Documentation
¶
Overview ¶
+k8s:deepcopy-gen=package Package v1alpha1 is the v1alpha1 version of the cloudtrail.services.k8s.aws API. +groupName=cloudtrail.services.k8s.aws
Index ¶
- Variables
- type AdvancedEventSelector
- type AdvancedFieldSelector
- type BillingMode
- type DashboardStatus
- type DashboardType
- type DataResource
- type DeliveryStatus
- type DestinationType
- type Event
- type EventCategory
- type EventDataStore
- type EventDataStoreList
- type EventDataStoreSpec
- type EventDataStoreStatus
- type EventDataStoreStatus_SDK
- type EventDataStore_SDK
- type EventSelector
- type FederationStatus
- type ImportFailureListItem
- type ImportFailureStatus
- type ImportStatus
- type ImportsListItem
- type IngestionStatus
- type InsightType
- type InsightsMetricDataType
- type LookupAttributeKey
- type PartitionKey
- type PublicKey
- type Query
- type QueryStatisticsForDescribeQuery
- type QueryStatus
- type ReadWriteType
- type RefreshScheduleFrequencyUnit
- type RefreshScheduleStatus
- type Resource
- type ResourceTag
- type S3ImportSource
- type SourceConfig
- type Tag
- type Trail
- type TrailInfo
- type TrailList
- type TrailSpec
- type TrailStatus
- type Trail_SDK
Constants ¶
This section is empty.
Variables ¶
var ( // GroupVersion is the API Group Version used to register the objects GroupVersion = schema.GroupVersion{Group: "cloudtrail.services.k8s.aws", Version: "v1alpha1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
Functions ¶
This section is empty.
Types ¶
type AdvancedEventSelector ¶
type AdvancedEventSelector struct {
FieldSelectors []*AdvancedFieldSelector `json:"fieldSelectors,omitempty"`
Name *string `json:"name,omitempty"`
}
Advanced event selectors let you create fine-grained selectors for CloudTrail management, data, and network activity events. They help you control costs by logging only those events that are important to you. For more information about configuring advanced event selectors, see the Logging data events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html), Logging network activity events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-network-events-with-cloudtrail.html), and Logging management events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html) topics in the CloudTrail User Guide.
You cannot apply both event selectors and advanced event selectors to a trail.
Supported CloudTrail event record fields for management events
eventCategory (required)
eventSource
readOnly
The following additional fields are available for event data stores:
eventName
eventType
sessionCredentialFromConsole
userIdentity.arn
Supported CloudTrail event record fields for data events
eventCategory (required)
resources.type (required)
readOnly
eventName
resources.ARN
The following additional fields are available for event data stores:
eventSource
eventType
sessionCredentialFromConsole
userIdentity.arn
Supported CloudTrail event record fields for network activity events ¶
Network activity events is in preview release for CloudTrail and is subject to change.
eventCategory (required)
eventSource (required)
eventName
errorCode - The only valid value for errorCode is VpceAccessDenied.
vpcEndpointId
For event data stores for CloudTrail Insights events, Config configuration items, Audit Manager evidence, or events outside of Amazon Web Services, the only supported field is eventCategory.
func (*AdvancedEventSelector) DeepCopy ¶
func (in *AdvancedEventSelector) DeepCopy() *AdvancedEventSelector
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AdvancedEventSelector.
func (*AdvancedEventSelector) DeepCopyInto ¶
func (in *AdvancedEventSelector) DeepCopyInto(out *AdvancedEventSelector)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AdvancedFieldSelector ¶
type AdvancedFieldSelector struct {
EndsWith []*string `json:"endsWith,omitempty"`
Equals []*string `json:"equals,omitempty"`
Field *string `json:"field,omitempty"`
NotEndsWith []*string `json:"notEndsWith,omitempty"`
NotEquals []*string `json:"notEquals,omitempty"`
NotStartsWith []*string `json:"notStartsWith,omitempty"`
StartsWith []*string `json:"startsWith,omitempty"`
}
A single selector statement in an advanced event selector.
func (*AdvancedFieldSelector) DeepCopy ¶
func (in *AdvancedFieldSelector) DeepCopy() *AdvancedFieldSelector
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AdvancedFieldSelector.
func (*AdvancedFieldSelector) DeepCopyInto ¶
func (in *AdvancedFieldSelector) DeepCopyInto(out *AdvancedFieldSelector)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type BillingMode ¶ added in v1.0.18
type BillingMode string
const ( BillingMode_EXTENDABLE_RETENTION_PRICING BillingMode = "EXTENDABLE_RETENTION_PRICING" BillingMode_FIXED_RETENTION_PRICING BillingMode = "FIXED_RETENTION_PRICING" )
type DashboardStatus ¶ added in v1.0.18
type DashboardStatus string
const ( DashboardStatus_CREATED DashboardStatus = "CREATED" DashboardStatus_CREATING DashboardStatus = "CREATING" DashboardStatus_DELETING DashboardStatus = "DELETING" DashboardStatus_UPDATED DashboardStatus = "UPDATED" DashboardStatus_UPDATING DashboardStatus = "UPDATING" )
type DashboardType ¶ added in v1.0.18
type DashboardType string
const ( DashboardType_CUSTOM DashboardType = "CUSTOM" DashboardType_MANAGED DashboardType = "MANAGED" )
type DataResource ¶
type DataResource struct {
Type *string `json:"type_,omitempty"`
}
You can configure the DataResource in an EventSelector to log data events for the following three resource types:
AWS::DynamoDB::Table
AWS::Lambda::Function
AWS::S3::Object
To log data events for all other resource types including objects stored in directory buckets (https://docs.aws.amazon.com/AmazonS3/latest/userguide/directory-buckets-overview.html), you must use AdvancedEventSelectors (https://docs.aws.amazon.com/awscloudtrail/latest/APIReference/API_AdvancedEventSelector.html). You must also use AdvancedEventSelectors if you want to filter on the eventName field.
Configure the DataResource to specify the resource type and resource ARNs for which you want to log data events.
The total number of allowed data resources is 250. This number can be distributed between 1 and 5 event selectors, but the total cannot exceed 250 across all selectors for the trail.
The following example demonstrates how logging works when you configure logging of all data events for a general purpose bucket named amzn-s3-demo-bucket1. In this example, the CloudTrail user specified an empty prefix, and the option to log both Read and Write data events.
A user uploads an image file to amzn-s3-demo-bucket1.
The PutObject API operation is an Amazon S3 object-level API. It is recorded as a data event in CloudTrail. Because the CloudTrail user specified an S3 bucket with an empty prefix, events that occur on any object in that bucket are logged. The trail processes and logs the event.
A user uploads an object to an Amazon S3 bucket named arn:aws:s3:::amzn-s3-demo-bucket1.
The PutObject API operation occurred for an object in an S3 bucket that the CloudTrail user didn't specify for the trail. The trail doesn’t log the event.
The following example demonstrates how logging works when you configure logging of Lambda data events for a Lambda function named MyLambdaFunction, but not for all Lambda functions.
A user runs a script that includes a call to the MyLambdaFunction function and the MyOtherLambdaFunction function.
The Invoke API operation on MyLambdaFunction is an Lambda API. It is recorded as a data event in CloudTrail. Because the CloudTrail user specified logging data events for MyLambdaFunction, any invocations of that function are logged. The trail processes and logs the event.
The Invoke API operation on MyOtherLambdaFunction is an Lambda API. Because the CloudTrail user did not specify logging data events for all Lambda functions, the Invoke operation for MyOtherLambdaFunction does not match the function specified for the trail. The trail doesn’t log the event.
func (*DataResource) DeepCopy ¶
func (in *DataResource) DeepCopy() *DataResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new DataResource.
func (*DataResource) DeepCopyInto ¶
func (in *DataResource) DeepCopyInto(out *DataResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type DeliveryStatus ¶ added in v1.0.18
type DeliveryStatus string
const ( DeliveryStatus_ACCESS_DENIED DeliveryStatus = "ACCESS_DENIED" DeliveryStatus_ACCESS_DENIED_SIGNING_FILE DeliveryStatus = "ACCESS_DENIED_SIGNING_FILE" DeliveryStatus_CANCELLED DeliveryStatus = "CANCELLED" DeliveryStatus_FAILED DeliveryStatus = "FAILED" DeliveryStatus_FAILED_SIGNING_FILE DeliveryStatus = "FAILED_SIGNING_FILE" DeliveryStatus_PENDING DeliveryStatus = "PENDING" DeliveryStatus_RESOURCE_NOT_FOUND DeliveryStatus = "RESOURCE_NOT_FOUND" DeliveryStatus_SUCCESS DeliveryStatus = "SUCCESS" DeliveryStatus_UNKNOWN DeliveryStatus = "UNKNOWN" )
type DestinationType ¶ added in v1.0.18
type DestinationType string
const ( DestinationType_AWS_SERVICE DestinationType = "AWS_SERVICE" DestinationType_EVENT_DATA_STORE DestinationType = "EVENT_DATA_STORE" )
type Event ¶
type Event struct {
AccessKeyID *string `json:"accessKeyID,omitempty"`
CloudTrailEvent *string `json:"cloudTrailEvent,omitempty"`
EventID *string `json:"eventID,omitempty"`
EventName *string `json:"eventName,omitempty"`
EventSource *string `json:"eventSource,omitempty"`
EventTime *metav1.Time `json:"eventTime,omitempty"`
ReadOnly *string `json:"readOnly,omitempty"`
Username *string `json:"username,omitempty"`
}
Contains information about an event that was returned by a lookup request. The result includes a representation of a CloudTrail event.
func (*Event) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Event.
func (*Event) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type EventCategory ¶
type EventCategory string
const (
EventCategory_insight EventCategory = "insight"
)
type EventDataStore ¶
type EventDataStore struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec EventDataStoreSpec `json:"spec,omitempty"`
Status EventDataStoreStatus `json:"status,omitempty"`
}
EventDataStore is the Schema for the EventDataStores API +kubebuilder:object:root=true +kubebuilder:subresource:status
func (*EventDataStore) DeepCopy ¶
func (in *EventDataStore) DeepCopy() *EventDataStore
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EventDataStore.
func (*EventDataStore) DeepCopyInto ¶
func (in *EventDataStore) DeepCopyInto(out *EventDataStore)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*EventDataStore) DeepCopyObject ¶
func (in *EventDataStore) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type EventDataStoreList ¶
type EventDataStoreList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []EventDataStore `json:"items"`
}
EventDataStoreList contains a list of EventDataStore +kubebuilder:object:root=true
func (*EventDataStoreList) DeepCopy ¶
func (in *EventDataStoreList) DeepCopy() *EventDataStoreList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EventDataStoreList.
func (*EventDataStoreList) DeepCopyInto ¶
func (in *EventDataStoreList) DeepCopyInto(out *EventDataStoreList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*EventDataStoreList) DeepCopyObject ¶
func (in *EventDataStoreList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type EventDataStoreSpec ¶
type EventDataStoreSpec struct {
// The advanced event selectors to use to select the events for the data store.
// You can configure up to five advanced event selectors for each event data
// store.
//
// For more information about how to use advanced event selectors to log CloudTrail
// events, see Log events by using advanced event selectors (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced)
// in the CloudTrail User Guide.
//
// For more information about how to use advanced event selectors to include
// Config configuration items in your event data store, see Create an event
// data store for Config configuration items (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/lake-eds-cli.html#lake-cli-create-eds-config)
// in the CloudTrail User Guide.
//
// For more information about how to use advanced event selectors to include
// events outside of Amazon Web Services events in your event data store, see
// Create an integration to log events from outside Amazon Web Services (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/lake-integrations-cli.html#lake-cli-create-integration)
// in the CloudTrail User Guide.
AdvancedEventSelectors []*AdvancedEventSelector `json:"advancedEventSelectors,omitempty"`
// Specifies whether the event data store includes events from all Regions,
// or only from the Region in which the event data store is created.
MultiRegionEnabled *bool `json:"multiRegionEnabled,omitempty"`
// The name of the event data store.
// +kubebuilder:validation:Required
Name *string `json:"name"`
// Specifies whether an event data store collects events logged for an organization
// in Organizations.
OrganizationEnabled *bool `json:"organizationEnabled,omitempty"`
// The retention period of the event data store, in days. If BillingMode is
// set to EXTENDABLE_RETENTION_PRICING, you can set a retention period of up
// to 3653 days, the equivalent of 10 years. If BillingMode is set to FIXED_RETENTION_PRICING,
// you can set a retention period of up to 2557 days, the equivalent of seven
// years.
//
// CloudTrail Lake determines whether to retain an event by checking if the
// eventTime of the event is within the specified retention period. For example,
// if you set a retention period of 90 days, CloudTrail will remove events when
// the eventTime is older than 90 days.
//
// If you plan to copy trail events to this event data store, we recommend that
// you consider both the age of the events that you want to copy as well as
// how long you want to keep the copied events in your event data store. For
// example, if you copy trail events that are 5 years old and specify a retention
// period of 7 years, the event data store will retain those events for two
// years.
RetentionPeriod *int64 `json:"retentionPeriod,omitempty"`
Tags []*Tag `json:"tags,omitempty"`
// Specifies whether termination protection is enabled for the event data store.
// If termination protection is enabled, you cannot delete the event data store
// until termination protection is disabled.
TerminationProtectionEnabled *bool `json:"terminationProtectionEnabled,omitempty"`
}
EventDataStoreSpec defines the desired state of EventDataStore.
A storage lake of event data against which you can run complex SQL-based queries. An event data store can include events that you have logged on your account. To select events for an event data store, use advanced event selectors (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-lake-concepts.html#adv-event-selectors).
func (*EventDataStoreSpec) DeepCopy ¶
func (in *EventDataStoreSpec) DeepCopy() *EventDataStoreSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EventDataStoreSpec.
func (*EventDataStoreSpec) DeepCopyInto ¶
func (in *EventDataStoreSpec) DeepCopyInto(out *EventDataStoreSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type EventDataStoreStatus ¶
type EventDataStoreStatus struct {
// All CRs managed by ACK have a common `Status.ACKResourceMetadata` member
// that is used to contain resource sync state, account ownership,
// constructed ARN for the resource
// +kubebuilder:validation:Optional
ACKResourceMetadata *ackv1alpha1.ResourceMetadata `json:"ackResourceMetadata"`
// All CRs managed by ACK have a common `Status.Conditions` member that
// contains a collection of `ackv1alpha1.Condition` objects that describe
// the various terminal states of the CR and its backend AWS service API
// resource
// +kubebuilder:validation:Optional
Conditions []*ackv1alpha1.Condition `json:"conditions"`
// The timestamp that shows when the event data store was created.
// +kubebuilder:validation:Optional
CreatedTimestamp *metav1.Time `json:"createdTimestamp,omitempty"`
// The status of event data store creation.
// +kubebuilder:validation:Optional
Status *string `json:"status,omitempty"`
// The timestamp that shows when an event data store was updated, if applicable.
// UpdatedTimestamp is always either the same or newer than the time shown in
// CreatedTimestamp.
// +kubebuilder:validation:Optional
UpdatedTimestamp *metav1.Time `json:"updatedTimestamp,omitempty"`
}
EventDataStoreStatus defines the observed state of EventDataStore
func (*EventDataStoreStatus) DeepCopy ¶
func (in *EventDataStoreStatus) DeepCopy() *EventDataStoreStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EventDataStoreStatus.
func (*EventDataStoreStatus) DeepCopyInto ¶
func (in *EventDataStoreStatus) DeepCopyInto(out *EventDataStoreStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type EventDataStoreStatus_SDK ¶
type EventDataStoreStatus_SDK string
const ( EventDataStoreStatus_SDK_CREATED EventDataStoreStatus_SDK = "CREATED" EventDataStoreStatus_SDK_ENABLED EventDataStoreStatus_SDK = "ENABLED" EventDataStoreStatus_SDK_PENDING_DELETION EventDataStoreStatus_SDK = "PENDING_DELETION" EventDataStoreStatus_SDK_STARTING_INGESTION EventDataStoreStatus_SDK = "STARTING_INGESTION" EventDataStoreStatus_SDK_STOPPED_INGESTION EventDataStoreStatus_SDK = "STOPPED_INGESTION" EventDataStoreStatus_SDK_STOPPING_INGESTION EventDataStoreStatus_SDK = "STOPPING_INGESTION" )
type EventDataStore_SDK ¶
type EventDataStore_SDK struct {
AdvancedEventSelectors []*AdvancedEventSelector `json:"advancedEventSelectors,omitempty"`
CreatedTimestamp *metav1.Time `json:"createdTimestamp,omitempty"`
EventDataStoreARN *string `json:"eventDataStoreARN,omitempty"`
MultiRegionEnabled *bool `json:"multiRegionEnabled,omitempty"`
Name *string `json:"name,omitempty"`
OrganizationEnabled *bool `json:"organizationEnabled,omitempty"`
RetentionPeriod *int64 `json:"retentionPeriod,omitempty"`
Status *string `json:"status,omitempty"`
TerminationProtectionEnabled *bool `json:"terminationProtectionEnabled,omitempty"`
UpdatedTimestamp *metav1.Time `json:"updatedTimestamp,omitempty"`
}
A storage lake of event data against which you can run complex SQL-based queries. An event data store can include events that you have logged on your account. To select events for an event data store, use advanced event selectors (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-lake-concepts.html#adv-event-selectors).
func (*EventDataStore_SDK) DeepCopy ¶
func (in *EventDataStore_SDK) DeepCopy() *EventDataStore_SDK
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EventDataStore_SDK.
func (*EventDataStore_SDK) DeepCopyInto ¶
func (in *EventDataStore_SDK) DeepCopyInto(out *EventDataStore_SDK)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type EventSelector ¶
type EventSelector struct {
IncludeManagementEvents *bool `json:"includeManagementEvents,omitempty"`
}
Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event.
You can configure up to five event selectors for a trail.
You cannot apply both event selectors and advanced event selectors to a trail.
func (*EventSelector) DeepCopy ¶
func (in *EventSelector) DeepCopy() *EventSelector
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EventSelector.
func (*EventSelector) DeepCopyInto ¶
func (in *EventSelector) DeepCopyInto(out *EventSelector)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FederationStatus ¶ added in v1.0.18
type FederationStatus string
const ( FederationStatus_DISABLED FederationStatus = "DISABLED" FederationStatus_DISABLING FederationStatus = "DISABLING" FederationStatus_ENABLED FederationStatus = "ENABLED" FederationStatus_ENABLING FederationStatus = "ENABLING" )
type ImportFailureListItem ¶ added in v1.0.18
type ImportFailureListItem struct {
ErrorMessage *string `json:"errorMessage,omitempty"`
ErrorType *string `json:"errorType,omitempty"`
LastUpdatedTime *metav1.Time `json:"lastUpdatedTime,omitempty"`
Location *string `json:"location,omitempty"`
}
Provides information about an import failure.
func (*ImportFailureListItem) DeepCopy ¶ added in v1.0.18
func (in *ImportFailureListItem) DeepCopy() *ImportFailureListItem
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ImportFailureListItem.
func (*ImportFailureListItem) DeepCopyInto ¶ added in v1.0.18
func (in *ImportFailureListItem) DeepCopyInto(out *ImportFailureListItem)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ImportFailureStatus ¶ added in v1.0.18
type ImportFailureStatus string
const ( ImportFailureStatus_FAILED ImportFailureStatus = "FAILED" ImportFailureStatus_RETRY ImportFailureStatus = "RETRY" ImportFailureStatus_SUCCEEDED ImportFailureStatus = "SUCCEEDED" )
type ImportStatus ¶ added in v1.0.18
type ImportStatus string
const ( ImportStatus_COMPLETED ImportStatus = "COMPLETED" ImportStatus_FAILED ImportStatus = "FAILED" ImportStatus_INITIALIZING ImportStatus = "INITIALIZING" ImportStatus_IN_PROGRESS ImportStatus = "IN_PROGRESS" ImportStatus_STOPPED ImportStatus = "STOPPED" )
type ImportsListItem ¶ added in v1.0.18
type ImportsListItem struct {
CreatedTimestamp *metav1.Time `json:"createdTimestamp,omitempty"`
UpdatedTimestamp *metav1.Time `json:"updatedTimestamp,omitempty"`
}
Contains information about an import that was returned by a lookup request.
func (*ImportsListItem) DeepCopy ¶ added in v1.0.18
func (in *ImportsListItem) DeepCopy() *ImportsListItem
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ImportsListItem.
func (*ImportsListItem) DeepCopyInto ¶ added in v1.0.18
func (in *ImportsListItem) DeepCopyInto(out *ImportsListItem)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IngestionStatus ¶ added in v1.0.18
type IngestionStatus struct {
LatestIngestionAttemptTime *metav1.Time `json:"latestIngestionAttemptTime,omitempty"`
LatestIngestionSuccessTime *metav1.Time `json:"latestIngestionSuccessTime,omitempty"`
}
A table showing information about the most recent successful and failed attempts to ingest events.
func (*IngestionStatus) DeepCopy ¶ added in v1.0.18
func (in *IngestionStatus) DeepCopy() *IngestionStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IngestionStatus.
func (*IngestionStatus) DeepCopyInto ¶ added in v1.0.18
func (in *IngestionStatus) DeepCopyInto(out *IngestionStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type InsightType ¶
type InsightType string
const ( InsightType_ApiCallRateInsight InsightType = "ApiCallRateInsight" InsightType_ApiErrorRateInsight InsightType = "ApiErrorRateInsight" )
type InsightsMetricDataType ¶ added in v1.0.18
type InsightsMetricDataType string
const ( InsightsMetricDataType_FillWithZeros InsightsMetricDataType = "FillWithZeros" InsightsMetricDataType_NonZeroData InsightsMetricDataType = "NonZeroData" )
type LookupAttributeKey ¶
type LookupAttributeKey string
const ( LookupAttributeKey_AccessKeyId LookupAttributeKey = "AccessKeyId" LookupAttributeKey_EventId LookupAttributeKey = "EventId" LookupAttributeKey_EventName LookupAttributeKey = "EventName" LookupAttributeKey_EventSource LookupAttributeKey = "EventSource" LookupAttributeKey_ReadOnly LookupAttributeKey = "ReadOnly" LookupAttributeKey_ResourceName LookupAttributeKey = "ResourceName" LookupAttributeKey_ResourceType LookupAttributeKey = "ResourceType" LookupAttributeKey_Username LookupAttributeKey = "Username" )
type PartitionKey ¶ added in v1.0.18
type PartitionKey struct {
Name *string `json:"name,omitempty"`
Type *string `json:"type_,omitempty"`
}
Contains information about a partition key for an event data store.
func (*PartitionKey) DeepCopy ¶ added in v1.0.18
func (in *PartitionKey) DeepCopy() *PartitionKey
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartitionKey.
func (*PartitionKey) DeepCopyInto ¶ added in v1.0.18
func (in *PartitionKey) DeepCopyInto(out *PartitionKey)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PublicKey ¶
type PublicKey struct {
Fingerprint *string `json:"fingerprint,omitempty"`
ValidityEndTime *metav1.Time `json:"validityEndTime,omitempty"`
ValidityStartTime *metav1.Time `json:"validityStartTime,omitempty"`
}
Contains information about a returned public key.
func (*PublicKey) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PublicKey.
func (*PublicKey) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Query ¶
A SQL string of criteria about events that you want to collect in an event data store.
func (*Query) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Query.
func (*Query) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type QueryStatisticsForDescribeQuery ¶
type QueryStatisticsForDescribeQuery struct {
CreationTime *metav1.Time `json:"creationTime,omitempty"`
}
Gets metadata about a query, including the number of events that were matched, the total number of events scanned, the query run time in milliseconds, and the query's creation time.
func (*QueryStatisticsForDescribeQuery) DeepCopy ¶
func (in *QueryStatisticsForDescribeQuery) DeepCopy() *QueryStatisticsForDescribeQuery
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new QueryStatisticsForDescribeQuery.
func (*QueryStatisticsForDescribeQuery) DeepCopyInto ¶
func (in *QueryStatisticsForDescribeQuery) DeepCopyInto(out *QueryStatisticsForDescribeQuery)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type QueryStatus ¶
type QueryStatus string
const ( QueryStatus_CANCELLED QueryStatus = "CANCELLED" QueryStatus_FAILED QueryStatus = "FAILED" QueryStatus_FINISHED QueryStatus = "FINISHED" QueryStatus_QUEUED QueryStatus = "QUEUED" QueryStatus_RUNNING QueryStatus = "RUNNING" QueryStatus_TIMED_OUT QueryStatus = "TIMED_OUT" )
type ReadWriteType ¶
type ReadWriteType string
const ( ReadWriteType_All ReadWriteType = "All" ReadWriteType_ReadOnly ReadWriteType = "ReadOnly" ReadWriteType_WriteOnly ReadWriteType = "WriteOnly" )
type RefreshScheduleFrequencyUnit ¶ added in v1.0.18
type RefreshScheduleFrequencyUnit string
const ( RefreshScheduleFrequencyUnit_DAYS RefreshScheduleFrequencyUnit = "DAYS" RefreshScheduleFrequencyUnit_HOURS RefreshScheduleFrequencyUnit = "HOURS" )
type RefreshScheduleStatus ¶ added in v1.0.18
type RefreshScheduleStatus string
const ( RefreshScheduleStatus_DISABLED RefreshScheduleStatus = "DISABLED" RefreshScheduleStatus_ENABLED RefreshScheduleStatus = "ENABLED" )
type Resource ¶
type Resource struct {
ResourceName *string `json:"resourceName,omitempty"`
ResourceType *string `json:"resourceType,omitempty"`
}
Specifies the type and name of a resource referenced by an event.
func (*Resource) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Resource.
func (*Resource) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ResourceTag ¶
type ResourceTag struct {
ResourceID *string `json:"resourceID,omitempty"`
// A list of tags.
TagsList []*Tag `json:"tagsList,omitempty"`
}
A resource tag.
func (*ResourceTag) DeepCopy ¶
func (in *ResourceTag) DeepCopy() *ResourceTag
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ResourceTag.
func (*ResourceTag) DeepCopyInto ¶
func (in *ResourceTag) DeepCopyInto(out *ResourceTag)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type S3ImportSource ¶ added in v1.0.18
type S3ImportSource struct {
S3BucketAccessRoleARN *string `json:"s3BucketAccessRoleARN,omitempty"`
S3BucketRegion *string `json:"s3BucketRegion,omitempty"`
S3LocationURI *string `json:"s3LocationURI,omitempty"`
}
The settings for the source S3 bucket.
func (*S3ImportSource) DeepCopy ¶ added in v1.0.18
func (in *S3ImportSource) DeepCopy() *S3ImportSource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new S3ImportSource.
func (*S3ImportSource) DeepCopyInto ¶ added in v1.0.18
func (in *S3ImportSource) DeepCopyInto(out *S3ImportSource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SourceConfig ¶ added in v1.0.18
type SourceConfig struct {
AdvancedEventSelectors []*AdvancedEventSelector `json:"advancedEventSelectors,omitempty"`
ApplyToAllRegions *bool `json:"applyToAllRegions,omitempty"`
}
Contains configuration information about the channel.
func (*SourceConfig) DeepCopy ¶ added in v1.0.18
func (in *SourceConfig) DeepCopy() *SourceConfig
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SourceConfig.
func (*SourceConfig) DeepCopyInto ¶ added in v1.0.18
func (in *SourceConfig) DeepCopyInto(out *SourceConfig)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Tag ¶
A custom key-value pair associated with a resource such as a CloudTrail trail, event data store, dashboard, or channel.
func (*Tag) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Tag.
func (*Tag) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Trail ¶
type Trail struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec TrailSpec `json:"spec,omitempty"`
Status TrailStatus `json:"status,omitempty"`
}
Trail is the Schema for the Trails API +kubebuilder:object:root=true +kubebuilder:subresource:status
func (*Trail) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Trail.
func (*Trail) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Trail) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrailInfo ¶
type TrailInfo struct {
HomeRegion *string `json:"homeRegion,omitempty"`
Name *string `json:"name,omitempty"`
TrailARN *string `json:"trailARN,omitempty"`
}
Information about a CloudTrail trail, including the trail's name, home Region, and Amazon Resource Name (ARN).
func (*TrailInfo) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrailInfo.
func (*TrailInfo) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TrailList ¶
type TrailList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []Trail `json:"items"`
}
TrailList contains a list of Trail +kubebuilder:object:root=true
func (*TrailList) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrailList.
func (*TrailList) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TrailList) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TrailSpec ¶
type TrailSpec struct {
// Specifies a log group name using an Amazon Resource Name (ARN), a unique
// identifier that represents the log group to which CloudTrail logs will be
// delivered. You must use a log group that exists in your account.
//
// Not required unless you specify CloudWatchLogsRoleArn.
CloudWatchLogsLogGroupARN *string `json:"cloudWatchLogsLogGroupARN,omitempty"`
// Specifies the role for the CloudWatch Logs endpoint to assume to write to
// a user's log group. You must use a role that exists in your account.
CloudWatchLogsRoleARN *string `json:"cloudWatchLogsRoleARN,omitempty"`
// Specifies whether log file integrity validation is enabled. The default is
// false.
//
// When you disable log file integrity validation, the chain of digest files
// is broken after one hour. CloudTrail does not create digest files for log
// files that were delivered during a period in which log file integrity validation
// was disabled. For example, if you enable log file integrity validation at
// noon on January 1, disable it at noon on January 2, and re-enable it at noon
// on January 10, digest files will not be created for the log files delivered
// from noon on January 2 to noon on January 10. The same applies whenever you
// stop CloudTrail logging or delete a trail.
EnableLogFileValidation *bool `json:"enableLogFileValidation,omitempty"`
// Specifies whether the trail is publishing events from global services such
// as IAM to the log files.
IncludeGlobalServiceEvents *bool `json:"includeGlobalServiceEvents,omitempty"`
// Specifies whether the trail is created in the current Region or in all Regions.
// The default is false, which creates a trail only in the Region where you
// are signed in. As a best practice, consider creating trails that log events
// in all Regions.
IsMultiRegionTrail *bool `json:"isMultiRegionTrail,omitempty"`
// Specifies whether the trail is created for all accounts in an organization
// in Organizations, or only for the current Amazon Web Services account. The
// default is false, and cannot be true unless the call is made on behalf of
// an Amazon Web Services account that is the management account or delegated
// administrator account for an organization in Organizations.
IsOrganizationTrail *bool `json:"isOrganizationTrail,omitempty"`
// Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail.
// The value can be an alias name prefixed by alias/, a fully specified ARN
// to an alias, a fully specified ARN to a key, or a globally unique identifier.
//
// CloudTrail also supports KMS multi-Region keys. For more information about
// multi-Region keys, see Using multi-Region keys (https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html)
// in the Key Management Service Developer Guide.
//
// Examples:
//
// - alias/MyAliasName
//
// - arn:aws:kms:us-east-2:123456789012:alias/MyAliasName
//
// - arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012
//
// - 12345678-1234-1234-1234-123456789012
KMSKeyID *string `json:"kmsKeyID,omitempty"`
// Specifies the name of the trail. The name must meet the following requirements:
//
// - Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores
// (_), or dashes (-)
//
// - Start with a letter or number, and end with a letter or number
//
// - Be between 3 and 128 characters
//
// - Have no adjacent periods, underscores or dashes. Names like my-_namespace
// and my--namespace are not valid.
//
// - Not be in IP address format (for example, 192.168.5.4)
//
// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="Value is immutable once set"
// +kubebuilder:validation:Required
Name *string `json:"name"`
// Specifies the name of the Amazon S3 bucket designated for publishing log
// files. For information about bucket naming rules, see Bucket naming rules
// (https://docs.aws.amazon.com/AmazonS3/latest/userguide/bucketnamingrules.html)
// in the Amazon Simple Storage Service User Guide.
// +kubebuilder:validation:Required
S3BucketName *string `json:"s3BucketName"`
// Specifies the Amazon S3 key prefix that comes after the name of the bucket
// you have designated for log file delivery. For more information, see Finding
// Your CloudTrail Log Files (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/get-and-view-cloudtrail-log-files.html#cloudtrail-find-log-files).
// The maximum length is 200 characters.
S3KeyPrefix *string `json:"s3KeyPrefix,omitempty"`
// Specifies the name of the Amazon SNS topic defined for notification of log
// file delivery. The maximum length is 256 characters.
SNSTopicName *string `json:"snsTopicName,omitempty"`
Tags []*Tag `json:"tags,omitempty"`
}
TrailSpec defines the desired state of Trail.
The settings for a trail.
func (*TrailSpec) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrailSpec.
func (*TrailSpec) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TrailStatus ¶
type TrailStatus struct {
// All CRs managed by ACK have a common `Status.ACKResourceMetadata` member
// that is used to contain resource sync state, account ownership,
// constructed ARN for the resource
// +kubebuilder:validation:Optional
ACKResourceMetadata *ackv1alpha1.ResourceMetadata `json:"ackResourceMetadata"`
// All CRs managed by ACK have a common `Status.Conditions` member that
// contains a collection of `ackv1alpha1.Condition` objects that describe
// the various terminal states of the CR and its backend AWS service API
// resource
// +kubebuilder:validation:Optional
Conditions []*ackv1alpha1.Condition `json:"conditions"`
// Specifies whether log file integrity validation is enabled.
// +kubebuilder:validation:Optional
LogFileValidationEnabled *bool `json:"logFileValidationEnabled,omitempty"`
// Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send notifications
// when log files are delivered. The format of a topic ARN is:
//
// arn:aws:sns:us-east-2:123456789012:MyTopic
// +kubebuilder:validation:Optional
SNSTopicARN *string `json:"snsTopicARN,omitempty"`
}
TrailStatus defines the observed state of Trail
func (*TrailStatus) DeepCopy ¶
func (in *TrailStatus) DeepCopy() *TrailStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TrailStatus.
func (*TrailStatus) DeepCopyInto ¶
func (in *TrailStatus) DeepCopyInto(out *TrailStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Trail_SDK ¶
type Trail_SDK struct {
CloudWatchLogsLogGroupARN *string `json:"cloudWatchLogsLogGroupARN,omitempty"`
CloudWatchLogsRoleARN *string `json:"cloudWatchLogsRoleARN,omitempty"`
HasCustomEventSelectors *bool `json:"hasCustomEventSelectors,omitempty"`
HasInsightSelectors *bool `json:"hasInsightSelectors,omitempty"`
HomeRegion *string `json:"homeRegion,omitempty"`
IncludeGlobalServiceEvents *bool `json:"includeGlobalServiceEvents,omitempty"`
IsMultiRegionTrail *bool `json:"isMultiRegionTrail,omitempty"`
IsOrganizationTrail *bool `json:"isOrganizationTrail,omitempty"`
KMSKeyID *string `json:"kmsKeyID,omitempty"`
LogFileValidationEnabled *bool `json:"logFileValidationEnabled,omitempty"`
Name *string `json:"name,omitempty"`
S3BucketName *string `json:"s3BucketName,omitempty"`
S3KeyPrefix *string `json:"s3KeyPrefix,omitempty"`
SNSTopicARN *string `json:"snsTopicARN,omitempty"`
SNSTopicName *string `json:"snsTopicName,omitempty"`
TrailARN *string `json:"trailARN,omitempty"`
}
The settings for a trail.
func (*Trail_SDK) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Trail_SDK.
func (*Trail_SDK) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files