configrules

package
v0.0.96 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 22, 2023 License: Apache-2.0 Imports: 11 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func IamPasswordPolicy_DEFAULT_DESCRIPTION 

func IamPasswordPolicy_DEFAULT_DESCRIPTION() *string

func IamPasswordPolicy_DEFAULT_MAX_PASSWORD_AGE 

func IamPasswordPolicy_DEFAULT_MAX_PASSWORD_AGE() *float64

func IamPasswordPolicy_DEFAULT_MINIMUM_PASSWORD_LENGTH 

func IamPasswordPolicy_DEFAULT_MINIMUM_PASSWORD_LENGTH() *float64

func IamPasswordPolicy_DEFAULT_PASSWORD_REUSE_PREVENTION 

func IamPasswordPolicy_DEFAULT_PASSWORD_REUSE_PREVENTION() *float64

func IamPasswordPolicy_DEFAULT_REQUIRE_LOWERCASE_CHARACTERS 

func IamPasswordPolicy_DEFAULT_REQUIRE_LOWERCASE_CHARACTERS() *bool

func IamPasswordPolicy_DEFAULT_REQUIRE_NUMBERS 

func IamPasswordPolicy_DEFAULT_REQUIRE_NUMBERS() *bool

func IamPasswordPolicy_DEFAULT_REQUIRE_SYMBOLS 

func IamPasswordPolicy_DEFAULT_REQUIRE_SYMBOLS() *bool

func IamPasswordPolicy_DEFAULT_REQUIRE_UPPERCASE_CHARACTERS 

func IamPasswordPolicy_DEFAULT_REQUIRE_UPPERCASE_CHARACTERS() *bool

func IamPasswordPolicy_FromConfigRuleName 

func IamPasswordPolicy_FromConfigRuleName(scope constructs.Construct, id *string, configRuleName *string) awsconfig.IRule

Imports an existing rule.

func IamPasswordPolicy_IsConstruct 

func IamPasswordPolicy_IsConstruct(x interface{}) *bool

Checks if `x` is a construct.

Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.

func IamPasswordPolicy_IsOwnedResource 

func IamPasswordPolicy_IsOwnedResource(construct constructs.IConstruct) *bool

Returns true if the construct was created by CDK, and false otherwise.

func IamPasswordPolicy_IsResource 

func IamPasswordPolicy_IsResource(construct constructs.IConstruct) *bool

Check whether the given construct is a Resource.

func IamPasswordPolicy_MANAGED_RULE_NAME 

func IamPasswordPolicy_MANAGED_RULE_NAME() *string

func IamPasswordPolicy_REMEDIATION_DOCUMENT_NAME 

func IamPasswordPolicy_REMEDIATION_DOCUMENT_NAME() *string

func NewIamPasswordPolicy_Override 

func NewIamPasswordPolicy_Override(i IamPasswordPolicy, scope constructs.IConstruct, id *string, props *IamPasswordPolicyProps)

func NewVpcDefaultSecurityGroupClosed_Override 

func NewVpcDefaultSecurityGroupClosed_Override(v VpcDefaultSecurityGroupClosed, scope constructs.IConstruct, id *string, props *VpcDefaultSecurityGroupClosedProps)

func VpcDefaultSecurityGroupClosed_DEFAULT_DESCRIPTION 

func VpcDefaultSecurityGroupClosed_DEFAULT_DESCRIPTION() *string

func VpcDefaultSecurityGroupClosed_FromConfigRuleName 

func VpcDefaultSecurityGroupClosed_FromConfigRuleName(scope constructs.Construct, id *string, configRuleName *string) awsconfig.IRule

Imports an existing rule.

func VpcDefaultSecurityGroupClosed_IsConstruct 

func VpcDefaultSecurityGroupClosed_IsConstruct(x interface{}) *bool

Checks if `x` is a construct.

Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.

func VpcDefaultSecurityGroupClosed_IsOwnedResource 

func VpcDefaultSecurityGroupClosed_IsOwnedResource(construct constructs.IConstruct) *bool

Returns true if the construct was created by CDK, and false otherwise.

func VpcDefaultSecurityGroupClosed_IsResource 

func VpcDefaultSecurityGroupClosed_IsResource(construct constructs.IConstruct) *bool

Check whether the given construct is a Resource.

func VpcDefaultSecurityGroupClosed_MANAGED_RULE_NAME 

func VpcDefaultSecurityGroupClosed_MANAGED_RULE_NAME() *string

func VpcDefaultSecurityGroupClosed_REMEDIATION_DOCUMENT_NAME 

func VpcDefaultSecurityGroupClosed_REMEDIATION_DOCUMENT_NAME() *string

Types

type IamPasswordPolicy 

type IamPasswordPolicy interface {
	awsconfig.ManagedRule
	// The arn of the rule.
	ConfigRuleArn() *string
	// The compliance status of the rule.
	ConfigRuleComplianceType() *string
	// The id of the rule.
	ConfigRuleId() *string
	// The name of the rule.
	ConfigRuleName() *string
	// The environment this resource belongs to.
	//
	// For resources that are created and managed by the CDK
	// (generally, those created by creating new class instances like Role, Bucket, etc.),
	// this is always the same as the environment of the stack they belong to;
	// however, for imported resources
	// (those obtained from static methods like fromRoleArn, fromBucketName, etc.),
	// that might be different than the stack they were imported into.
	Env() *awscdk.ResourceEnvironment
	IsCustomWithChanges() *bool
	SetIsCustomWithChanges(val *bool)
	IsManaged() *bool
	SetIsManaged(val *bool)
	MaxPasswordAge() *float64
	MinimumPasswordLength() *float64
	// The tree node.
	Node() constructs.Node
	PasswordReusePrevention() *float64
	// Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.
	//
	// This value will resolve to one of the following:
	// - a concrete value (e.g. `"my-awesome-bucket"`)
	// - `undefined`, when a name should be generated by CloudFormation
	// - a concrete name generated automatically during synthesis, in
	//   cross-environment scenarios.
	PhysicalName() *string
	RemediationConfiguration() config.RemediationConfiguration
	RemediationPolicy() awsiam.ManagedPolicy
	RemediationRole() awsiam.Role
	RequireLowercaseCharacters() *bool
	RequireNumbers() *bool
	RequireSymbols() *bool
	RequireUppercaseCharacters() *bool
	RuleScope() awsconfig.RuleScope
	SetRuleScope(val awsconfig.RuleScope)
	// The stack in which this resource is defined.
	Stack() awscdk.Stack
	// Apply the given removal policy to this resource.
	//
	// The Removal Policy controls what happens to this resource when it stops
	// being managed by CloudFormation, either because you've removed it from the
	// CDK application or because you've made a change that requires the resource
	// to be replaced.
	//
	// The resource can be deleted (`RemovalPolicy.DESTROY`), or left in your AWS
	// account for data recovery and cleanup later (`RemovalPolicy.RETAIN`).
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy)
	GeneratePhysicalName() *string
	// Returns an environment-sensitive token that should be used for the resource's "ARN" attribute (e.g. `bucket.bucketArn`).
	//
	// Normally, this token will resolve to `arnAttr`, but if the resource is
	// referenced across environments, `arnComponents` will be used to synthesize
	// a concrete ARN with the resource's physical name. Make sure to reference
	// `this.physicalName` in `arnComponents`.
	GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string
	// Returns an environment-sensitive token that should be used for the resource's "name" attribute (e.g. `bucket.bucketName`).
	//
	// Normally, this token will resolve to `nameAttr`, but if the resource is
	// referenced across environments, it will be resolved to `this.physicalName`,
	// which will be a concrete name.
	GetResourceNameAttribute(nameAttr *string) *string
	// Defines an EventBridge event rule which triggers for rule compliance events.
	OnComplianceChange(id *string, options *awsevents.OnEventOptions) awsevents.Rule
	// Defines an EventBridge event rule which triggers for rule events.
	//
	// Use
	// `rule.addEventPattern(pattern)` to specify a filter.
	OnEvent(id *string, options *awsevents.OnEventOptions) awsevents.Rule
	// Defines an EventBridge event rule which triggers for rule re-evaluation status events.
	OnReEvaluationStatus(id *string, options *awsevents.OnEventOptions) awsevents.Rule
	// Returns a string representation of this construct.
	ToString() *string
}

func NewIamPasswordPolicy 

func NewIamPasswordPolicy(scope constructs.IConstruct, id *string, props *IamPasswordPolicyProps) IamPasswordPolicy

type IamPasswordPolicyProps 

type IamPasswordPolicyProps struct {
	// The AWS account ID this resource belongs to.
	// Default: - the resource is in the same account as the stack it belongs to.
	//
	Account *string `field:"optional" json:"account" yaml:"account"`
	// ARN to deduce region and account from.
	//
	// The ARN is parsed and the account and region are taken from the ARN.
	// This should be used for imported resources.
	//
	// Cannot be supplied together with either `account` or `region`.
	// Default: - take environment from `account`, `region` parameters, or use Stack environment.
	//
	EnvironmentFromArn *string `field:"optional" json:"environmentFromArn" yaml:"environmentFromArn"`
	// The value passed in by users to the physical name prop of the resource.
	//
	// - `undefined` implies that a physical name will be allocated by
	//   CloudFormation during deployment.
	// - a concrete value implies a specific physical name
	// - `PhysicalName.GENERATE_IF_NEEDED` is a marker that indicates that a physical will only be generated
	//   by the CDK if it is needed for cross-environment references. Otherwise, it will be allocated by CloudFormation.
	// Default: - The physical name will be allocated by CloudFormation at deployment time.
	//
	PhysicalName *string `field:"optional" json:"physicalName" yaml:"physicalName"`
	// The AWS region this resource belongs to.
	// Default: - the resource is in the same region as the stack it belongs to.
	//
	Region                     *string                             `field:"optional" json:"region" yaml:"region"`
	AutoRemediation            *bool                               `field:"optional" json:"autoRemediation" yaml:"autoRemediation"`
	ConfigRuleName             *string                             `field:"optional" json:"configRuleName" yaml:"configRuleName"`
	Description                *string                             `field:"optional" json:"description" yaml:"description"`
	MaximumExecutionFrequency  awsconfig.MaximumExecutionFrequency `field:"optional" json:"maximumExecutionFrequency" yaml:"maximumExecutionFrequency"`
	MaxPasswordAge             *float64                            `field:"optional" json:"maxPasswordAge" yaml:"maxPasswordAge"`
	MinimumPasswordLength      *float64                            `field:"optional" json:"minimumPasswordLength" yaml:"minimumPasswordLength"`
	PasswordReusePrevention    *float64                            `field:"optional" json:"passwordReusePrevention" yaml:"passwordReusePrevention"`
	RequireLowercaseCharacters *bool                               `field:"optional" json:"requireLowercaseCharacters" yaml:"requireLowercaseCharacters"`
	RequireNumbers             *bool                               `field:"optional" json:"requireNumbers" yaml:"requireNumbers"`
	RequireSymbols             *bool                               `field:"optional" json:"requireSymbols" yaml:"requireSymbols"`
	RequireUppercaseCharacters *bool                               `field:"optional" json:"requireUppercaseCharacters" yaml:"requireUppercaseCharacters"`
}

type VpcDefaultSecurityGroupClosed 

type VpcDefaultSecurityGroupClosed interface {
	awsconfig.ManagedRule
	// The arn of the rule.
	ConfigRuleArn() *string
	// The compliance status of the rule.
	ConfigRuleComplianceType() *string
	// The id of the rule.
	ConfigRuleId() *string
	// The name of the rule.
	ConfigRuleName() *string
	// The environment this resource belongs to.
	//
	// For resources that are created and managed by the CDK
	// (generally, those created by creating new class instances like Role, Bucket, etc.),
	// this is always the same as the environment of the stack they belong to;
	// however, for imported resources
	// (those obtained from static methods like fromRoleArn, fromBucketName, etc.),
	// that might be different than the stack they were imported into.
	Env() *awscdk.ResourceEnvironment
	IsCustomWithChanges() *bool
	SetIsCustomWithChanges(val *bool)
	IsManaged() *bool
	SetIsManaged(val *bool)
	// The tree node.
	Node() constructs.Node
	// Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.
	//
	// This value will resolve to one of the following:
	// - a concrete value (e.g. `"my-awesome-bucket"`)
	// - `undefined`, when a name should be generated by CloudFormation
	// - a concrete name generated automatically during synthesis, in
	//   cross-environment scenarios.
	PhysicalName() *string
	RemediationConfiguration() config.RemediationConfiguration
	RemediationPolicy() awsiam.ManagedPolicy
	RemediationRole() awsiam.Role
	RuleScope() awsconfig.RuleScope
	SetRuleScope(val awsconfig.RuleScope)
	// The stack in which this resource is defined.
	Stack() awscdk.Stack
	// Apply the given removal policy to this resource.
	//
	// The Removal Policy controls what happens to this resource when it stops
	// being managed by CloudFormation, either because you've removed it from the
	// CDK application or because you've made a change that requires the resource
	// to be replaced.
	//
	// The resource can be deleted (`RemovalPolicy.DESTROY`), or left in your AWS
	// account for data recovery and cleanup later (`RemovalPolicy.RETAIN`).
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy)
	GeneratePhysicalName() *string
	// Returns an environment-sensitive token that should be used for the resource's "ARN" attribute (e.g. `bucket.bucketArn`).
	//
	// Normally, this token will resolve to `arnAttr`, but if the resource is
	// referenced across environments, `arnComponents` will be used to synthesize
	// a concrete ARN with the resource's physical name. Make sure to reference
	// `this.physicalName` in `arnComponents`.
	GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string
	// Returns an environment-sensitive token that should be used for the resource's "name" attribute (e.g. `bucket.bucketName`).
	//
	// Normally, this token will resolve to `nameAttr`, but if the resource is
	// referenced across environments, it will be resolved to `this.physicalName`,
	// which will be a concrete name.
	GetResourceNameAttribute(nameAttr *string) *string
	// Defines an EventBridge event rule which triggers for rule compliance events.
	OnComplianceChange(id *string, options *awsevents.OnEventOptions) awsevents.Rule
	// Defines an EventBridge event rule which triggers for rule events.
	//
	// Use
	// `rule.addEventPattern(pattern)` to specify a filter.
	OnEvent(id *string, options *awsevents.OnEventOptions) awsevents.Rule
	// Defines an EventBridge event rule which triggers for rule re-evaluation status events.
	OnReEvaluationStatus(id *string, options *awsevents.OnEventOptions) awsevents.Rule
	// Returns a string representation of this construct.
	ToString() *string
}

func NewVpcDefaultSecurityGroupClosed 

func NewVpcDefaultSecurityGroupClosed(scope constructs.IConstruct, id *string, props *VpcDefaultSecurityGroupClosedProps) VpcDefaultSecurityGroupClosed

type VpcDefaultSecurityGroupClosedProps 

type VpcDefaultSecurityGroupClosedProps struct {
	// The AWS account ID this resource belongs to.
	// Default: - the resource is in the same account as the stack it belongs to.
	//
	Account *string `field:"optional" json:"account" yaml:"account"`
	// ARN to deduce region and account from.
	//
	// The ARN is parsed and the account and region are taken from the ARN.
	// This should be used for imported resources.
	//
	// Cannot be supplied together with either `account` or `region`.
	// Default: - take environment from `account`, `region` parameters, or use Stack environment.
	//
	EnvironmentFromArn *string `field:"optional" json:"environmentFromArn" yaml:"environmentFromArn"`
	// The value passed in by users to the physical name prop of the resource.
	//
	// - `undefined` implies that a physical name will be allocated by
	//   CloudFormation during deployment.
	// - a concrete value implies a specific physical name
	// - `PhysicalName.GENERATE_IF_NEEDED` is a marker that indicates that a physical will only be generated
	//   by the CDK if it is needed for cross-environment references. Otherwise, it will be allocated by CloudFormation.
	// Default: - The physical name will be allocated by CloudFormation at deployment time.
	//
	PhysicalName *string `field:"optional" json:"physicalName" yaml:"physicalName"`
	// The AWS region this resource belongs to.
	// Default: - the resource is in the same region as the stack it belongs to.
	//
	Region                    *string                             `field:"optional" json:"region" yaml:"region"`
	AutoRemediation           *bool                               `field:"optional" json:"autoRemediation" yaml:"autoRemediation"`
	ConfigRuleName            *string                             `field:"optional" json:"configRuleName" yaml:"configRuleName"`
	Description               *string                             `field:"optional" json:"description" yaml:"description"`
	MaximumExecutionFrequency awsconfig.MaximumExecutionFrequency `field:"optional" json:"maximumExecutionFrequency" yaml:"maximumExecutionFrequency"`
}

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.