOutput() EventDataStoreMapOutput
func (EventDataStoreMapOutput) ToEventDataStoreMapOutputWithContext ¶ added in v5.1.0
func (o EventDataStoreMapOutput) ToEventDataStoreMapOutputWithContext(ctx context.Context) EventDataStoreMapOutput
type EventDataStoreOutput ¶ added in v5.1.0
type EventDataStoreOutput struct{ *pulumi.OutputState }
func (EventDataStoreOutput) AdvancedEventSelectors ¶ added in v5.4.0
func (o EventDataStoreOutput) AdvancedEventSelectors() EventDataStoreAdvancedEventSelectorArrayOutput
The advanced event selectors to use to select the events for the data store. For more information about how to use advanced event selectors, see [Log events by using advanced event selectors](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced) in the CloudTrail User Guide.
func (EventDataStoreOutput) Arn ¶ added in v5.4.0
func (o EventDataStoreOutput) Arn() pulumi.StringOutput
ARN of the event data store.
func (EventDataStoreOutput) ElementType ¶ added in v5.1.0
func (EventDataStoreOutput) ElementType() reflect.Type
func (EventDataStoreOutput) MultiRegionEnabled ¶ added in v5.4.0
func (o EventDataStoreOutput) MultiRegionEnabled() pulumi.BoolPtrOutput
Specifies whether the event data store includes events from all regions, or only from the region in which the event data store is created. Default: `true`.
func (EventDataStoreOutput) Name ¶ added in v5.4.0
func (o EventDataStoreOutput) Name() pulumi.StringOutput
Specifies the name of the advanced event selector.
func (EventDataStoreOutput) OrganizationEnabled ¶ added in v5.4.0
func (o EventDataStoreOutput) OrganizationEnabled() pulumi.BoolPtrOutput
Specifies whether an event data store collects events logged for an organization in AWS Organizations. Default: `false`.
func (EventDataStoreOutput) RetentionPeriod ¶ added in v5.4.0
func (o EventDataStoreOutput) RetentionPeriod() pulumi.IntPtrOutput
The retention period of the event data store, in days. You can set a retention period of up to 2555 days, the equivalent of seven years. Default: `2555`.
func (EventDataStoreOutput) Tags ¶ added in v5.4.0
func (o EventDataStoreOutput) Tags() pulumi.StringMapOutput
A map of tags to assign to the resource. If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.
func (EventDataStoreOutput) TagsAll ¶ added in v5.4.0
func (o EventDataStoreOutput) TagsAll() pulumi.StringMapOutput
func (EventDataStoreOutput) TerminationProtectionEnabled ¶ added in v5.4.0
func (o EventDataStoreOutput) TerminationProtectionEnabled() pulumi.BoolPtrOutput
Specifies whether termination protection is enabled for the event data store. If termination protection is enabled, you cannot delete the event data store until termination protection is disabled. Default: `true`.
func (EventDataStoreOutput) ToEventDataStoreOutput ¶ added in v5.1.0
func (o EventDataStoreOutput) ToEventDataStoreOutput() EventDataStoreOutput
func (EventDataStoreOutput) ToEventDataStoreOutputWithContext ¶ added in v5.1.0
func (o EventDataStoreOutput) ToEventDataStoreOutputWithContext(ctx context.Context) EventDataStoreOutput
type EventDataStoreState ¶ added in v5.1.0
type EventDataStoreState struct { // The advanced event selectors to use to select the events for the data store. For more information about how to use advanced event selectors, see [Log events by using advanced event selectors](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced) in the CloudTrail User Guide. AdvancedEventSelectors EventDataStoreAdvancedEventSelectorArrayInput // ARN of the event data store. Arn pulumi.StringPtrInput // Specifies whether the event data store includes events from all regions, or only from the region in which the event data store is created. Default: `true`. MultiRegionEnabled pulumi.BoolPtrInput // Specifies the name of the advanced event selector. Name pulumi.StringPtrInput // Specifies whether an event data store collects events logged for an organization in AWS Organizations. Default: `false`. OrganizationEnabled pulumi.BoolPtrInput // The retention period of the event data store, in days. You can set a retention period of up to 2555 days, the equivalent of seven years. Default: `2555`. RetentionPeriod pulumi.IntPtrInput // A map of tags to assign to the resource. If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level. Tags pulumi.StringMapInput TagsAll pulumi.StringMapInput // Specifies whether termination protection is enabled for the event data store. If termination protection is enabled, you cannot delete the event data store until termination protection is disabled. Default: `true`. TerminationProtectionEnabled pulumi.BoolPtrInput }
func (EventDataStoreState) ElementType ¶ added in v5.1.0
func (EventDataStoreState) ElementType() reflect.Type
type GetFunctionArgs ¶
type GetFunctionArgs struct { // Name of the CloudFront function. Name string `pulumi:"name"` // The function’s stage, either `DEVELOPMENT` or `LIVE`. Stage string `pulumi:"stage"` }
A collection of arguments for invoking getFunction.
type GetFunctionOutputArgs ¶
type GetFunctionOutputArgs struct { // Name of the CloudFront function. Name pulumi.StringInput `pulumi:"name"` // The function’s stage, either `DEVELOPMENT` or `LIVE`. Stage pulumi.StringInput `pulumi:"stage"` }
A collection of arguments for invoking getFunction.
func (GetFunctionOutputArgs) ElementType ¶
func (GetFunctionOutputArgs) ElementType() reflect.Type
type GetFunctionResult ¶
type GetFunctionResult struct { // Amazon Resource Name (ARN) identifying your CloudFront Function. Arn string `pulumi:"arn"` // Source code of the function Code string `pulumi:"code"` // Comment. Comment string `pulumi:"comment"` // ETag hash of the function Etag string `pulumi:"etag"` // The provider-assigned unique ID for this managed resource. Id string `pulumi:"id"` // When this resource was last modified. LastModifiedTime string `pulumi:"lastModifiedTime"` Name string `pulumi:"name"` // Identifier of the function's runtime. Runtime string `pulumi:"runtime"` Stage string `pulumi:"stage"` // Status of the function. Can be `UNPUBLISHED`, `UNASSOCIATED` or `ASSOCIATED`. Status string `pulumi:"status"` }
A collection of values returned by getFunction.
func GetFunction
deprecated
func GetFunction(ctx *pulumi.Context, args *GetFunctionArgs, opts ...pulumi.InvokeOption) (*GetFunctionResult, error)
Provides information about a CloudFront Function.
## Example Usage
```go package main
import (
"github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudfront" "github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { cfg := config.New(ctx, "") functionName := cfg.Require("functionName") _, err := cloudfront.LookupFunction(ctx, &cloudfront.LookupFunctionArgs{ Name: functionName, }, nil) if err != nil { return err } return nil }) }
```
Deprecated: aws.cloudtrail.getFunction has been deprecated in favor of aws.cloudfront.getFunction
type GetFunctionResultOutput ¶
type GetFunctionResultOutput struct{ *pulumi.OutputState }
A collection of values returned by getFunction.
func GetFunctionOutput ¶
func GetFunctionOutput(ctx *pulumi.Context, args GetFunctionOutputArgs, opts ...pulumi.InvokeOption) GetFunctionResultOutput
func (GetFunctionResultOutput) Arn ¶
func (o GetFunctionResultOutput) Arn() pulumi.StringOutput
Amazon Resource Name (ARN) identifying your CloudFront Function.
func (GetFunctionResultOutput) Code ¶
func (o GetFunctionResultOutput) Code() pulumi.StringOutput
Source code of the function
func (GetFunctionResultOutput) Comment ¶
func (o GetFunctionResultOutput) Comment() pulumi.StringOutput
Comment.
func (GetFunctionResultOutput) ElementType ¶
func (GetFunctionResultOutput) ElementType() reflect.Type
func (GetFunctionResultOutput) Etag ¶
func (o GetFunctionResultOutput) Etag() pulumi.StringOutput
ETag hash of the function
func (GetFunctionResultOutput) Id ¶
func (o GetFunctionResultOutput) Id() pulumi.StringOutput
The provider-assigned unique ID for this managed resource.
func (GetFunctionResultOutput) LastModifiedTime ¶
func (o GetFunctionResultOutput) LastModifiedTime() pulumi.StringOutput
When this resource was last modified.
func (GetFunctionResultOutput) Name ¶
func (o GetFunctionResultOutput) Name() pulumi.StringOutput
func (GetFunctionResultOutput) Runtime ¶
func (o GetFunctionResultOutput) Runtime() pulumi.StringOutput
Identifier of the function's runtime.
func (GetFunctionResultOutput) Stage ¶
func (o GetFunctionResultOutput) Stage() pulumi.StringOutput
func (GetFunctionResultOutput) Status ¶
func (o GetFunctionResultOutput) Status() pulumi.StringOutput
Status of the function. Can be `UNPUBLISHED`, `UNASSOCIATED` or `ASSOCIATED`.
func (GetFunctionResultOutput) ToGetFunctionResultOutput ¶
func (o GetFunctionResultOutput) ToGetFunctionResultOutput() GetFunctionResultOutput
func (GetFunctionResultOutput) ToGetFunctionResultOutputWithContext ¶
func (o GetFunctionResultOutput) ToGetFunctionResultOutputWithContext(ctx context.Context) GetFunctionResultOutput
type GetServiceAccountArgs ¶
type GetServiceAccountArgs struct { // Name of the region whose AWS CloudTrail account ID is desired. // Defaults to the region from the AWS provider configuration. Region *string `pulumi:"region"` }
A collection of arguments for invoking getServiceAccount.
type GetServiceAccountOutputArgs ¶
type GetServiceAccountOutputArgs struct { // Name of the region whose AWS CloudTrail account ID is desired. // Defaults to the region from the AWS provider configuration. Region pulumi.StringPtrInput `pulumi:"region"` }
A collection of arguments for invoking getServiceAccount.
func (GetServiceAccountOutputArgs) ElementType ¶
func (GetServiceAccountOutputArgs) ElementType() reflect.Type
type GetServiceAccountResult ¶
type GetServiceAccountResult struct { // The ARN of the AWS CloudTrail service account in the selected region. Arn string `pulumi:"arn"` // The provider-assigned unique ID for this managed resource. Id string `pulumi:"id"` Region *string `pulumi:"region"` }
A collection of values returned by getServiceAccount.
func GetServiceAccount ¶
func GetServiceAccount(ctx *pulumi.Context, args *GetServiceAccountArgs, opts ...pulumi.InvokeOption) (*GetServiceAccountResult, error)
Use this data source to get the Account ID of the [AWS CloudTrail Service Account](http://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-supported-regions.html) in a given region for the purpose of allowing CloudTrail to store trail data in S3.
## Example Usage
```go package main
import (
"fmt" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/s3" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { main, err := cloudtrail.GetServiceAccount(ctx, nil, nil) if err != nil { return err } bucket, err := s3.NewBucketV2(ctx, "bucket", &s3.BucketV2Args{ ForceDestroy: pulumi.Bool(true), }) if err != nil { return err } _, err = s3.NewBucketPolicy(ctx, "allowCloudtrailLogging", &s3.BucketPolicyArgs{ Bucket: bucket.ID(), Policy: pulumi.Any(fmt.Sprintf(`{ "Version": "2008-10-17", "Statement": [ { "Sid": "Put bucket policy needed for trails", "Effect": "Allow", "Principal": { "AWS": "%v" }, "Action": "s3:PutObject", "Resource": "arn:aws:s3:::tf-cloudtrail-logging-test-bucket/*" }, { "Sid": "Get bucket policy needed for trails", "Effect": "Allow", "Principal": { "AWS": "%v" }, "Action": "s3:GetBucketAcl", "Resource": "arn:aws:s3:::tf-cloudtrail-logging-test-bucket" } ] }
`, main.Arn, main.Arn)),
}) if err != nil { return err } return nil }) }
```
type GetServiceAccountResultOutput ¶
type GetServiceAccountResultOutput struct{ *pulumi.OutputState }
A collection of values returned by getServiceAccount.
func GetServiceAccountOutput ¶
func GetServiceAccountOutput(ctx *pulumi.Context, args GetServiceAccountOutputArgs, opts ...pulumi.InvokeOption) GetServiceAccountResultOutput
func (GetServiceAccountResultOutput) Arn ¶
func (o GetServiceAccountResultOutput) Arn() pulumi.StringOutput
The ARN of the AWS CloudTrail service account in the selected region.
func (GetServiceAccountResultOutput) ElementType ¶
func (GetServiceAccountResultOutput) ElementType() reflect.Type
func (GetServiceAccountResultOutput) Id ¶
func (o GetServiceAccountResultOutput) Id() pulumi.StringOutput
The provider-assigned unique ID for this managed resource.
func (GetServiceAccountResultOutput) Region ¶
func (o GetServiceAccountResultOutput) Region() pulumi.StringPtrOutput
func (GetServiceAccountResultOutput) ToGetServiceAccountResultOutput ¶
func (o GetServiceAccountResultOutput) ToGetServiceAccountResultOutput() GetServiceAccountResultOutput
func (GetServiceAccountResultOutput) ToGetServiceAccountResultOutputWithContext ¶
func (o GetServiceAccountResultOutput) ToGetServiceAccountResultOutputWithContext(ctx context.Context) GetServiceAccountResultOutput
type Trail ¶
type Trail struct { pulumi.CustomResourceState // Specifies an advanced event selector for enabling data event logging. Fields documented below. Conflicts with `eventSelector`. AdvancedEventSelectors TrailAdvancedEventSelectorArrayOutput `pulumi:"advancedEventSelectors"` // ARN of the trail. Arn pulumi.StringOutput `pulumi:"arn"` // Log group name using an ARN that represents the log group to which CloudTrail logs will be delivered. Note that CloudTrail requires the Log Stream wildcard. CloudWatchLogsGroupArn pulumi.StringPtrOutput `pulumi:"cloudWatchLogsGroupArn"` // Role for the CloudWatch Logs endpoint to assume to write to a user’s log group. CloudWatchLogsRoleArn pulumi.StringPtrOutput `pulumi:"cloudWatchLogsRoleArn"` // Whether log file integrity validation is enabled. Defaults to `false`. EnableLogFileValidation pulumi.BoolPtrOutput `pulumi:"enableLogFileValidation"` // Enables logging for the trail. Defaults to `true`. Setting this to `false` will pause logging. EnableLogging pulumi.BoolPtrOutput `pulumi:"enableLogging"` // Specifies an event selector for enabling data event logging. Fields documented below. Please note the [CloudTrail limits](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) when configuring these. Conflicts with `advancedEventSelector`. EventSelectors TrailEventSelectorArrayOutput `pulumi:"eventSelectors"` // Region in which the trail was created. HomeRegion pulumi.StringOutput `pulumi:"homeRegion"` // Whether the trail is publishing events from global services such as IAM to the log files. Defaults to `true`. IncludeGlobalServiceEvents pulumi.BoolPtrOutput `pulumi:"includeGlobalServiceEvents"` // Configuration block for identifying unusual operational activity. See details below. InsightSelectors TrailInsightSelectorArrayOutput `pulumi:"insightSelectors"` // Whether the trail is created in the current region or in all regions. Defaults to `false`. IsMultiRegionTrail pulumi.BoolPtrOutput `pulumi:"isMultiRegionTrail"` // Whether the trail is an AWS Organizations trail. Organization trails log events for the master account and all member accounts. Can only be created in the organization master account. Defaults to `false`. IsOrganizationTrail pulumi.BoolPtrOutput `pulumi:"isOrganizationTrail"` // KMS key ARN to use to encrypt the logs delivered by CloudTrail. KmsKeyId pulumi.StringPtrOutput `pulumi:"kmsKeyId"` // Specifies the name of the advanced event selector. Name pulumi.StringOutput `pulumi:"name"` // Name of the S3 bucket designated for publishing log files. S3BucketName pulumi.StringOutput `pulumi:"s3BucketName"` // S3 key prefix that follows the name of the bucket you have designated for log file delivery. S3KeyPrefix pulumi.StringPtrOutput `pulumi:"s3KeyPrefix"` // Name of the Amazon SNS topic defined for notification of log file delivery. SnsTopicName pulumi.StringPtrOutput `pulumi:"snsTopicName"` // Map of tags to assign to the trail. If configured with provider defaultTags present, tags with matching keys will overwrite those defined at the provider-level. Tags pulumi.StringMapOutput `pulumi:"tags"` // Map of tags assigned to the resource, including those inherited from the provider `defaultTags` configuration block. TagsAll pulumi.StringMapOutput `pulumi:"tagsAll"` }
Provides a CloudTrail resource.
> **Tip:** For a multi-region trail, this resource must be in the home region of the trail.
> **Tip:** For an organization trail, this resource must be in the master account of the organization.
## Example Usage ### Basic
Enable CloudTrail to capture all compatible management events in region. For capturing events from services like IAM, `includeGlobalServiceEvents` must be enabled.
```go package main
import (
"fmt" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/iam" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/s3" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { current, err := aws.GetCallerIdentity(ctx, nil, nil) if err != nil { return err } bucketV2, err := s3.NewBucketV2(ctx, "bucketV2", nil) if err != nil { return err } fooBucketV2, err := s3.NewBucketV2(ctx, "fooBucketV2", &s3.BucketV2Args{ ForceDestroy: pulumi.Bool(true), }) if err != nil { return err } _, err = s3.NewBucketPolicy(ctx, "fooBucketPolicy", &s3.BucketPolicyArgs{ Bucket: fooBucketV2.ID(), Policy: pulumi.All(fooBucketV2.Arn, fooBucketV2.Arn).ApplyT(func(_args []interface{}) (string, error) { fooBucketV2Arn := _args[0].(string) fooBucketV2Arn1 := _args[1].(string) return fmt.Sprintf(`{ "Version": "2012-10-17", "Statement": [ { "Sid": "AWSCloudTrailAclCheck", "Effect": "Allow", "Principal": { "Service": "cloudtrail.amazonaws.com" }, "Action": "s3:GetBucketAcl", "Resource": "%v" }, { "Sid": "AWSCloudTrailWrite", "Effect": "Allow", "Principal": { "Service": "cloudtrail.amazonaws.com" }, "Action": "s3:PutObject", "Resource": "%v/prefix/AWSLogs/%v/*", "Condition": { "StringEquals": { "s3:x-amz-acl": "bucket-owner-full-control" } } } ] }
} `, fooBucketV2Arn, fooBucketV2Arn1, current.AccountId), nil
}).(pulumi.StringOutput), }) if err != nil { return err } _, err = cloudtrail.NewTrail(ctx, "foobar", &cloudtrail.TrailArgs{ S3BucketName: bucketV2.ID(), S3KeyPrefix: pulumi.String("prefix"), IncludeGlobalServiceEvents: pulumi.Bool(false), }) if err != nil { return err } return nil }) }
``` ### Data Event Logging
CloudTrail can log [Data Events](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) for certain services such as S3 objects and Lambda function invocations. Additional information about data event configuration can be found in the following links:
* [CloudTrail API DataResource documentation](https://docs.aws.amazon.com/awscloudtrail/latest/APIReference/API_DataResource.html) (for basic event selector). * [CloudTrail API AdvancedFieldSelector documentation](https://docs.aws.amazon.com/awscloudtrail/latest/APIReference/API_AdvancedFieldSelector.html) (for advanced event selector). ### Logging All Lambda Function Invocations By Using Basic Event Selectors
```go package main
import (
"github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/s3" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { bucketV2, err := s3.NewBucketV2(ctx, "bucketV2", nil) if err != nil { return err } _, err = cloudtrail.NewTrail(ctx, "example", &cloudtrail.TrailArgs{ S3BucketName: bucketV2.ID(), S3KeyPrefix: pulumi.String("prefix"), EventSelectors: cloudtrail.TrailEventSelectorArray{ &cloudtrail.TrailEventSelectorArgs{ ReadWriteType: pulumi.String("All"), IncludeManagementEvents: pulumi.Bool(true), DataResources: cloudtrail.TrailEventSelectorDataResourceArray{ &cloudtrail.TrailEventSelectorDataResourceArgs{ Type: pulumi.String("AWS::Lambda::Function"), Values: pulumi.StringArray{ pulumi.String("arn:aws:lambda"), }, }, }, }, }, }) if err != nil { return err } return nil }) }
``` ### Logging All S3 Object Events By Using Basic Event Selectors
```go package main
import (
"github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/s3" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { bucketV2, err := s3.NewBucketV2(ctx, "bucketV2", nil) if err != nil { return err } _, err = cloudtrail.NewTrail(ctx, "example", &cloudtrail.TrailArgs{ S3BucketName: bucketV2.ID(), S3KeyPrefix: pulumi.String("prefix"), EventSelectors: cloudtrail.TrailEventSelectorArray{ &cloudtrail.TrailEventSelectorArgs{ ReadWriteType: pulumi.String("All"), IncludeManagementEvents: pulumi.Bool(true), DataResources: cloudtrail.TrailEventSelectorDataResourceArray{ &cloudtrail.TrailEventSelectorDataResourceArgs{ Type: pulumi.String("AWS::S3::Object"), Values: pulumi.StringArray{ pulumi.String("arn:aws:s3"), }, }, }, }, }, }) if err != nil { return err } return nil }) }
``` ### Logging Individual S3 Bucket Events By Using Basic Event Selectors
```go package main
import (
"fmt" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/s3" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { important_bucket, err := s3.LookupBucket(ctx, &s3.LookupBucketArgs{ Bucket: "important-bucket", }, nil) if err != nil { return err } _, err = cloudtrail.NewTrail(ctx, "example", &cloudtrail.TrailArgs{ S3BucketName: pulumi.String(important_bucket.Id), S3KeyPrefix: pulumi.String("prefix"), EventSelectors: cloudtrail.TrailEventSelectorArray{ &cloudtrail.TrailEventSelectorArgs{ ReadWriteType: pulumi.String("All"), IncludeManagementEvents: pulumi.Bool(true), DataResources: cloudtrail.TrailEventSelectorDataResourceArray{ &cloudtrail.TrailEventSelectorDataResourceArgs{ Type: pulumi.String("AWS::S3::Object"), Values: pulumi.StringArray{ pulumi.String(fmt.Sprintf("%v/", important_bucket.Arn)), }, }, }, }, }, }) if err != nil { return err } return nil }) }
``` ### Logging All S3 Object Events Except For Two S3 Buckets By Using Advanced Event Selectors
```go package main
import (
"fmt" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/s3" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { not_important_bucket_1, err := s3.LookupBucket(ctx, &s3.LookupBucketArgs{ Bucket: "not-important-bucket-1", }, nil) if err != nil { return err } not_important_bucket_2, err := s3.LookupBucket(ctx, &s3.LookupBucketArgs{ Bucket: "not-important-bucket-2", }, nil) if err != nil { return err } _, err = cloudtrail.NewTrail(ctx, "example", &cloudtrail.TrailArgs{ AdvancedEventSelectors: cloudtrail.TrailAdvancedEventSelectorArray{ &cloudtrail.TrailAdvancedEventSelectorArgs{ FieldSelectors: cloudtrail.TrailAdvancedEventSelectorFieldSelectorArray{ &cloudtrail.TrailAdvancedEventSelectorFieldSelectorArgs{ Equals: pulumi.StringArray{ pulumi.String("Data"), }, Field: pulumi.String("eventCategory"), }, &cloudtrail.TrailAdvancedEventSelectorFieldSelectorArgs{ Field: pulumi.String("resources.ARN"), NotEquals: pulumi.StringArray{ pulumi.String(fmt.Sprintf("%v/", not_important_bucket_1.Arn)), pulumi.String(fmt.Sprintf("%v/", not_important_bucket_2.Arn)), }, }, &cloudtrail.TrailAdvancedEventSelectorFieldSelectorArgs{ Equals: pulumi.StringArray{ pulumi.String("AWS::S3::Object"), }, Field: pulumi.String("resources.type"), }, }, Name: pulumi.String("Log all S3 objects events except for two S3 buckets"), }, &cloudtrail.TrailAdvancedEventSelectorArgs{ FieldSelectors: cloudtrail.TrailAdvancedEventSelectorFieldSelectorArray{ &cloudtrail.TrailAdvancedEventSelectorFieldSelectorArgs{ Equals: pulumi.StringArray{ pulumi.String("Management"), }, Field: pulumi.String("eventCategory"), }, }, Name: pulumi.String("Log readOnly and writeOnly management events"), }, }, }) if err != nil { return err } return nil }) }
``` ### Sending Events to CloudWatch Logs
```go package main
import (
"fmt" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudtrail" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/cloudwatch" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/iam" "github.com/pulumi/pulumi-aws/sdk/v5/go/aws/s3" "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { current, err := aws.GetPartition(ctx, nil, nil) if err != nil { return err } exampleLogGroup, err := cloudwatch.NewLogGroup(ctx, "exampleLogGroup", nil) if err != nil { return err } testRole, err := iam.NewRole(ctx, "testRole", &iam.RoleArgs{ AssumeRolePolicy: pulumi.Any(fmt.Sprintf(`{ "Version": "2012-10-17", "Statement": [ { "Sid": "", "Effect": "Allow", "Principal": { "Service": "cloudtrail.%v" }, "Action": "sts:AssumeRole" } ] }
`, current.DnsSuffix)),
}) if err != nil { return err } _, err = iam.NewRolePolicy(ctx, "testRolePolicy", &iam.RolePolicyArgs{ Role: testRole.ID(), Policy: pulumi.Any(fmt.Sprintf(`{ "Version": "2012-10-17", "Statement": [ { "Sid": "AWSCloudTrailCreateLogStream", "Effect": "Allow", "Action": [ "logs:CreateLogStream", "logs:PutLogEvents" ], "Resource": "%v:*" } ] }
`, aws_cloudwatch_log_group.Test.Arn)),
}) if err != nil { return err } _, err = s3.NewBucketV2(ctx, "bucketV2", nil) if err != nil { return err } _, err = cloudtrail.NewTrail(ctx, "exampleTrail", &cloudtrail.TrailArgs{ S3BucketName: pulumi.Any(data.Aws_s3_bucket.Important - bucket.Id), S3KeyPrefix: pulumi.String("prefix"), CloudWatchLogsRoleArn: testRole.Arn, CloudWatchLogsGroupArn: exampleLogGroup.Arn.ApplyT(func(arn string) (string, error) { return fmt.Sprintf("%v:*", arn), nil }).(pulumi.StringOutput), }) if err != nil { return err } return nil }) }
```
## Import
Cloudtrails can be imported using the `name`, e.g.,
```sh
$ pulumi import aws:cloudtrail/trail:Trail sample my-sample-trail
```
func GetTrail ¶
func GetTrail(ctx *pulumi.Context, name string, id pulumi.IDInput, state *TrailState, opts ...pulumi.ResourceOption) (*Trail, error)
GetTrail gets an existing Trail resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewTrail ¶
func NewTrail(ctx *pulumi.Context, name string, args *TrailArgs, opts ...pulumi.ResourceOption) (*Trail, error)
NewTrail registers a new resource with the given unique name, arguments, and options.
func (*Trail) ElementType ¶
func (*Trail) ToTrailOutput ¶
func (i *Trail) ToTrailOutput() TrailOutput
func (*Trail) ToTrailOutputWithContext ¶
func (i *Trail) ToTrailOutputWithContext(ctx context.Context) TrailOutput
type TrailAdvancedEventSelector ¶
type TrailAdvancedEventSelector struct { // Specifies the selector statements in an advanced event selector. Fields documented below. FieldSelectors []TrailAdvancedEventSelectorFieldSelector `pulumi:"fieldSelectors"` // Specifies the name of the advanced event selector. Name *string `pulumi:"name"` }
type TrailAdvancedEventSelectorArgs ¶
type TrailAdvancedEventSelectorArgs struct { // Specifies the selector statements in an advanced event selector. Fields documented below. FieldSelectors TrailAdvancedEventSelectorFieldSelectorArrayInput `pulumi:"fieldSelectors"` // Specifies the name of the advanced event selector. Name pulumi.StringPtrInput `pulumi:"name"` }
func (TrailAdvancedEventSelectorArgs) ElementType ¶
func (TrailAdvancedEventSelectorArgs) ElementType() reflect.Type
func (TrailAdvancedEventSelectorArgs) ToTrailAdvancedEventSelectorOutput ¶
func (i TrailAdvancedEventSelectorArgs) ToTrailAdvancedEventSelectorOutput() TrailAdvancedEventSelectorOutput
func (TrailAdvancedEventSelectorArgs) ToTrailAdvancedEventSelectorOutputWithContext ¶
func (i TrailAdvancedEventSelectorArgs) ToTrailAdvancedEventSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorOutput
type TrailAdvancedEventSelectorArray ¶
type TrailAdvancedEventSelectorArray []TrailAdvancedEventSelectorInput
func (TrailAdvancedEventSelectorArray) ElementType ¶
func (TrailAdvancedEventSelectorArray) ElementType() reflect.Type
func (TrailAdvancedEventSelectorArray) ToTrailAdvancedEventSelectorArrayOutput ¶
func (i TrailAdvancedEventSelectorArray) ToTrailAdvancedEventSelectorArrayOutput() TrailAdvancedEventSelectorArrayOutput
func (TrailAdvancedEventSelectorArray) ToTrailAdvancedEventSelectorArrayOutputWithContext ¶
func (i TrailAdvancedEventSelectorArray) ToTrailAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorArrayOutput
type TrailAdvancedEventSelectorArrayInput ¶
type TrailAdvancedEventSelectorArrayInput interface { pulumi.Input ToTrailAdvancedEventSelectorArrayOutput() TrailAdvancedEventSelectorArrayOutput ToTrailAdvancedEventSelectorArrayOutputWithContext(context.Context) TrailAdvancedEventSelectorArrayOutput }
TrailAdvancedEventSelectorArrayInput is an input type that accepts TrailAdvancedEventSelectorArray and TrailAdvancedEventSelectorArrayOutput values. You can construct a concrete instance of `TrailAdvancedEventSelectorArrayInput` via:
TrailAdvancedEventSelectorArray{ TrailAdvancedEventSelectorArgs{...} }
type TrailAdvancedEventSelectorArrayOutput ¶
type TrailAdvancedEventSelectorArrayOutput struct{ *pulumi.OutputState }
func (TrailAdvancedEventSelectorArrayOutput) ElementType ¶
func (TrailAdvancedEventSelectorArrayOutput) ElementType() reflect.Type
func (TrailAdvancedEventSelectorArrayOutput) Index ¶
func (o TrailAdvancedEventSelectorArrayOutput) Index(i pulumi.IntInput) TrailAdvancedEventSelectorOutput
func (TrailAdvancedEventSelectorArrayOutput) ToTrailAdvancedEventSelectorArrayOutput ¶
func (o TrailAdvancedEventSelectorArrayOutput) ToTrailAdvancedEventSelectorArrayOutput() TrailAdvancedEventSelectorArrayOutput
func (TrailAdvancedEventSelectorArrayOutput) ToTrailAdvancedEventSelectorArrayOutputWithContext ¶
func (o TrailAdvancedEventSelectorArrayOutput) ToTrailAdvancedEventSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorArrayOutput
type TrailAdvancedEventSelectorFieldSelector ¶
type TrailAdvancedEventSelectorFieldSelector struct { // A list of values that includes events that match the last few characters of the event record field specified as the value of `field`. EndsWiths []string `pulumi:"endsWiths"` // A list of values that includes events that match the exact value of the event record field specified as the value of `field`. This is the only valid operator that you can use with the `readOnly`, `eventCategory`, and `resources.type` fields. Equals []string `pulumi:"equals"` // Specifies a field in an event record on which to filter events to be logged. You can specify only the following values: `readOnly`, `eventSource`, `eventName`, `eventCategory`, `resources.type`, `resources.ARN`. Field string `pulumi:"field"` // A list of values that excludes events that match the last few characters of the event record field specified as the value of `field`. NotEndsWiths []string `pulumi:"notEndsWiths"` // A list of values that excludes events that match the exact value of the event record field specified as the value of `field`. NotEquals []string `pulumi:"notEquals"` // A list of values that excludes events that match the first few characters of the event record field specified as the value of `field`. NotStartsWiths []string `pulumi:"notStartsWiths"` // A list of values that includes events that match the first few characters of the event record field specified as the value of `field`. StartsWiths []string `pulumi:"startsWiths"` }
type TrailAdvancedEventSelectorFieldSelectorArgs ¶
type TrailAdvancedEventSelectorFieldSelectorArgs struct { // A list of values that includes events that match the last few characters of the event record field specified as the value of `field`. EndsWiths pulumi.StringArrayInput `pulumi:"endsWiths"` // A list of values that includes events that match the exact value of the event record field specified as the value of `field`. This is the only valid operator that you can use with the `readOnly`, `eventCategory`, and `resources.type` fields. Equals pulumi.StringArrayInput `pulumi:"equals"` // Specifies a field in an event record on which to filter events to be logged. You can specify only the following values: `readOnly`, `eventSource`, `eventName`, `eventCategory`, `resources.type`, `resources.ARN`. Field pulumi.StringInput `pulumi:"field"` // A list of values that excludes events that match the last few characters of the event record field specified as the value of `field`. NotEndsWiths pulumi.StringArrayInput `pulumi:"notEndsWiths"` // A list of values that excludes events that match the exact value of the event record field specified as the value of `field`. NotEquals pulumi.StringArrayInput `pulumi:"notEquals"` // A list of values that excludes events that match the first few characters of the event record field specified as the value of `field`. NotStartsWiths pulumi.StringArrayInput `pulumi:"notStartsWiths"` // A list of values that includes events that match the first few characters of the event record field specified as the value of `field`. StartsWiths pulumi.StringArrayInput `pulumi:"startsWiths"` }
func (TrailAdvancedEventSelectorFieldSelectorArgs) ElementType ¶
func (TrailAdvancedEventSelectorFieldSelectorArgs) ElementType() reflect.Type
func (TrailAdvancedEventSelectorFieldSelectorArgs) ToTrailAdvancedEventSelectorFieldSelectorOutput ¶
func (i TrailAdvancedEventSelectorFieldSelectorArgs) ToTrailAdvancedEventSelectorFieldSelectorOutput() TrailAdvancedEventSelectorFieldSelectorOutput
func (TrailAdvancedEventSelectorFieldSelectorArgs) ToTrailAdvancedEventSelectorFieldSelectorOutputWithContext ¶
func (i TrailAdvancedEventSelectorFieldSelectorArgs) ToTrailAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorOutput
type TrailAdvancedEventSelectorFieldSelectorArray ¶
type TrailAdvancedEventSelectorFieldSelectorArray []TrailAdvancedEventSelectorFieldSelectorInput
func (TrailAdvancedEventSelectorFieldSelectorArray) ElementType ¶
func (TrailAdvancedEventSelectorFieldSelectorArray) ElementType() reflect.Type
func (TrailAdvancedEventSelectorFieldSelectorArray) ToTrailAdvancedEventSelectorFieldSelectorArrayOutput ¶
func (i TrailAdvancedEventSelectorFieldSelectorArray) ToTrailAdvancedEventSelectorFieldSelectorArrayOutput() TrailAdvancedEventSelectorFieldSelectorArrayOutput
func (TrailAdvancedEventSelectorFieldSelectorArray) ToTrailAdvancedEventSelectorFieldSelectorArrayOutputWithContext ¶
func (i TrailAdvancedEventSelectorFieldSelectorArray) ToTrailAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorArrayOutput
type TrailAdvancedEventSelectorFieldSelectorArrayInput ¶
type TrailAdvancedEventSelectorFieldSelectorArrayInput interface { pulumi.Input ToTrailAdvancedEventSelectorFieldSelectorArrayOutput() TrailAdvancedEventSelectorFieldSelectorArrayOutput ToTrailAdvancedEventSelectorFieldSelectorArrayOutputWithContext(context.Context) TrailAdvancedEventSelectorFieldSelectorArrayOutput }
TrailAdvancedEventSelectorFieldSelectorArrayInput is an input type that accepts TrailAdvancedEventSelectorFieldSelectorArray and TrailAdvancedEventSelectorFieldSelectorArrayOutput values. You can construct a concrete instance of `TrailAdvancedEventSelectorFieldSelectorArrayInput` via:
TrailAdvancedEventSelectorFieldSelectorArray{ TrailAdvancedEventSelectorFieldSelectorArgs{...} }
type TrailAdvancedEventSelectorFieldSelectorArrayOutput ¶
type TrailAdvancedEventSelectorFieldSelectorArrayOutput struct{ *pulumi.OutputState }
func (TrailAdvancedEventSelectorFieldSelectorArrayOutput) ElementType ¶
func (TrailAdvancedEventSelectorFieldSelectorArrayOutput) ElementType() reflect.Type
func (TrailAdvancedEventSelectorFieldSelectorArrayOutput) ToTrailAdvancedEventSelectorFieldSelectorArrayOutput ¶
func (o TrailAdvancedEventSelectorFieldSelectorArrayOutput) ToTrailAdvancedEventSelectorFieldSelectorArrayOutput() TrailAdvancedEventSelectorFieldSelectorArrayOutput
func (TrailAdvancedEventSelectorFieldSelectorArrayOutput) ToTrailAdvancedEventSelectorFieldSelectorArrayOutputWithContext ¶
func (o TrailAdvancedEventSelectorFieldSelectorArrayOutput) ToTrailAdvancedEventSelectorFieldSelectorArrayOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorArrayOutput
type TrailAdvancedEventSelectorFieldSelectorInput ¶
type TrailAdvancedEventSelectorFieldSelectorInput interface { pulumi.Input ToTrailAdvancedEventSelectorFieldSelectorOutput() TrailAdvancedEventSelectorFieldSelectorOutput ToTrailAdvancedEventSelectorFieldSelectorOutputWithContext(context.Context) TrailAdvancedEventSelectorFieldSelectorOutput }
TrailAdvancedEventSelectorFieldSelectorInput is an input type that accepts TrailAdvancedEventSelectorFieldSelectorArgs and TrailAdvancedEventSelectorFieldSelectorOutput values. You can construct a concrete instance of `TrailAdvancedEventSelectorFieldSelectorInput` via:
TrailAdvancedEventSelectorFieldSelectorArgs{...}
type TrailAdvancedEventSelectorFieldSelectorOutput ¶
type TrailAdvancedEventSelectorFieldSelectorOutput struct{ *pulumi.OutputState }
func (TrailAdvancedEventSelectorFieldSelectorOutput) ElementType ¶
func (TrailAdvancedEventSelectorFieldSelectorOutput) ElementType() reflect.Type
func (TrailAdvancedEventSelectorFieldSelectorOutput) EndsWiths ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) EndsWiths() pulumi.StringArrayOutput
A list of values that includes events that match the last few characters of the event record field specified as the value of `field`.
func (TrailAdvancedEventSelectorFieldSelectorOutput) Equals ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) Equals() pulumi.StringArrayOutput
A list of values that includes events that match the exact value of the event record field specified as the value of `field`. This is the only valid operator that you can use with the `readOnly`, `eventCategory`, and `resources.type` fields.
func (TrailAdvancedEventSelectorFieldSelectorOutput) Field ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) Field() pulumi.StringOutput
Specifies a field in an event record on which to filter events to be logged. You can specify only the following values: `readOnly`, `eventSource`, `eventName`, `eventCategory`, `resources.type`, `resources.ARN`.
func (TrailAdvancedEventSelectorFieldSelectorOutput) NotEndsWiths ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) NotEndsWiths() pulumi.StringArrayOutput
A list of values that excludes events that match the last few characters of the event record field specified as the value of `field`.
func (TrailAdvancedEventSelectorFieldSelectorOutput) NotEquals ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) NotEquals() pulumi.StringArrayOutput
A list of values that excludes events that match the exact value of the event record field specified as the value of `field`.
func (TrailAdvancedEventSelectorFieldSelectorOutput) NotStartsWiths ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) NotStartsWiths() pulumi.StringArrayOutput
A list of values that excludes events that match the first few characters of the event record field specified as the value of `field`.
func (TrailAdvancedEventSelectorFieldSelectorOutput) StartsWiths ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) StartsWiths() pulumi.StringArrayOutput
A list of values that includes events that match the first few characters of the event record field specified as the value of `field`.
func (TrailAdvancedEventSelectorFieldSelectorOutput) ToTrailAdvancedEventSelectorFieldSelectorOutput ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) ToTrailAdvancedEventSelectorFieldSelectorOutput() TrailAdvancedEventSelectorFieldSelectorOutput
func (TrailAdvancedEventSelectorFieldSelectorOutput) ToTrailAdvancedEventSelectorFieldSelectorOutputWithContext ¶
func (o TrailAdvancedEventSelectorFieldSelectorOutput) ToTrailAdvancedEventSelectorFieldSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorFieldSelectorOutput
type TrailAdvancedEventSelectorInput ¶
type TrailAdvancedEventSelectorInput interface { pulumi.Input ToTrailAdvancedEventSelectorOutput() TrailAdvancedEventSelectorOutput ToTrailAdvancedEventSelectorOutputWithContext(context.Context) TrailAdvancedEventSelectorOutput }
TrailAdvancedEventSelectorInput is an input type that accepts TrailAdvancedEventSelectorArgs and TrailAdvancedEventSelectorOutput values. You can construct a concrete instance of `TrailAdvancedEventSelectorInput` via:
TrailAdvancedEventSelectorArgs{...}
type TrailAdvancedEventSelectorOutput ¶
type TrailAdvancedEventSelectorOutput struct{ *pulumi.OutputState }
func (TrailAdvancedEventSelectorOutput) ElementType ¶
func (TrailAdvancedEventSelectorOutput) ElementType() reflect.Type
func (TrailAdvancedEventSelectorOutput) FieldSelectors ¶
func (o TrailAdvancedEventSelectorOutput) FieldSelectors() TrailAdvancedEventSelectorFieldSelectorArrayOutput
Specifies the selector statements in an advanced event selector. Fields documented below.
func (TrailAdvancedEventSelectorOutput) Name ¶
func (o TrailAdvancedEventSelectorOutput) Name() pulumi.StringPtrOutput
Specifies the name of the advanced event selector.
func (TrailAdvancedEventSelectorOutput) ToTrailAdvancedEventSelectorOutput ¶
func (o TrailAdvancedEventSelectorOutput) ToTrailAdvancedEventSelectorOutput() TrailAdvancedEventSelectorOutput
func (TrailAdvancedEventSelectorOutput) ToTrailAdvancedEventSelectorOutputWithContext ¶
func (o TrailAdvancedEventSelectorOutput) ToTrailAdvancedEventSelectorOutputWithContext(ctx context.Context) TrailAdvancedEventSelectorOutput
type TrailArgs ¶
type TrailArgs struct { // Specifies an advanced event selector for enabling data event logging. Fields documented below. Conflicts with `eventSelector`. AdvancedEventSelectors TrailAdvancedEventSelectorArrayInput // Log group name using an ARN that represents the log group to which CloudTrail logs will be delivered. Note that CloudTrail requires the Log Stream wildcard. CloudWatchLogsGroupArn pulumi.StringPtrInput // Role for the CloudWatch Logs endpoint to assume to write to a user’s log group. CloudWatchLogsRoleArn pulumi.StringPtrInput // Whether log file integrity validation is enabled. Defaults to `false`. EnableLogFileValidation pulumi.BoolPtrInput // Enables logging for the trail. Defaults to `true`. Setting this to `false` will pause logging. EnableLogging pulumi.BoolPtrInput // Specifies an event selector for enabling data event logging. Fields documented below. Please note the [CloudTrail limits](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) when configuring these. Conflicts with `advancedEventSelector`. EventSelectors TrailEventSelectorArrayInput // Whether the trail is publishing events from global services such as IAM to the log files. Defaults to `true`. IncludeGlobalServiceEvents pulumi.BoolPtrInput // Configuration block for identifying unusual operational activity. See details below. InsightSelectors TrailInsightSelectorArrayInput // Whether the trail is created in the current region or in all regions. Defaults to `false`. IsMultiRegionTrail pulumi.BoolPtrInput // Whether the trail is an AWS Organizations trail. Organization trails log events for the master account and all member accounts. Can only be created in the organization master account. Defaults to `false`. IsOrganizationTrail pulumi.BoolPtrInput // KMS key ARN to use to encrypt the logs delivered by CloudTrail. KmsKeyId pulumi.StringPtrInput // Specifies the name of the advanced event selector. Name pulumi.StringPtrInput // Name of the S3 bucket designated for publishing log files. S3BucketName pulumi.StringInput // S3 key prefix that follows the name of the bucket you have designated for log file delivery. S3KeyPrefix pulumi.StringPtrInput // Name of the Amazon SNS topic defined for notification of log file delivery. SnsTopicName pulumi.StringPtrInput // Map of tags to assign to the trail. If configured with provider defaultTags present, tags with matching keys will overwrite those defined at the provider-level. Tags pulumi.StringMapInput }
The set of arguments for constructing a Trail resource.
func (TrailArgs) ElementType ¶
type TrailArray ¶
type TrailArray []TrailInput
func (TrailArray) ElementType ¶
func (TrailArray) ElementType() reflect.Type
func (TrailArray) ToTrailArrayOutput ¶
func (i TrailArray) ToTrailArrayOutput() TrailArrayOutput
func (TrailArray) ToTrailArrayOutputWithContext ¶
func (i TrailArray) ToTrailArrayOutputWithContext(ctx context.Context) TrailArrayOutput
type TrailArrayInput ¶
type TrailArrayInput interface { pulumi.Input ToTrailArrayOutput() TrailArrayOutput ToTrailArrayOutputWithContext(context.Context) TrailArrayOutput }
TrailArrayInput is an input type that accepts TrailArray and TrailArrayOutput values. You can construct a concrete instance of `TrailArrayInput` via:
TrailArray{ TrailArgs{...} }
type TrailArrayOutput ¶
type TrailArrayOutput struct{ *pulumi.OutputState }
func (TrailArrayOutput) ElementType ¶
func (TrailArrayOutput) ElementType() reflect.Type
func (TrailArrayOutput) Index ¶
func (o TrailArrayOutput) Index(i pulumi.IntInput) TrailOutput
func (TrailArrayOutput) ToTrailArrayOutput ¶
func (o TrailArrayOutput) ToTrailArrayOutput() TrailArrayOutput
func (TrailArrayOutput) ToTrailArrayOutputWithContext ¶
func (o TrailArrayOutput) ToTrailArrayOutputWithContext(ctx context.Context) TrailArrayOutput
type TrailEventSelector ¶
type TrailEventSelector struct { // Configuration block for data events. See details below. DataResources []TrailEventSelectorDataResource `pulumi:"dataResources"` // A set of event sources to exclude. Valid values include: `kms.amazonaws.com` and `rdsdata.amazonaws.com`. `includeManagementEvents` must be set to`true` to allow this. ExcludeManagementEventSources []string `pulumi:"excludeManagementEventSources"` // Whether to include management events for your trail. Defaults to `true`. IncludeManagementEvents *bool `pulumi:"includeManagementEvents"` // Type of events to log. Valid values are `ReadOnly`, `WriteOnly`, `All`. Default value is `All`. ReadWriteType *string `pulumi:"readWriteType"` }
type TrailEventSelectorArgs ¶
type TrailEventSelectorArgs struct { // Configuration block for data events. See details below. DataResources TrailEventSelectorDataResourceArrayInput `pulumi:"dataResources"` // A set of event sources to exclude. Valid values include: `kms.amazonaws.com` and `rdsdata.amazonaws.com`. `includeManagementEvents` must be set to`true` to allow this. ExcludeManagementEventSources pulumi.StringArrayInput `pulumi:"excludeManagementEventSources"` // Whether to include management events for your trail. Defaults to `true`. IncludeManagementEvents pulumi.BoolPtrInput `pulumi:"includeManagementEvents"` // Type of events to log. Valid values are `ReadOnly`, `WriteOnly`, `All`. Default value is `All`. ReadWriteType pulumi.StringPtrInput `pulumi:"readWriteType"` }
func (TrailEventSelectorArgs) ElementType ¶
func (TrailEventSelectorArgs) ElementType() reflect.Type
func (TrailEventSelectorArgs) ToTrailEventSelectorOutput ¶
func (i TrailEventSelectorArgs) ToTrailEventSelectorOutput() TrailEventSelectorOutput
func (TrailEventSelectorArgs) ToTrailEventSelectorOutputWithContext ¶
func (i TrailEventSelectorArgs) ToTrailEventSelectorOutputWithContext(ctx context.Context) TrailEventSelectorOutput
type TrailEventSelectorArray ¶
type TrailEventSelectorArray []TrailEventSelectorInput
func (TrailEventSelectorArray) ElementType ¶
func (TrailEventSelectorArray) ElementType() reflect.Type
func (TrailEventSelectorArray) ToTrailEventSelectorArrayOutput ¶
func (i TrailEventSelectorArray) ToTrailEventSelectorArrayOutput() TrailEventSelectorArrayOutput
func (TrailEventSelectorArray) ToTrailEventSelectorArrayOutputWithContext ¶
func (i TrailEventSelectorArray) ToTrailEventSelectorArrayOutputWithContext(ctx context.Context) TrailEventSelectorArrayOutput
type TrailEventSelectorArrayInput ¶
type TrailEventSelectorArrayInput interface { pulumi.Input ToTrailEventSelectorArrayOutput() TrailEventSelectorArrayOutput ToTrailEventSelectorArrayOutputWithContext(context.Context) TrailEventSelectorArrayOutput }
TrailEventSelectorArrayInput is an input type that accepts TrailEventSelectorArray and TrailEventSelectorArrayOutput values. You can construct a concrete instance of `TrailEventSelectorArrayInput` via:
TrailEventSelectorArray{ TrailEventSelectorArgs{...} }
type TrailEventSelectorArrayOutput ¶
type TrailEventSelectorArrayOutput struct{ *pulumi.OutputState }
func (TrailEventSelectorArrayOutput) ElementType ¶
func (TrailEventSelectorArrayOutput) ElementType() reflect.Type
func (TrailEventSelectorArrayOutput) Index ¶
func (o TrailEventSelectorArrayOutput) Index(i pulumi.IntInput) TrailEventSelectorOutput
func (TrailEventSelectorArrayOutput) ToTrailEventSelectorArrayOutput ¶
func (o TrailEventSelectorArrayOutput) ToTrailEventSelectorArrayOutput() TrailEventSelectorArrayOutput
func (TrailEventSelectorArrayOutput) ToTrailEventSelectorArrayOutputWithContext ¶
func (o TrailEventSelectorArrayOutput) ToTrailEventSelectorArrayOutputWithContext(ctx context.Context) TrailEventSelectorArrayOutput
type TrailEventSelectorDataResource ¶
type TrailEventSelectorDataResource struct { // Resource type in which you want to log data events. You can specify only the following value: "AWS::S3::Object", "AWS::Lambda::Function" and "AWS::DynamoDB::Table". Type string `pulumi:"type"` // List of ARN strings or partial ARN strings to specify selectors for data audit events over data resources. ARN list is specific to single-valued `type`. For example, `arn:aws:s3:::<bucket name>/` for all objects in a bucket, `arn:aws:s3:::<bucket name>/key` for specific objects, `arn:aws:lambda` for all lambda events within an account, `arn:aws:lambda:<region>:<account number>:function:<function name>` for a specific Lambda function, `arn:aws:dynamodb` for all DDB events for all tables within an account, or `arn:aws:dynamodb:<region>:<account number>:table/<table name>` for a specific DynamoDB table. Values []string `pulumi:"values"` }
type TrailEventSelectorDataResourceArgs ¶
type TrailEventSelectorDataResourceArgs struct { // Resource type in which you want to log data events. You can specify only the following value: "AWS::S3::Object", "AWS::Lambda::Function" and "AWS::DynamoDB::Table". Type pulumi.StringInput `pulumi:"type"` // List of ARN strings or partial ARN strings to specify selectors for data audit events over data resources. ARN list is specific to single-valued `type`. For example, `arn:aws:s3:::<bucket name>/` for all objects in a bucket, `arn:aws:s3:::<bucket name>/key` for specific objects, `arn:aws:lambda` for all lambda events within an account, `arn:aws:lambda:<region>:<account number>:function:<function name>` for a specific Lambda function, `arn:aws:dynamodb` for all DDB events for all tables within an account, or `arn:aws:dynamodb:<region>:<account number>:table/<table name>` for a specific DynamoDB table. Values pulumi.StringArrayInput `pulumi:"values"` }
func (TrailEventSelectorDataResourceArgs) ElementType ¶
func (TrailEventSelectorDataResourceArgs) ElementType() reflect.Type
func (TrailEventSelectorDataResourceArgs) ToTrailEventSelectorDataResourceOutput ¶
func (i TrailEventSelectorDataResourceArgs) ToTrailEventSelectorDataResourceOutput() TrailEventSelectorDataResourceOutput
func (TrailEventSelectorDataResourceArgs) ToTrailEventSelectorDataResourceOutputWithContext ¶
func (i TrailEventSelectorDataResourceArgs) ToTrailEventSelectorDataResourceOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceOutput
type TrailEventSelectorDataResourceArray ¶
type TrailEventSelectorDataResourceArray []TrailEventSelectorDataResourceInput
func (TrailEventSelectorDataResourceArray) ElementType ¶
func (TrailEventSelectorDataResourceArray) ElementType() reflect.Type
func (TrailEventSelectorDataResourceArray) ToTrailEventSelectorDataResourceArrayOutput ¶
func (i TrailEventSelectorDataResourceArray) ToTrailEventSelectorDataResourceArrayOutput() TrailEventSelectorDataResourceArrayOutput
func (TrailEventSelectorDataResourceArray) ToTrailEventSelectorDataResourceArrayOutputWithContext ¶
func (i TrailEventSelectorDataResourceArray) ToTrailEventSelectorDataResourceArrayOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceArrayOutput
type TrailEventSelectorDataResourceArrayInput ¶
type TrailEventSelectorDataResourceArrayInput interface { pulumi.Input ToTrailEventSelectorDataResourceArrayOutput() TrailEventSelectorDataResourceArrayOutput ToTrailEventSelectorDataResourceArrayOutputWithContext(context.Context) TrailEventSelectorDataResourceArrayOutput }
TrailEventSelectorDataResourceArrayInput is an input type that accepts TrailEventSelectorDataResourceArray and TrailEventSelectorDataResourceArrayOutput values. You can construct a concrete instance of `TrailEventSelectorDataResourceArrayInput` via:
TrailEventSelectorDataResourceArray{ TrailEventSelectorDataResourceArgs{...} }
type TrailEventSelectorDataResourceArrayOutput ¶
type TrailEventSelectorDataResourceArrayOutput struct{ *pulumi.OutputState }
func (TrailEventSelectorDataResourceArrayOutput) ElementType ¶
func (TrailEventSelectorDataResourceArrayOutput) ElementType() reflect.Type
func (TrailEventSelectorDataResourceArrayOutput) ToTrailEventSelectorDataResourceArrayOutput ¶
func (o TrailEventSelectorDataResourceArrayOutput) ToTrailEventSelectorDataResourceArrayOutput() TrailEventSelectorDataResourceArrayOutput
func (TrailEventSelectorDataResourceArrayOutput) ToTrailEventSelectorDataResourceArrayOutputWithContext ¶
func (o TrailEventSelectorDataResourceArrayOutput) ToTrailEventSelectorDataResourceArrayOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceArrayOutput
type TrailEventSelectorDataResourceInput ¶
type TrailEventSelectorDataResourceInput interface { pulumi.Input ToTrailEventSelectorDataResourceOutput() TrailEventSelectorDataResourceOutput ToTrailEventSelectorDataResourceOutputWithContext(context.Context) TrailEventSelectorDataResourceOutput }
TrailEventSelectorDataResourceInput is an input type that accepts TrailEventSelectorDataResourceArgs and TrailEventSelectorDataResourceOutput values. You can construct a concrete instance of `TrailEventSelectorDataResourceInput` via:
TrailEventSelectorDataResourceArgs{...}
type TrailEventSelectorDataResourceOutput ¶
type TrailEventSelectorDataResourceOutput struct{ *pulumi.OutputState }
func (TrailEventSelectorDataResourceOutput) ElementType ¶
func (TrailEventSelectorDataResourceOutput) ElementType() reflect.Type
func (TrailEventSelectorDataResourceOutput) ToTrailEventSelectorDataResourceOutput ¶
func (o TrailEventSelectorDataResourceOutput) ToTrailEventSelectorDataResourceOutput() TrailEventSelectorDataResourceOutput
func (TrailEventSelectorDataResourceOutput) ToTrailEventSelectorDataResourceOutputWithContext ¶
func (o TrailEventSelectorDataResourceOutput) ToTrailEventSelectorDataResourceOutputWithContext(ctx context.Context) TrailEventSelectorDataResourceOutput
func (TrailEventSelectorDataResourceOutput) Type ¶
func (o TrailEventSelectorDataResourceOutput) Type() pulumi.StringOutput
Resource type in which you want to log data events. You can specify only the following value: "AWS::S3::Object", "AWS::Lambda::Function" and "AWS::DynamoDB::Table".
func (TrailEventSelectorDataResourceOutput) Values ¶
func (o TrailEventSelectorDataResourceOutput) Values() pulumi.StringArrayOutput
List of ARN strings or partial ARN strings to specify selectors for data audit events over data resources. ARN list is specific to single-valued `type`. For example, `arn:aws:s3:::<bucket name>/` for all objects in a bucket, `arn:aws:s3:::<bucket name>/key` for specific objects, `arn:aws:lambda` for all lambda events within an account, `arn:aws:lambda:<region>:<account number>:function:<function name>` for a specific Lambda function, `arn:aws:dynamodb` for all DDB events for all tables within an account, or `arn:aws:dynamodb:<region>:<account number>:table/<table name>` for a specific DynamoDB table.
type TrailEventSelectorInput ¶
type TrailEventSelectorInput interface { pulumi.Input ToTrailEventSelectorOutput() TrailEventSelectorOutput ToTrailEventSelectorOutputWithContext(context.Context) TrailEventSelectorOutput }
TrailEventSelectorInput is an input type that accepts TrailEventSelectorArgs and TrailEventSelectorOutput values. You can construct a concrete instance of `TrailEventSelectorInput` via:
TrailEventSelectorArgs{...}
type TrailEventSelectorOutput ¶
type TrailEventSelectorOutput struct{ *pulumi.OutputState }
func (TrailEventSelectorOutput) DataResources ¶
func (o TrailEventSelectorOutput) DataResources() TrailEventSelectorDataResourceArrayOutput
Configuration block for data events. See details below.
func (TrailEventSelectorOutput) ElementType ¶
func (TrailEventSelectorOutput) ElementType() reflect.Type
func (TrailEventSelectorOutput) ExcludeManagementEventSources ¶
func (o TrailEventSelectorOutput) ExcludeManagementEventSources() pulumi.StringArrayOutput
A set of event sources to exclude. Valid values include: `kms.amazonaws.com` and `rdsdata.amazonaws.com`. `includeManagementEvents` must be set to`true` to allow this.
func (TrailEventSelectorOutput) IncludeManagementEvents ¶
func (o TrailEventSelectorOutput) IncludeManagementEvents() pulumi.BoolPtrOutput
Whether to include management events for your trail. Defaults to `true`.
func (TrailEventSelectorOutput) ReadWriteType ¶
func (o TrailEventSelectorOutput) ReadWriteType() pulumi.StringPtrOutput
Type of events to log. Valid values are `ReadOnly`, `WriteOnly`, `All`. Default value is `All`.
func (TrailEventSelectorOutput) ToTrailEventSelectorOutput ¶
func (o TrailEventSelectorOutput) ToTrailEventSelectorOutput() TrailEventSelectorOutput
func (TrailEventSelectorOutput) ToTrailEventSelectorOutputWithContext ¶
func (o TrailEventSelectorOutput) ToTrailEventSelectorOutputWithContext(ctx context.Context) TrailEventSelectorOutput
type TrailInput ¶
type TrailInput interface { pulumi.Input ToTrailOutput() TrailOutput ToTrailOutputWithContext(ctx context.Context) TrailOutput }
type TrailInsightSelector ¶
type TrailInsightSelector struct { // Type of insights to log on a trail. Valid values are: `ApiCallRateInsight` and `ApiErrorRateInsight`. InsightType string `pulumi:"insightType"` }
type TrailInsightSelectorArgs ¶
type TrailInsightSelectorArgs struct { // Type of insights to log on a trail. Valid values are: `ApiCallRateInsight` and `ApiErrorRateInsight`. InsightType pulumi.StringInput `pulumi:"insightType"` }
func (TrailInsightSelectorArgs) ElementType ¶
func (TrailInsightSelectorArgs) ElementType() reflect.Type
func (TrailInsightSelectorArgs) ToTrailInsightSelectorOutput ¶
func (i TrailInsightSelectorArgs) ToTrailInsightSelectorOutput() TrailInsightSelectorOutput
func (TrailInsightSelectorArgs) ToTrailInsightSelectorOutputWithContext ¶
func (i TrailInsightSelectorArgs) ToTrailInsightSelectorOutputWithContext(ctx context.Context) TrailInsightSelectorOutput
type TrailInsightSelectorArray ¶
type TrailInsightSelectorArray []TrailInsightSelectorInput
func (TrailInsightSelectorArray) ElementType ¶
func (TrailInsightSelectorArray) ElementType() reflect.Type
func (TrailInsightSelectorArray) ToTrailInsightSelectorArrayOutput ¶
func (i TrailInsightSelectorArray) ToTrailInsightSelectorArrayOutput() TrailInsightSelectorArrayOutput
func (TrailInsightSelectorArray) ToTrailInsightSelectorArrayOutputWithContext ¶
func (i TrailInsightSelectorArray) ToTrailInsightSelectorArrayOutputWithContext(ctx context.Context) TrailInsightSelectorArrayOutput
type TrailInsightSelectorArrayInput ¶
type TrailInsightSelectorArrayInput interface { pulumi.Input ToTrailInsightSelectorArrayOutput() TrailInsightSelectorArrayOutput ToTrailInsightSelectorArrayOutputWithContext(context.Context) TrailInsightSelectorArrayOutput }
TrailInsightSelectorArrayInput is an input type that accepts TrailInsightSelectorArray and TrailInsightSelectorArrayOutput values. You can construct a concrete instance of `TrailInsightSelectorArrayInput` via:
TrailInsightSelectorArray{ TrailInsightSelectorArgs{...} }
type TrailInsightSelectorArrayOutput ¶
type TrailInsightSelectorArrayOutput struct{ *pulumi.OutputState }
func (TrailInsightSelectorArrayOutput) ElementType ¶
func (TrailInsightSelectorArrayOutput) ElementType() reflect.Type
func (TrailInsightSelectorArrayOutput) Index ¶
func (o TrailInsightSelectorArrayOutput) Index(i pulumi.IntInput) TrailInsightSelectorOutput
func (TrailInsightSelectorArrayOutput) ToTrailInsightSelectorArrayOutput ¶
func (o TrailInsightSelectorArrayOutput) ToTrailInsightSelectorArrayOutput() TrailInsightSelectorArrayOutput
func (TrailInsightSelectorArrayOutput) ToTrailInsightSelectorArrayOutputWithContext ¶
func (o TrailInsightSelectorArrayOutput) ToTrailInsightSelectorArrayOutputWithContext(ctx context.Context) TrailInsightSelectorArrayOutput
type TrailInsightSelectorInput ¶
type TrailInsightSelectorInput interface { pulumi.Input ToTrailInsightSelectorOutput() TrailInsightSelectorOutput ToTrailInsightSelectorOutputWithContext(context.Context) TrailInsightSelectorOutput }
TrailInsightSelectorInput is an input type that accepts TrailInsightSelectorArgs and TrailInsightSelectorOutput values. You can construct a concrete instance of `TrailInsightSelectorInput` via:
TrailInsightSelectorArgs{...}
type TrailInsightSelectorOutput ¶
type TrailInsightSelectorOutput struct{ *pulumi.OutputState }
func (TrailInsightSelectorOutput) ElementType ¶
func (TrailInsightSelectorOutput) ElementType() reflect.Type
func (TrailInsightSelectorOutput) InsightType ¶
func (o TrailInsightSelectorOutput) InsightType() pulumi.StringOutput
Type of insights to log on a trail. Valid values are: `ApiCallRateInsight` and `ApiErrorRateInsight`.
func (TrailInsightSelectorOutput) ToTrailInsightSelectorOutput ¶
func (o TrailInsightSelectorOutput) ToTrailInsightSelectorOutput() TrailInsightSelectorOutput
func (TrailInsightSelectorOutput) ToTrailInsightSelectorOutputWithContext ¶
func (o TrailInsightSelectorOutput) ToTrailInsightSelectorOutputWithContext(ctx context.Context) TrailInsightSelectorOutput
type TrailMap ¶
type TrailMap map[string]TrailInput
func (TrailMap) ElementType ¶
func (TrailMap) ToTrailMapOutput ¶
func (i TrailMap) ToTrailMapOutput() TrailMapOutput
func (TrailMap) ToTrailMapOutputWithContext ¶
func (i TrailMap) ToTrailMapOutputWithContext(ctx context.Context) TrailMapOutput
type TrailMapInput ¶
type TrailMapInput interface { pulumi.Input ToTrailMapOutput() TrailMapOutput ToTrailMapOutputWithContext(context.Context) TrailMapOutput }
TrailMapInput is an input type that accepts TrailMap and TrailMapOutput values. You can construct a concrete instance of `TrailMapInput` via:
TrailMap{ "key": TrailArgs{...} }
type TrailMapOutput ¶
type TrailMapOutput struct{ *pulumi.OutputState }
func (TrailMapOutput) ElementType ¶
func (TrailMapOutput) ElementType() reflect.Type
func (TrailMapOutput) MapIndex ¶
func (o TrailMapOutput) MapIndex(k pulumi.StringInput) TrailOutput
func (TrailMapOutput) ToTrailMapOutput ¶
func (o TrailMapOutput) ToTrailMapOutput() TrailMapOutput
func (TrailMapOutput) ToTrailMapOutputWithContext ¶
func (o TrailMapOutput) ToTrailMapOutputWithContext(ctx context.Context) TrailMapOutput
type TrailOutput ¶
type TrailOutput struct{ *pulumi.OutputState }
func (TrailOutput) AdvancedEventSelectors ¶ added in v5.4.0
func (o TrailOutput) AdvancedEventSelectors() TrailAdvancedEventSelectorArrayOutput
Specifies an advanced event selector for enabling data event logging. Fields documented below. Conflicts with `eventSelector`.
func (TrailOutput) Arn ¶ added in v5.4.0
func (o TrailOutput) Arn() pulumi.StringOutput
ARN of the trail.
func (TrailOutput) CloudWatchLogsGroupArn ¶ added in v5.4.0
func (o TrailOutput) CloudWatchLogsGroupArn() pulumi.StringPtrOutput
Log group name using an ARN that represents the log group to which CloudTrail logs will be delivered. Note that CloudTrail requires the Log Stream wildcard.
func (TrailOutput) CloudWatchLogsRoleArn ¶ added in v5.4.0
func (o TrailOutput) CloudWatchLogsRoleArn() pulumi.StringPtrOutput
Role for the CloudWatch Logs endpoint to assume to write to a user’s log group.
func (TrailOutput) ElementType ¶
func (TrailOutput) ElementType() reflect.Type
func (TrailOutput) EnableLogFileValidation ¶ added in v5.4.0
func (o TrailOutput) EnableLogFileValidation() pulumi.BoolPtrOutput
Whether log file integrity validation is enabled. Defaults to `false`.
func (TrailOutput) EnableLogging ¶ added in v5.4.0
func (o TrailOutput) EnableLogging() pulumi.BoolPtrOutput
Enables logging for the trail. Defaults to `true`. Setting this to `false` will pause logging.
func (TrailOutput) EventSelectors ¶ added in v5.4.0
func (o TrailOutput) EventSelectors() TrailEventSelectorArrayOutput
Specifies an event selector for enabling data event logging. Fields documented below. Please note the [CloudTrail limits](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) when configuring these. Conflicts with `advancedEventSelector`.
func (TrailOutput) HomeRegion ¶ added in v5.4.0
func (o TrailOutput) HomeRegion() pulumi.StringOutput
Region in which the trail was created.
func (TrailOutput) IncludeGlobalServiceEvents ¶ added in v5.4.0
func (o TrailOutput) IncludeGlobalServiceEvents() pulumi.BoolPtrOutput
Whether the trail is publishing events from global services such as IAM to the log files. Defaults to `true`.
func (TrailOutput) InsightSelectors ¶ added in v5.4.0
func (o TrailOutput) InsightSelectors() TrailInsightSelectorArrayOutput
Configuration block for identifying unusual operational activity. See details below.
func (TrailOutput) IsMultiRegionTrail ¶ added in v5.4.0
func (o TrailOutput) IsMultiRegionTrail() pulumi.BoolPtrOutput
Whether the trail is created in the current region or in all regions. Defaults to `false`.
func (TrailOutput) IsOrganizationTrail ¶ added in v5.4.0
func (o TrailOutput) IsOrganizationTrail() pulumi.BoolPtrOutput
Whether the trail is an AWS Organizations trail. Organization trails log events for the master account and all member accounts. Can only be created in the organization master account. Defaults to `false`.
func (TrailOutput) KmsKeyId ¶ added in v5.4.0
func (o TrailOutput) KmsKeyId() pulumi.StringPtrOutput
KMS key ARN to use to encrypt the logs delivered by CloudTrail.
func (TrailOutput) Name ¶ added in v5.4.0
func (o TrailOutput) Name() pulumi.StringOutput
Specifies the name of the advanced event selector.
func (TrailOutput) S3BucketName ¶ added in v5.4.0
func (o TrailOutput) S3BucketName() pulumi.StringOutput
Name of the S3 bucket designated for publishing log files.
func (TrailOutput) S3KeyPrefix ¶ added in v5.4.0
func (o TrailOutput) S3KeyPrefix() pulumi.StringPtrOutput
S3 key prefix that follows the name of the bucket you have designated for log file delivery.
func (TrailOutput) SnsTopicName ¶ added in v5.4.0
func (o TrailOutput) SnsTopicName() pulumi.StringPtrOutput
Name of the Amazon SNS topic defined for notification of log file delivery.
func (TrailOutput) Tags ¶ added in v5.4.0
func (o TrailOutput) Tags() pulumi.StringMapOutput
Map of tags to assign to the trail. If configured with provider defaultTags present, tags with matching keys will overwrite those defined at the provider-level.
func (TrailOutput) TagsAll ¶ added in v5.4.0
func (o TrailOutput) TagsAll() pulumi.StringMapOutput
Map of tags assigned to the resource, including those inherited from the provider `defaultTags` configuration block.
func (TrailOutput) ToTrailOutput ¶
func (o TrailOutput) ToTrailOutput() TrailOutput
func (TrailOutput) ToTrailOutputWithContext ¶
func (o TrailOutput) ToTrailOutputWithContext(ctx context.Context) TrailOutput
type TrailState ¶
type TrailState struct { // Specifies an advanced event selector for enabling data event logging. Fields documented below. Conflicts with `eventSelector`. AdvancedEventSelectors TrailAdvancedEventSelectorArrayInput // ARN of the trail. Arn pulumi.StringPtrInput // Log group name using an ARN that represents the log group to which CloudTrail logs will be delivered. Note that CloudTrail requires the Log Stream wildcard. CloudWatchLogsGroupArn pulumi.StringPtrInput // Role for the CloudWatch Logs endpoint to assume to write to a user’s log group. CloudWatchLogsRoleArn pulumi.StringPtrInput // Whether log file integrity validation is enabled. Defaults to `false`. EnableLogFileValidation pulumi.BoolPtrInput // Enables logging for the trail. Defaults to `true`. Setting this to `false` will pause logging. EnableLogging pulumi.BoolPtrInput // Specifies an event selector for enabling data event logging. Fields documented below. Please note the [CloudTrail limits](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) when configuring these. Conflicts with `advancedEventSelector`. EventSelectors TrailEventSelectorArrayInput // Region in which the trail was created. HomeRegion pulumi.StringPtrInput // Whether the trail is publishing events from global services such as IAM to the log files. Defaults to `true`. IncludeGlobalServiceEvents pulumi.BoolPtrInput // Configuration block for identifying unusual operational activity. See details below. InsightSelectors TrailInsightSelectorArrayInput // Whether the trail is created in the current region or in all regions. Defaults to `false`. IsMultiRegionTrail pulumi.BoolPtrInput // Whether the trail is an AWS Organizations trail. Organization trails log events for the master account and all member accounts. Can only be created in the organization master account. Defaults to `false`. IsOrganizationTrail pulumi.BoolPtrInput // KMS key ARN to use to encrypt the logs delivered by CloudTrail. KmsKeyId pulumi.StringPtrInput // Specifies the name of the advanced event selector. Name pulumi.StringPtrInput // Name of the S3 bucket designated for publishing log files. S3BucketName pulumi.StringPtrInput // S3 key prefix that follows the name of the bucket you have designated for log file delivery. S3KeyPrefix pulumi.StringPtrInput // Name of the Amazon SNS topic defined for notification of log file delivery. SnsTopicName pulumi.StringPtrInput // Map of tags to assign to the trail. If configured with provider defaultTags present, tags with matching keys will overwrite those defined at the provider-level. Tags pulumi.StringMapInput // Map of tags assigned to the resource, including those inherited from the provider `defaultTags` configuration block. TagsAll pulumi.StringMapInput }
func (TrailState) ElementType ¶
func (TrailState) ElementType() reflect.Type