Documentation

Overview

Package accessanalyzer provides the client and types for making API requests to Access Analyzer.

AWS IAM Access Analyzer helps identify potential resource-access risks by enabling you to identify any policies that grant access to an external principal. It does this by using logic-based reasoning to analyze resource-based policies in your AWS environment. An external principal can be another AWS account, a root user, an IAM user or role, a federated user, an AWS service, or an anonymous user. You can also use Access Analyzer to preview and validate public and cross-account access to your resources before deploying permissions changes. This guide describes the AWS IAM Access Analyzer operations that you can call programmatically. For general information about Access Analyzer, see AWS IAM Access Analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html) in the IAM User Guide.

To start using Access Analyzer, you first need to create an analyzer.

See https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01 for more information on this service.

See accessanalyzer package documentation for more information. https://docs.aws.amazon.com/sdk-for-go/api/service/accessanalyzer/

Using the Client

To contact Access Analyzer with the SDK use the New function to create a new service client. With that client you can make API requests to the service. These clients are safe to use concurrently.

See the SDK's documentation for more information on how to use the SDK. https://docs.aws.amazon.com/sdk-for-go/api/

See aws.Config documentation for more information on configuring SDK clients. https://docs.aws.amazon.com/sdk-for-go/api/aws/#Config

See the Access Analyzer client AccessAnalyzer for more information on creating client for this service. https://docs.aws.amazon.com/sdk-for-go/api/service/accessanalyzer/#New

Index

Constants

View Source
const (
	// AccessPreviewStatusCompleted is a AccessPreviewStatus enum value
	AccessPreviewStatusCompleted = "COMPLETED"

	// AccessPreviewStatusCreating is a AccessPreviewStatus enum value
	AccessPreviewStatusCreating = "CREATING"

	// AccessPreviewStatusFailed is a AccessPreviewStatus enum value
	AccessPreviewStatusFailed = "FAILED"
)
View Source
const (
	// AccessPreviewStatusReasonCodeInternalError is a AccessPreviewStatusReasonCode enum value
	AccessPreviewStatusReasonCodeInternalError = "INTERNAL_ERROR"

	// AccessPreviewStatusReasonCodeInvalidConfiguration is a AccessPreviewStatusReasonCode enum value
	AccessPreviewStatusReasonCodeInvalidConfiguration = "INVALID_CONFIGURATION"
)
View Source
const (
	// AclPermissionRead is a AclPermission enum value
	AclPermissionRead = "READ"

	// AclPermissionWrite is a AclPermission enum value
	AclPermissionWrite = "WRITE"

	// AclPermissionReadAcp is a AclPermission enum value
	AclPermissionReadAcp = "READ_ACP"

	// AclPermissionWriteAcp is a AclPermission enum value
	AclPermissionWriteAcp = "WRITE_ACP"

	// AclPermissionFullControl is a AclPermission enum value
	AclPermissionFullControl = "FULL_CONTROL"
)
View Source
const (
	// AnalyzerStatusActive is a AnalyzerStatus enum value
	AnalyzerStatusActive = "ACTIVE"

	// AnalyzerStatusCreating is a AnalyzerStatus enum value
	AnalyzerStatusCreating = "CREATING"

	// AnalyzerStatusDisabled is a AnalyzerStatus enum value
	AnalyzerStatusDisabled = "DISABLED"

	// AnalyzerStatusFailed is a AnalyzerStatus enum value
	AnalyzerStatusFailed = "FAILED"
)
View Source
const (
	// FindingChangeTypeChanged is a FindingChangeType enum value
	FindingChangeTypeChanged = "CHANGED"

	// FindingChangeTypeNew is a FindingChangeType enum value
	FindingChangeTypeNew = "NEW"

	// FindingChangeTypeUnchanged is a FindingChangeType enum value
	FindingChangeTypeUnchanged = "UNCHANGED"
)
View Source
const (
	// FindingSourceTypePolicy is a FindingSourceType enum value
	FindingSourceTypePolicy = "POLICY"

	// FindingSourceTypeBucketAcl is a FindingSourceType enum value
	FindingSourceTypeBucketAcl = "BUCKET_ACL"

	// FindingSourceTypeS3AccessPoint is a FindingSourceType enum value
	FindingSourceTypeS3AccessPoint = "S3_ACCESS_POINT"
)
View Source
const (
	// FindingStatusActive is a FindingStatus enum value
	FindingStatusActive = "ACTIVE"

	// FindingStatusArchived is a FindingStatus enum value
	FindingStatusArchived = "ARCHIVED"

	// FindingStatusResolved is a FindingStatus enum value
	FindingStatusResolved = "RESOLVED"
)
View Source
const (
	// FindingStatusUpdateActive is a FindingStatusUpdate enum value
	FindingStatusUpdateActive = "ACTIVE"

	// FindingStatusUpdateArchived is a FindingStatusUpdate enum value
	FindingStatusUpdateArchived = "ARCHIVED"
)
View Source
const (
	// JobErrorCodeAuthorizationError is a JobErrorCode enum value
	JobErrorCodeAuthorizationError = "AUTHORIZATION_ERROR"

	// JobErrorCodeResourceNotFoundError is a JobErrorCode enum value
	JobErrorCodeResourceNotFoundError = "RESOURCE_NOT_FOUND_ERROR"

	// JobErrorCodeServiceQuotaExceededError is a JobErrorCode enum value
	JobErrorCodeServiceQuotaExceededError = "SERVICE_QUOTA_EXCEEDED_ERROR"

	// JobErrorCodeServiceError is a JobErrorCode enum value
	JobErrorCodeServiceError = "SERVICE_ERROR"
)
View Source
const (
	// JobStatusInProgress is a JobStatus enum value
	JobStatusInProgress = "IN_PROGRESS"

	// JobStatusSucceeded is a JobStatus enum value
	JobStatusSucceeded = "SUCCEEDED"

	// JobStatusFailed is a JobStatus enum value
	JobStatusFailed = "FAILED"

	// JobStatusCanceled is a JobStatus enum value
	JobStatusCanceled = "CANCELED"
)
View Source
const (
	// KmsGrantOperationCreateGrant is a KmsGrantOperation enum value
	KmsGrantOperationCreateGrant = "CreateGrant"

	// KmsGrantOperationDecrypt is a KmsGrantOperation enum value
	KmsGrantOperationDecrypt = "Decrypt"

	// KmsGrantOperationDescribeKey is a KmsGrantOperation enum value
	KmsGrantOperationDescribeKey = "DescribeKey"

	// KmsGrantOperationEncrypt is a KmsGrantOperation enum value
	KmsGrantOperationEncrypt = "Encrypt"

	// KmsGrantOperationGenerateDataKey is a KmsGrantOperation enum value
	KmsGrantOperationGenerateDataKey = "GenerateDataKey"

	// KmsGrantOperationGenerateDataKeyPair is a KmsGrantOperation enum value
	KmsGrantOperationGenerateDataKeyPair = "GenerateDataKeyPair"

	// KmsGrantOperationGenerateDataKeyPairWithoutPlaintext is a KmsGrantOperation enum value
	KmsGrantOperationGenerateDataKeyPairWithoutPlaintext = "GenerateDataKeyPairWithoutPlaintext"

	// KmsGrantOperationGenerateDataKeyWithoutPlaintext is a KmsGrantOperation enum value
	KmsGrantOperationGenerateDataKeyWithoutPlaintext = "GenerateDataKeyWithoutPlaintext"

	// KmsGrantOperationGetPublicKey is a KmsGrantOperation enum value
	KmsGrantOperationGetPublicKey = "GetPublicKey"

	// KmsGrantOperationReEncryptFrom is a KmsGrantOperation enum value
	KmsGrantOperationReEncryptFrom = "ReEncryptFrom"

	// KmsGrantOperationReEncryptTo is a KmsGrantOperation enum value
	KmsGrantOperationReEncryptTo = "ReEncryptTo"

	// KmsGrantOperationRetireGrant is a KmsGrantOperation enum value
	KmsGrantOperationRetireGrant = "RetireGrant"

	// KmsGrantOperationSign is a KmsGrantOperation enum value
	KmsGrantOperationSign = "Sign"

	// KmsGrantOperationVerify is a KmsGrantOperation enum value
	KmsGrantOperationVerify = "Verify"
)
View Source
const (
	// LocaleDe is a Locale enum value
	LocaleDe = "DE"

	// LocaleEn is a Locale enum value
	LocaleEn = "EN"

	// LocaleEs is a Locale enum value
	LocaleEs = "ES"

	// LocaleFr is a Locale enum value
	LocaleFr = "FR"

	// LocaleIt is a Locale enum value
	LocaleIt = "IT"

	// LocaleJa is a Locale enum value
	LocaleJa = "JA"

	// LocaleKo is a Locale enum value
	LocaleKo = "KO"

	// LocalePtBr is a Locale enum value
	LocalePtBr = "PT_BR"

	// LocaleZhCn is a Locale enum value
	LocaleZhCn = "ZH_CN"

	// LocaleZhTw is a Locale enum value
	LocaleZhTw = "ZH_TW"
)
View Source
const (
	// OrderByAsc is a OrderBy enum value
	OrderByAsc = "ASC"

	// OrderByDesc is a OrderBy enum value
	OrderByDesc = "DESC"
)
View Source
const (
	// PolicyTypeIdentityPolicy is a PolicyType enum value
	PolicyTypeIdentityPolicy = "IDENTITY_POLICY"

	// PolicyTypeResourcePolicy is a PolicyType enum value
	PolicyTypeResourcePolicy = "RESOURCE_POLICY"

	// PolicyTypeServiceControlPolicy is a PolicyType enum value
	PolicyTypeServiceControlPolicy = "SERVICE_CONTROL_POLICY"
)
View Source
const (
	// ReasonCodeAwsServiceAccessDisabled is a ReasonCode enum value
	ReasonCodeAwsServiceAccessDisabled = "AWS_SERVICE_ACCESS_DISABLED"

	// ReasonCodeDelegatedAdministratorDeregistered is a ReasonCode enum value
	ReasonCodeDelegatedAdministratorDeregistered = "DELEGATED_ADMINISTRATOR_DEREGISTERED"

	// ReasonCodeOrganizationDeleted is a ReasonCode enum value
	ReasonCodeOrganizationDeleted = "ORGANIZATION_DELETED"

	// ReasonCodeServiceLinkedRoleCreationFailed is a ReasonCode enum value
	ReasonCodeServiceLinkedRoleCreationFailed = "SERVICE_LINKED_ROLE_CREATION_FAILED"
)
View Source
const (
	// ResourceTypeAwsS3Bucket is a ResourceType enum value
	ResourceTypeAwsS3Bucket = "AWS::S3::Bucket"

	// ResourceTypeAwsIamRole is a ResourceType enum value
	ResourceTypeAwsIamRole = "AWS::IAM::Role"

	// ResourceTypeAwsSqsQueue is a ResourceType enum value
	ResourceTypeAwsSqsQueue = "AWS::SQS::Queue"

	// ResourceTypeAwsLambdaFunction is a ResourceType enum value
	ResourceTypeAwsLambdaFunction = "AWS::Lambda::Function"

	// ResourceTypeAwsLambdaLayerVersion is a ResourceType enum value
	ResourceTypeAwsLambdaLayerVersion = "AWS::Lambda::LayerVersion"

	// ResourceTypeAwsKmsKey is a ResourceType enum value
	ResourceTypeAwsKmsKey = "AWS::KMS::Key"

	// ResourceTypeAwsSecretsManagerSecret is a ResourceType enum value
	ResourceTypeAwsSecretsManagerSecret = "AWS::SecretsManager::Secret"
)
View Source
const (
	// TypeAccount is a Type enum value
	TypeAccount = "ACCOUNT"

	// TypeOrganization is a Type enum value
	TypeOrganization = "ORGANIZATION"
)
View Source
const (
	// ValidatePolicyFindingTypeError is a ValidatePolicyFindingType enum value
	ValidatePolicyFindingTypeError = "ERROR"

	// ValidatePolicyFindingTypeSecurityWarning is a ValidatePolicyFindingType enum value
	ValidatePolicyFindingTypeSecurityWarning = "SECURITY_WARNING"

	// ValidatePolicyFindingTypeSuggestion is a ValidatePolicyFindingType enum value
	ValidatePolicyFindingTypeSuggestion = "SUGGESTION"

	// ValidatePolicyFindingTypeWarning is a ValidatePolicyFindingType enum value
	ValidatePolicyFindingTypeWarning = "WARNING"
)
View Source
const (
	// ValidationExceptionReasonUnknownOperation is a ValidationExceptionReason enum value
	ValidationExceptionReasonUnknownOperation = "unknownOperation"

	// ValidationExceptionReasonCannotParse is a ValidationExceptionReason enum value
	ValidationExceptionReasonCannotParse = "cannotParse"

	// ValidationExceptionReasonFieldValidationFailed is a ValidationExceptionReason enum value
	ValidationExceptionReasonFieldValidationFailed = "fieldValidationFailed"

	// ValidationExceptionReasonOther is a ValidationExceptionReason enum value
	ValidationExceptionReasonOther = "other"
)
View Source
const (

	// ErrCodeAccessDeniedException for service response error code
	// "AccessDeniedException".
	//
	// You do not have sufficient access to perform this action.
	ErrCodeAccessDeniedException = "AccessDeniedException"

	// ErrCodeConflictException for service response error code
	// "ConflictException".
	//
	// A conflict exception error.
	ErrCodeConflictException = "ConflictException"

	// ErrCodeInternalServerException for service response error code
	// "InternalServerException".
	//
	// Internal server error.
	ErrCodeInternalServerException = "InternalServerException"

	// ErrCodeResourceNotFoundException for service response error code
	// "ResourceNotFoundException".
	//
	// The specified resource could not be found.
	ErrCodeResourceNotFoundException = "ResourceNotFoundException"

	// ErrCodeServiceQuotaExceededException for service response error code
	// "ServiceQuotaExceededException".
	//
	// Service quote met error.
	ErrCodeServiceQuotaExceededException = "ServiceQuotaExceededException"

	// ErrCodeThrottlingException for service response error code
	// "ThrottlingException".
	//
	// Throttling limit exceeded error.
	ErrCodeThrottlingException = "ThrottlingException"

	// ErrCodeValidationException for service response error code
	// "ValidationException".
	//
	// Validation exception error.
	ErrCodeValidationException = "ValidationException"
)
View Source
const (
	ServiceName = "AccessAnalyzer"  // Name of service.
	EndpointsID = "access-analyzer" // ID to lookup a service endpoint with.
	ServiceID   = "AccessAnalyzer"  // ServiceID is a unique identifier of a specific service.
)

Service information constants

Variables

This section is empty.

Functions

func AccessPreviewStatusReasonCode_Values

func AccessPreviewStatusReasonCode_Values() []string

AccessPreviewStatusReasonCode_Values returns all elements of the AccessPreviewStatusReasonCode enum

func AccessPreviewStatus_Values

func AccessPreviewStatus_Values() []string

AccessPreviewStatus_Values returns all elements of the AccessPreviewStatus enum

func AclPermission_Values

func AclPermission_Values() []string

AclPermission_Values returns all elements of the AclPermission enum

func AnalyzerStatus_Values

func AnalyzerStatus_Values() []string

AnalyzerStatus_Values returns all elements of the AnalyzerStatus enum

func FindingChangeType_Values

func FindingChangeType_Values() []string

FindingChangeType_Values returns all elements of the FindingChangeType enum

func FindingSourceType_Values

func FindingSourceType_Values() []string

FindingSourceType_Values returns all elements of the FindingSourceType enum

func FindingStatusUpdate_Values

func FindingStatusUpdate_Values() []string

FindingStatusUpdate_Values returns all elements of the FindingStatusUpdate enum

func FindingStatus_Values

func FindingStatus_Values() []string

FindingStatus_Values returns all elements of the FindingStatus enum

func JobErrorCode_Values

func JobErrorCode_Values() []string

JobErrorCode_Values returns all elements of the JobErrorCode enum

func JobStatus_Values

func JobStatus_Values() []string

JobStatus_Values returns all elements of the JobStatus enum

func KmsGrantOperation_Values

func KmsGrantOperation_Values() []string

KmsGrantOperation_Values returns all elements of the KmsGrantOperation enum

func Locale_Values

func Locale_Values() []string

Locale_Values returns all elements of the Locale enum

func OrderBy_Values

func OrderBy_Values() []string

OrderBy_Values returns all elements of the OrderBy enum

func PolicyType_Values

func PolicyType_Values() []string

PolicyType_Values returns all elements of the PolicyType enum

func ReasonCode_Values

func ReasonCode_Values() []string

ReasonCode_Values returns all elements of the ReasonCode enum

func ResourceType_Values

func ResourceType_Values() []string

ResourceType_Values returns all elements of the ResourceType enum

func Type_Values

func Type_Values() []string

Type_Values returns all elements of the Type enum

func ValidatePolicyFindingType_Values

func ValidatePolicyFindingType_Values() []string

ValidatePolicyFindingType_Values returns all elements of the ValidatePolicyFindingType enum

func ValidationExceptionReason_Values

func ValidationExceptionReason_Values() []string

ValidationExceptionReason_Values returns all elements of the ValidationExceptionReason enum

Types

type AccessAnalyzer

type AccessAnalyzer struct {
	*client.Client
}

AccessAnalyzer provides the API operation methods for making requests to Access Analyzer. See this package's package overview docs for details on the service.

AccessAnalyzer methods are safe to use concurrently. It is not safe to modify mutate any of the struct's properties though.

func New

func New(p client.ConfigProvider, cfgs ...*aws.Config) *AccessAnalyzer

New creates a new instance of the AccessAnalyzer client with a session. If additional configuration is needed for the client instance use the optional aws.Config parameter to add your extra config.

Example:

mySession := session.Must(session.NewSession())

// Create a AccessAnalyzer client from just a session.
svc := accessanalyzer.New(mySession)

// Create a AccessAnalyzer client with additional configuration
svc := accessanalyzer.New(mySession, aws.NewConfig().WithRegion("us-west-2"))

func (*AccessAnalyzer) ApplyArchiveRule

func (c *AccessAnalyzer) ApplyArchiveRule(input *ApplyArchiveRuleInput) (*ApplyArchiveRuleOutput, error)

ApplyArchiveRule API operation for Access Analyzer.

Retroactively applies the archive rule to existing findings that meet the archive rule criteria.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ApplyArchiveRule for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ApplyArchiveRule

func (*AccessAnalyzer) ApplyArchiveRuleRequest

func (c *AccessAnalyzer) ApplyArchiveRuleRequest(input *ApplyArchiveRuleInput) (req *request.Request, output *ApplyArchiveRuleOutput)

ApplyArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the ApplyArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ApplyArchiveRule for more information on using the ApplyArchiveRule API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ApplyArchiveRuleRequest method.
req, resp := client.ApplyArchiveRuleRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ApplyArchiveRule

func (*AccessAnalyzer) ApplyArchiveRuleWithContext

func (c *AccessAnalyzer) ApplyArchiveRuleWithContext(ctx aws.Context, input *ApplyArchiveRuleInput, opts ...request.Option) (*ApplyArchiveRuleOutput, error)

ApplyArchiveRuleWithContext is the same as ApplyArchiveRule with the addition of the ability to pass a context and additional request options.

See ApplyArchiveRule for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) CancelPolicyGeneration

func (c *AccessAnalyzer) CancelPolicyGeneration(input *CancelPolicyGenerationInput) (*CancelPolicyGenerationOutput, error)

CancelPolicyGeneration API operation for Access Analyzer.

Cancels the requested policy generation.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation CancelPolicyGeneration for usage and error information.

Returned Error Types:

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CancelPolicyGeneration

func (*AccessAnalyzer) CancelPolicyGenerationRequest

func (c *AccessAnalyzer) CancelPolicyGenerationRequest(input *CancelPolicyGenerationInput) (req *request.Request, output *CancelPolicyGenerationOutput)

CancelPolicyGenerationRequest generates a "aws/request.Request" representing the client's request for the CancelPolicyGeneration operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See CancelPolicyGeneration for more information on using the CancelPolicyGeneration API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the CancelPolicyGenerationRequest method.
req, resp := client.CancelPolicyGenerationRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CancelPolicyGeneration

func (*AccessAnalyzer) CancelPolicyGenerationWithContext

func (c *AccessAnalyzer) CancelPolicyGenerationWithContext(ctx aws.Context, input *CancelPolicyGenerationInput, opts ...request.Option) (*CancelPolicyGenerationOutput, error)

CancelPolicyGenerationWithContext is the same as CancelPolicyGeneration with the addition of the ability to pass a context and additional request options.

See CancelPolicyGeneration for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) CreateAccessPreview

func (c *AccessAnalyzer) CreateAccessPreview(input *CreateAccessPreviewInput) (*CreateAccessPreviewOutput, error)

CreateAccessPreview API operation for Access Analyzer.

Creates an access preview that allows you to preview Access Analyzer findings for your resource before deploying resource permissions.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation CreateAccessPreview for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ConflictException
A conflict exception error.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ServiceQuotaExceededException
Service quote met error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAccessPreview

func (*AccessAnalyzer) CreateAccessPreviewRequest

func (c *AccessAnalyzer) CreateAccessPreviewRequest(input *CreateAccessPreviewInput) (req *request.Request, output *CreateAccessPreviewOutput)

CreateAccessPreviewRequest generates a "aws/request.Request" representing the client's request for the CreateAccessPreview operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See CreateAccessPreview for more information on using the CreateAccessPreview API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the CreateAccessPreviewRequest method.
req, resp := client.CreateAccessPreviewRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAccessPreview

func (*AccessAnalyzer) CreateAccessPreviewWithContext

func (c *AccessAnalyzer) CreateAccessPreviewWithContext(ctx aws.Context, input *CreateAccessPreviewInput, opts ...request.Option) (*CreateAccessPreviewOutput, error)

CreateAccessPreviewWithContext is the same as CreateAccessPreview with the addition of the ability to pass a context and additional request options.

See CreateAccessPreview for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) CreateAnalyzer

func (c *AccessAnalyzer) CreateAnalyzer(input *CreateAnalyzerInput) (*CreateAnalyzerOutput, error)

CreateAnalyzer API operation for Access Analyzer.

Creates an analyzer for your account.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation CreateAnalyzer for usage and error information.

Returned Error Types:

* ConflictException
A conflict exception error.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ServiceQuotaExceededException
Service quote met error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAnalyzer

func (*AccessAnalyzer) CreateAnalyzerRequest

func (c *AccessAnalyzer) CreateAnalyzerRequest(input *CreateAnalyzerInput) (req *request.Request, output *CreateAnalyzerOutput)

CreateAnalyzerRequest generates a "aws/request.Request" representing the client's request for the CreateAnalyzer operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See CreateAnalyzer for more information on using the CreateAnalyzer API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the CreateAnalyzerRequest method.
req, resp := client.CreateAnalyzerRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateAnalyzer

func (*AccessAnalyzer) CreateAnalyzerWithContext

func (c *AccessAnalyzer) CreateAnalyzerWithContext(ctx aws.Context, input *CreateAnalyzerInput, opts ...request.Option) (*CreateAnalyzerOutput, error)

CreateAnalyzerWithContext is the same as CreateAnalyzer with the addition of the ability to pass a context and additional request options.

See CreateAnalyzer for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) CreateArchiveRule

func (c *AccessAnalyzer) CreateArchiveRule(input *CreateArchiveRuleInput) (*CreateArchiveRuleOutput, error)

CreateArchiveRule API operation for Access Analyzer.

Creates an archive rule for the specified analyzer. Archive rules automatically archive new findings that meet the criteria you define when you create the rule.

To learn about filter keys that you can use to create an archive rule, see Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html) in the IAM User Guide.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation CreateArchiveRule for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ConflictException
A conflict exception error.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ServiceQuotaExceededException
Service quote met error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateArchiveRule

func (*AccessAnalyzer) CreateArchiveRuleRequest

func (c *AccessAnalyzer) CreateArchiveRuleRequest(input *CreateArchiveRuleInput) (req *request.Request, output *CreateArchiveRuleOutput)

CreateArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the CreateArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See CreateArchiveRule for more information on using the CreateArchiveRule API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the CreateArchiveRuleRequest method.
req, resp := client.CreateArchiveRuleRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/CreateArchiveRule

func (*AccessAnalyzer) CreateArchiveRuleWithContext

func (c *AccessAnalyzer) CreateArchiveRuleWithContext(ctx aws.Context, input *CreateArchiveRuleInput, opts ...request.Option) (*CreateArchiveRuleOutput, error)

CreateArchiveRuleWithContext is the same as CreateArchiveRule with the addition of the ability to pass a context and additional request options.

See CreateArchiveRule for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) DeleteAnalyzer

func (c *AccessAnalyzer) DeleteAnalyzer(input *DeleteAnalyzerInput) (*DeleteAnalyzerOutput, error)

DeleteAnalyzer API operation for Access Analyzer.

Deletes the specified analyzer. When you delete an analyzer, Access Analyzer is disabled for the account or organization in the current or specific Region. All findings that were generated by the analyzer are deleted. You cannot undo this action.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation DeleteAnalyzer for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteAnalyzer

func (*AccessAnalyzer) DeleteAnalyzerRequest

func (c *AccessAnalyzer) DeleteAnalyzerRequest(input *DeleteAnalyzerInput) (req *request.Request, output *DeleteAnalyzerOutput)

DeleteAnalyzerRequest generates a "aws/request.Request" representing the client's request for the DeleteAnalyzer operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DeleteAnalyzer for more information on using the DeleteAnalyzer API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the DeleteAnalyzerRequest method.
req, resp := client.DeleteAnalyzerRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteAnalyzer

func (*AccessAnalyzer) DeleteAnalyzerWithContext

func (c *AccessAnalyzer) DeleteAnalyzerWithContext(ctx aws.Context, input *DeleteAnalyzerInput, opts ...request.Option) (*DeleteAnalyzerOutput, error)

DeleteAnalyzerWithContext is the same as DeleteAnalyzer with the addition of the ability to pass a context and additional request options.

See DeleteAnalyzer for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) DeleteArchiveRule

func (c *AccessAnalyzer) DeleteArchiveRule(input *DeleteArchiveRuleInput) (*DeleteArchiveRuleOutput, error)

DeleteArchiveRule API operation for Access Analyzer.

Deletes the specified archive rule.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation DeleteArchiveRule for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteArchiveRule

func (*AccessAnalyzer) DeleteArchiveRuleRequest

func (c *AccessAnalyzer) DeleteArchiveRuleRequest(input *DeleteArchiveRuleInput) (req *request.Request, output *DeleteArchiveRuleOutput)

DeleteArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the DeleteArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DeleteArchiveRule for more information on using the DeleteArchiveRule API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the DeleteArchiveRuleRequest method.
req, resp := client.DeleteArchiveRuleRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/DeleteArchiveRule

func (*AccessAnalyzer) DeleteArchiveRuleWithContext

func (c *AccessAnalyzer) DeleteArchiveRuleWithContext(ctx aws.Context, input *DeleteArchiveRuleInput, opts ...request.Option) (*DeleteArchiveRuleOutput, error)

DeleteArchiveRuleWithContext is the same as DeleteArchiveRule with the addition of the ability to pass a context and additional request options.

See DeleteArchiveRule for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) GetAccessPreview

func (c *AccessAnalyzer) GetAccessPreview(input *GetAccessPreviewInput) (*GetAccessPreviewOutput, error)

GetAccessPreview API operation for Access Analyzer.

Retrieves information about an access preview for the specified analyzer.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation GetAccessPreview for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAccessPreview

func (*AccessAnalyzer) GetAccessPreviewRequest

func (c *AccessAnalyzer) GetAccessPreviewRequest(input *GetAccessPreviewInput) (req *request.Request, output *GetAccessPreviewOutput)

GetAccessPreviewRequest generates a "aws/request.Request" representing the client's request for the GetAccessPreview operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetAccessPreview for more information on using the GetAccessPreview API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the GetAccessPreviewRequest method.
req, resp := client.GetAccessPreviewRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAccessPreview

func (*AccessAnalyzer) GetAccessPreviewWithContext

func (c *AccessAnalyzer) GetAccessPreviewWithContext(ctx aws.Context, input *GetAccessPreviewInput, opts ...request.Option) (*GetAccessPreviewOutput, error)

GetAccessPreviewWithContext is the same as GetAccessPreview with the addition of the ability to pass a context and additional request options.

See GetAccessPreview for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) GetAnalyzedResource

func (c *AccessAnalyzer) GetAnalyzedResource(input *GetAnalyzedResourceInput) (*GetAnalyzedResourceOutput, error)

GetAnalyzedResource API operation for Access Analyzer.

Retrieves information about a resource that was analyzed.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation GetAnalyzedResource for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzedResource

func (*AccessAnalyzer) GetAnalyzedResourceRequest

func (c *AccessAnalyzer) GetAnalyzedResourceRequest(input *GetAnalyzedResourceInput) (req *request.Request, output *GetAnalyzedResourceOutput)

GetAnalyzedResourceRequest generates a "aws/request.Request" representing the client's request for the GetAnalyzedResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetAnalyzedResource for more information on using the GetAnalyzedResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the GetAnalyzedResourceRequest method.
req, resp := client.GetAnalyzedResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzedResource

func (*AccessAnalyzer) GetAnalyzedResourceWithContext

func (c *AccessAnalyzer) GetAnalyzedResourceWithContext(ctx aws.Context, input *GetAnalyzedResourceInput, opts ...request.Option) (*GetAnalyzedResourceOutput, error)

GetAnalyzedResourceWithContext is the same as GetAnalyzedResource with the addition of the ability to pass a context and additional request options.

See GetAnalyzedResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) GetAnalyzer

func (c *AccessAnalyzer) GetAnalyzer(input *GetAnalyzerInput) (*GetAnalyzerOutput, error)

GetAnalyzer API operation for Access Analyzer.

Retrieves information about the specified analyzer.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation GetAnalyzer for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzer

func (*AccessAnalyzer) GetAnalyzerRequest

func (c *AccessAnalyzer) GetAnalyzerRequest(input *GetAnalyzerInput) (req *request.Request, output *GetAnalyzerOutput)

GetAnalyzerRequest generates a "aws/request.Request" representing the client's request for the GetAnalyzer operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetAnalyzer for more information on using the GetAnalyzer API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the GetAnalyzerRequest method.
req, resp := client.GetAnalyzerRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzer

func (*AccessAnalyzer) GetAnalyzerWithContext

func (c *AccessAnalyzer) GetAnalyzerWithContext(ctx aws.Context, input *GetAnalyzerInput, opts ...request.Option) (*GetAnalyzerOutput, error)

GetAnalyzerWithContext is the same as GetAnalyzer with the addition of the ability to pass a context and additional request options.

See GetAnalyzer for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) GetArchiveRule

func (c *AccessAnalyzer) GetArchiveRule(input *GetArchiveRuleInput) (*GetArchiveRuleOutput, error)

GetArchiveRule API operation for Access Analyzer.

Retrieves information about an archive rule.

To learn about filter keys that you can use to create an archive rule, see Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html) in the IAM User Guide.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation GetArchiveRule for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetArchiveRule

func (*AccessAnalyzer) GetArchiveRuleRequest

func (c *AccessAnalyzer) GetArchiveRuleRequest(input *GetArchiveRuleInput) (req *request.Request, output *GetArchiveRuleOutput)

GetArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the GetArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetArchiveRule for more information on using the GetArchiveRule API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the GetArchiveRuleRequest method.
req, resp := client.GetArchiveRuleRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetArchiveRule

func (*AccessAnalyzer) GetArchiveRuleWithContext

func (c *AccessAnalyzer) GetArchiveRuleWithContext(ctx aws.Context, input *GetArchiveRuleInput, opts ...request.Option) (*GetArchiveRuleOutput, error)

GetArchiveRuleWithContext is the same as GetArchiveRule with the addition of the ability to pass a context and additional request options.

See GetArchiveRule for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) GetFinding

func (c *AccessAnalyzer) GetFinding(input *GetFindingInput) (*GetFindingOutput, error)

GetFinding API operation for Access Analyzer.

Retrieves information about the specified finding.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation GetFinding for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFinding

func (*AccessAnalyzer) GetFindingRequest

func (c *AccessAnalyzer) GetFindingRequest(input *GetFindingInput) (req *request.Request, output *GetFindingOutput)

GetFindingRequest generates a "aws/request.Request" representing the client's request for the GetFinding operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetFinding for more information on using the GetFinding API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the GetFindingRequest method.
req, resp := client.GetFindingRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFinding

func (*AccessAnalyzer) GetFindingWithContext

func (c *AccessAnalyzer) GetFindingWithContext(ctx aws.Context, input *GetFindingInput, opts ...request.Option) (*GetFindingOutput, error)

GetFindingWithContext is the same as GetFinding with the addition of the ability to pass a context and additional request options.

See GetFinding for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) GetGeneratedPolicy

func (c *AccessAnalyzer) GetGeneratedPolicy(input *GetGeneratedPolicyInput) (*GetGeneratedPolicyOutput, error)

GetGeneratedPolicy API operation for Access Analyzer.

Retrieves the policy that was generated using StartPolicyGeneration.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation GetGeneratedPolicy for usage and error information.

Returned Error Types:

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetGeneratedPolicy

func (*AccessAnalyzer) GetGeneratedPolicyRequest

func (c *AccessAnalyzer) GetGeneratedPolicyRequest(input *GetGeneratedPolicyInput) (req *request.Request, output *GetGeneratedPolicyOutput)

GetGeneratedPolicyRequest generates a "aws/request.Request" representing the client's request for the GetGeneratedPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetGeneratedPolicy for more information on using the GetGeneratedPolicy API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the GetGeneratedPolicyRequest method.
req, resp := client.GetGeneratedPolicyRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetGeneratedPolicy

func (*AccessAnalyzer) GetGeneratedPolicyWithContext

func (c *AccessAnalyzer) GetGeneratedPolicyWithContext(ctx aws.Context, input *GetGeneratedPolicyInput, opts ...request.Option) (*GetGeneratedPolicyOutput, error)

GetGeneratedPolicyWithContext is the same as GetGeneratedPolicy with the addition of the ability to pass a context and additional request options.

See GetGeneratedPolicy for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAccessPreviewFindings

ListAccessPreviewFindings API operation for Access Analyzer.

Retrieves a list of access preview findings generated by the specified access preview.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListAccessPreviewFindings for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ConflictException
A conflict exception error.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviewFindings

func (*AccessAnalyzer) ListAccessPreviewFindingsPages

func (c *AccessAnalyzer) ListAccessPreviewFindingsPages(input *ListAccessPreviewFindingsInput, fn func(*ListAccessPreviewFindingsOutput, bool) bool) error

ListAccessPreviewFindingsPages iterates over the pages of a ListAccessPreviewFindings operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAccessPreviewFindings method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ListAccessPreviewFindings operation.
pageNum := 0
err := client.ListAccessPreviewFindingsPages(params,
    func(page *accessanalyzer.ListAccessPreviewFindingsOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ListAccessPreviewFindingsPagesWithContext

func (c *AccessAnalyzer) ListAccessPreviewFindingsPagesWithContext(ctx aws.Context, input *ListAccessPreviewFindingsInput, fn func(*ListAccessPreviewFindingsOutput, bool) bool, opts ...request.Option) error

ListAccessPreviewFindingsPagesWithContext same as ListAccessPreviewFindingsPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAccessPreviewFindingsRequest

func (c *AccessAnalyzer) ListAccessPreviewFindingsRequest(input *ListAccessPreviewFindingsInput) (req *request.Request, output *ListAccessPreviewFindingsOutput)

ListAccessPreviewFindingsRequest generates a "aws/request.Request" representing the client's request for the ListAccessPreviewFindings operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAccessPreviewFindings for more information on using the ListAccessPreviewFindings API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListAccessPreviewFindingsRequest method.
req, resp := client.ListAccessPreviewFindingsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviewFindings

func (*AccessAnalyzer) ListAccessPreviewFindingsWithContext

func (c *AccessAnalyzer) ListAccessPreviewFindingsWithContext(ctx aws.Context, input *ListAccessPreviewFindingsInput, opts ...request.Option) (*ListAccessPreviewFindingsOutput, error)

ListAccessPreviewFindingsWithContext is the same as ListAccessPreviewFindings with the addition of the ability to pass a context and additional request options.

See ListAccessPreviewFindings for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAccessPreviews

func (c *AccessAnalyzer) ListAccessPreviews(input *ListAccessPreviewsInput) (*ListAccessPreviewsOutput, error)

ListAccessPreviews API operation for Access Analyzer.

Retrieves a list of access previews for the specified analyzer.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListAccessPreviews for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviews

func (*AccessAnalyzer) ListAccessPreviewsPages

func (c *AccessAnalyzer) ListAccessPreviewsPages(input *ListAccessPreviewsInput, fn func(*ListAccessPreviewsOutput, bool) bool) error

ListAccessPreviewsPages iterates over the pages of a ListAccessPreviews operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAccessPreviews method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ListAccessPreviews operation.
pageNum := 0
err := client.ListAccessPreviewsPages(params,
    func(page *accessanalyzer.ListAccessPreviewsOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ListAccessPreviewsPagesWithContext

func (c *AccessAnalyzer) ListAccessPreviewsPagesWithContext(ctx aws.Context, input *ListAccessPreviewsInput, fn func(*ListAccessPreviewsOutput, bool) bool, opts ...request.Option) error

ListAccessPreviewsPagesWithContext same as ListAccessPreviewsPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAccessPreviewsRequest

func (c *AccessAnalyzer) ListAccessPreviewsRequest(input *ListAccessPreviewsInput) (req *request.Request, output *ListAccessPreviewsOutput)

ListAccessPreviewsRequest generates a "aws/request.Request" representing the client's request for the ListAccessPreviews operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAccessPreviews for more information on using the ListAccessPreviews API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListAccessPreviewsRequest method.
req, resp := client.ListAccessPreviewsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviews

func (*AccessAnalyzer) ListAccessPreviewsWithContext

func (c *AccessAnalyzer) ListAccessPreviewsWithContext(ctx aws.Context, input *ListAccessPreviewsInput, opts ...request.Option) (*ListAccessPreviewsOutput, error)

ListAccessPreviewsWithContext is the same as ListAccessPreviews with the addition of the ability to pass a context and additional request options.

See ListAccessPreviews for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAnalyzedResources

func (c *AccessAnalyzer) ListAnalyzedResources(input *ListAnalyzedResourcesInput) (*ListAnalyzedResourcesOutput, error)

ListAnalyzedResources API operation for Access Analyzer.

Retrieves a list of resources of the specified type that have been analyzed by the specified analyzer..

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListAnalyzedResources for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzedResources

func (*AccessAnalyzer) ListAnalyzedResourcesPages

func (c *AccessAnalyzer) ListAnalyzedResourcesPages(input *ListAnalyzedResourcesInput, fn func(*ListAnalyzedResourcesOutput, bool) bool) error

ListAnalyzedResourcesPages iterates over the pages of a ListAnalyzedResources operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAnalyzedResources method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ListAnalyzedResources operation.
pageNum := 0
err := client.ListAnalyzedResourcesPages(params,
    func(page *accessanalyzer.ListAnalyzedResourcesOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ListAnalyzedResourcesPagesWithContext

func (c *AccessAnalyzer) ListAnalyzedResourcesPagesWithContext(ctx aws.Context, input *ListAnalyzedResourcesInput, fn func(*ListAnalyzedResourcesOutput, bool) bool, opts ...request.Option) error

ListAnalyzedResourcesPagesWithContext same as ListAnalyzedResourcesPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAnalyzedResourcesRequest

func (c *AccessAnalyzer) ListAnalyzedResourcesRequest(input *ListAnalyzedResourcesInput) (req *request.Request, output *ListAnalyzedResourcesOutput)

ListAnalyzedResourcesRequest generates a "aws/request.Request" representing the client's request for the ListAnalyzedResources operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAnalyzedResources for more information on using the ListAnalyzedResources API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListAnalyzedResourcesRequest method.
req, resp := client.ListAnalyzedResourcesRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzedResources

func (*AccessAnalyzer) ListAnalyzedResourcesWithContext

func (c *AccessAnalyzer) ListAnalyzedResourcesWithContext(ctx aws.Context, input *ListAnalyzedResourcesInput, opts ...request.Option) (*ListAnalyzedResourcesOutput, error)

ListAnalyzedResourcesWithContext is the same as ListAnalyzedResources with the addition of the ability to pass a context and additional request options.

See ListAnalyzedResources for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAnalyzers

func (c *AccessAnalyzer) ListAnalyzers(input *ListAnalyzersInput) (*ListAnalyzersOutput, error)

ListAnalyzers API operation for Access Analyzer.

Retrieves a list of analyzers.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListAnalyzers for usage and error information.

Returned Error Types:

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzers

func (*AccessAnalyzer) ListAnalyzersPages

func (c *AccessAnalyzer) ListAnalyzersPages(input *ListAnalyzersInput, fn func(*ListAnalyzersOutput, bool) bool) error

ListAnalyzersPages iterates over the pages of a ListAnalyzers operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAnalyzers method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ListAnalyzers operation.
pageNum := 0
err := client.ListAnalyzersPages(params,
    func(page *accessanalyzer.ListAnalyzersOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ListAnalyzersPagesWithContext

func (c *AccessAnalyzer) ListAnalyzersPagesWithContext(ctx aws.Context, input *ListAnalyzersInput, fn func(*ListAnalyzersOutput, bool) bool, opts ...request.Option) error

ListAnalyzersPagesWithContext same as ListAnalyzersPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListAnalyzersRequest

func (c *AccessAnalyzer) ListAnalyzersRequest(input *ListAnalyzersInput) (req *request.Request, output *ListAnalyzersOutput)

ListAnalyzersRequest generates a "aws/request.Request" representing the client's request for the ListAnalyzers operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAnalyzers for more information on using the ListAnalyzers API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListAnalyzersRequest method.
req, resp := client.ListAnalyzersRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzers

func (*AccessAnalyzer) ListAnalyzersWithContext

func (c *AccessAnalyzer) ListAnalyzersWithContext(ctx aws.Context, input *ListAnalyzersInput, opts ...request.Option) (*ListAnalyzersOutput, error)

ListAnalyzersWithContext is the same as ListAnalyzers with the addition of the ability to pass a context and additional request options.

See ListAnalyzers for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListArchiveRules

func (c *AccessAnalyzer) ListArchiveRules(input *ListArchiveRulesInput) (*ListArchiveRulesOutput, error)

ListArchiveRules API operation for Access Analyzer.

Retrieves a list of archive rules created for the specified analyzer.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListArchiveRules for usage and error information.

Returned Error Types:

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListArchiveRules

func (*AccessAnalyzer) ListArchiveRulesPages

func (c *AccessAnalyzer) ListArchiveRulesPages(input *ListArchiveRulesInput, fn func(*ListArchiveRulesOutput, bool) bool) error

ListArchiveRulesPages iterates over the pages of a ListArchiveRules operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListArchiveRules method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ListArchiveRules operation.
pageNum := 0
err := client.ListArchiveRulesPages(params,
    func(page *accessanalyzer.ListArchiveRulesOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ListArchiveRulesPagesWithContext

func (c *AccessAnalyzer) ListArchiveRulesPagesWithContext(ctx aws.Context, input *ListArchiveRulesInput, fn func(*ListArchiveRulesOutput, bool) bool, opts ...request.Option) error

ListArchiveRulesPagesWithContext same as ListArchiveRulesPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListArchiveRulesRequest

func (c *AccessAnalyzer) ListArchiveRulesRequest(input *ListArchiveRulesInput) (req *request.Request, output *ListArchiveRulesOutput)

ListArchiveRulesRequest generates a "aws/request.Request" representing the client's request for the ListArchiveRules operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListArchiveRules for more information on using the ListArchiveRules API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListArchiveRulesRequest method.
req, resp := client.ListArchiveRulesRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListArchiveRules

func (*AccessAnalyzer) ListArchiveRulesWithContext

func (c *AccessAnalyzer) ListArchiveRulesWithContext(ctx aws.Context, input *ListArchiveRulesInput, opts ...request.Option) (*ListArchiveRulesOutput, error)

ListArchiveRulesWithContext is the same as ListArchiveRules with the addition of the ability to pass a context and additional request options.

See ListArchiveRules for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListFindings

func (c *AccessAnalyzer) ListFindings(input *ListFindingsInput) (*ListFindingsOutput, error)

ListFindings API operation for Access Analyzer.

Retrieves a list of findings generated by the specified analyzer.

To learn about filter keys that you can use to retrieve a list of findings, see Access Analyzer filter keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html) in the IAM User Guide.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListFindings for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListFindings

func (*AccessAnalyzer) ListFindingsPages

func (c *AccessAnalyzer) ListFindingsPages(input *ListFindingsInput, fn func(*ListFindingsOutput, bool) bool) error

ListFindingsPages iterates over the pages of a ListFindings operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListFindings method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ListFindings operation.
pageNum := 0
err := client.ListFindingsPages(params,
    func(page *accessanalyzer.ListFindingsOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ListFindingsPagesWithContext

func (c *AccessAnalyzer) ListFindingsPagesWithContext(ctx aws.Context, input *ListFindingsInput, fn func(*ListFindingsOutput, bool) bool, opts ...request.Option) error

ListFindingsPagesWithContext same as ListFindingsPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListFindingsRequest

func (c *AccessAnalyzer) ListFindingsRequest(input *ListFindingsInput) (req *request.Request, output *ListFindingsOutput)

ListFindingsRequest generates a "aws/request.Request" representing the client's request for the ListFindings operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListFindings for more information on using the ListFindings API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListFindingsRequest method.
req, resp := client.ListFindingsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListFindings

func (*AccessAnalyzer) ListFindingsWithContext

func (c *AccessAnalyzer) ListFindingsWithContext(ctx aws.Context, input *ListFindingsInput, opts ...request.Option) (*ListFindingsOutput, error)

ListFindingsWithContext is the same as ListFindings with the addition of the ability to pass a context and additional request options.

See ListFindings for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListPolicyGenerations

func (c *AccessAnalyzer) ListPolicyGenerations(input *ListPolicyGenerationsInput) (*ListPolicyGenerationsOutput, error)

ListPolicyGenerations API operation for Access Analyzer.

Lists all of the policy generations requested in the last seven days.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListPolicyGenerations for usage and error information.

Returned Error Types:

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListPolicyGenerations

func (*AccessAnalyzer) ListPolicyGenerationsPages

func (c *AccessAnalyzer) ListPolicyGenerationsPages(input *ListPolicyGenerationsInput, fn func(*ListPolicyGenerationsOutput, bool) bool) error

ListPolicyGenerationsPages iterates over the pages of a ListPolicyGenerations operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListPolicyGenerations method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ListPolicyGenerations operation.
pageNum := 0
err := client.ListPolicyGenerationsPages(params,
    func(page *accessanalyzer.ListPolicyGenerationsOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ListPolicyGenerationsPagesWithContext

func (c *AccessAnalyzer) ListPolicyGenerationsPagesWithContext(ctx aws.Context, input *ListPolicyGenerationsInput, fn func(*ListPolicyGenerationsOutput, bool) bool, opts ...request.Option) error

ListPolicyGenerationsPagesWithContext same as ListPolicyGenerationsPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListPolicyGenerationsRequest

func (c *AccessAnalyzer) ListPolicyGenerationsRequest(input *ListPolicyGenerationsInput) (req *request.Request, output *ListPolicyGenerationsOutput)

ListPolicyGenerationsRequest generates a "aws/request.Request" representing the client's request for the ListPolicyGenerations operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListPolicyGenerations for more information on using the ListPolicyGenerations API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListPolicyGenerationsRequest method.
req, resp := client.ListPolicyGenerationsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListPolicyGenerations

func (*AccessAnalyzer) ListPolicyGenerationsWithContext

func (c *AccessAnalyzer) ListPolicyGenerationsWithContext(ctx aws.Context, input *ListPolicyGenerationsInput, opts ...request.Option) (*ListPolicyGenerationsOutput, error)

ListPolicyGenerationsWithContext is the same as ListPolicyGenerations with the addition of the ability to pass a context and additional request options.

See ListPolicyGenerations for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ListTagsForResource

func (c *AccessAnalyzer) ListTagsForResource(input *ListTagsForResourceInput) (*ListTagsForResourceOutput, error)

ListTagsForResource API operation for Access Analyzer.

Retrieves a list of tags applied to the specified resource.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ListTagsForResource for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListTagsForResource

func (*AccessAnalyzer) ListTagsForResourceRequest

func (c *AccessAnalyzer) ListTagsForResourceRequest(input *ListTagsForResourceInput) (req *request.Request, output *ListTagsForResourceOutput)

ListTagsForResourceRequest generates a "aws/request.Request" representing the client's request for the ListTagsForResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListTagsForResource for more information on using the ListTagsForResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ListTagsForResourceRequest method.
req, resp := client.ListTagsForResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListTagsForResource

func (*AccessAnalyzer) ListTagsForResourceWithContext

func (c *AccessAnalyzer) ListTagsForResourceWithContext(ctx aws.Context, input *ListTagsForResourceInput, opts ...request.Option) (*ListTagsForResourceOutput, error)

ListTagsForResourceWithContext is the same as ListTagsForResource with the addition of the ability to pass a context and additional request options.

See ListTagsForResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) StartPolicyGeneration

func (c *AccessAnalyzer) StartPolicyGeneration(input *StartPolicyGenerationInput) (*StartPolicyGenerationOutput, error)

StartPolicyGeneration API operation for Access Analyzer.

Starts the policy generation request.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation StartPolicyGeneration for usage and error information.

Returned Error Types:

* ConflictException
A conflict exception error.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ServiceQuotaExceededException
Service quote met error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartPolicyGeneration

func (*AccessAnalyzer) StartPolicyGenerationRequest

func (c *AccessAnalyzer) StartPolicyGenerationRequest(input *StartPolicyGenerationInput) (req *request.Request, output *StartPolicyGenerationOutput)

StartPolicyGenerationRequest generates a "aws/request.Request" representing the client's request for the StartPolicyGeneration operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See StartPolicyGeneration for more information on using the StartPolicyGeneration API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the StartPolicyGenerationRequest method.
req, resp := client.StartPolicyGenerationRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartPolicyGeneration

func (*AccessAnalyzer) StartPolicyGenerationWithContext

func (c *AccessAnalyzer) StartPolicyGenerationWithContext(ctx aws.Context, input *StartPolicyGenerationInput, opts ...request.Option) (*StartPolicyGenerationOutput, error)

StartPolicyGenerationWithContext is the same as StartPolicyGeneration with the addition of the ability to pass a context and additional request options.

See StartPolicyGeneration for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) StartResourceScan

func (c *AccessAnalyzer) StartResourceScan(input *StartResourceScanInput) (*StartResourceScanOutput, error)

StartResourceScan API operation for Access Analyzer.

Immediately starts a scan of the policies applied to the specified resource.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation StartResourceScan for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartResourceScan

func (*AccessAnalyzer) StartResourceScanRequest

func (c *AccessAnalyzer) StartResourceScanRequest(input *StartResourceScanInput) (req *request.Request, output *StartResourceScanOutput)

StartResourceScanRequest generates a "aws/request.Request" representing the client's request for the StartResourceScan operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See StartResourceScan for more information on using the StartResourceScan API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the StartResourceScanRequest method.
req, resp := client.StartResourceScanRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StartResourceScan

func (*AccessAnalyzer) StartResourceScanWithContext

func (c *AccessAnalyzer) StartResourceScanWithContext(ctx aws.Context, input *StartResourceScanInput, opts ...request.Option) (*StartResourceScanOutput, error)

StartResourceScanWithContext is the same as StartResourceScan with the addition of the ability to pass a context and additional request options.

See StartResourceScan for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) TagResource

func (c *AccessAnalyzer) TagResource(input *TagResourceInput) (*TagResourceOutput, error)

TagResource API operation for Access Analyzer.

Adds a tag to the specified resource.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation TagResource for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/TagResource

func (*AccessAnalyzer) TagResourceRequest

func (c *AccessAnalyzer) TagResourceRequest(input *TagResourceInput) (req *request.Request, output *TagResourceOutput)

TagResourceRequest generates a "aws/request.Request" representing the client's request for the TagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See TagResource for more information on using the TagResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the TagResourceRequest method.
req, resp := client.TagResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/TagResource

func (*AccessAnalyzer) TagResourceWithContext

func (c *AccessAnalyzer) TagResourceWithContext(ctx aws.Context, input *TagResourceInput, opts ...request.Option) (*TagResourceOutput, error)

TagResourceWithContext is the same as TagResource with the addition of the ability to pass a context and additional request options.

See TagResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) UntagResource

func (c *AccessAnalyzer) UntagResource(input *UntagResourceInput) (*UntagResourceOutput, error)

UntagResource API operation for Access Analyzer.

Removes a tag from the specified resource.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation UntagResource for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UntagResource

func (*AccessAnalyzer) UntagResourceRequest

func (c *AccessAnalyzer) UntagResourceRequest(input *UntagResourceInput) (req *request.Request, output *UntagResourceOutput)

UntagResourceRequest generates a "aws/request.Request" representing the client's request for the UntagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See UntagResource for more information on using the UntagResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the UntagResourceRequest method.
req, resp := client.UntagResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UntagResource

func (*AccessAnalyzer) UntagResourceWithContext

func (c *AccessAnalyzer) UntagResourceWithContext(ctx aws.Context, input *UntagResourceInput, opts ...request.Option) (*UntagResourceOutput, error)

UntagResourceWithContext is the same as UntagResource with the addition of the ability to pass a context and additional request options.

See UntagResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) UpdateArchiveRule

func (c *AccessAnalyzer) UpdateArchiveRule(input *UpdateArchiveRuleInput) (*UpdateArchiveRuleOutput, error)

UpdateArchiveRule API operation for Access Analyzer.

Updates the criteria and values for the specified archive rule.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation UpdateArchiveRule for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateArchiveRule

func (*AccessAnalyzer) UpdateArchiveRuleRequest

func (c *AccessAnalyzer) UpdateArchiveRuleRequest(input *UpdateArchiveRuleInput) (req *request.Request, output *UpdateArchiveRuleOutput)

UpdateArchiveRuleRequest generates a "aws/request.Request" representing the client's request for the UpdateArchiveRule operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See UpdateArchiveRule for more information on using the UpdateArchiveRule API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the UpdateArchiveRuleRequest method.
req, resp := client.UpdateArchiveRuleRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateArchiveRule

func (*AccessAnalyzer) UpdateArchiveRuleWithContext

func (c *AccessAnalyzer) UpdateArchiveRuleWithContext(ctx aws.Context, input *UpdateArchiveRuleInput, opts ...request.Option) (*UpdateArchiveRuleOutput, error)

UpdateArchiveRuleWithContext is the same as UpdateArchiveRule with the addition of the ability to pass a context and additional request options.

See UpdateArchiveRule for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) UpdateFindings

func (c *AccessAnalyzer) UpdateFindings(input *UpdateFindingsInput) (*UpdateFindingsOutput, error)

UpdateFindings API operation for Access Analyzer.

Updates the status for the specified findings.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation UpdateFindings for usage and error information.

Returned Error Types:

* ResourceNotFoundException
The specified resource could not be found.

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateFindings

func (*AccessAnalyzer) UpdateFindingsRequest

func (c *AccessAnalyzer) UpdateFindingsRequest(input *UpdateFindingsInput) (req *request.Request, output *UpdateFindingsOutput)

UpdateFindingsRequest generates a "aws/request.Request" representing the client's request for the UpdateFindings operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See UpdateFindings for more information on using the UpdateFindings API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the UpdateFindingsRequest method.
req, resp := client.UpdateFindingsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/UpdateFindings

func (*AccessAnalyzer) UpdateFindingsWithContext

func (c *AccessAnalyzer) UpdateFindingsWithContext(ctx aws.Context, input *UpdateFindingsInput, opts ...request.Option) (*UpdateFindingsOutput, error)

UpdateFindingsWithContext is the same as UpdateFindings with the addition of the ability to pass a context and additional request options.

See UpdateFindings for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ValidatePolicy

func (c *AccessAnalyzer) ValidatePolicy(input *ValidatePolicyInput) (*ValidatePolicyOutput, error)

ValidatePolicy API operation for Access Analyzer.

Requests the validation of a policy and returns a list of findings. The findings help you identify issues and provide actionable recommendations to resolve the issue and enable you to author functional policies that meet security best practices.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for Access Analyzer's API operation ValidatePolicy for usage and error information.

Returned Error Types:

* ValidationException
Validation exception error.

* InternalServerException
Internal server error.

* ThrottlingException
Throttling limit exceeded error.

* AccessDeniedException
You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ValidatePolicy

func (*AccessAnalyzer) ValidatePolicyPages

func (c *AccessAnalyzer) ValidatePolicyPages(input *ValidatePolicyInput, fn func(*ValidatePolicyOutput, bool) bool) error

ValidatePolicyPages iterates over the pages of a ValidatePolicy operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ValidatePolicy method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service.

// Example iterating over at most 3 pages of a ValidatePolicy operation.
pageNum := 0
err := client.ValidatePolicyPages(params,
    func(page *accessanalyzer.ValidatePolicyOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*AccessAnalyzer) ValidatePolicyPagesWithContext

func (c *AccessAnalyzer) ValidatePolicyPagesWithContext(ctx aws.Context, input *ValidatePolicyInput, fn func(*ValidatePolicyOutput, bool) bool, opts ...request.Option) error

ValidatePolicyPagesWithContext same as ValidatePolicyPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*AccessAnalyzer) ValidatePolicyRequest

func (c *AccessAnalyzer) ValidatePolicyRequest(input *ValidatePolicyInput) (req *request.Request, output *ValidatePolicyOutput)

ValidatePolicyRequest generates a "aws/request.Request" representing the client's request for the ValidatePolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ValidatePolicy for more information on using the ValidatePolicy API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.

// Example sending a request using the ValidatePolicyRequest method.
req, resp := client.ValidatePolicyRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ValidatePolicy

func (*AccessAnalyzer) ValidatePolicyWithContext

func (c *AccessAnalyzer) ValidatePolicyWithContext(ctx aws.Context, input *ValidatePolicyInput, opts ...request.Option) (*ValidatePolicyOutput, error)

ValidatePolicyWithContext is the same as ValidatePolicy with the addition of the ability to pass a context and additional request options.

See ValidatePolicy for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

type AccessDeniedException

type AccessDeniedException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`
	// contains filtered or unexported fields
}

You do not have sufficient access to perform this action.

func (*AccessDeniedException) Code

func (s *AccessDeniedException) Code() string

Code returns the exception type name.

func (*AccessDeniedException) Error

func (s *AccessDeniedException) Error() string

func (AccessDeniedException) GoString

func (s AccessDeniedException) GoString() string

GoString returns the string representation

func (*AccessDeniedException) Message

func (s *AccessDeniedException) Message() string

Message returns the exception's message.

func (*AccessDeniedException) OrigErr

func (s *AccessDeniedException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*AccessDeniedException) RequestID

func (s *AccessDeniedException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*AccessDeniedException) StatusCode

func (s *AccessDeniedException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (AccessDeniedException) String

func (s AccessDeniedException) String() string

String returns the string representation

type AccessPreview

type AccessPreview struct {

	// The ARN of the analyzer used to generate the access preview.
	//
	// AnalyzerArn is a required field
	AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"`

	// A map of resource ARNs for the proposed resource configuration.
	//
	// Configurations is a required field
	Configurations map[string]*Configuration `locationName:"configurations" type:"map" required:"true"`

	// The time at which the access preview was created.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The unique ID for the access preview.
	//
	// Id is a required field
	Id *string `locationName:"id" type:"string" required:"true"`

	// The status of the access preview.
	//
	//    * Creating - The access preview creation is in progress.
	//
	//    * Completed - The access preview is complete. You can preview findings
	//    for external access to the resource.
	//
	//    * Failed - The access preview creation has failed.
	//
	// Status is a required field
	Status *string `locationName:"status" type:"string" required:"true" enum:"AccessPreviewStatus"`

	// Provides more details about the current status of the access preview.
	//
	// For example, if the creation of the access preview fails, a Failed status
	// is returned. This failure can be due to an internal issue with the analysis
	// or due to an invalid resource configuration.
	StatusReason *AccessPreviewStatusReason `locationName:"statusReason" type:"structure"`
	// contains filtered or unexported fields
}

Contains information about an access preview.

func (AccessPreview) GoString

func (s AccessPreview) GoString() string

GoString returns the string representation

func (*AccessPreview) SetAnalyzerArn

func (s *AccessPreview) SetAnalyzerArn(v string) *AccessPreview

SetAnalyzerArn sets the AnalyzerArn field's value.

func (*AccessPreview) SetConfigurations

func (s *AccessPreview) SetConfigurations(v map[string]*Configuration) *AccessPreview

SetConfigurations sets the Configurations field's value.

func (*AccessPreview) SetCreatedAt

func (s *AccessPreview) SetCreatedAt(v time.Time) *AccessPreview

SetCreatedAt sets the CreatedAt field's value.

func (*AccessPreview) SetId

func (s *AccessPreview) SetId(v string) *AccessPreview

SetId sets the Id field's value.

func (*AccessPreview) SetStatus

func (s *AccessPreview) SetStatus(v string) *AccessPreview

SetStatus sets the Status field's value.

func (*AccessPreview) SetStatusReason

func (s *AccessPreview) SetStatusReason(v *AccessPreviewStatusReason) *AccessPreview

SetStatusReason sets the StatusReason field's value.

func (AccessPreview) String

func (s AccessPreview) String() string

String returns the string representation

type AccessPreviewFinding

type AccessPreviewFinding struct {

	// The action in the analyzed policy statement that an external principal has
	// permission to perform.
	Action []*string `locationName:"action" type:"list"`

	// Provides context on how the access preview finding compares to existing access
	// identified in Access Analyzer.
	//
	//    * New - The finding is for newly-introduced access.
	//
	//    * Unchanged - The preview finding is an existing finding that would remain
	//    unchanged.
	//
	//    * Changed - The preview finding is an existing finding with a change in
	//    status.
	//
	// For example, a Changed finding with preview status Resolved and existing
	// status Active indicates the existing Active finding would become Resolved
	// as a result of the proposed permissions change.
	//
	// ChangeType is a required field
	ChangeType *string `locationName:"changeType" type:"string" required:"true" enum:"FindingChangeType"`

	// The condition in the analyzed policy statement that resulted in a finding.
	Condition map[string]*string `locationName:"condition" type:"map"`

	// The time at which the access preview finding was created.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// An error.
	Error *string `locationName:"error" type:"string"`

	// The existing ID of the finding in Access Analyzer, provided only for existing
	// findings.
	ExistingFindingId *string `locationName:"existingFindingId" type:"string"`

	// The existing status of the finding, provided only for existing findings.
	ExistingFindingStatus *string `locationName:"existingFindingStatus" type:"string" enum:"FindingStatus"`

	// The ID of the access preview finding. This ID uniquely identifies the element
	// in the list of access preview findings and is not related to the finding
	// ID in Access Analyzer.
	//
	// Id is a required field
	Id *string `locationName:"id" type:"string" required:"true"`

	// Indicates whether the policy that generated the finding allows public access
	// to the resource.
	IsPublic *bool `locationName:"isPublic" type:"boolean"`

	// The external principal that has access to a resource within the zone of trust.
	Principal map[string]*string `locationName:"principal" type:"map"`

	// The resource that an external principal has access to. This is the resource
	// associated with the access preview.
	Resource *string `locationName:"resource" type:"string"`

	// The AWS account ID that owns the resource. For most AWS resources, the owning
	// account is the account in which the resource was created.
	//
	// ResourceOwnerAccount is a required field
	ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"`

	// The type of the resource that can be accessed in the finding.
	//
	// ResourceType is a required field
	ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"`

	// The sources of the finding. This indicates how the access that generated
	// the finding is granted. It is populated for Amazon S3 bucket findings.
	Sources []*FindingSource `locationName:"sources" type:"list"`

	// The preview status of the finding. This is what the status of the finding
	// would be after permissions deployment. For example, a Changed finding with
	// preview status Resolved and existing status Active indicates the existing
	// Active finding would become Resolved as a result of the proposed permissions
	// change.
	//
	// Status is a required field
	Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"`
	// contains filtered or unexported fields
}

An access preview finding generated by the access preview.

func (AccessPreviewFinding) GoString

func (s AccessPreviewFinding) GoString() string

GoString returns the string representation

func (*AccessPreviewFinding) SetAction

func (s *AccessPreviewFinding) SetAction(v []*string) *AccessPreviewFinding

SetAction sets the Action field's value.

func (*AccessPreviewFinding) SetChangeType

func (s *AccessPreviewFinding) SetChangeType(v string) *AccessPreviewFinding

SetChangeType sets the ChangeType field's value.

func (*AccessPreviewFinding) SetCondition

func (s *AccessPreviewFinding) SetCondition(v map[string]*string) *AccessPreviewFinding

SetCondition sets the Condition field's value.

func (*AccessPreviewFinding) SetCreatedAt

func (s *AccessPreviewFinding) SetCreatedAt(v time.Time) *AccessPreviewFinding

SetCreatedAt sets the CreatedAt field's value.

func (*AccessPreviewFinding) SetError

SetError sets the Error field's value.

func (*AccessPreviewFinding) SetExistingFindingId

func (s *AccessPreviewFinding) SetExistingFindingId(v string) *AccessPreviewFinding

SetExistingFindingId sets the ExistingFindingId field's value.

func (*AccessPreviewFinding) SetExistingFindingStatus

func (s *AccessPreviewFinding) SetExistingFindingStatus(v string) *AccessPreviewFinding

SetExistingFindingStatus sets the ExistingFindingStatus field's value.

func (*AccessPreviewFinding) SetId

SetId sets the Id field's value.

func (*AccessPreviewFinding) SetIsPublic

func (s *AccessPreviewFinding) SetIsPublic(v bool) *AccessPreviewFinding

SetIsPublic sets the IsPublic field's value.

func (*AccessPreviewFinding) SetPrincipal

func (s *AccessPreviewFinding) SetPrincipal(v map[string]*string) *AccessPreviewFinding

SetPrincipal sets the Principal field's value.

func (*AccessPreviewFinding) SetResource

SetResource sets the Resource field's value.

func (*AccessPreviewFinding) SetResourceOwnerAccount

func (s *AccessPreviewFinding) SetResourceOwnerAccount(v string) *AccessPreviewFinding

SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.

func (*AccessPreviewFinding) SetResourceType

func (s *AccessPreviewFinding) SetResourceType(v string) *AccessPreviewFinding

SetResourceType sets the ResourceType field's value.

func (*AccessPreviewFinding) SetSources

SetSources sets the Sources field's value.

func (*AccessPreviewFinding) SetStatus

SetStatus sets the Status field's value.

func (AccessPreviewFinding) String

func (s AccessPreviewFinding) String() string

String returns the string representation

type AccessPreviewStatusReason

type AccessPreviewStatusReason struct {

	// The reason code for the current status of the access preview.
	//
	// Code is a required field
	Code *string `locationName:"code" type:"string" required:"true" enum:"AccessPreviewStatusReasonCode"`
	// contains filtered or unexported fields
}

Provides more details about the current status of the access preview. For example, if the creation of the access preview fails, a Failed status is returned. This failure can be due to an internal issue with the analysis or due to an invalid proposed resource configuration.

func (AccessPreviewStatusReason) GoString

func (s AccessPreviewStatusReason) GoString() string

GoString returns the string representation

func (*AccessPreviewStatusReason) SetCode

SetCode sets the Code field's value.

func (AccessPreviewStatusReason) String

func (s AccessPreviewStatusReason) String() string

String returns the string representation

type AccessPreviewSummary

type AccessPreviewSummary struct {

	// The ARN of the analyzer used to generate the access preview.
	//
	// AnalyzerArn is a required field
	AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"`

	// The time at which the access preview was created.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The unique ID for the access preview.
	//
	// Id is a required field
	Id *string `locationName:"id" type:"string" required:"true"`

	// The status of the access preview.
	//
	//    * Creating - The access preview creation is in progress.
	//
	//    * Completed - The access preview is complete and previews the findings
	//    for external access to the resource.
	//
	//    * Failed - The access preview creation has failed.
	//
	// Status is a required field
	Status *string `locationName:"status" type:"string" required:"true" enum:"AccessPreviewStatus"`

	// Provides more details about the current status of the access preview. For
	// example, if the creation of the access preview fails, a Failed status is
	// returned. This failure can be due to an internal issue with the analysis
	// or due to an invalid proposed resource configuration.
	StatusReason *AccessPreviewStatusReason `locationName:"statusReason" type:"structure"`
	// contains filtered or unexported fields
}

Contains a summary of information about an access preview.

func (AccessPreviewSummary) GoString

func (s AccessPreviewSummary) GoString() string

GoString returns the string representation

func (*AccessPreviewSummary) SetAnalyzerArn

func (s *AccessPreviewSummary) SetAnalyzerArn(v string) *AccessPreviewSummary

SetAnalyzerArn sets the AnalyzerArn field's value.

func (*AccessPreviewSummary) SetCreatedAt

func (s *AccessPreviewSummary) SetCreatedAt(v time.Time) *AccessPreviewSummary

SetCreatedAt sets the CreatedAt field's value.

func (*AccessPreviewSummary) SetId

SetId sets the Id field's value.

func (*AccessPreviewSummary) SetStatus

SetStatus sets the Status field's value.

func (*AccessPreviewSummary) SetStatusReason

SetStatusReason sets the StatusReason field's value.

func (AccessPreviewSummary) String

func (s AccessPreviewSummary) String() string

String returns the string representation

type AclGrantee

type AclGrantee struct {

	// The value specified is the canonical user ID of an AWS account.
	Id *string `locationName:"id" type:"string"`

	// Used for granting permissions to a predefined group.
	Uri *string `locationName:"uri" type:"string"`
	// contains filtered or unexported fields
}

You specify each grantee as a type-value pair using one of these types. You can specify only one type of grantee. For more information, see PutBucketAcl (https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketAcl.html).

func (AclGrantee) GoString

func (s AclGrantee) GoString() string

GoString returns the string representation

func (*AclGrantee) SetId

func (s *AclGrantee) SetId(v string) *AclGrantee

SetId sets the Id field's value.

func (*AclGrantee) SetUri

func (s *AclGrantee) SetUri(v string) *AclGrantee

SetUri sets the Uri field's value.

func (AclGrantee) String

func (s AclGrantee) String() string

String returns the string representation

type AnalyzedResource

type AnalyzedResource struct {

	// The actions that an external principal is granted permission to use by the
	// policy that generated the finding.
	Actions []*string `locationName:"actions" type:"list"`

	// The time at which the resource was analyzed.
	//
	// AnalyzedAt is a required field
	AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The time at which the finding was created.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// An error message.
	Error *string `locationName:"error" type:"string"`

	// Indicates whether the policy that generated the finding grants public access
	// to the resource.
	//
	// IsPublic is a required field
	IsPublic *bool `locationName:"isPublic" type:"boolean" required:"true"`

	// The ARN of the resource that was analyzed.
	//
	// ResourceArn is a required field
	ResourceArn *string `locationName:"resourceArn" type:"string" required:"true"`

	// The AWS account ID that owns the resource.
	//
	// ResourceOwnerAccount is a required field
	ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"`

	// The type of the resource that was analyzed.
	//
	// ResourceType is a required field
	ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"`

	// Indicates how the access that generated the finding is granted. This is populated
	// for Amazon S3 bucket findings.
	SharedVia []*string `locationName:"sharedVia" type:"list"`

	// The current status of the finding generated from the analyzed resource.
	Status *string `locationName:"status" type:"string" enum:"FindingStatus"`

	// The time at which the finding was updated.
	//
	// UpdatedAt is a required field
	UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`
	// contains filtered or unexported fields
}

Contains details about the analyzed resource.

func (AnalyzedResource) GoString

func (s AnalyzedResource) GoString() string

GoString returns the string representation

func (*AnalyzedResource) SetActions

func (s *AnalyzedResource) SetActions(v []*string) *AnalyzedResource

SetActions sets the Actions field's value.

func (*AnalyzedResource) SetAnalyzedAt

func (s *AnalyzedResource) SetAnalyzedAt(v time.Time) *AnalyzedResource

SetAnalyzedAt sets the AnalyzedAt field's value.

func (*AnalyzedResource) SetCreatedAt

func (s *AnalyzedResource) SetCreatedAt(v time.Time) *AnalyzedResource

SetCreatedAt sets the CreatedAt field's value.

func (*AnalyzedResource) SetError

func (s *AnalyzedResource) SetError(v string) *AnalyzedResource

SetError sets the Error field's value.

func (*AnalyzedResource) SetIsPublic

func (s *AnalyzedResource) SetIsPublic(v bool) *AnalyzedResource

SetIsPublic sets the IsPublic field's value.

func (*AnalyzedResource) SetResourceArn

func (s *AnalyzedResource) SetResourceArn(v string) *AnalyzedResource

SetResourceArn sets the ResourceArn field's value.

func (*AnalyzedResource) SetResourceOwnerAccount

func (s *AnalyzedResource) SetResourceOwnerAccount(v string) *AnalyzedResource

SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.

func (*AnalyzedResource) SetResourceType

func (s *AnalyzedResource) SetResourceType(v string) *AnalyzedResource

SetResourceType sets the ResourceType field's value.

func (*AnalyzedResource) SetSharedVia

func (s *AnalyzedResource) SetSharedVia(v []*string) *AnalyzedResource

SetSharedVia sets the SharedVia field's value.

func (*AnalyzedResource) SetStatus

func (s *AnalyzedResource) SetStatus(v string) *AnalyzedResource

SetStatus sets the Status field's value.

func (*AnalyzedResource) SetUpdatedAt

func (s *AnalyzedResource) SetUpdatedAt(v time.Time) *AnalyzedResource

SetUpdatedAt sets the UpdatedAt field's value.

func (AnalyzedResource) String

func (s AnalyzedResource) String() string

String returns the string representation

type AnalyzedResourceSummary

type AnalyzedResourceSummary struct {

	// The ARN of the analyzed resource.
	//
	// ResourceArn is a required field
	ResourceArn *string `locationName:"resourceArn" type:"string" required:"true"`

	// The AWS account ID that owns the resource.
	//
	// ResourceOwnerAccount is a required field
	ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"`

	// The type of resource that was analyzed.
	//
	// ResourceType is a required field
	ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"`
	// contains filtered or unexported fields
}

Contains the ARN of the analyzed resource.

func (AnalyzedResourceSummary) GoString

func (s AnalyzedResourceSummary) GoString() string

GoString returns the string representation

func (*AnalyzedResourceSummary) SetResourceArn

SetResourceArn sets the ResourceArn field's value.

func (*AnalyzedResourceSummary) SetResourceOwnerAccount

func (s *AnalyzedResourceSummary) SetResourceOwnerAccount(v string) *AnalyzedResourceSummary

SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.

func (*AnalyzedResourceSummary) SetResourceType

SetResourceType sets the ResourceType field's value.

func (AnalyzedResourceSummary) String

func (s AnalyzedResourceSummary) String() string

String returns the string representation

type AnalyzerSummary

type AnalyzerSummary struct {

	// The ARN of the analyzer.
	//
	// Arn is a required field
	Arn *string `locationName:"arn" type:"string" required:"true"`

	// A timestamp for the time at which the analyzer was created.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The resource that was most recently analyzed by the analyzer.
	LastResourceAnalyzed *string `locationName:"lastResourceAnalyzed" type:"string"`

	// The time at which the most recently analyzed resource was analyzed.
	LastResourceAnalyzedAt *time.Time `locationName:"lastResourceAnalyzedAt" type:"timestamp" timestampFormat:"iso8601"`

	// The name of the analyzer.
	//
	// Name is a required field
	Name *string `locationName:"name" min:"1" type:"string" required:"true"`

	// The status of the analyzer. An Active analyzer successfully monitors supported
	// resources and generates new findings. The analyzer is Disabled when a user
	// action, such as removing trusted access for AWS IAM Access Analyzer from
	// AWS Organizations, causes the analyzer to stop generating new findings. The
	// status is Creating when the analyzer creation is in progress and Failed when
	// the analyzer creation has failed.
	//
	// Status is a required field
	Status *string `locationName:"status" type:"string" required:"true" enum:"AnalyzerStatus"`

	// The statusReason provides more details about the current status of the analyzer.
	// For example, if the creation for the analyzer fails, a Failed status is returned.
	// For an analyzer with organization as the type, this failure can be due to
	// an issue with creating the service-linked roles required in the member accounts
	// of the AWS organization.
	StatusReason *StatusReason `locationName:"statusReason" type:"structure"`

	// The tags added to the analyzer.
	Tags map[string]*string `locationName:"tags" type:"map"`

	// The type of analyzer, which corresponds to the zone of trust chosen for the
	// analyzer.
	//
	// Type is a required field
	Type *string `locationName:"type" type:"string" required:"true" enum:"Type"`
	// contains filtered or unexported fields
}

Contains information about the analyzer.

func (AnalyzerSummary) GoString

func (s AnalyzerSummary) GoString() string

GoString returns the string representation

func (*AnalyzerSummary) SetArn

func (s *AnalyzerSummary) SetArn(v string) *AnalyzerSummary

SetArn sets the Arn field's value.

func (*AnalyzerSummary) SetCreatedAt

func (s *AnalyzerSummary) SetCreatedAt(v time.Time) *AnalyzerSummary

SetCreatedAt sets the CreatedAt field's value.

func (*AnalyzerSummary) SetLastResourceAnalyzed

func (s *AnalyzerSummary) SetLastResourceAnalyzed(v string) *AnalyzerSummary

SetLastResourceAnalyzed sets the LastResourceAnalyzed field's value.

func (*AnalyzerSummary) SetLastResourceAnalyzedAt

func (s *AnalyzerSummary) SetLastResourceAnalyzedAt(v time.Time) *AnalyzerSummary

SetLastResourceAnalyzedAt sets the LastResourceAnalyzedAt field's value.

func (*AnalyzerSummary) SetName

func (s *AnalyzerSummary) SetName(v string) *AnalyzerSummary

SetName sets the Name field's value.

func (*AnalyzerSummary) SetStatus

func (s *AnalyzerSummary) SetStatus(v string) *AnalyzerSummary

SetStatus sets the Status field's value.

func (*AnalyzerSummary) SetStatusReason

func (s *AnalyzerSummary) SetStatusReason(v *StatusReason) *AnalyzerSummary

SetStatusReason sets the StatusReason field's value.

func (*AnalyzerSummary) SetTags

func (s *AnalyzerSummary) SetTags(v map[string]*string) *AnalyzerSummary

SetTags sets the Tags field's value.

func (*AnalyzerSummary) SetType

func (s *AnalyzerSummary) SetType(v string) *AnalyzerSummary

SetType sets the Type field's value.

func (AnalyzerSummary) String

func (s AnalyzerSummary) String() string

String returns the string representation

type ApplyArchiveRuleInput

type ApplyArchiveRuleInput struct {

	// The Amazon resource name (ARN) of the analyzer.
	//
	// AnalyzerArn is a required field
	AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"`

	// A client token.
	ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"`

	// The name of the rule to apply.
	//
	// RuleName is a required field
	RuleName *string `locationName:"ruleName" min:"1" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Retroactively applies an archive rule.

func (ApplyArchiveRuleInput) GoString

func (s ApplyArchiveRuleInput) GoString() string

GoString returns the string representation

func (*ApplyArchiveRuleInput) SetAnalyzerArn

func (s *ApplyArchiveRuleInput) SetAnalyzerArn(v string) *ApplyArchiveRuleInput

SetAnalyzerArn sets the AnalyzerArn field's value.

func (*ApplyArchiveRuleInput) SetClientToken

func (s *ApplyArchiveRuleInput) SetClientToken(v string) *ApplyArchiveRuleInput

SetClientToken sets the ClientToken field's value.

func (*ApplyArchiveRuleInput) SetRuleName

SetRuleName sets the RuleName field's value.

func (ApplyArchiveRuleInput) String

func (s ApplyArchiveRuleInput) String() string

String returns the string representation

func (*ApplyArchiveRuleInput) Validate

func (s *ApplyArchiveRuleInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ApplyArchiveRuleOutput

type ApplyArchiveRuleOutput struct {
	// contains filtered or unexported fields
}

func (ApplyArchiveRuleOutput) GoString

func (s ApplyArchiveRuleOutput) GoString() string

GoString returns the string representation

func (ApplyArchiveRuleOutput) String

func (s ApplyArchiveRuleOutput) String() string

String returns the string representation

type ArchiveRuleSummary

type ArchiveRuleSummary struct {

	// The time at which the archive rule was created.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// A filter used to define the archive rule.
	//
	// Filter is a required field
	Filter map[string]*Criterion `locationName:"filter" type:"map" required:"true"`

	// The name of the archive rule.
	//
	// RuleName is a required field
	RuleName *string `locationName:"ruleName" min:"1" type:"string" required:"true"`

	// The time at which the archive rule was last updated.
	//
	// UpdatedAt is a required field
	UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`
	// contains filtered or unexported fields
}

Contains information about an archive rule.

func (ArchiveRuleSummary) GoString

func (s ArchiveRuleSummary) GoString() string

GoString returns the string representation

func (*ArchiveRuleSummary) SetCreatedAt

func (s *ArchiveRuleSummary) SetCreatedAt(v time.Time) *ArchiveRuleSummary

SetCreatedAt sets the CreatedAt field's value.

func (*ArchiveRuleSummary) SetFilter

func (s *ArchiveRuleSummary) SetFilter(v map[string]*Criterion) *ArchiveRuleSummary

SetFilter sets the Filter field's value.

func (*ArchiveRuleSummary) SetRuleName

func (s *ArchiveRuleSummary) SetRuleName(v string) *ArchiveRuleSummary

SetRuleName sets the RuleName field's value.

func (*ArchiveRuleSummary) SetUpdatedAt

func (s *ArchiveRuleSummary) SetUpdatedAt(v time.Time) *ArchiveRuleSummary

SetUpdatedAt sets the UpdatedAt field's value.

func (ArchiveRuleSummary) String

func (s ArchiveRuleSummary) String() string

String returns the string representation

type CancelPolicyGenerationInput

type CancelPolicyGenerationInput struct {

	// The JobId that is returned by the StartPolicyGeneration operation. The JobId
	// can be used with GetGeneratedPolicy to retrieve the generated policies or
	// used with CancelPolicyGeneration to cancel the policy generation request.
	//
	// JobId is a required field
	JobId *string `location:"uri" locationName:"jobId" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (CancelPolicyGenerationInput) GoString

func (s CancelPolicyGenerationInput) GoString() string

GoString returns the string representation

func (*CancelPolicyGenerationInput) SetJobId

SetJobId sets the JobId field's value.

func (CancelPolicyGenerationInput) String

String returns the string representation

func (*CancelPolicyGenerationInput) Validate

func (s *CancelPolicyGenerationInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CancelPolicyGenerationOutput

type CancelPolicyGenerationOutput struct {
	// contains filtered or unexported fields
}

func (CancelPolicyGenerationOutput) GoString

func (s CancelPolicyGenerationOutput) GoString() string

GoString returns the string representation

func (CancelPolicyGenerationOutput) String

String returns the string representation

type CloudTrailDetails

type CloudTrailDetails struct {

	// The ARN of the service role that Access Analyzer uses to access your CloudTrail
	// trail and service last accessed information.
	//
	// AccessRole is a required field
	AccessRole *string `locationName:"accessRole" type:"string" required:"true"`

	// The end of the time range for which Access Analyzer reviews your CloudTrail
	// events. Events with a timestamp after this time are not considered to generate
	// a policy. If this is not included in the request, the default value is the
	// current time.
	EndTime *time.Time `locationName:"endTime" type:"timestamp" timestampFormat:"iso8601"`

	// The start of the time range for which Access Analyzer reviews your CloudTrail
	// events. Events with a timestamp before this time are not considered to generate
	// a policy.
	//
	// StartTime is a required field
	StartTime *time.Time `locationName:"startTime" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// A Trail object that contains settings for a trail.
	//
	// Trails is a required field
	Trails []*Trail `locationName:"trails" type:"list" required:"true"`
	// contains filtered or unexported fields
}

Contains information about CloudTrail access.

func (CloudTrailDetails) GoString

func (s CloudTrailDetails) GoString() string

GoString returns the string representation

func (*CloudTrailDetails) SetAccessRole

func (s *CloudTrailDetails) SetAccessRole(v string) *CloudTrailDetails

SetAccessRole sets the AccessRole field's value.

func (*CloudTrailDetails) SetEndTime

func (s *CloudTrailDetails) SetEndTime(v time.Time) *CloudTrailDetails

SetEndTime sets the EndTime field's value.

func (*CloudTrailDetails) SetStartTime

func (s *CloudTrailDetails) SetStartTime(v time.Time) *CloudTrailDetails

SetStartTime sets the StartTime field's value.

func (*CloudTrailDetails) SetTrails

func (s *CloudTrailDetails) SetTrails(v []*Trail) *CloudTrailDetails

SetTrails sets the Trails field's value.

func (CloudTrailDetails) String

func (s CloudTrailDetails) String() string

String returns the string representation

func (*CloudTrailDetails) Validate

func (s *CloudTrailDetails) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CloudTrailProperties

type CloudTrailProperties struct {

	// The end of the time range for which Access Analyzer reviews your CloudTrail
	// events. Events with a timestamp after this time are not considered to generate
	// a policy. If this is not included in the request, the default value is the
	// current time.
	//
	// EndTime is a required field
	EndTime *time.Time `locationName:"endTime" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The start of the time range for which Access Analyzer reviews your CloudTrail
	// events. Events with a timestamp before this time are not considered to generate
	// a policy.
	//
	// StartTime is a required field
	StartTime *time.Time `locationName:"startTime" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// A TrailProperties object that contains settings for trail properties.
	//
	// TrailProperties is a required field
	TrailProperties []*TrailProperties `locationName:"trailProperties" type:"list" required:"true"`
	// contains filtered or unexported fields
}

Contains information about CloudTrail access.

func (CloudTrailProperties) GoString

func (s CloudTrailProperties) GoString() string

GoString returns the string representation

func (*CloudTrailProperties) SetEndTime

SetEndTime sets the EndTime field's value.

func (*CloudTrailProperties) SetStartTime

func (s *CloudTrailProperties) SetStartTime(v time.Time) *CloudTrailProperties

SetStartTime sets the StartTime field's value.

func (*CloudTrailProperties) SetTrailProperties

func (s *CloudTrailProperties) SetTrailProperties(v []*TrailProperties) *CloudTrailProperties

SetTrailProperties sets the TrailProperties field's value.

func (CloudTrailProperties) String

func (s CloudTrailProperties) String() string

String returns the string representation

type Configuration

type Configuration struct {

	// The access control configuration is for an IAM role.
	IamRole *IamRoleConfiguration `locationName:"iamRole" type:"structure"`

	// The access control configuration is for a KMS key.
	KmsKey *KmsKeyConfiguration `locationName:"kmsKey" type:"structure"`

	// The access control configuration is for an Amazon S3 Bucket.
	S3Bucket *S3BucketConfiguration `locationName:"s3Bucket" type:"structure"`

	// The access control configuration is for a Secrets Manager secret.
	SecretsManagerSecret *SecretsManagerSecretConfiguration `locationName:"secretsManagerSecret" type:"structure"`

	// The access control configuration is for an SQS queue.
	SqsQueue *SqsQueueConfiguration `locationName:"sqsQueue" type:"structure"`
	// contains filtered or unexported fields
}

Access control configuration structures for your resource. You specify the configuration as a type-value pair. You can specify only one type of access control configuration.

func (Configuration) GoString

func (s Configuration) GoString() string

GoString returns the string representation

func (*Configuration) SetIamRole

SetIamRole sets the IamRole field's value.

func (*Configuration) SetKmsKey

SetKmsKey sets the KmsKey field's value.

func (*Configuration) SetS3Bucket

SetS3Bucket sets the S3Bucket field's value.

func (*Configuration) SetSecretsManagerSecret

func (s *Configuration) SetSecretsManagerSecret(v *SecretsManagerSecretConfiguration) *Configuration

SetSecretsManagerSecret sets the SecretsManagerSecret field's value.

func (*Configuration) SetSqsQueue

SetSqsQueue sets the SqsQueue field's value.

func (Configuration) String

func (s Configuration) String() string

String returns the string representation

func (*Configuration) Validate

func (s *Configuration) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ConflictException

type ConflictException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`

	// The ID of the resource.
	//
	// ResourceId is a required field
	ResourceId *string `locationName:"resourceId" type:"string" required:"true"`

	// The resource type.
	//
	// ResourceType is a required field
	ResourceType *string `locationName:"resourceType" type:"string" required:"true"`
	// contains filtered or unexported fields
}

A conflict exception error.

func (*ConflictException) Code

func (s *ConflictException) Code() string

Code returns the exception type name.

func (*ConflictException) Error

func (s *ConflictException) Error() string

func (ConflictException) GoString

func (s ConflictException) GoString() string

GoString returns the string representation

func (*ConflictException) Message

func (s *ConflictException) Message() string

Message returns the exception's message.

func (*ConflictException) OrigErr

func (s *ConflictException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ConflictException) RequestID

func (s *ConflictException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ConflictException) StatusCode

func (s *ConflictException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ConflictException) String

func (s ConflictException) String() string

String returns the string representation

type CreateAccessPreviewInput

type CreateAccessPreviewInput struct {

	// The ARN of the account analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources)
	// used to generate the access preview. You can only create an access preview
	// for analyzers with an Account type and Active status.
	//
	// AnalyzerArn is a required field
	AnalyzerArn *string `locationName:"analyzerArn" type:"string" required:"true"`

	// A client token.
	ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"`

	// Access control configuration for your resource that is used to generate the
	// access preview. The access preview includes findings for external access
	// allowed to the resource with the proposed access control configuration. The
	// configuration must contain exactly one element.
	//
	// Configurations is a required field
	Configurations map[string]*Configuration `locationName:"configurations" type:"map" required:"true"`
	// contains filtered or unexported fields
}

func (CreateAccessPreviewInput) GoString

func (s CreateAccessPreviewInput) GoString() string

GoString returns the string representation

func (*CreateAccessPreviewInput) SetAnalyzerArn

SetAnalyzerArn sets the AnalyzerArn field's value.

func (*CreateAccessPreviewInput) SetClientToken

SetClientToken sets the ClientToken field's value.

func (*CreateAccessPreviewInput) SetConfigurations

SetConfigurations sets the Configurations field's value.

func (CreateAccessPreviewInput) String

func (s CreateAccessPreviewInput) String() string

String returns the string representation

func (*CreateAccessPreviewInput) Validate

func (s *CreateAccessPreviewInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreateAccessPreviewOutput

type CreateAccessPreviewOutput struct {

	// The unique ID for the access preview.
	//
	// Id is a required field
	Id *string `locationName:"id" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (CreateAccessPreviewOutput) GoString

func (s CreateAccessPreviewOutput) GoString() string

GoString returns the string representation

func (*CreateAccessPreviewOutput) SetId

SetId sets the Id field's value.

func (CreateAccessPreviewOutput) String

func (s CreateAccessPreviewOutput) String() string

String returns the string representation

type CreateAnalyzerInput

type CreateAnalyzerInput struct {

	// The name of the analyzer to create.
	//
	// AnalyzerName is a required field
	AnalyzerName *string `locationName:"analyzerName" min:"1" type:"string" required:"true"`

	// Specifies the archive rules to add for the analyzer. Archive rules automatically
	// archive findings that meet the criteria you define for the rule.
	ArchiveRules []*InlineArchiveRule `locationName:"archiveRules" type:"list"`

	// A client token.
	ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"`

	// The tags to apply to the analyzer.
	Tags map[string]*string `locationName:"tags" type:"map"`

	// The type of analyzer to create. Only ACCOUNT and ORGANIZATION analyzers are
	// supported. You can create only one analyzer per account per Region. You can
	// create up to 5 analyzers per organization per Region.
	//
	// Type is a required field
	Type *string `locationName:"type" type:"string" required:"true" enum:"Type"`
	// contains filtered or unexported fields
}

Creates an analyzer.

func (CreateAnalyzerInput) GoString

func (s CreateAnalyzerInput) GoString() string

GoString returns the string representation

func (*CreateAnalyzerInput) SetAnalyzerName

func (s *CreateAnalyzerInput) SetAnalyzerName(v string) *CreateAnalyzerInput

SetAnalyzerName sets the AnalyzerName field's value.

func (*CreateAnalyzerInput) SetArchiveRules

func (s *CreateAnalyzerInput) SetArchiveRules(v []*InlineArchiveRule) *CreateAnalyzerInput

SetArchiveRules sets the ArchiveRules field's value.

func (*CreateAnalyzerInput) SetClientToken

func (s *CreateAnalyzerInput) SetClientToken(v string) *CreateAnalyzerInput

SetClientToken sets the ClientToken field's value.

func (*CreateAnalyzerInput) SetTags

SetTags sets the Tags field's value.

func (*CreateAnalyzerInput) SetType

SetType sets the Type field's value.

func (CreateAnalyzerInput) String

func (s CreateAnalyzerInput) String() string

String returns the string representation

func (*CreateAnalyzerInput) Validate

func (s *CreateAnalyzerInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreateAnalyzerOutput

type CreateAnalyzerOutput struct {

	// The ARN of the analyzer that was created by the request.
	Arn *string `locationName:"arn" type:"string"`
	// contains filtered or unexported fields
}

The response to the request to create an analyzer.

func (CreateAnalyzerOutput) GoString

func (s CreateAnalyzerOutput) GoString() string

GoString returns the string representation

func (*CreateAnalyzerOutput) SetArn

SetArn sets the Arn field's value.

func (CreateAnalyzerOutput) String

func (s CreateAnalyzerOutput) String() string

String returns the string representation

type CreateArchiveRuleInput

type CreateArchiveRuleInput struct {

	// The name of the created analyzer.
	//
	// AnalyzerName is a required field
	AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"`

	// A client token.
	ClientToken *string `locationName:"clientToken" type:"string" idempotencyToken:"true"`

	// The criteria for the rule.
	//
	// Filter is a required field
	Filter map[string]*Criterion `locationName:"filter" type:"map" required:"true"`

	// The name of the rule to create.
	//
	// RuleName is a required field
	RuleName *string `locationName:"ruleName" min:"1" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Creates an archive rule.

func (CreateArchiveRuleInput) GoString

func (s CreateArchiveRuleInput) GoString() string

GoString returns the string representation

func (*CreateArchiveRuleInput) SetAnalyzerName

func (s *CreateArchiveRuleInput) SetAnalyzerName(v string) *CreateArchiveRuleInput

SetAnalyzerName sets the AnalyzerName field's value.

func (*CreateArchiveRuleInput) SetClientToken

SetClientToken sets the ClientToken field's value.

func (*CreateArchiveRuleInput) SetFilter

SetFilter sets the Filter field's value.

func (*CreateArchiveRuleInput) SetRuleName

SetRuleName sets the RuleName field's value.

func (CreateArchiveRuleInput) String

func (s CreateArchiveRuleInput) String() string

String returns the string representation

func (*CreateArchiveRuleInput) Validate

func (s *CreateArchiveRuleInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreateArchiveRuleOutput

type CreateArchiveRuleOutput struct {
	// contains filtered or unexported fields
}

func (CreateArchiveRuleOutput) GoString

func (s CreateArchiveRuleOutput) GoString() string

GoString returns the string representation

func (CreateArchiveRuleOutput) String

func (s CreateArchiveRuleOutput) String() string

String returns the string representation

type Criterion

type Criterion struct {

	// A "contains" operator to match for the filter used to create the rule.
	Contains []*string `locationName:"contains" min:"1" type:"list"`

	// An "equals" operator to match for the filter used to create the rule.
	Eq []*string `locationName:"eq" min:"1" type:"list"`

	// An "exists" operator to match for the filter used to create the rule.
	Exists *bool `locationName:"exists" type:"boolean"`

	// A "not equals" operator to match for the filter used to create the rule.
	Neq []*string `locationName:"neq" min:"1" type:"list"`
	// contains filtered or unexported fields
}

The criteria to use in the filter that defines the archive rule.

func (Criterion) GoString

func (s Criterion) GoString() string

GoString returns the string representation

func (*Criterion) SetContains

func (s *Criterion) SetContains(v []*string) *Criterion

SetContains sets the Contains field's value.

func (*Criterion) SetEq

func (s *Criterion) SetEq(v []*string) *Criterion

SetEq sets the Eq field's value.

func (*Criterion) SetExists

func (s *Criterion) SetExists(v bool) *Criterion

SetExists sets the Exists field's value.

func (*Criterion) SetNeq

func (s *Criterion) SetNeq(v []*string) *Criterion

SetNeq sets the Neq field's value.

func (Criterion) String

func (s Criterion) String() string

String returns the string representation

func (*Criterion) Validate

func (s *Criterion) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteAnalyzerInput

type DeleteAnalyzerInput struct {

	// The name of the analyzer to delete.
	//
	// AnalyzerName is a required field
	AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"`

	// A client token.
	ClientToken *string `location:"querystring" locationName:"clientToken" type:"string" idempotencyToken:"true"`
	// contains filtered or unexported fields
}

Deletes an analyzer.

func (DeleteAnalyzerInput) GoString

func (s DeleteAnalyzerInput) GoString() string

GoString returns the string representation

func (*DeleteAnalyzerInput) SetAnalyzerName

func (s *DeleteAnalyzerInput) SetAnalyzerName(v string) *DeleteAnalyzerInput

SetAnalyzerName sets the AnalyzerName field's value.

func (*DeleteAnalyzerInput) SetClientToken

func (s *DeleteAnalyzerInput) SetClientToken(v string) *DeleteAnalyzerInput

SetClientToken sets the ClientToken field's value.

func (DeleteAnalyzerInput) String

func (s DeleteAnalyzerInput) String() string

String returns the string representation

func (*DeleteAnalyzerInput) Validate

func (s *DeleteAnalyzerInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteAnalyzerOutput

type DeleteAnalyzerOutput struct {
	// contains filtered or unexported fields
}

func (DeleteAnalyzerOutput) GoString

func (s DeleteAnalyzerOutput) GoString() string

GoString returns the string representation

func (DeleteAnalyzerOutput) String

func (s DeleteAnalyzerOutput) String() string

String returns the string representation

type DeleteArchiveRuleInput

type DeleteArchiveRuleInput struct {

	// The name of the analyzer that associated with the archive rule to delete.
	//
	// AnalyzerName is a required field
	AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"`

	// A client token.
	ClientToken *string `location:"querystring" locationName:"clientToken" type:"string" idempotencyToken:"true"`

	// The name of the rule to delete.
	//
	// RuleName is a required field
	RuleName *string `location:"uri" locationName:"ruleName" min:"1" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Deletes an archive rule.

func (DeleteArchiveRuleInput) GoString

func (s DeleteArchiveRuleInput) GoString() string

GoString returns the string representation

func (*DeleteArchiveRuleInput) SetAnalyzerName

func (s *DeleteArchiveRuleInput) SetAnalyzerName(v string) *DeleteArchiveRuleInput

SetAnalyzerName sets the AnalyzerName field's value.

func (*DeleteArchiveRuleInput) SetClientToken

SetClientToken sets the ClientToken field's value.

func (*DeleteArchiveRuleInput) SetRuleName

SetRuleName sets the RuleName field's value.

func (DeleteArchiveRuleInput) String

func (s DeleteArchiveRuleInput) String() string

String returns the string representation

func (*DeleteArchiveRuleInput) Validate

func (s *DeleteArchiveRuleInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteArchiveRuleOutput

type DeleteArchiveRuleOutput struct {
	// contains filtered or unexported fields
}

func (DeleteArchiveRuleOutput) GoString

func (s DeleteArchiveRuleOutput) GoString() string

GoString returns the string representation

func (DeleteArchiveRuleOutput) String

func (s DeleteArchiveRuleOutput) String() string

String returns the string representation

type Finding

type Finding struct {

	// The action in the analyzed policy statement that an external principal has
	// permission to use.
	Action []*string `locationName:"action" type:"list"`

	// The time at which the resource was analyzed.
	//
	// AnalyzedAt is a required field
	AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The condition in the analyzed policy statement that resulted in a finding.
	//
	// Condition is a required field
	Condition map[string]*string `locationName:"condition" type:"map" required:"true"`

	// The time at which the finding was generated.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// An error.
	Error *string `locationName:"error" type:"string"`

	// The ID of the finding.
	//
	// Id is a required field
	Id *string `locationName:"id" type:"string" required:"true"`

	// Indicates whether the policy that generated the finding allows public access
	// to the resource.
	IsPublic *bool `locationName:"isPublic" type:"boolean"`

	// The external principal that access to a resource within the zone of trust.
	Principal map[string]*string `locationName:"principal" type:"map"`

	// The resource that an external principal has access to.
	Resource *string `locationName:"resource" type:"string"`

	// The AWS account ID that owns the resource.
	//
	// ResourceOwnerAccount is a required field
	ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"`

	// The type of the resource identified in the finding.
	//
	// ResourceType is a required field
	ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"`

	// The sources of the finding. This indicates how the access that generated
	// the finding is granted. It is populated for Amazon S3 bucket findings.
	Sources []*FindingSource `locationName:"sources" type:"list"`

	// The current status of the finding.
	//
	// Status is a required field
	Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"`

	// The time at which the finding was updated.
	//
	// UpdatedAt is a required field
	UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`
	// contains filtered or unexported fields
}

Contains information about a finding.

func (Finding) GoString

func (s Finding) GoString() string

GoString returns the string representation

func (*Finding) SetAction

func (s *Finding) SetAction(v []*string) *Finding

SetAction sets the Action field's value.

func (*Finding) SetAnalyzedAt

func (s *Finding) SetAnalyzedAt(v time.Time) *Finding

SetAnalyzedAt sets the AnalyzedAt field's value.

func (*Finding) SetCondition

func (s *Finding) SetCondition(v map[string]*string) *Finding

SetCondition sets the Condition field's value.

func (*Finding) SetCreatedAt

func (s *Finding) SetCreatedAt(v time.Time) *Finding

SetCreatedAt sets the CreatedAt field's value.

func (*Finding) SetError

func (s *Finding) SetError(v string) *Finding

SetError sets the Error field's value.

func (*Finding) SetId

func (s *Finding) SetId(v string) *Finding

SetId sets the Id field's value.

func (*Finding) SetIsPublic

func (s *Finding) SetIsPublic(v bool) *Finding

SetIsPublic sets the IsPublic field's value.

func (*Finding) SetPrincipal

func (s *Finding) SetPrincipal(v map[string]*string) *Finding

SetPrincipal sets the Principal field's value.

func (*Finding) SetResource

func (s *Finding) SetResource(v string) *Finding

SetResource sets the Resource field's value.

func (*Finding) SetResourceOwnerAccount

func (s *Finding) SetResourceOwnerAccount(v string) *Finding

SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.

func (*Finding) SetResourceType

func (s *Finding) SetResourceType(v string) *Finding

SetResourceType sets the ResourceType field's value.

func (*Finding) SetSources

func (s *Finding) SetSources(v []*FindingSource) *Finding

SetSources sets the Sources field's value.

func (*Finding) SetStatus

func (s *Finding) SetStatus(v string) *Finding

SetStatus sets the Status field's value.

func (*Finding) SetUpdatedAt

func (s *Finding) SetUpdatedAt(v time.Time) *Finding

SetUpdatedAt sets the UpdatedAt field's value.

func (Finding) String

func (s Finding) String() string

String returns the string representation

type FindingSource

type FindingSource struct {

	// Includes details about how the access that generated the finding is granted.
	// This is populated for Amazon S3 bucket findings.
	Detail *FindingSourceDetail `locationName:"detail" type:"structure"`

	// Indicates the type of access that generated the finding.
	//
	// Type is a required field
	Type *string `locationName:"type" type:"string" required:"true" enum:"FindingSourceType"`
	// contains filtered or unexported fields
}

The source of the finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.

func (FindingSource) GoString

func (s FindingSource) GoString() string

GoString returns the string representation

func (*FindingSource) SetDetail

SetDetail sets the Detail field's value.

func (*FindingSource) SetType

func (s *FindingSource) SetType(v string) *FindingSource

SetType sets the Type field's value.

func (FindingSource) String

func (s FindingSource) String() string

String returns the string representation

type FindingSourceDetail

type FindingSourceDetail struct {

	// The ARN of the access point that generated the finding.
	AccessPointArn *string `locationName:"accessPointArn" type:"string"`
	// contains filtered or unexported fields
}

Includes details about how the access that generated the finding is granted. This is populated for Amazon S3 bucket findings.

func (FindingSourceDetail) GoString

func (s FindingSourceDetail) GoString() string

GoString returns the string representation

func (*FindingSourceDetail) SetAccessPointArn

func (s *FindingSourceDetail) SetAccessPointArn(v string) *FindingSourceDetail

SetAccessPointArn sets the AccessPointArn field's value.

func (FindingSourceDetail) String

func (s FindingSourceDetail) String() string

String returns the string representation

type FindingSummary

type FindingSummary struct {

	// The action in the analyzed policy statement that an external principal has
	// permission to use.
	Action []*string `locationName:"action" type:"list"`

	// The time at which the resource-based policy that generated the finding was
	// analyzed.
	//
	// AnalyzedAt is a required field
	AnalyzedAt *time.Time `locationName:"analyzedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The condition in the analyzed policy statement that resulted in a finding.
	//
	// Condition is a required field
	Condition map[string]*string `locationName:"condition" type:"map" required:"true"`

	// The time at which the finding was created.
	//
	// CreatedAt is a required field
	CreatedAt *time.Time `locationName:"createdAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`

	// The error that resulted in an Error finding.
	Error *string `locationName:"error" type:"string"`

	// The ID of the finding.
	//
	// Id is a required field
	Id *string `locationName:"id" type:"string" required:"true"`

	// Indicates whether the finding reports a resource that has a policy that allows
	// public access.
	IsPublic *bool `locationName:"isPublic" type:"boolean"`

	// The external principal that has access to a resource within the zone of trust.
	Principal map[string]*string `locationName:"principal" type:"map"`

	// The resource that the external principal has access to.
	Resource *string `locationName:"resource" type:"string"`

	// The AWS account ID that owns the resource.
	//
	// ResourceOwnerAccount is a required field
	ResourceOwnerAccount *string `locationName:"resourceOwnerAccount" type:"string" required:"true"`

	// The type of the resource that the external principal has access to.
	//
	// ResourceType is a required field
	ResourceType *string `locationName:"resourceType" type:"string" required:"true" enum:"ResourceType"`

	// The sources of the finding. This indicates how the access that generated
	// the finding is granted. It is populated for Amazon S3 bucket findings.
	Sources []*FindingSource `locationName:"sources" type:"list"`

	// The status of the finding.
	//
	// Status is a required field
	Status *string `locationName:"status" type:"string" required:"true" enum:"FindingStatus"`

	// The time at which the finding was most recently updated.
	//
	// UpdatedAt is a required field
	UpdatedAt *time.Time `locationName:"updatedAt" type:"timestamp" timestampFormat:"iso8601" required:"true"`
	// contains filtered or unexported fields
}

Contains information about a finding.

func (FindingSummary) GoString

func (s FindingSummary) GoString() string

GoString returns the string representation

func (*FindingSummary) SetAction

func (s *FindingSummary) SetAction(v []*string) *FindingSummary

SetAction sets the Action field's value.

func (*FindingSummary) SetAnalyzedAt

func (s *FindingSummary) SetAnalyzedAt(v time.Time) *FindingSummary

SetAnalyzedAt sets the AnalyzedAt field's value.

func (*FindingSummary) SetCondition

func (s *FindingSummary) SetCondition(v map[string]*string) *FindingSummary

SetCondition sets the Condition field's value.

func (*FindingSummary) SetCreatedAt

func (s *FindingSummary) SetCreatedAt(v time.Time) *FindingSummary

SetCreatedAt sets the CreatedAt field's value.

func (*FindingSummary) SetError

func (s *FindingSummary) SetError(v string) *FindingSummary

SetError sets the Error field's value.

func (*FindingSummary) SetId

func (s *FindingSummary) SetId(v string) *FindingSummary

SetId sets the Id field's value.

func (*FindingSummary) SetIsPublic

func (s *FindingSummary) SetIsPublic(v bool) *FindingSummary

SetIsPublic sets the IsPublic field's value.

func (*FindingSummary) SetPrincipal

func (s *FindingSummary) SetPrincipal(v map[string]*string) *FindingSummary

SetPrincipal sets the Principal field's value.

func (*FindingSummary) SetResource

func (s *FindingSummary) SetResource(v string) *FindingSummary

SetResource sets the Resource field's value.

func (*FindingSummary) SetResourceOwnerAccount

func (s *FindingSummary) SetResourceOwnerAccount(v string) *FindingSummary

SetResourceOwnerAccount sets the ResourceOwnerAccount field's value.

func (*FindingSummary) SetResourceType

func (s *FindingSummary) SetResourceType(v string) *FindingSummary

SetResourceType sets the ResourceType field's value.

func (*FindingSummary) SetSources

func (s *FindingSummary) SetSources(v []*FindingSource) *FindingSummary

SetSources sets the Sources field's value.

func (*FindingSummary) SetStatus

func (s *FindingSummary) SetStatus(v string) *FindingSummary

SetStatus sets the Status field's value.

func (*FindingSummary) SetUpdatedAt

func (s *FindingSummary) SetUpdatedAt(v time.Time) *FindingSummary

SetUpdatedAt sets the UpdatedAt field's value.

func (FindingSummary) String

func (s FindingSummary) String() string

String returns the string representation

type GeneratedPolicy

type GeneratedPolicy struct {

	// The text to use as the content for the new policy. The policy is created
	// using the CreatePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html)
	// action.
	//
	// Policy is a required field
	Policy *string `locationName:"policy" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Contains the text for the generated policy.

func (GeneratedPolicy) GoString

func (s GeneratedPolicy) GoString() string

GoString returns the string representation

func (*GeneratedPolicy) SetPolicy

func (s *GeneratedPolicy) SetPolicy(v string) *GeneratedPolicy

SetPolicy sets the Policy field's value.

func (GeneratedPolicy) String

func (s GeneratedPolicy) String() string

String returns the string representation

type GeneratedPolicyProperties

type GeneratedPolicyProperties struct {

	// Lists details about the Trail used to generated policy.
	CloudTrailProperties *CloudTrailProperties `locationName:"cloudTrailProperties" type:"structure"`

	// This value is set to true if the generated policy contains all possible actions
	// for a service that Access Analyzer identified from the CloudTrail trail that
	// you specified, and false otherwise.
	IsComplete *bool `locationName:"isComplete" type:"boolean"`

	// The ARN of the IAM entity (user or role) for which you are generating a policy.
	//
	// PrincipalArn is a required field
	PrincipalArn *string `locationName:"principalArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Contains the generated policy details.

func (GeneratedPolicyProperties) GoString

func (s GeneratedPolicyProperties) GoString() string

GoString returns the string representation

func (*GeneratedPolicyProperties) SetCloudTrailProperties

SetCloudTrailProperties sets the CloudTrailProperties field's value.

func (*GeneratedPolicyProperties) SetIsComplete

SetIsComplete sets the IsComplete field's value.

func (*GeneratedPolicyProperties) SetPrincipalArn

SetPrincipalArn sets the PrincipalArn field's value.

func (GeneratedPolicyProperties) String

func (s GeneratedPolicyProperties) String() string

String returns the string representation

type GeneratedPolicyResult

type GeneratedPolicyResult struct {

	// The text to use as the content for the new policy. The policy is created
	// using the CreatePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html)
	// action.
	GeneratedPolicies []*GeneratedPolicy `locationName:"generatedPolicies" type:"list"`

	// A GeneratedPolicyProperties object that contains properties of the generated
	// policy.
	//
	// Properties is a required field
	Properties *GeneratedPolicyProperties `locationName:"properties" type:"structure" required:"true"`
	// contains filtered or unexported fields
}

Contains the text for the generated policy and its details.

func (GeneratedPolicyResult) GoString

func (s GeneratedPolicyResult) GoString() string

GoString returns the string representation

func (*GeneratedPolicyResult) SetGeneratedPolicies

func (s *GeneratedPolicyResult) SetGeneratedPolicies(v []*GeneratedPolicy) *GeneratedPolicyResult

SetGeneratedPolicies sets the GeneratedPolicies field's value.

func (*GeneratedPolicyResult) SetProperties

SetProperties sets the Properties field's value.

func (GeneratedPolicyResult) String

func (s GeneratedPolicyResult) String() string

String returns the string representation

type GetAccessPreviewInput

type GetAccessPreviewInput struct {

	// The unique ID for the access preview.
	//
	// AccessPreviewId is a required field
	AccessPreviewId *string `location:"uri" locationName:"accessPreviewId" type:"string" required:"true"`

	// The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources)
	// used to generate the access preview.
	//
	// AnalyzerArn is a required field
	AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (GetAccessPreviewInput) GoString

func (s GetAccessPreviewInput) GoString() string

GoString returns the string representation

func (*GetAccessPreviewInput) SetAccessPreviewId

func (s *GetAccessPreviewInput) SetAccessPreviewId(v string) *GetAccessPreviewInput

SetAccessPreviewId sets the AccessPreviewId field's value.

func (*GetAccessPreviewInput) SetAnalyzerArn

func (s *GetAccessPreviewInput) SetAnalyzerArn(v string) *GetAccessPreviewInput

SetAnalyzerArn sets the AnalyzerArn field's value.

func (GetAccessPreviewInput) String

func (s GetAccessPreviewInput) String() string

String returns the string representation

func (*GetAccessPreviewInput) Validate

func (s *GetAccessPreviewInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetAccessPreviewOutput

type GetAccessPreviewOutput struct {

	// An object that contains information about the access preview.
	//
	// AccessPreview is a required field
	AccessPreview *AccessPreview `locationName:"accessPreview" type:"structure" required:"true"`
	// contains filtered or unexported fields
}

func (GetAccessPreviewOutput) GoString

func (s GetAccessPreviewOutput) GoString() string

GoString returns the string representation

func (*GetAccessPreviewOutput) SetAccessPreview

SetAccessPreview sets the AccessPreview field's value.

func (GetAccessPreviewOutput) String

func (s GetAccessPreviewOutput) String() string

String returns the string representation

type GetAnalyzedResourceInput

type GetAnalyzedResourceInput struct {

	// The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources)
	// to retrieve information from.
	//
	// AnalyzerArn is a required field
	AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"`

	// The ARN of the resource to retrieve information about.
	//
	// ResourceArn is a required field
	ResourceArn *string `location:"querystring" locationName:"resourceArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Retrieves an analyzed resource.

func (GetAnalyzedResourceInput) GoString

func (s GetAnalyzedResourceInput) GoString() string

GoString returns the string representation

func (*GetAnalyzedResourceInput) SetAnalyzerArn

SetAnalyzerArn sets the AnalyzerArn field's value.

func (*GetAnalyzedResourceInput) SetResourceArn

SetResourceArn sets the ResourceArn field's value.

func (GetAnalyzedResourceInput) String

func (s GetAnalyzedResourceInput) String() string

String returns the string representation

func (*GetAnalyzedResourceInput) Validate

func (s *GetAnalyzedResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetAnalyzedResourceOutput

type GetAnalyzedResourceOutput struct {

	// An AnalyzedResource object that contains information that Access Analyzer
	// found when it analyzed the resource.
	Resource *AnalyzedResource `locationName:"resource" type:"structure"`
	// contains filtered or unexported fields
}

The response to the request.

func (GetAnalyzedResourceOutput) GoString

func (s GetAnalyzedResourceOutput) GoString() string

GoString returns the string representation

func (*GetAnalyzedResourceOutput) SetResource

SetResource sets the Resource field's value.

func (GetAnalyzedResourceOutput) String

func (s GetAnalyzedResourceOutput) String() string

String returns the string representation

type GetAnalyzerInput

type GetAnalyzerInput struct {

	// The name of the analyzer retrieved.
	//
	// AnalyzerName is a required field
	AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Retrieves an analyzer.

func (GetAnalyzerInput) GoString

func (s GetAnalyzerInput) GoString() string

GoString returns the string representation

func (*GetAnalyzerInput) SetAnalyzerName

func (s *GetAnalyzerInput) SetAnalyzerName(v string) *GetAnalyzerInput

SetAnalyzerName sets the AnalyzerName field's value.

func (GetAnalyzerInput) String

func (s GetAnalyzerInput) String() string

String returns the string representation

func (*GetAnalyzerInput) Validate

func (s *GetAnalyzerInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetAnalyzerOutput

type GetAnalyzerOutput struct {

	// An AnalyzerSummary object that contains information about the analyzer.
	//
	// Analyzer is a required field
	Analyzer *AnalyzerSummary `locationName:"analyzer" type:"structure" required:"true"`
	// contains filtered or unexported fields
}

The response to the request.

func (GetAnalyzerOutput) GoString

func (s GetAnalyzerOutput) GoString() string

GoString returns the string representation

func (*GetAnalyzerOutput) SetAnalyzer

SetAnalyzer sets the Analyzer field's value.

func (GetAnalyzerOutput) String

func (s GetAnalyzerOutput) String() string

String returns the string representation

type GetArchiveRuleInput

type GetArchiveRuleInput struct {

	// The name of the analyzer to retrieve rules from.
	//
	// AnalyzerName is a required field
	AnalyzerName *string `location:"uri" locationName:"analyzerName" min:"1" type:"string" required:"true"`

	// The name of the rule to retrieve.
	//
	// RuleName is a required field
	RuleName *string `location:"uri" locationName:"ruleName" min:"1" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Retrieves an archive rule.

func (GetArchiveRuleInput) GoString

func (s GetArchiveRuleInput) GoString() string

GoString returns the string representation

func (*GetArchiveRuleInput) SetAnalyzerName

func (s *GetArchiveRuleInput) SetAnalyzerName(v string) *GetArchiveRuleInput

SetAnalyzerName sets the AnalyzerName field's value.

func (*GetArchiveRuleInput) SetRuleName

func (s *GetArchiveRuleInput) SetRuleName(v string) *GetArchiveRuleInput

SetRuleName sets the RuleName field's value.

func (GetArchiveRuleInput) String

func (s GetArchiveRuleInput) String() string

String returns the string representation

func (*GetArchiveRuleInput) Validate

func (s *GetArchiveRuleInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetArchiveRuleOutput

type GetArchiveRuleOutput struct {

	// Contains information about an archive rule.
	//
	// ArchiveRule is a required field
	ArchiveRule *ArchiveRuleSummary `locationName:"archiveRule" type:"structure" required:"true"`
	// contains filtered or unexported fields
}

The response to the request.

func (GetArchiveRuleOutput) GoString

func (s GetArchiveRuleOutput) GoString() string

GoString returns the string representation

func (*GetArchiveRuleOutput) SetArchiveRule

SetArchiveRule sets the ArchiveRule field's value.

func (GetArchiveRuleOutput) String

func (s GetArchiveRuleOutput) String() string

String returns the string representation

type GetFindingInput

type GetFindingInput struct {

	// The ARN of the analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources)
	// that generated the finding.
	//
	// AnalyzerArn is a required field
	AnalyzerArn *string `location:"querystring" locationName:"analyzerArn" type:"string" required:"true"`

	// The ID of the finding to retrieve.
	//
	// Id is a required field
	Id *string `location:"uri" locationName:"id" type:"string" required:"true"`
	// contains filtered or unexported fields
}

Retrieves a finding.

func (GetFindingInput) GoString

func (s GetFindingInput) GoString() string

GoString returns the string representation

func (*GetFindingInput) SetAnalyzerArn

func (s *GetFindingInput) SetAnalyzerArn(v string) *GetFindingInput

SetAnalyzerArn sets the AnalyzerArn field's value.

func (*GetFindingInput) SetId

func (s *GetFindingInput) SetId(v string) *GetFindingInput

SetId sets the Id field's value.

func (GetFindingInput) String

func (s GetFindingInput) String() string

String returns the string representation

func (*GetFindingInput) Validate

func (s *GetFindingInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetFindingOutput

type GetFindingOutput struct {

	// A finding object that contains finding details.
	Finding *Finding `locationName:"finding" type:"structure"`
	// contains filtered or unexported fields
}

The response to the request.

func (GetFindingOutput) GoString

func (s GetFindingOutput) GoString()