Package software.amazon.awscdk.services.cloudtrail

Class CfnTrail.DataResourceProperty.Jsii$Proxy

java.lang.Object
software.amazon.jsii.JsiiObject
software.amazon.awscdk.services.cloudtrail.CfnTrail.DataResourceProperty.Jsii$Proxy
All Implemented Interfaces:
CfnTrail.DataResourceProperty, software.amazon.jsii.JsiiSerializable
Enclosing interface:
CfnTrail.DataResourceProperty
@Stability(Stable) @Internal public static final class CfnTrail.DataResourceProperty.Jsii$Proxy extends software.amazon.jsii.JsiiObject implements CfnTrail.DataResourceProperty
An implementation for CfnTrail.DataResourceProperty

  • Constructor Details

    • Jsii$Proxy

      protected Jsii$Proxy(software.amazon.jsii.JsiiObjectRef objRef)
      Constructor that initializes the object based on values retrieved from the JsiiObject.
      Parameters:
      objRef - Reference to the JSII managed object.

    • Jsii$Proxy

      protected Jsii$Proxy(CfnTrail.DataResourceProperty.Builder builder)
      Constructor that initializes the object based on literal property values passed by the CfnTrail.DataResourceProperty.Builder.

  • Method Details

    • getType

      public final String getType()
      Description copied from interface: CfnTrail.DataResourceProperty
      The resource type in which you want to log data events.

      You can specify the following basic event selector resource types:

      • AWS::S3::Object
      • AWS::Lambda::Function
      • AWS::DynamoDB::Table
      Specified by:
      getType in interface CfnTrail.DataResourceProperty

    • getValues

      public final List<String> getValues()
      Description copied from interface: CfnTrail.DataResourceProperty
      An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

      • To log data events for all objects in all S3 buckets in your AWS account , specify the prefix as arn:aws:s3 .

      This also enables logging of data event activity performed by any user or role in your AWS account , even if that activity is performed on a bucket that belongs to another AWS account .

      • To log data events for all objects in an S3 bucket, specify the bucket and an empty object prefix such as arn:aws:s3:::bucket-1/ . The trail logs data events for all objects in this S3 bucket.
      • To log data events for specific objects, specify the S3 bucket and object prefix such as arn:aws:s3:::bucket-1/example-images . The trail logs data events for objects in this S3 bucket that match the prefix.
      • To log data events for all Lambda functions in your AWS account , specify the prefix as arn:aws:lambda .

      This also enables logging of Invoke activity performed by any user or role in your AWS account , even if that activity is performed on a function that belongs to another AWS account .

      • To log data events for a specific Lambda function, specify the function ARN.

      Lambda function ARNs are exact. For example, if you specify a function ARN arn:aws:lambda:us-west-2:111111111111:function:helloworld , data events will only be logged for arn:aws:lambda:us-west-2:111111111111:function:helloworld . They will not be logged for arn:aws:lambda:us-west-2:111111111111:function:helloworld2 .

      • To log data events for all DynamoDB tables in your AWS account , specify the prefix as arn:aws:dynamodb .
      Specified by:
      getValues in interface CfnTrail.DataResourceProperty

    • $jsii$toJson

      @Internal public com.fasterxml.jackson.databind.JsonNode $jsii$toJson()
      Specified by:
      $jsii$toJson in interface software.amazon.jsii.JsiiSerializable

    • equals

      public final boolean equals(Object o)
      Overrides:
      equals in class Object

    • hashCode

      public final int hashCode()
      Overrides:
      hashCode in class Object