All Superinterfaces:: software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:: CfnFilter.FindingCriteriaProperty.Jsii$Proxy

Enclosing class:: CfnFilter

@Stability(Stable) public static interface CfnFilter.FindingCriteriaProperty extends software.amazon.jsii.JsiiSerializable

Represents a map of finding properties that match specified conditions and values when querying findings.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.guardduty.*;
 Object criterion;
 FindingCriteriaProperty findingCriteriaProperty = FindingCriteriaProperty.builder()
         .criterion(criterion)
         .itemType(ConditionProperty.builder()
                 .eq(List.of("eq"))
                 .equalTo(List.of("equalTo"))
                 .greaterThan(123)
                 .greaterThanOrEqual(123)
                 .gt(123)
                 .gte(123)
                 .lessThan(123)
                 .lessThanOrEqual(123)
                 .lt(123)
                 .lte(123)
                 .neq(List.of("neq"))
                 .notEquals(List.of("notEquals"))
                 .build())
         .build();

Nested Class Summary

Nested Classes

Modifier and Type

Interface

Description

static final class

CfnFilter.FindingCriteriaProperty.Builder

A builder for CfnFilter.FindingCriteriaProperty

static final class

CfnFilter.FindingCriteriaProperty.Jsii$Proxy

An implementation for CfnFilter.FindingCriteriaProperty
Method Summary

Modifier and Type

Method

Description

static CfnFilter.FindingCriteriaProperty.Builder

builder()

default Object

getCriterion()

Represents a map of finding properties that match specified conditions and values when querying findings.

default Object

getItemType()

Specifies the condition to be applied to a single field when filtering through findings.

Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson

Method Details
- getCriterion
  
  @Stability(Stable) @Nullable default Object getCriterion()
  Represents a map of finding properties that match specified conditions and values when querying findings.
  For a mapping of JSON criterion to their console equivalent see Finding criteria . The following are the available criterion:
  
  accountId
  
  region
  
  confidence
  
  id
  
  resource.accessKeyDetails.accessKeyId
  
  resource.accessKeyDetails.principalId
  
  resource.accessKeyDetails.userName
  
  resource.accessKeyDetails.userType
  
  resource.instanceDetails.iamInstanceProfile.id
  
  resource.instanceDetails.imageId
  
  resource.instanceDetails.instanceId
  
  resource.instanceDetails.outpostArn
  
  resource.instanceDetails.networkInterfaces.ipv6Addresses
  
  resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress
  
  resource.instanceDetails.networkInterfaces.publicDnsName
  
  resource.instanceDetails.networkInterfaces.publicIp
  
  resource.instanceDetails.networkInterfaces.securityGroups.groupId
  
  resource.instanceDetails.networkInterfaces.securityGroups.groupName
  
  resource.instanceDetails.networkInterfaces.subnetId
  
  resource.instanceDetails.networkInterfaces.vpcId
  
  resource.instanceDetails.tags.key
  
  resource.instanceDetails.tags.value
  
  resource.resourceType
  
  service.action.actionType
  
  service.action.awsApiCallAction.api
  
  service.action.awsApiCallAction.callerType
  
  service.action.awsApiCallAction.errorCode
  
  service.action.awsApiCallAction.remoteIpDetails.city.cityName
  
  service.action.awsApiCallAction.remoteIpDetails.country.countryName
  
  service.action.awsApiCallAction.remoteIpDetails.ipAddressV4
  
  service.action.awsApiCallAction.remoteIpDetails.organization.asn
  
  service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg
  
  service.action.awsApiCallAction.serviceName
  
  service.action.dnsRequestAction.domain
  
  service.action.networkConnectionAction.blocked
  
  service.action.networkConnectionAction.connectionDirection
  
  service.action.networkConnectionAction.localPortDetails.port
  
  service.action.networkConnectionAction.protocol
  
  service.action.networkConnectionAction.localIpDetails.ipAddressV4
  
  service.action.networkConnectionAction.remoteIpDetails.city.cityName
  
  service.action.networkConnectionAction.remoteIpDetails.country.countryName
  
  service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
  
  service.action.networkConnectionAction.remoteIpDetails.organization.asn
  
  service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg
  
  service.action.networkConnectionAction.remotePortDetails.port
  
  service.additionalInfo.threatListName
  
  service.archived
  
  When this attribute is set to TRUE, only archived findings are listed. When it's set to FALSE, only unarchived findings are listed. When this attribute is not set, all existing findings are listed.
  
  service.resourceRole
  
  severity
  
  type
  
  updatedAt
  
  Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains milliseconds.
- getItemType
  
  @Stability(Stable) @Nullable default Object getItemType()
  
  Specifies the condition to be applied to a single field when filtering through findings.
- builder
  
  @Stability(Stable) static CfnFilter.FindingCriteriaProperty.Builder builder()
  
  Returns:
  
  a CfnFilter.FindingCriteriaProperty.Builder of CfnFilter.FindingCriteriaProperty

Interface CfnFilter.FindingCriteriaProperty

Nested Class Summary

Method Summary

Methods inherited from interface software.amazon.jsii.JsiiSerializable

Method Details

getCriterion

getItemType

builder