Module: Aws::AccessAnalyzer::Types

Defined in:
lib/aws-sdk-accessanalyzer/types.rb

Defined Under Namespace

Classes: Access, AccessDeniedException, AccessPreview, AccessPreviewFinding, AccessPreviewStatusReason, AccessPreviewSummary, AclGrantee, AnalysisRule, AnalysisRuleCriteria, AnalyzedResource, AnalyzedResourceSummary, AnalyzerConfiguration, AnalyzerSummary, ApplyArchiveRuleRequest, ArchiveRuleSummary, CancelPolicyGenerationRequest, CancelPolicyGenerationResponse, CheckAccessNotGrantedRequest, CheckAccessNotGrantedResponse, CheckNoNewAccessRequest, CheckNoNewAccessResponse, CheckNoPublicAccessRequest, CheckNoPublicAccessResponse, CloudTrailDetails, CloudTrailProperties, Configuration, ConflictException, CreateAccessPreviewRequest, CreateAccessPreviewResponse, CreateAnalyzerRequest, CreateAnalyzerResponse, CreateArchiveRuleRequest, Criterion, DeleteAnalyzerRequest, DeleteArchiveRuleRequest, DynamodbStreamConfiguration, DynamodbTableConfiguration, EbsSnapshotConfiguration, EcrRepositoryConfiguration, EfsFileSystemConfiguration, ExternalAccessDetails, Finding, FindingDetails, FindingSource, FindingSourceDetail, FindingSummary, FindingSummaryV2, GenerateFindingRecommendationRequest, GeneratedPolicy, GeneratedPolicyProperties, GeneratedPolicyResult, GetAccessPreviewRequest, GetAccessPreviewResponse, GetAnalyzedResourceRequest, GetAnalyzedResourceResponse, GetAnalyzerRequest, GetAnalyzerResponse, GetArchiveRuleRequest, GetArchiveRuleResponse, GetFindingRecommendationRequest, GetFindingRecommendationResponse, GetFindingRequest, GetFindingResponse, GetFindingV2Request, GetFindingV2Response, GetGeneratedPolicyRequest, GetGeneratedPolicyResponse, IamRoleConfiguration, InlineArchiveRule, InternalServerException, InternetConfiguration, InvalidParameterException, JobDetails, JobError, KmsGrantConfiguration, KmsGrantConstraints, KmsKeyConfiguration, ListAccessPreviewFindingsRequest, ListAccessPreviewFindingsResponse, ListAccessPreviewsRequest, ListAccessPreviewsResponse, ListAnalyzedResourcesRequest, ListAnalyzedResourcesResponse, ListAnalyzersRequest, ListAnalyzersResponse, ListArchiveRulesRequest, ListArchiveRulesResponse, ListFindingsRequest, ListFindingsResponse, ListFindingsV2Request, ListFindingsV2Response, ListPolicyGenerationsRequest, ListPolicyGenerationsResponse, ListTagsForResourceRequest, ListTagsForResourceResponse, Location, NetworkOriginConfiguration, PathElement, PolicyGeneration, PolicyGenerationDetails, Position, RdsDbClusterSnapshotAttributeValue, RdsDbClusterSnapshotConfiguration, RdsDbSnapshotAttributeValue, RdsDbSnapshotConfiguration, ReasonSummary, RecommendationError, RecommendedStep, ResourceNotFoundException, S3AccessPointConfiguration, S3BucketAclGrantConfiguration, S3BucketConfiguration, S3ExpressDirectoryBucketConfiguration, S3PublicAccessBlockConfiguration, SecretsManagerSecretConfiguration, ServiceQuotaExceededException, SnsTopicConfiguration, SortCriteria, Span, SqsQueueConfiguration, StartPolicyGenerationRequest, StartPolicyGenerationResponse, StartResourceScanRequest, StatusReason, Substring, TagResourceRequest, TagResourceResponse, ThrottlingException, Trail, TrailProperties, UnprocessableEntityException, UntagResourceRequest, UntagResourceResponse, UnusedAccessConfiguration, UnusedAction, UnusedIamRoleDetails, UnusedIamUserAccessKeyDetails, UnusedIamUserPasswordDetails, UnusedPermissionDetails, UnusedPermissionsRecommendedStep, UpdateAnalyzerRequest, UpdateAnalyzerResponse, UpdateArchiveRuleRequest, UpdateFindingsRequest, ValidatePolicyFinding, ValidatePolicyRequest, ValidatePolicyResponse, ValidationException, ValidationExceptionField, VpcConfiguration

Instance Attribute Summary collapse

Instance Attribute Details

#account_idsArray<String>

The Amazon Web Services account IDs that have access to the manual Amazon RDS DB snapshot. If the value ‘all` is specified, then the Amazon RDS DB snapshot is public and can be copied or restored by all Amazon Web Services accounts.

  • If the configuration is for an existing Amazon RDS DB snapshot and you do not specify the ‘accountIds` in `RdsDbSnapshotAttributeValue`, then the access preview uses the existing shared `accountIds` for the snapshot.

  • If the access preview is for a new resource and you do not specify the specify the ‘accountIds` in `RdsDbSnapshotAttributeValue`, then the access preview considers the snapshot without any attributes.

  • To propose deletion of an existing shared ‘accountIds`, you can specify an empty list for `accountIds` in the `RdsDbSnapshotAttributeValue`.

Returns:

  • (Array<String>)


3259
3260
3261
3262
3263
3264
3265
3266
3267
3268
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3259

class RdsDbClusterSnapshotAttributeValue < Struct.new(
  :account_ids,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class AccountIds < RdsDbClusterSnapshotAttributeValue; end
  class Unknown < RdsDbClusterSnapshotAttributeValue; end
end

#dynamodb_streamTypes::DynamodbStreamConfiguration

The access control configuration is for a DynamoDB stream.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#dynamodb_tableTypes::DynamodbTableConfiguration

The access control configuration is for a DynamoDB table or index.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#ebs_snapshotTypes::EbsSnapshotConfiguration

The access control configuration is for an Amazon EBS volume snapshot.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#ecr_repositoryTypes::EcrRepositoryConfiguration

The access control configuration is for an Amazon ECR repository.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#efs_file_systemTypes::EfsFileSystemConfiguration

The access control configuration is for an Amazon EFS file system.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#external_access_detailsTypes::ExternalAccessDetails

The details for an external access analyzer finding.



1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 1619

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#iam_roleTypes::IamRoleConfiguration

The access control configuration is for an IAM role.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#idString

The value specified is the canonical user ID of an Amazon Web Services account.

Returns:

  • (String)


308
309
310
311
312
313
314
315
316
317
318
319
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 308

class AclGrantee < Struct.new(
  :id,
  :uri,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Id < AclGrantee; end
  class Uri < AclGrantee; end
  class Unknown < AclGrantee; end
end

#indexInteger

Refers to an index in a JSON array.

Returns:

  • (Integer)


3134
3135
3136
3137
3138
3139
3140
3141
3142
3143
3144
3145
3146
3147
3148
3149
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3134

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#internet_configurationTypes::InternetConfiguration

The configuration for the Amazon S3 access point or multi-region access point with an ‘Internet` origin.



3098
3099
3100
3101
3102
3103
3104
3105
3106
3107
3108
3109
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3098

class NetworkOriginConfiguration < Struct.new(
  :vpc_configuration,
  :internet_configuration,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class VpcConfiguration < NetworkOriginConfiguration; end
  class InternetConfiguration < NetworkOriginConfiguration; end
  class Unknown < NetworkOriginConfiguration; end
end

#keyString

Refers to a key in a JSON object.

Returns:

  • (String)


3134
3135
3136
3137
3138
3139
3140
3141
3142
3143
3144
3145
3146
3147
3148
3149
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3134

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#kms_keyTypes::KmsKeyConfiguration

The access control configuration is for a KMS key.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#rds_db_cluster_snapshotTypes::RdsDbClusterSnapshotConfiguration

The access control configuration is for an Amazon RDS DB cluster snapshot.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#rds_db_snapshotTypes::RdsDbSnapshotConfiguration

The access control configuration is for an Amazon RDS DB snapshot.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#s3_bucketTypes::S3BucketConfiguration

The access control configuration is for an Amazon S3 bucket.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#s3_express_directory_bucketTypes::S3ExpressDirectoryBucketConfiguration

The access control configuration is for an Amazon S3 directory bucket.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#secrets_manager_secretTypes::SecretsManagerSecretConfiguration

The access control configuration is for a Secrets Manager secret.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#sns_topicTypes::SnsTopicConfiguration

The access control configuration is for an Amazon SNS topic



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#sqs_queueTypes::SqsQueueConfiguration

The access control configuration is for an Amazon SQS queue.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#substringTypes::Substring

Refers to a substring of a literal string in a JSON object.

Returns:



3134
3135
3136
3137
3138
3139
3140
3141
3142
3143
3144
3145
3146
3147
3148
3149
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3134

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#unused_accessTypes::UnusedAccessConfiguration

Specifies the configuration of an unused access analyzer for an Amazon Web Services organization or account.



478
479
480
481
482
483
484
485
486
487
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 478

class AnalyzerConfiguration < Struct.new(
  :unused_access,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class UnusedAccess < AnalyzerConfiguration; end
  class Unknown < AnalyzerConfiguration; end
end

#unused_iam_role_detailsTypes::UnusedIamRoleDetails

The details for an unused access analyzer finding with an unused IAM role finding type.



1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 1619

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#unused_iam_user_access_key_detailsTypes::UnusedIamUserAccessKeyDetails

The details for an unused access analyzer finding with an unused IAM user access key finding type.



1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 1619

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#unused_iam_user_password_detailsTypes::UnusedIamUserPasswordDetails

The details for an unused access analyzer finding with an unused IAM user password finding type.



1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 1619

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#unused_permission_detailsTypes::UnusedPermissionDetails

The details for an unused access analyzer finding with an unused permission finding type.



1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 1619

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

A recommended step for an unused permissions finding.



3454
3455
3456
3457
3458
3459
3460
3461
3462
3463
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3454

class RecommendedStep < Struct.new(
  :unused_permissions_recommended_step,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class UnusedPermissionsRecommendedStep < RecommendedStep; end
  class Unknown < RecommendedStep; end
end

#uriString

Used for granting permissions to a predefined group.

Returns:

  • (String)


308
309
310
311
312
313
314
315
316
317
318
319
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 308

class AclGrantee < Struct.new(
  :id,
  :uri,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Id < AclGrantee; end
  class Uri < AclGrantee; end
  class Unknown < AclGrantee; end
end

#valueString

Refers to the value associated with a given key in a JSON object.

Returns:

  • (String)


3134
3135
3136
3137
3138
3139
3140
3141
3142
3143
3144
3145
3146
3147
3148
3149
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3134

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#vpc_configurationTypes::VpcConfiguration

The proposed virtual private cloud (VPC) configuration for the Amazon S3 access point. VPC configuration does not apply to multi-region access points. For more information, see [VpcConfiguration].

[1]: docs.aws.amazon.com/AmazonS3/latest/API/API_control_VpcConfiguration.html



3098
3099
3100
3101
3102
3103
3104
3105
3106
3107
3108
3109
# File 'lib/aws-sdk-accessanalyzer/types.rb', line 3098

class NetworkOriginConfiguration < Struct.new(
  :vpc_configuration,
  :internet_configuration,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class VpcConfiguration < NetworkOriginConfiguration; end
  class InternetConfiguration < NetworkOriginConfiguration; end
  class Unknown < NetworkOriginConfiguration; end
end