Module: Aws::AccessAnalyzer::Types

Defined in:
gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb

Defined Under Namespace

Classes: Access, AccessDeniedException, AccessPreview, AccessPreviewFinding, AccessPreviewStatusReason, AccessPreviewSummary, AclGrantee, AnalysisRule, AnalysisRuleCriteria, AnalyzedResource, AnalyzedResourceSummary, AnalyzerConfiguration, AnalyzerSummary, ApplyArchiveRuleRequest, ArchiveRuleSummary, CancelPolicyGenerationRequest, CancelPolicyGenerationResponse, CheckAccessNotGrantedRequest, CheckAccessNotGrantedResponse, CheckNoNewAccessRequest, CheckNoNewAccessResponse, CheckNoPublicAccessRequest, CheckNoPublicAccessResponse, CloudTrailDetails, CloudTrailProperties, Configuration, ConflictException, CreateAccessPreviewRequest, CreateAccessPreviewResponse, CreateAnalyzerRequest, CreateAnalyzerResponse, CreateArchiveRuleRequest, Criterion, DeleteAnalyzerRequest, DeleteArchiveRuleRequest, DynamodbStreamConfiguration, DynamodbTableConfiguration, EbsSnapshotConfiguration, EcrRepositoryConfiguration, EfsFileSystemConfiguration, ExternalAccessDetails, ExternalAccessFindingsStatistics, Finding, FindingAggregationAccountDetails, FindingDetails, FindingSource, FindingSourceDetail, FindingSummary, FindingSummaryV2, FindingsStatistics, GenerateFindingRecommendationRequest, GeneratedPolicy, GeneratedPolicyProperties, GeneratedPolicyResult, GetAccessPreviewRequest, GetAccessPreviewResponse, GetAnalyzedResourceRequest, GetAnalyzedResourceResponse, GetAnalyzerRequest, GetAnalyzerResponse, GetArchiveRuleRequest, GetArchiveRuleResponse, GetFindingRecommendationRequest, GetFindingRecommendationResponse, GetFindingRequest, GetFindingResponse, GetFindingV2Request, GetFindingV2Response, GetFindingsStatisticsRequest, GetFindingsStatisticsResponse, GetGeneratedPolicyRequest, GetGeneratedPolicyResponse, IamRoleConfiguration, InlineArchiveRule, InternalServerException, InvalidParameterException, JobDetails, JobError, KmsGrantConfiguration, KmsGrantConstraints, KmsKeyConfiguration, ListAccessPreviewFindingsRequest, ListAccessPreviewFindingsResponse, ListAccessPreviewsRequest, ListAccessPreviewsResponse, ListAnalyzedResourcesRequest, ListAnalyzedResourcesResponse, ListAnalyzersRequest, ListAnalyzersResponse, ListArchiveRulesRequest, ListArchiveRulesResponse, ListFindingsRequest, ListFindingsResponse, ListFindingsV2Request, ListFindingsV2Response, ListPolicyGenerationsRequest, ListPolicyGenerationsResponse, ListTagsForResourceRequest, ListTagsForResourceResponse, Location, NetworkOriginConfiguration, PathElement, PolicyGeneration, PolicyGenerationDetails, Position, RdsDbClusterSnapshotAttributeValue, RdsDbClusterSnapshotConfiguration, RdsDbSnapshotAttributeValue, RdsDbSnapshotConfiguration, ReasonSummary, RecommendationError, RecommendedStep, ResourceNotFoundException, ResourceTypeDetails, S3AccessPointConfiguration, S3BucketAclGrantConfiguration, S3BucketConfiguration, S3ExpressDirectoryBucketConfiguration, S3PublicAccessBlockConfiguration, SecretsManagerSecretConfiguration, ServiceQuotaExceededException, SnsTopicConfiguration, SortCriteria, Span, SqsQueueConfiguration, StartPolicyGenerationRequest, StartPolicyGenerationResponse, StartResourceScanRequest, StatusReason, Substring, TagResourceRequest, TagResourceResponse, ThrottlingException, Trail, TrailProperties, UnprocessableEntityException, UntagResourceRequest, UntagResourceResponse, UnusedAccessConfiguration, UnusedAccessFindingsStatistics, UnusedAccessTypeStatistics, UnusedAction, UnusedIamRoleDetails, UnusedIamUserAccessKeyDetails, UnusedIamUserPasswordDetails, UnusedPermissionDetails, UnusedPermissionsRecommendedStep, UpdateAnalyzerRequest, UpdateAnalyzerResponse, UpdateArchiveRuleRequest, UpdateFindingsRequest, ValidatePolicyFinding, ValidatePolicyRequest, ValidatePolicyResponse, ValidationException, ValidationExceptionField, VpcConfiguration

Instance Attribute Summary collapse

Instance Attribute Details

#account_idsArray<String>

The Amazon Web Services account IDs that have access to the manual Amazon RDS DB snapshot. If the value all is specified, then the Amazon RDS DB snapshot is public and can be copied or restored by all Amazon Web Services accounts.

  • If the configuration is for an existing Amazon RDS DB snapshot and you do not specify the accountIds in RdsDbSnapshotAttributeValue, then the access preview uses the existing shared accountIds for the snapshot.

  • If the access preview is for a new resource and you do not specify the specify the accountIds in RdsDbSnapshotAttributeValue, then the access preview considers the snapshot without any attributes.

  • To propose deletion of an existing shared accountIds, you can specify an empty list for accountIds in the RdsDbSnapshotAttributeValue.

Returns:

  • (Array<String>)


3386
3387
3388
3389
3390
3391
3392
3393
3394
3395
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3386

class RdsDbClusterSnapshotAttributeValue < Struct.new(
  :account_ids,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class AccountIds < RdsDbClusterSnapshotAttributeValue; end
  class Unknown < RdsDbClusterSnapshotAttributeValue; end
end

#dynamodb_streamTypes::DynamodbStreamConfiguration

The access control configuration is for a DynamoDB stream.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#dynamodb_tableTypes::DynamodbTableConfiguration

The access control configuration is for a DynamoDB table or index.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#ebs_snapshotTypes::EbsSnapshotConfiguration

The access control configuration is for an Amazon EBS volume snapshot.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#ecr_repositoryTypes::EcrRepositoryConfiguration

The access control configuration is for an Amazon ECR repository.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#efs_file_systemTypes::EfsFileSystemConfiguration

The access control configuration is for an Amazon EFS file system.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#external_access_detailsTypes::ExternalAccessDetails

The details for an external access analyzer finding.



1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 1681

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#external_access_findings_statisticsTypes::ExternalAccessFindingsStatistics

The aggregate statistics for an external access analyzer.



1913
1914
1915
1916
1917
1918
1919
1920
1921
1922
1923
1924
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 1913

class FindingsStatistics < Struct.new(
  :external_access_findings_statistics,
  :unused_access_findings_statistics,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessFindingsStatistics < FindingsStatistics; end
  class UnusedAccessFindingsStatistics < FindingsStatistics; end
  class Unknown < FindingsStatistics; end
end

#iam_roleTypes::IamRoleConfiguration

The access control configuration is for an IAM role.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#idString

The value specified is the canonical user ID of an Amazon Web Services account.

Returns:

  • (String)


308
309
310
311
312
313
314
315
316
317
318
319
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 308

class AclGrantee < Struct.new(
  :id,
  :uri,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Id < AclGrantee; end
  class Uri < AclGrantee; end
  class Unknown < AclGrantee; end
end

#indexInteger

Refers to an index in a JSON array.

Returns:

  • (Integer)


3261
3262
3263
3264
3265
3266
3267
3268
3269
3270
3271
3272
3273
3274
3275
3276
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3261

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#internet_configurationTypes::InternetConfiguration

The configuration for the Amazon S3 access point or multi-region access point with an Internet origin.

Returns:

  • (Types::InternetConfiguration)


3225
3226
3227
3228
3229
3230
3231
3232
3233
3234
3235
3236
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3225

class NetworkOriginConfiguration < Struct.new(
  :vpc_configuration,
  :internet_configuration,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class VpcConfiguration < NetworkOriginConfiguration; end
  class InternetConfiguration < NetworkOriginConfiguration; end
  class Unknown < NetworkOriginConfiguration; end
end

#keyString

Refers to a key in a JSON object.

Returns:

  • (String)


3261
3262
3263
3264
3265
3266
3267
3268
3269
3270
3271
3272
3273
3274
3275
3276
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3261

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#kms_keyTypes::KmsKeyConfiguration

The access control configuration is for a KMS key.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#rds_db_cluster_snapshotTypes::RdsDbClusterSnapshotConfiguration

The access control configuration is for an Amazon RDS DB cluster snapshot.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#rds_db_snapshotTypes::RdsDbSnapshotConfiguration

The access control configuration is for an Amazon RDS DB snapshot.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#s3_bucketTypes::S3BucketConfiguration

The access control configuration is for an Amazon S3 bucket.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#s3_express_directory_bucketTypes::S3ExpressDirectoryBucketConfiguration

The access control configuration is for an Amazon S3 directory bucket.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#secrets_manager_secretTypes::SecretsManagerSecretConfiguration

The access control configuration is for a Secrets Manager secret.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#sns_topicTypes::SnsTopicConfiguration

The access control configuration is for an Amazon SNS topic



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#sqs_queueTypes::SqsQueueConfiguration

The access control configuration is for an Amazon SQS queue.



939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 939

class Configuration < Struct.new(
  :ebs_snapshot,
  :ecr_repository,
  :iam_role,
  :efs_file_system,
  :kms_key,
  :rds_db_cluster_snapshot,
  :rds_db_snapshot,
  :secrets_manager_secret,
  :s3_bucket,
  :sns_topic,
  :sqs_queue,
  :s3_express_directory_bucket,
  :dynamodb_stream,
  :dynamodb_table,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class EbsSnapshot < Configuration; end
  class EcrRepository < Configuration; end
  class IamRole < Configuration; end
  class EfsFileSystem < Configuration; end
  class KmsKey < Configuration; end
  class RdsDbClusterSnapshot < Configuration; end
  class RdsDbSnapshot < Configuration; end
  class SecretsManagerSecret < Configuration; end
  class S3Bucket < Configuration; end
  class SnsTopic < Configuration; end
  class SqsQueue < Configuration; end
  class S3ExpressDirectoryBucket < Configuration; end
  class DynamodbStream < Configuration; end
  class DynamodbTable < Configuration; end
  class Unknown < Configuration; end
end

#substringTypes::Substring

Refers to a substring of a literal string in a JSON object.

Returns:



3261
3262
3263
3264
3265
3266
3267
3268
3269
3270
3271
3272
3273
3274
3275
3276
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3261

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#unused_accessTypes::UnusedAccessConfiguration

Specifies the configuration of an unused access analyzer for an Amazon Web Services organization or account.



478
479
480
481
482
483
484
485
486
487
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 478

class AnalyzerConfiguration < Struct.new(
  :unused_access,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class UnusedAccess < AnalyzerConfiguration; end
  class Unknown < AnalyzerConfiguration; end
end

#unused_access_findings_statisticsTypes::UnusedAccessFindingsStatistics

The aggregate statistics for an unused access analyzer.



1913
1914
1915
1916
1917
1918
1919
1920
1921
1922
1923
1924
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 1913

class FindingsStatistics < Struct.new(
  :external_access_findings_statistics,
  :unused_access_findings_statistics,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessFindingsStatistics < FindingsStatistics; end
  class UnusedAccessFindingsStatistics < FindingsStatistics; end
  class Unknown < FindingsStatistics; end
end

#unused_iam_role_detailsTypes::UnusedIamRoleDetails

The details for an unused access analyzer finding with an unused IAM role finding type.



1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 1681

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#unused_iam_user_access_key_detailsTypes::UnusedIamUserAccessKeyDetails

The details for an unused access analyzer finding with an unused IAM user access key finding type.



1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 1681

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#unused_iam_user_password_detailsTypes::UnusedIamUserPasswordDetails

The details for an unused access analyzer finding with an unused IAM user password finding type.



1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 1681

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

#unused_permission_detailsTypes::UnusedPermissionDetails

The details for an unused access analyzer finding with an unused permission finding type.



1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 1681

class FindingDetails < Struct.new(
  :external_access_details,
  :unused_permission_details,
  :unused_iam_user_access_key_details,
  :unused_iam_role_details,
  :unused_iam_user_password_details,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class ExternalAccessDetails < FindingDetails; end
  class UnusedPermissionDetails < FindingDetails; end
  class UnusedIamUserAccessKeyDetails < FindingDetails; end
  class UnusedIamRoleDetails < FindingDetails; end
  class UnusedIamUserPasswordDetails < FindingDetails; end
  class Unknown < FindingDetails; end
end

A recommended step for an unused permissions finding.



3581
3582
3583
3584
3585
3586
3587
3588
3589
3590
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3581

class RecommendedStep < Struct.new(
  :unused_permissions_recommended_step,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class UnusedPermissionsRecommendedStep < RecommendedStep; end
  class Unknown < RecommendedStep; end
end

#uriString

Used for granting permissions to a predefined group.

Returns:

  • (String)


308
309
310
311
312
313
314
315
316
317
318
319
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 308

class AclGrantee < Struct.new(
  :id,
  :uri,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Id < AclGrantee; end
  class Uri < AclGrantee; end
  class Unknown < AclGrantee; end
end

#valueString

Refers to the value associated with a given key in a JSON object.

Returns:

  • (String)


3261
3262
3263
3264
3265
3266
3267
3268
3269
3270
3271
3272
3273
3274
3275
3276
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3261

class PathElement < Struct.new(
  :index,
  :key,
  :substring,
  :value,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Index < PathElement; end
  class Key < PathElement; end
  class Substring < PathElement; end
  class Value < PathElement; end
  class Unknown < PathElement; end
end

#vpc_configurationTypes::VpcConfiguration

The proposed virtual private cloud (VPC) configuration for the Amazon S3 access point. VPC configuration does not apply to multi-region access points. For more information, see VpcConfiguration.



3225
3226
3227
3228
3229
3230
3231
3232
3233
3234
3235
3236
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 3225

class NetworkOriginConfiguration < Struct.new(
  :vpc_configuration,
  :internet_configuration,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class VpcConfiguration < NetworkOriginConfiguration; end
  class InternetConfiguration < NetworkOriginConfiguration; end
  class Unknown < NetworkOriginConfiguration; end
end