Documentation ¶
Overview ¶
Package fms provides the API client, operations, and parameter types for Firewall Management Service.
AWS Firewall Manager This is the AWS Firewall Manager API Reference. This guide is for developers who need detailed information about the AWS Firewall Manager API actions, data types, and errors. For detailed information about AWS Firewall Manager features, see the AWS Firewall Manager Developer Guide (https://docs.aws.amazon.com/waf/latest/developerguide/fms-chapter.html). Some API actions require explicit resource permissions. For information, see the developer guide topic Firewall Manager required permissions for API actions (https://docs.aws.amazon.com/waf/latest/developerguide/fms-api-permissions-ref.html).
Index ¶
- Constants
- func NewDefaultEndpointResolver() *internalendpoints.Resolver
- func WithAPIOptions(optFns ...func(*middleware.Stack) error) func(*Options)
- func WithEndpointResolver(v EndpointResolver) func(*Options)
- type AssociateAdminAccountInput
- type AssociateAdminAccountOutput
- type Client
- func (c *Client) AssociateAdminAccount(ctx context.Context, params *AssociateAdminAccountInput, ...) (*AssociateAdminAccountOutput, error)
- func (c *Client) DeleteAppsList(ctx context.Context, params *DeleteAppsListInput, optFns ...func(*Options)) (*DeleteAppsListOutput, error)
- func (c *Client) DeleteNotificationChannel(ctx context.Context, params *DeleteNotificationChannelInput, ...) (*DeleteNotificationChannelOutput, error)
- func (c *Client) DeletePolicy(ctx context.Context, params *DeletePolicyInput, optFns ...func(*Options)) (*DeletePolicyOutput, error)
- func (c *Client) DeleteProtocolsList(ctx context.Context, params *DeleteProtocolsListInput, ...) (*DeleteProtocolsListOutput, error)
- func (c *Client) DisassociateAdminAccount(ctx context.Context, params *DisassociateAdminAccountInput, ...) (*DisassociateAdminAccountOutput, error)
- func (c *Client) GetAdminAccount(ctx context.Context, params *GetAdminAccountInput, optFns ...func(*Options)) (*GetAdminAccountOutput, error)
- func (c *Client) GetAppsList(ctx context.Context, params *GetAppsListInput, optFns ...func(*Options)) (*GetAppsListOutput, error)
- func (c *Client) GetComplianceDetail(ctx context.Context, params *GetComplianceDetailInput, ...) (*GetComplianceDetailOutput, error)
- func (c *Client) GetNotificationChannel(ctx context.Context, params *GetNotificationChannelInput, ...) (*GetNotificationChannelOutput, error)
- func (c *Client) GetPolicy(ctx context.Context, params *GetPolicyInput, optFns ...func(*Options)) (*GetPolicyOutput, error)
- func (c *Client) GetProtectionStatus(ctx context.Context, params *GetProtectionStatusInput, ...) (*GetProtectionStatusOutput, error)
- func (c *Client) GetProtocolsList(ctx context.Context, params *GetProtocolsListInput, optFns ...func(*Options)) (*GetProtocolsListOutput, error)
- func (c *Client) GetViolationDetails(ctx context.Context, params *GetViolationDetailsInput, ...) (*GetViolationDetailsOutput, error)
- func (c *Client) ListAppsLists(ctx context.Context, params *ListAppsListsInput, optFns ...func(*Options)) (*ListAppsListsOutput, error)
- func (c *Client) ListComplianceStatus(ctx context.Context, params *ListComplianceStatusInput, ...) (*ListComplianceStatusOutput, error)
- func (c *Client) ListMemberAccounts(ctx context.Context, params *ListMemberAccountsInput, optFns ...func(*Options)) (*ListMemberAccountsOutput, error)
- func (c *Client) ListPolicies(ctx context.Context, params *ListPoliciesInput, optFns ...func(*Options)) (*ListPoliciesOutput, error)
- func (c *Client) ListProtocolsLists(ctx context.Context, params *ListProtocolsListsInput, optFns ...func(*Options)) (*ListProtocolsListsOutput, error)
- func (c *Client) ListTagsForResource(ctx context.Context, params *ListTagsForResourceInput, ...) (*ListTagsForResourceOutput, error)
- func (c *Client) PutAppsList(ctx context.Context, params *PutAppsListInput, optFns ...func(*Options)) (*PutAppsListOutput, error)
- func (c *Client) PutNotificationChannel(ctx context.Context, params *PutNotificationChannelInput, ...) (*PutNotificationChannelOutput, error)
- func (c *Client) PutPolicy(ctx context.Context, params *PutPolicyInput, optFns ...func(*Options)) (*PutPolicyOutput, error)
- func (c *Client) PutProtocolsList(ctx context.Context, params *PutProtocolsListInput, optFns ...func(*Options)) (*PutProtocolsListOutput, error)
- func (c *Client) TagResource(ctx context.Context, params *TagResourceInput, optFns ...func(*Options)) (*TagResourceOutput, error)
- func (c *Client) UntagResource(ctx context.Context, params *UntagResourceInput, optFns ...func(*Options)) (*UntagResourceOutput, error)
- type DeleteAppsListInput
- type DeleteAppsListOutput
- type DeleteNotificationChannelInput
- type DeleteNotificationChannelOutput
- type DeletePolicyInput
- type DeletePolicyOutput
- type DeleteProtocolsListInput
- type DeleteProtocolsListOutput
- type DisassociateAdminAccountInput
- type DisassociateAdminAccountOutput
- type EndpointResolver
- type EndpointResolverFunc
- type EndpointResolverOptions
- type GetAdminAccountInput
- type GetAdminAccountOutput
- type GetAppsListInput
- type GetAppsListOutput
- type GetComplianceDetailInput
- type GetComplianceDetailOutput
- type GetNotificationChannelInput
- type GetNotificationChannelOutput
- type GetPolicyInput
- type GetPolicyOutput
- type GetProtectionStatusInput
- type GetProtectionStatusOutput
- type GetProtocolsListInput
- type GetProtocolsListOutput
- type GetViolationDetailsInput
- type GetViolationDetailsOutput
- type HTTPClient
- type HTTPSignerV4
- type ListAppsListsInput
- type ListAppsListsOutput
- type ListComplianceStatusAPIClient
- type ListComplianceStatusInput
- type ListComplianceStatusOutput
- type ListComplianceStatusPaginator
- type ListComplianceStatusPaginatorOptions
- type ListMemberAccountsAPIClient
- type ListMemberAccountsInput
- type ListMemberAccountsOutput
- type ListMemberAccountsPaginator
- type ListMemberAccountsPaginatorOptions
- type ListPoliciesAPIClient
- type ListPoliciesInput
- type ListPoliciesOutput
- type ListPoliciesPaginator
- type ListPoliciesPaginatorOptions
- type ListProtocolsListsInput
- type ListProtocolsListsOutput
- type ListTagsForResourceInput
- type ListTagsForResourceOutput
- type Options
- type PutAppsListInput
- type PutAppsListOutput
- type PutNotificationChannelInput
- type PutNotificationChannelOutput
- type PutPolicyInput
- type PutPolicyOutput
- type PutProtocolsListInput
- type PutProtocolsListOutput
- type ResolveEndpoint
- type TagResourceInput
- type TagResourceOutput
- type UntagResourceInput
- type UntagResourceOutput
Constants ¶
const ServiceAPIVersion = "2018-01-01"
const ServiceID = "FMS"
Variables ¶
This section is empty.
Functions ¶
func NewDefaultEndpointResolver ¶
func NewDefaultEndpointResolver() *internalendpoints.Resolver
NewDefaultEndpointResolver constructs a new service endpoint resolver
func WithAPIOptions ¶ added in v1.0.0
func WithAPIOptions(optFns ...func(*middleware.Stack) error) func(*Options)
WithAPIOptions returns a functional option for setting the Client's APIOptions option.
func WithEndpointResolver ¶
func WithEndpointResolver(v EndpointResolver) func(*Options)
WithEndpointResolver returns a functional option for setting the Client's EndpointResolver option.
Types ¶
type AssociateAdminAccountInput ¶
type AssociateAdminAccountInput struct { // The AWS account ID to associate with AWS Firewall Manager as the AWS Firewall // Manager administrator account. This can be an AWS Organizations master account // or a member account. For more information about AWS Organizations and master // accounts, see Managing the AWS Accounts in Your Organization // (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts.html). // // This member is required. AdminAccount *string }
type AssociateAdminAccountOutput ¶
type AssociateAdminAccountOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type Client ¶
type Client struct {
// contains filtered or unexported fields
}
Client provides the API client to make operations call for Firewall Management Service.
func New ¶
New returns an initialized Client based on the functional options. Provide additional functional options to further configure the behavior of the client, such as changing the client's endpoint or adding custom middleware behavior.
func NewFromConfig ¶
NewFromConfig returns a new client from the provided config.
func (*Client) AssociateAdminAccount ¶
func (c *Client) AssociateAdminAccount(ctx context.Context, params *AssociateAdminAccountInput, optFns ...func(*Options)) (*AssociateAdminAccountOutput, error)
Sets the AWS Firewall Manager administrator account. AWS Firewall Manager must be associated with the master account of your AWS organization or associated with a member account that has the appropriate permissions. If the account ID that you submit is not an AWS Organizations master account, AWS Firewall Manager will set the appropriate permissions for the given member account. The account that you associate with AWS Firewall Manager is called the AWS Firewall Manager administrator account.
func (*Client) DeleteAppsList ¶
func (c *Client) DeleteAppsList(ctx context.Context, params *DeleteAppsListInput, optFns ...func(*Options)) (*DeleteAppsListOutput, error)
Permanently deletes an AWS Firewall Manager applications list.
func (*Client) DeleteNotificationChannel ¶
func (c *Client) DeleteNotificationChannel(ctx context.Context, params *DeleteNotificationChannelInput, optFns ...func(*Options)) (*DeleteNotificationChannelOutput, error)
Deletes an AWS Firewall Manager association with the IAM role and the Amazon Simple Notification Service (SNS) topic that is used to record AWS Firewall Manager SNS logs.
func (*Client) DeletePolicy ¶
func (c *Client) DeletePolicy(ctx context.Context, params *DeletePolicyInput, optFns ...func(*Options)) (*DeletePolicyOutput, error)
Permanently deletes an AWS Firewall Manager policy.
func (*Client) DeleteProtocolsList ¶
func (c *Client) DeleteProtocolsList(ctx context.Context, params *DeleteProtocolsListInput, optFns ...func(*Options)) (*DeleteProtocolsListOutput, error)
Permanently deletes an AWS Firewall Manager protocols list.
func (*Client) DisassociateAdminAccount ¶
func (c *Client) DisassociateAdminAccount(ctx context.Context, params *DisassociateAdminAccountInput, optFns ...func(*Options)) (*DisassociateAdminAccountOutput, error)
Disassociates the account that has been set as the AWS Firewall Manager administrator account. To set a different account as the administrator account, you must submit an AssociateAdminAccount request.
func (*Client) GetAdminAccount ¶
func (c *Client) GetAdminAccount(ctx context.Context, params *GetAdminAccountInput, optFns ...func(*Options)) (*GetAdminAccountOutput, error)
Returns the AWS Organizations master account that is associated with AWS Firewall Manager as the AWS Firewall Manager administrator.
func (*Client) GetAppsList ¶
func (c *Client) GetAppsList(ctx context.Context, params *GetAppsListInput, optFns ...func(*Options)) (*GetAppsListOutput, error)
Returns information about the specified AWS Firewall Manager applications list.
func (*Client) GetComplianceDetail ¶
func (c *Client) GetComplianceDetail(ctx context.Context, params *GetComplianceDetailInput, optFns ...func(*Options)) (*GetComplianceDetailOutput, error)
Returns detailed compliance information about the specified member account. Details include resources that are in and out of compliance with the specified policy. Resources are considered noncompliant for AWS WAF and Shield Advanced policies if the specified policy has not been applied to them. Resources are considered noncompliant for security group policies if they are in scope of the policy, they violate one or more of the policy rules, and remediation is disabled or not possible. Resources are considered noncompliant for Network Firewall policies if a firewall is missing in the VPC, if the firewall endpoint isn't set up in an expected Availability Zone and subnet, if a subnet created by the Firewall Manager doesn't have the expected route table, and for modifications to a firewall policy that violate the Firewall Manager policy's rules.
func (*Client) GetNotificationChannel ¶
func (c *Client) GetNotificationChannel(ctx context.Context, params *GetNotificationChannelInput, optFns ...func(*Options)) (*GetNotificationChannelOutput, error)
Information about the Amazon Simple Notification Service (SNS) topic that is used to record AWS Firewall Manager SNS logs.
func (*Client) GetPolicy ¶
func (c *Client) GetPolicy(ctx context.Context, params *GetPolicyInput, optFns ...func(*Options)) (*GetPolicyOutput, error)
Returns information about the specified AWS Firewall Manager policy.
func (*Client) GetProtectionStatus ¶
func (c *Client) GetProtectionStatus(ctx context.Context, params *GetProtectionStatusInput, optFns ...func(*Options)) (*GetProtectionStatusOutput, error)
If you created a Shield Advanced policy, returns policy-level attack summary information in the event of a potential DDoS attack. Other policy types are currently unsupported.
func (*Client) GetProtocolsList ¶
func (c *Client) GetProtocolsList(ctx context.Context, params *GetProtocolsListInput, optFns ...func(*Options)) (*GetProtocolsListOutput, error)
Returns information about the specified AWS Firewall Manager protocols list.
func (*Client) GetViolationDetails ¶
func (c *Client) GetViolationDetails(ctx context.Context, params *GetViolationDetailsInput, optFns ...func(*Options)) (*GetViolationDetailsOutput, error)
Retrieves violations for a resource based on the specified AWS Firewall Manager policy and AWS account.
func (*Client) ListAppsLists ¶
func (c *Client) ListAppsLists(ctx context.Context, params *ListAppsListsInput, optFns ...func(*Options)) (*ListAppsListsOutput, error)
Returns an array of AppsListDataSummary objects.
func (*Client) ListComplianceStatus ¶
func (c *Client) ListComplianceStatus(ctx context.Context, params *ListComplianceStatusInput, optFns ...func(*Options)) (*ListComplianceStatusOutput, error)
Returns an array of PolicyComplianceStatus objects. Use PolicyComplianceStatus to get a summary of which member accounts are protected by the specified policy.
func (*Client) ListMemberAccounts ¶
func (c *Client) ListMemberAccounts(ctx context.Context, params *ListMemberAccountsInput, optFns ...func(*Options)) (*ListMemberAccountsOutput, error)
Returns a MemberAccounts object that lists the member accounts in the administrator's AWS organization. The ListMemberAccounts must be submitted by the account that is set as the AWS Firewall Manager administrator.
func (*Client) ListPolicies ¶
func (c *Client) ListPolicies(ctx context.Context, params *ListPoliciesInput, optFns ...func(*Options)) (*ListPoliciesOutput, error)
Returns an array of PolicySummary objects.
func (*Client) ListProtocolsLists ¶
func (c *Client) ListProtocolsLists(ctx context.Context, params *ListProtocolsListsInput, optFns ...func(*Options)) (*ListProtocolsListsOutput, error)
Returns an array of ProtocolsListDataSummary objects.
func (*Client) ListTagsForResource ¶
func (c *Client) ListTagsForResource(ctx context.Context, params *ListTagsForResourceInput, optFns ...func(*Options)) (*ListTagsForResourceOutput, error)
Retrieves the list of tags for the specified AWS resource.
func (*Client) PutAppsList ¶
func (c *Client) PutAppsList(ctx context.Context, params *PutAppsListInput, optFns ...func(*Options)) (*PutAppsListOutput, error)
Creates an AWS Firewall Manager applications list.
func (*Client) PutNotificationChannel ¶
func (c *Client) PutNotificationChannel(ctx context.Context, params *PutNotificationChannelInput, optFns ...func(*Options)) (*PutNotificationChannelOutput, error)
Designates the IAM role and Amazon Simple Notification Service (SNS) topic that AWS Firewall Manager uses to record SNS logs. To perform this action outside of the console, you must configure the SNS topic to allow the Firewall Manager role AWSServiceRoleForFMS to publish SNS logs. For more information, see Firewall Manager required permissions for API actions (https://docs.aws.amazon.com/waf/latest/developerguide/fms-api-permissions-ref.html) in the AWS Firewall Manager Developer Guide.
func (*Client) PutPolicy ¶
func (c *Client) PutPolicy(ctx context.Context, params *PutPolicyInput, optFns ...func(*Options)) (*PutPolicyOutput, error)
Creates an AWS Firewall Manager policy. Firewall Manager provides the following types of policies:
* An AWS WAF policy (type WAFV2), which defines rule groups to run first in the corresponding AWS WAF web ACL and rule groups to run last in the web ACL.
* An AWS WAF Classic policy (type WAF), which defines a rule group.
* A Shield Advanced policy, which applies Shield Advanced protection to specified accounts and resources.
* A security group policy, which manages VPC security groups across your AWS organization.
* An AWS Network Firewall policy, which provides firewall rules to filter network traffic in specified Amazon VPCs.
Each policy is specific to one of the types. If you want to enforce more than one policy type across accounts, create multiple policies. You can create multiple policies for each type. You must be subscribed to Shield Advanced to create a Shield Advanced policy. For more information about subscribing to Shield Advanced, see CreateSubscription (https://docs.aws.amazon.com/waf/latest/DDOSAPIReference/API_CreateSubscription.html).
func (*Client) PutProtocolsList ¶
func (c *Client) PutProtocolsList(ctx context.Context, params *PutProtocolsListInput, optFns ...func(*Options)) (*PutProtocolsListOutput, error)
Creates an AWS Firewall Manager protocols list.
func (*Client) TagResource ¶
func (c *Client) TagResource(ctx context.Context, params *TagResourceInput, optFns ...func(*Options)) (*TagResourceOutput, error)
Adds one or more tags to an AWS resource.
func (*Client) UntagResource ¶
func (c *Client) UntagResource(ctx context.Context, params *UntagResourceInput, optFns ...func(*Options)) (*UntagResourceOutput, error)
Removes one or more tags from an AWS resource.
type DeleteAppsListInput ¶
type DeleteAppsListInput struct { // The ID of the applications list that you want to delete. You can retrieve this // ID from PutAppsList, ListAppsLists, and GetAppsList. // // This member is required. ListId *string }
type DeleteAppsListOutput ¶
type DeleteAppsListOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type DeleteNotificationChannelInput ¶
type DeleteNotificationChannelInput struct { }
type DeleteNotificationChannelOutput ¶
type DeleteNotificationChannelOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type DeletePolicyInput ¶
type DeletePolicyInput struct { // The ID of the policy that you want to delete. You can retrieve this ID from // PutPolicy and ListPolicies. // // This member is required. PolicyId *string // If True, the request performs cleanup according to the policy type. For AWS WAF // and Shield Advanced policies, the cleanup does the following: // // * Deletes rule // groups created by AWS Firewall Manager // // * Removes web ACLs from in-scope // resources // // * Deletes web ACLs that contain no rules or rule groups // // For security // group policies, the cleanup does the following for each security group in the // policy: // // * Disassociates the security group from in-scope resources // // * Deletes // the security group if it was created through Firewall Manager and if it's no // longer associated with any resources through another policy // // After the cleanup, // in-scope resources are no longer protected by web ACLs in this policy. // Protection of out-of-scope resources remains unchanged. Scope is determined by // tags that you create and accounts that you associate with the policy. When // creating the policy, if you specify that only resources in specific accounts or // with specific tags are in scope of the policy, those accounts and resources are // handled by the policy. All others are out of scope. If you don't specify tags or // accounts, all resources are in scope. DeleteAllPolicyResources bool }
type DeletePolicyOutput ¶
type DeletePolicyOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type DeleteProtocolsListInput ¶
type DeleteProtocolsListInput struct { // The ID of the protocols list that you want to delete. You can retrieve this ID // from PutProtocolsList, ListProtocolsLists, and GetProtocolsLost. // // This member is required. ListId *string }
type DeleteProtocolsListOutput ¶
type DeleteProtocolsListOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type DisassociateAdminAccountInput ¶
type DisassociateAdminAccountInput struct { }
type DisassociateAdminAccountOutput ¶
type DisassociateAdminAccountOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type EndpointResolver ¶
type EndpointResolver interface {
ResolveEndpoint(region string, options EndpointResolverOptions) (aws.Endpoint, error)
}
EndpointResolver interface for resolving service endpoints.
func EndpointResolverFromURL ¶ added in v1.1.0
func EndpointResolverFromURL(url string, optFns ...func(*aws.Endpoint)) EndpointResolver
EndpointResolverFromURL returns an EndpointResolver configured using the provided endpoint url. By default, the resolved endpoint resolver uses the client region as signing region, and the endpoint source is set to EndpointSourceCustom.You can provide functional options to configure endpoint values for the resolved endpoint.
type EndpointResolverFunc ¶
type EndpointResolverFunc func(region string, options EndpointResolverOptions) (aws.Endpoint, error)
EndpointResolverFunc is a helper utility that wraps a function so it satisfies the EndpointResolver interface. This is useful when you want to add additional endpoint resolving logic, or stub out specific endpoints with custom values.
func (EndpointResolverFunc) ResolveEndpoint ¶
func (fn EndpointResolverFunc) ResolveEndpoint(region string, options EndpointResolverOptions) (endpoint aws.Endpoint, err error)
type EndpointResolverOptions ¶ added in v0.29.0
type EndpointResolverOptions = internalendpoints.Options
EndpointResolverOptions is the service endpoint resolver options
type GetAdminAccountInput ¶
type GetAdminAccountInput struct { }
type GetAdminAccountOutput ¶
type GetAdminAccountOutput struct { // The AWS account that is set as the AWS Firewall Manager administrator. AdminAccount *string // The status of the AWS account that you set as the AWS Firewall Manager // administrator. RoleStatus types.AccountRoleStatus // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type GetAppsListInput ¶
type GetAppsListOutput ¶
type GetAppsListOutput struct { // Information about the specified AWS Firewall Manager applications list. AppsList *types.AppsListData // The Amazon Resource Name (ARN) of the applications list. AppsListArn *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type GetComplianceDetailInput ¶
type GetComplianceDetailInput struct { // The AWS account that owns the resources that you want to get the details for. // // This member is required. MemberAccount *string // The ID of the policy that you want to get the details for. PolicyId is returned // by PutPolicy and by ListPolicies. // // This member is required. PolicyId *string }
type GetComplianceDetailOutput ¶
type GetComplianceDetailOutput struct { // Information about the resources and the policy that you specified in the // GetComplianceDetail request. PolicyComplianceDetail *types.PolicyComplianceDetail // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type GetNotificationChannelInput ¶
type GetNotificationChannelInput struct { }
type GetNotificationChannelOutput ¶
type GetNotificationChannelOutput struct { // The IAM role that is used by AWS Firewall Manager to record activity to SNS. SnsRoleName *string // The SNS topic that records AWS Firewall Manager activity. SnsTopicArn *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type GetPolicyInput ¶
type GetPolicyInput struct { // The ID of the AWS Firewall Manager policy that you want the details for. // // This member is required. PolicyId *string }
type GetPolicyOutput ¶
type GetPolicyOutput struct { // Information about the specified AWS Firewall Manager policy. Policy *types.Policy // The Amazon Resource Name (ARN) of the specified policy. PolicyArn *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type GetProtectionStatusInput ¶
type GetProtectionStatusInput struct { // The ID of the policy for which you want to get the attack information. // // This member is required. PolicyId *string // The end of the time period to query for the attacks. This is a timestamp type. // The request syntax listing indicates a number type because the default used by // AWS Firewall Manager is Unix time in seconds. However, any valid timestamp // format is allowed. EndTime *time.Time // Specifies the number of objects that you want AWS Firewall Manager to return for // this request. If you have more objects than the number that you specify for // MaxResults, the response includes a NextToken value that you can use to get // another batch of objects. MaxResults *int32 // The AWS account that is in scope of the policy that you want to get the details // for. MemberAccountId *string // If you specify a value for MaxResults and you have more objects than the number // that you specify for MaxResults, AWS Firewall Manager returns a NextToken value // in the response, which you can use to retrieve another group of objects. For the // second and subsequent GetProtectionStatus requests, specify the value of // NextToken from the previous response to get information about another batch of // objects. NextToken *string // The start of the time period to query for the attacks. This is a timestamp type. // The request syntax listing indicates a number type because the default used by // AWS Firewall Manager is Unix time in seconds. However, any valid timestamp // format is allowed. StartTime *time.Time }
type GetProtectionStatusOutput ¶
type GetProtectionStatusOutput struct { // The ID of the AWS Firewall administrator account for this policy. AdminAccountId *string // Details about the attack, including the following: // // * Attack type // // * Account // ID // // * ARN of the resource attacked // // * Start time of the attack // // * End time of // the attack (ongoing attacks will not have an end time) // // The details are in JSON // format. Data *string // If you have more objects than the number that you specified for MaxResults in // the request, the response includes a NextToken value. To list more objects, // submit another GetProtectionStatus request, and specify the NextToken value from // the response in the NextToken value in the next request. AWS SDKs provide // auto-pagination that identify NextToken in a response and make subsequent // request calls automatically on your behalf. However, this feature is not // supported by GetProtectionStatus. You must submit subsequent requests with // NextToken using your own processes. NextToken *string // The service type that is protected by the policy. Currently, this is always // SHIELD_ADVANCED. ServiceType types.SecurityServiceType // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type GetProtocolsListInput ¶
type GetProtocolsListOutput ¶
type GetProtocolsListOutput struct { // Information about the specified AWS Firewall Manager protocols list. ProtocolsList *types.ProtocolsListData // The Amazon Resource Name (ARN) of the specified protocols list. ProtocolsListArn *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type GetViolationDetailsInput ¶
type GetViolationDetailsInput struct { // The AWS account ID that you want the details for. // // This member is required. MemberAccount *string // The ID of the AWS Firewall Manager policy that you want the details for. This // currently only supports security group content audit policies. // // This member is required. PolicyId *string // The ID of the resource that has violations. // // This member is required. ResourceId *string // The resource type. This is in the format shown in the AWS Resource Types // Reference // (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-template-resource-type-ref.html). // Supported resource types are: AWS::EC2::Instance, AWS::EC2::NetworkInterface, // AWS::EC2::SecurityGroup, AWS::NetworkFirewall::FirewallPolicy, and // AWS::EC2::Subnet. // // This member is required. ResourceType *string }
type GetViolationDetailsOutput ¶
type GetViolationDetailsOutput struct { // Violation detail for a resource. ViolationDetail *types.ViolationDetail // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type HTTPSignerV4 ¶
type ListAppsListsInput ¶
type ListAppsListsInput struct { // The maximum number of objects that you want AWS Firewall Manager to return for // this request. If more objects are available, in the response, AWS Firewall // Manager provides a NextToken value that you can use in a subsequent call to get // the next batch of objects. If you don't specify this, AWS Firewall Manager // returns all available objects. // // This member is required. MaxResults *int32 // Specifies whether the lists to retrieve are default lists owned by AWS Firewall // Manager. DefaultLists bool // If you specify a value for MaxResults in your list request, and you have more // objects than the maximum, AWS Firewall Manager returns this token in the // response. For all but the first request, you provide the token returned by the // prior request in the request parameters, to retrieve the next batch of objects. NextToken *string }
type ListAppsListsOutput ¶
type ListAppsListsOutput struct { // An array of AppsListDataSummary objects. AppsLists []types.AppsListDataSummary // If you specify a value for MaxResults in your list request, and you have more // objects than the maximum, AWS Firewall Manager returns this token in the // response. You can use this token in subsequent requests to retrieve the next // batch of objects. NextToken *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type ListComplianceStatusAPIClient ¶ added in v0.30.0
type ListComplianceStatusAPIClient interface {
ListComplianceStatus(context.Context, *ListComplianceStatusInput, ...func(*Options)) (*ListComplianceStatusOutput, error)
}
ListComplianceStatusAPIClient is a client that implements the ListComplianceStatus operation.
type ListComplianceStatusInput ¶
type ListComplianceStatusInput struct { // The ID of the AWS Firewall Manager policy that you want the details for. // // This member is required. PolicyId *string // Specifies the number of PolicyComplianceStatus objects that you want AWS // Firewall Manager to return for this request. If you have more // PolicyComplianceStatus objects than the number that you specify for MaxResults, // the response includes a NextToken value that you can use to get another batch of // PolicyComplianceStatus objects. MaxResults *int32 // If you specify a value for MaxResults and you have more PolicyComplianceStatus // objects than the number that you specify for MaxResults, AWS Firewall Manager // returns a NextToken value in the response that allows you to list another group // of PolicyComplianceStatus objects. For the second and subsequent // ListComplianceStatus requests, specify the value of NextToken from the previous // response to get information about another batch of PolicyComplianceStatus // objects. NextToken *string }
type ListComplianceStatusOutput ¶
type ListComplianceStatusOutput struct { // If you have more PolicyComplianceStatus objects than the number that you // specified for MaxResults in the request, the response includes a NextToken // value. To list more PolicyComplianceStatus objects, submit another // ListComplianceStatus request, and specify the NextToken value from the response // in the NextToken value in the next request. NextToken *string // An array of PolicyComplianceStatus objects. PolicyComplianceStatusList []types.PolicyComplianceStatus // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type ListComplianceStatusPaginator ¶ added in v0.30.0
type ListComplianceStatusPaginator struct {
// contains filtered or unexported fields
}
ListComplianceStatusPaginator is a paginator for ListComplianceStatus
func NewListComplianceStatusPaginator ¶ added in v0.30.0
func NewListComplianceStatusPaginator(client ListComplianceStatusAPIClient, params *ListComplianceStatusInput, optFns ...func(*ListComplianceStatusPaginatorOptions)) *ListComplianceStatusPaginator
NewListComplianceStatusPaginator returns a new ListComplianceStatusPaginator
func (*ListComplianceStatusPaginator) HasMorePages ¶ added in v0.30.0
func (p *ListComplianceStatusPaginator) HasMorePages() bool
HasMorePages returns a boolean indicating whether more pages are available
func (*ListComplianceStatusPaginator) NextPage ¶ added in v0.30.0
func (p *ListComplianceStatusPaginator) NextPage(ctx context.Context, optFns ...func(*Options)) (*ListComplianceStatusOutput, error)
NextPage retrieves the next ListComplianceStatus page.
type ListComplianceStatusPaginatorOptions ¶ added in v0.30.0
type ListComplianceStatusPaginatorOptions struct { // Specifies the number of PolicyComplianceStatus objects that you want AWS // Firewall Manager to return for this request. If you have more // PolicyComplianceStatus objects than the number that you specify for MaxResults, // the response includes a NextToken value that you can use to get another batch of // PolicyComplianceStatus objects. Limit int32 // Set to true if pagination should stop if the service returns a pagination token // that matches the most recent token provided to the service. StopOnDuplicateToken bool }
ListComplianceStatusPaginatorOptions is the paginator options for ListComplianceStatus
type ListMemberAccountsAPIClient ¶ added in v0.30.0
type ListMemberAccountsAPIClient interface {
ListMemberAccounts(context.Context, *ListMemberAccountsInput, ...func(*Options)) (*ListMemberAccountsOutput, error)
}
ListMemberAccountsAPIClient is a client that implements the ListMemberAccounts operation.
type ListMemberAccountsInput ¶
type ListMemberAccountsInput struct { // Specifies the number of member account IDs that you want AWS Firewall Manager to // return for this request. If you have more IDs than the number that you specify // for MaxResults, the response includes a NextToken value that you can use to get // another batch of member account IDs. MaxResults *int32 // If you specify a value for MaxResults and you have more account IDs than the // number that you specify for MaxResults, AWS Firewall Manager returns a NextToken // value in the response that allows you to list another group of IDs. For the // second and subsequent ListMemberAccountsRequest requests, specify the value of // NextToken from the previous response to get information about another batch of // member account IDs. NextToken *string }
type ListMemberAccountsOutput ¶
type ListMemberAccountsOutput struct { // An array of account IDs. MemberAccounts []string // If you have more member account IDs than the number that you specified for // MaxResults in the request, the response includes a NextToken value. To list more // IDs, submit another ListMemberAccounts request, and specify the NextToken value // from the response in the NextToken value in the next request. NextToken *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type ListMemberAccountsPaginator ¶ added in v0.30.0
type ListMemberAccountsPaginator struct {
// contains filtered or unexported fields
}
ListMemberAccountsPaginator is a paginator for ListMemberAccounts
func NewListMemberAccountsPaginator ¶ added in v0.30.0
func NewListMemberAccountsPaginator(client ListMemberAccountsAPIClient, params *ListMemberAccountsInput, optFns ...func(*ListMemberAccountsPaginatorOptions)) *ListMemberAccountsPaginator
NewListMemberAccountsPaginator returns a new ListMemberAccountsPaginator
func (*ListMemberAccountsPaginator) HasMorePages ¶ added in v0.30.0
func (p *ListMemberAccountsPaginator) HasMorePages() bool
HasMorePages returns a boolean indicating whether more pages are available
func (*ListMemberAccountsPaginator) NextPage ¶ added in v0.30.0
func (p *ListMemberAccountsPaginator) NextPage(ctx context.Context, optFns ...func(*Options)) (*ListMemberAccountsOutput, error)
NextPage retrieves the next ListMemberAccounts page.
type ListMemberAccountsPaginatorOptions ¶ added in v0.30.0
type ListMemberAccountsPaginatorOptions struct { // Specifies the number of member account IDs that you want AWS Firewall Manager to // return for this request. If you have more IDs than the number that you specify // for MaxResults, the response includes a NextToken value that you can use to get // another batch of member account IDs. Limit int32 // Set to true if pagination should stop if the service returns a pagination token // that matches the most recent token provided to the service. StopOnDuplicateToken bool }
ListMemberAccountsPaginatorOptions is the paginator options for ListMemberAccounts
type ListPoliciesAPIClient ¶ added in v0.30.0
type ListPoliciesAPIClient interface {
ListPolicies(context.Context, *ListPoliciesInput, ...func(*Options)) (*ListPoliciesOutput, error)
}
ListPoliciesAPIClient is a client that implements the ListPolicies operation.
type ListPoliciesInput ¶
type ListPoliciesInput struct { // Specifies the number of PolicySummary objects that you want AWS Firewall Manager // to return for this request. If you have more PolicySummary objects than the // number that you specify for MaxResults, the response includes a NextToken value // that you can use to get another batch of PolicySummary objects. MaxResults *int32 // If you specify a value for MaxResults and you have more PolicySummary objects // than the number that you specify for MaxResults, AWS Firewall Manager returns a // NextToken value in the response that allows you to list another group of // PolicySummary objects. For the second and subsequent ListPolicies requests, // specify the value of NextToken from the previous response to get information // about another batch of PolicySummary objects. NextToken *string }
type ListPoliciesOutput ¶
type ListPoliciesOutput struct { // If you have more PolicySummary objects than the number that you specified for // MaxResults in the request, the response includes a NextToken value. To list more // PolicySummary objects, submit another ListPolicies request, and specify the // NextToken value from the response in the NextToken value in the next request. NextToken *string // An array of PolicySummary objects. PolicyList []types.PolicySummary // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type ListPoliciesPaginator ¶ added in v0.30.0
type ListPoliciesPaginator struct {
// contains filtered or unexported fields
}
ListPoliciesPaginator is a paginator for ListPolicies
func NewListPoliciesPaginator ¶ added in v0.30.0
func NewListPoliciesPaginator(client ListPoliciesAPIClient, params *ListPoliciesInput, optFns ...func(*ListPoliciesPaginatorOptions)) *ListPoliciesPaginator
NewListPoliciesPaginator returns a new ListPoliciesPaginator
func (*ListPoliciesPaginator) HasMorePages ¶ added in v0.30.0
func (p *ListPoliciesPaginator) HasMorePages() bool
HasMorePages returns a boolean indicating whether more pages are available
func (*ListPoliciesPaginator) NextPage ¶ added in v0.30.0
func (p *ListPoliciesPaginator) NextPage(ctx context.Context, optFns ...func(*Options)) (*ListPoliciesOutput, error)
NextPage retrieves the next ListPolicies page.
type ListPoliciesPaginatorOptions ¶ added in v0.30.0
type ListPoliciesPaginatorOptions struct { // Specifies the number of PolicySummary objects that you want AWS Firewall Manager // to return for this request. If you have more PolicySummary objects than the // number that you specify for MaxResults, the response includes a NextToken value // that you can use to get another batch of PolicySummary objects. Limit int32 // Set to true if pagination should stop if the service returns a pagination token // that matches the most recent token provided to the service. StopOnDuplicateToken bool }
ListPoliciesPaginatorOptions is the paginator options for ListPolicies
type ListProtocolsListsInput ¶
type ListProtocolsListsInput struct { // The maximum number of objects that you want AWS Firewall Manager to return for // this request. If more objects are available, in the response, AWS Firewall // Manager provides a NextToken value that you can use in a subsequent call to get // the next batch of objects. If you don't specify this, AWS Firewall Manager // returns all available objects. // // This member is required. MaxResults *int32 // Specifies whether the lists to retrieve are default lists owned by AWS Firewall // Manager. DefaultLists bool // If you specify a value for MaxResults in your list request, and you have more // objects than the maximum, AWS Firewall Manager returns this token in the // response. For all but the first request, you provide the token returned by the // prior request in the request parameters, to retrieve the next batch of objects. NextToken *string }
type ListProtocolsListsOutput ¶
type ListProtocolsListsOutput struct { // If you specify a value for MaxResults in your list request, and you have more // objects than the maximum, AWS Firewall Manager returns this token in the // response. You can use this token in subsequent requests to retrieve the next // batch of objects. NextToken *string // An array of ProtocolsListDataSummary objects. ProtocolsLists []types.ProtocolsListDataSummary // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type ListTagsForResourceInput ¶
type ListTagsForResourceInput struct { // The Amazon Resource Name (ARN) of the resource to return tags for. The AWS // Firewall Manager resources that support tagging are policies, applications // lists, and protocols lists. // // This member is required. ResourceArn *string }
type ListTagsForResourceOutput ¶
type ListTagsForResourceOutput struct { // The tags associated with the resource. TagList []types.Tag // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type Options ¶
type Options struct { // Set of options to modify how an operation is invoked. These apply to all // operations invoked for this client. Use functional options on operation call to // modify this list for per operation behavior. APIOptions []func(*middleware.Stack) error // Configures the events that will be sent to the configured logger. ClientLogMode aws.ClientLogMode // The credentials object to use when signing requests. Credentials aws.CredentialsProvider // The endpoint options to be used when attempting to resolve an endpoint. EndpointOptions EndpointResolverOptions // The service endpoint resolver. EndpointResolver EndpointResolver // Signature Version 4 (SigV4) Signer HTTPSignerV4 HTTPSignerV4 // The logger writer interface to write logging messages to. Logger logging.Logger // The region to send requests to. (Required) Region string // Retryer guides how HTTP requests should be retried in case of recoverable // failures. When nil the API client will use a default retryer. Retryer aws.Retryer // The HTTP client to invoke API calls with. Defaults to client's default HTTP // implementation if nil. HTTPClient HTTPClient }
type PutAppsListInput ¶
type PutAppsListInput struct { // The details of the AWS Firewall Manager applications list to be created. // // This member is required. AppsList *types.AppsListData // The tags associated with the resource. TagList []types.Tag }
type PutAppsListOutput ¶
type PutAppsListOutput struct { // The details of the AWS Firewall Manager applications list. AppsList *types.AppsListData // The Amazon Resource Name (ARN) of the applications list. AppsListArn *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type PutNotificationChannelInput ¶
type PutNotificationChannelInput struct { // The Amazon Resource Name (ARN) of the IAM role that allows Amazon SNS to record // AWS Firewall Manager activity. // // This member is required. SnsRoleName *string // The Amazon Resource Name (ARN) of the SNS topic that collects notifications from // AWS Firewall Manager. // // This member is required. SnsTopicArn *string }
type PutNotificationChannelOutput ¶
type PutNotificationChannelOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type PutPolicyInput ¶
type PutPolicyOutput ¶
type PutPolicyOutput struct { // The details of the AWS Firewall Manager policy. Policy *types.Policy // The Amazon Resource Name (ARN) of the policy. PolicyArn *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type PutProtocolsListInput ¶
type PutProtocolsListInput struct { // The details of the AWS Firewall Manager protocols list to be created. // // This member is required. ProtocolsList *types.ProtocolsListData // The tags associated with the resource. TagList []types.Tag }
type PutProtocolsListOutput ¶
type PutProtocolsListOutput struct { // The details of the AWS Firewall Manager protocols list. ProtocolsList *types.ProtocolsListData // The Amazon Resource Name (ARN) of the protocols list. ProtocolsListArn *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type ResolveEndpoint ¶
type ResolveEndpoint struct { Resolver EndpointResolver Options EndpointResolverOptions }
func (*ResolveEndpoint) HandleSerialize ¶
func (m *ResolveEndpoint) HandleSerialize(ctx context.Context, in middleware.SerializeInput, next middleware.SerializeHandler) ( out middleware.SerializeOutput, metadata middleware.Metadata, err error, )
func (*ResolveEndpoint) ID ¶
func (*ResolveEndpoint) ID() string
type TagResourceInput ¶
type TagResourceInput struct { // The Amazon Resource Name (ARN) of the resource to return tags for. The AWS // Firewall Manager resources that support tagging are policies, applications // lists, and protocols lists. // // This member is required. ResourceArn *string // The tags to add to the resource. // // This member is required. TagList []types.Tag }
type TagResourceOutput ¶
type TagResourceOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
type UntagResourceInput ¶
type UntagResourceInput struct { // The Amazon Resource Name (ARN) of the resource to return tags for. The AWS // Firewall Manager resources that support tagging are policies, applications // lists, and protocols lists. // // This member is required. ResourceArn *string // The keys of the tags to remove from the resource. // // This member is required. TagKeys []string }
type UntagResourceOutput ¶
type UntagResourceOutput struct { // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata }
Source Files ¶
- api_client.go
- api_op_AssociateAdminAccount.go
- api_op_DeleteAppsList.go
- api_op_DeleteNotificationChannel.go
- api_op_DeletePolicy.go
- api_op_DeleteProtocolsList.go
- api_op_DisassociateAdminAccount.go
- api_op_GetAdminAccount.go
- api_op_GetAppsList.go
- api_op_GetComplianceDetail.go
- api_op_GetNotificationChannel.go
- api_op_GetPolicy.go
- api_op_GetProtectionStatus.go
- api_op_GetProtocolsList.go
- api_op_GetViolationDetails.go
- api_op_ListAppsLists.go
- api_op_ListComplianceStatus.go
- api_op_ListMemberAccounts.go
- api_op_ListPolicies.go
- api_op_ListProtocolsLists.go
- api_op_ListTagsForResource.go
- api_op_PutAppsList.go
- api_op_PutNotificationChannel.go
- api_op_PutPolicy.go
- api_op_PutProtocolsList.go
- api_op_TagResource.go
- api_op_UntagResource.go
- deserializers.go
- doc.go
- endpoints.go
- serializers.go
- validators.go