diff --git a/CHANGELOG.md b/CHANGELOG.md index 5505114f43c..46a1b945313 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,15 @@ +Release v1.44.101 (2022-09-19) +=== + +### Service Client Updates +* `service/cloudtrail`: Updates service API, documentation, and paginators + * This release includes support for importing existing trails into CloudTrail Lake. +* `service/ec2`: Updates service API and documentation + * This release adds CapacityAllocations field to DescribeCapacityReservations +* `service/mediaconnect`: Updates service API and documentation +* `service/rds`: Updates service API, documentation, waiters, paginators, and examples + * This release adds support for Amazon RDS Proxy with SQL Server compatibility. + Release v1.44.100 (2022-09-16) === diff --git a/aws/endpoints/defaults.go b/aws/endpoints/defaults.go index 4df415be5d5..96508849a5a 100644 --- a/aws/endpoints/defaults.go +++ b/aws/endpoints/defaults.go @@ -10570,24 +10570,9 @@ var awsPartition = partition{ }, "fsx": service{ Endpoints: serviceEndpoints{ - endpointKey{ - Region: "af-south-1", - }: endpoint{}, - endpointKey{ - Region: "ap-east-1", - }: endpoint{}, endpointKey{ Region: "ap-northeast-1", }: endpoint{}, - endpointKey{ - Region: "ap-northeast-2", - }: endpoint{}, - endpointKey{ - Region: "ap-northeast-3", - }: endpoint{}, - endpointKey{ - Region: "ap-south-1", - }: endpoint{}, endpointKey{ Region: "ap-southeast-1", }: endpoint{}, @@ -10606,21 +10591,12 @@ var awsPartition = partition{ endpointKey{ Region: "eu-central-1", }: endpoint{}, - endpointKey{ - Region: "eu-north-1", - }: endpoint{}, - endpointKey{ - Region: "eu-south-1", - }: endpoint{}, endpointKey{ Region: "eu-west-1", }: endpoint{}, endpointKey{ Region: "eu-west-2", }: endpoint{}, - endpointKey{ - Region: "eu-west-3", - }: endpoint{}, endpointKey{ Region: "fips-ca-central-1", }: endpoint{ @@ -10657,15 +10633,6 @@ var awsPartition = partition{ }, Deprecated: boxedTrue, }, - endpointKey{ - Region: "fips-prod-us-west-1", - }: endpoint{ - Hostname: "fsx-fips.us-west-1.amazonaws.com", - CredentialScope: credentialScope{ - Region: "us-west-1", - }, - Deprecated: boxedTrue, - }, endpointKey{ Region: "fips-prod-us-west-2", }: endpoint{ @@ -10693,15 +10660,6 @@ var awsPartition = partition{ }, Deprecated: boxedTrue, }, - endpointKey{ - Region: "fips-us-west-1", - }: endpoint{ - Hostname: "fsx-fips.us-west-1.amazonaws.com", - CredentialScope: credentialScope{ - Region: "us-west-1", - }, - Deprecated: boxedTrue, - }, endpointKey{ Region: "fips-us-west-2", }: endpoint{ @@ -10711,9 +10669,6 @@ var awsPartition = partition{ }, Deprecated: boxedTrue, }, - endpointKey{ - Region: "me-south-1", - }: endpoint{}, endpointKey{ Region: "prod-ca-central-1", }: endpoint{ @@ -10768,24 +10723,6 @@ var awsPartition = partition{ }, Deprecated: boxedTrue, }, - endpointKey{ - Region: "prod-us-west-1", - }: endpoint{ - CredentialScope: credentialScope{ - Region: "us-west-1", - }, - Deprecated: boxedTrue, - }, - endpointKey{ - Region: "prod-us-west-1", - Variant: fipsVariant, - }: endpoint{ - Hostname: "fsx-fips.us-west-1.amazonaws.com", - CredentialScope: credentialScope{ - Region: "us-west-1", - }, - Deprecated: boxedTrue, - }, endpointKey{ Region: "prod-us-west-2", }: endpoint{ @@ -10804,9 +10741,6 @@ var awsPartition = partition{ }, Deprecated: boxedTrue, }, - endpointKey{ - Region: "sa-east-1", - }: endpoint{}, endpointKey{ Region: "us-east-1", }: endpoint{}, @@ -10825,15 +10759,6 @@ var awsPartition = partition{ }: endpoint{ Hostname: "fsx-fips.us-east-2.amazonaws.com", }, - endpointKey{ - Region: "us-west-1", - }: endpoint{}, - endpointKey{ - Region: "us-west-1", - Variant: fipsVariant, - }: endpoint{ - Hostname: "fsx-fips.us-west-1.amazonaws.com", - }, endpointKey{ Region: "us-west-2", }: endpoint{}, diff --git a/aws/version.go b/aws/version.go index 7922995d071..53732badb1f 100644 --- a/aws/version.go +++ b/aws/version.go @@ -5,4 +5,4 @@ package aws const SDKName = "aws-sdk-go" // SDKVersion is the version of this SDK -const SDKVersion = "1.44.100" +const SDKVersion = "1.44.101" diff --git a/models/apis/cloudtrail/2013-11-01/api-2.json b/models/apis/cloudtrail/2013-11-01/api-2.json index 727a287e7d5..c7fa55cfabb 100644 --- a/models/apis/cloudtrail/2013-11-01/api-2.json +++ b/models/apis/cloudtrail/2013-11-01/api-2.json @@ -134,6 +134,7 @@ {"shape":"EventDataStoreARNInvalidException"}, {"shape":"EventDataStoreNotFoundException"}, {"shape":"EventDataStoreTerminationProtectedException"}, + {"shape":"EventDataStoreHasOngoingImportException"}, {"shape":"InvalidParameterException"}, {"shape":"OperationNotPermittedException"}, {"shape":"UnsupportedOperationException"}, @@ -244,6 +245,21 @@ ], "idempotent":true }, + "GetImport":{ + "name":"GetImport", + "http":{ + "method":"POST", + "requestUri":"/" + }, + "input":{"shape":"GetImportRequest"}, + "output":{"shape":"GetImportResponse"}, + "errors":[ + {"shape":"ImportNotFoundException"}, + {"shape":"InvalidParameterException"}, + {"shape":"OperationNotPermittedException"}, + {"shape":"UnsupportedOperationException"} + ] + }, "GetInsightSelectors":{ "name":"GetInsightSelectors", "http":{ @@ -344,6 +360,38 @@ ], "idempotent":true }, + "ListImportFailures":{ + "name":"ListImportFailures", + "http":{ + "method":"POST", + "requestUri":"/" + }, + "input":{"shape":"ListImportFailuresRequest"}, + "output":{"shape":"ListImportFailuresResponse"}, + "errors":[ + {"shape":"InvalidNextTokenException"}, + {"shape":"OperationNotPermittedException"}, + {"shape":"UnsupportedOperationException"} + ], + "idempotent":true + }, + "ListImports":{ + "name":"ListImports", + "http":{ + "method":"POST", + "requestUri":"/" + }, + "input":{"shape":"ListImportsRequest"}, + "output":{"shape":"ListImportsResponse"}, + "errors":[ + {"shape":"EventDataStoreARNInvalidException"}, + {"shape":"InvalidNextTokenException"}, + {"shape":"InvalidParameterException"}, + {"shape":"OperationNotPermittedException"}, + {"shape":"UnsupportedOperationException"} + ], + "idempotent":true + }, "ListPublicKeys":{ "name":"ListPublicKeys", "http":{ @@ -524,6 +572,30 @@ {"shape":"OrganizationNotInAllFeaturesModeException"} ] }, + "StartImport":{ + "name":"StartImport", + "http":{ + "method":"POST", + "requestUri":"/" + }, + "input":{"shape":"StartImportRequest"}, + "output":{"shape":"StartImportResponse"}, + "errors":[ + {"shape":"AccountHasOngoingImportException"}, + {"shape":"EventDataStoreARNInvalidException"}, + {"shape":"EventDataStoreNotFoundException"}, + {"shape":"InvalidEventDataStoreStatusException"}, + {"shape":"InvalidEventDataStoreCategoryException"}, + {"shape":"InactiveEventDataStoreException"}, + {"shape":"InvalidImportSourceException"}, + {"shape":"ImportNotFoundException"}, + {"shape":"InvalidParameterException"}, + {"shape":"OperationNotPermittedException"}, + {"shape":"UnsupportedOperationException"}, + {"shape":"OperationNotPermittedException"}, + {"shape":"UnsupportedOperationException"} + ] + }, "StartLogging":{ "name":"StartLogging", "http":{ @@ -563,6 +635,21 @@ ], "idempotent":true }, + "StopImport":{ + "name":"StopImport", + "http":{ + "method":"POST", + "requestUri":"/" + }, + "input":{"shape":"StopImportRequest"}, + "output":{"shape":"StopImportResponse"}, + "errors":[ + {"shape":"ImportNotFoundException"}, + {"shape":"InvalidParameterException"}, + {"shape":"OperationNotPermittedException"}, + {"shape":"UnsupportedOperationException"} + ] + }, "StopLogging":{ "name":"StopLogging", "http":{ @@ -593,6 +680,7 @@ "errors":[ {"shape":"EventDataStoreARNInvalidException"}, {"shape":"EventDataStoreNotFoundException"}, + {"shape":"EventDataStoreHasOngoingImportException"}, {"shape":"InactiveEventDataStoreException"}, {"shape":"InvalidParameterException"}, {"shape":"OperationNotPermittedException"}, @@ -647,6 +735,12 @@ } }, "shapes":{ + "AccountHasOngoingImportException":{ + "type":"structure", + "members":{ + }, + "exception":true + }, "AddTagsRequest":{ "type":"structure", "required":[ @@ -1040,6 +1134,12 @@ "min":3, "pattern":"^[a-zA-Z0-9._/\\-:]+$" }, + "EventDataStoreHasOngoingImportException":{ + "type":"structure", + "members":{ + }, + "exception":true + }, "EventDataStoreMaxLimitExceededException":{ "type":"structure", "members":{ @@ -1151,6 +1251,27 @@ "AdvancedEventSelectors":{"shape":"AdvancedEventSelectors"} } }, + "GetImportRequest":{ + "type":"structure", + "required":["ImportId"], + "members":{ + "ImportId":{"shape":"UUID"} + } + }, + "GetImportResponse":{ + "type":"structure", + "members":{ + "ImportId":{"shape":"UUID"}, + "Destinations":{"shape":"ImportDestinations"}, + "ImportSource":{"shape":"ImportSource"}, + "StartEventTime":{"shape":"Date"}, + "EndEventTime":{"shape":"Date"}, + "ImportStatus":{"shape":"ImportStatus"}, + "CreatedTimestamp":{"shape":"Date"}, + "UpdatedTimestamp":{"shape":"Date"}, + "ImportStatistics":{"shape":"ImportStatistics"} + } + }, "GetInsightSelectorsRequest":{ "type":"structure", "required":["TrailName"], @@ -1230,6 +1351,81 @@ "TimeLoggingStopped":{"shape":"String"} } }, + "ImportDestinations":{ + "type":"list", + "member":{"shape":"EventDataStoreArn"}, + "max":1, + "min":1 + }, + "ImportFailureList":{ + "type":"list", + "member":{"shape":"ImportFailureListItem"} + }, + "ImportFailureListItem":{ + "type":"structure", + "members":{ + "Location":{"shape":"String"}, + "Status":{"shape":"ImportFailureStatus"}, + "ErrorType":{"shape":"String"}, + "ErrorMessage":{"shape":"String"}, + "LastUpdatedTime":{"shape":"Date"} + } + }, + "ImportFailureStatus":{ + "type":"string", + "enum":[ + "FAILED", + "RETRY", + "SUCCEEDED" + ] + }, + "ImportNotFoundException":{ + "type":"structure", + "members":{ + }, + "exception":true + }, + "ImportSource":{ + "type":"structure", + "required":["S3"], + "members":{ + "S3":{"shape":"S3ImportSource"} + } + }, + "ImportStatistics":{ + "type":"structure", + "members":{ + "PrefixesFound":{"shape":"Long"}, + "PrefixesCompleted":{"shape":"Long"}, + "FilesCompleted":{"shape":"Long"}, + "EventsCompleted":{"shape":"Long"}, + "FailedEntries":{"shape":"Long"} + } + }, + "ImportStatus":{ + "type":"string", + "enum":[ + "INITIALIZING", + "IN_PROGRESS", + "FAILED", + "STOPPED", + "COMPLETED" + ] + }, + "ImportsList":{ + "type":"list", + "member":{"shape":"ImportsListItem"} + }, + "ImportsListItem":{ + "type":"structure", + "members":{ + "ImportId":{"shape":"UUID"}, + "ImportStatus":{"shape":"ImportStatus"}, + "Destinations":{"shape":"ImportDestinations"}, + "CreatedTimestamp":{"shape":"Date"}, + "UpdatedTimestamp":{"shape":"Date"} + } + }, "InactiveEventDataStoreException":{ "type":"structure", "members":{ @@ -1314,6 +1510,12 @@ }, "exception":true }, + "InvalidEventDataStoreCategoryException":{ + "type":"structure", + "members":{ + }, + "exception":true + }, "InvalidEventDataStoreStatusException":{ "type":"structure", "members":{ @@ -1332,6 +1534,12 @@ }, "exception":true }, + "InvalidImportSourceException":{ + "type":"structure", + "members":{ + }, + "exception":true + }, "InvalidInsightSelectorsException":{ "type":"structure", "members":{ @@ -1485,6 +1693,48 @@ "NextToken":{"shape":"PaginationToken"} } }, + "ListImportFailuresMaxResultsCount":{ + "type":"integer", + "max":1000, + "min":1 + }, + "ListImportFailuresRequest":{ + "type":"structure", + "required":["ImportId"], + "members":{ + "ImportId":{"shape":"UUID"}, + "MaxResults":{"shape":"ListImportFailuresMaxResultsCount"}, + "NextToken":{"shape":"PaginationToken"} + } + }, + "ListImportFailuresResponse":{ + "type":"structure", + "members":{ + "Failures":{"shape":"ImportFailureList"}, + "NextToken":{"shape":"PaginationToken"} + } + }, + "ListImportsMaxResultsCount":{ + "type":"integer", + "max":1000, + "min":1 + }, + "ListImportsRequest":{ + "type":"structure", + "members":{ + "MaxResults":{"shape":"ListImportsMaxResultsCount"}, + "Destination":{"shape":"EventDataStoreArn"}, + "ImportStatus":{"shape":"ImportStatus"}, + "NextToken":{"shape":"PaginationToken"} + } + }, + "ListImportsResponse":{ + "type":"structure", + "members":{ + "Imports":{"shape":"ImportsList"}, + "NextToken":{"shape":"PaginationToken"} + } + }, "ListPublicKeysRequest":{ "type":"structure", "members":{ @@ -1880,6 +2130,19 @@ }, "exception":true }, + "S3ImportSource":{ + "type":"structure", + "required":[ + "S3LocationUri", + "S3BucketRegion", + "S3BucketAccessRoleArn" + ], + "members":{ + "S3LocationUri":{"shape":"String"}, + "S3BucketRegion":{"shape":"String"}, + "S3BucketAccessRoleArn":{"shape":"String"} + } + }, "SelectorField":{ "type":"string", "max":1000, @@ -1905,6 +2168,29 @@ "AdvancedEventSelectors":{"shape":"AdvancedEventSelectors"} } }, + "StartImportRequest":{ + "type":"structure", + "members":{ + "Destinations":{"shape":"ImportDestinations"}, + "ImportSource":{"shape":"ImportSource"}, + "StartEventTime":{"shape":"Date"}, + "EndEventTime":{"shape":"Date"}, + "ImportId":{"shape":"UUID"} + } + }, + "StartImportResponse":{ + "type":"structure", + "members":{ + "ImportId":{"shape":"UUID"}, + "Destinations":{"shape":"ImportDestinations"}, + "ImportSource":{"shape":"ImportSource"}, + "StartEventTime":{"shape":"Date"}, + "EndEventTime":{"shape":"Date"}, + "ImportStatus":{"shape":"ImportStatus"}, + "CreatedTimestamp":{"shape":"Date"}, + "UpdatedTimestamp":{"shape":"Date"} + } + }, "StartLoggingRequest":{ "type":"structure", "required":["Name"], @@ -1930,6 +2216,27 @@ "QueryId":{"shape":"UUID"} } }, + "StopImportRequest":{ + "type":"structure", + "required":["ImportId"], + "members":{ + "ImportId":{"shape":"UUID"} + } + }, + "StopImportResponse":{ + "type":"structure", + "members":{ + "ImportId":{"shape":"UUID"}, + "ImportSource":{"shape":"ImportSource"}, + "Destinations":{"shape":"ImportDestinations"}, + "ImportStatus":{"shape":"ImportStatus"}, + "CreatedTimestamp":{"shape":"Date"}, + "UpdatedTimestamp":{"shape":"Date"}, + "StartEventTime":{"shape":"Date"}, + "EndEventTime":{"shape":"Date"}, + "ImportStatistics":{"shape":"ImportStatistics"} + } + }, "StopLoggingRequest":{ "type":"structure", "required":["Name"], diff --git a/models/apis/cloudtrail/2013-11-01/docs-2.json b/models/apis/cloudtrail/2013-11-01/docs-2.json index 1ac56486ac2..f18bbcd04be 100644 --- a/models/apis/cloudtrail/2013-11-01/docs-2.json +++ b/models/apis/cloudtrail/2013-11-01/docs-2.json @@ -12,29 +12,39 @@ "DescribeTrails": "

Retrieves settings for one or more trails associated with the current region for your account.

", "GetChannel": "

Returns the specified CloudTrail service-linked channel. Amazon Web Services services create service-linked channels to view CloudTrail events.

", "GetEventDataStore": "

Returns information about an event data store specified as either an ARN or the ID portion of the ARN.

", - "GetEventSelectors": "

Describes the settings for the event selectors that you configured for your trail. The information returned for your event selectors includes the following:

For more information, see Logging Data and Management Events for Trails in the CloudTrail User Guide.

", + "GetEventSelectors": "

Describes the settings for the event selectors that you configured for your trail. The information returned for your event selectors includes the following:

For more information about logging management and data events, see the following topics in the CloudTrail User Guide:

", + "GetImport": "

Returns information for the specified import.

", "GetInsightSelectors": "

Describes the settings for the Insights event selectors that you configured for your trail. GetInsightSelectors shows if CloudTrail Insights event logging is enabled on the trail, and if it is, which insight types are enabled. If you run GetInsightSelectors on a trail that does not have Insights events enabled, the operation throws the exception InsightNotEnabledException

For more information, see Logging CloudTrail Insights Events for Trails in the CloudTrail User Guide.

", "GetQueryResults": "

Gets event data results of a query. You must specify the QueryID value returned by the StartQuery operation, and an ARN for EventDataStore.

", "GetTrail": "

Returns settings information for a specified trail.

", "GetTrailStatus": "

Returns a JSON-formatted list of information about the specified trail. Fields include information on delivery errors, Amazon SNS and Amazon S3 errors, and start and stop logging times for each trail. This operation returns trail status from a single region. To return trail status from all regions, you must call the operation on each region.

", "ListChannels": "

Returns all CloudTrail channels.

", "ListEventDataStores": "

Returns information about all event data stores in the account, in the current region.

", + "ListImportFailures": "

Returns a list of failures for the specified import.

", + "ListImports": "

Returns information on all imports, or a select set of imports by ImportStatus or Destination.

", "ListPublicKeys": "

Returns all public keys whose private keys were used to sign the digest files within the specified time range. The public key is needed to validate digest files that were signed with its corresponding private key.

CloudTrail uses different private and public key pairs per region. Each digest file is signed with a private key unique to its region. When you validate a digest file from a specific region, you must look in the same region for its corresponding public key.

", "ListQueries": "

Returns a list of queries and query statuses for the past seven days. You must specify an ARN value for EventDataStore. Optionally, to shorten the list of results, you can specify a time range, formatted as timestamps, by adding StartTime and EndTime parameters, and a QueryStatus value. Valid values for QueryStatus include QUEUED, RUNNING, FINISHED, FAILED, TIMED_OUT, or CANCELLED.

", "ListTags": "

Lists the tags for the trail or event data store in the current region.

", "ListTrails": "

Lists trails that are in the current account.

", "LookupEvents": "

Looks up management events or CloudTrail Insights events that are captured by CloudTrail. You can look up events that occurred in a region within the last 90 days. Lookup supports the following attributes for management events:

Lookup supports the following attributes for Insights events:

All attributes are optional. The default number of results returned is 50, with a maximum of 50 possible. The response includes a token that you can use to get the next page of results.

The rate of lookup requests is limited to two per second, per account, per region. If this limit is exceeded, a throttling error occurs.

", - "PutEventSelectors": "

Configures an event selector or advanced event selectors for your trail. Use event selectors or advanced event selectors to specify management and data event settings for your trail. By default, trails created without specific event selectors are configured to log all read and write management events, and no data events.

When an event occurs in your account, CloudTrail evaluates the event selectors or advanced event selectors in all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event.

Example

  1. You create an event selector for a trail and specify that you want write-only events.

  2. The EC2 GetConsoleOutput and RunInstances API operations occur in your account.

  3. CloudTrail evaluates whether the events match your event selectors.

  4. The RunInstances is a write-only event and it matches your event selector. The trail logs the event.

  5. The GetConsoleOutput is a read-only event that doesn't match your event selector. The trail doesn't log the event.

The PutEventSelectors operation must be called from the region in which the trail was created; otherwise, an InvalidHomeRegionException exception is thrown.

You can configure up to five event selectors for each trail. For more information, see Logging data and management events for trails and Quotas in CloudTrail in the CloudTrail User Guide.

You can add advanced event selectors, and conditions for your advanced event selectors, up to a maximum of 500 values for all conditions and selectors on a trail. You can use either AdvancedEventSelectors or EventSelectors, but not both. If you apply AdvancedEventSelectors to a trail, any existing EventSelectors are overwritten. For more information about advanced event selectors, see Logging data events for trails in the CloudTrail User Guide.

", + "PutEventSelectors": "

Configures an event selector or advanced event selectors for your trail. Use event selectors or advanced event selectors to specify management and data event settings for your trail. By default, trails created without specific event selectors are configured to log all read and write management events, and no data events.

When an event occurs in your account, CloudTrail evaluates the event selectors or advanced event selectors in all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event.

Example

  1. You create an event selector for a trail and specify that you want write-only events.

  2. The EC2 GetConsoleOutput and RunInstances API operations occur in your account.

  3. CloudTrail evaluates whether the events match your event selectors.

  4. The RunInstances is a write-only event and it matches your event selector. The trail logs the event.

  5. The GetConsoleOutput is a read-only event that doesn't match your event selector. The trail doesn't log the event.

The PutEventSelectors operation must be called from the region in which the trail was created; otherwise, an InvalidHomeRegionException exception is thrown.

You can configure up to five event selectors for each trail. For more information, see Logging management events for trails , Logging data events for trails , and Quotas in CloudTrail in the CloudTrail User Guide.

You can add advanced event selectors, and conditions for your advanced event selectors, up to a maximum of 500 values for all conditions and selectors on a trail. You can use either AdvancedEventSelectors or EventSelectors, but not both. If you apply AdvancedEventSelectors to a trail, any existing EventSelectors are overwritten. For more information about advanced event selectors, see Logging data events for trails in the CloudTrail User Guide.

", "PutInsightSelectors": "

Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail. You also use PutInsightSelectors to turn off Insights event logging, by passing an empty list of insight types. The valid Insights event types in this release are ApiErrorRateInsight and ApiCallRateInsight.

", "RemoveTags": "

Removes the specified tags from a trail or event data store.

", "RestoreEventDataStore": "

Restores a deleted event data store specified by EventDataStore, which accepts an event data store ARN. You can only restore a deleted event data store within the seven-day wait period after deletion. Restoring an event data store can take several minutes, depending on the size of the event data store.

", + "StartImport": "

Starts an import of logged trail events from a source S3 bucket to a destination event data store.

When you start a new import, the Destinations and ImportSource parameters are required. Before starting a new import, disable any access control lists (ACLs) attached to the source S3 bucket. For more information about disabling ACLs, see Controlling ownership of objects and disabling ACLs for your bucket.

When you retry an import, the ImportID parameter is required.

", "StartLogging": "

Starts the recording of Amazon Web Services API calls and log file delivery for a trail. For a trail that is enabled in all regions, this operation must be called from the region in which the trail was created. This operation cannot be called on the shadow trails (replicated trails in other regions) of a trail that is enabled in all regions.

", "StartQuery": "

Starts a CloudTrail Lake query. The required QueryStatement parameter provides your SQL query, enclosed in single quotation marks.

", + "StopImport": "

Stops a specified import.

", "StopLogging": "

Suspends the recording of Amazon Web Services API calls and log file delivery for the specified trail. Under most circumstances, there is no need to use this action. You can update a trail without stopping it first. This action is the only way to stop recording. For a trail enabled in all regions, this operation must be called from the region in which the trail was created, or an InvalidHomeRegionException will occur. This operation cannot be called on the shadow trails (replicated trails in other regions) of a trail enabled in all regions.

", "UpdateEventDataStore": "

Updates an event data store. The required EventDataStore value is an ARN or the ID portion of the ARN. Other parameters are optional, but at least one optional parameter must be specified, or CloudTrail throws an error. RetentionPeriod is in days, and valid values are integers between 90 and 2557. By default, TerminationProtection is enabled. AdvancedEventSelectors includes or excludes management and data events in your event data store; for more information about AdvancedEventSelectors, see PutEventSelectorsRequest$AdvancedEventSelectors.

", "UpdateTrail": "

Updates trail settings that control what events you are logging, and how to handle log files. Changes to a trail do not require stopping the CloudTrail service. Use this action to designate an existing bucket for log delivery. If the existing bucket has previously been a target for CloudTrail log files, an IAM policy exists for the bucket. UpdateTrail must be called from the region in which the trail was created; otherwise, an InvalidHomeRegionException is thrown.

" }, "shapes": { + "AccountHasOngoingImportException": { + "base": "

This exception is thrown when you start a new import and a previous import is still in progress.

", + "refs": { + } + }, "AddTagsRequest": { "base": "

Specifies the tags to add to a trail or event data store.

", "refs": { @@ -63,7 +73,7 @@ "PutEventSelectorsResponse$AdvancedEventSelectors": "

Specifies the advanced event selectors configured for your trail.

", "RestoreEventDataStoreResponse$AdvancedEventSelectors": "

The advanced event selectors that were used to select events.

", "SourceConfig$AdvancedEventSelectors": "

The advanced event selectors configured for the service-linked channel.

", - "UpdateEventDataStoreRequest$AdvancedEventSelectors": "

The advanced event selectors used to select events for the event data store.

", + "UpdateEventDataStoreRequest$AdvancedEventSelectors": "

The advanced event selectors used to select events for the event data store. You can configure up to five advanced event selectors for each event data store.

", "UpdateEventDataStoreResponse$AdvancedEventSelectors": "

The advanced event selectors that are applied to the event data store.

" } }, @@ -97,7 +107,7 @@ "DescribeTrailsRequest$includeShadowTrails": "

Specifies whether to include shadow trails in the response. A shadow trail is the replication in a region of a trail that was created in a different region, or in the case of an organization trail, the replication of an organization trail in member accounts. If you do not include shadow trails, organization trails in a member account and region replication trails will not be returned. The default is true.

", "EventDataStore$MultiRegionEnabled": "

This field is being deprecated. Indicates whether the event data store includes events from all regions, or only from the region in which it was created.

", "EventDataStore$OrganizationEnabled": "

This field is being deprecated. Indicates that an event data store is collecting logged events for an organization.

", - "EventSelector$IncludeManagementEvents": "

Specify if you want your event selector to include management events for your trail.

For more information, see Management Events in the CloudTrail User Guide.

By default, the value is true.

The first copy of management events is free. You are charged for additional copies of management events that you are logging on any subsequent trail in the same region. For more information about CloudTrail pricing, see CloudTrail Pricing.

", + "EventSelector$IncludeManagementEvents": "

Specify if you want your event selector to include management events for your trail.

For more information, see Management Events in the CloudTrail User Guide.

By default, the value is true.

The first copy of management events is free. You are charged for additional copies of management events that you are logging on any subsequent trail in the same region. For more information about CloudTrail pricing, see CloudTrail Pricing.

", "GetEventDataStoreResponse$MultiRegionEnabled": "

Indicates whether the event data store includes events from all regions, or only from the region in which it was created.

", "GetEventDataStoreResponse$OrganizationEnabled": "

Indicates whether an event data store is collecting logged events for an organization in Organizations.

", "GetTrailStatusResponse$IsLogging": "

Whether the CloudTrail trail is currently logging Amazon Web Services API calls.

", @@ -231,13 +241,13 @@ "DataResourceValues": { "base": null, "refs": { - "DataResource$Values": "

An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

" + "DataResource$Values": "

An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

" } }, "DataResources": { "base": null, "refs": { - "EventSelector$DataResources": "

CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with basic event selectors. You can specify up to 250 resources for an individual event selector, but the total number of data resources cannot exceed 250 across all event selectors in a trail. This limit does not apply if you configure resource logging for all data events.

For more information, see Data Events and Limits in CloudTrail in the CloudTrail User Guide.

" + "EventSelector$DataResources": "

CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with basic event selectors. You can specify up to 250 resources for an individual event selector, but the total number of data resources cannot exceed 250 across all event selectors in a trail. This limit does not apply if you configure resource logging for all data events.

For more information, see Data Events and Limits in CloudTrail in the CloudTrail User Guide.

" } }, "Date": { @@ -250,12 +260,19 @@ "EventDataStore$UpdatedTimestamp": "

This field is being deprecated. The timestamp showing when an event data store was updated, if applicable. UpdatedTimestamp is always either the same or newer than the time shown in CreatedTimestamp.

", "GetEventDataStoreResponse$CreatedTimestamp": "

The timestamp of the event data store's creation.

", "GetEventDataStoreResponse$UpdatedTimestamp": "

Shows the time that an event data store was updated, if applicable. UpdatedTimestamp is always either the same or newer than the time shown in CreatedTimestamp.

", + "GetImportResponse$StartEventTime": "

Used with EndEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", + "GetImportResponse$EndEventTime": "

Used with StartEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", + "GetImportResponse$CreatedTimestamp": "

The timestamp of the import's creation.

", + "GetImportResponse$UpdatedTimestamp": "

The timestamp of when the import was updated.

", "GetTrailStatusResponse$LatestDeliveryTime": "

Specifies the date and time that CloudTrail last delivered log files to an account's Amazon S3 bucket.

", "GetTrailStatusResponse$LatestNotificationTime": "

Specifies the date and time of the most recent Amazon SNS notification that CloudTrail has written a new log file to an account's Amazon S3 bucket.

", "GetTrailStatusResponse$StartLoggingTime": "

Specifies the most recent date and time when CloudTrail started recording API calls for an Amazon Web Services account.

", "GetTrailStatusResponse$StopLoggingTime": "

Specifies the most recent date and time when CloudTrail stopped recording API calls for an Amazon Web Services account.

", "GetTrailStatusResponse$LatestCloudWatchLogsDeliveryTime": "

Displays the most recent date and time when CloudTrail delivered logs to CloudWatch Logs.

", "GetTrailStatusResponse$LatestDigestDeliveryTime": "

Specifies the date and time that CloudTrail last delivered a digest file to an account's Amazon S3 bucket.

", + "ImportFailureListItem$LastUpdatedTime": "

When the import was last updated.

", + "ImportsListItem$CreatedTimestamp": "

The timestamp of the import's creation.

", + "ImportsListItem$UpdatedTimestamp": "

The timestamp of the import's last update.

", "ListPublicKeysRequest$StartTime": "

Optionally specifies, in UTC, the start of the time range to look up public keys for CloudTrail digest files. If not specified, the current time is used, and the current public key is returned.

", "ListPublicKeysRequest$EndTime": "

Optionally specifies, in UTC, the end of the time range to look up public keys for CloudTrail digest files. If not specified, the current time is used.

", "ListQueriesRequest$StartTime": "

Use with EndTime to bound a ListQueries request, and limit its results to only those queries run within a specified time period.

", @@ -268,6 +285,16 @@ "QueryStatisticsForDescribeQuery$CreationTime": "

The creation time of the query.

", "RestoreEventDataStoreResponse$CreatedTimestamp": "

The timestamp of an event data store's creation.

", "RestoreEventDataStoreResponse$UpdatedTimestamp": "

The timestamp that shows when an event data store was updated, if applicable. UpdatedTimestamp is always either the same or newer than the time shown in CreatedTimestamp.

", + "StartImportRequest$StartEventTime": "

Use with EndEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", + "StartImportRequest$EndEventTime": "

Use with StartEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", + "StartImportResponse$StartEventTime": "

Used with EndEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", + "StartImportResponse$EndEventTime": "

Used with StartEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", + "StartImportResponse$CreatedTimestamp": "

The timestamp for the import's creation.

", + "StartImportResponse$UpdatedTimestamp": "

The timestamp of the import's last update, if applicable.

", + "StopImportResponse$CreatedTimestamp": "

The timestamp of the import's creation.

", + "StopImportResponse$UpdatedTimestamp": "

The timestamp of the import's last update.

", + "StopImportResponse$StartEventTime": "

Used with EndEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", + "StopImportResponse$EndEventTime": "

Used with StartEventTime to bound a StartImport request, and limit imported trail events to only those events logged within a specified time period.

", "UpdateEventDataStoreResponse$CreatedTimestamp": "

The timestamp that shows when an event data store was first created.

", "UpdateEventDataStoreResponse$UpdatedTimestamp": "

The timestamp that shows when the event data store was last updated. UpdatedTimestamp is always either the same or newer than the time shown in CreatedTimestamp.

" } @@ -376,6 +403,8 @@ "GetEventDataStoreRequest$EventDataStore": "

The ARN (or ID suffix of the ARN) of the event data store about which you want information.

", "GetEventDataStoreResponse$EventDataStoreArn": "

The event data store Amazon Resource Number (ARN).

", "GetQueryResultsRequest$EventDataStore": "

The ARN (or ID suffix of the ARN) of the event data store against which the query was run.

", + "ImportDestinations$member": null, + "ListImportsRequest$Destination": "

The destination event data store.

", "ListQueriesRequest$EventDataStore": "

The ARN (or the ID suffix of the ARN) of an event data store on which queries were run.

", "RestoreEventDataStoreRequest$EventDataStore": "

The ARN (or the ID suffix of the ARN) of the event data store that you want to restore.

", "RestoreEventDataStoreResponse$EventDataStoreArn": "

The event data store ARN.

", @@ -383,6 +412,11 @@ "UpdateEventDataStoreResponse$EventDataStoreArn": "

The ARN of the event data store.

" } }, + "EventDataStoreHasOngoingImportException": { + "base": "

This exception is thrown when you try to update or delete an event data store that currently has an import in progress.

", + "refs": { + } + }, "EventDataStoreMaxLimitExceededException": { "base": "

Your account has used the maximum number of event data stores.

", "refs": { @@ -482,6 +516,16 @@ "refs": { } }, + "GetImportRequest": { + "base": null, + "refs": { + } + }, + "GetImportResponse": { + "base": null, + "refs": { + } + }, "GetInsightSelectorsRequest": { "base": null, "refs": { @@ -522,6 +566,77 @@ "refs": { } }, + "ImportDestinations": { + "base": null, + "refs": { + "GetImportResponse$Destinations": "

The destination event data store.

", + "ImportsListItem$Destinations": "

The destination event data store.

", + "StartImportRequest$Destinations": "

The destination event data store. Use this parameter for a new import.

", + "StartImportResponse$Destinations": "

The destination event data store.

", + "StopImportResponse$Destinations": "

The destination event data store.

" + } + }, + "ImportFailureList": { + "base": null, + "refs": { + "ListImportFailuresResponse$Failures": "

Contains information about the import failures.

" + } + }, + "ImportFailureListItem": { + "base": "

Provides information about an import failure.

", + "refs": { + "ImportFailureList$member": null + } + }, + "ImportFailureStatus": { + "base": null, + "refs": { + "ImportFailureListItem$Status": "

The status of the import.

" + } + }, + "ImportNotFoundException": { + "base": "

The specified import was not found.

", + "refs": { + } + }, + "ImportSource": { + "base": "

The import source.

", + "refs": { + "GetImportResponse$ImportSource": "

The source S3 bucket.

", + "StartImportRequest$ImportSource": "

The source S3 bucket for the import. Use this parameter for a new import.

", + "StartImportResponse$ImportSource": "

The source S3 bucket.

", + "StopImportResponse$ImportSource": "

The source S3 bucket.

" + } + }, + "ImportStatistics": { + "base": "

Provides statistics for the specified ImportID.

", + "refs": { + "GetImportResponse$ImportStatistics": "

Provides statistics for the import.

", + "StopImportResponse$ImportStatistics": "

Returns information on the stopped import.

" + } + }, + "ImportStatus": { + "base": null, + "refs": { + "GetImportResponse$ImportStatus": "

The status of the import.

", + "ImportsListItem$ImportStatus": "

The status of the import.

", + "ListImportsRequest$ImportStatus": "

The status of the import.

", + "StartImportResponse$ImportStatus": "

Shows the status of the import after a StartImport request. An import finishes with a status of COMPLETED if there were no failures, or FAILED if there were failures.

", + "StopImportResponse$ImportStatus": "

The status of the import.

" + } + }, + "ImportsList": { + "base": null, + "refs": { + "ListImportsResponse$Imports": "

The list of returned imports.

" + } + }, + "ImportsListItem": { + "base": "

Contains information about an import that was returned by a lookup request.

", + "refs": { + "ImportsList$member": null + } + }, "InactiveEventDataStoreException": { "base": "

The event data store is inactive.

", "refs": { @@ -605,6 +720,11 @@ "refs": { } }, + "InvalidEventDataStoreCategoryException": { + "base": "

This exception is thrown when the event data store category is not valid for the import.

", + "refs": { + } + }, "InvalidEventDataStoreStatusException": { "base": "

The event data store is not in a status that supports the operation.

", "refs": { @@ -620,6 +740,11 @@ "refs": { } }, + "InvalidImportSourceException": { + "base": "

This exception is thrown when the provided source S3 bucket is not valid for import.

", + "refs": { + } + }, "InvalidInsightSelectorsException": { "base": "

The formatting or syntax of the InsightSelectors JSON statement in your PutInsightSelectors or GetInsightSelectors request is not valid, or the specified insight type in the InsightSelectors statement is not a valid insight type.

", "refs": { @@ -747,6 +872,38 @@ "refs": { } }, + "ListImportFailuresMaxResultsCount": { + "base": null, + "refs": { + "ListImportFailuresRequest$MaxResults": "

The maximum number of failures to display on a single page.

" + } + }, + "ListImportFailuresRequest": { + "base": null, + "refs": { + } + }, + "ListImportFailuresResponse": { + "base": null, + "refs": { + } + }, + "ListImportsMaxResultsCount": { + "base": null, + "refs": { + "ListImportsRequest$MaxResults": "

The maximum number of imports to display on a single page.

" + } + }, + "ListImportsRequest": { + "base": null, + "refs": { + } + }, + "ListImportsResponse": { + "base": null, + "refs": { + } + }, "ListPublicKeysRequest": { "base": "

Requests the public keys for a specified time range.

", "refs": { @@ -802,6 +959,11 @@ "Long": { "base": null, "refs": { + "ImportStatistics$PrefixesFound": "

The number of S3 prefixes found for the import.

", + "ImportStatistics$PrefixesCompleted": "

The number of S3 prefixes that completed import.

", + "ImportStatistics$FilesCompleted": "

The number of files that completed import.

", + "ImportStatistics$EventsCompleted": "

The number of trail events imported.

", + "ImportStatistics$FailedEntries": "

The number of failed entries.

", "QueryStatistics$BytesScanned": "

The total bytes that the query scanned in the event data store. This value matches the number of bytes for which your account is billed for the query, unless the query is still running.

", "QueryStatisticsForDescribeQuery$EventsMatched": "

The number of events that matched a query.

", "QueryStatisticsForDescribeQuery$EventsScanned": "

The number of events that the query scanned in the event data store.

", @@ -911,6 +1073,10 @@ "ListChannelsResponse$NextToken": "

A token used to get the next page of results.

", "ListEventDataStoresRequest$NextToken": "

A token you can use to get the next page of event data store results.

", "ListEventDataStoresResponse$NextToken": "

A token you can use to get the next page of results.

", + "ListImportFailuresRequest$NextToken": "

A token you can use to get the next page of import failures.

", + "ListImportFailuresResponse$NextToken": "

A token you can use to get the next page of results.

", + "ListImportsRequest$NextToken": "

A token you can use to get the next page of import results.

", + "ListImportsResponse$NextToken": "

A token you can use to get the next page of import results.

", "ListQueriesRequest$NextToken": "

A token you can use to get the next page of results.

", "ListQueriesResponse$NextToken": "

A token you can use to get the next page of results.

" } @@ -1106,6 +1272,12 @@ "refs": { } }, + "S3ImportSource": { + "base": "

The settings for the source S3 bucket.

", + "refs": { + "ImportSource$S3": "

The source S3 bucket.

" + } + }, "SelectorField": { "base": null, "refs": { @@ -1130,6 +1302,16 @@ "GetChannelResponse$SourceConfig": "

Provides information about the advanced event selectors configured for the service-linked channel, and whether the service-linked channel applies to all regions or one region.

" } }, + "StartImportRequest": { + "base": null, + "refs": { + } + }, + "StartImportResponse": { + "base": null, + "refs": { + } + }, "StartLoggingRequest": { "base": "

The request to CloudTrail to start logging Amazon Web Services API calls for an account.

", "refs": { @@ -1150,6 +1332,16 @@ "refs": { } }, + "StopImportRequest": { + "base": null, + "refs": { + } + }, + "StopImportResponse": { + "base": null, + "refs": { + } + }, "StopLoggingRequest": { "base": "

Passes the request to CloudTrail to stop logging Amazon Web Services API calls for the specified account.

", "refs": { @@ -1207,6 +1399,9 @@ "GetTrailStatusResponse$LatestDeliveryAttemptSucceeded": "

This field is no longer in use.

", "GetTrailStatusResponse$TimeLoggingStarted": "

This field is no longer in use.

", "GetTrailStatusResponse$TimeLoggingStopped": "

This field is no longer in use.

", + "ImportFailureListItem$Location": "

The location of the failure in the S3 bucket.

", + "ImportFailureListItem$ErrorType": "

The type of import error.

", + "ImportFailureListItem$ErrorMessage": "

Provides the reason the import failed.

", "ListPublicKeysRequest$NextToken": "

Reserved for future use.

", "ListPublicKeysResponse$NextToken": "

Reserved for future use.

", "ListTagsRequest$NextToken": "

Reserved for future use.

", @@ -1224,6 +1419,9 @@ "Resource$ResourceName": "

The name of the resource referenced by the event returned. These are user-created names whose values will depend on the environment. For example, the resource name might be \"auto-scaling-test-group\" for an Auto Scaling Group or \"i-1234567\" for an EC2 Instance.

", "ResourceIdList$member": null, "ResourceTag$ResourceId": "

Specifies the ARN of the resource.

", + "S3ImportSource$S3LocationUri": "

The URI for the source S3 bucket.

", + "S3ImportSource$S3BucketRegion": "

The region associated with the source S3 bucket.

", + "S3ImportSource$S3BucketAccessRoleArn": "

The IAM ARN role used to access the source S3 bucket.

", "StartLoggingRequest$Name": "

Specifies the name or the CloudTrail ARN of the trail for which CloudTrail logs Amazon Web Services API calls. The following is the format of a trail ARN.

arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail

", "StopLoggingRequest$Name": "

Specifies the name or the CloudTrail ARN of the trail for which CloudTrail will stop logging Amazon Web Services API calls. The following is the format of a trail ARN.

arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail

", "Trail$Name": "

Name of the trail set by calling CreateTrail. The maximum length is 128 characters.

", @@ -1357,9 +1555,17 @@ "CancelQueryResponse$QueryId": "

The ID of the canceled query.

", "DescribeQueryRequest$QueryId": "

The query ID.

", "DescribeQueryResponse$QueryId": "

The ID of the query.

", + "GetImportRequest$ImportId": "

The ID for the import.

", + "GetImportResponse$ImportId": "

The ID of the import.

", "GetQueryResultsRequest$QueryId": "

The ID of the query for which you want to get results.

", + "ImportsListItem$ImportId": "

The ID of the import.

", + "ListImportFailuresRequest$ImportId": "

The ID of the import.

", "Query$QueryId": "

The ID of a query.

", - "StartQueryResponse$QueryId": "

The ID of the started query.

" + "StartImportRequest$ImportId": "

The ID of the import. Use this parameter when you are retrying an import.

", + "StartImportResponse$ImportId": "

The ID of the import.

", + "StartQueryResponse$QueryId": "

The ID of the started query.

", + "StopImportRequest$ImportId": "

The ID of the import.

", + "StopImportResponse$ImportId": "

The ID for the import.

" } }, "UnsupportedOperationException": { diff --git a/models/apis/cloudtrail/2013-11-01/paginators-1.json b/models/apis/cloudtrail/2013-11-01/paginators-1.json index 0d8bec0bb21..ffea9aec302 100644 --- a/models/apis/cloudtrail/2013-11-01/paginators-1.json +++ b/models/apis/cloudtrail/2013-11-01/paginators-1.json @@ -17,6 +17,18 @@ "limit_key": "MaxResults", "output_token": "NextToken" }, + "ListImportFailures": { + "input_token": "NextToken", + "limit_key": "MaxResults", + "output_token": "NextToken", + "result_key": "Failures" + }, + "ListImports": { + "input_token": "NextToken", + "limit_key": "MaxResults", + "output_token": "NextToken", + "result_key": "Imports" + }, "ListPublicKeys": { "input_token": "NextToken", "output_token": "NextToken", diff --git a/models/apis/ec2/2016-11-15/api-2.json b/models/apis/ec2/2016-11-15/api-2.json index 9800fe8a343..7ab56078f26 100755 --- a/models/apis/ec2/2016-11-15/api-2.json +++ b/models/apis/ec2/2016-11-15/api-2.json @@ -5581,6 +5581,10 @@ "capacityOptimizedPrioritized" ] }, + "AllocationType":{ + "type":"string", + "enum":["used"] + }, "AllowedPrincipal":{ "type":"structure", "members":{ @@ -7485,6 +7489,26 @@ "locationName":"item" } }, + "CapacityAllocation":{ + "type":"structure", + "members":{ + "AllocationType":{ + "shape":"AllocationType", + "locationName":"allocationType" + }, + "Count":{ + "shape":"Integer", + "locationName":"count" + } + } + }, + "CapacityAllocations":{ + "type":"list", + "member":{ + "shape":"CapacityAllocation", + "locationName":"item" + } + }, "CapacityReservation":{ "type":"structure", "members":{ @@ -7575,6 +7599,10 @@ "PlacementGroupArn":{ "shape":"PlacementGroupArn", "locationName":"placementGroupArn" + }, + "CapacityAllocations":{ + "shape":"CapacityAllocations", + "locationName":"capacityAllocationSet" } } }, diff --git a/models/apis/ec2/2016-11-15/docs-2.json b/models/apis/ec2/2016-11-15/docs-2.json index 4f6e0c42004..6b87ee27d0f 100755 --- a/models/apis/ec2/2016-11-15/docs-2.json +++ b/models/apis/ec2/2016-11-15/docs-2.json @@ -250,7 +250,7 @@ "DescribeInstanceStatus": "

Describes the status of the specified instances or all of your instances. By default, only running instances are described, unless you specifically indicate to return the status of all instances.

Instance status includes the following components:

", "DescribeInstanceTypeOfferings": "

Returns a list of all instance types offered. The results can be filtered by location (Region or Availability Zone). If no location is specified, the instance types offered in the current Region are returned.

", "DescribeInstanceTypes": "

Describes the details of the instance types that are offered in a location. The results can be filtered by the attributes of the instance types.

", - "DescribeInstances": "

Describes the specified instances or all instances.

If you specify instance IDs, the output includes information for only the specified instances. If you specify filters, the output includes information for only those instances that meet the filter criteria. If you do not specify instance IDs or filters, the output includes information for all instances, which can affect performance. We recommend that you use pagination to ensure that the operation returns quickly and successfully.

If you specify an instance ID that is not valid, an error is returned. If you specify an instance that you do not own, it is not included in the output.

Recently terminated instances might appear in the returned results. This interval is usually less than one hour.

If you describe instances in the rare case where an Availability Zone is experiencing a service disruption and you specify instance IDs that are in the affected zone, or do not specify any instance IDs at all, the call fails. If you describe instances and specify only instance IDs that are in an unaffected zone, the call works normally.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide.

", + "DescribeInstances": "

Describes the specified instances or all instances.

If you specify instance IDs, the output includes information for only the specified instances. If you specify filters, the output includes information for only those instances that meet the filter criteria. If you do not specify instance IDs or filters, the output includes information for all instances, which can affect performance. We recommend that you use pagination to ensure that the operation returns quickly and successfully.

If you specify an instance ID that is not valid, an error is returned. If you specify an instance that you do not own, it is not included in the output.

Recently terminated instances might appear in the returned results. This interval is usually less than one hour.

If you describe instances in the rare case where an Availability Zone is experiencing a service disruption and you specify instance IDs that are in the affected zone, or do not specify any instance IDs at all, the call fails. If you describe instances and specify only instance IDs that are in an unaffected zone, the call works normally.

", "DescribeInternetGateways": "

Describes one or more of your internet gateways.

", "DescribeIpamPools": "

Get information about your IPAM pools.

", "DescribeIpamScopes": "

Get information about your IPAM scopes.

", @@ -282,13 +282,13 @@ "DescribePublicIpv4Pools": "

Describes the specified IPv4 address pools.

", "DescribeRegions": "

Describes the Regions that are enabled for your account, or all Regions.

For a list of the Regions supported by Amazon EC2, see Amazon Elastic Compute Cloud endpoints and quotas.

For information about enabling and disabling Regions for your account, see Managing Amazon Web Services Regions in the Amazon Web Services General Reference.

", "DescribeReplaceRootVolumeTasks": "

Describes a root volume replacement task. For more information, see Replace a root volume in the Amazon Elastic Compute Cloud User Guide.

", - "DescribeReservedInstances": "

Describes one or more of the Reserved Instances that you purchased.

For more information about Reserved Instances, see Reserved Instances in the Amazon EC2 User Guide.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "DescribeReservedInstances": "

Describes one or more of the Reserved Instances that you purchased.

For more information about Reserved Instances, see Reserved Instances in the Amazon EC2 User Guide.

", "DescribeReservedInstancesListings": "

Describes your account's Reserved Instance listings in the Reserved Instance Marketplace.

The Reserved Instance Marketplace matches sellers who want to resell Reserved Instance capacity that they no longer need with buyers who want to purchase additional capacity. Reserved Instances bought and sold through the Reserved Instance Marketplace work like any other Reserved Instances.

As a seller, you choose to list some or all of your Reserved Instances, and you specify the upfront price to receive for them. Your Reserved Instances are then listed in the Reserved Instance Marketplace and are available for purchase.

As a buyer, you specify the configuration of the Reserved Instance to purchase, and the Marketplace matches what you're searching for with what's available. The Marketplace first sells the lowest priced Reserved Instances to you, and continues to sell available Reserved Instance listings to you until your demand is met. You are charged based on the total price of all of the listings that you purchase.

For more information, see Reserved Instance Marketplace in the Amazon EC2 User Guide.

", - "DescribeReservedInstancesModifications": "

Describes the modifications made to your Reserved Instances. If no parameter is specified, information about all your Reserved Instances modification requests is returned. If a modification ID is specified, only information about the specific modification is returned.

For more information, see Modifying Reserved Instances in the Amazon EC2 User Guide.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", - "DescribeReservedInstancesOfferings": "

Describes Reserved Instance offerings that are available for purchase. With Reserved Instances, you purchase the right to launch instances for a period of time. During that time period, you do not receive insufficient capacity errors, and you pay a lower usage rate than the rate charged for On-Demand instances for the actual time used.

If you have listed your own Reserved Instances for sale in the Reserved Instance Marketplace, they will be excluded from these results. This is to ensure that you do not purchase your own Reserved Instances.

For more information, see Reserved Instance Marketplace in the Amazon EC2 User Guide.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "DescribeReservedInstancesModifications": "

Describes the modifications made to your Reserved Instances. If no parameter is specified, information about all your Reserved Instances modification requests is returned. If a modification ID is specified, only information about the specific modification is returned.

For more information, see Modifying Reserved Instances in the Amazon EC2 User Guide.

", + "DescribeReservedInstancesOfferings": "

Describes Reserved Instance offerings that are available for purchase. With Reserved Instances, you purchase the right to launch instances for a period of time. During that time period, you do not receive insufficient capacity errors, and you pay a lower usage rate than the rate charged for On-Demand instances for the actual time used.

If you have listed your own Reserved Instances for sale in the Reserved Instance Marketplace, they will be excluded from these results. This is to ensure that you do not purchase your own Reserved Instances.

For more information, see Reserved Instance Marketplace in the Amazon EC2 User Guide.

", "DescribeRouteTables": "

Describes one or more of your route tables.

Each subnet in your VPC must be associated with a route table. If a subnet is not explicitly associated with any route table, it is implicitly associated with the main route table. This command does not return the subnet ID for implicit associations.

For more information, see Route tables in the Amazon Virtual Private Cloud User Guide.

", - "DescribeScheduledInstanceAvailability": "

Finds available schedules that meet the specified criteria.

You can search for an available schedule no more than 3 months in advance. You must meet the minimum required duration of 1,200 hours per year. For example, the minimum daily schedule is 4 hours, the minimum weekly schedule is 24 hours, and the minimum monthly schedule is 100 hours.

After you find a schedule that meets your needs, call PurchaseScheduledInstances to purchase Scheduled Instances with that schedule.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", - "DescribeScheduledInstances": "

Describes the specified Scheduled Instances or all your Scheduled Instances.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "DescribeScheduledInstanceAvailability": "

Finds available schedules that meet the specified criteria.

You can search for an available schedule no more than 3 months in advance. You must meet the minimum required duration of 1,200 hours per year. For example, the minimum daily schedule is 4 hours, the minimum weekly schedule is 24 hours, and the minimum monthly schedule is 100 hours.

After you find a schedule that meets your needs, call PurchaseScheduledInstances to purchase Scheduled Instances with that schedule.

", + "DescribeScheduledInstances": "

Describes the specified Scheduled Instances or all your Scheduled Instances.

", "DescribeSecurityGroupReferences": "

[VPC only] Describes the VPCs on the other side of a VPC peering connection that are referencing the security groups you've specified in this request.

", "DescribeSecurityGroupRules": "

Describes one or more of your security group rules.

", "DescribeSecurityGroups": "

Describes the specified security groups or all of your security groups.

A security group is for use with instances either in the EC2-Classic platform or in a specific VPC. For more information, see Amazon EC2 security groups in the Amazon Elastic Compute Cloud User Guide and Security groups for your VPC in the Amazon Virtual Private Cloud User Guide.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", @@ -453,7 +453,7 @@ "ModifyManagedPrefixList": "

Modifies the specified managed prefix list.

Adding or removing entries in a prefix list creates a new version of the prefix list. Changing the name of the prefix list does not affect the version.

If you specify a current version number that does not match the true current version number, the request fails.

", "ModifyNetworkInterfaceAttribute": "

Modifies the specified network interface attribute. You can specify only one attribute at a time. You can use this action to attach and detach security groups from an existing EC2 instance.

", "ModifyPrivateDnsNameOptions": "

Modifies the options for instance hostnames for the specified instance.

", - "ModifyReservedInstances": "

Modifies the Availability Zone, instance count, instance type, or network platform (EC2-Classic or EC2-VPC) of your Reserved Instances. The Reserved Instances to be modified must be identical, except for Availability Zone, network platform, and instance type.

For more information, see Modifying Reserved Instances in the Amazon EC2 User Guide.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "ModifyReservedInstances": "

Modifies the configuration of your Reserved Instances, such as the Availability Zone, instance count, or instance type. The Reserved Instances to be modified must be identical, except for Availability Zone, network platform, and instance type.

For more information, see Modifying Reserved Instances in the Amazon EC2 User Guide.

We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", "ModifySecurityGroupRules": "

Modifies the rules of a security group.

", "ModifySnapshotAttribute": "

Adds or removes permission settings for the specified snapshot. You may add or remove specified Amazon Web Services account IDs from a snapshot's list of create volume permissions, but you cannot do both in a single operation. If you need to both add and remove account IDs for a snapshot, you must use multiple operations. You can make up to 500 modifications to a snapshot in a single operation.

Encrypted snapshots and snapshots with Amazon Web Services Marketplace product codes cannot be made public. Snapshots encrypted with your default KMS key cannot be shared with other accounts.

For more information about modifying snapshot permissions, see Share a snapshot in the Amazon Elastic Compute Cloud User Guide.

", "ModifySnapshotTier": "

Archives an Amazon EBS snapshot. When you archive a snapshot, it is converted to a full snapshot that includes all of the blocks of data that were written to the volume at the time the snapshot was created, and moved from the standard tier to the archive tier. For more information, see Archive Amazon EBS snapshots in the Amazon Elastic Compute Cloud User Guide.

", @@ -486,8 +486,8 @@ "ProvisionIpamPoolCidr": "

Provision a CIDR to an IPAM pool. You can use this action to provision new CIDRs to a top-level pool or to transfer a CIDR from a top-level pool to a pool within it.

For more information, see Provision CIDRs to pools in the Amazon VPC IPAM User Guide.

", "ProvisionPublicIpv4PoolCidr": "

Provision a CIDR to a public IPv4 pool.

For more information about IPAM, see What is IPAM? in the Amazon VPC IPAM User Guide.

", "PurchaseHostReservation": "

Purchase a reservation with configurations that match those of your Dedicated Host. You must have active Dedicated Hosts in your account before you purchase a reservation. This action results in the specified reservation being purchased and charged to your account.

", - "PurchaseReservedInstancesOffering": "

Purchases a Reserved Instance for use with your account. With Reserved Instances, you pay a lower hourly rate compared to On-Demand instance pricing.

Use DescribeReservedInstancesOfferings to get a list of Reserved Instance offerings that match your specifications. After you've purchased a Reserved Instance, you can check for your new Reserved Instance with DescribeReservedInstances.

To queue a purchase for a future date and time, specify a purchase time. If you do not specify a purchase time, the default is the current time.

For more information, see Reserved Instances and Reserved Instance Marketplace in the Amazon EC2 User Guide.

", - "PurchaseScheduledInstances": "

Purchases the Scheduled Instances with the specified schedule.

Scheduled Instances enable you to purchase Amazon EC2 compute capacity by the hour for a one-year term. Before you can purchase a Scheduled Instance, you must call DescribeScheduledInstanceAvailability to check for available schedules and obtain a purchase token. After you purchase a Scheduled Instance, you must call RunScheduledInstances during each scheduled time period.

After you purchase a Scheduled Instance, you can't cancel, modify, or resell your purchase.

", + "PurchaseReservedInstancesOffering": "

Purchases a Reserved Instance for use with your account. With Reserved Instances, you pay a lower hourly rate compared to On-Demand instance pricing.

Use DescribeReservedInstancesOfferings to get a list of Reserved Instance offerings that match your specifications. After you've purchased a Reserved Instance, you can check for your new Reserved Instance with DescribeReservedInstances.

To queue a purchase for a future date and time, specify a purchase time. If you do not specify a purchase time, the default is the current time.

For more information, see Reserved Instances and Reserved Instance Marketplace in the Amazon EC2 User Guide.

We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "PurchaseScheduledInstances": "

You can no longer purchase Scheduled Instances.

Purchases the Scheduled Instances with the specified schedule.

Scheduled Instances enable you to purchase Amazon EC2 compute capacity by the hour for a one-year term. Before you can purchase a Scheduled Instance, you must call DescribeScheduledInstanceAvailability to check for available schedules and obtain a purchase token. After you purchase a Scheduled Instance, you must call RunScheduledInstances during each scheduled time period.

After you purchase a Scheduled Instance, you can't cancel, modify, or resell your purchase.

", "RebootInstances": "

Requests a reboot of the specified instances. This operation is asynchronous; it only queues a request to reboot the specified instances. The operation succeeds if the instances are valid and belong to you. Requests to reboot terminated instances are ignored.

If an instance does not cleanly shut down within a few minutes, Amazon EC2 performs a hard reboot.

For more information about troubleshooting, see Troubleshoot an unreachable instance in the Amazon EC2 User Guide.

", "RegisterImage": "

Registers an AMI. When you're creating an AMI, this is the final step you must complete before you can launch an instance from the AMI. For more information about creating AMIs, see Creating your own AMIs in the Amazon Elastic Compute Cloud User Guide.

For Amazon EBS-backed instances, CreateImage creates and registers the AMI in a single request, so you don't have to register the AMI yourself. We recommend that you always use CreateImage unless you have a specific reason to use RegisterImage.

If needed, you can deregister an AMI at any time. Any modifications you make to an AMI backed by an instance store volume invalidates its registration. If you make changes to an image, deregister the previous image and register the new image.

Register a snapshot of a root device volume

You can use RegisterImage to create an Amazon EBS-backed Linux AMI from a snapshot of a root device volume. You specify the snapshot using a block device mapping. You can't set the encryption state of the volume using the block device mapping. If the snapshot is encrypted, or encryption by default is enabled, the root volume of an instance launched from the AMI is encrypted.

For more information, see Create a Linux AMI from a snapshot and Use encryption with Amazon EBS-backed AMIs in the Amazon Elastic Compute Cloud User Guide.

Amazon Web Services Marketplace product codes

If any snapshots have Amazon Web Services Marketplace product codes, they are copied to the new AMI.

Windows and some Linux distributions, such as Red Hat Enterprise Linux (RHEL) and SUSE Linux Enterprise Server (SLES), use the Amazon EC2 billing product code associated with an AMI to verify the subscription status for package updates. To create a new AMI for operating systems that require a billing product code, instead of registering the AMI, do the following to preserve the billing product code association:

  1. Launch an instance from an existing AMI with that billing product code.

  2. Customize the instance.

  3. Create an AMI from the instance using CreateImage.

If you purchase a Reserved Instance to apply to an On-Demand Instance that was launched from an AMI with a billing product code, make sure that the Reserved Instance has the matching billing product code. If you purchase a Reserved Instance without the matching billing product code, the Reserved Instance will not be applied to the On-Demand Instance. For information about how to obtain the platform details and billing information of an AMI, see Understanding AMI billing in the Amazon Elastic Compute Cloud User Guide.

", "RegisterInstanceEventNotificationAttributes": "

Registers a set of tag keys to include in scheduled event notifications for your resources.

To remove tags, use DeregisterInstanceEventNotificationAttributes.

", @@ -509,7 +509,7 @@ "ReplaceTransitGatewayRoute": "

Replaces the specified route in the specified transit gateway route table.

", "ReportInstanceStatus": "

Submits feedback about the status of an instance. The instance must be in the running state. If your experience with the instance differs from the instance status returned by DescribeInstanceStatus, use ReportInstanceStatus to report your experience with the instance. Amazon EC2 collects this information to improve the accuracy of status checks.

Use of this action does not change the value returned by DescribeInstanceStatus.

", "RequestSpotFleet": "

Creates a Spot Fleet request.

The Spot Fleet request specifies the total target capacity and the On-Demand target capacity. Amazon EC2 calculates the difference between the total capacity and On-Demand capacity, and launches the difference as Spot capacity.

You can submit a single request that includes multiple launch specifications that vary by instance type, AMI, Availability Zone, or subnet.

By default, the Spot Fleet requests Spot Instances in the Spot Instance pool where the price per unit is the lowest. Each launch specification can include its own instance weighting that reflects the value of the instance type to your application workload.

Alternatively, you can specify that the Spot Fleet distribute the target capacity across the Spot pools included in its launch specifications. By ensuring that the Spot Instances in your Spot Fleet are in different Spot pools, you can improve the availability of your fleet.

You can specify tags for the Spot Fleet request and instances launched by the fleet. You cannot tag other resource types in a Spot Fleet request because only the spot-fleet-request and instance resource types are supported.

For more information, see Spot Fleet requests in the Amazon EC2 User Guide for Linux Instances.

We strongly discourage using the RequestSpotFleet API because it is a legacy API with no planned investment. For options for requesting Spot Instances, see Which is the best Spot request method to use? in the Amazon EC2 User Guide for Linux Instances.

", - "RequestSpotInstances": "

Creates a Spot Instance request.

For more information, see Spot Instance requests in the Amazon EC2 User Guide for Linux Instances.

We strongly discourage using the RequestSpotInstances API because it is a legacy API with no planned investment. For options for requesting Spot Instances, see Which is the best Spot request method to use? in the Amazon EC2 User Guide for Linux Instances.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide for Linux Instances.

", + "RequestSpotInstances": "

Creates a Spot Instance request.

For more information, see Spot Instance requests in the Amazon EC2 User Guide for Linux Instances.

We strongly discourage using the RequestSpotInstances API because it is a legacy API with no planned investment. For options for requesting Spot Instances, see Which is the best Spot request method to use? in the Amazon EC2 User Guide for Linux Instances.

We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide for Linux Instances.

", "ResetAddressAttribute": "

Resets the attribute of the specified IP address. For requirements, see Using reverse DNS for email applications.

", "ResetEbsDefaultKmsKeyId": "

Resets the default KMS key for EBS encryption for your account in this Region to the Amazon Web Services managed KMS key for EBS.

After resetting the default KMS key to the Amazon Web Services managed KMS key, you can continue to encrypt by a customer managed KMS key by specifying it when you create the volume. For more information, see Amazon EBS encryption in the Amazon Elastic Compute Cloud User Guide.

", "ResetFpgaImageAttribute": "

Resets the specified attribute of the specified Amazon FPGA Image (AFI) to its default value. You can only reset the load permission attribute.

", @@ -525,7 +525,7 @@ "RevokeClientVpnIngress": "

Removes an ingress authorization rule from a Client VPN endpoint.

", "RevokeSecurityGroupEgress": "

[VPC only] Removes the specified outbound (egress) rules from a security group for EC2-VPC. This action does not apply to security groups for use in EC2-Classic.

You can specify rules using either rule IDs or security group rule properties. If you use rule properties, the values that you specify (for example, ports) must match the existing rule's values exactly. Each rule has a protocol, from and to ports, and destination (CIDR range, security group, or prefix list). For the TCP and UDP protocols, you must also specify the destination port or range of ports. For the ICMP protocol, you must also specify the ICMP type and code. If the security group rule has a description, you do not need to specify the description to revoke the rule.

[Default VPC] If the values you specify do not match the existing rule's values, no error is returned, and the output describes the security group rules that were not revoked.

Amazon Web Services recommends that you describe the security group to verify that the rules were removed.

Rule changes are propagated to instances within the security group as quickly as possible. However, a small delay might occur.

", "RevokeSecurityGroupIngress": "

Removes the specified inbound (ingress) rules from a security group.

You can specify rules using either rule IDs or security group rule properties. If you use rule properties, the values that you specify (for example, ports) must match the existing rule's values exactly. Each rule has a protocol, from and to ports, and source (CIDR range, security group, or prefix list). For the TCP and UDP protocols, you must also specify the destination port or range of ports. For the ICMP protocol, you must also specify the ICMP type and code. If the security group rule has a description, you do not need to specify the description to revoke the rule.

[EC2-Classic, default VPC] If the values you specify do not match the existing rule's values, no error is returned, and the output describes the security group rules that were not revoked.

Amazon Web Services recommends that you describe the security group to verify that the rules were removed.

Rule changes are propagated to instances within the security group as quickly as possible. However, a small delay might occur.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", - "RunInstances": "

Launches the specified number of instances using an AMI for which you have permissions.

You can specify a number of options, or leave the default options. The following rules apply:

You can create a launch template, which is a resource that contains the parameters to launch an instance. When you launch an instance using RunInstances, you can specify the launch template instead of specifying the launch parameters.

To ensure faster instance launches, break up large requests into smaller batches. For example, create five separate launch requests for 100 instances each instead of one launch request for 500 instances.

An instance is ready for you to use when it's in the running state. You can check the state of your instance using DescribeInstances. You can tag instances and EBS volumes during launch, after launch, or both. For more information, see CreateTags and Tagging your Amazon EC2 resources.

Linux instances have access to the public key of the key pair at boot. You can use this key to provide secure access to the instance. Amazon EC2 public images use this feature to provide secure access without passwords. For more information, see Key pairs.

For troubleshooting, see What to do if an instance immediately terminates, and Troubleshooting connecting to your instance.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide.

", + "RunInstances": "

Launches the specified number of instances using an AMI for which you have permissions.

You can specify a number of options, or leave the default options. The following rules apply:

You can create a launch template, which is a resource that contains the parameters to launch an instance. When you launch an instance using RunInstances, you can specify the launch template instead of specifying the launch parameters.

To ensure faster instance launches, break up large requests into smaller batches. For example, create five separate launch requests for 100 instances each instead of one launch request for 500 instances.

An instance is ready for you to use when it's in the running state. You can check the state of your instance using DescribeInstances. You can tag instances and EBS volumes during launch, after launch, or both. For more information, see CreateTags and Tagging your Amazon EC2 resources.

Linux instances have access to the public key of the key pair at boot. You can use this key to provide secure access to the instance. Amazon EC2 public images use this feature to provide secure access without passwords. For more information, see Key pairs.

For troubleshooting, see What to do if an instance immediately terminates, and Troubleshooting connecting to your instance.

We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide.

", "RunScheduledInstances": "

Launches the specified Scheduled Instances.

Before you can launch a Scheduled Instance, you must purchase it and obtain an identifier using PurchaseScheduledInstances.

You must launch a Scheduled Instance during its scheduled time period. You can't stop or reboot a Scheduled Instance, but you can terminate it as needed. If you terminate a Scheduled Instance before the current scheduled time period ends, you can launch it again after a few minutes. For more information, see Scheduled Instances in the Amazon EC2 User Guide.

", "SearchLocalGatewayRoutes": "

Searches for routes in the specified local gateway route table.

", "SearchTransitGatewayMulticastGroups": "

Searches one or more transit gateway multicast groups and returns the group membership information.

", @@ -580,8 +580,8 @@ "AcceleratorNameSet": { "base": null, "refs": { - "InstanceRequirements$AcceleratorNames": "

The accelerators that must be on the instance type.

Default: Any accelerator

", - "InstanceRequirementsRequest$AcceleratorNames": "

The accelerators that must be on the instance type.

Default: Any accelerator

" + "InstanceRequirements$AcceleratorNames": "

The accelerators that must be on the instance type.

Default: Any accelerator

", + "InstanceRequirementsRequest$AcceleratorNames": "

The accelerators that must be on the instance type.

Default: Any accelerator

" } }, "AcceleratorTotalMemoryMiB": { @@ -938,7 +938,13 @@ "AllocationStrategy": { "base": null, "refs": { - "SpotFleetRequestConfigData$AllocationStrategy": "

Indicates how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the Spot Fleet request.

If the allocation strategy is lowestPrice, Spot Fleet launches instances from the Spot Instance pools with the lowest price. This is the default allocation strategy.

If the allocation strategy is diversified, Spot Fleet launches instances from all the Spot Instance pools that you specify.

If the allocation strategy is capacityOptimized (recommended), Spot Fleet launches instances from Spot Instance pools with optimal capacity for the number of instances that are launching. To give certain instance types a higher chance of launching first, use capacityOptimizedPrioritized. Set a priority for each instance type by using the Priority parameter for LaunchTemplateOverrides. You can assign the same priority to different LaunchTemplateOverrides. EC2 implements the priorities on a best-effort basis, but optimizes for capacity first. capacityOptimizedPrioritized is supported only if your Spot Fleet uses a launch template. Note that if the OnDemandAllocationStrategy is set to prioritized, the same priority is applied when fulfilling On-Demand capacity.

" + "SpotFleetRequestConfigData$AllocationStrategy": "

The strategy that determines how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the Spot Fleet launch configuration. For more information, see Allocation strategies for Spot Instances in the Amazon EC2 User Guide for Linux Instances.

lowestPrice - Spot Fleet launches instances from the lowest-price Spot Instance pool that has available capacity. If the cheapest pool doesn't have available capacity, the Spot Instances come from the next cheapest pool that has available capacity. If a pool runs out of capacity before fulfilling your desired capacity, Spot Fleet will continue to fulfill your request by drawing from the next cheapest pool. To ensure that your desired capacity is met, you might receive Spot Instances from several pools.

diversified - Spot Fleet launches instances from all of the Spot Instance pools that you specify.

capacityOptimized (recommended) - Spot Fleet launches instances from Spot Instance pools with optimal capacity for the number of instances that are launching. To give certain instance types a higher chance of launching first, use capacityOptimizedPrioritized. Set a priority for each instance type by using the Priority parameter for LaunchTemplateOverrides. You can assign the same priority to different LaunchTemplateOverrides. EC2 implements the priorities on a best-effort basis, but optimizes for capacity first. capacityOptimizedPrioritized is supported only if your Spot Fleet uses a launch template. Note that if the OnDemandAllocationStrategy is set to prioritized, the same priority is applied when fulfilling On-Demand capacity.

Default: lowestPrice

" + } + }, + "AllocationType": { + "base": null, + "refs": { + "CapacityAllocation$AllocationType": "

The usage type. used indicates that the instance capacity is in use by instances that are running in the Capacity Reservation.

" } }, "AllowedPrincipal": { @@ -2752,6 +2758,18 @@ "CancelSpotInstanceRequestsResult$CancelledSpotInstanceRequests": "

One or more Spot Instance requests.

" } }, + "CapacityAllocation": { + "base": "

Information about instance capacity usage for a Capacity Reservation.

", + "refs": { + "CapacityAllocations$member": null + } + }, + "CapacityAllocations": { + "base": null, + "refs": { + "CapacityReservation$CapacityAllocations": "

Information about instance capacity usage.

" + } + }, "CapacityReservation": { "base": "

Describes a Capacity Reservation.

", "refs": { @@ -7932,8 +7950,8 @@ "ExcludedInstanceTypeSet": { "base": null, "refs": { - "InstanceRequirements$ExcludedInstanceTypes": "

The instance types to exclude. You can use strings with one or more wild cards, represented by an asterisk (*), to exclude an instance type, size, or generation. The following are examples: m5.8xlarge, c5*.*, m5a.*, r*, *3*.

For example, if you specify c5*,Amazon EC2 will exclude the entire C5 instance family, which includes all C5a and C5n instance types. If you specify m5a.*, Amazon EC2 will exclude all the M5a instance types, but not the M5n instance types.

Default: No excluded instance types

", - "InstanceRequirementsRequest$ExcludedInstanceTypes": "

The instance types to exclude. You can use strings with one or more wild cards, represented by an asterisk (*), to exclude an instance family, type, size, or generation. The following are examples: m5.8xlarge, c5*.*, m5a.*, r*, *3*.

For example, if you specify c5*,Amazon EC2 will exclude the entire C5 instance family, which includes all C5a and C5n instance types. If you specify m5a.*, Amazon EC2 will exclude all the M5a instance types, but not the M5n instance types.

Default: No excluded instance types

" + "InstanceRequirements$ExcludedInstanceTypes": "

The instance types to exclude.

You can use strings with one or more wild cards, represented by an asterisk (*), to exclude an instance type, size, or generation. The following are examples: m5.8xlarge, c5*.*, m5a.*, r*, *3*.

For example, if you specify c5*,Amazon EC2 will exclude the entire C5 instance family, which includes all C5a and C5n instance types. If you specify m5a.*, Amazon EC2 will exclude all the M5a instance types, but not the M5n instance types.

Default: No excluded instance types

", + "InstanceRequirementsRequest$ExcludedInstanceTypes": "

The instance types to exclude.

You can use strings with one or more wild cards, represented by an asterisk (*), to exclude an instance family, type, size, or generation. The following are examples: m5.8xlarge, c5*.*, m5a.*, r*, *3*.

For example, if you specify c5*,Amazon EC2 will exclude the entire C5 instance family, which includes all C5a and C5n instance types. If you specify m5a.*, Amazon EC2 will exclude all the M5a instance types, but not the M5n instance types.

Default: No excluded instance types

" } }, "ExecutableByStringList": { @@ -9353,9 +9371,9 @@ "HttpTokensState": { "base": null, "refs": { - "InstanceMetadataOptionsRequest$HttpTokens": "

The state of token usage for your instance metadata requests.

If the state is optional, you can choose to retrieve instance metadata with or without a signed token header on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid signed token, the version 2.0 role credentials are returned.

If the state is required, you must send a signed token header with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.

Default: optional

", - "InstanceMetadataOptionsResponse$HttpTokens": "

The state of token usage for your instance metadata requests.

If the state is optional, you can choose to retrieve instance metadata with or without a signed token header on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid signed token, the version 2.0 role credentials are returned.

If the state is required, you must send a signed token header with any instance metadata retrieval requests. In this state, retrieving the IAM role credential always returns the version 2.0 credentials; the version 1.0 credentials are not available.

Default: optional

", - "ModifyInstanceMetadataOptionsRequest$HttpTokens": "

The state of token usage for your instance metadata requests. If the parameter is not specified in the request, the default state is optional.

If the state is optional, you can choose to retrieve instance metadata with or without a signed token header on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid signed token, the version 2.0 role credentials are returned.

If the state is required, you must send a signed token header with any instance metadata retrieval requests. In this state, retrieving the IAM role credential always returns the version 2.0 credentials; the version 1.0 credentials are not available.

" + "InstanceMetadataOptionsRequest$HttpTokens": "

The state of token usage for your instance metadata requests.

If the state is optional, you can choose to retrieve instance metadata with or without a session token on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the version 2.0 role credentials are returned.

If the state is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.

Default: optional

", + "InstanceMetadataOptionsResponse$HttpTokens": "

The state of token usage for your instance metadata requests.

If the state is optional, you can choose to retrieve instance metadata with or without a session token on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the version 2.0 role credentials are returned.

If the state is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.

Default: optional

", + "ModifyInstanceMetadataOptionsRequest$HttpTokens": "

The state of token usage for your instance metadata requests. If the parameter is not specified in the request, the default state is optional.

If the state is optional, you can choose to retrieve instance metadata with or without a session token on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the version 2.0 role credentials are returned.

If the state is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.

" } }, "HypervisorType": { @@ -10307,21 +10325,21 @@ } }, "InstanceRequirements": { - "base": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.

When you specify multiple parameters, you get instance types that satisfy all of the specified parameters. If you specify multiple values for a parameter, you get instance types that satisfy any of the specified values.

You must specify VCpuCount and MemoryMiB. All other parameters are optional. Any unspecified optional parameter is set to its default.

For more information, see Attribute-based instance type selection for EC2 Fleet, Attribute-based instance type selection for Spot Fleet, and Spot placement score in the Amazon EC2 User Guide.

", + "base": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.

When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.

You must specify VCpuCount and MemoryMiB. All other attributes are optional. Any unspecified optional attribute is set to its default.

For more information, see Attribute-based instance type selection for EC2 Fleet, Attribute-based instance type selection for Spot Fleet, and Spot placement score in the Amazon EC2 User Guide.

", "refs": { - "FleetLaunchTemplateOverrides$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with those attributes.

If you specify InstanceRequirements, you can't specify InstanceTypes.

", - "LaunchTemplateOverrides$InstanceRequirements": "

The instance requirements. When you specify instance requirements, Amazon EC2 will identify instance types with the provided requirements, and then use your On-Demand and Spot allocation strategies to launch instances from these instance types, in the same way as when you specify a list of instance types.

If you specify InstanceRequirements, you can't specify InstanceTypes.

", + "FleetLaunchTemplateOverrides$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with those attributes.

If you specify InstanceRequirements, you can't specify InstanceType.

", + "LaunchTemplateOverrides$InstanceRequirements": "

The instance requirements. When you specify instance requirements, Amazon EC2 will identify instance types with the provided requirements, and then use your On-Demand and Spot allocation strategies to launch instances from these instance types, in the same way as when you specify a list of instance types.

If you specify InstanceRequirements, you can't specify InstanceType.

", "ResponseLaunchTemplateData$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.

If you specify InstanceRequirements, you can't specify InstanceTypes.

", - "SpotFleetLaunchSpecification$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with those attributes.

If you specify InstanceRequirements, you can't specify InstanceTypes.

" + "SpotFleetLaunchSpecification$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with those attributes.

If you specify InstanceRequirements, you can't specify InstanceType.

" } }, "InstanceRequirementsRequest": { - "base": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.

When you specify multiple parameters, you get instance types that satisfy all of the specified parameters. If you specify multiple values for a parameter, you get instance types that satisfy any of the specified values.

You must specify VCpuCount and MemoryMiB. All other parameters are optional. Any unspecified optional parameter is set to its default.

For more information, see Attribute-based instance type selection for EC2 Fleet, Attribute-based instance type selection for Spot Fleet, and Spot placement score in the Amazon EC2 User Guide.

", + "base": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.

When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.

You must specify VCpuCount and MemoryMiB. All other attributes are optional. Any unspecified optional attribute is set to its default.

For more information, see Attribute-based instance type selection for EC2 Fleet, Attribute-based instance type selection for Spot Fleet, and Spot placement score in the Amazon EC2 User Guide.

", "refs": { - "FleetLaunchTemplateOverridesRequest$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with those attributes.

If you specify InstanceRequirements, you can't specify InstanceTypes.

", + "FleetLaunchTemplateOverridesRequest$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with those attributes.

If you specify InstanceRequirements, you can't specify InstanceType.

", "GetInstanceTypesFromInstanceRequirementsRequest$InstanceRequirements": "

The attributes required for the instance types.

", "InstanceRequirementsWithMetadataRequest$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with those attributes.

", - "RequestLaunchTemplateData$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.

If you specify InstanceRequirements, you can't specify InstanceTypes.

" + "RequestLaunchTemplateData$InstanceRequirements": "

The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.

If you specify InstanceRequirements, you can't specify InstanceType.

" } }, "InstanceRequirementsWithMetadataRequest": { @@ -10450,8 +10468,8 @@ "DescribeFleetsInstances$InstanceType": "

The instance type.

", "DescribeReservedInstancesOfferingsRequest$InstanceType": "

The instance type that the reservation will cover (for example, m1.small). For more information, see Instance types in the Amazon EC2 User Guide.

", "FleetCapacityReservation$InstanceType": "

The instance type for which the Capacity Reservation reserves capacity.

", - "FleetLaunchTemplateOverrides$InstanceType": "

The instance type.

If you specify InstanceTypes, you can't specify InstanceRequirements.

", - "FleetLaunchTemplateOverridesRequest$InstanceType": "

The instance type.

If you specify InstanceTypes, you can't specify InstanceRequirements.

", + "FleetLaunchTemplateOverrides$InstanceType": "

The instance type.

If you specify InstanceType, you can't specify InstanceRequirements.

", + "FleetLaunchTemplateOverridesRequest$InstanceType": "

The instance type.

If you specify InstanceType, you can't specify InstanceRequirements.

", "ImportInstanceLaunchSpecification$InstanceType": "

The instance type. For more information about the instance types that you can import, see Instance Types in the VM Import/Export User Guide.

", "Instance$InstanceType": "

The instance type.

", "InstanceTypeInfo$InstanceType": "

The instance type. For more information, see Instance types in the Amazon EC2 User Guide.

", @@ -10570,6 +10588,7 @@ "BaselineEbsBandwidthMbps$Max": "

The maximum baseline bandwidth, in Mbps. If this parameter is not specified, there is no maximum limit.

", "BaselineEbsBandwidthMbpsRequest$Min": "

The minimum baseline bandwidth, in Mbps. To specify no minimum limit, omit this parameter.

", "BaselineEbsBandwidthMbpsRequest$Max": "

The maximum baseline bandwidth, in Mbps. To specify no maximum limit, omit this parameter.

", + "CapacityAllocation$Count": "

The amount of instance capacity associated with the usage. For example a value of 4 indicates that instance capacity for 4 instances is currently in use.

", "CapacityReservation$TotalInstanceCount": "

The total number of instances for which the Capacity Reservation reserves capacity.

", "CapacityReservation$AvailableInstanceCount": "

The remaining capacity. Indicates the number of instances that can be launched in the Capacity Reservation.

", "CapacityReservationFleet$TotalTargetCapacity": "

The total number of capacity units for which the Capacity Reservation Fleet reserves capacity. For more information, see Total target capacity in the Amazon EC2 User Guide.

", @@ -11648,7 +11667,7 @@ } }, "LaunchSpecification": { - "base": "

Describes the launch specification for an instance.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide for Linux Instances.

", + "base": "

Describes the launch specification for an instance.

", "refs": { "SpotInstanceRequest$LaunchSpecification": "

Additional information for launching instances.

" } @@ -15211,7 +15230,7 @@ } }, "Reservation": { - "base": "

Describes a launch request for one or more instances, and includes owner, requester, and security group information that applies to all instances in the launch request.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide.

", + "base": "

Describes a launch request for one or more instances, and includes owner, requester, and security group information that applies to all instances in the launch request.

", "refs": { "ReservationList$member": null } @@ -15297,7 +15316,7 @@ } }, "ReservedInstancesConfiguration": { - "base": "

Describes the configuration settings for the modified Reserved Instances.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "base": "

Describes the configuration settings for the modified Reserved Instances.

", "refs": { "ReservedInstancesConfigurationList$member": null, "ReservedInstancesModificationResult$TargetConfiguration": "

The target Reserved Instances configurations supplied as part of the modification request.

" @@ -15540,7 +15559,7 @@ "refs": { "LaunchTemplateTagSpecification$ResourceType": "

The type of resource to tag.

", "LaunchTemplateTagSpecificationRequest$ResourceType": "

The type of resource to tag.

The Valid Values are all the resource types that can be tagged. However, when creating a launch template, you can specify tags for the following resource types only: instance | volume | elastic-gpu | network-interface | spot-instances-request

To tag a resource after it has been created, see CreateTags.

", - "SpotFleetTagSpecification$ResourceType": "

The type of resource. Currently, the only resource type that is supported is instance. To tag the Spot Fleet request on creation, use the TagSpecifications parameter in SpotFleetRequestConfigData .

", + "SpotFleetTagSpecification$ResourceType": "

The type of resource. Currently, the only resource type that is supported is instance. To tag the Spot Fleet request on creation, use the TagSpecifications parameter in SpotFleetRequestConfigData .

", "TagDescription$ResourceType": "

The resource type.

", "TagSpecification$ResourceType": "

The type of resource to tag on creation.

" } @@ -15838,14 +15857,14 @@ } }, "ScheduledInstance": { - "base": "

Describes a Scheduled Instance.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "base": "

Describes a Scheduled Instance.

", "refs": { "PurchasedScheduledInstanceSet$member": null, "ScheduledInstanceSet$member": null } }, "ScheduledInstanceAvailability": { - "base": "

Describes a schedule that is available for your Scheduled Instances.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide.

", + "base": "

Describes a schedule that is available for your Scheduled Instances.

", "refs": { "ScheduledInstanceAvailabilitySet$member": null } @@ -16354,8 +16373,8 @@ "SpotAllocationStrategy": { "base": null, "refs": { - "SpotOptions$AllocationStrategy": "

The strategy that determines how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the EC2 Fleet.

lowest-price - EC2 Fleet launches instances from the Spot Instance pools with the lowest price.

diversified - EC2 Fleet launches instances from all of the Spot Instance pools that you specify.

capacity-optimized (recommended) - EC2 Fleet launches instances from Spot Instance pools with optimal capacity for the number of instances that are launching. To give certain instance types a higher chance of launching first, use capacity-optimized-prioritized. Set a priority for each instance type by using the Priority parameter for LaunchTemplateOverrides. You can assign the same priority to different LaunchTemplateOverrides. EC2 implements the priorities on a best-effort basis, but optimizes for capacity first. capacity-optimized-prioritized is supported only if your fleet uses a launch template. Note that if the On-Demand AllocationStrategy is set to prioritized, the same priority is applied when fulfilling On-Demand capacity.

Default: lowest-price

", - "SpotOptionsRequest$AllocationStrategy": "

The strategy that determines how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the EC2 Fleet.

lowest-price - EC2 Fleet launches instances from the Spot Instance pools with the lowest price.

diversified - EC2 Fleet launches instances from all of the Spot Instance pools that you specify.

capacity-optimized (recommended) - EC2 Fleet launches instances from Spot Instance pools with optimal capacity for the number of instances that are launching. To give certain instance types a higher chance of launching first, use capacity-optimized-prioritized. Set a priority for each instance type by using the Priority parameter for LaunchTemplateOverrides. You can assign the same priority to different LaunchTemplateOverrides. EC2 implements the priorities on a best-effort basis, but optimizes for capacity first. capacity-optimized-prioritized is supported only if your fleet uses a launch template. Note that if the On-Demand AllocationStrategy is set to prioritized, the same priority is applied when fulfilling On-Demand capacity.

Default: lowest-price

" + "SpotOptions$AllocationStrategy": "

The strategy that determines how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the EC2 Fleet launch configuration. For more information, see Allocation strategies for Spot Instances in the Amazon EC2 User Guide.

lowest-price - EC2 Fleet launches instances from the lowest-price Spot Instance pool that has available capacity. If the cheapest pool doesn't have available capacity, the Spot Instances come from the next cheapest pool that has available capacity. If a pool runs out of capacity before fulfilling your desired capacity, EC2 Fleet will continue to fulfill your request by drawing from the next cheapest pool. To ensure that your desired capacity is met, you might receive Spot Instances from several pools.

diversified - EC2 Fleet launches instances from all of the Spot Instance pools that you specify.

capacity-optimized (recommended) - EC2 Fleet launches instances from Spot Instance pools with optimal capacity for the number of instances that are launching. To give certain instance types a higher chance of launching first, use capacity-optimized-prioritized. Set a priority for each instance type by using the Priority parameter for LaunchTemplateOverrides. You can assign the same priority to different LaunchTemplateOverrides. EC2 implements the priorities on a best-effort basis, but optimizes for capacity first. capacity-optimized-prioritized is supported only if your fleet uses a launch template. Note that if the On-Demand AllocationStrategy is set to prioritized, the same priority is applied when fulfilling On-Demand capacity.

Default: lowest-price

", + "SpotOptionsRequest$AllocationStrategy": "

The strategy that determines how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the EC2 Fleet launch configuration. For more information, see Allocation strategies for Spot Instances in the Amazon EC2 User Guide.

lowest-price - EC2 Fleet launches instances from the lowest-price Spot Instance pool that has available capacity. If the cheapest pool doesn't have available capacity, the Spot Instances come from the next cheapest pool that has available capacity. If a pool runs out of capacity before fulfilling your desired capacity, EC2 Fleet will continue to fulfill your request by drawing from the next cheapest pool. To ensure that your desired capacity is met, you might receive Spot Instances from several pools.

diversified - EC2 Fleet launches instances from all of the Spot Instance pools that you specify.

capacity-optimized (recommended) - EC2 Fleet launches instances from Spot Instance pools with optimal capacity for the number of instances that are launching. To give certain instance types a higher chance of launching first, use capacity-optimized-prioritized. Set a priority for each instance type by using the Priority parameter for LaunchTemplateOverrides. You can assign the same priority to different LaunchTemplateOverrides. EC2 implements the priorities on a best-effort basis, but optimizes for capacity first. capacity-optimized-prioritized is supported only if your fleet uses a launch template. Note that if the On-Demand AllocationStrategy is set to prioritized, the same priority is applied when fulfilling On-Demand capacity.

Default: lowest-price

" } }, "SpotCapacityRebalance": { @@ -16372,7 +16391,7 @@ } }, "SpotFleetLaunchSpecification": { - "base": "

Describes the launch specification for one or more Spot Instances. If you include On-Demand capacity in your fleet request or want to specify an EFA network device, you can't use SpotFleetLaunchSpecification; you must use LaunchTemplateConfig.

We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon EC2 User Guide for Linux Instances.

", + "base": "

Describes the launch specification for one or more Spot Instances. If you include On-Demand capacity in your fleet request or want to specify an EFA network device, you can't use SpotFleetLaunchSpecification; you must use LaunchTemplateConfig.

", "refs": { "LaunchSpecsList$member": null } @@ -18978,7 +18997,7 @@ "PurchaseHostReservationRequest$TagSpecifications": "

The tags to apply to the Dedicated Host Reservation during purchase.

", "RequestSpotInstancesRequest$TagSpecifications": "

The key-value pair for tagging the Spot Instance request on creation. The value for ResourceType must be spot-instances-request, otherwise the Spot Instance request fails. To tag the Spot Instance request after it has been created, see CreateTags.

", "RunInstancesRequest$TagSpecifications": "

The tags to apply to the resources that are created during instance launch.

You can specify tags for the following resources only:

To tag a resource after it has been created, see CreateTags.

", - "SpotFleetRequestConfigData$TagSpecifications": "

The key-value pair for tagging the Spot Fleet request on creation. The value for ResourceType must be spot-fleet-request, otherwise the Spot Fleet request fails. To tag instances at launch, specify the tags in the launch template (valid only if you use LaunchTemplateConfigs) or in the SpotFleetTagSpecification (valid only if you use LaunchSpecifications). For information about tagging after launch, see Tagging Your Resources.

", + "SpotFleetRequestConfigData$TagSpecifications": "

The key-value pair for tagging the Spot Fleet request on creation. The value for ResourceType must be spot-fleet-request, otherwise the Spot Fleet request fails. To tag instances at launch, specify the tags in the launch template (valid only if you use LaunchTemplateConfigs) or in the SpotFleetTagSpecification (valid only if you use LaunchSpecifications). For information about tagging after launch, see Tagging Your Resources.

", "StartNetworkInsightsAccessScopeAnalysisRequest$TagSpecifications": "

The tags to apply.

", "StartNetworkInsightsAnalysisRequest$TagSpecifications": "

The tags to apply.

" } diff --git a/models/apis/mediaconnect/2018-11-14/api-2.json b/models/apis/mediaconnect/2018-11-14/api-2.json index 0e888b45c65..8e27d88fce8 100644 --- a/models/apis/mediaconnect/2018-11-14/api-2.json +++ b/models/apis/mediaconnect/2018-11-14/api-2.json @@ -2551,6 +2551,7 @@ "st2110-jpegxs", "cdi", "srt-listener", + "srt-caller", "fujitsu-qos" ] }, @@ -2953,6 +2954,14 @@ "shape": "__string", "locationName": "senderIpAddress" }, + "SourceListenerAddress": { + "shape": "__string", + "locationName": "sourceListenerAddress" + }, + "SourceListenerPort": { + "shape": "__integer", + "locationName": "sourceListenerPort" + }, "StreamId": { "shape": "__string", "locationName": "streamId" @@ -3210,6 +3219,14 @@ "shape": "__integer", "locationName": "smoothingLatency" }, + "SourceListenerAddress": { + "shape": "__string", + "locationName": "sourceListenerAddress" + }, + "SourceListenerPort": { + "shape": "__integer", + "locationName": "sourceListenerPort" + }, "StreamId": { "shape": "__string", "locationName": "streamId" @@ -3584,6 +3601,14 @@ "location": "uri", "locationName": "sourceArn" }, + "SourceListenerAddress": { + "shape": "__string", + "locationName": "sourceListenerAddress" + }, + "SourceListenerPort": { + "shape": "__integer", + "locationName": "sourceListenerPort" + }, "StreamId": { "shape": "__string", "locationName": "streamId" diff --git a/models/apis/mediaconnect/2018-11-14/docs-2.json b/models/apis/mediaconnect/2018-11-14/docs-2.json index eb1fa826b55..8b56a4d9fec 100644 --- a/models/apis/mediaconnect/2018-11-14/docs-2.json +++ b/models/apis/mediaconnect/2018-11-14/docs-2.json @@ -712,17 +712,21 @@ "SetSourceRequest$IngestPort": "The port that the flow will be listening on for incoming content.", "SetSourceRequest$MaxSyncBuffer": "The size of the buffer (in milliseconds) to use to sync incoming source data.", "SetSourceRequest$SenderControlPort": "The port that the flow uses to send outbound requests to initiate connection with the sender.", + "SetSourceRequest$SourceListenerPort": "Source port for SRT-caller protocol.", "Source$DataTransferSubscriberFeePercent": "Percentage from 0-100 of the data transfer cost to be billed to the subscriber.", "Source$IngestPort": "The port that the flow will be listening on for incoming content.", "Source$SenderControlPort": "The port that the flow uses to send outbound requests to initiate connection with the sender.", "Transport$MaxSyncBuffer": "The size of the buffer (in milliseconds) to use to sync incoming source data.", "Transport$SenderControlPort": "The port that the flow uses to send outbound requests to initiate connection with the sender.", + "Transport$SourceListenerPort": "Source port for SRT-caller protocol.", "UpdateFailoverConfig$RecoveryWindow": "Recovery window time to look for dash-7 packets", "UpdateFlowMediaStreamRequest$ClockRate": "The sample rate (in Hz) for the stream. If the media stream type is video or ancillary data, set this value to 90000. If the media stream type is audio, set this value to either 48000 or 96000.", "UpdateFlowOutputRequest$Port": "The port to use when content is distributed to this output.", "UpdateFlowOutputRequest$SenderControlPort": "The port that the flow uses to send outbound requests to initiate connection with the sender.", "UpdateFlowSourceRequest$IngestPort": "The port that the flow will be listening on for incoming content.", "UpdateFlowSourceRequest$MaxSyncBuffer": "The size of the buffer (in milliseconds) to use to sync incoming source data.", + "UpdateFlowSourceRequest$SenderControlPort": "The port that the flow uses to send outbound requests to initiate connection with the sender.", + "UpdateFlowSourceRequest$SourceListenerPort": "Source port for SRT-caller protocol.", "AddOutputRequest$MaxLatency": "The maximum latency in milliseconds. This parameter applies only to RIST-based, Zixi-based, and Fujitsu-based streams.", "AddOutputRequest$MinLatency": "The minimum latency in milliseconds for SRT-based streams. In streams that use the SRT protocol, this value that you set on your MediaConnect source or output represents the minimal potential latency of that connection. The latency of the stream is set to the highest number between the sender\u2019s minimum latency and the receiver\u2019s minimum latency.", "AddOutputRequest$SmoothingLatency": "The smoothing latency in milliseconds for RIST, RTP, and RTP-FEC streams.", @@ -733,7 +737,7 @@ "Transport$MaxLatency": "The maximum latency in milliseconds. This parameter applies only to RIST-based, Zixi-based, and Fujitsu-based streams.", "Transport$MinLatency": "The minimum latency in milliseconds for SRT-based streams. In streams that use the SRT protocol, this value that you set on your MediaConnect source or output represents the minimal potential latency of that connection. The latency of the stream is set to the highest number between the sender\u2019s minimum latency and the receiver\u2019s minimum latency.", "Transport$SmoothingLatency": "The smoothing latency in milliseconds for RIST, RTP, and RTP-FEC streams.", - "UpdateFlowOutputRequest$MaxLatency": "The maximum latency in milliseconds for Zixi-based streams.", + "UpdateFlowOutputRequest$MaxLatency": "The maximum latency in milliseconds. This parameter applies only to RIST-based, Zixi-based, and Fujitsu-based streams.", "UpdateFlowOutputRequest$MinLatency": "The minimum latency in milliseconds for SRT-based streams. In streams that use the SRT protocol, this value that you set on your MediaConnect source or output represents the minimal potential latency of that connection. The latency of the stream is set to the highest number between the sender\u2019s minimum latency and the receiver\u2019s minimum latency.", "UpdateFlowOutputRequest$SmoothingLatency": "The smoothing latency in milliseconds for RIST, RTP, and RTP-FEC streams.", "UpdateFlowSourceRequest$MaxBitrate": "The smoothing max bitrate for RIST, RTP, and RTP-FEC streams.", @@ -1020,6 +1024,7 @@ "SetSourceRequest$EntitlementArn": "The ARN of the entitlement that allows you to subscribe to this flow. The entitlement is set by the flow originator, and the ARN is generated as part of the originator's flow.", "SetSourceRequest$Name": "The name of the source.", "SetSourceRequest$SenderIpAddress": "The IP address that the flow communicates with to initiate connection with the sender.", + "SetSourceRequest$SourceListenerAddress": "Source IP or domain name for SRT-caller protocol.", "SetSourceRequest$StreamId": "The stream ID that you want to use for this transport. This parameter applies only to Zixi-based streams.", "SetSourceRequest$VpcInterfaceName": "The name of the VPC interface to use for this source.", "SetSourceRequest$WhitelistCidr": "The range of IP addresses that should be allowed to contribute content to your source. These IP addresses should be in the form of a Classless Inter-Domain Routing (CIDR) block; for example, 10.0.0.0/16.", @@ -1036,6 +1041,7 @@ "StopFlowResponse$FlowArn": "The ARN of the flow that you stopped.", "Transport$RemoteId": "The remote ID for the Zixi-pull stream.", "Transport$SenderIpAddress": "The IP address that the flow communicates with to initiate connection with the sender.", + "Transport$SourceListenerAddress": "Source IP or domain name for SRT-caller protocol.", "Transport$StreamId": "The stream ID that you want to use for this transport. This parameter applies only to Zixi-based streams.", "UpdateEncryption$ConstantInitializationVector": "A 128-bit, 16-byte hex value represented by a 32-character string, to be used with the key for encrypting content. This parameter is not valid for static key encryption.", "UpdateEncryption$DeviceId": "The value of one of the devices that you configured with your digital rights management (DRM) platform key provider. This parameter is required for SPEKE encryption and is not valid for static key encryption.", @@ -1058,6 +1064,7 @@ "UpdateFlowSourceRequest$Description": "A description for the source. This value is not used or seen outside of the current AWS Elemental MediaConnect account.", "UpdateFlowSourceRequest$EntitlementArn": "The ARN of the entitlement that allows you to subscribe to this flow. The entitlement is set by the flow originator, and the ARN is generated as part of the originator's flow.", "UpdateFlowSourceRequest$SenderIpAddress": "The IP address that the flow communicates with to initiate connection with the sender.", + "UpdateFlowSourceRequest$SourceListenerAddress": "Source IP or domain name for SRT-caller protocol.", "UpdateFlowSourceRequest$StreamId": "The stream ID that you want to use for this transport. This parameter applies only to Zixi-based streams.", "UpdateFlowSourceRequest$VpcInterfaceName": "The name of the VPC interface to use for this source.", "UpdateFlowSourceRequest$WhitelistCidr": "The range of IP addresses that should be allowed to contribute content to your source. These IP addresses should be in the form of a Classless Inter-Domain Routing (CIDR) block; for example, 10.0.0.0/16.", diff --git a/models/apis/rds/2014-10-31/api-2.json b/models/apis/rds/2014-10-31/api-2.json index 22207c5b323..886728cc3c9 100644 --- a/models/apis/rds/2014-10-31/api-2.json +++ b/models/apis/rds/2014-10-31/api-2.json @@ -5528,7 +5528,8 @@ "type":"string", "enum":[ "MYSQL", - "POSTGRESQL" + "POSTGRESQL", + "SQLSERVER" ] }, "EngineModeList":{ @@ -5853,7 +5854,8 @@ "type":"string", "enum":[ "DISABLED", - "REQUIRED" + "REQUIRED", + "ENABLED" ] }, "IPRange":{ diff --git a/models/apis/rds/2014-10-31/docs-2.json b/models/apis/rds/2014-10-31/docs-2.json index da382bf19e6..54b47a76248 100644 --- a/models/apis/rds/2014-10-31/docs-2.json +++ b/models/apis/rds/2014-10-31/docs-2.json @@ -84,7 +84,7 @@ "DescribePendingMaintenanceActions": "

Returns a list of resources (for example, DB instances) that have at least one pending maintenance action.

", "DescribeReservedDBInstances": "

Returns information about reserved DB instances for this account, or about a specified reserved DB instance.

", "DescribeReservedDBInstancesOfferings": "

Lists available reserved DB instance offerings.

", - "DescribeSourceRegions": "

Returns a list of the source Amazon Web Services Regions where the current Amazon Web Services Region can create a read replica, copy a DB snapshot from, or replicate automated backups from. This API action supports pagination.

", + "DescribeSourceRegions": "

Returns a list of the source Amazon Web Services Regions where the current Amazon Web Services Region can create a read replica, copy a DB snapshot from, or replicate automated backups from.

Use this operation to determine whether cross-Region features are supported between other Regions and your current Region. This operation supports pagination.

To return information about the Regions that are enabled for your account, or all Regions, use the EC2 operation DescribeRegions. For more information, see DescribeRegions in the Amazon EC2 API Reference.

", "DescribeValidDBInstanceModifications": "

You can call DescribeValidDBInstanceModifications to learn what modifications you can make to your DB instance. You can use this information when you call ModifyDBInstance.

This command doesn't apply to RDS Custom.

", "DownloadDBLogFilePortion": "

Downloads all or a portion of the specified log file, up to 1 MB in size.

This command doesn't apply to RDS Custom.

", "FailoverDBCluster": "

Forces a failover for a DB cluster.

For an Aurora DB cluster, failover for a DB cluster promotes one of the Aurora Replicas (read-only instances) in the DB cluster to be the primary DB instance (the cluster writer).

For a Multi-AZ DB cluster, failover for a DB cluster promotes one of the readable standby DB instances (read-only instances) in the DB cluster to be the primary DB instance (the cluster writer).

An Amazon Aurora DB cluster automatically fails over to an Aurora Replica, if one exists, when the primary DB instance fails. A Multi-AZ DB cluster automatically fails over to a readable standby DB instance when the primary DB instance fails.

To simulate a failure of a primary instance for testing, you can force a failover. Because each instance in a DB cluster has its own endpoint address, make sure to clean up and re-establish any existing connections that use those endpoint addresses when the failover is complete.

For more information on Amazon Aurora DB clusters, see What is Amazon Aurora? in the Amazon Aurora User Guide.

For more information on Multi-AZ DB clusters, see Multi-AZ deployments with two readable standby DB instances in the Amazon RDS User Guide.

", @@ -1381,7 +1381,7 @@ "DBProxyEndpointTargetRole": { "base": null, "refs": { - "CreateDBProxyEndpointRequest$TargetRole": "

A value that indicates whether the DB proxy endpoint can be used for read/write or read-only operations. The default is READ_WRITE.

", + "CreateDBProxyEndpointRequest$TargetRole": "

A value that indicates whether the DB proxy endpoint can be used for read/write or read-only operations. The default is READ_WRITE. The only role that proxies for RDS for Microsoft SQL Server support is READ_WRITE.

", "DBProxyEndpoint$TargetRole": "

A value that indicates whether the DB proxy endpoint can be used for read/write or read-only operations.

" } }, @@ -2095,7 +2095,7 @@ "EngineFamily": { "base": null, "refs": { - "CreateDBProxyRequest$EngineFamily": "

The kinds of databases that the proxy can connect to. This value determines which database network protocol the proxy recognizes when it interprets network traffic to and from the database. For Aurora MySQL, RDS for MariaDB, and RDS for MySQL databases, specify MYSQL. For Aurora PostgreSQL and RDS for PostgreSQL databases, specify POSTGRESQL.

" + "CreateDBProxyRequest$EngineFamily": "

The kinds of databases that the proxy can connect to. This value determines which database network protocol the proxy recognizes when it interprets network traffic to and from the database. For Aurora MySQL, RDS for MariaDB, and RDS for MySQL databases, specify MYSQL. For Aurora PostgreSQL and RDS for PostgreSQL databases, specify POSTGRESQL. For RDS for Microsoft SQL Server, specify SQLSERVER.

" } }, "EngineModeList": { @@ -2354,8 +2354,8 @@ "IAMAuthMode": { "base": null, "refs": { - "UserAuthConfig$IAMAuth": "

Whether to require or disallow Amazon Web Services Identity and Access Management (IAM) authentication for connections to the proxy.

", - "UserAuthConfigInfo$IAMAuth": "

Whether to require or disallow Amazon Web Services Identity and Access Management (IAM) authentication for connections to the proxy.

" + "UserAuthConfig$IAMAuth": "

Whether to require or disallow Amazon Web Services Identity and Access Management (IAM) authentication for connections to the proxy. The ENABLED value is valid only for proxies with RDS for Microsoft SQL Server.

", + "UserAuthConfigInfo$IAMAuth": "

Whether to require or disallow Amazon Web Services Identity and Access Management (IAM) authentication for connections to the proxy. The ENABLED value is valid only for proxies with RDS for Microsoft SQL Server.

" } }, "IPRange": { @@ -2438,8 +2438,8 @@ "IntegerOptional": { "base": null, "refs": { - "ConnectionPoolConfiguration$MaxConnectionsPercent": "

The maximum size of the connection pool for each target in a target group. The value is expressed as a percentage of the max_connections setting for the RDS DB instance or Aurora DB cluster used by the target group.

Default: 100

Constraints: between 1 and 100

", - "ConnectionPoolConfiguration$MaxIdleConnectionsPercent": "

Controls how actively the proxy closes idle database connections in the connection pool. The value is expressed as a percentage of the max_connections setting for the RDS DB instance or Aurora DB cluster used by the target group. With a high value, the proxy leaves a high percentage of idle database connections open. A low value causes the proxy to close more idle connections and return them to the database.

Default: 50

Constraints: between 0 and MaxConnectionsPercent

", + "ConnectionPoolConfiguration$MaxConnectionsPercent": "

The maximum size of the connection pool for each target in a target group. The value is expressed as a percentage of the max_connections setting for the RDS DB instance or Aurora DB cluster used by the target group.

Default: 10 for RDS for Microsoft SQL Server, and 100 for all other engines

Constraints: Must be between 1 and 100.

", + "ConnectionPoolConfiguration$MaxIdleConnectionsPercent": "

Controls how actively the proxy closes idle database connections in the connection pool. The value is expressed as a percentage of the max_connections setting for the RDS DB instance or Aurora DB cluster used by the target group. With a high value, the proxy leaves a high percentage of idle database connections open. A low value causes the proxy to close more idle connections and return them to the database.

Default: The default value is half of the value of MaxConnectionsPercent. For example, if MaxConnectionsPercent is 80, then the default value of MaxIdleConnectionsPercent is 40. If the value of MaxConnectionsPercent isn't specified, then for SQL Server, MaxIdleConnectionsPercent is 5, and for all other engines, the default is 50.

Constraints: Must be between 0 and the value of MaxConnectionsPercent.

", "ConnectionPoolConfiguration$ConnectionBorrowTimeout": "

The number of seconds for a proxy to wait for a connection to become available in the connection pool. Only applies when the proxy has opened its maximum number of connections and all connections are busy with client sessions.

Default: 120

Constraints: between 1 and 3600, or 0 representing unlimited

", "CreateDBClusterMessage$BackupRetentionPeriod": "

The number of days for which automated backups are retained.

Default: 1

Constraints:

Valid for: Aurora DB clusters and Multi-AZ DB clusters

", "CreateDBClusterMessage$Port": "

The port number on which the instances in the DB cluster accept connections.

RDS for MySQL and Aurora MySQL

Default: 3306

Valid values: 1150-65535

RDS for PostgreSQL and Aurora PostgreSQL

Default: 5432

Valid values: 1150-65535

Valid for: Aurora DB clusters and Multi-AZ DB clusters

", @@ -3785,7 +3785,7 @@ "CreateDBClusterMessage$GlobalClusterIdentifier": "

The global cluster ID of an Aurora cluster that becomes the primary cluster in the new global database cluster.

Valid for: Aurora DB clusters only

", "CreateDBClusterMessage$Domain": "

The Active Directory directory ID to create the DB cluster in.

For Amazon Aurora DB clusters, Amazon RDS can use Kerberos authentication to authenticate users that connect to the DB cluster.

For more information, see Kerberos authentication in the Amazon Aurora User Guide.

Valid for: Aurora DB clusters only

", "CreateDBClusterMessage$DomainIAMRoleName": "

Specify the name of the IAM role to be used when making API calls to the Directory Service.

Valid for: Aurora DB clusters only

", - "CreateDBClusterMessage$DBClusterInstanceClass": "

The compute and memory capacity of each DB instance in the Multi-AZ DB cluster, for example db.m6g.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes and availability for your engine, see DB instance class in the Amazon RDS User Guide.

This setting is required to create a Multi-AZ DB cluster.

Valid for: Multi-AZ DB clusters only

", + "CreateDBClusterMessage$DBClusterInstanceClass": "

The compute and memory capacity of each DB instance in the Multi-AZ DB cluster, for example db.m6gd.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes and availability for your engine, see DB instance class in the Amazon RDS User Guide.

This setting is required to create a Multi-AZ DB cluster.

Valid for: Multi-AZ DB clusters only

", "CreateDBClusterMessage$StorageType": "

Specifies the storage type to be associated with the DB cluster.

This setting is required to create a Multi-AZ DB cluster.

Valid values: io1

When specified, a value for the Iops parameter is required.

Default: io1

Valid for: Multi-AZ DB clusters only

", "CreateDBClusterMessage$MonitoringRoleArn": "

The Amazon Resource Name (ARN) for the IAM role that permits RDS to send Enhanced Monitoring metrics to Amazon CloudWatch Logs. An example is arn:aws:iam:123456789012:role/emaccess. For information on creating a monitoring role, see Setting up and enabling Enhanced Monitoring in the Amazon RDS User Guide.

If MonitoringInterval is set to a value other than 0, supply a MonitoringRoleArn value.

Valid for: Multi-AZ DB clusters only

", "CreateDBClusterMessage$PerformanceInsightsKMSKeyId": "

The Amazon Web Services KMS key identifier for encryption of Performance Insights data.

The Amazon Web Services KMS key identifier is the key ARN, key ID, alias ARN, or alias name for the KMS key.

If you don't specify a value for PerformanceInsightsKMSKeyId, then Amazon RDS uses your default KMS key. There is a default KMS key for your Amazon Web Services account. Your Amazon Web Services account has a different default KMS key for each Amazon Web Services Region.

Valid for: Multi-AZ DB clusters only

", @@ -3795,7 +3795,7 @@ "CreateDBClusterParameterGroupMessage$Description": "

The description for the DB cluster parameter group.

", "CreateDBClusterSnapshotMessage$DBClusterSnapshotIdentifier": "

The identifier of the DB cluster snapshot. This parameter is stored as a lowercase string.

Constraints:

Example: my-cluster1-snapshot1

", "CreateDBClusterSnapshotMessage$DBClusterIdentifier": "

The identifier of the DB cluster to create a snapshot for. This parameter isn't case-sensitive.

Constraints:

Example: my-cluster1

", - "CreateDBInstanceMessage$DBName": "

The meaning of this parameter differs according to the database engine you use.

MySQL

The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.

Constraints:

MariaDB

The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.

Constraints:

PostgreSQL

The name of the database to create when the DB instance is created. If this parameter isn't specified, a database named postgres is created in the DB instance.

Constraints:

Oracle

The Oracle System ID (SID) of the created DB instance. If you specify null, the default value ORCL is used. You can't specify the string NULL, or any other reserved word, for DBName.

Default: ORCL

Constraints:

Amazon RDS Custom for Oracle

The Oracle System ID (SID) of the created RDS Custom DB instance. If you don't specify a value, the default value is ORCL.

Default: ORCL

Constraints:

Amazon RDS Custom for SQL Server

Not applicable. Must be null.

SQL Server

Not applicable. Must be null.

Amazon Aurora MySQL

The name of the database to create when the primary DB instance of the Aurora MySQL DB cluster is created. If this parameter isn't specified for an Aurora MySQL DB cluster, no database is created in the DB cluster.

Constraints:

Amazon Aurora PostgreSQL

The name of the database to create when the primary DB instance of the Aurora PostgreSQL DB cluster is created. If this parameter isn't specified for an Aurora PostgreSQL DB cluster, a database named postgres is created in the DB cluster.

Constraints:

", + "CreateDBInstanceMessage$DBName": "

The meaning of this parameter differs according to the database engine you use.

MySQL

The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.

Constraints:

MariaDB

The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.

Constraints:

PostgreSQL

The name of the database to create when the DB instance is created. If this parameter isn't specified, a database named postgres is created in the DB instance.

Constraints:

Oracle

The Oracle System ID (SID) of the created DB instance. If you specify null, the default value ORCL is used. You can't specify the string NULL, or any other reserved word, for DBName.

Default: ORCL

Constraints:

Amazon RDS Custom for Oracle

The Oracle System ID (SID) of the created RDS Custom DB instance. If you don't specify a value, the default value is ORCL.

Default: ORCL

Constraints:

Amazon RDS Custom for SQL Server

Not applicable. Must be null.

SQL Server

Not applicable. Must be null.

Amazon Aurora MySQL

The name of the database to create when the primary DB instance of the Aurora MySQL DB cluster is created. If this parameter isn't specified for an Aurora MySQL DB cluster, no database is created in the DB cluster.

Constraints:

Amazon Aurora PostgreSQL

The name of the database to create when the primary DB instance of the Aurora PostgreSQL DB cluster is created. If this parameter isn't specified for an Aurora PostgreSQL DB cluster, a database named postgres is created in the DB cluster.

Constraints:

", "CreateDBInstanceMessage$DBInstanceIdentifier": "

The DB instance identifier. This parameter is stored as a lowercase string.

Constraints:

Example: mydbinstance

", "CreateDBInstanceMessage$DBInstanceClass": "

The compute and memory capacity of the DB instance, for example db.m5.large. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines. For the full list of DB instance classes, and availability for your engine, see DB instance classes in the Amazon RDS User Guide or Aurora DB instance classes in the Amazon Aurora User Guide.

", "CreateDBInstanceMessage$Engine": "

The name of the database engine to be used for this instance.

Not every database engine is available for every Amazon Web Services Region.

Valid Values:

", @@ -3804,7 +3804,7 @@ "CreateDBInstanceMessage$AvailabilityZone": "

The Availability Zone (AZ) where the database will be created. For information on Amazon Web Services Regions and Availability Zones, see Regions and Availability Zones.

Amazon Aurora

Each Aurora DB cluster hosts copies of its storage in three separate Availability Zones. Specify one of these Availability Zones. Aurora automatically chooses an appropriate Availability Zone if you don't specify one.

Default: A random, system-chosen Availability Zone in the endpoint's Amazon Web Services Region.

Example: us-east-1d

Constraint: The AvailabilityZone parameter can't be specified if the DB instance is a Multi-AZ deployment. The specified Availability Zone must be in the same Amazon Web Services Region as the current endpoint.

", "CreateDBInstanceMessage$DBSubnetGroupName": "

A DB subnet group to associate with this DB instance.

Constraints: Must match the name of an existing DBSubnetGroup. Must not be default.

Example: mydbsubnetgroup

", "CreateDBInstanceMessage$PreferredMaintenanceWindow": "

The time range each week during which system maintenance can occur, in Universal Coordinated Time (UTC). For more information, see Amazon RDS Maintenance Window.

Format: ddd:hh24:mi-ddd:hh24:mi

The default is a 30-minute window selected at random from an 8-hour block of time for each Amazon Web Services Region, occurring on a random day of the week.

Valid Days: Mon, Tue, Wed, Thu, Fri, Sat, Sun.

Constraints: Minimum 30-minute window.

", - "CreateDBInstanceMessage$DBParameterGroupName": "

The name of the DB parameter group to associate with this DB instance. If you do not specify a value, then the default DB parameter group for the specified DB engine and version is used.

This setting doesn't apply to RDS Custom.

Constraints:

", + "CreateDBInstanceMessage$DBParameterGroupName": "

The name of the DB parameter group to associate with this DB instance. If you do not specify a value, then the default DB parameter group for the specified DB engine and version is used.

This setting doesn't apply to RDS Custom.

Constraints:

", "CreateDBInstanceMessage$PreferredBackupWindow": "

The daily time range during which automated backups are created if automated backups are enabled, using the BackupRetentionPeriod parameter. The default is a 30-minute window selected at random from an 8-hour block of time for each Amazon Web Services Region. For more information, see Backup window in the Amazon RDS User Guide.

Amazon Aurora

Not applicable. The daily time range for creating automated backups is managed by the DB cluster.

Constraints:

", "CreateDBInstanceMessage$EngineVersion": "

The version number of the database engine to use.

For a list of valid engine versions, use the DescribeDBEngineVersions operation.

The following are the database engines and links to information about the major and minor versions that are available with Amazon RDS. Not every database engine is available for every Amazon Web Services Region.

Amazon Aurora

Not applicable. The version number of the database engine to be used by the DB instance is managed by the DB cluster.

Amazon RDS Custom for Oracle

A custom engine version (CEV) that you have previously created. This setting is required for RDS Custom for Oracle. The CEV name has the following format: 19.customized_string . An example identifier is 19.my_cev1. For more information, see Creating an RDS Custom for Oracle DB instance in the Amazon RDS User Guide.

Amazon RDS Custom for SQL Server

See RDS Custom for SQL Server general requirements in the Amazon RDS User Guide.

MariaDB

For information, see MariaDB on Amazon RDS Versions in the Amazon RDS User Guide.

Microsoft SQL Server

For information, see Microsoft SQL Server Versions on Amazon RDS in the Amazon RDS User Guide.

MySQL

For information, see MySQL on Amazon RDS Versions in the Amazon RDS User Guide.

Oracle

For information, see Oracle Database Engine Release Notes in the Amazon RDS User Guide.

PostgreSQL

For information, see Amazon RDS for PostgreSQL versions and extensions in the Amazon RDS User Guide.

", "CreateDBInstanceMessage$LicenseModel": "

License model information for this DB instance.

Valid values: license-included | bring-your-own-license | general-public-license

This setting doesn't apply to RDS Custom.

Amazon Aurora

Not applicable.

", @@ -4019,7 +4019,7 @@ "DBParameterGroupsMessage$Marker": "

An optional pagination token provided by a previous request. If this parameter is specified, the response includes only records beyond the marker, up to the value specified by MaxRecords.

", "DBProxy$DBProxyName": "

The identifier for the proxy. This name must be unique for all proxies owned by your Amazon Web Services account in the specified Amazon Web Services Region.

", "DBProxy$DBProxyArn": "

The Amazon Resource Name (ARN) for the proxy.

", - "DBProxy$EngineFamily": "

The kinds of databases that the proxy can connect to. This value determines which database network protocol the proxy recognizes when it interprets network traffic to and from the database. MYSQL supports Aurora MySQL, RDS for MariaDB, and RDS for MySQL databases. POSTGRESQL supports Aurora PostgreSQL and RDS for PostgreSQL databases.

", + "DBProxy$EngineFamily": "

The kinds of databases that the proxy can connect to. This value determines which database network protocol the proxy recognizes when it interprets network traffic to and from the database. MYSQL supports Aurora MySQL, RDS for MariaDB, and RDS for MySQL databases. POSTGRESQL supports Aurora PostgreSQL and RDS for PostgreSQL databases. SQLSERVER supports RDS for Microsoft SQL Server databases.

", "DBProxy$VpcId": "

Provides the VPC ID of the DB proxy.

", "DBProxy$RoleArn": "

The Amazon Resource Name (ARN) for the IAM role that the proxy uses to access Amazon Secrets Manager.

", "DBProxy$Endpoint": "

The endpoint that you can use to connect to the DB proxy. You include the endpoint value in the connection string for a database client application.

", @@ -4286,7 +4286,7 @@ "ModifyDBClusterMessage$DBInstanceParameterGroupName": "

The name of the DB parameter group to apply to all instances of the DB cluster.

When you apply a parameter group using the DBInstanceParameterGroupName parameter, the DB cluster isn't rebooted automatically. Also, parameter changes are applied immediately rather than during the next maintenance window.

Default: The existing name setting

Constraints:

Valid for: Aurora DB clusters only

", "ModifyDBClusterMessage$Domain": "

The Active Directory directory ID to move the DB cluster to. Specify none to remove the cluster from its current domain. The domain must be created prior to this operation.

For more information, see Kerberos Authentication in the Amazon Aurora User Guide.

Valid for: Aurora DB clusters only

", "ModifyDBClusterMessage$DomainIAMRoleName": "

Specify the name of the IAM role to be used when making API calls to the Directory Service.

Valid for: Aurora DB clusters only

", - "ModifyDBClusterMessage$DBClusterInstanceClass": "

The compute and memory capacity of each DB instance in the Multi-AZ DB cluster, for example db.m6g.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes and availability for your engine, see DB Instance Class in the Amazon RDS User Guide.

Valid for: Multi-AZ DB clusters only

", + "ModifyDBClusterMessage$DBClusterInstanceClass": "

The compute and memory capacity of each DB instance in the Multi-AZ DB cluster, for example db.m6gd.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes and availability for your engine, see DB Instance Class in the Amazon RDS User Guide.

Valid for: Multi-AZ DB clusters only

", "ModifyDBClusterMessage$StorageType": "

Specifies the storage type to be associated with the DB cluster.

Valid values: io1

When specified, a value for the Iops parameter is required.

Default: io1

Valid for: Multi-AZ DB clusters only

", "ModifyDBClusterMessage$MonitoringRoleArn": "

The Amazon Resource Name (ARN) for the IAM role that permits RDS to send Enhanced Monitoring metrics to Amazon CloudWatch Logs. An example is arn:aws:iam:123456789012:role/emaccess. For information on creating a monitoring role, see To create an IAM role for Amazon RDS Enhanced Monitoring in the Amazon RDS User Guide.

If MonitoringInterval is set to a value other than 0, supply a MonitoringRoleArn value.

Valid for: Multi-AZ DB clusters only

", "ModifyDBClusterMessage$PerformanceInsightsKMSKeyId": "

The Amazon Web Services KMS key identifier for encryption of Performance Insights data.

The Amazon Web Services KMS key identifier is the key ARN, key ID, alias ARN, or alias name for the KMS key.

If you don't specify a value for PerformanceInsightsKMSKeyId, then Amazon RDS uses your default KMS key. There is a default KMS key for your Amazon Web Services account. Your Amazon Web Services account has a different default KMS key for each Amazon Web Services Region.

Valid for: Multi-AZ DB clusters only

", @@ -4478,7 +4478,7 @@ "RestoreDBClusterFromSnapshotMessage$DBClusterParameterGroupName": "

The name of the DB cluster parameter group to associate with this DB cluster. If this argument is omitted, the default DB cluster parameter group for the specified engine is used.

Constraints:

Valid for: Aurora DB clusters and Multi-AZ DB clusters

", "RestoreDBClusterFromSnapshotMessage$Domain": "

Specify the Active Directory directory ID to restore the DB cluster in. The domain must be created prior to this operation. Currently, only MySQL, Microsoft SQL Server, Oracle, and PostgreSQL DB instances can be created in an Active Directory Domain.

For more information, see Kerberos Authentication in the Amazon RDS User Guide.

Valid for: Aurora DB clusters only

", "RestoreDBClusterFromSnapshotMessage$DomainIAMRoleName": "

Specify the name of the IAM role to be used when making API calls to the Directory Service.

Valid for: Aurora DB clusters only

", - "RestoreDBClusterFromSnapshotMessage$DBClusterInstanceClass": "

The compute and memory capacity of the each DB instance in the Multi-AZ DB cluster, for example db.m6g.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes, and availability for your engine, see DB Instance Class in the Amazon RDS User Guide.

Valid for: Multi-AZ DB clusters only

", + "RestoreDBClusterFromSnapshotMessage$DBClusterInstanceClass": "

The compute and memory capacity of the each DB instance in the Multi-AZ DB cluster, for example db.m6gd.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes, and availability for your engine, see DB Instance Class in the Amazon RDS User Guide.

Valid for: Multi-AZ DB clusters only

", "RestoreDBClusterFromSnapshotMessage$StorageType": "

Specifies the storage type to be associated with the each DB instance in the Multi-AZ DB cluster.

Valid values: io1

When specified, a value for the Iops parameter is required.

Default: io1

Valid for: Aurora DB clusters and Multi-AZ DB clusters

", "RestoreDBClusterFromSnapshotMessage$NetworkType": "

The network type of the DB cluster.

Valid values:

The network type is determined by the DBSubnetGroup specified for the DB cluster. A DBSubnetGroup can support only the IPv4 protocol or the IPv4 and the IPv6 protocols (DUAL).

For more information, see Working with a DB instance in a VPC in the Amazon Aurora User Guide.

Valid for: Aurora DB clusters only

", "RestoreDBClusterToPointInTimeMessage$DBClusterIdentifier": "

The name of the new DB cluster to be created.

Constraints:

Valid for: Aurora DB clusters and Multi-AZ DB clusters

", @@ -4491,7 +4491,7 @@ "RestoreDBClusterToPointInTimeMessage$Domain": "

Specify the Active Directory directory ID to restore the DB cluster in. The domain must be created prior to this operation.

For Amazon Aurora DB clusters, Amazon RDS can use Kerberos Authentication to authenticate users that connect to the DB cluster. For more information, see Kerberos Authentication in the Amazon Aurora User Guide.

Valid for: Aurora DB clusters only

", "RestoreDBClusterToPointInTimeMessage$DomainIAMRoleName": "

Specify the name of the IAM role to be used when making API calls to the Directory Service.

Valid for: Aurora DB clusters only

", "RestoreDBClusterToPointInTimeMessage$EngineMode": "

The engine mode of the new cluster. Specify provisioned or serverless, depending on the type of the cluster you are creating. You can create an Aurora Serverless v1 clone from a provisioned cluster, or a provisioned clone from an Aurora Serverless v1 cluster. To create a clone that is an Aurora Serverless v1 cluster, the original cluster must be an Aurora Serverless v1 cluster or an encrypted provisioned cluster.

Valid for: Aurora DB clusters only

", - "RestoreDBClusterToPointInTimeMessage$DBClusterInstanceClass": "

The compute and memory capacity of the each DB instance in the Multi-AZ DB cluster, for example db.m6g.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes, and availability for your engine, see DB instance class in the Amazon RDS User Guide.

Valid for: Multi-AZ DB clusters only

", + "RestoreDBClusterToPointInTimeMessage$DBClusterInstanceClass": "

The compute and memory capacity of the each DB instance in the Multi-AZ DB cluster, for example db.m6gd.xlarge. Not all DB instance classes are available in all Amazon Web Services Regions, or for all database engines.

For the full list of DB instance classes, and availability for your engine, see DB instance class in the Amazon RDS User Guide.

Valid for: Multi-AZ DB clusters only

", "RestoreDBClusterToPointInTimeMessage$StorageType": "

Specifies the storage type to be associated with the each DB instance in the Multi-AZ DB cluster.

Valid values: io1

When specified, a value for the Iops parameter is required.

Default: io1

Valid for: Multi-AZ DB clusters only

", "RestoreDBClusterToPointInTimeMessage$NetworkType": "

The network type of the DB cluster.

Valid values:

The network type is determined by the DBSubnetGroup specified for the DB cluster. A DBSubnetGroup can support only the IPv4 protocol or the IPv4 and the IPv6 protocols (DUAL).

For more information, see Working with a DB instance in a VPC in the Amazon Aurora User Guide.

Valid for: Aurora DB clusters only

", "RestoreDBInstanceFromDBSnapshotMessage$DBInstanceIdentifier": "

Name of the DB instance to create from the DB snapshot. This parameter isn't case-sensitive.

Constraints:

Example: my-snapshot-id

", @@ -4624,7 +4624,7 @@ "base": null, "refs": { "ConnectionPoolConfiguration$SessionPinningFilters": "

Each item in the list represents a class of SQL operations that normally cause all later statements in a session using a proxy to be pinned to the same underlying database connection. Including an item in the list exempts that class of SQL operations from the pinning behavior.

Default: no session pinning filters

", - "ConnectionPoolConfigurationInfo$SessionPinningFilters": "

Each item in the list represents a class of SQL operations that normally cause all later statements in a session using a proxy to be pinned to the same underlying database connection. Including an item in the list exempts that class of SQL operations from the pinning behavior. Currently, the only allowed value is EXCLUDE_VARIABLE_SETS.

", + "ConnectionPoolConfigurationInfo$SessionPinningFilters": "

Each item in the list represents a class of SQL operations that normally cause all later statements in a session using a proxy to be pinned to the same underlying database connection. Including an item in the list exempts that class of SQL operations from the pinning behavior. This setting is only supported for MySQL engine family databases. Currently, the only allowed value is EXCLUDE_VARIABLE_SETS.

", "CreateDBClusterEndpointMessage$StaticMembers": "

List of DB instance identifiers that are part of the custom endpoint group.

", "CreateDBClusterEndpointMessage$ExcludedMembers": "

List of DB instance identifiers that aren't part of the custom endpoint group. All other eligible instances are reachable through the custom endpoint. This parameter is relevant only if the list of static members is empty.

", "CreateDBProxyEndpointRequest$VpcSubnetIds": "

The VPC subnet IDs for the DB proxy endpoint that you create. You can specify a different set of subnet IDs than for the original DB proxy.

", diff --git a/models/endpoints/endpoints.json b/models/endpoints/endpoints.json index 6806cda31b4..660a1678e44 100644 --- a/models/endpoints/endpoints.json +++ b/models/endpoints/endpoints.json @@ -6163,12 +6163,7 @@ }, "fsx" : { "endpoints" : { - "af-south-1" : { }, - "ap-east-1" : { }, "ap-northeast-1" : { }, - "ap-northeast-2" : { }, - "ap-northeast-3" : { }, - "ap-south-1" : { }, "ap-southeast-1" : { }, "ap-southeast-2" : { }, "ca-central-1" : { @@ -6178,11 +6173,8 @@ } ] }, "eu-central-1" : { }, - "eu-north-1" : { }, - "eu-south-1" : { }, "eu-west-1" : { }, "eu-west-2" : { }, - "eu-west-3" : { }, "fips-ca-central-1" : { "credentialScope" : { "region" : "ca-central-1" @@ -6211,13 +6203,6 @@ "deprecated" : true, "hostname" : "fsx-fips.us-east-2.amazonaws.com" }, - "fips-prod-us-west-1" : { - "credentialScope" : { - "region" : "us-west-1" - }, - "deprecated" : true, - "hostname" : "fsx-fips.us-west-1.amazonaws.com" - }, "fips-prod-us-west-2" : { "credentialScope" : { "region" : "us-west-2" @@ -6239,13 +6224,6 @@ "deprecated" : true, "hostname" : "fsx-fips.us-east-2.amazonaws.com" }, - "fips-us-west-1" : { - "credentialScope" : { - "region" : "us-west-1" - }, - "deprecated" : true, - "hostname" : "fsx-fips.us-west-1.amazonaws.com" - }, "fips-us-west-2" : { "credentialScope" : { "region" : "us-west-2" @@ -6253,7 +6231,6 @@ "deprecated" : true, "hostname" : "fsx-fips.us-west-2.amazonaws.com" }, - "me-south-1" : { }, "prod-ca-central-1" : { "credentialScope" : { "region" : "ca-central-1" @@ -6284,16 +6261,6 @@ "tags" : [ "fips" ] } ] }, - "prod-us-west-1" : { - "credentialScope" : { - "region" : "us-west-1" - }, - "deprecated" : true, - "variants" : [ { - "hostname" : "fsx-fips.us-west-1.amazonaws.com", - "tags" : [ "fips" ] - } ] - }, "prod-us-west-2" : { "credentialScope" : { "region" : "us-west-2" @@ -6304,7 +6271,6 @@ "tags" : [ "fips" ] } ] }, - "sa-east-1" : { }, "us-east-1" : { "variants" : [ { "hostname" : "fsx-fips.us-east-1.amazonaws.com", @@ -6317,12 +6283,6 @@ "tags" : [ "fips" ] } ] }, - "us-west-1" : { - "variants" : [ { - "hostname" : "fsx-fips.us-west-1.amazonaws.com", - "tags" : [ "fips" ] - } ] - }, "us-west-2" : { "variants" : [ { "hostname" : "fsx-fips.us-west-2.amazonaws.com", diff --git a/service/cloudtrail/api.go b/service/cloudtrail/api.go index c9f37ccfb96..f750326db5f 100644 --- a/service/cloudtrail/api.go +++ b/service/cloudtrail/api.go @@ -679,6 +679,10 @@ func (c *CloudTrail) DeleteEventDataStoreRequest(input *DeleteEventDataStoreInpu // The event data store cannot be deleted because termination protection is // enabled for it. // +// - EventDataStoreHasOngoingImportException +// This exception is thrown when you try to update or delete an event data store +// that currently has an import in progress. +// // - InvalidParameterException // The request includes a parameter that is not valid. // @@ -1284,8 +1288,12 @@ func (c *CloudTrail) GetEventSelectorsRequest(input *GetEventSelectorsInput) (re // - If your event selector includes data events, the resources on which // you are logging data events. // -// For more information, see Logging Data and Management Events for Trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-and-data-events-with-cloudtrail.html) -// in the CloudTrail User Guide. +// For more information about logging management and data events, see the following +// topics in the CloudTrail User Guide: +// +// - Logging management events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html) +// +// - Logging data events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -1343,6 +1351,94 @@ func (c *CloudTrail) GetEventSelectorsWithContext(ctx aws.Context, input *GetEve return out, req.Send() } +const opGetImport = "GetImport" + +// GetImportRequest generates a "aws/request.Request" representing the +// client's request for the GetImport operation. The "output" return +// value will be populated with the request's response once the request completes +// successfully. +// +// Use "Send" method on the returned Request to send the API call to the service. +// the "output" return value is not valid until after Send returns without error. +// +// See GetImport for more information on using the GetImport +// API call, and error handling. +// +// This method is useful when you want to inject custom logic or configuration +// into the SDK's request lifecycle. Such as custom headers, or retry logic. +// +// // Example sending a request using the GetImportRequest method. +// req, resp := client.GetImportRequest(params) +// +// err := req.Send() +// if err == nil { // resp is now filled +// fmt.Println(resp) +// } +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/GetImport +func (c *CloudTrail) GetImportRequest(input *GetImportInput) (req *request.Request, output *GetImportOutput) { + op := &request.Operation{ + Name: opGetImport, + HTTPMethod: "POST", + HTTPPath: "/", + } + + if input == nil { + input = &GetImportInput{} + } + + output = &GetImportOutput{} + req = c.newRequest(op, input, output) + return +} + +// GetImport API operation for AWS CloudTrail. +// +// Returns information for the specified import. +// +// Returns awserr.Error for service API and SDK errors. Use runtime type assertions +// with awserr.Error's Code and Message methods to get detailed information about +// the error. +// +// See the AWS API reference guide for AWS CloudTrail's +// API operation GetImport for usage and error information. +// +// Returned Error Types: +// +// - ImportNotFoundException +// The specified import was not found. +// +// - InvalidParameterException +// The request includes a parameter that is not valid. +// +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. +// +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/GetImport +func (c *CloudTrail) GetImport(input *GetImportInput) (*GetImportOutput, error) { + req, out := c.GetImportRequest(input) + return out, req.Send() +} + +// GetImportWithContext is the same as GetImport with the addition of +// the ability to pass a context and additional request options. +// +// See GetImport for details on how to use this API operation. +// +// The context must be non-nil and will be used for request cancellation. If +// the context is nil a panic will occur. In the future the SDK may create +// sub-contexts for http.Requests. See https://golang.org/pkg/context/ +// for more information on using Contexts. +func (c *CloudTrail) GetImportWithContext(ctx aws.Context, input *GetImportInput, opts ...request.Option) (*GetImportOutput, error) { + req, out := c.GetImportRequest(input) + req.SetContext(ctx) + req.ApplyOptions(opts...) + return out, req.Send() +} + const opGetInsightSelectors = "GetInsightSelectors" // GetInsightSelectorsRequest generates a "aws/request.Request" representing the @@ -2114,144 +2210,134 @@ func (c *CloudTrail) ListEventDataStoresPagesWithContext(ctx aws.Context, input return p.Err() } -const opListPublicKeys = "ListPublicKeys" +const opListImportFailures = "ListImportFailures" -// ListPublicKeysRequest generates a "aws/request.Request" representing the -// client's request for the ListPublicKeys operation. The "output" return +// ListImportFailuresRequest generates a "aws/request.Request" representing the +// client's request for the ListImportFailures operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See ListPublicKeys for more information on using the ListPublicKeys +// See ListImportFailures for more information on using the ListImportFailures // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the ListPublicKeysRequest method. -// req, resp := client.ListPublicKeysRequest(params) +// // Example sending a request using the ListImportFailuresRequest method. +// req, resp := client.ListImportFailuresRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListPublicKeys -func (c *CloudTrail) ListPublicKeysRequest(input *ListPublicKeysInput) (req *request.Request, output *ListPublicKeysOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListImportFailures +func (c *CloudTrail) ListImportFailuresRequest(input *ListImportFailuresInput) (req *request.Request, output *ListImportFailuresOutput) { op := &request.Operation{ - Name: opListPublicKeys, + Name: opListImportFailures, HTTPMethod: "POST", HTTPPath: "/", Paginator: &request.Paginator{ InputTokens: []string{"NextToken"}, OutputTokens: []string{"NextToken"}, - LimitToken: "", + LimitToken: "MaxResults", TruncationToken: "", }, } if input == nil { - input = &ListPublicKeysInput{} + input = &ListImportFailuresInput{} } - output = &ListPublicKeysOutput{} + output = &ListImportFailuresOutput{} req = c.newRequest(op, input, output) return } -// ListPublicKeys API operation for AWS CloudTrail. -// -// Returns all public keys whose private keys were used to sign the digest files -// within the specified time range. The public key is needed to validate digest -// files that were signed with its corresponding private key. +// ListImportFailures API operation for AWS CloudTrail. // -// CloudTrail uses different private and public key pairs per region. Each digest -// file is signed with a private key unique to its region. When you validate -// a digest file from a specific region, you must look in the same region for -// its corresponding public key. +// Returns a list of failures for the specified import. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation ListPublicKeys for usage and error information. +// API operation ListImportFailures for usage and error information. // // Returned Error Types: // -// - InvalidTimeRangeException -// Occurs if the timestamp values are not valid. Either the start time occurs -// after the end time, or the time range is outside the range of possible values. -// -// - UnsupportedOperationException -// This exception is thrown when the requested operation is not supported. +// - InvalidNextTokenException +// A token that is not valid, or a token that was previously used in a request +// with different parameters. This exception is thrown if the token is not valid. // // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. // -// - InvalidTokenException -// Reserved for future use. +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListPublicKeys -func (c *CloudTrail) ListPublicKeys(input *ListPublicKeysInput) (*ListPublicKeysOutput, error) { - req, out := c.ListPublicKeysRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListImportFailures +func (c *CloudTrail) ListImportFailures(input *ListImportFailuresInput) (*ListImportFailuresOutput, error) { + req, out := c.ListImportFailuresRequest(input) return out, req.Send() } -// ListPublicKeysWithContext is the same as ListPublicKeys with the addition of +// ListImportFailuresWithContext is the same as ListImportFailures with the addition of // the ability to pass a context and additional request options. // -// See ListPublicKeys for details on how to use this API operation. +// See ListImportFailures for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListPublicKeysWithContext(ctx aws.Context, input *ListPublicKeysInput, opts ...request.Option) (*ListPublicKeysOutput, error) { - req, out := c.ListPublicKeysRequest(input) +func (c *CloudTrail) ListImportFailuresWithContext(ctx aws.Context, input *ListImportFailuresInput, opts ...request.Option) (*ListImportFailuresOutput, error) { + req, out := c.ListImportFailuresRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -// ListPublicKeysPages iterates over the pages of a ListPublicKeys operation, +// ListImportFailuresPages iterates over the pages of a ListImportFailures operation, // calling the "fn" function with the response data for each page. To stop // iterating, return false from the fn function. // -// See ListPublicKeys method for more information on how to use this operation. +// See ListImportFailures method for more information on how to use this operation. // // Note: This operation can generate multiple requests to a service. // -// // Example iterating over at most 3 pages of a ListPublicKeys operation. +// // Example iterating over at most 3 pages of a ListImportFailures operation. // pageNum := 0 -// err := client.ListPublicKeysPages(params, -// func(page *cloudtrail.ListPublicKeysOutput, lastPage bool) bool { +// err := client.ListImportFailuresPages(params, +// func(page *cloudtrail.ListImportFailuresOutput, lastPage bool) bool { // pageNum++ // fmt.Println(page) // return pageNum <= 3 // }) -func (c *CloudTrail) ListPublicKeysPages(input *ListPublicKeysInput, fn func(*ListPublicKeysOutput, bool) bool) error { - return c.ListPublicKeysPagesWithContext(aws.BackgroundContext(), input, fn) +func (c *CloudTrail) ListImportFailuresPages(input *ListImportFailuresInput, fn func(*ListImportFailuresOutput, bool) bool) error { + return c.ListImportFailuresPagesWithContext(aws.BackgroundContext(), input, fn) } -// ListPublicKeysPagesWithContext same as ListPublicKeysPages except +// ListImportFailuresPagesWithContext same as ListImportFailuresPages except // it takes a Context and allows setting request options on the pages. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListPublicKeysPagesWithContext(ctx aws.Context, input *ListPublicKeysInput, fn func(*ListPublicKeysOutput, bool) bool, opts ...request.Option) error { +func (c *CloudTrail) ListImportFailuresPagesWithContext(ctx aws.Context, input *ListImportFailuresInput, fn func(*ListImportFailuresOutput, bool) bool, opts ...request.Option) error { p := request.Pagination{ NewRequest: func() (*request.Request, error) { - var inCpy *ListPublicKeysInput + var inCpy *ListImportFailuresInput if input != nil { tmp := *input inCpy = &tmp } - req, _ := c.ListPublicKeysRequest(inCpy) + req, _ := c.ListImportFailuresRequest(inCpy) req.SetContext(ctx) req.ApplyOptions(opts...) return req, nil @@ -2259,7 +2345,7 @@ func (c *CloudTrail) ListPublicKeysPagesWithContext(ctx aws.Context, input *List } for p.Next() { - if !fn(p.Page().(*ListPublicKeysOutput), !p.HasNextPage()) { + if !fn(p.Page().(*ListImportFailuresOutput), !p.HasNextPage()) { break } } @@ -2267,34 +2353,34 @@ func (c *CloudTrail) ListPublicKeysPagesWithContext(ctx aws.Context, input *List return p.Err() } -const opListQueries = "ListQueries" +const opListImports = "ListImports" -// ListQueriesRequest generates a "aws/request.Request" representing the -// client's request for the ListQueries operation. The "output" return +// ListImportsRequest generates a "aws/request.Request" representing the +// client's request for the ListImports operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See ListQueries for more information on using the ListQueries +// See ListImports for more information on using the ListImports // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the ListQueriesRequest method. -// req, resp := client.ListQueriesRequest(params) +// // Example sending a request using the ListImportsRequest method. +// req, resp := client.ListImportsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListQueries -func (c *CloudTrail) ListQueriesRequest(input *ListQueriesInput) (req *request.Request, output *ListQueriesOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListImports +func (c *CloudTrail) ListImportsRequest(input *ListImportsInput) (req *request.Request, output *ListImportsOutput) { op := &request.Operation{ - Name: opListQueries, + Name: opListImports, HTTPMethod: "POST", HTTPPath: "/", Paginator: &request.Paginator{ @@ -2306,29 +2392,25 @@ func (c *CloudTrail) ListQueriesRequest(input *ListQueriesInput) (req *request.R } if input == nil { - input = &ListQueriesInput{} + input = &ListImportsInput{} } - output = &ListQueriesOutput{} + output = &ListImportsOutput{} req = c.newRequest(op, input, output) return } -// ListQueries API operation for AWS CloudTrail. +// ListImports API operation for AWS CloudTrail. // -// Returns a list of queries and query statuses for the past seven days. You -// must specify an ARN value for EventDataStore. Optionally, to shorten the -// list of results, you can specify a time range, formatted as timestamps, by -// adding StartTime and EndTime parameters, and a QueryStatus value. Valid values -// for QueryStatus include QUEUED, RUNNING, FINISHED, FAILED, TIMED_OUT, or -// CANCELLED. +// Returns information on all imports, or a select set of imports by ImportStatus +// or Destination. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation ListQueries for usage and error information. +// API operation ListImports for usage and error information. // // Returned Error Types: // @@ -2336,21 +2418,6 @@ func (c *CloudTrail) ListQueriesRequest(input *ListQueriesInput) (req *request.R // The specified event data store ARN is not valid or does not map to an event // data store in your account. // -// - EventDataStoreNotFoundException -// The specified event data store was not found. -// -// - InactiveEventDataStoreException -// The event data store is inactive. -// -// - InvalidDateRangeException -// A date range for the query was specified that is not valid. Be sure that -// the start time is chronologically before the end time. For more information -// about writing a query, see Create or edit a query (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html) -// in the CloudTrail User Guide. -// -// - InvalidMaxResultsException -// This exception is thrown if the limit specified is not valid. -// // - InvalidNextTokenException // A token that is not valid, or a token that was previously used in a request // with different parameters. This exception is thrown if the token is not valid. @@ -2358,73 +2425,70 @@ func (c *CloudTrail) ListQueriesRequest(input *ListQueriesInput) (req *request.R // - InvalidParameterException // The request includes a parameter that is not valid. // -// - InvalidQueryStatusException -// The query status is not valid for the operation. -// // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. // // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListQueries -func (c *CloudTrail) ListQueries(input *ListQueriesInput) (*ListQueriesOutput, error) { - req, out := c.ListQueriesRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListImports +func (c *CloudTrail) ListImports(input *ListImportsInput) (*ListImportsOutput, error) { + req, out := c.ListImportsRequest(input) return out, req.Send() } -// ListQueriesWithContext is the same as ListQueries with the addition of +// ListImportsWithContext is the same as ListImports with the addition of // the ability to pass a context and additional request options. // -// See ListQueries for details on how to use this API operation. +// See ListImports for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListQueriesWithContext(ctx aws.Context, input *ListQueriesInput, opts ...request.Option) (*ListQueriesOutput, error) { - req, out := c.ListQueriesRequest(input) +func (c *CloudTrail) ListImportsWithContext(ctx aws.Context, input *ListImportsInput, opts ...request.Option) (*ListImportsOutput, error) { + req, out := c.ListImportsRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -// ListQueriesPages iterates over the pages of a ListQueries operation, +// ListImportsPages iterates over the pages of a ListImports operation, // calling the "fn" function with the response data for each page. To stop // iterating, return false from the fn function. // -// See ListQueries method for more information on how to use this operation. +// See ListImports method for more information on how to use this operation. // // Note: This operation can generate multiple requests to a service. // -// // Example iterating over at most 3 pages of a ListQueries operation. +// // Example iterating over at most 3 pages of a ListImports operation. // pageNum := 0 -// err := client.ListQueriesPages(params, -// func(page *cloudtrail.ListQueriesOutput, lastPage bool) bool { +// err := client.ListImportsPages(params, +// func(page *cloudtrail.ListImportsOutput, lastPage bool) bool { // pageNum++ // fmt.Println(page) // return pageNum <= 3 // }) -func (c *CloudTrail) ListQueriesPages(input *ListQueriesInput, fn func(*ListQueriesOutput, bool) bool) error { - return c.ListQueriesPagesWithContext(aws.BackgroundContext(), input, fn) +func (c *CloudTrail) ListImportsPages(input *ListImportsInput, fn func(*ListImportsOutput, bool) bool) error { + return c.ListImportsPagesWithContext(aws.BackgroundContext(), input, fn) } -// ListQueriesPagesWithContext same as ListQueriesPages except +// ListImportsPagesWithContext same as ListImportsPages except // it takes a Context and allows setting request options on the pages. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListQueriesPagesWithContext(ctx aws.Context, input *ListQueriesInput, fn func(*ListQueriesOutput, bool) bool, opts ...request.Option) error { +func (c *CloudTrail) ListImportsPagesWithContext(ctx aws.Context, input *ListImportsInput, fn func(*ListImportsOutput, bool) bool, opts ...request.Option) error { p := request.Pagination{ NewRequest: func() (*request.Request, error) { - var inCpy *ListQueriesInput + var inCpy *ListImportsInput if input != nil { tmp := *input inCpy = &tmp } - req, _ := c.ListQueriesRequest(inCpy) + req, _ := c.ListImportsRequest(inCpy) req.SetContext(ctx) req.ApplyOptions(opts...) return req, nil @@ -2432,7 +2496,7 @@ func (c *CloudTrail) ListQueriesPagesWithContext(ctx aws.Context, input *ListQue } for p.Next() { - if !fn(p.Page().(*ListQueriesOutput), !p.HasNextPage()) { + if !fn(p.Page().(*ListImportsOutput), !p.HasNextPage()) { break } } @@ -2440,34 +2504,34 @@ func (c *CloudTrail) ListQueriesPagesWithContext(ctx aws.Context, input *ListQue return p.Err() } -const opListTags = "ListTags" +const opListPublicKeys = "ListPublicKeys" -// ListTagsRequest generates a "aws/request.Request" representing the -// client's request for the ListTags operation. The "output" return +// ListPublicKeysRequest generates a "aws/request.Request" representing the +// client's request for the ListPublicKeys operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See ListTags for more information on using the ListTags +// See ListPublicKeys for more information on using the ListPublicKeys // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the ListTagsRequest method. -// req, resp := client.ListTagsRequest(params) +// // Example sending a request using the ListPublicKeysRequest method. +// req, resp := client.ListPublicKeysRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTags -func (c *CloudTrail) ListTagsRequest(input *ListTagsInput) (req *request.Request, output *ListTagsOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListPublicKeys +func (c *CloudTrail) ListPublicKeysRequest(input *ListPublicKeysInput) (req *request.Request, output *ListPublicKeysOutput) { op := &request.Operation{ - Name: opListTags, + Name: opListPublicKeys, HTTPMethod: "POST", HTTPPath: "/", Paginator: &request.Paginator{ @@ -2479,61 +2543,37 @@ func (c *CloudTrail) ListTagsRequest(input *ListTagsInput) (req *request.Request } if input == nil { - input = &ListTagsInput{} + input = &ListPublicKeysInput{} } - output = &ListTagsOutput{} + output = &ListPublicKeysOutput{} req = c.newRequest(op, input, output) return } -// ListTags API operation for AWS CloudTrail. +// ListPublicKeys API operation for AWS CloudTrail. // -// Lists the tags for the trail or event data store in the current region. +// Returns all public keys whose private keys were used to sign the digest files +// within the specified time range. The public key is needed to validate digest +// files that were signed with its corresponding private key. +// +// CloudTrail uses different private and public key pairs per region. Each digest +// file is signed with a private key unique to its region. When you validate +// a digest file from a specific region, you must look in the same region for +// its corresponding public key. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation ListTags for usage and error information. +// API operation ListPublicKeys for usage and error information. // // Returned Error Types: // -// - ResourceNotFoundException -// This exception is thrown when the specified resource is not found. -// -// - ARNInvalidException -// This exception is thrown when an operation is called with a trail ARN that -// is not valid. The following is the format of a trail ARN. -// -// arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail -// -// - ResourceTypeNotSupportedException -// This exception is thrown when the specified resource type is not supported -// by CloudTrail. -// -// - InvalidTrailNameException -// This exception is thrown when the provided trail name is not valid. Trail -// names must meet the following requirements: -// -// - Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores -// (_), or dashes (-) -// -// - Start with a letter or number, and end with a letter or number -// -// - Be between 3 and 128 characters -// -// - Have no adjacent periods, underscores or dashes. Names like my-_namespace -// and my--namespace are not valid. -// -// - Not be in IP address format (for example, 192.168.5.4) -// -// - InactiveEventDataStoreException -// The event data store is inactive. -// -// - EventDataStoreNotFoundException -// The specified event data store was not found. +// - InvalidTimeRangeException +// Occurs if the timestamp values are not valid. Either the start time occurs +// after the end time, or the time range is outside the range of possible values. // // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. @@ -2544,64 +2584,64 @@ func (c *CloudTrail) ListTagsRequest(input *ListTagsInput) (req *request.Request // - InvalidTokenException // Reserved for future use. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTags -func (c *CloudTrail) ListTags(input *ListTagsInput) (*ListTagsOutput, error) { - req, out := c.ListTagsRequest(input) - return out, req.Send() +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListPublicKeys +func (c *CloudTrail) ListPublicKeys(input *ListPublicKeysInput) (*ListPublicKeysOutput, error) { + req, out := c.ListPublicKeysRequest(input) + return out, req.Send() } -// ListTagsWithContext is the same as ListTags with the addition of +// ListPublicKeysWithContext is the same as ListPublicKeys with the addition of // the ability to pass a context and additional request options. // -// See ListTags for details on how to use this API operation. +// See ListPublicKeys for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListTagsWithContext(ctx aws.Context, input *ListTagsInput, opts ...request.Option) (*ListTagsOutput, error) { - req, out := c.ListTagsRequest(input) +func (c *CloudTrail) ListPublicKeysWithContext(ctx aws.Context, input *ListPublicKeysInput, opts ...request.Option) (*ListPublicKeysOutput, error) { + req, out := c.ListPublicKeysRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -// ListTagsPages iterates over the pages of a ListTags operation, +// ListPublicKeysPages iterates over the pages of a ListPublicKeys operation, // calling the "fn" function with the response data for each page. To stop // iterating, return false from the fn function. // -// See ListTags method for more information on how to use this operation. +// See ListPublicKeys method for more information on how to use this operation. // // Note: This operation can generate multiple requests to a service. // -// // Example iterating over at most 3 pages of a ListTags operation. +// // Example iterating over at most 3 pages of a ListPublicKeys operation. // pageNum := 0 -// err := client.ListTagsPages(params, -// func(page *cloudtrail.ListTagsOutput, lastPage bool) bool { +// err := client.ListPublicKeysPages(params, +// func(page *cloudtrail.ListPublicKeysOutput, lastPage bool) bool { // pageNum++ // fmt.Println(page) // return pageNum <= 3 // }) -func (c *CloudTrail) ListTagsPages(input *ListTagsInput, fn func(*ListTagsOutput, bool) bool) error { - return c.ListTagsPagesWithContext(aws.BackgroundContext(), input, fn) +func (c *CloudTrail) ListPublicKeysPages(input *ListPublicKeysInput, fn func(*ListPublicKeysOutput, bool) bool) error { + return c.ListPublicKeysPagesWithContext(aws.BackgroundContext(), input, fn) } -// ListTagsPagesWithContext same as ListTagsPages except +// ListPublicKeysPagesWithContext same as ListPublicKeysPages except // it takes a Context and allows setting request options on the pages. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListTagsPagesWithContext(ctx aws.Context, input *ListTagsInput, fn func(*ListTagsOutput, bool) bool, opts ...request.Option) error { +func (c *CloudTrail) ListPublicKeysPagesWithContext(ctx aws.Context, input *ListPublicKeysInput, fn func(*ListPublicKeysOutput, bool) bool, opts ...request.Option) error { p := request.Pagination{ NewRequest: func() (*request.Request, error) { - var inCpy *ListTagsInput + var inCpy *ListPublicKeysInput if input != nil { tmp := *input inCpy = &tmp } - req, _ := c.ListTagsRequest(inCpy) + req, _ := c.ListPublicKeysRequest(inCpy) req.SetContext(ctx) req.ApplyOptions(opts...) return req, nil @@ -2609,7 +2649,7 @@ func (c *CloudTrail) ListTagsPagesWithContext(ctx aws.Context, input *ListTagsIn } for p.Next() { - if !fn(p.Page().(*ListTagsOutput), !p.HasNextPage()) { + if !fn(p.Page().(*ListPublicKeysOutput), !p.HasNextPage()) { break } } @@ -2617,130 +2657,164 @@ func (c *CloudTrail) ListTagsPagesWithContext(ctx aws.Context, input *ListTagsIn return p.Err() } -const opListTrails = "ListTrails" +const opListQueries = "ListQueries" -// ListTrailsRequest generates a "aws/request.Request" representing the -// client's request for the ListTrails operation. The "output" return +// ListQueriesRequest generates a "aws/request.Request" representing the +// client's request for the ListQueries operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See ListTrails for more information on using the ListTrails +// See ListQueries for more information on using the ListQueries // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the ListTrailsRequest method. -// req, resp := client.ListTrailsRequest(params) +// // Example sending a request using the ListQueriesRequest method. +// req, resp := client.ListQueriesRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTrails -func (c *CloudTrail) ListTrailsRequest(input *ListTrailsInput) (req *request.Request, output *ListTrailsOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListQueries +func (c *CloudTrail) ListQueriesRequest(input *ListQueriesInput) (req *request.Request, output *ListQueriesOutput) { op := &request.Operation{ - Name: opListTrails, + Name: opListQueries, HTTPMethod: "POST", HTTPPath: "/", Paginator: &request.Paginator{ InputTokens: []string{"NextToken"}, OutputTokens: []string{"NextToken"}, - LimitToken: "", + LimitToken: "MaxResults", TruncationToken: "", }, } if input == nil { - input = &ListTrailsInput{} + input = &ListQueriesInput{} } - output = &ListTrailsOutput{} + output = &ListQueriesOutput{} req = c.newRequest(op, input, output) return } -// ListTrails API operation for AWS CloudTrail. +// ListQueries API operation for AWS CloudTrail. // -// Lists trails that are in the current account. +// Returns a list of queries and query statuses for the past seven days. You +// must specify an ARN value for EventDataStore. Optionally, to shorten the +// list of results, you can specify a time range, formatted as timestamps, by +// adding StartTime and EndTime parameters, and a QueryStatus value. Valid values +// for QueryStatus include QUEUED, RUNNING, FINISHED, FAILED, TIMED_OUT, or +// CANCELLED. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation ListTrails for usage and error information. +// API operation ListQueries for usage and error information. // // Returned Error Types: // -// - UnsupportedOperationException -// This exception is thrown when the requested operation is not supported. +// - EventDataStoreARNInvalidException +// The specified event data store ARN is not valid or does not map to an event +// data store in your account. +// +// - EventDataStoreNotFoundException +// The specified event data store was not found. +// +// - InactiveEventDataStoreException +// The event data store is inactive. +// +// - InvalidDateRangeException +// A date range for the query was specified that is not valid. Be sure that +// the start time is chronologically before the end time. For more information +// about writing a query, see Create or edit a query (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html) +// in the CloudTrail User Guide. +// +// - InvalidMaxResultsException +// This exception is thrown if the limit specified is not valid. +// +// - InvalidNextTokenException +// A token that is not valid, or a token that was previously used in a request +// with different parameters. This exception is thrown if the token is not valid. +// +// - InvalidParameterException +// The request includes a parameter that is not valid. +// +// - InvalidQueryStatusException +// The query status is not valid for the operation. // // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTrails -func (c *CloudTrail) ListTrails(input *ListTrailsInput) (*ListTrailsOutput, error) { - req, out := c.ListTrailsRequest(input) +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListQueries +func (c *CloudTrail) ListQueries(input *ListQueriesInput) (*ListQueriesOutput, error) { + req, out := c.ListQueriesRequest(input) return out, req.Send() } -// ListTrailsWithContext is the same as ListTrails with the addition of +// ListQueriesWithContext is the same as ListQueries with the addition of // the ability to pass a context and additional request options. // -// See ListTrails for details on how to use this API operation. +// See ListQueries for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListTrailsWithContext(ctx aws.Context, input *ListTrailsInput, opts ...request.Option) (*ListTrailsOutput, error) { - req, out := c.ListTrailsRequest(input) +func (c *CloudTrail) ListQueriesWithContext(ctx aws.Context, input *ListQueriesInput, opts ...request.Option) (*ListQueriesOutput, error) { + req, out := c.ListQueriesRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -// ListTrailsPages iterates over the pages of a ListTrails operation, +// ListQueriesPages iterates over the pages of a ListQueries operation, // calling the "fn" function with the response data for each page. To stop // iterating, return false from the fn function. // -// See ListTrails method for more information on how to use this operation. +// See ListQueries method for more information on how to use this operation. // // Note: This operation can generate multiple requests to a service. // -// // Example iterating over at most 3 pages of a ListTrails operation. +// // Example iterating over at most 3 pages of a ListQueries operation. // pageNum := 0 -// err := client.ListTrailsPages(params, -// func(page *cloudtrail.ListTrailsOutput, lastPage bool) bool { +// err := client.ListQueriesPages(params, +// func(page *cloudtrail.ListQueriesOutput, lastPage bool) bool { // pageNum++ // fmt.Println(page) // return pageNum <= 3 // }) -func (c *CloudTrail) ListTrailsPages(input *ListTrailsInput, fn func(*ListTrailsOutput, bool) bool) error { - return c.ListTrailsPagesWithContext(aws.BackgroundContext(), input, fn) +func (c *CloudTrail) ListQueriesPages(input *ListQueriesInput, fn func(*ListQueriesOutput, bool) bool) error { + return c.ListQueriesPagesWithContext(aws.BackgroundContext(), input, fn) } -// ListTrailsPagesWithContext same as ListTrailsPages except +// ListQueriesPagesWithContext same as ListQueriesPages except // it takes a Context and allows setting request options on the pages. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) ListTrailsPagesWithContext(ctx aws.Context, input *ListTrailsInput, fn func(*ListTrailsOutput, bool) bool, opts ...request.Option) error { +func (c *CloudTrail) ListQueriesPagesWithContext(ctx aws.Context, input *ListQueriesInput, fn func(*ListQueriesOutput, bool) bool, opts ...request.Option) error { p := request.Pagination{ NewRequest: func() (*request.Request, error) { - var inCpy *ListTrailsInput + var inCpy *ListQueriesInput if input != nil { tmp := *input inCpy = &tmp } - req, _ := c.ListTrailsRequest(inCpy) + req, _ := c.ListQueriesRequest(inCpy) req.SetContext(ctx) req.ApplyOptions(opts...) return req, nil @@ -2748,7 +2822,7 @@ func (c *CloudTrail) ListTrailsPagesWithContext(ctx aws.Context, input *ListTrai } for p.Next() { - if !fn(p.Page().(*ListTrailsOutput), !p.HasNextPage()) { + if !fn(p.Page().(*ListQueriesOutput), !p.HasNextPage()) { break } } @@ -2756,118 +2830,100 @@ func (c *CloudTrail) ListTrailsPagesWithContext(ctx aws.Context, input *ListTrai return p.Err() } -const opLookupEvents = "LookupEvents" +const opListTags = "ListTags" -// LookupEventsRequest generates a "aws/request.Request" representing the -// client's request for the LookupEvents operation. The "output" return +// ListTagsRequest generates a "aws/request.Request" representing the +// client's request for the ListTags operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See LookupEvents for more information on using the LookupEvents +// See ListTags for more information on using the ListTags // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the LookupEventsRequest method. -// req, resp := client.LookupEventsRequest(params) +// // Example sending a request using the ListTagsRequest method. +// req, resp := client.ListTagsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/LookupEvents -func (c *CloudTrail) LookupEventsRequest(input *LookupEventsInput) (req *request.Request, output *LookupEventsOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTags +func (c *CloudTrail) ListTagsRequest(input *ListTagsInput) (req *request.Request, output *ListTagsOutput) { op := &request.Operation{ - Name: opLookupEvents, + Name: opListTags, HTTPMethod: "POST", HTTPPath: "/", Paginator: &request.Paginator{ InputTokens: []string{"NextToken"}, OutputTokens: []string{"NextToken"}, - LimitToken: "MaxResults", + LimitToken: "", TruncationToken: "", }, } if input == nil { - input = &LookupEventsInput{} + input = &ListTagsInput{} } - output = &LookupEventsOutput{} + output = &ListTagsOutput{} req = c.newRequest(op, input, output) return } -// LookupEvents API operation for AWS CloudTrail. -// -// Looks up management events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-management-events) -// or CloudTrail Insights events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-insights-events) -// that are captured by CloudTrail. You can look up events that occurred in -// a region within the last 90 days. Lookup supports the following attributes -// for management events: -// -// - Amazon Web Services access key -// -// - Event ID -// -// - Event name -// -// - Event source -// -// - Read only -// -// - Resource name +// ListTags API operation for AWS CloudTrail. // -// - Resource type +// Lists the tags for the trail or event data store in the current region. // -// - User name +// Returns awserr.Error for service API and SDK errors. Use runtime type assertions +// with awserr.Error's Code and Message methods to get detailed information about +// the error. // -// Lookup supports the following attributes for Insights events: +// See the AWS API reference guide for AWS CloudTrail's +// API operation ListTags for usage and error information. // -// - Event ID +// Returned Error Types: // -// - Event name +// - ResourceNotFoundException +// This exception is thrown when the specified resource is not found. // -// - Event source +// - ARNInvalidException +// This exception is thrown when an operation is called with a trail ARN that +// is not valid. The following is the format of a trail ARN. // -// All attributes are optional. The default number of results returned is 50, -// with a maximum of 50 possible. The response includes a token that you can -// use to get the next page of results. +// arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail // -// The rate of lookup requests is limited to two per second, per account, per -// region. If this limit is exceeded, a throttling error occurs. +// - ResourceTypeNotSupportedException +// This exception is thrown when the specified resource type is not supported +// by CloudTrail. // -// Returns awserr.Error for service API and SDK errors. Use runtime type assertions -// with awserr.Error's Code and Message methods to get detailed information about -// the error. +// - InvalidTrailNameException +// This exception is thrown when the provided trail name is not valid. Trail +// names must meet the following requirements: // -// See the AWS API reference guide for AWS CloudTrail's -// API operation LookupEvents for usage and error information. +// - Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores +// (_), or dashes (-) // -// Returned Error Types: +// - Start with a letter or number, and end with a letter or number // -// - InvalidLookupAttributesException -// Occurs when a lookup attribute is specified that is not valid. +// - Be between 3 and 128 characters // -// - InvalidTimeRangeException -// Occurs if the timestamp values are not valid. Either the start time occurs -// after the end time, or the time range is outside the range of possible values. +// - Have no adjacent periods, underscores or dashes. Names like my-_namespace +// and my--namespace are not valid. // -// - InvalidMaxResultsException -// This exception is thrown if the limit specified is not valid. +// - Not be in IP address format (for example, 192.168.5.4) // -// - InvalidNextTokenException -// A token that is not valid, or a token that was previously used in a request -// with different parameters. This exception is thrown if the token is not valid. +// - InactiveEventDataStoreException +// The event data store is inactive. // -// - InvalidEventCategoryException -// Occurs if an event category that is not valid is specified as a value of -// EventCategory. +// - EventDataStoreNotFoundException +// The specified event data store was not found. // // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. @@ -2875,64 +2931,67 @@ func (c *CloudTrail) LookupEventsRequest(input *LookupEventsInput) (req *request // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/LookupEvents -func (c *CloudTrail) LookupEvents(input *LookupEventsInput) (*LookupEventsOutput, error) { - req, out := c.LookupEventsRequest(input) +// - InvalidTokenException +// Reserved for future use. +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTags +func (c *CloudTrail) ListTags(input *ListTagsInput) (*ListTagsOutput, error) { + req, out := c.ListTagsRequest(input) return out, req.Send() } -// LookupEventsWithContext is the same as LookupEvents with the addition of +// ListTagsWithContext is the same as ListTags with the addition of // the ability to pass a context and additional request options. // -// See LookupEvents for details on how to use this API operation. +// See ListTags for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) LookupEventsWithContext(ctx aws.Context, input *LookupEventsInput, opts ...request.Option) (*LookupEventsOutput, error) { - req, out := c.LookupEventsRequest(input) +func (c *CloudTrail) ListTagsWithContext(ctx aws.Context, input *ListTagsInput, opts ...request.Option) (*ListTagsOutput, error) { + req, out := c.ListTagsRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -// LookupEventsPages iterates over the pages of a LookupEvents operation, +// ListTagsPages iterates over the pages of a ListTags operation, // calling the "fn" function with the response data for each page. To stop // iterating, return false from the fn function. // -// See LookupEvents method for more information on how to use this operation. +// See ListTags method for more information on how to use this operation. // // Note: This operation can generate multiple requests to a service. // -// // Example iterating over at most 3 pages of a LookupEvents operation. +// // Example iterating over at most 3 pages of a ListTags operation. // pageNum := 0 -// err := client.LookupEventsPages(params, -// func(page *cloudtrail.LookupEventsOutput, lastPage bool) bool { +// err := client.ListTagsPages(params, +// func(page *cloudtrail.ListTagsOutput, lastPage bool) bool { // pageNum++ // fmt.Println(page) // return pageNum <= 3 // }) -func (c *CloudTrail) LookupEventsPages(input *LookupEventsInput, fn func(*LookupEventsOutput, bool) bool) error { - return c.LookupEventsPagesWithContext(aws.BackgroundContext(), input, fn) +func (c *CloudTrail) ListTagsPages(input *ListTagsInput, fn func(*ListTagsOutput, bool) bool) error { + return c.ListTagsPagesWithContext(aws.BackgroundContext(), input, fn) } -// LookupEventsPagesWithContext same as LookupEventsPages except +// ListTagsPagesWithContext same as ListTagsPages except // it takes a Context and allows setting request options on the pages. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) LookupEventsPagesWithContext(ctx aws.Context, input *LookupEventsInput, fn func(*LookupEventsOutput, bool) bool, opts ...request.Option) error { +func (c *CloudTrail) ListTagsPagesWithContext(ctx aws.Context, input *ListTagsInput, fn func(*ListTagsOutput, bool) bool, opts ...request.Option) error { p := request.Pagination{ NewRequest: func() (*request.Request, error) { - var inCpy *LookupEventsInput + var inCpy *ListTagsInput if input != nil { tmp := *input inCpy = &tmp } - req, _ := c.LookupEventsRequest(inCpy) + req, _ := c.ListTagsRequest(inCpy) req.SetContext(ctx) req.ApplyOptions(opts...) return req, nil @@ -2940,7 +2999,7 @@ func (c *CloudTrail) LookupEventsPagesWithContext(ctx aws.Context, input *Lookup } for p.Next() { - if !fn(p.Page().(*LookupEventsOutput), !p.HasNextPage()) { + if !fn(p.Page().(*ListTagsOutput), !p.HasNextPage()) { break } } @@ -2948,289 +3007,257 @@ func (c *CloudTrail) LookupEventsPagesWithContext(ctx aws.Context, input *Lookup return p.Err() } -const opPutEventSelectors = "PutEventSelectors" +const opListTrails = "ListTrails" -// PutEventSelectorsRequest generates a "aws/request.Request" representing the -// client's request for the PutEventSelectors operation. The "output" return +// ListTrailsRequest generates a "aws/request.Request" representing the +// client's request for the ListTrails operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See PutEventSelectors for more information on using the PutEventSelectors +// See ListTrails for more information on using the ListTrails // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the PutEventSelectorsRequest method. -// req, resp := client.PutEventSelectorsRequest(params) +// // Example sending a request using the ListTrailsRequest method. +// req, resp := client.ListTrailsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutEventSelectors -func (c *CloudTrail) PutEventSelectorsRequest(input *PutEventSelectorsInput) (req *request.Request, output *PutEventSelectorsOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTrails +func (c *CloudTrail) ListTrailsRequest(input *ListTrailsInput) (req *request.Request, output *ListTrailsOutput) { op := &request.Operation{ - Name: opPutEventSelectors, + Name: opListTrails, HTTPMethod: "POST", HTTPPath: "/", + Paginator: &request.Paginator{ + InputTokens: []string{"NextToken"}, + OutputTokens: []string{"NextToken"}, + LimitToken: "", + TruncationToken: "", + }, } if input == nil { - input = &PutEventSelectorsInput{} + input = &ListTrailsInput{} } - output = &PutEventSelectorsOutput{} + output = &ListTrailsOutput{} req = c.newRequest(op, input, output) return } -// PutEventSelectors API operation for AWS CloudTrail. -// -// Configures an event selector or advanced event selectors for your trail. -// Use event selectors or advanced event selectors to specify management and -// data event settings for your trail. By default, trails created without specific -// event selectors are configured to log all read and write management events, -// and no data events. -// -// When an event occurs in your account, CloudTrail evaluates the event selectors -// or advanced event selectors in all trails. For each trail, if the event matches -// any event selector, the trail processes and logs the event. If the event -// doesn't match any event selector, the trail doesn't log the event. -// -// # Example -// -// You create an event selector for a trail and specify that you want write-only -// events. -// -// The EC2 GetConsoleOutput and RunInstances API operations occur in your account. -// -// CloudTrail evaluates whether the events match your event selectors. -// -// The RunInstances is a write-only event and it matches your event selector. -// The trail logs the event. -// -// The GetConsoleOutput is a read-only event that doesn't match your event selector. -// The trail doesn't log the event. -// -// The PutEventSelectors operation must be called from the region in which the -// trail was created; otherwise, an InvalidHomeRegionException exception is -// thrown. -// -// You can configure up to five event selectors for each trail. For more information, -// see Logging data and management events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-and-data-events-with-cloudtrail.html) -// and Quotas in CloudTrail (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) -// in the CloudTrail User Guide. +// ListTrails API operation for AWS CloudTrail. // -// You can add advanced event selectors, and conditions for your advanced event -// selectors, up to a maximum of 500 values for all conditions and selectors -// on a trail. You can use either AdvancedEventSelectors or EventSelectors, -// but not both. If you apply AdvancedEventSelectors to a trail, any existing -// EventSelectors are overwritten. For more information about advanced event -// selectors, see Logging data events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) -// in the CloudTrail User Guide. +// Lists trails that are in the current account. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation PutEventSelectors for usage and error information. +// API operation ListTrails for usage and error information. // // Returned Error Types: // -// - TrailNotFoundException -// This exception is thrown when the trail with the given name is not found. -// -// - InvalidTrailNameException -// This exception is thrown when the provided trail name is not valid. Trail -// names must meet the following requirements: -// -// - Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores -// (_), or dashes (-) -// -// - Start with a letter or number, and end with a letter or number -// -// - Be between 3 and 128 characters -// -// - Have no adjacent periods, underscores or dashes. Names like my-_namespace -// and my--namespace are not valid. -// -// - Not be in IP address format (for example, 192.168.5.4) -// -// - InvalidHomeRegionException -// This exception is thrown when an operation is called on a trail from a region -// other than the region in which the trail was created. -// -// - InvalidEventSelectorsException -// This exception is thrown when the PutEventSelectors operation is called with -// a number of event selectors, advanced event selectors, or data resources -// that is not valid. The combination of event selectors or advanced event selectors -// and data resources is not valid. A trail can have up to 5 event selectors. -// If a trail uses advanced event selectors, a maximum of 500 total values for -// all conditions in all advanced event selectors is allowed. A trail is limited -// to 250 data resources. These data resources can be distributed across event -// selectors, but the overall total cannot exceed 250. -// -// You can: -// -// - Specify a valid number of event selectors (1 to 5) for a trail. -// -// - Specify a valid number of data resources (1 to 250) for an event selector. -// The limit of number of resources on an individual event selector is configurable -// up to 250. However, this upper limit is allowed only if the total number -// of data resources does not exceed 250 across all event selectors for a -// trail. -// -// - Specify up to 500 values for all conditions in all advanced event selectors -// for a trail. -// -// - Specify a valid value for a parameter. For example, specifying the ReadWriteType -// parameter with a value of read-only is not valid. -// // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. // // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. // -// - NotOrganizationMasterAccountException -// This exception is thrown when the Amazon Web Services account making the -// request to create or update an organization trail or event data store is -// not the management account for an organization in Organizations. For more -// information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) -// or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). -// -// - InsufficientDependencyServiceAccessPermissionException -// This exception is thrown when the IAM user or role that is used to create -// the organization resource lacks one or more required permissions for creating -// an organization resource in a required service. -// -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutEventSelectors -func (c *CloudTrail) PutEventSelectors(input *PutEventSelectorsInput) (*PutEventSelectorsOutput, error) { - req, out := c.PutEventSelectorsRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/ListTrails +func (c *CloudTrail) ListTrails(input *ListTrailsInput) (*ListTrailsOutput, error) { + req, out := c.ListTrailsRequest(input) return out, req.Send() } -// PutEventSelectorsWithContext is the same as PutEventSelectors with the addition of +// ListTrailsWithContext is the same as ListTrails with the addition of // the ability to pass a context and additional request options. // -// See PutEventSelectors for details on how to use this API operation. +// See ListTrails for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) PutEventSelectorsWithContext(ctx aws.Context, input *PutEventSelectorsInput, opts ...request.Option) (*PutEventSelectorsOutput, error) { - req, out := c.PutEventSelectorsRequest(input) +func (c *CloudTrail) ListTrailsWithContext(ctx aws.Context, input *ListTrailsInput, opts ...request.Option) (*ListTrailsOutput, error) { + req, out := c.ListTrailsRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opPutInsightSelectors = "PutInsightSelectors" +// ListTrailsPages iterates over the pages of a ListTrails operation, +// calling the "fn" function with the response data for each page. To stop +// iterating, return false from the fn function. +// +// See ListTrails method for more information on how to use this operation. +// +// Note: This operation can generate multiple requests to a service. +// +// // Example iterating over at most 3 pages of a ListTrails operation. +// pageNum := 0 +// err := client.ListTrailsPages(params, +// func(page *cloudtrail.ListTrailsOutput, lastPage bool) bool { +// pageNum++ +// fmt.Println(page) +// return pageNum <= 3 +// }) +func (c *CloudTrail) ListTrailsPages(input *ListTrailsInput, fn func(*ListTrailsOutput, bool) bool) error { + return c.ListTrailsPagesWithContext(aws.BackgroundContext(), input, fn) +} -// PutInsightSelectorsRequest generates a "aws/request.Request" representing the -// client's request for the PutInsightSelectors operation. The "output" return +// ListTrailsPagesWithContext same as ListTrailsPages except +// it takes a Context and allows setting request options on the pages. +// +// The context must be non-nil and will be used for request cancellation. If +// the context is nil a panic will occur. In the future the SDK may create +// sub-contexts for http.Requests. See https://golang.org/pkg/context/ +// for more information on using Contexts. +func (c *CloudTrail) ListTrailsPagesWithContext(ctx aws.Context, input *ListTrailsInput, fn func(*ListTrailsOutput, bool) bool, opts ...request.Option) error { + p := request.Pagination{ + NewRequest: func() (*request.Request, error) { + var inCpy *ListTrailsInput + if input != nil { + tmp := *input + inCpy = &tmp + } + req, _ := c.ListTrailsRequest(inCpy) + req.SetContext(ctx) + req.ApplyOptions(opts...) + return req, nil + }, + } + + for p.Next() { + if !fn(p.Page().(*ListTrailsOutput), !p.HasNextPage()) { + break + } + } + + return p.Err() +} + +const opLookupEvents = "LookupEvents" + +// LookupEventsRequest generates a "aws/request.Request" representing the +// client's request for the LookupEvents operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See PutInsightSelectors for more information on using the PutInsightSelectors +// See LookupEvents for more information on using the LookupEvents // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the PutInsightSelectorsRequest method. -// req, resp := client.PutInsightSelectorsRequest(params) +// // Example sending a request using the LookupEventsRequest method. +// req, resp := client.LookupEventsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutInsightSelectors -func (c *CloudTrail) PutInsightSelectorsRequest(input *PutInsightSelectorsInput) (req *request.Request, output *PutInsightSelectorsOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/LookupEvents +func (c *CloudTrail) LookupEventsRequest(input *LookupEventsInput) (req *request.Request, output *LookupEventsOutput) { op := &request.Operation{ - Name: opPutInsightSelectors, + Name: opLookupEvents, HTTPMethod: "POST", HTTPPath: "/", + Paginator: &request.Paginator{ + InputTokens: []string{"NextToken"}, + OutputTokens: []string{"NextToken"}, + LimitToken: "MaxResults", + TruncationToken: "", + }, } if input == nil { - input = &PutInsightSelectorsInput{} + input = &LookupEventsInput{} } - output = &PutInsightSelectorsOutput{} + output = &LookupEventsOutput{} req = c.newRequest(op, input, output) return } -// PutInsightSelectors API operation for AWS CloudTrail. +// LookupEvents API operation for AWS CloudTrail. // -// Lets you enable Insights event logging by specifying the Insights selectors -// that you want to enable on an existing trail. You also use PutInsightSelectors -// to turn off Insights event logging, by passing an empty list of insight types. -// The valid Insights event types in this release are ApiErrorRateInsight and -// ApiCallRateInsight. +// Looks up management events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-management-events) +// or CloudTrail Insights events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-insights-events) +// that are captured by CloudTrail. You can look up events that occurred in +// a region within the last 90 days. Lookup supports the following attributes +// for management events: // -// Returns awserr.Error for service API and SDK errors. Use runtime type assertions -// with awserr.Error's Code and Message methods to get detailed information about -// the error. +// - Amazon Web Services access key // -// See the AWS API reference guide for AWS CloudTrail's -// API operation PutInsightSelectors for usage and error information. +// - Event ID // -// Returned Error Types: +// - Event name // -// - TrailNotFoundException -// This exception is thrown when the trail with the given name is not found. +// - Event source // -// - InvalidTrailNameException -// This exception is thrown when the provided trail name is not valid. Trail -// names must meet the following requirements: +// - Read only // -// - Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores -// (_), or dashes (-) +// - Resource name // -// - Start with a letter or number, and end with a letter or number +// - Resource type // -// - Be between 3 and 128 characters +// - User name // -// - Have no adjacent periods, underscores or dashes. Names like my-_namespace -// and my--namespace are not valid. +// Lookup supports the following attributes for Insights events: // -// - Not be in IP address format (for example, 192.168.5.4) +// - Event ID // -// - InvalidHomeRegionException -// This exception is thrown when an operation is called on a trail from a region -// other than the region in which the trail was created. +// - Event name // -// - InvalidInsightSelectorsException -// The formatting or syntax of the InsightSelectors JSON statement in your PutInsightSelectors -// or GetInsightSelectors request is not valid, or the specified insight type -// in the InsightSelectors statement is not a valid insight type. +// - Event source // -// - InsufficientS3BucketPolicyException -// This exception is thrown when the policy on the S3 bucket is not sufficient. +// All attributes are optional. The default number of results returned is 50, +// with a maximum of 50 possible. The response includes a token that you can +// use to get the next page of results. // -// - InsufficientEncryptionPolicyException -// This exception is thrown when the policy on the S3 bucket or KMS key is not -// sufficient. +// The rate of lookup requests is limited to two per second, per account, per +// region. If this limit is exceeded, a throttling error occurs. // -// - S3BucketDoesNotExistException -// This exception is thrown when the specified S3 bucket does not exist. +// Returns awserr.Error for service API and SDK errors. Use runtime type assertions +// with awserr.Error's Code and Message methods to get detailed information about +// the error. // -// - KmsException -// This exception is thrown when there is an issue with the specified KMS key -// and the trail can’t be updated. +// See the AWS API reference guide for AWS CloudTrail's +// API operation LookupEvents for usage and error information. +// +// Returned Error Types: +// +// - InvalidLookupAttributesException +// Occurs when a lookup attribute is specified that is not valid. +// +// - InvalidTimeRangeException +// Occurs if the timestamp values are not valid. Either the start time occurs +// after the end time, or the time range is outside the range of possible values. +// +// - InvalidMaxResultsException +// This exception is thrown if the limit specified is not valid. +// +// - InvalidNextTokenException +// A token that is not valid, or a token that was previously used in a request +// with different parameters. This exception is thrown if the token is not valid. +// +// - InvalidEventCategoryException +// Occurs if an event category that is not valid is specified as a value of +// EventCategory. // // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. @@ -3238,102 +3265,177 @@ func (c *CloudTrail) PutInsightSelectorsRequest(input *PutInsightSelectorsInput) // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. // -// - NotOrganizationMasterAccountException -// This exception is thrown when the Amazon Web Services account making the -// request to create or update an organization trail or event data store is -// not the management account for an organization in Organizations. For more -// information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) -// or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). -// -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutInsightSelectors -func (c *CloudTrail) PutInsightSelectors(input *PutInsightSelectorsInput) (*PutInsightSelectorsOutput, error) { - req, out := c.PutInsightSelectorsRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/LookupEvents +func (c *CloudTrail) LookupEvents(input *LookupEventsInput) (*LookupEventsOutput, error) { + req, out := c.LookupEventsRequest(input) return out, req.Send() } -// PutInsightSelectorsWithContext is the same as PutInsightSelectors with the addition of +// LookupEventsWithContext is the same as LookupEvents with the addition of // the ability to pass a context and additional request options. // -// See PutInsightSelectors for details on how to use this API operation. +// See LookupEvents for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) PutInsightSelectorsWithContext(ctx aws.Context, input *PutInsightSelectorsInput, opts ...request.Option) (*PutInsightSelectorsOutput, error) { - req, out := c.PutInsightSelectorsRequest(input) +func (c *CloudTrail) LookupEventsWithContext(ctx aws.Context, input *LookupEventsInput, opts ...request.Option) (*LookupEventsOutput, error) { + req, out := c.LookupEventsRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opRemoveTags = "RemoveTags" +// LookupEventsPages iterates over the pages of a LookupEvents operation, +// calling the "fn" function with the response data for each page. To stop +// iterating, return false from the fn function. +// +// See LookupEvents method for more information on how to use this operation. +// +// Note: This operation can generate multiple requests to a service. +// +// // Example iterating over at most 3 pages of a LookupEvents operation. +// pageNum := 0 +// err := client.LookupEventsPages(params, +// func(page *cloudtrail.LookupEventsOutput, lastPage bool) bool { +// pageNum++ +// fmt.Println(page) +// return pageNum <= 3 +// }) +func (c *CloudTrail) LookupEventsPages(input *LookupEventsInput, fn func(*LookupEventsOutput, bool) bool) error { + return c.LookupEventsPagesWithContext(aws.BackgroundContext(), input, fn) +} -// RemoveTagsRequest generates a "aws/request.Request" representing the -// client's request for the RemoveTags operation. The "output" return +// LookupEventsPagesWithContext same as LookupEventsPages except +// it takes a Context and allows setting request options on the pages. +// +// The context must be non-nil and will be used for request cancellation. If +// the context is nil a panic will occur. In the future the SDK may create +// sub-contexts for http.Requests. See https://golang.org/pkg/context/ +// for more information on using Contexts. +func (c *CloudTrail) LookupEventsPagesWithContext(ctx aws.Context, input *LookupEventsInput, fn func(*LookupEventsOutput, bool) bool, opts ...request.Option) error { + p := request.Pagination{ + NewRequest: func() (*request.Request, error) { + var inCpy *LookupEventsInput + if input != nil { + tmp := *input + inCpy = &tmp + } + req, _ := c.LookupEventsRequest(inCpy) + req.SetContext(ctx) + req.ApplyOptions(opts...) + return req, nil + }, + } + + for p.Next() { + if !fn(p.Page().(*LookupEventsOutput), !p.HasNextPage()) { + break + } + } + + return p.Err() +} + +const opPutEventSelectors = "PutEventSelectors" + +// PutEventSelectorsRequest generates a "aws/request.Request" representing the +// client's request for the PutEventSelectors operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See RemoveTags for more information on using the RemoveTags +// See PutEventSelectors for more information on using the PutEventSelectors // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the RemoveTagsRequest method. -// req, resp := client.RemoveTagsRequest(params) +// // Example sending a request using the PutEventSelectorsRequest method. +// req, resp := client.PutEventSelectorsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RemoveTags -func (c *CloudTrail) RemoveTagsRequest(input *RemoveTagsInput) (req *request.Request, output *RemoveTagsOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutEventSelectors +func (c *CloudTrail) PutEventSelectorsRequest(input *PutEventSelectorsInput) (req *request.Request, output *PutEventSelectorsOutput) { op := &request.Operation{ - Name: opRemoveTags, + Name: opPutEventSelectors, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { - input = &RemoveTagsInput{} + input = &PutEventSelectorsInput{} } - output = &RemoveTagsOutput{} + output = &PutEventSelectorsOutput{} req = c.newRequest(op, input, output) - req.Handlers.Unmarshal.Swap(jsonrpc.UnmarshalHandler.Name, protocol.UnmarshalDiscardBodyHandler) return } -// RemoveTags API operation for AWS CloudTrail. +// PutEventSelectors API operation for AWS CloudTrail. // -// Removes the specified tags from a trail or event data store. +// Configures an event selector or advanced event selectors for your trail. +// Use event selectors or advanced event selectors to specify management and +// data event settings for your trail. By default, trails created without specific +// event selectors are configured to log all read and write management events, +// and no data events. +// +// When an event occurs in your account, CloudTrail evaluates the event selectors +// or advanced event selectors in all trails. For each trail, if the event matches +// any event selector, the trail processes and logs the event. If the event +// doesn't match any event selector, the trail doesn't log the event. +// +// # Example +// +// You create an event selector for a trail and specify that you want write-only +// events. +// +// The EC2 GetConsoleOutput and RunInstances API operations occur in your account. +// +// CloudTrail evaluates whether the events match your event selectors. +// +// The RunInstances is a write-only event and it matches your event selector. +// The trail logs the event. +// +// The GetConsoleOutput is a read-only event that doesn't match your event selector. +// The trail doesn't log the event. +// +// The PutEventSelectors operation must be called from the region in which the +// trail was created; otherwise, an InvalidHomeRegionException exception is +// thrown. +// +// You can configure up to five event selectors for each trail. For more information, +// see Logging management events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html), +// Logging data events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html), +// and Quotas in CloudTrail (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) +// in the CloudTrail User Guide. +// +// You can add advanced event selectors, and conditions for your advanced event +// selectors, up to a maximum of 500 values for all conditions and selectors +// on a trail. You can use either AdvancedEventSelectors or EventSelectors, +// but not both. If you apply AdvancedEventSelectors to a trail, any existing +// EventSelectors are overwritten. For more information about advanced event +// selectors, see Logging data events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) +// in the CloudTrail User Guide. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation RemoveTags for usage and error information. +// API operation PutEventSelectors for usage and error information. // // Returned Error Types: // -// - ResourceNotFoundException -// This exception is thrown when the specified resource is not found. -// -// - ARNInvalidException -// This exception is thrown when an operation is called with a trail ARN that -// is not valid. The following is the format of a trail ARN. -// -// arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail -// -// - ResourceTypeNotSupportedException -// This exception is thrown when the specified resource type is not supported -// by CloudTrail. +// - TrailNotFoundException +// This exception is thrown when the trail with the given name is not found. // // - InvalidTrailNameException // This exception is thrown when the provided trail name is not valid. Trail @@ -3351,15 +3453,35 @@ func (c *CloudTrail) RemoveTagsRequest(input *RemoveTagsInput) (req *request.Req // // - Not be in IP address format (for example, 192.168.5.4) // -// - InvalidTagParameterException -// This exception is thrown when the specified tag key or values are not valid. -// It can also occur if there are duplicate tags or too many tags on the resource. -// -// - InactiveEventDataStoreException -// The event data store is inactive. +// - InvalidHomeRegionException +// This exception is thrown when an operation is called on a trail from a region +// other than the region in which the trail was created. // -// - EventDataStoreNotFoundException -// The specified event data store was not found. +// - InvalidEventSelectorsException +// This exception is thrown when the PutEventSelectors operation is called with +// a number of event selectors, advanced event selectors, or data resources +// that is not valid. The combination of event selectors or advanced event selectors +// and data resources is not valid. A trail can have up to 5 event selectors. +// If a trail uses advanced event selectors, a maximum of 500 total values for +// all conditions in all advanced event selectors is allowed. A trail is limited +// to 250 data resources. These data resources can be distributed across event +// selectors, but the overall total cannot exceed 250. +// +// You can: +// +// - Specify a valid number of event selectors (1 to 5) for a trail. +// +// - Specify a valid number of data resources (1 to 250) for an event selector. +// The limit of number of resources on an individual event selector is configurable +// up to 250. However, this upper limit is allowed only if the total number +// of data resources does not exceed 250 across all event selectors for a +// trail. +// +// - Specify up to 500 values for all conditions in all advanced event selectors +// for a trail. +// +// - Specify a valid value for a parameter. For example, specifying the ReadWriteType +// parameter with a value of read-only is not valid. // // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. @@ -3374,122 +3496,138 @@ func (c *CloudTrail) RemoveTagsRequest(input *RemoveTagsInput) (req *request.Req // information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) // or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RemoveTags -func (c *CloudTrail) RemoveTags(input *RemoveTagsInput) (*RemoveTagsOutput, error) { - req, out := c.RemoveTagsRequest(input) +// - InsufficientDependencyServiceAccessPermissionException +// This exception is thrown when the IAM user or role that is used to create +// the organization resource lacks one or more required permissions for creating +// an organization resource in a required service. +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutEventSelectors +func (c *CloudTrail) PutEventSelectors(input *PutEventSelectorsInput) (*PutEventSelectorsOutput, error) { + req, out := c.PutEventSelectorsRequest(input) return out, req.Send() } -// RemoveTagsWithContext is the same as RemoveTags with the addition of +// PutEventSelectorsWithContext is the same as PutEventSelectors with the addition of // the ability to pass a context and additional request options. // -// See RemoveTags for details on how to use this API operation. +// See PutEventSelectors for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) RemoveTagsWithContext(ctx aws.Context, input *RemoveTagsInput, opts ...request.Option) (*RemoveTagsOutput, error) { - req, out := c.RemoveTagsRequest(input) +func (c *CloudTrail) PutEventSelectorsWithContext(ctx aws.Context, input *PutEventSelectorsInput, opts ...request.Option) (*PutEventSelectorsOutput, error) { + req, out := c.PutEventSelectorsRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opRestoreEventDataStore = "RestoreEventDataStore" +const opPutInsightSelectors = "PutInsightSelectors" -// RestoreEventDataStoreRequest generates a "aws/request.Request" representing the -// client's request for the RestoreEventDataStore operation. The "output" return +// PutInsightSelectorsRequest generates a "aws/request.Request" representing the +// client's request for the PutInsightSelectors operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See RestoreEventDataStore for more information on using the RestoreEventDataStore +// See PutInsightSelectors for more information on using the PutInsightSelectors // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the RestoreEventDataStoreRequest method. -// req, resp := client.RestoreEventDataStoreRequest(params) +// // Example sending a request using the PutInsightSelectorsRequest method. +// req, resp := client.PutInsightSelectorsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RestoreEventDataStore -func (c *CloudTrail) RestoreEventDataStoreRequest(input *RestoreEventDataStoreInput) (req *request.Request, output *RestoreEventDataStoreOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutInsightSelectors +func (c *CloudTrail) PutInsightSelectorsRequest(input *PutInsightSelectorsInput) (req *request.Request, output *PutInsightSelectorsOutput) { op := &request.Operation{ - Name: opRestoreEventDataStore, + Name: opPutInsightSelectors, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { - input = &RestoreEventDataStoreInput{} + input = &PutInsightSelectorsInput{} } - output = &RestoreEventDataStoreOutput{} + output = &PutInsightSelectorsOutput{} req = c.newRequest(op, input, output) return } -// RestoreEventDataStore API operation for AWS CloudTrail. +// PutInsightSelectors API operation for AWS CloudTrail. // -// Restores a deleted event data store specified by EventDataStore, which accepts -// an event data store ARN. You can only restore a deleted event data store -// within the seven-day wait period after deletion. Restoring an event data -// store can take several minutes, depending on the size of the event data store. +// Lets you enable Insights event logging by specifying the Insights selectors +// that you want to enable on an existing trail. You also use PutInsightSelectors +// to turn off Insights event logging, by passing an empty list of insight types. +// The valid Insights event types in this release are ApiErrorRateInsight and +// ApiCallRateInsight. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation RestoreEventDataStore for usage and error information. +// API operation PutInsightSelectors for usage and error information. // // Returned Error Types: // -// - EventDataStoreARNInvalidException -// The specified event data store ARN is not valid or does not map to an event -// data store in your account. +// - TrailNotFoundException +// This exception is thrown when the trail with the given name is not found. // -// - EventDataStoreNotFoundException -// The specified event data store was not found. +// - InvalidTrailNameException +// This exception is thrown when the provided trail name is not valid. Trail +// names must meet the following requirements: // -// - EventDataStoreMaxLimitExceededException -// Your account has used the maximum number of event data stores. +// - Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores +// (_), or dashes (-) // -// - InvalidEventDataStoreStatusException -// The event data store is not in a status that supports the operation. +// - Start with a letter or number, and end with a letter or number // -// - InvalidParameterException -// The request includes a parameter that is not valid. +// - Be between 3 and 128 characters // -// - OperationNotPermittedException -// This exception is thrown when the requested operation is not permitted. +// - Have no adjacent periods, underscores or dashes. Names like my-_namespace +// and my--namespace are not valid. // -// - UnsupportedOperationException -// This exception is thrown when the requested operation is not supported. +// - Not be in IP address format (for example, 192.168.5.4) // -// - AccessNotEnabledException -// This exception is thrown when trusted access has not been enabled between -// CloudTrail and Organizations. For more information, see Enabling Trusted -// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) -// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). +// - InvalidHomeRegionException +// This exception is thrown when an operation is called on a trail from a region +// other than the region in which the trail was created. // -// - InsufficientDependencyServiceAccessPermissionException -// This exception is thrown when the IAM user or role that is used to create -// the organization resource lacks one or more required permissions for creating -// an organization resource in a required service. +// - InvalidInsightSelectorsException +// The formatting or syntax of the InsightSelectors JSON statement in your PutInsightSelectors +// or GetInsightSelectors request is not valid, or the specified insight type +// in the InsightSelectors statement is not a valid insight type. // -// - OrganizationsNotInUseException -// This exception is thrown when the request is made from an Amazon Web Services -// account that is not a member of an organization. To make this request, sign -// in using the credentials of an account that belongs to an organization. +// - InsufficientS3BucketPolicyException +// This exception is thrown when the policy on the S3 bucket is not sufficient. +// +// - InsufficientEncryptionPolicyException +// This exception is thrown when the policy on the S3 bucket or KMS key is not +// sufficient. +// +// - S3BucketDoesNotExistException +// This exception is thrown when the specified S3 bucket does not exist. +// +// - KmsException +// This exception is thrown when there is an issue with the specified KMS key +// and the trail can’t be updated. +// +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. +// +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. // // - NotOrganizationMasterAccountException // This exception is thrown when the Amazon Web Services account making the @@ -3498,94 +3636,95 @@ func (c *CloudTrail) RestoreEventDataStoreRequest(input *RestoreEventDataStoreIn // information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) // or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). // -// - OrganizationNotInAllFeaturesModeException -// This exception is thrown when Organizations is not configured to support -// all features. All features must be enabled in Organizations to support creating -// an organization trail or event data store. -// -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RestoreEventDataStore -func (c *CloudTrail) RestoreEventDataStore(input *RestoreEventDataStoreInput) (*RestoreEventDataStoreOutput, error) { - req, out := c.RestoreEventDataStoreRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/PutInsightSelectors +func (c *CloudTrail) PutInsightSelectors(input *PutInsightSelectorsInput) (*PutInsightSelectorsOutput, error) { + req, out := c.PutInsightSelectorsRequest(input) return out, req.Send() } -// RestoreEventDataStoreWithContext is the same as RestoreEventDataStore with the addition of +// PutInsightSelectorsWithContext is the same as PutInsightSelectors with the addition of // the ability to pass a context and additional request options. // -// See RestoreEventDataStore for details on how to use this API operation. +// See PutInsightSelectors for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) RestoreEventDataStoreWithContext(ctx aws.Context, input *RestoreEventDataStoreInput, opts ...request.Option) (*RestoreEventDataStoreOutput, error) { - req, out := c.RestoreEventDataStoreRequest(input) +func (c *CloudTrail) PutInsightSelectorsWithContext(ctx aws.Context, input *PutInsightSelectorsInput, opts ...request.Option) (*PutInsightSelectorsOutput, error) { + req, out := c.PutInsightSelectorsRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opStartLogging = "StartLogging" +const opRemoveTags = "RemoveTags" -// StartLoggingRequest generates a "aws/request.Request" representing the -// client's request for the StartLogging operation. The "output" return +// RemoveTagsRequest generates a "aws/request.Request" representing the +// client's request for the RemoveTags operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See StartLogging for more information on using the StartLogging +// See RemoveTags for more information on using the RemoveTags // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the StartLoggingRequest method. -// req, resp := client.StartLoggingRequest(params) +// // Example sending a request using the RemoveTagsRequest method. +// req, resp := client.RemoveTagsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartLogging -func (c *CloudTrail) StartLoggingRequest(input *StartLoggingInput) (req *request.Request, output *StartLoggingOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RemoveTags +func (c *CloudTrail) RemoveTagsRequest(input *RemoveTagsInput) (req *request.Request, output *RemoveTagsOutput) { op := &request.Operation{ - Name: opStartLogging, + Name: opRemoveTags, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { - input = &StartLoggingInput{} + input = &RemoveTagsInput{} } - output = &StartLoggingOutput{} + output = &RemoveTagsOutput{} req = c.newRequest(op, input, output) req.Handlers.Unmarshal.Swap(jsonrpc.UnmarshalHandler.Name, protocol.UnmarshalDiscardBodyHandler) return } -// StartLogging API operation for AWS CloudTrail. +// RemoveTags API operation for AWS CloudTrail. // -// Starts the recording of Amazon Web Services API calls and log file delivery -// for a trail. For a trail that is enabled in all regions, this operation must -// be called from the region in which the trail was created. This operation -// cannot be called on the shadow trails (replicated trails in other regions) -// of a trail that is enabled in all regions. +// Removes the specified tags from a trail or event data store. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation StartLogging for usage and error information. +// API operation RemoveTags for usage and error information. // // Returned Error Types: // -// - TrailNotFoundException -// This exception is thrown when the trail with the given name is not found. +// - ResourceNotFoundException +// This exception is thrown when the specified resource is not found. +// +// - ARNInvalidException +// This exception is thrown when an operation is called with a trail ARN that +// is not valid. The following is the format of a trail ARN. +// +// arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail +// +// - ResourceTypeNotSupportedException +// This exception is thrown when the specified resource type is not supported +// by CloudTrail. // // - InvalidTrailNameException // This exception is thrown when the provided trail name is not valid. Trail @@ -3603,9 +3742,15 @@ func (c *CloudTrail) StartLoggingRequest(input *StartLoggingInput) (req *request // // - Not be in IP address format (for example, 192.168.5.4) // -// - InvalidHomeRegionException -// This exception is thrown when an operation is called on a trail from a region -// other than the region in which the trail was created. +// - InvalidTagParameterException +// This exception is thrown when the specified tag key or values are not valid. +// It can also occur if there are duplicate tags or too many tags on the resource. +// +// - InactiveEventDataStoreException +// The event data store is inactive. +// +// - EventDataStoreNotFoundException +// The specified event data store was not found. // // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. @@ -3620,88 +3765,224 @@ func (c *CloudTrail) StartLoggingRequest(input *StartLoggingInput) (req *request // information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) // or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). // -// - InsufficientDependencyServiceAccessPermissionException -// This exception is thrown when the IAM user or role that is used to create -// the organization resource lacks one or more required permissions for creating -// an organization resource in a required service. -// -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartLogging -func (c *CloudTrail) StartLogging(input *StartLoggingInput) (*StartLoggingOutput, error) { - req, out := c.StartLoggingRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RemoveTags +func (c *CloudTrail) RemoveTags(input *RemoveTagsInput) (*RemoveTagsOutput, error) { + req, out := c.RemoveTagsRequest(input) return out, req.Send() } -// StartLoggingWithContext is the same as StartLogging with the addition of +// RemoveTagsWithContext is the same as RemoveTags with the addition of // the ability to pass a context and additional request options. // -// See StartLogging for details on how to use this API operation. +// See RemoveTags for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) StartLoggingWithContext(ctx aws.Context, input *StartLoggingInput, opts ...request.Option) (*StartLoggingOutput, error) { - req, out := c.StartLoggingRequest(input) +func (c *CloudTrail) RemoveTagsWithContext(ctx aws.Context, input *RemoveTagsInput, opts ...request.Option) (*RemoveTagsOutput, error) { + req, out := c.RemoveTagsRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opStartQuery = "StartQuery" +const opRestoreEventDataStore = "RestoreEventDataStore" -// StartQueryRequest generates a "aws/request.Request" representing the -// client's request for the StartQuery operation. The "output" return +// RestoreEventDataStoreRequest generates a "aws/request.Request" representing the +// client's request for the RestoreEventDataStore operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See StartQuery for more information on using the StartQuery +// See RestoreEventDataStore for more information on using the RestoreEventDataStore // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the StartQueryRequest method. -// req, resp := client.StartQueryRequest(params) +// // Example sending a request using the RestoreEventDataStoreRequest method. +// req, resp := client.RestoreEventDataStoreRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartQuery -func (c *CloudTrail) StartQueryRequest(input *StartQueryInput) (req *request.Request, output *StartQueryOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RestoreEventDataStore +func (c *CloudTrail) RestoreEventDataStoreRequest(input *RestoreEventDataStoreInput) (req *request.Request, output *RestoreEventDataStoreOutput) { op := &request.Operation{ - Name: opStartQuery, + Name: opRestoreEventDataStore, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { - input = &StartQueryInput{} + input = &RestoreEventDataStoreInput{} } - output = &StartQueryOutput{} + output = &RestoreEventDataStoreOutput{} req = c.newRequest(op, input, output) return } -// StartQuery API operation for AWS CloudTrail. +// RestoreEventDataStore API operation for AWS CloudTrail. // -// Starts a CloudTrail Lake query. The required QueryStatement parameter provides -// your SQL query, enclosed in single quotation marks. +// Restores a deleted event data store specified by EventDataStore, which accepts +// an event data store ARN. You can only restore a deleted event data store +// within the seven-day wait period after deletion. Restoring an event data +// store can take several minutes, depending on the size of the event data store. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation StartQuery for usage and error information. +// API operation RestoreEventDataStore for usage and error information. +// +// Returned Error Types: +// +// - EventDataStoreARNInvalidException +// The specified event data store ARN is not valid or does not map to an event +// data store in your account. +// +// - EventDataStoreNotFoundException +// The specified event data store was not found. +// +// - EventDataStoreMaxLimitExceededException +// Your account has used the maximum number of event data stores. +// +// - InvalidEventDataStoreStatusException +// The event data store is not in a status that supports the operation. +// +// - InvalidParameterException +// The request includes a parameter that is not valid. +// +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. +// +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. +// +// - AccessNotEnabledException +// This exception is thrown when trusted access has not been enabled between +// CloudTrail and Organizations. For more information, see Enabling Trusted +// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) +// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). +// +// - InsufficientDependencyServiceAccessPermissionException +// This exception is thrown when the IAM user or role that is used to create +// the organization resource lacks one or more required permissions for creating +// an organization resource in a required service. +// +// - OrganizationsNotInUseException +// This exception is thrown when the request is made from an Amazon Web Services +// account that is not a member of an organization. To make this request, sign +// in using the credentials of an account that belongs to an organization. +// +// - NotOrganizationMasterAccountException +// This exception is thrown when the Amazon Web Services account making the +// request to create or update an organization trail or event data store is +// not the management account for an organization in Organizations. For more +// information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) +// or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). +// +// - OrganizationNotInAllFeaturesModeException +// This exception is thrown when Organizations is not configured to support +// all features. All features must be enabled in Organizations to support creating +// an organization trail or event data store. +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/RestoreEventDataStore +func (c *CloudTrail) RestoreEventDataStore(input *RestoreEventDataStoreInput) (*RestoreEventDataStoreOutput, error) { + req, out := c.RestoreEventDataStoreRequest(input) + return out, req.Send() +} + +// RestoreEventDataStoreWithContext is the same as RestoreEventDataStore with the addition of +// the ability to pass a context and additional request options. +// +// See RestoreEventDataStore for details on how to use this API operation. +// +// The context must be non-nil and will be used for request cancellation. If +// the context is nil a panic will occur. In the future the SDK may create +// sub-contexts for http.Requests. See https://golang.org/pkg/context/ +// for more information on using Contexts. +func (c *CloudTrail) RestoreEventDataStoreWithContext(ctx aws.Context, input *RestoreEventDataStoreInput, opts ...request.Option) (*RestoreEventDataStoreOutput, error) { + req, out := c.RestoreEventDataStoreRequest(input) + req.SetContext(ctx) + req.ApplyOptions(opts...) + return out, req.Send() +} + +const opStartImport = "StartImport" + +// StartImportRequest generates a "aws/request.Request" representing the +// client's request for the StartImport operation. The "output" return +// value will be populated with the request's response once the request completes +// successfully. +// +// Use "Send" method on the returned Request to send the API call to the service. +// the "output" return value is not valid until after Send returns without error. +// +// See StartImport for more information on using the StartImport +// API call, and error handling. +// +// This method is useful when you want to inject custom logic or configuration +// into the SDK's request lifecycle. Such as custom headers, or retry logic. +// +// // Example sending a request using the StartImportRequest method. +// req, resp := client.StartImportRequest(params) +// +// err := req.Send() +// if err == nil { // resp is now filled +// fmt.Println(resp) +// } +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartImport +func (c *CloudTrail) StartImportRequest(input *StartImportInput) (req *request.Request, output *StartImportOutput) { + op := &request.Operation{ + Name: opStartImport, + HTTPMethod: "POST", + HTTPPath: "/", + } + + if input == nil { + input = &StartImportInput{} + } + + output = &StartImportOutput{} + req = c.newRequest(op, input, output) + return +} + +// StartImport API operation for AWS CloudTrail. +// +// Starts an import of logged trail events from a source S3 bucket to a destination +// event data store. +// +// When you start a new import, the Destinations and ImportSource parameters +// are required. Before starting a new import, disable any access control lists +// (ACLs) attached to the source S3 bucket. For more information about disabling +// ACLs, see Controlling ownership of objects and disabling ACLs for your bucket +// (https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html). +// +// When you retry an import, the ImportID parameter is required. +// +// Returns awserr.Error for service API and SDK errors. Use runtime type assertions +// with awserr.Error's Code and Message methods to get detailed information about +// the error. +// +// See the AWS API reference guide for AWS CloudTrail's +// API operation StartImport for usage and error information. // // Returned Error Types: // +// - AccountHasOngoingImportException +// This exception is thrown when you start a new import and a previous import +// is still in progress. +// // - EventDataStoreARNInvalidException // The specified event data store ARN is not valid or does not map to an event // data store in your account. @@ -3709,21 +3990,31 @@ func (c *CloudTrail) StartQueryRequest(input *StartQueryInput) (req *request.Req // - EventDataStoreNotFoundException // The specified event data store was not found. // +// - InvalidEventDataStoreStatusException +// The event data store is not in a status that supports the operation. +// +// - InvalidEventDataStoreCategoryException +// This exception is thrown when the event data store category is not valid +// for the import. +// // - InactiveEventDataStoreException // The event data store is inactive. // +// - InvalidImportSourceException +// This exception is thrown when the provided source S3 bucket is not valid +// for import. +// +// - ImportNotFoundException +// The specified import was not found. +// // - InvalidParameterException // The request includes a parameter that is not valid. // -// - InvalidQueryStatementException -// The query that was submitted has validation errors, or uses incorrect syntax -// or unsupported keywords. For more information about writing a query, see -// Create or edit a query (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html) -// in the CloudTrail User Guide. +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. // -// - MaxConcurrentQueriesException -// You are already running the maximum number of concurrent queries. Wait a -// minute for some queries to finish, and then run the query again. +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. // // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. @@ -3731,87 +4022,84 @@ func (c *CloudTrail) StartQueryRequest(input *StartQueryInput) (req *request.Req // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartQuery -func (c *CloudTrail) StartQuery(input *StartQueryInput) (*StartQueryOutput, error) { - req, out := c.StartQueryRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartImport +func (c *CloudTrail) StartImport(input *StartImportInput) (*StartImportOutput, error) { + req, out := c.StartImportRequest(input) return out, req.Send() } -// StartQueryWithContext is the same as StartQuery with the addition of +// StartImportWithContext is the same as StartImport with the addition of // the ability to pass a context and additional request options. // -// See StartQuery for details on how to use this API operation. +// See StartImport for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) StartQueryWithContext(ctx aws.Context, input *StartQueryInput, opts ...request.Option) (*StartQueryOutput, error) { - req, out := c.StartQueryRequest(input) +func (c *CloudTrail) StartImportWithContext(ctx aws.Context, input *StartImportInput, opts ...request.Option) (*StartImportOutput, error) { + req, out := c.StartImportRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opStopLogging = "StopLogging" +const opStartLogging = "StartLogging" -// StopLoggingRequest generates a "aws/request.Request" representing the -// client's request for the StopLogging operation. The "output" return +// StartLoggingRequest generates a "aws/request.Request" representing the +// client's request for the StartLogging operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See StopLogging for more information on using the StopLogging +// See StartLogging for more information on using the StartLogging // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the StopLoggingRequest method. -// req, resp := client.StopLoggingRequest(params) +// // Example sending a request using the StartLoggingRequest method. +// req, resp := client.StartLoggingRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StopLogging -func (c *CloudTrail) StopLoggingRequest(input *StopLoggingInput) (req *request.Request, output *StopLoggingOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartLogging +func (c *CloudTrail) StartLoggingRequest(input *StartLoggingInput) (req *request.Request, output *StartLoggingOutput) { op := &request.Operation{ - Name: opStopLogging, + Name: opStartLogging, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { - input = &StopLoggingInput{} + input = &StartLoggingInput{} } - output = &StopLoggingOutput{} + output = &StartLoggingOutput{} req = c.newRequest(op, input, output) req.Handlers.Unmarshal.Swap(jsonrpc.UnmarshalHandler.Name, protocol.UnmarshalDiscardBodyHandler) return } -// StopLogging API operation for AWS CloudTrail. +// StartLogging API operation for AWS CloudTrail. // -// Suspends the recording of Amazon Web Services API calls and log file delivery -// for the specified trail. Under most circumstances, there is no need to use -// this action. You can update a trail without stopping it first. This action -// is the only way to stop recording. For a trail enabled in all regions, this -// operation must be called from the region in which the trail was created, -// or an InvalidHomeRegionException will occur. This operation cannot be called -// on the shadow trails (replicated trails in other regions) of a trail enabled -// in all regions. +// Starts the recording of Amazon Web Services API calls and log file delivery +// for a trail. For a trail that is enabled in all regions, this operation must +// be called from the region in which the trail was created. This operation +// cannot be called on the shadow trails (replicated trails in other regions) +// of a trail that is enabled in all regions. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation StopLogging for usage and error information. +// API operation StartLogging for usage and error information. // // Returned Error Types: // @@ -3856,85 +4144,80 @@ func (c *CloudTrail) StopLoggingRequest(input *StopLoggingInput) (req *request.R // the organization resource lacks one or more required permissions for creating // an organization resource in a required service. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StopLogging -func (c *CloudTrail) StopLogging(input *StopLoggingInput) (*StopLoggingOutput, error) { - req, out := c.StopLoggingRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartLogging +func (c *CloudTrail) StartLogging(input *StartLoggingInput) (*StartLoggingOutput, error) { + req, out := c.StartLoggingRequest(input) return out, req.Send() } -// StopLoggingWithContext is the same as StopLogging with the addition of +// StartLoggingWithContext is the same as StartLogging with the addition of // the ability to pass a context and additional request options. // -// See StopLogging for details on how to use this API operation. +// See StartLogging for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) StopLoggingWithContext(ctx aws.Context, input *StopLoggingInput, opts ...request.Option) (*StopLoggingOutput, error) { - req, out := c.StopLoggingRequest(input) +func (c *CloudTrail) StartLoggingWithContext(ctx aws.Context, input *StartLoggingInput, opts ...request.Option) (*StartLoggingOutput, error) { + req, out := c.StartLoggingRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opUpdateEventDataStore = "UpdateEventDataStore" +const opStartQuery = "StartQuery" -// UpdateEventDataStoreRequest generates a "aws/request.Request" representing the -// client's request for the UpdateEventDataStore operation. The "output" return +// StartQueryRequest generates a "aws/request.Request" representing the +// client's request for the StartQuery operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See UpdateEventDataStore for more information on using the UpdateEventDataStore +// See StartQuery for more information on using the StartQuery // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the UpdateEventDataStoreRequest method. -// req, resp := client.UpdateEventDataStoreRequest(params) +// // Example sending a request using the StartQueryRequest method. +// req, resp := client.StartQueryRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateEventDataStore -func (c *CloudTrail) UpdateEventDataStoreRequest(input *UpdateEventDataStoreInput) (req *request.Request, output *UpdateEventDataStoreOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartQuery +func (c *CloudTrail) StartQueryRequest(input *StartQueryInput) (req *request.Request, output *StartQueryOutput) { op := &request.Operation{ - Name: opUpdateEventDataStore, + Name: opStartQuery, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { - input = &UpdateEventDataStoreInput{} + input = &StartQueryInput{} } - output = &UpdateEventDataStoreOutput{} + output = &StartQueryOutput{} req = c.newRequest(op, input, output) return } -// UpdateEventDataStore API operation for AWS CloudTrail. +// StartQuery API operation for AWS CloudTrail. // -// Updates an event data store. The required EventDataStore value is an ARN -// or the ID portion of the ARN. Other parameters are optional, but at least -// one optional parameter must be specified, or CloudTrail throws an error. -// RetentionPeriod is in days, and valid values are integers between 90 and -// 2557. By default, TerminationProtection is enabled. AdvancedEventSelectors -// includes or excludes management and data events in your event data store; -// for more information about AdvancedEventSelectors, see PutEventSelectorsRequest$AdvancedEventSelectors. +// Starts a CloudTrail Lake query. The required QueryStatement parameter provides +// your SQL query, enclosed in single quotation marks. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation UpdateEventDataStore for usage and error information. +// API operation StartQuery for usage and error information. // // Returned Error Types: // @@ -3951,149 +4234,196 @@ func (c *CloudTrail) UpdateEventDataStoreRequest(input *UpdateEventDataStoreInpu // - InvalidParameterException // The request includes a parameter that is not valid. // -// - OperationNotPermittedException -// This exception is thrown when the requested operation is not permitted. +// - InvalidQueryStatementException +// The query that was submitted has validation errors, or uses incorrect syntax +// or unsupported keywords. For more information about writing a query, see +// Create or edit a query (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html) +// in the CloudTrail User Guide. // -// - UnsupportedOperationException -// This exception is thrown when the requested operation is not supported. -// -// - AccessNotEnabledException -// This exception is thrown when trusted access has not been enabled between -// CloudTrail and Organizations. For more information, see Enabling Trusted -// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) -// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). -// -// - InsufficientDependencyServiceAccessPermissionException -// This exception is thrown when the IAM user or role that is used to create -// the organization resource lacks one or more required permissions for creating -// an organization resource in a required service. -// -// - OrganizationsNotInUseException -// This exception is thrown when the request is made from an Amazon Web Services -// account that is not a member of an organization. To make this request, sign -// in using the credentials of an account that belongs to an organization. +// - MaxConcurrentQueriesException +// You are already running the maximum number of concurrent queries. Wait a +// minute for some queries to finish, and then run the query again. // -// - NotOrganizationMasterAccountException -// This exception is thrown when the Amazon Web Services account making the -// request to create or update an organization trail or event data store is -// not the management account for an organization in Organizations. For more -// information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) -// or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. // -// - OrganizationNotInAllFeaturesModeException -// This exception is thrown when Organizations is not configured to support -// all features. All features must be enabled in Organizations to support creating -// an organization trail or event data store. +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateEventDataStore -func (c *CloudTrail) UpdateEventDataStore(input *UpdateEventDataStoreInput) (*UpdateEventDataStoreOutput, error) { - req, out := c.UpdateEventDataStoreRequest(input) +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StartQuery +func (c *CloudTrail) StartQuery(input *StartQueryInput) (*StartQueryOutput, error) { + req, out := c.StartQueryRequest(input) return out, req.Send() } -// UpdateEventDataStoreWithContext is the same as UpdateEventDataStore with the addition of +// StartQueryWithContext is the same as StartQuery with the addition of // the ability to pass a context and additional request options. // -// See UpdateEventDataStore for details on how to use this API operation. +// See StartQuery for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) UpdateEventDataStoreWithContext(ctx aws.Context, input *UpdateEventDataStoreInput, opts ...request.Option) (*UpdateEventDataStoreOutput, error) { - req, out := c.UpdateEventDataStoreRequest(input) +func (c *CloudTrail) StartQueryWithContext(ctx aws.Context, input *StartQueryInput, opts ...request.Option) (*StartQueryOutput, error) { + req, out := c.StartQueryRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -const opUpdateTrail = "UpdateTrail" +const opStopImport = "StopImport" -// UpdateTrailRequest generates a "aws/request.Request" representing the -// client's request for the UpdateTrail operation. The "output" return +// StopImportRequest generates a "aws/request.Request" representing the +// client's request for the StopImport operation. The "output" return // value will be populated with the request's response once the request completes // successfully. // // Use "Send" method on the returned Request to send the API call to the service. // the "output" return value is not valid until after Send returns without error. // -// See UpdateTrail for more information on using the UpdateTrail +// See StopImport for more information on using the StopImport // API call, and error handling. // // This method is useful when you want to inject custom logic or configuration // into the SDK's request lifecycle. Such as custom headers, or retry logic. // -// // Example sending a request using the UpdateTrailRequest method. -// req, resp := client.UpdateTrailRequest(params) +// // Example sending a request using the StopImportRequest method. +// req, resp := client.StopImportRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateTrail -func (c *CloudTrail) UpdateTrailRequest(input *UpdateTrailInput) (req *request.Request, output *UpdateTrailOutput) { +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StopImport +func (c *CloudTrail) StopImportRequest(input *StopImportInput) (req *request.Request, output *StopImportOutput) { op := &request.Operation{ - Name: opUpdateTrail, + Name: opStopImport, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { - input = &UpdateTrailInput{} + input = &StopImportInput{} } - output = &UpdateTrailOutput{} + output = &StopImportOutput{} req = c.newRequest(op, input, output) return } -// UpdateTrail API operation for AWS CloudTrail. +// StopImport API operation for AWS CloudTrail. // -// Updates trail settings that control what events you are logging, and how -// to handle log files. Changes to a trail do not require stopping the CloudTrail -// service. Use this action to designate an existing bucket for log delivery. -// If the existing bucket has previously been a target for CloudTrail log files, -// an IAM policy exists for the bucket. UpdateTrail must be called from the -// region in which the trail was created; otherwise, an InvalidHomeRegionException -// is thrown. +// Stops a specified import. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS CloudTrail's -// API operation UpdateTrail for usage and error information. +// API operation StopImport for usage and error information. // // Returned Error Types: // -// - S3BucketDoesNotExistException -// This exception is thrown when the specified S3 bucket does not exist. +// - ImportNotFoundException +// The specified import was not found. // -// - InsufficientS3BucketPolicyException -// This exception is thrown when the policy on the S3 bucket is not sufficient. +// - InvalidParameterException +// The request includes a parameter that is not valid. // -// - InsufficientSnsTopicPolicyException -// This exception is thrown when the policy on the Amazon SNS topic is not sufficient. +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. // -// - InsufficientEncryptionPolicyException -// This exception is thrown when the policy on the S3 bucket or KMS key is not -// sufficient. +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. // -// - TrailNotFoundException -// This exception is thrown when the trail with the given name is not found. +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StopImport +func (c *CloudTrail) StopImport(input *StopImportInput) (*StopImportOutput, error) { + req, out := c.StopImportRequest(input) + return out, req.Send() +} + +// StopImportWithContext is the same as StopImport with the addition of +// the ability to pass a context and additional request options. // -// - InvalidS3BucketNameException -// This exception is thrown when the provided S3 bucket name is not valid. +// See StopImport for details on how to use this API operation. // -// - InvalidS3PrefixException -// This exception is thrown when the provided S3 prefix is not valid. +// The context must be non-nil and will be used for request cancellation. If +// the context is nil a panic will occur. In the future the SDK may create +// sub-contexts for http.Requests. See https://golang.org/pkg/context/ +// for more information on using Contexts. +func (c *CloudTrail) StopImportWithContext(ctx aws.Context, input *StopImportInput, opts ...request.Option) (*StopImportOutput, error) { + req, out := c.StopImportRequest(input) + req.SetContext(ctx) + req.ApplyOptions(opts...) + return out, req.Send() +} + +const opStopLogging = "StopLogging" + +// StopLoggingRequest generates a "aws/request.Request" representing the +// client's request for the StopLogging operation. The "output" return +// value will be populated with the request's response once the request completes +// successfully. // -// - InvalidSnsTopicNameException -// This exception is thrown when the provided SNS topic name is not valid. +// Use "Send" method on the returned Request to send the API call to the service. +// the "output" return value is not valid until after Send returns without error. // -// - InvalidKmsKeyIdException -// This exception is thrown when the KMS key ARN is not valid. +// See StopLogging for more information on using the StopLogging +// API call, and error handling. +// +// This method is useful when you want to inject custom logic or configuration +// into the SDK's request lifecycle. Such as custom headers, or retry logic. +// +// // Example sending a request using the StopLoggingRequest method. +// req, resp := client.StopLoggingRequest(params) +// +// err := req.Send() +// if err == nil { // resp is now filled +// fmt.Println(resp) +// } +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StopLogging +func (c *CloudTrail) StopLoggingRequest(input *StopLoggingInput) (req *request.Request, output *StopLoggingOutput) { + op := &request.Operation{ + Name: opStopLogging, + HTTPMethod: "POST", + HTTPPath: "/", + } + + if input == nil { + input = &StopLoggingInput{} + } + + output = &StopLoggingOutput{} + req = c.newRequest(op, input, output) + req.Handlers.Unmarshal.Swap(jsonrpc.UnmarshalHandler.Name, protocol.UnmarshalDiscardBodyHandler) + return +} + +// StopLogging API operation for AWS CloudTrail. +// +// Suspends the recording of Amazon Web Services API calls and log file delivery +// for the specified trail. Under most circumstances, there is no need to use +// this action. You can update a trail without stopping it first. This action +// is the only way to stop recording. For a trail enabled in all regions, this +// operation must be called from the region in which the trail was created, +// or an InvalidHomeRegionException will occur. This operation cannot be called +// on the shadow trails (replicated trails in other regions) of a trail enabled +// in all regions. +// +// Returns awserr.Error for service API and SDK errors. Use runtime type assertions +// with awserr.Error's Code and Message methods to get detailed information about +// the error. +// +// See the AWS API reference guide for AWS CloudTrail's +// API operation StopLogging for usage and error information. +// +// Returned Error Types: +// +// - TrailNotFoundException +// This exception is thrown when the trail with the given name is not found. // // - InvalidTrailNameException // This exception is thrown when the provided trail name is not valid. Trail @@ -4111,87 +4441,16 @@ func (c *CloudTrail) UpdateTrailRequest(input *UpdateTrailInput) (req *request.R // // - Not be in IP address format (for example, 192.168.5.4) // -// - TrailNotProvidedException -// This exception is no longer in use. -// -// - InvalidEventSelectorsException -// This exception is thrown when the PutEventSelectors operation is called with -// a number of event selectors, advanced event selectors, or data resources -// that is not valid. The combination of event selectors or advanced event selectors -// and data resources is not valid. A trail can have up to 5 event selectors. -// If a trail uses advanced event selectors, a maximum of 500 total values for -// all conditions in all advanced event selectors is allowed. A trail is limited -// to 250 data resources. These data resources can be distributed across event -// selectors, but the overall total cannot exceed 250. -// -// You can: -// -// - Specify a valid number of event selectors (1 to 5) for a trail. -// -// - Specify a valid number of data resources (1 to 250) for an event selector. -// The limit of number of resources on an individual event selector is configurable -// up to 250. However, this upper limit is allowed only if the total number -// of data resources does not exceed 250 across all event selectors for a -// trail. -// -// - Specify up to 500 values for all conditions in all advanced event selectors -// for a trail. -// -// - Specify a valid value for a parameter. For example, specifying the ReadWriteType -// parameter with a value of read-only is not valid. -// -// - InvalidParameterCombinationException -// This exception is thrown when the combination of parameters provided is not -// valid. -// // - InvalidHomeRegionException // This exception is thrown when an operation is called on a trail from a region // other than the region in which the trail was created. // -// - KmsKeyNotFoundException -// This exception is thrown when the KMS key does not exist, when the S3 bucket -// and the KMS key are not in the same region, or when the KMS key associated -// with the Amazon SNS topic either does not exist or is not in the same region. -// -// - KmsKeyDisabledException -// This exception is no longer in use. -// -// - KmsException -// This exception is thrown when there is an issue with the specified KMS key -// and the trail can’t be updated. -// -// - InvalidCloudWatchLogsLogGroupArnException -// This exception is thrown when the provided CloudWatch Logs log group is not -// valid. -// -// - InvalidCloudWatchLogsRoleArnException -// This exception is thrown when the provided role is not valid. -// -// - CloudWatchLogsDeliveryUnavailableException -// Cannot set a CloudWatch Logs delivery for this region. -// // - UnsupportedOperationException // This exception is thrown when the requested operation is not supported. // // - OperationNotPermittedException // This exception is thrown when the requested operation is not permitted. // -// - AccessNotEnabledException -// This exception is thrown when trusted access has not been enabled between -// CloudTrail and Organizations. For more information, see Enabling Trusted -// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) -// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). -// -// - InsufficientDependencyServiceAccessPermissionException -// This exception is thrown when the IAM user or role that is used to create -// the organization resource lacks one or more required permissions for creating -// an organization resource in a required service. -// -// - OrganizationsNotInUseException -// This exception is thrown when the request is made from an Amazon Web Services -// account that is not a member of an organization. To make this request, sign -// in using the credentials of an account that belongs to an organization. -// // - NotOrganizationMasterAccountException // This exception is thrown when the Amazon Web Services account making the // request to create or update an organization trail or event data store is @@ -4199,48 +4458,978 @@ func (c *CloudTrail) UpdateTrailRequest(input *UpdateTrailInput) (req *request.R // information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) // or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). // -// - OrganizationNotInAllFeaturesModeException -// This exception is thrown when Organizations is not configured to support -// all features. All features must be enabled in Organizations to support creating -// an organization trail or event data store. -// -// - CloudTrailInvalidClientTokenIdException -// This exception is thrown when a call results in the InvalidClientTokenId -// error code. This can occur when you are creating or updating a trail to send -// notifications to an Amazon SNS topic that is in a suspended Amazon Web Services -// account. +// - InsufficientDependencyServiceAccessPermissionException +// This exception is thrown when the IAM user or role that is used to create +// the organization resource lacks one or more required permissions for creating +// an organization resource in a required service. // -// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateTrail -func (c *CloudTrail) UpdateTrail(input *UpdateTrailInput) (*UpdateTrailOutput, error) { - req, out := c.UpdateTrailRequest(input) - return out, req.Send() +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/StopLogging +func (c *CloudTrail) StopLogging(input *StopLoggingInput) (*StopLoggingOutput, error) { + req, out := c.StopLoggingRequest(input) + return out, req.Send() } -// UpdateTrailWithContext is the same as UpdateTrail with the addition of +// StopLoggingWithContext is the same as StopLogging with the addition of // the ability to pass a context and additional request options. // -// See UpdateTrail for details on how to use this API operation. +// See StopLogging for details on how to use this API operation. // // The context must be non-nil and will be used for request cancellation. If // the context is nil a panic will occur. In the future the SDK may create // sub-contexts for http.Requests. See https://golang.org/pkg/context/ // for more information on using Contexts. -func (c *CloudTrail) UpdateTrailWithContext(ctx aws.Context, input *UpdateTrailInput, opts ...request.Option) (*UpdateTrailOutput, error) { - req, out := c.UpdateTrailRequest(input) +func (c *CloudTrail) StopLoggingWithContext(ctx aws.Context, input *StopLoggingInput, opts ...request.Option) (*StopLoggingOutput, error) { + req, out := c.StopLoggingRequest(input) + req.SetContext(ctx) + req.ApplyOptions(opts...) + return out, req.Send() +} + +const opUpdateEventDataStore = "UpdateEventDataStore" + +// UpdateEventDataStoreRequest generates a "aws/request.Request" representing the +// client's request for the UpdateEventDataStore operation. The "output" return +// value will be populated with the request's response once the request completes +// successfully. +// +// Use "Send" method on the returned Request to send the API call to the service. +// the "output" return value is not valid until after Send returns without error. +// +// See UpdateEventDataStore for more information on using the UpdateEventDataStore +// API call, and error handling. +// +// This method is useful when you want to inject custom logic or configuration +// into the SDK's request lifecycle. Such as custom headers, or retry logic. +// +// // Example sending a request using the UpdateEventDataStoreRequest method. +// req, resp := client.UpdateEventDataStoreRequest(params) +// +// err := req.Send() +// if err == nil { // resp is now filled +// fmt.Println(resp) +// } +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateEventDataStore +func (c *CloudTrail) UpdateEventDataStoreRequest(input *UpdateEventDataStoreInput) (req *request.Request, output *UpdateEventDataStoreOutput) { + op := &request.Operation{ + Name: opUpdateEventDataStore, + HTTPMethod: "POST", + HTTPPath: "/", + } + + if input == nil { + input = &UpdateEventDataStoreInput{} + } + + output = &UpdateEventDataStoreOutput{} + req = c.newRequest(op, input, output) + return +} + +// UpdateEventDataStore API operation for AWS CloudTrail. +// +// Updates an event data store. The required EventDataStore value is an ARN +// or the ID portion of the ARN. Other parameters are optional, but at least +// one optional parameter must be specified, or CloudTrail throws an error. +// RetentionPeriod is in days, and valid values are integers between 90 and +// 2557. By default, TerminationProtection is enabled. AdvancedEventSelectors +// includes or excludes management and data events in your event data store; +// for more information about AdvancedEventSelectors, see PutEventSelectorsRequest$AdvancedEventSelectors. +// +// Returns awserr.Error for service API and SDK errors. Use runtime type assertions +// with awserr.Error's Code and Message methods to get detailed information about +// the error. +// +// See the AWS API reference guide for AWS CloudTrail's +// API operation UpdateEventDataStore for usage and error information. +// +// Returned Error Types: +// +// - EventDataStoreARNInvalidException +// The specified event data store ARN is not valid or does not map to an event +// data store in your account. +// +// - EventDataStoreNotFoundException +// The specified event data store was not found. +// +// - EventDataStoreHasOngoingImportException +// This exception is thrown when you try to update or delete an event data store +// that currently has an import in progress. +// +// - InactiveEventDataStoreException +// The event data store is inactive. +// +// - InvalidParameterException +// The request includes a parameter that is not valid. +// +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. +// +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. +// +// - AccessNotEnabledException +// This exception is thrown when trusted access has not been enabled between +// CloudTrail and Organizations. For more information, see Enabling Trusted +// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) +// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). +// +// - InsufficientDependencyServiceAccessPermissionException +// This exception is thrown when the IAM user or role that is used to create +// the organization resource lacks one or more required permissions for creating +// an organization resource in a required service. +// +// - OrganizationsNotInUseException +// This exception is thrown when the request is made from an Amazon Web Services +// account that is not a member of an organization. To make this request, sign +// in using the credentials of an account that belongs to an organization. +// +// - NotOrganizationMasterAccountException +// This exception is thrown when the Amazon Web Services account making the +// request to create or update an organization trail or event data store is +// not the management account for an organization in Organizations. For more +// information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) +// or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). +// +// - OrganizationNotInAllFeaturesModeException +// This exception is thrown when Organizations is not configured to support +// all features. All features must be enabled in Organizations to support creating +// an organization trail or event data store. +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateEventDataStore +func (c *CloudTrail) UpdateEventDataStore(input *UpdateEventDataStoreInput) (*UpdateEventDataStoreOutput, error) { + req, out := c.UpdateEventDataStoreRequest(input) + return out, req.Send() +} + +// UpdateEventDataStoreWithContext is the same as UpdateEventDataStore with the addition of +// the ability to pass a context and additional request options. +// +// See UpdateEventDataStore for details on how to use this API operation. +// +// The context must be non-nil and will be used for request cancellation. If +// the context is nil a panic will occur. In the future the SDK may create +// sub-contexts for http.Requests. See https://golang.org/pkg/context/ +// for more information on using Contexts. +func (c *CloudTrail) UpdateEventDataStoreWithContext(ctx aws.Context, input *UpdateEventDataStoreInput, opts ...request.Option) (*UpdateEventDataStoreOutput, error) { + req, out := c.UpdateEventDataStoreRequest(input) req.SetContext(ctx) req.ApplyOptions(opts...) return out, req.Send() } -// This exception is thrown when an operation is called with a trail ARN that -// is not valid. The following is the format of a trail ARN. -// -// arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail -type ARNInvalidException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` +const opUpdateTrail = "UpdateTrail" + +// UpdateTrailRequest generates a "aws/request.Request" representing the +// client's request for the UpdateTrail operation. The "output" return +// value will be populated with the request's response once the request completes +// successfully. +// +// Use "Send" method on the returned Request to send the API call to the service. +// the "output" return value is not valid until after Send returns without error. +// +// See UpdateTrail for more information on using the UpdateTrail +// API call, and error handling. +// +// This method is useful when you want to inject custom logic or configuration +// into the SDK's request lifecycle. Such as custom headers, or retry logic. +// +// // Example sending a request using the UpdateTrailRequest method. +// req, resp := client.UpdateTrailRequest(params) +// +// err := req.Send() +// if err == nil { // resp is now filled +// fmt.Println(resp) +// } +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateTrail +func (c *CloudTrail) UpdateTrailRequest(input *UpdateTrailInput) (req *request.Request, output *UpdateTrailOutput) { + op := &request.Operation{ + Name: opUpdateTrail, + HTTPMethod: "POST", + HTTPPath: "/", + } + + if input == nil { + input = &UpdateTrailInput{} + } + + output = &UpdateTrailOutput{} + req = c.newRequest(op, input, output) + return +} + +// UpdateTrail API operation for AWS CloudTrail. +// +// Updates trail settings that control what events you are logging, and how +// to handle log files. Changes to a trail do not require stopping the CloudTrail +// service. Use this action to designate an existing bucket for log delivery. +// If the existing bucket has previously been a target for CloudTrail log files, +// an IAM policy exists for the bucket. UpdateTrail must be called from the +// region in which the trail was created; otherwise, an InvalidHomeRegionException +// is thrown. +// +// Returns awserr.Error for service API and SDK errors. Use runtime type assertions +// with awserr.Error's Code and Message methods to get detailed information about +// the error. +// +// See the AWS API reference guide for AWS CloudTrail's +// API operation UpdateTrail for usage and error information. +// +// Returned Error Types: +// +// - S3BucketDoesNotExistException +// This exception is thrown when the specified S3 bucket does not exist. +// +// - InsufficientS3BucketPolicyException +// This exception is thrown when the policy on the S3 bucket is not sufficient. +// +// - InsufficientSnsTopicPolicyException +// This exception is thrown when the policy on the Amazon SNS topic is not sufficient. +// +// - InsufficientEncryptionPolicyException +// This exception is thrown when the policy on the S3 bucket or KMS key is not +// sufficient. +// +// - TrailNotFoundException +// This exception is thrown when the trail with the given name is not found. +// +// - InvalidS3BucketNameException +// This exception is thrown when the provided S3 bucket name is not valid. +// +// - InvalidS3PrefixException +// This exception is thrown when the provided S3 prefix is not valid. +// +// - InvalidSnsTopicNameException +// This exception is thrown when the provided SNS topic name is not valid. +// +// - InvalidKmsKeyIdException +// This exception is thrown when the KMS key ARN is not valid. +// +// - InvalidTrailNameException +// This exception is thrown when the provided trail name is not valid. Trail +// names must meet the following requirements: +// +// - Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores +// (_), or dashes (-) +// +// - Start with a letter or number, and end with a letter or number +// +// - Be between 3 and 128 characters +// +// - Have no adjacent periods, underscores or dashes. Names like my-_namespace +// and my--namespace are not valid. +// +// - Not be in IP address format (for example, 192.168.5.4) +// +// - TrailNotProvidedException +// This exception is no longer in use. +// +// - InvalidEventSelectorsException +// This exception is thrown when the PutEventSelectors operation is called with +// a number of event selectors, advanced event selectors, or data resources +// that is not valid. The combination of event selectors or advanced event selectors +// and data resources is not valid. A trail can have up to 5 event selectors. +// If a trail uses advanced event selectors, a maximum of 500 total values for +// all conditions in all advanced event selectors is allowed. A trail is limited +// to 250 data resources. These data resources can be distributed across event +// selectors, but the overall total cannot exceed 250. +// +// You can: +// +// - Specify a valid number of event selectors (1 to 5) for a trail. +// +// - Specify a valid number of data resources (1 to 250) for an event selector. +// The limit of number of resources on an individual event selector is configurable +// up to 250. However, this upper limit is allowed only if the total number +// of data resources does not exceed 250 across all event selectors for a +// trail. +// +// - Specify up to 500 values for all conditions in all advanced event selectors +// for a trail. +// +// - Specify a valid value for a parameter. For example, specifying the ReadWriteType +// parameter with a value of read-only is not valid. +// +// - InvalidParameterCombinationException +// This exception is thrown when the combination of parameters provided is not +// valid. +// +// - InvalidHomeRegionException +// This exception is thrown when an operation is called on a trail from a region +// other than the region in which the trail was created. +// +// - KmsKeyNotFoundException +// This exception is thrown when the KMS key does not exist, when the S3 bucket +// and the KMS key are not in the same region, or when the KMS key associated +// with the Amazon SNS topic either does not exist or is not in the same region. +// +// - KmsKeyDisabledException +// This exception is no longer in use. +// +// - KmsException +// This exception is thrown when there is an issue with the specified KMS key +// and the trail can’t be updated. +// +// - InvalidCloudWatchLogsLogGroupArnException +// This exception is thrown when the provided CloudWatch Logs log group is not +// valid. +// +// - InvalidCloudWatchLogsRoleArnException +// This exception is thrown when the provided role is not valid. +// +// - CloudWatchLogsDeliveryUnavailableException +// Cannot set a CloudWatch Logs delivery for this region. +// +// - UnsupportedOperationException +// This exception is thrown when the requested operation is not supported. +// +// - OperationNotPermittedException +// This exception is thrown when the requested operation is not permitted. +// +// - AccessNotEnabledException +// This exception is thrown when trusted access has not been enabled between +// CloudTrail and Organizations. For more information, see Enabling Trusted +// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) +// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). +// +// - InsufficientDependencyServiceAccessPermissionException +// This exception is thrown when the IAM user or role that is used to create +// the organization resource lacks one or more required permissions for creating +// an organization resource in a required service. +// +// - OrganizationsNotInUseException +// This exception is thrown when the request is made from an Amazon Web Services +// account that is not a member of an organization. To make this request, sign +// in using the credentials of an account that belongs to an organization. +// +// - NotOrganizationMasterAccountException +// This exception is thrown when the Amazon Web Services account making the +// request to create or update an organization trail or event data store is +// not the management account for an organization in Organizations. For more +// information, see Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html) +// or Create an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html). +// +// - OrganizationNotInAllFeaturesModeException +// This exception is thrown when Organizations is not configured to support +// all features. All features must be enabled in Organizations to support creating +// an organization trail or event data store. +// +// - CloudTrailInvalidClientTokenIdException +// This exception is thrown when a call results in the InvalidClientTokenId +// error code. This can occur when you are creating or updating a trail to send +// notifications to an Amazon SNS topic that is in a suspended Amazon Web Services +// account. +// +// See also, https://docs.aws.amazon.com/goto/WebAPI/cloudtrail-2013-11-01/UpdateTrail +func (c *CloudTrail) UpdateTrail(input *UpdateTrailInput) (*UpdateTrailOutput, error) { + req, out := c.UpdateTrailRequest(input) + return out, req.Send() +} + +// UpdateTrailWithContext is the same as UpdateTrail with the addition of +// the ability to pass a context and additional request options. +// +// See UpdateTrail for details on how to use this API operation. +// +// The context must be non-nil and will be used for request cancellation. If +// the context is nil a panic will occur. In the future the SDK may create +// sub-contexts for http.Requests. See https://golang.org/pkg/context/ +// for more information on using Contexts. +func (c *CloudTrail) UpdateTrailWithContext(ctx aws.Context, input *UpdateTrailInput, opts ...request.Option) (*UpdateTrailOutput, error) { + req, out := c.UpdateTrailRequest(input) + req.SetContext(ctx) + req.ApplyOptions(opts...) + return out, req.Send() +} + +// This exception is thrown when an operation is called with a trail ARN that +// is not valid. The following is the format of a trail ARN. +// +// arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail +type ARNInvalidException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ARNInvalidException) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ARNInvalidException) GoString() string { + return s.String() +} + +func newErrorARNInvalidException(v protocol.ResponseMetadata) error { + return &ARNInvalidException{ + RespMetadata: v, + } +} + +// Code returns the exception type name. +func (s *ARNInvalidException) Code() string { + return "CloudTrailARNInvalidException" +} + +// Message returns the exception's message. +func (s *ARNInvalidException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *ARNInvalidException) OrigErr() error { + return nil +} + +func (s *ARNInvalidException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *ARNInvalidException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *ARNInvalidException) RequestID() string { + return s.RespMetadata.RequestID +} + +// This exception is thrown when trusted access has not been enabled between +// CloudTrail and Organizations. For more information, see Enabling Trusted +// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) +// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). +type AccessNotEnabledException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AccessNotEnabledException) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AccessNotEnabledException) GoString() string { + return s.String() +} + +func newErrorAccessNotEnabledException(v protocol.ResponseMetadata) error { + return &AccessNotEnabledException{ + RespMetadata: v, + } +} + +// Code returns the exception type name. +func (s *AccessNotEnabledException) Code() string { + return "CloudTrailAccessNotEnabledException" +} + +// Message returns the exception's message. +func (s *AccessNotEnabledException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *AccessNotEnabledException) OrigErr() error { + return nil +} + +func (s *AccessNotEnabledException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *AccessNotEnabledException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *AccessNotEnabledException) RequestID() string { + return s.RespMetadata.RequestID +} + +// This exception is thrown when you start a new import and a previous import +// is still in progress. +type AccountHasOngoingImportException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AccountHasOngoingImportException) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AccountHasOngoingImportException) GoString() string { + return s.String() +} + +func newErrorAccountHasOngoingImportException(v protocol.ResponseMetadata) error { + return &AccountHasOngoingImportException{ + RespMetadata: v, + } +} + +// Code returns the exception type name. +func (s *AccountHasOngoingImportException) Code() string { + return "AccountHasOngoingImportException" +} + +// Message returns the exception's message. +func (s *AccountHasOngoingImportException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *AccountHasOngoingImportException) OrigErr() error { + return nil +} + +func (s *AccountHasOngoingImportException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *AccountHasOngoingImportException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *AccountHasOngoingImportException) RequestID() string { + return s.RespMetadata.RequestID +} + +// Specifies the tags to add to a trail or event data store. +type AddTagsInput struct { + _ struct{} `type:"structure"` + + // Specifies the ARN of the trail or event data store to which one or more tags + // will be added. The format of a trail ARN is: + // + // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail + // + // ResourceId is a required field + ResourceId *string `type:"string" required:"true"` + + // Contains a list of tags, up to a limit of 50 + // + // TagsList is a required field + TagsList []*Tag `type:"list" required:"true"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AddTagsInput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AddTagsInput) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *AddTagsInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "AddTagsInput"} + if s.ResourceId == nil { + invalidParams.Add(request.NewErrParamRequired("ResourceId")) + } + if s.TagsList == nil { + invalidParams.Add(request.NewErrParamRequired("TagsList")) + } + if s.TagsList != nil { + for i, v := range s.TagsList { + if v == nil { + continue + } + if err := v.Validate(); err != nil { + invalidParams.AddNested(fmt.Sprintf("%s[%v]", "TagsList", i), err.(request.ErrInvalidParams)) + } + } + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetResourceId sets the ResourceId field's value. +func (s *AddTagsInput) SetResourceId(v string) *AddTagsInput { + s.ResourceId = &v + return s +} + +// SetTagsList sets the TagsList field's value. +func (s *AddTagsInput) SetTagsList(v []*Tag) *AddTagsInput { + s.TagsList = v + return s +} + +// Returns the objects or data if successful. Otherwise, returns an error. +type AddTagsOutput struct { + _ struct{} `type:"structure"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AddTagsOutput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AddTagsOutput) GoString() string { + return s.String() +} + +// Advanced event selectors let you create fine-grained selectors for the following +// CloudTrail event record fields. They help you control costs by logging only +// those events that are important to you. For more information about advanced +// event selectors, see Logging data events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) +// in the CloudTrail User Guide. +// +// - readOnly +// +// - eventSource +// +// - eventName +// +// - eventCategory +// +// - resources.type +// +// - resources.ARN +// +// You cannot apply both event selectors and advanced event selectors to a trail. +type AdvancedEventSelector struct { + _ struct{} `type:"structure"` + + // Contains all selector statements in an advanced event selector. + // + // FieldSelectors is a required field + FieldSelectors []*AdvancedFieldSelector `min:"1" type:"list" required:"true"` + + // An optional, descriptive name for an advanced event selector, such as "Log + // data events for only two S3 buckets". + Name *string `type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AdvancedEventSelector) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AdvancedEventSelector) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *AdvancedEventSelector) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "AdvancedEventSelector"} + if s.FieldSelectors == nil { + invalidParams.Add(request.NewErrParamRequired("FieldSelectors")) + } + if s.FieldSelectors != nil && len(s.FieldSelectors) < 1 { + invalidParams.Add(request.NewErrParamMinLen("FieldSelectors", 1)) + } + if s.FieldSelectors != nil { + for i, v := range s.FieldSelectors { + if v == nil { + continue + } + if err := v.Validate(); err != nil { + invalidParams.AddNested(fmt.Sprintf("%s[%v]", "FieldSelectors", i), err.(request.ErrInvalidParams)) + } + } + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetFieldSelectors sets the FieldSelectors field's value. +func (s *AdvancedEventSelector) SetFieldSelectors(v []*AdvancedFieldSelector) *AdvancedEventSelector { + s.FieldSelectors = v + return s +} + +// SetName sets the Name field's value. +func (s *AdvancedEventSelector) SetName(v string) *AdvancedEventSelector { + s.Name = &v + return s +} + +// A single selector statement in an advanced event selector. +type AdvancedFieldSelector struct { + _ struct{} `type:"structure"` + + // An operator that includes events that match the last few characters of the + // event record field specified as the value of Field. + EndsWith []*string `min:"1" type:"list"` + + // An operator that includes events that match the exact value of the event + // record field specified as the value of Field. This is the only valid operator + // that you can use with the readOnly, eventCategory, and resources.type fields. + Equals []*string `min:"1" type:"list"` + + // A field in an event record on which to filter events to be logged. Supported + // fields include readOnly, eventCategory, eventSource (for management events), + // eventName, resources.type, and resources.ARN. + // + // * readOnly - Optional. Can be set to Equals a value of true or false. + // If you do not add this field, CloudTrail logs both read and write events. + // A value of true logs only read events. A value of false logs only write + // events. + // + // * eventSource - For filtering management events only. This can be set + // only to NotEquals kms.amazonaws.com. + // + // * eventName - Can use any operator. You can use it to filter in or filter + // out any data event logged to CloudTrail, such as PutBucket or GetSnapshotBlock. + // You can have multiple values for this field, separated by commas. + // + // * eventCategory - This is required. It must be set to Equals, and the + // value must be Management or Data. + // + // * resources.type - This field is required. resources.type can only use + // the Equals operator, and the value can be one of the following: AWS::S3::Object + // AWS::Lambda::Function AWS::DynamoDB::Table AWS::S3Outposts::Object AWS::ManagedBlockchain::Node + // AWS::S3ObjectLambda::AccessPoint AWS::EC2::Snapshot AWS::S3::AccessPoint + // AWS::DynamoDB::Stream AWS::Glue::Table You can have only one resources.type + // field per selector. To log data events on more than one resource type, + // add another selector. + // + // * resources.ARN - You can use any operator with resources.ARN, but if + // you use Equals or NotEquals, the value must exactly match the ARN of a + // valid resource of the type you've specified in the template as the value + // of resources.type. For example, if resources.type equals AWS::S3::Object, + // the ARN must be in one of the following formats. To log all data events + // for all objects in a specific S3 bucket, use the StartsWith operator, + // and include only the bucket ARN as the matching value. The trailing slash + // is intentional; do not exclude it. Replace the text between less than + // and greater than symbols (<>) with resource-specific information. arn::s3:::/ + // arn::s3:::// When resources.type + // equals AWS::S3::AccessPoint, and the operator is set to Equals or NotEquals, + // the ARN must be in one of the following formats. To log events on all + // objects in an S3 access point, we recommend that you use only the access + // point ARN, don’t include the object path, and use the StartsWith or + // NotStartsWith operators. arn::s3:::accesspoint/ + // arn::s3:::accesspoint//object/ + // When resources.type equals AWS::Lambda::Function, and the operator is + // set to Equals or NotEquals, the ARN must be in the following format: arn::lambda:::function: + // When resources.type equals AWS::DynamoDB::Table, and the operator is set + // to Equals or NotEquals, the ARN must be in the following format: arn::dynamodb:::table/ + // When resources.type equals AWS::S3Outposts::Object, and the operator is + // set to Equals or NotEquals, the ARN must be in the following format: arn::s3-outposts::: + // When resources.type equals AWS::ManagedBlockchain::Node, and the operator + // is set to Equals or NotEquals, the ARN must be in the following format: + // arn::managedblockchain:::nodes/ + // When resources.type equals AWS::S3ObjectLambda::AccessPoint, and the operator + // is set to Equals or NotEquals, the ARN must be in the following format: + // arn::s3-object-lambda:::accesspoint/ + // When resources.type equals AWS::EC2::Snapshot, and the operator is set + // to Equals or NotEquals, the ARN must be in the following format: arn::ec2:::snapshot/ + // When resources.type equals AWS::DynamoDB::Stream, and the operator is + // set to Equals or NotEquals, the ARN must be in the following format: arn::dynamodb:::table//stream/ + // When resources.type equals AWS::Glue::Table, and the operator is set to + // Equals or NotEquals, the ARN must be in the following format: arn::glue:::table// + // + // Field is a required field + Field *string `min:"1" type:"string" required:"true"` + + // An operator that excludes events that match the last few characters of the + // event record field specified as the value of Field. + NotEndsWith []*string `min:"1" type:"list"` + + // An operator that excludes events that match the exact value of the event + // record field specified as the value of Field. + NotEquals []*string `min:"1" type:"list"` + + // An operator that excludes events that match the first few characters of the + // event record field specified as the value of Field. + NotStartsWith []*string `min:"1" type:"list"` + + // An operator that includes events that match the first few characters of the + // event record field specified as the value of Field. + StartsWith []*string `min:"1" type:"list"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AdvancedFieldSelector) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s AdvancedFieldSelector) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *AdvancedFieldSelector) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "AdvancedFieldSelector"} + if s.EndsWith != nil && len(s.EndsWith) < 1 { + invalidParams.Add(request.NewErrParamMinLen("EndsWith", 1)) + } + if s.Equals != nil && len(s.Equals) < 1 { + invalidParams.Add(request.NewErrParamMinLen("Equals", 1)) + } + if s.Field == nil { + invalidParams.Add(request.NewErrParamRequired("Field")) + } + if s.Field != nil && len(*s.Field) < 1 { + invalidParams.Add(request.NewErrParamMinLen("Field", 1)) + } + if s.NotEndsWith != nil && len(s.NotEndsWith) < 1 { + invalidParams.Add(request.NewErrParamMinLen("NotEndsWith", 1)) + } + if s.NotEquals != nil && len(s.NotEquals) < 1 { + invalidParams.Add(request.NewErrParamMinLen("NotEquals", 1)) + } + if s.NotStartsWith != nil && len(s.NotStartsWith) < 1 { + invalidParams.Add(request.NewErrParamMinLen("NotStartsWith", 1)) + } + if s.StartsWith != nil && len(s.StartsWith) < 1 { + invalidParams.Add(request.NewErrParamMinLen("StartsWith", 1)) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetEndsWith sets the EndsWith field's value. +func (s *AdvancedFieldSelector) SetEndsWith(v []*string) *AdvancedFieldSelector { + s.EndsWith = v + return s +} + +// SetEquals sets the Equals field's value. +func (s *AdvancedFieldSelector) SetEquals(v []*string) *AdvancedFieldSelector { + s.Equals = v + return s +} + +// SetField sets the Field field's value. +func (s *AdvancedFieldSelector) SetField(v string) *AdvancedFieldSelector { + s.Field = &v + return s +} + +// SetNotEndsWith sets the NotEndsWith field's value. +func (s *AdvancedFieldSelector) SetNotEndsWith(v []*string) *AdvancedFieldSelector { + s.NotEndsWith = v + return s +} + +// SetNotEquals sets the NotEquals field's value. +func (s *AdvancedFieldSelector) SetNotEquals(v []*string) *AdvancedFieldSelector { + s.NotEquals = v + return s +} + +// SetNotStartsWith sets the NotStartsWith field's value. +func (s *AdvancedFieldSelector) SetNotStartsWith(v []*string) *AdvancedFieldSelector { + s.NotStartsWith = v + return s +} + +// SetStartsWith sets the StartsWith field's value. +func (s *AdvancedFieldSelector) SetStartsWith(v []*string) *AdvancedFieldSelector { + s.StartsWith = v + return s +} + +type CancelQueryInput struct { + _ struct{} `type:"structure"` + + // The ARN (or the ID suffix of the ARN) of an event data store on which the + // specified query is running. + // + // EventDataStore is a required field + EventDataStore *string `min:"3" type:"string" required:"true"` - Message_ *string `locationName:"message" type:"string"` + // The ID of the query that you want to cancel. The QueryId comes from the response + // of a StartQuery operation. + // + // QueryId is a required field + QueryId *string `min:"36" type:"string" required:"true"` } // String returns the string representation. @@ -4248,7 +5437,7 @@ type ARNInvalidException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ARNInvalidException) String() string { +func (s CancelQueryInput) String() string { return awsutil.Prettify(s) } @@ -4257,57 +5446,57 @@ func (s ARNInvalidException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ARNInvalidException) GoString() string { +func (s CancelQueryInput) GoString() string { return s.String() } -func newErrorARNInvalidException(v protocol.ResponseMetadata) error { - return &ARNInvalidException{ - RespMetadata: v, +// Validate inspects the fields of the type to determine if they are valid. +func (s *CancelQueryInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "CancelQueryInput"} + if s.EventDataStore == nil { + invalidParams.Add(request.NewErrParamRequired("EventDataStore")) } -} - -// Code returns the exception type name. -func (s *ARNInvalidException) Code() string { - return "CloudTrailARNInvalidException" -} - -// Message returns the exception's message. -func (s *ARNInvalidException) Message() string { - if s.Message_ != nil { - return *s.Message_ + if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { + invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) + } + if s.QueryId == nil { + invalidParams.Add(request.NewErrParamRequired("QueryId")) + } + if s.QueryId != nil && len(*s.QueryId) < 36 { + invalidParams.Add(request.NewErrParamMinLen("QueryId", 36)) } - return "" -} -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *ARNInvalidException) OrigErr() error { + if invalidParams.Len() > 0 { + return invalidParams + } return nil } -func (s *ARNInvalidException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetEventDataStore sets the EventDataStore field's value. +func (s *CancelQueryInput) SetEventDataStore(v string) *CancelQueryInput { + s.EventDataStore = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *ARNInvalidException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetQueryId sets the QueryId field's value. +func (s *CancelQueryInput) SetQueryId(v string) *CancelQueryInput { + s.QueryId = &v + return s } -// RequestID returns the service's response RequestID for request. -func (s *ARNInvalidException) RequestID() string { - return s.RespMetadata.RequestID -} +type CancelQueryOutput struct { + _ struct{} `type:"structure"` -// This exception is thrown when trusted access has not been enabled between -// CloudTrail and Organizations. For more information, see Enabling Trusted -// Access with Other Amazon Web Services Services (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html) -// and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). -type AccessNotEnabledException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + // The ID of the canceled query. + // + // QueryId is a required field + QueryId *string `min:"36" type:"string" required:"true"` - Message_ *string `locationName:"message" type:"string"` + // Shows the status of a query after a CancelQuery request. Typically, the values + // shown are either RUNNING or CANCELLED. + // + // QueryStatus is a required field + QueryStatus *string `type:"string" required:"true" enum:"QueryStatus"` } // String returns the string representation. @@ -4315,7 +5504,7 @@ type AccessNotEnabledException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AccessNotEnabledException) String() string { +func (s CancelQueryOutput) String() string { return awsutil.Prettify(s) } @@ -4324,64 +5513,34 @@ func (s AccessNotEnabledException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AccessNotEnabledException) GoString() string { +func (s CancelQueryOutput) GoString() string { return s.String() } -func newErrorAccessNotEnabledException(v protocol.ResponseMetadata) error { - return &AccessNotEnabledException{ - RespMetadata: v, - } -} - -// Code returns the exception type name. -func (s *AccessNotEnabledException) Code() string { - return "CloudTrailAccessNotEnabledException" -} - -// Message returns the exception's message. -func (s *AccessNotEnabledException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" -} - -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *AccessNotEnabledException) OrigErr() error { - return nil -} - -func (s *AccessNotEnabledException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) -} - -// Status code returns the HTTP status code for the request's response error. -func (s *AccessNotEnabledException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetQueryId sets the QueryId field's value. +func (s *CancelQueryOutput) SetQueryId(v string) *CancelQueryOutput { + s.QueryId = &v + return s } -// RequestID returns the service's response RequestID for request. -func (s *AccessNotEnabledException) RequestID() string { - return s.RespMetadata.RequestID +// SetQueryStatus sets the QueryStatus field's value. +func (s *CancelQueryOutput) SetQueryStatus(v string) *CancelQueryOutput { + s.QueryStatus = &v + return s } -// Specifies the tags to add to a trail or event data store. -type AddTagsInput struct { +// Contains information about a returned CloudTrail channel. +type Channel struct { _ struct{} `type:"structure"` - // Specifies the ARN of the trail or event data store to which one or more tags - // will be added. The format of a trail ARN is: - // - // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail - // - // ResourceId is a required field - ResourceId *string `type:"string" required:"true"` + // The Amazon Resource Name (ARN) of the channel. + ChannelArn *string `min:"3" type:"string"` - // Contains a list of tags, up to a limit of 50 - // - // TagsList is a required field - TagsList []*Tag `type:"list" required:"true"` + // The name of the CloudTrail channel. For service-linked channels, the name + // is aws-service-channel/service-name/custom-suffix where service-name represents + // the name of the Amazon Web Services service that created the channel and + // custom-suffix represents the suffix created by the Amazon Web Services service. + Name *string `min:"3" type:"string"` } // String returns the string representation. @@ -4389,7 +5548,7 @@ type AddTagsInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AddTagsInput) String() string { +func (s Channel) String() string { return awsutil.Prettify(s) } @@ -4398,51 +5557,29 @@ func (s AddTagsInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AddTagsInput) GoString() string { +func (s Channel) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *AddTagsInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "AddTagsInput"} - if s.ResourceId == nil { - invalidParams.Add(request.NewErrParamRequired("ResourceId")) - } - if s.TagsList == nil { - invalidParams.Add(request.NewErrParamRequired("TagsList")) - } - if s.TagsList != nil { - for i, v := range s.TagsList { - if v == nil { - continue - } - if err := v.Validate(); err != nil { - invalidParams.AddNested(fmt.Sprintf("%s[%v]", "TagsList", i), err.(request.ErrInvalidParams)) - } - } - } - - if invalidParams.Len() > 0 { - return invalidParams - } - return nil -} - -// SetResourceId sets the ResourceId field's value. -func (s *AddTagsInput) SetResourceId(v string) *AddTagsInput { - s.ResourceId = &v +// SetChannelArn sets the ChannelArn field's value. +func (s *Channel) SetChannelArn(v string) *Channel { + s.ChannelArn = &v return s } -// SetTagsList sets the TagsList field's value. -func (s *AddTagsInput) SetTagsList(v []*Tag) *AddTagsInput { - s.TagsList = v +// SetName sets the Name field's value. +func (s *Channel) SetName(v string) *Channel { + s.Name = &v return s } -// Returns the objects or data if successful. Otherwise, returns an error. -type AddTagsOutput struct { - _ struct{} `type:"structure"` +// The specified channel ARN is not valid or does not map to a channel in your +// account. +type ChannelARNInvalidException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -4450,7 +5587,7 @@ type AddTagsOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AddTagsOutput) String() string { +func (s ChannelARNInvalidException) String() string { return awsutil.Prettify(s) } @@ -4459,40 +5596,54 @@ func (s AddTagsOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AddTagsOutput) GoString() string { +func (s ChannelARNInvalidException) GoString() string { return s.String() } -// Advanced event selectors let you create fine-grained selectors for the following -// CloudTrail event record fields. They help you control costs by logging only -// those events that are important to you. For more information about advanced -// event selectors, see Logging data events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) -// in the CloudTrail User Guide. -// -// - readOnly -// -// - eventSource -// -// - eventName -// -// - eventCategory -// -// - resources.type -// -// - resources.ARN -// -// You cannot apply both event selectors and advanced event selectors to a trail. -type AdvancedEventSelector struct { - _ struct{} `type:"structure"` - - // Contains all selector statements in an advanced event selector. - // - // FieldSelectors is a required field - FieldSelectors []*AdvancedFieldSelector `min:"1" type:"list" required:"true"` +func newErrorChannelARNInvalidException(v protocol.ResponseMetadata) error { + return &ChannelARNInvalidException{ + RespMetadata: v, + } +} + +// Code returns the exception type name. +func (s *ChannelARNInvalidException) Code() string { + return "ChannelARNInvalidException" +} + +// Message returns the exception's message. +func (s *ChannelARNInvalidException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *ChannelARNInvalidException) OrigErr() error { + return nil +} + +func (s *ChannelARNInvalidException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *ChannelARNInvalidException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *ChannelARNInvalidException) RequestID() string { + return s.RespMetadata.RequestID +} + +// The specified channel was not found. +type ChannelNotFoundException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // An optional, descriptive name for an advanced event selector, such as "Log - // data events for only two S3 buckets". - Name *string `type:"string"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -4500,7 +5651,7 @@ type AdvancedEventSelector struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AdvancedEventSelector) String() string { +func (s ChannelNotFoundException) String() string { return awsutil.Prettify(s) } @@ -4509,141 +5660,57 @@ func (s AdvancedEventSelector) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AdvancedEventSelector) GoString() string { +func (s ChannelNotFoundException) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *AdvancedEventSelector) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "AdvancedEventSelector"} - if s.FieldSelectors == nil { - invalidParams.Add(request.NewErrParamRequired("FieldSelectors")) - } - if s.FieldSelectors != nil && len(s.FieldSelectors) < 1 { - invalidParams.Add(request.NewErrParamMinLen("FieldSelectors", 1)) - } - if s.FieldSelectors != nil { - for i, v := range s.FieldSelectors { - if v == nil { - continue - } - if err := v.Validate(); err != nil { - invalidParams.AddNested(fmt.Sprintf("%s[%v]", "FieldSelectors", i), err.(request.ErrInvalidParams)) - } - } - } - - if invalidParams.Len() > 0 { - return invalidParams +func newErrorChannelNotFoundException(v protocol.ResponseMetadata) error { + return &ChannelNotFoundException{ + RespMetadata: v, } - return nil } -// SetFieldSelectors sets the FieldSelectors field's value. -func (s *AdvancedEventSelector) SetFieldSelectors(v []*AdvancedFieldSelector) *AdvancedEventSelector { - s.FieldSelectors = v - return s +// Code returns the exception type name. +func (s *ChannelNotFoundException) Code() string { + return "ChannelNotFoundException" } -// SetName sets the Name field's value. -func (s *AdvancedEventSelector) SetName(v string) *AdvancedEventSelector { - s.Name = &v - return s +// Message returns the exception's message. +func (s *ChannelNotFoundException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" } -// A single selector statement in an advanced event selector. -type AdvancedFieldSelector struct { - _ struct{} `type:"structure"` - - // An operator that includes events that match the last few characters of the - // event record field specified as the value of Field. - EndsWith []*string `min:"1" type:"list"` - - // An operator that includes events that match the exact value of the event - // record field specified as the value of Field. This is the only valid operator - // that you can use with the readOnly, eventCategory, and resources.type fields. - Equals []*string `min:"1" type:"list"` +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *ChannelNotFoundException) OrigErr() error { + return nil +} - // A field in an event record on which to filter events to be logged. Supported - // fields include readOnly, eventCategory, eventSource (for management events), - // eventName, resources.type, and resources.ARN. - // - // * readOnly - Optional. Can be set to Equals a value of true or false. - // If you do not add this field, CloudTrail logs both read and write events. - // A value of true logs only read events. A value of false logs only write - // events. - // - // * eventSource - For filtering management events only. This can be set - // only to NotEquals kms.amazonaws.com. - // - // * eventName - Can use any operator. You can use it to filter in or filter - // out any data event logged to CloudTrail, such as PutBucket or GetSnapshotBlock. - // You can have multiple values for this field, separated by commas. - // - // * eventCategory - This is required. It must be set to Equals, and the - // value must be Management or Data. - // - // * resources.type - This field is required. resources.type can only use - // the Equals operator, and the value can be one of the following: AWS::S3::Object - // AWS::Lambda::Function AWS::DynamoDB::Table AWS::S3Outposts::Object AWS::ManagedBlockchain::Node - // AWS::S3ObjectLambda::AccessPoint AWS::EC2::Snapshot AWS::S3::AccessPoint - // AWS::DynamoDB::Stream AWS::Glue::Table You can have only one resources.type - // field per selector. To log data events on more than one resource type, - // add another selector. - // - // * resources.ARN - You can use any operator with resources.ARN, but if - // you use Equals or NotEquals, the value must exactly match the ARN of a - // valid resource of the type you've specified in the template as the value - // of resources.type. For example, if resources.type equals AWS::S3::Object, - // the ARN must be in one of the following formats. To log all data events - // for all objects in a specific S3 bucket, use the StartsWith operator, - // and include only the bucket ARN as the matching value. The trailing slash - // is intentional; do not exclude it. Replace the text between less than - // and greater than symbols (<>) with resource-specific information. arn::s3:::/ - // arn::s3:::// When resources.type - // equals AWS::S3::AccessPoint, and the operator is set to Equals or NotEquals, - // the ARN must be in one of the following formats. To log events on all - // objects in an S3 access point, we recommend that you use only the access - // point ARN, don’t include the object path, and use the StartsWith or - // NotStartsWith operators. arn::s3:::accesspoint/ - // arn::s3:::accesspoint//object/ - // When resources.type equals AWS::Lambda::Function, and the operator is - // set to Equals or NotEquals, the ARN must be in the following format: arn::lambda:::function: - // When resources.type equals AWS::DynamoDB::Table, and the operator is set - // to Equals or NotEquals, the ARN must be in the following format: arn::dynamodb:::table/ - // When resources.type equals AWS::S3Outposts::Object, and the operator is - // set to Equals or NotEquals, the ARN must be in the following format: arn::s3-outposts::: - // When resources.type equals AWS::ManagedBlockchain::Node, and the operator - // is set to Equals or NotEquals, the ARN must be in the following format: - // arn::managedblockchain:::nodes/ - // When resources.type equals AWS::S3ObjectLambda::AccessPoint, and the operator - // is set to Equals or NotEquals, the ARN must be in the following format: - // arn::s3-object-lambda:::accesspoint/ - // When resources.type equals AWS::EC2::Snapshot, and the operator is set - // to Equals or NotEquals, the ARN must be in the following format: arn::ec2:::snapshot/ - // When resources.type equals AWS::DynamoDB::Stream, and the operator is - // set to Equals or NotEquals, the ARN must be in the following format: arn::dynamodb:::table//stream/ - // When resources.type equals AWS::Glue::Table, and the operator is set to - // Equals or NotEquals, the ARN must be in the following format: arn::glue:::table// - // - // Field is a required field - Field *string `min:"1" type:"string" required:"true"` +func (s *ChannelNotFoundException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} - // An operator that excludes events that match the last few characters of the - // event record field specified as the value of Field. - NotEndsWith []*string `min:"1" type:"list"` +// Status code returns the HTTP status code for the request's response error. +func (s *ChannelNotFoundException) StatusCode() int { + return s.RespMetadata.StatusCode +} - // An operator that excludes events that match the exact value of the event - // record field specified as the value of Field. - NotEquals []*string `min:"1" type:"list"` +// RequestID returns the service's response RequestID for request. +func (s *ChannelNotFoundException) RequestID() string { + return s.RespMetadata.RequestID +} - // An operator that excludes events that match the first few characters of the - // event record field specified as the value of Field. - NotStartsWith []*string `min:"1" type:"list"` +// This exception is thrown when a call results in the InvalidClientTokenId +// error code. This can occur when you are creating or updating a trail to send +// notifications to an Amazon SNS topic that is in a suspended Amazon Web Services +// account. +type CloudTrailInvalidClientTokenIdException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // An operator that includes events that match the first few characters of the - // event record field specified as the value of Field. - StartsWith []*string `min:"1" type:"list"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -4651,7 +5718,7 @@ type AdvancedFieldSelector struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AdvancedFieldSelector) String() string { +func (s CloudTrailInvalidClientTokenIdException) String() string { return awsutil.Prettify(s) } @@ -4660,100 +5727,54 @@ func (s AdvancedFieldSelector) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s AdvancedFieldSelector) GoString() string { +func (s CloudTrailInvalidClientTokenIdException) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *AdvancedFieldSelector) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "AdvancedFieldSelector"} - if s.EndsWith != nil && len(s.EndsWith) < 1 { - invalidParams.Add(request.NewErrParamMinLen("EndsWith", 1)) - } - if s.Equals != nil && len(s.Equals) < 1 { - invalidParams.Add(request.NewErrParamMinLen("Equals", 1)) - } - if s.Field == nil { - invalidParams.Add(request.NewErrParamRequired("Field")) - } - if s.Field != nil && len(*s.Field) < 1 { - invalidParams.Add(request.NewErrParamMinLen("Field", 1)) - } - if s.NotEndsWith != nil && len(s.NotEndsWith) < 1 { - invalidParams.Add(request.NewErrParamMinLen("NotEndsWith", 1)) - } - if s.NotEquals != nil && len(s.NotEquals) < 1 { - invalidParams.Add(request.NewErrParamMinLen("NotEquals", 1)) - } - if s.NotStartsWith != nil && len(s.NotStartsWith) < 1 { - invalidParams.Add(request.NewErrParamMinLen("NotStartsWith", 1)) - } - if s.StartsWith != nil && len(s.StartsWith) < 1 { - invalidParams.Add(request.NewErrParamMinLen("StartsWith", 1)) - } - - if invalidParams.Len() > 0 { - return invalidParams +func newErrorCloudTrailInvalidClientTokenIdException(v protocol.ResponseMetadata) error { + return &CloudTrailInvalidClientTokenIdException{ + RespMetadata: v, } - return nil -} - -// SetEndsWith sets the EndsWith field's value. -func (s *AdvancedFieldSelector) SetEndsWith(v []*string) *AdvancedFieldSelector { - s.EndsWith = v - return s -} - -// SetEquals sets the Equals field's value. -func (s *AdvancedFieldSelector) SetEquals(v []*string) *AdvancedFieldSelector { - s.Equals = v - return s } -// SetField sets the Field field's value. -func (s *AdvancedFieldSelector) SetField(v string) *AdvancedFieldSelector { - s.Field = &v - return s +// Code returns the exception type name. +func (s *CloudTrailInvalidClientTokenIdException) Code() string { + return "CloudTrailInvalidClientTokenIdException" } -// SetNotEndsWith sets the NotEndsWith field's value. -func (s *AdvancedFieldSelector) SetNotEndsWith(v []*string) *AdvancedFieldSelector { - s.NotEndsWith = v - return s +// Message returns the exception's message. +func (s *CloudTrailInvalidClientTokenIdException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" } -// SetNotEquals sets the NotEquals field's value. -func (s *AdvancedFieldSelector) SetNotEquals(v []*string) *AdvancedFieldSelector { - s.NotEquals = v - return s +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *CloudTrailInvalidClientTokenIdException) OrigErr() error { + return nil } -// SetNotStartsWith sets the NotStartsWith field's value. -func (s *AdvancedFieldSelector) SetNotStartsWith(v []*string) *AdvancedFieldSelector { - s.NotStartsWith = v - return s +func (s *CloudTrailInvalidClientTokenIdException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } -// SetStartsWith sets the StartsWith field's value. -func (s *AdvancedFieldSelector) SetStartsWith(v []*string) *AdvancedFieldSelector { - s.StartsWith = v - return s +// Status code returns the HTTP status code for the request's response error. +func (s *CloudTrailInvalidClientTokenIdException) StatusCode() int { + return s.RespMetadata.StatusCode } -type CancelQueryInput struct { - _ struct{} `type:"structure"` +// RequestID returns the service's response RequestID for request. +func (s *CloudTrailInvalidClientTokenIdException) RequestID() string { + return s.RespMetadata.RequestID +} - // The ARN (or the ID suffix of the ARN) of an event data store on which the - // specified query is running. - // - // EventDataStore is a required field - EventDataStore *string `min:"3" type:"string" required:"true"` +// Cannot set a CloudWatch Logs delivery for this region. +type CloudWatchLogsDeliveryUnavailableException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // The ID of the query that you want to cancel. The QueryId comes from the response - // of a StartQuery operation. - // - // QueryId is a required field - QueryId *string `min:"36" type:"string" required:"true"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -4761,7 +5782,7 @@ type CancelQueryInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CancelQueryInput) String() string { +func (s CloudWatchLogsDeliveryUnavailableException) String() string { return awsutil.Prettify(s) } @@ -4770,57 +5791,57 @@ func (s CancelQueryInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CancelQueryInput) GoString() string { +func (s CloudWatchLogsDeliveryUnavailableException) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *CancelQueryInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "CancelQueryInput"} - if s.EventDataStore == nil { - invalidParams.Add(request.NewErrParamRequired("EventDataStore")) - } - if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { - invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) - } - if s.QueryId == nil { - invalidParams.Add(request.NewErrParamRequired("QueryId")) - } - if s.QueryId != nil && len(*s.QueryId) < 36 { - invalidParams.Add(request.NewErrParamMinLen("QueryId", 36)) +func newErrorCloudWatchLogsDeliveryUnavailableException(v protocol.ResponseMetadata) error { + return &CloudWatchLogsDeliveryUnavailableException{ + RespMetadata: v, } +} - if invalidParams.Len() > 0 { - return invalidParams +// Code returns the exception type name. +func (s *CloudWatchLogsDeliveryUnavailableException) Code() string { + return "CloudWatchLogsDeliveryUnavailableException" +} + +// Message returns the exception's message. +func (s *CloudWatchLogsDeliveryUnavailableException) Message() string { + if s.Message_ != nil { + return *s.Message_ } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *CloudWatchLogsDeliveryUnavailableException) OrigErr() error { return nil } -// SetEventDataStore sets the EventDataStore field's value. -func (s *CancelQueryInput) SetEventDataStore(v string) *CancelQueryInput { - s.EventDataStore = &v - return s +func (s *CloudWatchLogsDeliveryUnavailableException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } -// SetQueryId sets the QueryId field's value. -func (s *CancelQueryInput) SetQueryId(v string) *CancelQueryInput { - s.QueryId = &v - return s +// Status code returns the HTTP status code for the request's response error. +func (s *CloudWatchLogsDeliveryUnavailableException) StatusCode() int { + return s.RespMetadata.StatusCode } -type CancelQueryOutput struct { - _ struct{} `type:"structure"` +// RequestID returns the service's response RequestID for request. +func (s *CloudWatchLogsDeliveryUnavailableException) RequestID() string { + return s.RespMetadata.RequestID +} - // The ID of the canceled query. - // - // QueryId is a required field - QueryId *string `min:"36" type:"string" required:"true"` +// This exception is thrown when the specified resource is not ready for an +// operation. This can occur when you try to run an operation on a resource +// before CloudTrail has time to fully load the resource. If this exception +// occurs, wait a few minutes, and then try the operation again. +type ConflictException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // Shows the status of a query after a CancelQuery request. Typically, the values - // shown are either RUNNING or CANCELLED. - // - // QueryStatus is a required field - QueryStatus *string `type:"string" required:"true" enum:"QueryStatus"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -4828,7 +5849,7 @@ type CancelQueryOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CancelQueryOutput) String() string { +func (s ConflictException) String() string { return awsutil.Prettify(s) } @@ -4837,34 +5858,81 @@ func (s CancelQueryOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CancelQueryOutput) GoString() string { +func (s ConflictException) GoString() string { return s.String() } -// SetQueryId sets the QueryId field's value. -func (s *CancelQueryOutput) SetQueryId(v string) *CancelQueryOutput { - s.QueryId = &v - return s +func newErrorConflictException(v protocol.ResponseMetadata) error { + return &ConflictException{ + RespMetadata: v, + } } -// SetQueryStatus sets the QueryStatus field's value. -func (s *CancelQueryOutput) SetQueryStatus(v string) *CancelQueryOutput { - s.QueryStatus = &v - return s +// Code returns the exception type name. +func (s *ConflictException) Code() string { + return "ConflictException" } -// Contains information about a returned CloudTrail channel. -type Channel struct { +// Message returns the exception's message. +func (s *ConflictException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *ConflictException) OrigErr() error { + return nil +} + +func (s *ConflictException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *ConflictException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *ConflictException) RequestID() string { + return s.RespMetadata.RequestID +} + +type CreateEventDataStoreInput struct { _ struct{} `type:"structure"` - // The Amazon Resource Name (ARN) of the channel. - ChannelArn *string `min:"3" type:"string"` + // The advanced event selectors to use to select the events for the data store. + // For more information about how to use advanced event selectors, see Log events + // by using advanced event selectors (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced) + // in the CloudTrail User Guide. + AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` - // The name of the CloudTrail channel. For service-linked channels, the name - // is aws-service-channel/service-name/custom-suffix where service-name represents - // the name of the Amazon Web Services service that created the channel and - // custom-suffix represents the suffix created by the Amazon Web Services service. - Name *string `min:"3" type:"string"` + // Specifies whether the event data store includes events from all regions, + // or only from the region in which the event data store is created. + MultiRegionEnabled *bool `type:"boolean"` + + // The name of the event data store. + // + // Name is a required field + Name *string `min:"3" type:"string" required:"true"` + + // Specifies whether an event data store collects events logged for an organization + // in Organizations. + OrganizationEnabled *bool `type:"boolean"` + + // The retention period of the event data store, in days. You can set a retention + // period of up to 2557 days, the equivalent of seven years. + RetentionPeriod *int64 `min:"7" type:"integer"` + + // A list of tags. + TagsList []*Tag `type:"list"` + + // Specifies whether termination protection is enabled for the event data store. + // If termination protection is enabled, you cannot delete the event data store + // until termination protection is disabled. + TerminationProtectionEnabled *bool `type:"boolean"` } // String returns the string representation. @@ -4872,7 +5940,7 @@ type Channel struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s Channel) String() string { +func (s CreateEventDataStoreInput) String() string { return awsutil.Prettify(s) } @@ -4881,93 +5949,131 @@ func (s Channel) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s Channel) GoString() string { +func (s CreateEventDataStoreInput) GoString() string { return s.String() } -// SetChannelArn sets the ChannelArn field's value. -func (s *Channel) SetChannelArn(v string) *Channel { - s.ChannelArn = &v +// Validate inspects the fields of the type to determine if they are valid. +func (s *CreateEventDataStoreInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "CreateEventDataStoreInput"} + if s.Name == nil { + invalidParams.Add(request.NewErrParamRequired("Name")) + } + if s.Name != nil && len(*s.Name) < 3 { + invalidParams.Add(request.NewErrParamMinLen("Name", 3)) + } + if s.RetentionPeriod != nil && *s.RetentionPeriod < 7 { + invalidParams.Add(request.NewErrParamMinValue("RetentionPeriod", 7)) + } + if s.AdvancedEventSelectors != nil { + for i, v := range s.AdvancedEventSelectors { + if v == nil { + continue + } + if err := v.Validate(); err != nil { + invalidParams.AddNested(fmt.Sprintf("%s[%v]", "AdvancedEventSelectors", i), err.(request.ErrInvalidParams)) + } + } + } + if s.TagsList != nil { + for i, v := range s.TagsList { + if v == nil { + continue + } + if err := v.Validate(); err != nil { + invalidParams.AddNested(fmt.Sprintf("%s[%v]", "TagsList", i), err.(request.ErrInvalidParams)) + } + } + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. +func (s *CreateEventDataStoreInput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *CreateEventDataStoreInput { + s.AdvancedEventSelectors = v + return s +} + +// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. +func (s *CreateEventDataStoreInput) SetMultiRegionEnabled(v bool) *CreateEventDataStoreInput { + s.MultiRegionEnabled = &v return s } // SetName sets the Name field's value. -func (s *Channel) SetName(v string) *Channel { +func (s *CreateEventDataStoreInput) SetName(v string) *CreateEventDataStoreInput { s.Name = &v return s } -// The specified channel ARN is not valid or does not map to a channel in your -// account. -type ChannelARNInvalidException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - - Message_ *string `locationName:"message" type:"string"` +// SetOrganizationEnabled sets the OrganizationEnabled field's value. +func (s *CreateEventDataStoreInput) SetOrganizationEnabled(v bool) *CreateEventDataStoreInput { + s.OrganizationEnabled = &v + return s } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s ChannelARNInvalidException) String() string { - return awsutil.Prettify(s) +// SetRetentionPeriod sets the RetentionPeriod field's value. +func (s *CreateEventDataStoreInput) SetRetentionPeriod(v int64) *CreateEventDataStoreInput { + s.RetentionPeriod = &v + return s } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s ChannelARNInvalidException) GoString() string { - return s.String() +// SetTagsList sets the TagsList field's value. +func (s *CreateEventDataStoreInput) SetTagsList(v []*Tag) *CreateEventDataStoreInput { + s.TagsList = v + return s } -func newErrorChannelARNInvalidException(v protocol.ResponseMetadata) error { - return &ChannelARNInvalidException{ - RespMetadata: v, - } +// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. +func (s *CreateEventDataStoreInput) SetTerminationProtectionEnabled(v bool) *CreateEventDataStoreInput { + s.TerminationProtectionEnabled = &v + return s } -// Code returns the exception type name. -func (s *ChannelARNInvalidException) Code() string { - return "ChannelARNInvalidException" -} +type CreateEventDataStoreOutput struct { + _ struct{} `type:"structure"` -// Message returns the exception's message. -func (s *ChannelARNInvalidException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" -} + // The advanced event selectors that were used to select the events for the + // data store. + AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *ChannelARNInvalidException) OrigErr() error { - return nil -} + // The timestamp that shows when the event data store was created. + CreatedTimestamp *time.Time `type:"timestamp"` -func (s *ChannelARNInvalidException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) -} + // The ARN of the event data store. + EventDataStoreArn *string `min:"3" type:"string"` -// Status code returns the HTTP status code for the request's response error. -func (s *ChannelARNInvalidException) StatusCode() int { - return s.RespMetadata.StatusCode -} + // Indicates whether the event data store collects events from all regions, + // or only from the region in which it was created. + MultiRegionEnabled *bool `type:"boolean"` -// RequestID returns the service's response RequestID for request. -func (s *ChannelARNInvalidException) RequestID() string { - return s.RespMetadata.RequestID -} + // The name of the event data store. + Name *string `min:"3" type:"string"` -// The specified channel was not found. -type ChannelNotFoundException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + // Indicates whether an event data store is collecting logged events for an + // organization in Organizations. + OrganizationEnabled *bool `type:"boolean"` - Message_ *string `locationName:"message" type:"string"` + // The retention period of an event data store, in days. + RetentionPeriod *int64 `min:"7" type:"integer"` + + // The status of event data store creation. + Status *string `type:"string" enum:"EventDataStoreStatus"` + + // A list of tags. + TagsList []*Tag `type:"list"` + + // Indicates whether termination protection is enabled for the event data store. + TerminationProtectionEnabled *bool `type:"boolean"` + + // The timestamp that shows when an event data store was updated, if applicable. + // UpdatedTimestamp is always either the same or newer than the time shown in + // CreatedTimestamp. + UpdatedTimestamp *time.Time `type:"timestamp"` } // String returns the string representation. @@ -4975,7 +6081,7 @@ type ChannelNotFoundException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ChannelNotFoundException) String() string { +func (s CreateEventDataStoreOutput) String() string { return awsutil.Prettify(s) } @@ -4984,121 +6090,173 @@ func (s ChannelNotFoundException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ChannelNotFoundException) GoString() string { +func (s CreateEventDataStoreOutput) GoString() string { return s.String() } -func newErrorChannelNotFoundException(v protocol.ResponseMetadata) error { - return &ChannelNotFoundException{ - RespMetadata: v, - } +// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. +func (s *CreateEventDataStoreOutput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *CreateEventDataStoreOutput { + s.AdvancedEventSelectors = v + return s } -// Code returns the exception type name. -func (s *ChannelNotFoundException) Code() string { - return "ChannelNotFoundException" +// SetCreatedTimestamp sets the CreatedTimestamp field's value. +func (s *CreateEventDataStoreOutput) SetCreatedTimestamp(v time.Time) *CreateEventDataStoreOutput { + s.CreatedTimestamp = &v + return s } -// Message returns the exception's message. -func (s *ChannelNotFoundException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" +// SetEventDataStoreArn sets the EventDataStoreArn field's value. +func (s *CreateEventDataStoreOutput) SetEventDataStoreArn(v string) *CreateEventDataStoreOutput { + s.EventDataStoreArn = &v + return s } -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *ChannelNotFoundException) OrigErr() error { - return nil +// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. +func (s *CreateEventDataStoreOutput) SetMultiRegionEnabled(v bool) *CreateEventDataStoreOutput { + s.MultiRegionEnabled = &v + return s } -func (s *ChannelNotFoundException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetName sets the Name field's value. +func (s *CreateEventDataStoreOutput) SetName(v string) *CreateEventDataStoreOutput { + s.Name = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *ChannelNotFoundException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetOrganizationEnabled sets the OrganizationEnabled field's value. +func (s *CreateEventDataStoreOutput) SetOrganizationEnabled(v bool) *CreateEventDataStoreOutput { + s.OrganizationEnabled = &v + return s } -// RequestID returns the service's response RequestID for request. -func (s *ChannelNotFoundException) RequestID() string { - return s.RespMetadata.RequestID +// SetRetentionPeriod sets the RetentionPeriod field's value. +func (s *CreateEventDataStoreOutput) SetRetentionPeriod(v int64) *CreateEventDataStoreOutput { + s.RetentionPeriod = &v + return s } -// This exception is thrown when a call results in the InvalidClientTokenId -// error code. This can occur when you are creating or updating a trail to send -// notifications to an Amazon SNS topic that is in a suspended Amazon Web Services -// account. -type CloudTrailInvalidClientTokenIdException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - - Message_ *string `locationName:"message" type:"string"` +// SetStatus sets the Status field's value. +func (s *CreateEventDataStoreOutput) SetStatus(v string) *CreateEventDataStoreOutput { + s.Status = &v + return s } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s CloudTrailInvalidClientTokenIdException) String() string { - return awsutil.Prettify(s) +// SetTagsList sets the TagsList field's value. +func (s *CreateEventDataStoreOutput) SetTagsList(v []*Tag) *CreateEventDataStoreOutput { + s.TagsList = v + return s } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s CloudTrailInvalidClientTokenIdException) GoString() string { - return s.String() +// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. +func (s *CreateEventDataStoreOutput) SetTerminationProtectionEnabled(v bool) *CreateEventDataStoreOutput { + s.TerminationProtectionEnabled = &v + return s } -func newErrorCloudTrailInvalidClientTokenIdException(v protocol.ResponseMetadata) error { - return &CloudTrailInvalidClientTokenIdException{ - RespMetadata: v, - } +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *CreateEventDataStoreOutput) SetUpdatedTimestamp(v time.Time) *CreateEventDataStoreOutput { + s.UpdatedTimestamp = &v + return s } -// Code returns the exception type name. -func (s *CloudTrailInvalidClientTokenIdException) Code() string { - return "CloudTrailInvalidClientTokenIdException" -} +// Specifies the settings for each trail. +type CreateTrailInput struct { + _ struct{} `type:"structure"` -// Message returns the exception's message. -func (s *CloudTrailInvalidClientTokenIdException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" -} + // Specifies a log group name using an Amazon Resource Name (ARN), a unique + // identifier that represents the log group to which CloudTrail logs will be + // delivered. Not required unless you specify CloudWatchLogsRoleArn. + CloudWatchLogsLogGroupArn *string `type:"string"` + + // Specifies the role for the CloudWatch Logs endpoint to assume to write to + // a user's log group. + CloudWatchLogsRoleArn *string `type:"string"` + + // Specifies whether log file integrity validation is enabled. The default is + // false. + // + // When you disable log file integrity validation, the chain of digest files + // is broken after one hour. CloudTrail does not create digest files for log + // files that were delivered during a period in which log file integrity validation + // was disabled. For example, if you enable log file integrity validation at + // noon on January 1, disable it at noon on January 2, and re-enable it at noon + // on January 10, digest files will not be created for the log files delivered + // from noon on January 2 to noon on January 10. The same applies whenever you + // stop CloudTrail logging or delete a trail. + EnableLogFileValidation *bool `type:"boolean"` + + // Specifies whether the trail is publishing events from global services such + // as IAM to the log files. + IncludeGlobalServiceEvents *bool `type:"boolean"` + + // Specifies whether the trail is created in the current region or in all regions. + // The default is false, which creates a trail only in the region where you + // are signed in. As a best practice, consider creating trails that log events + // in all regions. + IsMultiRegionTrail *bool `type:"boolean"` + + // Specifies whether the trail is created for all accounts in an organization + // in Organizations, or only for the current Amazon Web Services account. The + // default is false, and cannot be true unless the call is made on behalf of + // an Amazon Web Services account that is the management account for an organization + // in Organizations. + IsOrganizationTrail *bool `type:"boolean"` -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *CloudTrailInvalidClientTokenIdException) OrigErr() error { - return nil -} + // Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. + // The value can be an alias name prefixed by "alias/", a fully specified ARN + // to an alias, a fully specified ARN to a key, or a globally unique identifier. + // + // CloudTrail also supports KMS multi-Region keys. For more information about + // multi-Region keys, see Using multi-Region keys (https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html) + // in the Key Management Service Developer Guide. + // + // Examples: + // + // * alias/MyAliasName + // + // * arn:aws:kms:us-east-2:123456789012:alias/MyAliasName + // + // * arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012 + // + // * 12345678-1234-1234-1234-123456789012 + KmsKeyId *string `type:"string"` -func (s *CloudTrailInvalidClientTokenIdException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) -} + // Specifies the name of the trail. The name must meet the following requirements: + // + // * Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores + // (_), or dashes (-) + // + // * Start with a letter or number, and end with a letter or number + // + // * Be between 3 and 128 characters + // + // * Have no adjacent periods, underscores or dashes. Names like my-_namespace + // and my--namespace are not valid. + // + // * Not be in IP address format (for example, 192.168.5.4) + // + // Name is a required field + Name *string `type:"string" required:"true"` -// Status code returns the HTTP status code for the request's response error. -func (s *CloudTrailInvalidClientTokenIdException) StatusCode() int { - return s.RespMetadata.StatusCode -} + // Specifies the name of the Amazon S3 bucket designated for publishing log + // files. See Amazon S3 Bucket Naming Requirements (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html). + // + // S3BucketName is a required field + S3BucketName *string `type:"string" required:"true"` -// RequestID returns the service's response RequestID for request. -func (s *CloudTrailInvalidClientTokenIdException) RequestID() string { - return s.RespMetadata.RequestID -} + // Specifies the Amazon S3 key prefix that comes after the name of the bucket + // you have designated for log file delivery. For more information, see Finding + // Your CloudTrail Log Files (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html). + // The maximum length is 200 characters. + S3KeyPrefix *string `type:"string"` -// Cannot set a CloudWatch Logs delivery for this region. -type CloudWatchLogsDeliveryUnavailableException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + // Specifies the name of the Amazon SNS topic defined for notification of log + // file delivery. The maximum length is 256 characters. + SnsTopicName *string `type:"string"` - Message_ *string `locationName:"message" type:"string"` + // A list of tags. + TagsList []*Tag `type:"list"` } // String returns the string representation. @@ -5106,7 +6264,7 @@ type CloudWatchLogsDeliveryUnavailableException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CloudWatchLogsDeliveryUnavailableException) String() string { +func (s CreateTrailInput) String() string { return awsutil.Prettify(s) } @@ -5115,148 +6273,168 @@ func (s CloudWatchLogsDeliveryUnavailableException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CloudWatchLogsDeliveryUnavailableException) GoString() string { +func (s CreateTrailInput) GoString() string { return s.String() } -func newErrorCloudWatchLogsDeliveryUnavailableException(v protocol.ResponseMetadata) error { - return &CloudWatchLogsDeliveryUnavailableException{ - RespMetadata: v, +// Validate inspects the fields of the type to determine if they are valid. +func (s *CreateTrailInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "CreateTrailInput"} + if s.Name == nil { + invalidParams.Add(request.NewErrParamRequired("Name")) } -} - -// Code returns the exception type name. -func (s *CloudWatchLogsDeliveryUnavailableException) Code() string { - return "CloudWatchLogsDeliveryUnavailableException" -} - -// Message returns the exception's message. -func (s *CloudWatchLogsDeliveryUnavailableException) Message() string { - if s.Message_ != nil { - return *s.Message_ + if s.S3BucketName == nil { + invalidParams.Add(request.NewErrParamRequired("S3BucketName")) + } + if s.TagsList != nil { + for i, v := range s.TagsList { + if v == nil { + continue + } + if err := v.Validate(); err != nil { + invalidParams.AddNested(fmt.Sprintf("%s[%v]", "TagsList", i), err.(request.ErrInvalidParams)) + } + } } - return "" -} -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *CloudWatchLogsDeliveryUnavailableException) OrigErr() error { + if invalidParams.Len() > 0 { + return invalidParams + } return nil } -func (s *CloudWatchLogsDeliveryUnavailableException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) -} - -// Status code returns the HTTP status code for the request's response error. -func (s *CloudWatchLogsDeliveryUnavailableException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetCloudWatchLogsLogGroupArn sets the CloudWatchLogsLogGroupArn field's value. +func (s *CreateTrailInput) SetCloudWatchLogsLogGroupArn(v string) *CreateTrailInput { + s.CloudWatchLogsLogGroupArn = &v + return s } -// RequestID returns the service's response RequestID for request. -func (s *CloudWatchLogsDeliveryUnavailableException) RequestID() string { - return s.RespMetadata.RequestID +// SetCloudWatchLogsRoleArn sets the CloudWatchLogsRoleArn field's value. +func (s *CreateTrailInput) SetCloudWatchLogsRoleArn(v string) *CreateTrailInput { + s.CloudWatchLogsRoleArn = &v + return s } -// This exception is thrown when the specified resource is not ready for an -// operation. This can occur when you try to run an operation on a resource -// before CloudTrail has time to fully load the resource. If this exception -// occurs, wait a few minutes, and then try the operation again. -type ConflictException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - - Message_ *string `locationName:"message" type:"string"` +// SetEnableLogFileValidation sets the EnableLogFileValidation field's value. +func (s *CreateTrailInput) SetEnableLogFileValidation(v bool) *CreateTrailInput { + s.EnableLogFileValidation = &v + return s } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s ConflictException) String() string { - return awsutil.Prettify(s) +// SetIncludeGlobalServiceEvents sets the IncludeGlobalServiceEvents field's value. +func (s *CreateTrailInput) SetIncludeGlobalServiceEvents(v bool) *CreateTrailInput { + s.IncludeGlobalServiceEvents = &v + return s } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s ConflictException) GoString() string { - return s.String() +// SetIsMultiRegionTrail sets the IsMultiRegionTrail field's value. +func (s *CreateTrailInput) SetIsMultiRegionTrail(v bool) *CreateTrailInput { + s.IsMultiRegionTrail = &v + return s } -func newErrorConflictException(v protocol.ResponseMetadata) error { - return &ConflictException{ - RespMetadata: v, - } +// SetIsOrganizationTrail sets the IsOrganizationTrail field's value. +func (s *CreateTrailInput) SetIsOrganizationTrail(v bool) *CreateTrailInput { + s.IsOrganizationTrail = &v + return s } -// Code returns the exception type name. -func (s *ConflictException) Code() string { - return "ConflictException" +// SetKmsKeyId sets the KmsKeyId field's value. +func (s *CreateTrailInput) SetKmsKeyId(v string) *CreateTrailInput { + s.KmsKeyId = &v + return s } -// Message returns the exception's message. -func (s *ConflictException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" +// SetName sets the Name field's value. +func (s *CreateTrailInput) SetName(v string) *CreateTrailInput { + s.Name = &v + return s } -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *ConflictException) OrigErr() error { - return nil +// SetS3BucketName sets the S3BucketName field's value. +func (s *CreateTrailInput) SetS3BucketName(v string) *CreateTrailInput { + s.S3BucketName = &v + return s } -func (s *ConflictException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetS3KeyPrefix sets the S3KeyPrefix field's value. +func (s *CreateTrailInput) SetS3KeyPrefix(v string) *CreateTrailInput { + s.S3KeyPrefix = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *ConflictException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetSnsTopicName sets the SnsTopicName field's value. +func (s *CreateTrailInput) SetSnsTopicName(v string) *CreateTrailInput { + s.SnsTopicName = &v + return s } -// RequestID returns the service's response RequestID for request. -func (s *ConflictException) RequestID() string { - return s.RespMetadata.RequestID +// SetTagsList sets the TagsList field's value. +func (s *CreateTrailInput) SetTagsList(v []*Tag) *CreateTrailInput { + s.TagsList = v + return s } -type CreateEventDataStoreInput struct { +// Returns the objects or data listed below if successful. Otherwise, returns +// an error. +type CreateTrailOutput struct { _ struct{} `type:"structure"` - // The advanced event selectors to use to select the events for the data store. - // For more information about how to use advanced event selectors, see Log events - // by using advanced event selectors (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced) - // in the CloudTrail User Guide. - AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` + // Specifies the Amazon Resource Name (ARN) of the log group to which CloudTrail + // logs will be delivered. + CloudWatchLogsLogGroupArn *string `type:"string"` - // Specifies whether the event data store includes events from all regions, - // or only from the region in which the event data store is created. - MultiRegionEnabled *bool `type:"boolean"` + // Specifies the role for the CloudWatch Logs endpoint to assume to write to + // a user's log group. + CloudWatchLogsRoleArn *string `type:"string"` + + // Specifies whether the trail is publishing events from global services such + // as IAM to the log files. + IncludeGlobalServiceEvents *bool `type:"boolean"` + + // Specifies whether the trail exists in one region or in all regions. + IsMultiRegionTrail *bool `type:"boolean"` + + // Specifies whether the trail is an organization trail. + IsOrganizationTrail *bool `type:"boolean"` + + // Specifies the KMS key ID that encrypts the logs delivered by CloudTrail. + // The value is a fully specified ARN to a KMS key in the following format. + // + // arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012 + KmsKeyId *string `type:"string"` + + // Specifies whether log file integrity validation is enabled. + LogFileValidationEnabled *bool `type:"boolean"` - // The name of the event data store. - // - // Name is a required field - Name *string `min:"3" type:"string" required:"true"` + // Specifies the name of the trail. + Name *string `type:"string"` - // Specifies whether an event data store collects events logged for an organization - // in Organizations. - OrganizationEnabled *bool `type:"boolean"` + // Specifies the name of the Amazon S3 bucket designated for publishing log + // files. + S3BucketName *string `type:"string"` - // The retention period of the event data store, in days. You can set a retention - // period of up to 2557 days, the equivalent of seven years. - RetentionPeriod *int64 `min:"7" type:"integer"` + // Specifies the Amazon S3 key prefix that comes after the name of the bucket + // you have designated for log file delivery. For more information, see Finding + // Your CloudTrail Log Files (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html). + S3KeyPrefix *string `type:"string"` - // A list of tags. - TagsList []*Tag `type:"list"` + // Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send notifications + // when log files are delivered. The format of a topic ARN is: + // + // arn:aws:sns:us-east-2:123456789012:MyTopic + SnsTopicARN *string `type:"string"` - // Specifies whether termination protection is enabled for the event data store. - // If termination protection is enabled, you cannot delete the event data store - // until termination protection is disabled. - TerminationProtectionEnabled *bool `type:"boolean"` + // This field is no longer in use. Use SnsTopicARN. + // + // Deprecated: SnsTopicName has been deprecated + SnsTopicName *string `deprecated:"true" type:"string"` + + // Specifies the ARN of the trail that was created. The format of a trail ARN + // is: + // + // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail + TrailARN *string `type:"string"` } // String returns the string representation. @@ -5264,7 +6442,7 @@ type CreateEventDataStoreInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateEventDataStoreInput) String() string { +func (s CreateTrailOutput) String() string { return awsutil.Prettify(s) } @@ -5273,131 +6451,200 @@ func (s CreateEventDataStoreInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateEventDataStoreInput) GoString() string { +func (s CreateTrailOutput) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *CreateEventDataStoreInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "CreateEventDataStoreInput"} - if s.Name == nil { - invalidParams.Add(request.NewErrParamRequired("Name")) - } - if s.Name != nil && len(*s.Name) < 3 { - invalidParams.Add(request.NewErrParamMinLen("Name", 3)) - } - if s.RetentionPeriod != nil && *s.RetentionPeriod < 7 { - invalidParams.Add(request.NewErrParamMinValue("RetentionPeriod", 7)) - } - if s.AdvancedEventSelectors != nil { - for i, v := range s.AdvancedEventSelectors { - if v == nil { - continue - } - if err := v.Validate(); err != nil { - invalidParams.AddNested(fmt.Sprintf("%s[%v]", "AdvancedEventSelectors", i), err.(request.ErrInvalidParams)) - } - } - } - if s.TagsList != nil { - for i, v := range s.TagsList { - if v == nil { - continue - } - if err := v.Validate(); err != nil { - invalidParams.AddNested(fmt.Sprintf("%s[%v]", "TagsList", i), err.(request.ErrInvalidParams)) - } - } - } - - if invalidParams.Len() > 0 { - return invalidParams - } - return nil +// SetCloudWatchLogsLogGroupArn sets the CloudWatchLogsLogGroupArn field's value. +func (s *CreateTrailOutput) SetCloudWatchLogsLogGroupArn(v string) *CreateTrailOutput { + s.CloudWatchLogsLogGroupArn = &v + return s } -// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. -func (s *CreateEventDataStoreInput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *CreateEventDataStoreInput { - s.AdvancedEventSelectors = v +// SetCloudWatchLogsRoleArn sets the CloudWatchLogsRoleArn field's value. +func (s *CreateTrailOutput) SetCloudWatchLogsRoleArn(v string) *CreateTrailOutput { + s.CloudWatchLogsRoleArn = &v return s } -// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. -func (s *CreateEventDataStoreInput) SetMultiRegionEnabled(v bool) *CreateEventDataStoreInput { - s.MultiRegionEnabled = &v +// SetIncludeGlobalServiceEvents sets the IncludeGlobalServiceEvents field's value. +func (s *CreateTrailOutput) SetIncludeGlobalServiceEvents(v bool) *CreateTrailOutput { + s.IncludeGlobalServiceEvents = &v return s } -// SetName sets the Name field's value. -func (s *CreateEventDataStoreInput) SetName(v string) *CreateEventDataStoreInput { - s.Name = &v +// SetIsMultiRegionTrail sets the IsMultiRegionTrail field's value. +func (s *CreateTrailOutput) SetIsMultiRegionTrail(v bool) *CreateTrailOutput { + s.IsMultiRegionTrail = &v return s } -// SetOrganizationEnabled sets the OrganizationEnabled field's value. -func (s *CreateEventDataStoreInput) SetOrganizationEnabled(v bool) *CreateEventDataStoreInput { - s.OrganizationEnabled = &v +// SetIsOrganizationTrail sets the IsOrganizationTrail field's value. +func (s *CreateTrailOutput) SetIsOrganizationTrail(v bool) *CreateTrailOutput { + s.IsOrganizationTrail = &v return s } -// SetRetentionPeriod sets the RetentionPeriod field's value. -func (s *CreateEventDataStoreInput) SetRetentionPeriod(v int64) *CreateEventDataStoreInput { - s.RetentionPeriod = &v +// SetKmsKeyId sets the KmsKeyId field's value. +func (s *CreateTrailOutput) SetKmsKeyId(v string) *CreateTrailOutput { + s.KmsKeyId = &v return s } -// SetTagsList sets the TagsList field's value. -func (s *CreateEventDataStoreInput) SetTagsList(v []*Tag) *CreateEventDataStoreInput { - s.TagsList = v +// SetLogFileValidationEnabled sets the LogFileValidationEnabled field's value. +func (s *CreateTrailOutput) SetLogFileValidationEnabled(v bool) *CreateTrailOutput { + s.LogFileValidationEnabled = &v return s } -// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. -func (s *CreateEventDataStoreInput) SetTerminationProtectionEnabled(v bool) *CreateEventDataStoreInput { - s.TerminationProtectionEnabled = &v +// SetName sets the Name field's value. +func (s *CreateTrailOutput) SetName(v string) *CreateTrailOutput { + s.Name = &v return s } -type CreateEventDataStoreOutput struct { - _ struct{} `type:"structure"` - - // The advanced event selectors that were used to select the events for the - // data store. - AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` - - // The timestamp that shows when the event data store was created. - CreatedTimestamp *time.Time `type:"timestamp"` - - // The ARN of the event data store. - EventDataStoreArn *string `min:"3" type:"string"` - - // Indicates whether the event data store collects events from all regions, - // or only from the region in which it was created. - MultiRegionEnabled *bool `type:"boolean"` +// SetS3BucketName sets the S3BucketName field's value. +func (s *CreateTrailOutput) SetS3BucketName(v string) *CreateTrailOutput { + s.S3BucketName = &v + return s +} - // The name of the event data store. - Name *string `min:"3" type:"string"` +// SetS3KeyPrefix sets the S3KeyPrefix field's value. +func (s *CreateTrailOutput) SetS3KeyPrefix(v string) *CreateTrailOutput { + s.S3KeyPrefix = &v + return s +} - // Indicates whether an event data store is collecting logged events for an - // organization in Organizations. - OrganizationEnabled *bool `type:"boolean"` +// SetSnsTopicARN sets the SnsTopicARN field's value. +func (s *CreateTrailOutput) SetSnsTopicARN(v string) *CreateTrailOutput { + s.SnsTopicARN = &v + return s +} - // The retention period of an event data store, in days. - RetentionPeriod *int64 `min:"7" type:"integer"` +// SetSnsTopicName sets the SnsTopicName field's value. +func (s *CreateTrailOutput) SetSnsTopicName(v string) *CreateTrailOutput { + s.SnsTopicName = &v + return s +} - // The status of event data store creation. - Status *string `type:"string" enum:"EventDataStoreStatus"` +// SetTrailARN sets the TrailARN field's value. +func (s *CreateTrailOutput) SetTrailARN(v string) *CreateTrailOutput { + s.TrailARN = &v + return s +} - // A list of tags. - TagsList []*Tag `type:"list"` +// The Amazon S3 buckets, Lambda functions, or Amazon DynamoDB tables that you +// specify in your event selectors for your trail to log data events. Data events +// provide information about the resource operations performed on or within +// a resource itself. These are also known as data plane operations. You can +// specify up to 250 data resources for a trail. +// +// The total number of allowed data resources is 250. This number can be distributed +// between 1 and 5 event selectors, but the total cannot exceed 250 across all +// selectors. +// +// If you are using advanced event selectors, the maximum total number of values +// for all conditions, across all advanced event selectors for the trail, is +// 500. +// +// The following example demonstrates how logging works when you configure logging +// of all data events for an S3 bucket named bucket-1. In this example, the +// CloudTrail user specified an empty prefix, and the option to log both Read +// and Write data events. +// +// A user uploads an image file to bucket-1. +// +// The PutObject API operation is an Amazon S3 object-level API. It is recorded +// as a data event in CloudTrail. Because the CloudTrail user specified an S3 +// bucket with an empty prefix, events that occur on any object in that bucket +// are logged. The trail processes and logs the event. +// +// A user uploads an object to an Amazon S3 bucket named arn:aws:s3:::bucket-2. +// +// The PutObject API operation occurred for an object in an S3 bucket that the +// CloudTrail user didn't specify for the trail. The trail doesn’t log the +// event. +// +// The following example demonstrates how logging works when you configure logging +// of Lambda data events for a Lambda function named MyLambdaFunction, but not +// for all Lambda functions. +// +// A user runs a script that includes a call to the MyLambdaFunction function +// and the MyOtherLambdaFunction function. +// +// The Invoke API operation on MyLambdaFunction is an Lambda API. It is recorded +// as a data event in CloudTrail. Because the CloudTrail user specified logging +// data events for MyLambdaFunction, any invocations of that function are logged. +// The trail processes and logs the event. +// +// The Invoke API operation on MyOtherLambdaFunction is an Lambda API. Because +// the CloudTrail user did not specify logging data events for all Lambda functions, +// the Invoke operation for MyOtherLambdaFunction does not match the function +// specified for the trail. The trail doesn’t log the event. +type DataResource struct { + _ struct{} `type:"structure"` - // Indicates whether termination protection is enabled for the event data store. - TerminationProtectionEnabled *bool `type:"boolean"` + // The resource type in which you want to log data events. You can specify the + // following basic event selector resource types: + // + // * AWS::S3::Object + // + // * AWS::Lambda::Function + // + // * AWS::DynamoDB::Table + // + // The following resource types are also availble through advanced event selectors. + // Basic event selector resource types are valid in advanced event selectors, + // but advanced event selector resource types are not valid in basic event selectors. + // For more information, see AdvancedFieldSelector$Field. + // + // * AWS::S3Outposts::Object + // + // * AWS::ManagedBlockchain::Node + // + // * AWS::S3ObjectLambda::AccessPoint + // + // * AWS::EC2::Snapshot + // + // * AWS::S3::AccessPoint + // + // * AWS::DynamoDB::Stream + // + // * AWS::Glue::Table + Type *string `type:"string"` - // The timestamp that shows when an event data store was updated, if applicable. - // UpdatedTimestamp is always either the same or newer than the time shown in - // CreatedTimestamp. - UpdatedTimestamp *time.Time `type:"timestamp"` + // An array of Amazon Resource Name (ARN) strings or partial ARN strings for + // the specified objects. + // + // * To log data events for all objects in all S3 buckets in your Amazon + // Web Services account, specify the prefix as arn:aws:s3. This also enables + // logging of data event activity performed by any user or role in your Amazon + // Web Services account, even if that activity is performed on a bucket that + // belongs to another Amazon Web Services account. + // + // * To log data events for all objects in an S3 bucket, specify the bucket + // and an empty object prefix such as arn:aws:s3:::bucket-1/. The trail logs + // data events for all objects in this S3 bucket. + // + // * To log data events for specific objects, specify the S3 bucket and object + // prefix such as arn:aws:s3:::bucket-1/example-images. The trail logs data + // events for objects in this S3 bucket that match the prefix. + // + // * To log data events for all Lambda functions in your Amazon Web Services + // account, specify the prefix as arn:aws:lambda. This also enables logging + // of Invoke activity performed by any user or role in your Amazon Web Services + // account, even if that activity is performed on a function that belongs + // to another Amazon Web Services account. + // + // * To log data events for a specific Lambda function, specify the function + // ARN. Lambda function ARNs are exact. For example, if you specify a function + // ARN arn:aws:lambda:us-west-2:111111111111:function:helloworld, data events + // will only be logged for arn:aws:lambda:us-west-2:111111111111:function:helloworld. + // They will not be logged for arn:aws:lambda:us-west-2:111111111111:function:helloworld2. + // + // * To log data events for all DynamoDB tables in your Amazon Web Services + // account, specify the prefix as arn:aws:dynamodb. + Values []*string `type:"list"` } // String returns the string representation. @@ -5405,7 +6652,7 @@ type CreateEventDataStoreOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateEventDataStoreOutput) String() string { +func (s DataResource) String() string { return awsutil.Prettify(s) } @@ -5414,173 +6661,178 @@ func (s CreateEventDataStoreOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateEventDataStoreOutput) GoString() string { +func (s DataResource) GoString() string { return s.String() } -// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. -func (s *CreateEventDataStoreOutput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *CreateEventDataStoreOutput { - s.AdvancedEventSelectors = v +// SetType sets the Type field's value. +func (s *DataResource) SetType(v string) *DataResource { + s.Type = &v return s } -// SetCreatedTimestamp sets the CreatedTimestamp field's value. -func (s *CreateEventDataStoreOutput) SetCreatedTimestamp(v time.Time) *CreateEventDataStoreOutput { - s.CreatedTimestamp = &v +// SetValues sets the Values field's value. +func (s *DataResource) SetValues(v []*string) *DataResource { + s.Values = v return s } -// SetEventDataStoreArn sets the EventDataStoreArn field's value. -func (s *CreateEventDataStoreOutput) SetEventDataStoreArn(v string) *CreateEventDataStoreOutput { - s.EventDataStoreArn = &v - return s -} +type DeleteEventDataStoreInput struct { + _ struct{} `type:"structure"` -// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. -func (s *CreateEventDataStoreOutput) SetMultiRegionEnabled(v bool) *CreateEventDataStoreOutput { - s.MultiRegionEnabled = &v - return s + // The ARN (or the ID suffix of the ARN) of the event data store to delete. + // + // EventDataStore is a required field + EventDataStore *string `min:"3" type:"string" required:"true"` } -// SetName sets the Name field's value. -func (s *CreateEventDataStoreOutput) SetName(v string) *CreateEventDataStoreOutput { - s.Name = &v - return s +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteEventDataStoreInput) String() string { + return awsutil.Prettify(s) } -// SetOrganizationEnabled sets the OrganizationEnabled field's value. -func (s *CreateEventDataStoreOutput) SetOrganizationEnabled(v bool) *CreateEventDataStoreOutput { - s.OrganizationEnabled = &v - return s +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteEventDataStoreInput) GoString() string { + return s.String() } -// SetRetentionPeriod sets the RetentionPeriod field's value. -func (s *CreateEventDataStoreOutput) SetRetentionPeriod(v int64) *CreateEventDataStoreOutput { - s.RetentionPeriod = &v - return s +// Validate inspects the fields of the type to determine if they are valid. +func (s *DeleteEventDataStoreInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "DeleteEventDataStoreInput"} + if s.EventDataStore == nil { + invalidParams.Add(request.NewErrParamRequired("EventDataStore")) + } + if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { + invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil } -// SetStatus sets the Status field's value. -func (s *CreateEventDataStoreOutput) SetStatus(v string) *CreateEventDataStoreOutput { - s.Status = &v +// SetEventDataStore sets the EventDataStore field's value. +func (s *DeleteEventDataStoreInput) SetEventDataStore(v string) *DeleteEventDataStoreInput { + s.EventDataStore = &v return s } -// SetTagsList sets the TagsList field's value. -func (s *CreateEventDataStoreOutput) SetTagsList(v []*Tag) *CreateEventDataStoreOutput { - s.TagsList = v - return s +type DeleteEventDataStoreOutput struct { + _ struct{} `type:"structure"` } -// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. -func (s *CreateEventDataStoreOutput) SetTerminationProtectionEnabled(v bool) *CreateEventDataStoreOutput { - s.TerminationProtectionEnabled = &v - return s +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteEventDataStoreOutput) String() string { + return awsutil.Prettify(s) } -// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. -func (s *CreateEventDataStoreOutput) SetUpdatedTimestamp(v time.Time) *CreateEventDataStoreOutput { - s.UpdatedTimestamp = &v - return s +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteEventDataStoreOutput) GoString() string { + return s.String() } -// Specifies the settings for each trail. -type CreateTrailInput struct { +// The request that specifies the name of a trail to delete. +type DeleteTrailInput struct { _ struct{} `type:"structure"` - // Specifies a log group name using an Amazon Resource Name (ARN), a unique - // identifier that represents the log group to which CloudTrail logs will be - // delivered. Not required unless you specify CloudWatchLogsRoleArn. - CloudWatchLogsLogGroupArn *string `type:"string"` - - // Specifies the role for the CloudWatch Logs endpoint to assume to write to - // a user's log group. - CloudWatchLogsRoleArn *string `type:"string"` - - // Specifies whether log file integrity validation is enabled. The default is - // false. + // Specifies the name or the CloudTrail ARN of the trail to be deleted. The + // following is the format of a trail ARN. arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail // - // When you disable log file integrity validation, the chain of digest files - // is broken after one hour. CloudTrail does not create digest files for log - // files that were delivered during a period in which log file integrity validation - // was disabled. For example, if you enable log file integrity validation at - // noon on January 1, disable it at noon on January 2, and re-enable it at noon - // on January 10, digest files will not be created for the log files delivered - // from noon on January 2 to noon on January 10. The same applies whenever you - // stop CloudTrail logging or delete a trail. - EnableLogFileValidation *bool `type:"boolean"` + // Name is a required field + Name *string `type:"string" required:"true"` +} - // Specifies whether the trail is publishing events from global services such - // as IAM to the log files. - IncludeGlobalServiceEvents *bool `type:"boolean"` +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteTrailInput) String() string { + return awsutil.Prettify(s) +} - // Specifies whether the trail is created in the current region or in all regions. - // The default is false, which creates a trail only in the region where you - // are signed in. As a best practice, consider creating trails that log events - // in all regions. - IsMultiRegionTrail *bool `type:"boolean"` +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteTrailInput) GoString() string { + return s.String() +} - // Specifies whether the trail is created for all accounts in an organization - // in Organizations, or only for the current Amazon Web Services account. The - // default is false, and cannot be true unless the call is made on behalf of - // an Amazon Web Services account that is the management account for an organization - // in Organizations. - IsOrganizationTrail *bool `type:"boolean"` +// Validate inspects the fields of the type to determine if they are valid. +func (s *DeleteTrailInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "DeleteTrailInput"} + if s.Name == nil { + invalidParams.Add(request.NewErrParamRequired("Name")) + } - // Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. - // The value can be an alias name prefixed by "alias/", a fully specified ARN - // to an alias, a fully specified ARN to a key, or a globally unique identifier. - // - // CloudTrail also supports KMS multi-Region keys. For more information about - // multi-Region keys, see Using multi-Region keys (https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html) - // in the Key Management Service Developer Guide. - // - // Examples: - // - // * alias/MyAliasName - // - // * arn:aws:kms:us-east-2:123456789012:alias/MyAliasName - // - // * arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012 - // - // * 12345678-1234-1234-1234-123456789012 - KmsKeyId *string `type:"string"` + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} - // Specifies the name of the trail. The name must meet the following requirements: - // - // * Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores - // (_), or dashes (-) - // - // * Start with a letter or number, and end with a letter or number - // - // * Be between 3 and 128 characters - // - // * Have no adjacent periods, underscores or dashes. Names like my-_namespace - // and my--namespace are not valid. - // - // * Not be in IP address format (for example, 192.168.5.4) - // - // Name is a required field - Name *string `type:"string" required:"true"` +// SetName sets the Name field's value. +func (s *DeleteTrailInput) SetName(v string) *DeleteTrailInput { + s.Name = &v + return s +} + +// Returns the objects or data listed below if successful. Otherwise, returns +// an error. +type DeleteTrailOutput struct { + _ struct{} `type:"structure"` +} - // Specifies the name of the Amazon S3 bucket designated for publishing log - // files. See Amazon S3 Bucket Naming Requirements (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html). - // - // S3BucketName is a required field - S3BucketName *string `type:"string" required:"true"` +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteTrailOutput) String() string { + return awsutil.Prettify(s) +} - // Specifies the Amazon S3 key prefix that comes after the name of the bucket - // you have designated for log file delivery. For more information, see Finding - // Your CloudTrail Log Files (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html). - // The maximum length is 200 characters. - S3KeyPrefix *string `type:"string"` +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DeleteTrailOutput) GoString() string { + return s.String() +} - // Specifies the name of the Amazon SNS topic defined for notification of log - // file delivery. The maximum length is 256 characters. - SnsTopicName *string `type:"string"` +type DescribeQueryInput struct { + _ struct{} `type:"structure"` - // A list of tags. - TagsList []*Tag `type:"list"` + // The ARN (or the ID suffix of the ARN) of an event data store on which the + // specified query was run. + // + // EventDataStore is a required field + EventDataStore *string `min:"3" type:"string" required:"true"` + + // The query ID. + // + // QueryId is a required field + QueryId *string `min:"36" type:"string" required:"true"` } // String returns the string representation. @@ -5588,7 +6840,7 @@ type CreateTrailInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateTrailInput) String() string { +func (s DescribeQueryInput) String() string { return awsutil.Prettify(s) } @@ -5597,28 +6849,24 @@ func (s CreateTrailInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateTrailInput) GoString() string { +func (s DescribeQueryInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *CreateTrailInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "CreateTrailInput"} - if s.Name == nil { - invalidParams.Add(request.NewErrParamRequired("Name")) +func (s *DescribeQueryInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "DescribeQueryInput"} + if s.EventDataStore == nil { + invalidParams.Add(request.NewErrParamRequired("EventDataStore")) } - if s.S3BucketName == nil { - invalidParams.Add(request.NewErrParamRequired("S3BucketName")) + if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { + invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) } - if s.TagsList != nil { - for i, v := range s.TagsList { - if v == nil { - continue - } - if err := v.Validate(); err != nil { - invalidParams.AddNested(fmt.Sprintf("%s[%v]", "TagsList", i), err.(request.ErrInvalidParams)) - } - } + if s.QueryId == nil { + invalidParams.Add(request.NewErrParamRequired("QueryId")) + } + if s.QueryId != nil && len(*s.QueryId) < 36 { + invalidParams.Add(request.NewErrParamMinLen("QueryId", 36)) } if invalidParams.Len() > 0 { @@ -5627,138 +6875,203 @@ func (s *CreateTrailInput) Validate() error { return nil } -// SetCloudWatchLogsLogGroupArn sets the CloudWatchLogsLogGroupArn field's value. -func (s *CreateTrailInput) SetCloudWatchLogsLogGroupArn(v string) *CreateTrailInput { - s.CloudWatchLogsLogGroupArn = &v +// SetEventDataStore sets the EventDataStore field's value. +func (s *DescribeQueryInput) SetEventDataStore(v string) *DescribeQueryInput { + s.EventDataStore = &v return s } -// SetCloudWatchLogsRoleArn sets the CloudWatchLogsRoleArn field's value. -func (s *CreateTrailInput) SetCloudWatchLogsRoleArn(v string) *CreateTrailInput { - s.CloudWatchLogsRoleArn = &v +// SetQueryId sets the QueryId field's value. +func (s *DescribeQueryInput) SetQueryId(v string) *DescribeQueryInput { + s.QueryId = &v return s } -// SetEnableLogFileValidation sets the EnableLogFileValidation field's value. -func (s *CreateTrailInput) SetEnableLogFileValidation(v bool) *CreateTrailInput { - s.EnableLogFileValidation = &v - return s -} +type DescribeQueryOutput struct { + _ struct{} `type:"structure"` -// SetIncludeGlobalServiceEvents sets the IncludeGlobalServiceEvents field's value. -func (s *CreateTrailInput) SetIncludeGlobalServiceEvents(v bool) *CreateTrailInput { - s.IncludeGlobalServiceEvents = &v - return s -} + // The error message returned if a query failed. + ErrorMessage *string `min:"4" type:"string"` -// SetIsMultiRegionTrail sets the IsMultiRegionTrail field's value. -func (s *CreateTrailInput) SetIsMultiRegionTrail(v bool) *CreateTrailInput { - s.IsMultiRegionTrail = &v - return s + // The ID of the query. + QueryId *string `min:"36" type:"string"` + + // Metadata about a query, including the number of events that were matched, + // the total number of events scanned, the query run time in milliseconds, and + // the query's creation time. + QueryStatistics *QueryStatisticsForDescribeQuery `type:"structure"` + + // The status of a query. Values for QueryStatus include QUEUED, RUNNING, FINISHED, + // FAILED, TIMED_OUT, or CANCELLED + QueryStatus *string `type:"string" enum:"QueryStatus"` + + // The SQL code of a query. + QueryString *string `min:"1" type:"string"` } -// SetIsOrganizationTrail sets the IsOrganizationTrail field's value. -func (s *CreateTrailInput) SetIsOrganizationTrail(v bool) *CreateTrailInput { - s.IsOrganizationTrail = &v - return s +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DescribeQueryOutput) String() string { + return awsutil.Prettify(s) } -// SetKmsKeyId sets the KmsKeyId field's value. -func (s *CreateTrailInput) SetKmsKeyId(v string) *CreateTrailInput { - s.KmsKeyId = &v - return s +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DescribeQueryOutput) GoString() string { + return s.String() } -// SetName sets the Name field's value. -func (s *CreateTrailInput) SetName(v string) *CreateTrailInput { - s.Name = &v +// SetErrorMessage sets the ErrorMessage field's value. +func (s *DescribeQueryOutput) SetErrorMessage(v string) *DescribeQueryOutput { + s.ErrorMessage = &v return s } -// SetS3BucketName sets the S3BucketName field's value. -func (s *CreateTrailInput) SetS3BucketName(v string) *CreateTrailInput { - s.S3BucketName = &v +// SetQueryId sets the QueryId field's value. +func (s *DescribeQueryOutput) SetQueryId(v string) *DescribeQueryOutput { + s.QueryId = &v return s } -// SetS3KeyPrefix sets the S3KeyPrefix field's value. -func (s *CreateTrailInput) SetS3KeyPrefix(v string) *CreateTrailInput { - s.S3KeyPrefix = &v +// SetQueryStatistics sets the QueryStatistics field's value. +func (s *DescribeQueryOutput) SetQueryStatistics(v *QueryStatisticsForDescribeQuery) *DescribeQueryOutput { + s.QueryStatistics = v return s } -// SetSnsTopicName sets the SnsTopicName field's value. -func (s *CreateTrailInput) SetSnsTopicName(v string) *CreateTrailInput { - s.SnsTopicName = &v +// SetQueryStatus sets the QueryStatus field's value. +func (s *DescribeQueryOutput) SetQueryStatus(v string) *DescribeQueryOutput { + s.QueryStatus = &v return s } -// SetTagsList sets the TagsList field's value. -func (s *CreateTrailInput) SetTagsList(v []*Tag) *CreateTrailInput { - s.TagsList = v +// SetQueryString sets the QueryString field's value. +func (s *DescribeQueryOutput) SetQueryString(v string) *DescribeQueryOutput { + s.QueryString = &v return s } -// Returns the objects or data listed below if successful. Otherwise, returns -// an error. -type CreateTrailOutput struct { +// Returns information about the trail. +type DescribeTrailsInput struct { _ struct{} `type:"structure"` - // Specifies the Amazon Resource Name (ARN) of the log group to which CloudTrail - // logs will be delivered. - CloudWatchLogsLogGroupArn *string `type:"string"` + // Specifies whether to include shadow trails in the response. A shadow trail + // is the replication in a region of a trail that was created in a different + // region, or in the case of an organization trail, the replication of an organization + // trail in member accounts. If you do not include shadow trails, organization + // trails in a member account and region replication trails will not be returned. + // The default is true. + IncludeShadowTrails *bool `locationName:"includeShadowTrails" type:"boolean"` - // Specifies the role for the CloudWatch Logs endpoint to assume to write to - // a user's log group. - CloudWatchLogsRoleArn *string `type:"string"` + // Specifies a list of trail names, trail ARNs, or both, of the trails to describe. + // The format of a trail ARN is: + // + // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail + // + // If an empty list is specified, information for the trail in the current region + // is returned. + // + // * If an empty list is specified and IncludeShadowTrails is false, then + // information for all trails in the current region is returned. + // + // * If an empty list is specified and IncludeShadowTrails is null or true, + // then information for all trails in the current region and any associated + // shadow trails in other regions is returned. + // + // If one or more trail names are specified, information is returned only if + // the names match the names of trails belonging only to the current region. + // To return information about a trail in another region, you must specify its + // trail ARN. + TrailNameList []*string `locationName:"trailNameList" type:"list"` +} - // Specifies whether the trail is publishing events from global services such - // as IAM to the log files. - IncludeGlobalServiceEvents *bool `type:"boolean"` +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DescribeTrailsInput) String() string { + return awsutil.Prettify(s) +} - // Specifies whether the trail exists in one region or in all regions. - IsMultiRegionTrail *bool `type:"boolean"` +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DescribeTrailsInput) GoString() string { + return s.String() +} - // Specifies whether the trail is an organization trail. - IsOrganizationTrail *bool `type:"boolean"` +// SetIncludeShadowTrails sets the IncludeShadowTrails field's value. +func (s *DescribeTrailsInput) SetIncludeShadowTrails(v bool) *DescribeTrailsInput { + s.IncludeShadowTrails = &v + return s +} - // Specifies the KMS key ID that encrypts the logs delivered by CloudTrail. - // The value is a fully specified ARN to a KMS key in the following format. - // - // arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012 - KmsKeyId *string `type:"string"` +// SetTrailNameList sets the TrailNameList field's value. +func (s *DescribeTrailsInput) SetTrailNameList(v []*string) *DescribeTrailsInput { + s.TrailNameList = v + return s +} - // Specifies whether log file integrity validation is enabled. - LogFileValidationEnabled *bool `type:"boolean"` +// Returns the objects or data listed below if successful. Otherwise, returns +// an error. +type DescribeTrailsOutput struct { + _ struct{} `type:"structure"` + + // The list of trail objects. Trail objects with string values are only returned + // if values for the objects exist in a trail's configuration. For example, + // SNSTopicName and SNSTopicARN are only returned in results if a trail is configured + // to send SNS notifications. Similarly, KMSKeyId only appears in results if + // a trail's log files are encrypted with KMS customer managed keys. + TrailList []*Trail `locationName:"trailList" type:"list"` +} - // Specifies the name of the trail. - Name *string `type:"string"` +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DescribeTrailsOutput) String() string { + return awsutil.Prettify(s) +} - // Specifies the name of the Amazon S3 bucket designated for publishing log - // files. - S3BucketName *string `type:"string"` +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s DescribeTrailsOutput) GoString() string { + return s.String() +} - // Specifies the Amazon S3 key prefix that comes after the name of the bucket - // you have designated for log file delivery. For more information, see Finding - // Your CloudTrail Log Files (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html). - S3KeyPrefix *string `type:"string"` +// SetTrailList sets the TrailList field's value. +func (s *DescribeTrailsOutput) SetTrailList(v []*Trail) *DescribeTrailsOutput { + s.TrailList = v + return s +} - // Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send notifications - // when log files are delivered. The format of a topic ARN is: - // - // arn:aws:sns:us-east-2:123456789012:MyTopic - SnsTopicARN *string `type:"string"` +// Contains information about the service where CloudTrail delivers events. +type Destination struct { + _ struct{} `type:"structure"` - // This field is no longer in use. Use SnsTopicARN. + // The location of the service. For service-linked channels, this is the name + // of the Amazon Web Services service. // - // Deprecated: SnsTopicName has been deprecated - SnsTopicName *string `deprecated:"true" type:"string"` + // Location is a required field + Location *string `min:"3" type:"string" required:"true"` - // Specifies the ARN of the trail that was created. The format of a trail ARN - // is: + // The type of service. For service-linked channels, the value is AWS_SERVICE. // - // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail - TrailARN *string `type:"string"` + // Type is a required field + Type *string `type:"string" required:"true" enum:"DestinationType"` } // String returns the string representation. @@ -5766,7 +7079,7 @@ type CreateTrailOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateTrailOutput) String() string { +func (s Destination) String() string { return awsutil.Prettify(s) } @@ -5775,200 +7088,190 @@ func (s CreateTrailOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s CreateTrailOutput) GoString() string { +func (s Destination) GoString() string { return s.String() } -// SetCloudWatchLogsLogGroupArn sets the CloudWatchLogsLogGroupArn field's value. -func (s *CreateTrailOutput) SetCloudWatchLogsLogGroupArn(v string) *CreateTrailOutput { - s.CloudWatchLogsLogGroupArn = &v +// SetLocation sets the Location field's value. +func (s *Destination) SetLocation(v string) *Destination { + s.Location = &v return s } -// SetCloudWatchLogsRoleArn sets the CloudWatchLogsRoleArn field's value. -func (s *CreateTrailOutput) SetCloudWatchLogsRoleArn(v string) *CreateTrailOutput { - s.CloudWatchLogsRoleArn = &v +// SetType sets the Type field's value. +func (s *Destination) SetType(v string) *Destination { + s.Type = &v return s } -// SetIncludeGlobalServiceEvents sets the IncludeGlobalServiceEvents field's value. -func (s *CreateTrailOutput) SetIncludeGlobalServiceEvents(v bool) *CreateTrailOutput { - s.IncludeGlobalServiceEvents = &v - return s -} +// Contains information about an event that was returned by a lookup request. +// The result includes a representation of a CloudTrail event. +type Event struct { + _ struct{} `type:"structure"` -// SetIsMultiRegionTrail sets the IsMultiRegionTrail field's value. -func (s *CreateTrailOutput) SetIsMultiRegionTrail(v bool) *CreateTrailOutput { - s.IsMultiRegionTrail = &v - return s + // The Amazon Web Services access key ID that was used to sign the request. + // If the request was made with temporary security credentials, this is the + // access key ID of the temporary credentials. + AccessKeyId *string `type:"string"` + + // A JSON string that contains a representation of the event returned. + CloudTrailEvent *string `type:"string"` + + // The CloudTrail ID of the event returned. + EventId *string `type:"string"` + + // The name of the event returned. + EventName *string `type:"string"` + + // The Amazon Web Services service to which the request was made. + EventSource *string `type:"string"` + + // The date and time of the event returned. + EventTime *time.Time `type:"timestamp"` + + // Information about whether the event is a write event or a read event. + ReadOnly *string `type:"string"` + + // A list of resources referenced by the event returned. + Resources []*Resource `type:"list"` + + // A user name or role name of the requester that called the API in the event + // returned. + Username *string `type:"string"` } -// SetIsOrganizationTrail sets the IsOrganizationTrail field's value. -func (s *CreateTrailOutput) SetIsOrganizationTrail(v bool) *CreateTrailOutput { - s.IsOrganizationTrail = &v - return s +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s Event) String() string { + return awsutil.Prettify(s) } -// SetKmsKeyId sets the KmsKeyId field's value. -func (s *CreateTrailOutput) SetKmsKeyId(v string) *CreateTrailOutput { - s.KmsKeyId = &v - return s +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s Event) GoString() string { + return s.String() } -// SetLogFileValidationEnabled sets the LogFileValidationEnabled field's value. -func (s *CreateTrailOutput) SetLogFileValidationEnabled(v bool) *CreateTrailOutput { - s.LogFileValidationEnabled = &v +// SetAccessKeyId sets the AccessKeyId field's value. +func (s *Event) SetAccessKeyId(v string) *Event { + s.AccessKeyId = &v return s } -// SetName sets the Name field's value. -func (s *CreateTrailOutput) SetName(v string) *CreateTrailOutput { - s.Name = &v +// SetCloudTrailEvent sets the CloudTrailEvent field's value. +func (s *Event) SetCloudTrailEvent(v string) *Event { + s.CloudTrailEvent = &v return s } -// SetS3BucketName sets the S3BucketName field's value. -func (s *CreateTrailOutput) SetS3BucketName(v string) *CreateTrailOutput { - s.S3BucketName = &v +// SetEventId sets the EventId field's value. +func (s *Event) SetEventId(v string) *Event { + s.EventId = &v return s } -// SetS3KeyPrefix sets the S3KeyPrefix field's value. -func (s *CreateTrailOutput) SetS3KeyPrefix(v string) *CreateTrailOutput { - s.S3KeyPrefix = &v +// SetEventName sets the EventName field's value. +func (s *Event) SetEventName(v string) *Event { + s.EventName = &v return s } -// SetSnsTopicARN sets the SnsTopicARN field's value. -func (s *CreateTrailOutput) SetSnsTopicARN(v string) *CreateTrailOutput { - s.SnsTopicARN = &v +// SetEventSource sets the EventSource field's value. +func (s *Event) SetEventSource(v string) *Event { + s.EventSource = &v return s } -// SetSnsTopicName sets the SnsTopicName field's value. -func (s *CreateTrailOutput) SetSnsTopicName(v string) *CreateTrailOutput { - s.SnsTopicName = &v +// SetEventTime sets the EventTime field's value. +func (s *Event) SetEventTime(v time.Time) *Event { + s.EventTime = &v return s } -// SetTrailARN sets the TrailARN field's value. -func (s *CreateTrailOutput) SetTrailARN(v string) *CreateTrailOutput { - s.TrailARN = &v +// SetReadOnly sets the ReadOnly field's value. +func (s *Event) SetReadOnly(v string) *Event { + s.ReadOnly = &v return s } - -// The Amazon S3 buckets, Lambda functions, or Amazon DynamoDB tables that you -// specify in your event selectors for your trail to log data events. Data events -// provide information about the resource operations performed on or within -// a resource itself. These are also known as data plane operations. You can -// specify up to 250 data resources for a trail. -// -// The total number of allowed data resources is 250. This number can be distributed -// between 1 and 5 event selectors, but the total cannot exceed 250 across all -// selectors. -// -// If you are using advanced event selectors, the maximum total number of values -// for all conditions, across all advanced event selectors for the trail, is -// 500. -// -// The following example demonstrates how logging works when you configure logging -// of all data events for an S3 bucket named bucket-1. In this example, the -// CloudTrail user specified an empty prefix, and the option to log both Read -// and Write data events. -// -// A user uploads an image file to bucket-1. -// -// The PutObject API operation is an Amazon S3 object-level API. It is recorded -// as a data event in CloudTrail. Because the CloudTrail user specified an S3 -// bucket with an empty prefix, events that occur on any object in that bucket -// are logged. The trail processes and logs the event. -// -// A user uploads an object to an Amazon S3 bucket named arn:aws:s3:::bucket-2. -// -// The PutObject API operation occurred for an object in an S3 bucket that the -// CloudTrail user didn't specify for the trail. The trail doesn’t log the -// event. -// -// The following example demonstrates how logging works when you configure logging -// of Lambda data events for a Lambda function named MyLambdaFunction, but not -// for all Lambda functions. -// -// A user runs a script that includes a call to the MyLambdaFunction function -// and the MyOtherLambdaFunction function. -// -// The Invoke API operation on MyLambdaFunction is an Lambda API. It is recorded -// as a data event in CloudTrail. Because the CloudTrail user specified logging -// data events for MyLambdaFunction, any invocations of that function are logged. -// The trail processes and logs the event. -// -// The Invoke API operation on MyOtherLambdaFunction is an Lambda API. Because -// the CloudTrail user did not specify logging data events for all Lambda functions, -// the Invoke operation for MyOtherLambdaFunction does not match the function -// specified for the trail. The trail doesn’t log the event. -type DataResource struct { - _ struct{} `type:"structure"` - - // The resource type in which you want to log data events. You can specify the - // following basic event selector resource types: - // - // * AWS::S3::Object - // - // * AWS::Lambda::Function - // - // * AWS::DynamoDB::Table - // - // The following resource types are also availble through advanced event selectors. - // Basic event selector resource types are valid in advanced event selectors, - // but advanced event selector resource types are not valid in basic event selectors. - // For more information, see AdvancedFieldSelector$Field. - // - // * AWS::S3Outposts::Object - // - // * AWS::ManagedBlockchain::Node - // - // * AWS::S3ObjectLambda::AccessPoint - // - // * AWS::EC2::Snapshot - // - // * AWS::S3::AccessPoint + +// SetResources sets the Resources field's value. +func (s *Event) SetResources(v []*Resource) *Event { + s.Resources = v + return s +} + +// SetUsername sets the Username field's value. +func (s *Event) SetUsername(v string) *Event { + s.Username = &v + return s +} + +// A storage lake of event data against which you can run complex SQL-based +// queries. An event data store can include events that you have logged on your +// account from the last 90 to 2557 days (about three months to up to seven +// years). To select events for an event data store, use advanced event selectors +// (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced). +type EventDataStore struct { + _ struct{} `type:"structure"` + + // This field is being deprecated. The advanced event selectors that were used + // to select events for the data store. // - // * AWS::DynamoDB::Stream + // Deprecated: AdvancedEventSelectors is no longer returned by ListEventDataStores + AdvancedEventSelectors []*AdvancedEventSelector `deprecated:"true" type:"list"` + + // This field is being deprecated. The timestamp of the event data store's creation. // - // * AWS::Glue::Table - Type *string `type:"string"` + // Deprecated: CreatedTimestamp is no longer returned by ListEventDataStores + CreatedTimestamp *time.Time `deprecated:"true" type:"timestamp"` - // An array of Amazon Resource Name (ARN) strings or partial ARN strings for - // the specified objects. + // The ARN of the event data store. + EventDataStoreArn *string `min:"3" type:"string"` + + // This field is being deprecated. Indicates whether the event data store includes + // events from all regions, or only from the region in which it was created. // - // * To log data events for all objects in all S3 buckets in your Amazon - // Web Services account, specify the prefix as arn:aws:s3:::. This also enables - // logging of data event activity performed by any user or role in your Amazon - // Web Services account, even if that activity is performed on a bucket that - // belongs to another Amazon Web Services account. + // Deprecated: MultiRegionEnabled is no longer returned by ListEventDataStores + MultiRegionEnabled *bool `deprecated:"true" type:"boolean"` + + // The name of the event data store. + Name *string `min:"3" type:"string"` + + // This field is being deprecated. Indicates that an event data store is collecting + // logged events for an organization. // - // * To log data events for all objects in an S3 bucket, specify the bucket - // and an empty object prefix such as arn:aws:s3:::bucket-1/. The trail logs - // data events for all objects in this S3 bucket. + // Deprecated: OrganizationEnabled is no longer returned by ListEventDataStores + OrganizationEnabled *bool `deprecated:"true" type:"boolean"` + + // This field is being deprecated. The retention period, in days. // - // * To log data events for specific objects, specify the S3 bucket and object - // prefix such as arn:aws:s3:::bucket-1/example-images. The trail logs data - // events for objects in this S3 bucket that match the prefix. + // Deprecated: RetentionPeriod is no longer returned by ListEventDataStores + RetentionPeriod *int64 `min:"7" deprecated:"true" type:"integer"` + + // This field is being deprecated. The status of an event data store. Values + // are ENABLED and PENDING_DELETION. // - // * To log data events for all Lambda functions in your Amazon Web Services - // account, specify the prefix as arn:aws:lambda. This also enables logging - // of Invoke activity performed by any user or role in your Amazon Web Services - // account, even if that activity is performed on a function that belongs - // to another Amazon Web Services account. + // Deprecated: Status is no longer returned by ListEventDataStores + Status *string `deprecated:"true" type:"string" enum:"EventDataStoreStatus"` + + // This field is being deprecated. Indicates whether the event data store is + // protected from termination. // - // * To log data events for a specific Lambda function, specify the function - // ARN. Lambda function ARNs are exact. For example, if you specify a function - // ARN arn:aws:lambda:us-west-2:111111111111:function:helloworld, data events - // will only be logged for arn:aws:lambda:us-west-2:111111111111:function:helloworld. - // They will not be logged for arn:aws:lambda:us-west-2:111111111111:function:helloworld2. + // Deprecated: TerminationProtectionEnabled is no longer returned by ListEventDataStores + TerminationProtectionEnabled *bool `deprecated:"true" type:"boolean"` + + // This field is being deprecated. The timestamp showing when an event data + // store was updated, if applicable. UpdatedTimestamp is always either the same + // or newer than the time shown in CreatedTimestamp. // - // * To log data events for all DynamoDB tables in your Amazon Web Services - // account, specify the prefix as arn:aws:dynamodb. - Values []*string `type:"list"` + // Deprecated: UpdatedTimestamp is no longer returned by ListEventDataStores + UpdatedTimestamp *time.Time `deprecated:"true" type:"timestamp"` } // String returns the string representation. @@ -5976,7 +7279,7 @@ type DataResource struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DataResource) String() string { +func (s EventDataStore) String() string { return awsutil.Prettify(s) } @@ -5985,102 +7288,77 @@ func (s DataResource) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DataResource) GoString() string { +func (s EventDataStore) GoString() string { return s.String() } -// SetType sets the Type field's value. -func (s *DataResource) SetType(v string) *DataResource { - s.Type = &v +// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. +func (s *EventDataStore) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *EventDataStore { + s.AdvancedEventSelectors = v return s } -// SetValues sets the Values field's value. -func (s *DataResource) SetValues(v []*string) *DataResource { - s.Values = v +// SetCreatedTimestamp sets the CreatedTimestamp field's value. +func (s *EventDataStore) SetCreatedTimestamp(v time.Time) *EventDataStore { + s.CreatedTimestamp = &v return s } -type DeleteEventDataStoreInput struct { - _ struct{} `type:"structure"` - - // The ARN (or the ID suffix of the ARN) of the event data store to delete. - // - // EventDataStore is a required field - EventDataStore *string `min:"3" type:"string" required:"true"` +// SetEventDataStoreArn sets the EventDataStoreArn field's value. +func (s *EventDataStore) SetEventDataStoreArn(v string) *EventDataStore { + s.EventDataStoreArn = &v + return s } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DeleteEventDataStoreInput) String() string { - return awsutil.Prettify(s) +// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. +func (s *EventDataStore) SetMultiRegionEnabled(v bool) *EventDataStore { + s.MultiRegionEnabled = &v + return s } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DeleteEventDataStoreInput) GoString() string { - return s.String() +// SetName sets the Name field's value. +func (s *EventDataStore) SetName(v string) *EventDataStore { + s.Name = &v + return s } -// Validate inspects the fields of the type to determine if they are valid. -func (s *DeleteEventDataStoreInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "DeleteEventDataStoreInput"} - if s.EventDataStore == nil { - invalidParams.Add(request.NewErrParamRequired("EventDataStore")) - } - if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { - invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) - } - - if invalidParams.Len() > 0 { - return invalidParams - } - return nil +// SetOrganizationEnabled sets the OrganizationEnabled field's value. +func (s *EventDataStore) SetOrganizationEnabled(v bool) *EventDataStore { + s.OrganizationEnabled = &v + return s } -// SetEventDataStore sets the EventDataStore field's value. -func (s *DeleteEventDataStoreInput) SetEventDataStore(v string) *DeleteEventDataStoreInput { - s.EventDataStore = &v +// SetRetentionPeriod sets the RetentionPeriod field's value. +func (s *EventDataStore) SetRetentionPeriod(v int64) *EventDataStore { + s.RetentionPeriod = &v return s } -type DeleteEventDataStoreOutput struct { - _ struct{} `type:"structure"` +// SetStatus sets the Status field's value. +func (s *EventDataStore) SetStatus(v string) *EventDataStore { + s.Status = &v + return s } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DeleteEventDataStoreOutput) String() string { - return awsutil.Prettify(s) +// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. +func (s *EventDataStore) SetTerminationProtectionEnabled(v bool) *EventDataStore { + s.TerminationProtectionEnabled = &v + return s } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DeleteEventDataStoreOutput) GoString() string { - return s.String() +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *EventDataStore) SetUpdatedTimestamp(v time.Time) *EventDataStore { + s.UpdatedTimestamp = &v + return s } -// The request that specifies the name of a trail to delete. -type DeleteTrailInput struct { - _ struct{} `type:"structure"` +// The specified event data store ARN is not valid or does not map to an event +// data store in your account. +type EventDataStoreARNInvalidException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // Specifies the name or the CloudTrail ARN of the trail to be deleted. The - // following is the format of a trail ARN. arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail - // - // Name is a required field - Name *string `type:"string" required:"true"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -6088,7 +7366,7 @@ type DeleteTrailInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DeleteTrailInput) String() string { +func (s EventDataStoreARNInvalidException) String() string { return awsutil.Prettify(s) } @@ -6097,66 +7375,54 @@ func (s DeleteTrailInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DeleteTrailInput) GoString() string { +func (s EventDataStoreARNInvalidException) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *DeleteTrailInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "DeleteTrailInput"} - if s.Name == nil { - invalidParams.Add(request.NewErrParamRequired("Name")) +func newErrorEventDataStoreARNInvalidException(v protocol.ResponseMetadata) error { + return &EventDataStoreARNInvalidException{ + RespMetadata: v, } +} - if invalidParams.Len() > 0 { - return invalidParams +// Code returns the exception type name. +func (s *EventDataStoreARNInvalidException) Code() string { + return "EventDataStoreARNInvalidException" +} + +// Message returns the exception's message. +func (s *EventDataStoreARNInvalidException) Message() string { + if s.Message_ != nil { + return *s.Message_ } - return nil + return "" } -// SetName sets the Name field's value. -func (s *DeleteTrailInput) SetName(v string) *DeleteTrailInput { - s.Name = &v - return s +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *EventDataStoreARNInvalidException) OrigErr() error { + return nil } -// Returns the objects or data listed below if successful. Otherwise, returns -// an error. -type DeleteTrailOutput struct { - _ struct{} `type:"structure"` +func (s *EventDataStoreARNInvalidException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DeleteTrailOutput) String() string { - return awsutil.Prettify(s) +// Status code returns the HTTP status code for the request's response error. +func (s *EventDataStoreARNInvalidException) StatusCode() int { + return s.RespMetadata.StatusCode } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DeleteTrailOutput) GoString() string { - return s.String() +// RequestID returns the service's response RequestID for request. +func (s *EventDataStoreARNInvalidException) RequestID() string { + return s.RespMetadata.RequestID } -type DescribeQueryInput struct { - _ struct{} `type:"structure"` - - // The ARN (or the ID suffix of the ARN) of an event data store on which the - // specified query was run. - // - // EventDataStore is a required field - EventDataStore *string `min:"3" type:"string" required:"true"` +// An event data store with that name already exists. +type EventDataStoreAlreadyExistsException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // The query ID. - // - // QueryId is a required field - QueryId *string `min:"36" type:"string" required:"true"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -6164,7 +7430,7 @@ type DescribeQueryInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DescribeQueryInput) String() string { +func (s EventDataStoreAlreadyExistsException) String() string { return awsutil.Prettify(s) } @@ -6173,64 +7439,55 @@ func (s DescribeQueryInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DescribeQueryInput) GoString() string { +func (s EventDataStoreAlreadyExistsException) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *DescribeQueryInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "DescribeQueryInput"} - if s.EventDataStore == nil { - invalidParams.Add(request.NewErrParamRequired("EventDataStore")) - } - if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { - invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) - } - if s.QueryId == nil { - invalidParams.Add(request.NewErrParamRequired("QueryId")) - } - if s.QueryId != nil && len(*s.QueryId) < 36 { - invalidParams.Add(request.NewErrParamMinLen("QueryId", 36)) - } - - if invalidParams.Len() > 0 { - return invalidParams +func newErrorEventDataStoreAlreadyExistsException(v protocol.ResponseMetadata) error { + return &EventDataStoreAlreadyExistsException{ + RespMetadata: v, } - return nil } -// SetEventDataStore sets the EventDataStore field's value. -func (s *DescribeQueryInput) SetEventDataStore(v string) *DescribeQueryInput { - s.EventDataStore = &v - return s +// Code returns the exception type name. +func (s *EventDataStoreAlreadyExistsException) Code() string { + return "EventDataStoreAlreadyExistsException" } -// SetQueryId sets the QueryId field's value. -func (s *DescribeQueryInput) SetQueryId(v string) *DescribeQueryInput { - s.QueryId = &v - return s +// Message returns the exception's message. +func (s *EventDataStoreAlreadyExistsException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" } -type DescribeQueryOutput struct { - _ struct{} `type:"structure"` +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *EventDataStoreAlreadyExistsException) OrigErr() error { + return nil +} - // The error message returned if a query failed. - ErrorMessage *string `min:"4" type:"string"` +func (s *EventDataStoreAlreadyExistsException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} - // The ID of the query. - QueryId *string `min:"36" type:"string"` +// Status code returns the HTTP status code for the request's response error. +func (s *EventDataStoreAlreadyExistsException) StatusCode() int { + return s.RespMetadata.StatusCode +} - // Metadata about a query, including the number of events that were matched, - // the total number of events scanned, the query run time in milliseconds, and - // the query's creation time. - QueryStatistics *QueryStatisticsForDescribeQuery `type:"structure"` +// RequestID returns the service's response RequestID for request. +func (s *EventDataStoreAlreadyExistsException) RequestID() string { + return s.RespMetadata.RequestID +} - // The status of a query. Values for QueryStatus include QUEUED, RUNNING, FINISHED, - // FAILED, TIMED_OUT, or CANCELLED - QueryStatus *string `type:"string" enum:"QueryStatus"` +// This exception is thrown when you try to update or delete an event data store +// that currently has an import in progress. +type EventDataStoreHasOngoingImportException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // The SQL code of a query. - QueryString *string `min:"1" type:"string"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -6238,7 +7495,7 @@ type DescribeQueryOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DescribeQueryOutput) String() string { +func (s EventDataStoreHasOngoingImportException) String() string { return awsutil.Prettify(s) } @@ -6247,72 +7504,54 @@ func (s DescribeQueryOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DescribeQueryOutput) GoString() string { +func (s EventDataStoreHasOngoingImportException) GoString() string { return s.String() } -// SetErrorMessage sets the ErrorMessage field's value. -func (s *DescribeQueryOutput) SetErrorMessage(v string) *DescribeQueryOutput { - s.ErrorMessage = &v - return s +func newErrorEventDataStoreHasOngoingImportException(v protocol.ResponseMetadata) error { + return &EventDataStoreHasOngoingImportException{ + RespMetadata: v, + } } -// SetQueryId sets the QueryId field's value. -func (s *DescribeQueryOutput) SetQueryId(v string) *DescribeQueryOutput { - s.QueryId = &v - return s +// Code returns the exception type name. +func (s *EventDataStoreHasOngoingImportException) Code() string { + return "EventDataStoreHasOngoingImportException" } -// SetQueryStatistics sets the QueryStatistics field's value. -func (s *DescribeQueryOutput) SetQueryStatistics(v *QueryStatisticsForDescribeQuery) *DescribeQueryOutput { - s.QueryStatistics = v - return s +// Message returns the exception's message. +func (s *EventDataStoreHasOngoingImportException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" } -// SetQueryStatus sets the QueryStatus field's value. -func (s *DescribeQueryOutput) SetQueryStatus(v string) *DescribeQueryOutput { - s.QueryStatus = &v - return s +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *EventDataStoreHasOngoingImportException) OrigErr() error { + return nil } -// SetQueryString sets the QueryString field's value. -func (s *DescribeQueryOutput) SetQueryString(v string) *DescribeQueryOutput { - s.QueryString = &v - return s +func (s *EventDataStoreHasOngoingImportException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } -// Returns information about the trail. -type DescribeTrailsInput struct { - _ struct{} `type:"structure"` +// Status code returns the HTTP status code for the request's response error. +func (s *EventDataStoreHasOngoingImportException) StatusCode() int { + return s.RespMetadata.StatusCode +} - // Specifies whether to include shadow trails in the response. A shadow trail - // is the replication in a region of a trail that was created in a different - // region, or in the case of an organization trail, the replication of an organization - // trail in member accounts. If you do not include shadow trails, organization - // trails in a member account and region replication trails will not be returned. - // The default is true. - IncludeShadowTrails *bool `locationName:"includeShadowTrails" type:"boolean"` +// RequestID returns the service's response RequestID for request. +func (s *EventDataStoreHasOngoingImportException) RequestID() string { + return s.RespMetadata.RequestID +} - // Specifies a list of trail names, trail ARNs, or both, of the trails to describe. - // The format of a trail ARN is: - // - // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail - // - // If an empty list is specified, information for the trail in the current region - // is returned. - // - // * If an empty list is specified and IncludeShadowTrails is false, then - // information for all trails in the current region is returned. - // - // * If an empty list is specified and IncludeShadowTrails is null or true, - // then information for all trails in the current region and any associated - // shadow trails in other regions is returned. - // - // If one or more trail names are specified, information is returned only if - // the names match the names of trails belonging only to the current region. - // To return information about a trail in another region, you must specify its - // trail ARN. - TrailNameList []*string `locationName:"trailNameList" type:"list"` +// Your account has used the maximum number of event data stores. +type EventDataStoreMaxLimitExceededException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -6320,7 +7559,7 @@ type DescribeTrailsInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DescribeTrailsInput) String() string { +func (s EventDataStoreMaxLimitExceededException) String() string { return awsutil.Prettify(s) } @@ -6329,73 +7568,54 @@ func (s DescribeTrailsInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s DescribeTrailsInput) GoString() string { +func (s EventDataStoreMaxLimitExceededException) GoString() string { return s.String() } -// SetIncludeShadowTrails sets the IncludeShadowTrails field's value. -func (s *DescribeTrailsInput) SetIncludeShadowTrails(v bool) *DescribeTrailsInput { - s.IncludeShadowTrails = &v - return s +func newErrorEventDataStoreMaxLimitExceededException(v protocol.ResponseMetadata) error { + return &EventDataStoreMaxLimitExceededException{ + RespMetadata: v, + } } -// SetTrailNameList sets the TrailNameList field's value. -func (s *DescribeTrailsInput) SetTrailNameList(v []*string) *DescribeTrailsInput { - s.TrailNameList = v - return s +// Code returns the exception type name. +func (s *EventDataStoreMaxLimitExceededException) Code() string { + return "EventDataStoreMaxLimitExceededException" } -// Returns the objects or data listed below if successful. Otherwise, returns -// an error. -type DescribeTrailsOutput struct { - _ struct{} `type:"structure"` - - // The list of trail objects. Trail objects with string values are only returned - // if values for the objects exist in a trail's configuration. For example, - // SNSTopicName and SNSTopicARN are only returned in results if a trail is configured - // to send SNS notifications. Similarly, KMSKeyId only appears in results if - // a trail's log files are encrypted with KMS customer managed keys. - TrailList []*Trail `locationName:"trailList" type:"list"` +// Message returns the exception's message. +func (s *EventDataStoreMaxLimitExceededException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DescribeTrailsOutput) String() string { - return awsutil.Prettify(s) +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *EventDataStoreMaxLimitExceededException) OrigErr() error { + return nil } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s DescribeTrailsOutput) GoString() string { - return s.String() +func (s *EventDataStoreMaxLimitExceededException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } -// SetTrailList sets the TrailList field's value. -func (s *DescribeTrailsOutput) SetTrailList(v []*Trail) *DescribeTrailsOutput { - s.TrailList = v - return s +// Status code returns the HTTP status code for the request's response error. +func (s *EventDataStoreMaxLimitExceededException) StatusCode() int { + return s.RespMetadata.StatusCode } -// Contains information about the service where CloudTrail delivers events. -type Destination struct { - _ struct{} `type:"structure"` +// RequestID returns the service's response RequestID for request. +func (s *EventDataStoreMaxLimitExceededException) RequestID() string { + return s.RespMetadata.RequestID +} - // The location of the service. For service-linked channels, this is the name - // of the Amazon Web Services service. - // - // Location is a required field - Location *string `min:"3" type:"string" required:"true"` +// The specified event data store was not found. +type EventDataStoreNotFoundException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // The type of service. For service-linked channels, the value is AWS_SERVICE. - // - // Type is a required field - Type *string `type:"string" required:"true" enum:"DestinationType"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -6403,7 +7623,7 @@ type Destination struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s Destination) String() string { +func (s EventDataStoreNotFoundException) String() string { return awsutil.Prettify(s) } @@ -6412,56 +7632,55 @@ func (s Destination) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s Destination) GoString() string { +func (s EventDataStoreNotFoundException) GoString() string { return s.String() } -// SetLocation sets the Location field's value. -func (s *Destination) SetLocation(v string) *Destination { - s.Location = &v - return s +func newErrorEventDataStoreNotFoundException(v protocol.ResponseMetadata) error { + return &EventDataStoreNotFoundException{ + RespMetadata: v, + } } -// SetType sets the Type field's value. -func (s *Destination) SetType(v string) *Destination { - s.Type = &v - return s +// Code returns the exception type name. +func (s *EventDataStoreNotFoundException) Code() string { + return "EventDataStoreNotFoundException" } -// Contains information about an event that was returned by a lookup request. -// The result includes a representation of a CloudTrail event. -type Event struct { - _ struct{} `type:"structure"` - - // The Amazon Web Services access key ID that was used to sign the request. - // If the request was made with temporary security credentials, this is the - // access key ID of the temporary credentials. - AccessKeyId *string `type:"string"` - - // A JSON string that contains a representation of the event returned. - CloudTrailEvent *string `type:"string"` - - // The CloudTrail ID of the event returned. - EventId *string `type:"string"` +// Message returns the exception's message. +func (s *EventDataStoreNotFoundException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} - // The name of the event returned. - EventName *string `type:"string"` +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *EventDataStoreNotFoundException) OrigErr() error { + return nil +} - // The Amazon Web Services service to which the request was made. - EventSource *string `type:"string"` +func (s *EventDataStoreNotFoundException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} - // The date and time of the event returned. - EventTime *time.Time `type:"timestamp"` +// Status code returns the HTTP status code for the request's response error. +func (s *EventDataStoreNotFoundException) StatusCode() int { + return s.RespMetadata.StatusCode +} - // Information about whether the event is a write event or a read event. - ReadOnly *string `type:"string"` +// RequestID returns the service's response RequestID for request. +func (s *EventDataStoreNotFoundException) RequestID() string { + return s.RespMetadata.RequestID +} - // A list of resources referenced by the event returned. - Resources []*Resource `type:"list"` +// The event data store cannot be deleted because termination protection is +// enabled for it. +type EventDataStoreTerminationProtectedException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // A user name or role name of the requester that called the API in the event - // returned. - Username *string `type:"string"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -6469,7 +7688,7 @@ type Event struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s Event) String() string { +func (s EventDataStoreTerminationProtectedException) String() string { return awsutil.Prettify(s) } @@ -6478,124 +7697,153 @@ func (s Event) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s Event) GoString() string { +func (s EventDataStoreTerminationProtectedException) GoString() string { return s.String() } -// SetAccessKeyId sets the AccessKeyId field's value. -func (s *Event) SetAccessKeyId(v string) *Event { - s.AccessKeyId = &v - return s +func newErrorEventDataStoreTerminationProtectedException(v protocol.ResponseMetadata) error { + return &EventDataStoreTerminationProtectedException{ + RespMetadata: v, + } } -// SetCloudTrailEvent sets the CloudTrailEvent field's value. -func (s *Event) SetCloudTrailEvent(v string) *Event { - s.CloudTrailEvent = &v - return s +// Code returns the exception type name. +func (s *EventDataStoreTerminationProtectedException) Code() string { + return "EventDataStoreTerminationProtectedException" } -// SetEventId sets the EventId field's value. -func (s *Event) SetEventId(v string) *Event { - s.EventId = &v - return s +// Message returns the exception's message. +func (s *EventDataStoreTerminationProtectedException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" } -// SetEventName sets the EventName field's value. -func (s *Event) SetEventName(v string) *Event { - s.EventName = &v - return s +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *EventDataStoreTerminationProtectedException) OrigErr() error { + return nil } -// SetEventSource sets the EventSource field's value. -func (s *Event) SetEventSource(v string) *Event { - s.EventSource = &v - return s +func (s *EventDataStoreTerminationProtectedException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } -// SetEventTime sets the EventTime field's value. -func (s *Event) SetEventTime(v time.Time) *Event { - s.EventTime = &v - return s +// Status code returns the HTTP status code for the request's response error. +func (s *EventDataStoreTerminationProtectedException) StatusCode() int { + return s.RespMetadata.StatusCode } -// SetReadOnly sets the ReadOnly field's value. -func (s *Event) SetReadOnly(v string) *Event { - s.ReadOnly = &v - return s +// RequestID returns the service's response RequestID for request. +func (s *EventDataStoreTerminationProtectedException) RequestID() string { + return s.RespMetadata.RequestID } -// SetResources sets the Resources field's value. -func (s *Event) SetResources(v []*Resource) *Event { - s.Resources = v - return s -} +// Use event selectors to further specify the management and data event settings +// for your trail. By default, trails created without specific event selectors +// will be configured to log all read and write management events, and no data +// events. When an event occurs in your account, CloudTrail evaluates the event +// selector for all trails. For each trail, if the event matches any event selector, +// the trail processes and logs the event. If the event doesn't match any event +// selector, the trail doesn't log the event. +// +// You can configure up to five event selectors for a trail. +// +// You cannot apply both event selectors and advanced event selectors to a trail. +type EventSelector struct { + _ struct{} `type:"structure"` -// SetUsername sets the Username field's value. -func (s *Event) SetUsername(v string) *Event { - s.Username = &v - return s -} + // CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, + // and Amazon DynamoDB tables with basic event selectors. You can specify up + // to 250 resources for an individual event selector, but the total number of + // data resources cannot exceed 250 across all event selectors in a trail. This + // limit does not apply if you configure resource logging for all data events. + // + // For more information, see Data Events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) + // and Limits in CloudTrail (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) + // in the CloudTrail User Guide. + DataResources []*DataResource `type:"list"` -// A storage lake of event data against which you can run complex SQL-based -// queries. An event data store can include events that you have logged on your -// account from the last 90 to 2557 days (about three months to up to seven -// years). To select events for an event data store, use advanced event selectors -// (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced). -type EventDataStore struct { - _ struct{} `type:"structure"` + // An optional list of service event sources from which you do not want management + // events to be logged on your trail. In this release, the list can be empty + // (disables the filter), or it can filter out Key Management Service or Amazon + // RDS Data API events by containing kms.amazonaws.com or rdsdata.amazonaws.com. + // By default, ExcludeManagementEventSources is empty, and KMS and Amazon RDS + // Data API events are logged to your trail. You can exclude management event + // sources only in regions that support the event source. + ExcludeManagementEventSources []*string `type:"list"` - // This field is being deprecated. The advanced event selectors that were used - // to select events for the data store. + // Specify if you want your event selector to include management events for + // your trail. // - // Deprecated: AdvancedEventSelectors is no longer returned by ListEventDataStores - AdvancedEventSelectors []*AdvancedEventSelector `deprecated:"true" type:"list"` + // For more information, see Management Events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html) + // in the CloudTrail User Guide. + // + // By default, the value is true. + // + // The first copy of management events is free. You are charged for additional + // copies of management events that you are logging on any subsequent trail + // in the same region. For more information about CloudTrail pricing, see CloudTrail + // Pricing (http://aws.amazon.com/cloudtrail/pricing/). + IncludeManagementEvents *bool `type:"boolean"` - // This field is being deprecated. The timestamp of the event data store's creation. + // Specify if you want your trail to log read-only events, write-only events, + // or all. For example, the EC2 GetConsoleOutput is a read-only API operation + // and RunInstances is a write-only API operation. // - // Deprecated: CreatedTimestamp is no longer returned by ListEventDataStores - CreatedTimestamp *time.Time `deprecated:"true" type:"timestamp"` + // By default, the value is All. + ReadWriteType *string `type:"string" enum:"ReadWriteType"` +} - // The ARN of the event data store. - EventDataStoreArn *string `min:"3" type:"string"` +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s EventSelector) String() string { + return awsutil.Prettify(s) +} - // This field is being deprecated. Indicates whether the event data store includes - // events from all regions, or only from the region in which it was created. - // - // Deprecated: MultiRegionEnabled is no longer returned by ListEventDataStores - MultiRegionEnabled *bool `deprecated:"true" type:"boolean"` +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s EventSelector) GoString() string { + return s.String() +} - // The name of the event data store. - Name *string `min:"3" type:"string"` +// SetDataResources sets the DataResources field's value. +func (s *EventSelector) SetDataResources(v []*DataResource) *EventSelector { + s.DataResources = v + return s +} - // This field is being deprecated. Indicates that an event data store is collecting - // logged events for an organization. - // - // Deprecated: OrganizationEnabled is no longer returned by ListEventDataStores - OrganizationEnabled *bool `deprecated:"true" type:"boolean"` +// SetExcludeManagementEventSources sets the ExcludeManagementEventSources field's value. +func (s *EventSelector) SetExcludeManagementEventSources(v []*string) *EventSelector { + s.ExcludeManagementEventSources = v + return s +} - // This field is being deprecated. The retention period, in days. - // - // Deprecated: RetentionPeriod is no longer returned by ListEventDataStores - RetentionPeriod *int64 `min:"7" deprecated:"true" type:"integer"` +// SetIncludeManagementEvents sets the IncludeManagementEvents field's value. +func (s *EventSelector) SetIncludeManagementEvents(v bool) *EventSelector { + s.IncludeManagementEvents = &v + return s +} - // This field is being deprecated. The status of an event data store. Values - // are ENABLED and PENDING_DELETION. - // - // Deprecated: Status is no longer returned by ListEventDataStores - Status *string `deprecated:"true" type:"string" enum:"EventDataStoreStatus"` +// SetReadWriteType sets the ReadWriteType field's value. +func (s *EventSelector) SetReadWriteType(v string) *EventSelector { + s.ReadWriteType = &v + return s +} - // This field is being deprecated. Indicates whether the event data store is - // protected from termination. - // - // Deprecated: TerminationProtectionEnabled is no longer returned by ListEventDataStores - TerminationProtectionEnabled *bool `deprecated:"true" type:"boolean"` +type GetChannelInput struct { + _ struct{} `type:"structure"` - // This field is being deprecated. The timestamp showing when an event data - // store was updated, if applicable. UpdatedTimestamp is always either the same - // or newer than the time shown in CreatedTimestamp. + // The Amazon Resource Name (ARN) of the CloudTrail service-linked channel. // - // Deprecated: UpdatedTimestamp is no longer returned by ListEventDataStores - UpdatedTimestamp *time.Time `deprecated:"true" type:"timestamp"` + // Channel is a required field + Channel *string `min:"3" type:"string" required:"true"` } // String returns the string representation. @@ -6603,7 +7851,7 @@ type EventDataStore struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStore) String() string { +func (s GetChannelInput) String() string { return awsutil.Prettify(s) } @@ -6612,77 +7860,114 @@ func (s EventDataStore) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStore) GoString() string { +func (s GetChannelInput) GoString() string { return s.String() } -// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. -func (s *EventDataStore) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *EventDataStore { - s.AdvancedEventSelectors = v - return s +// Validate inspects the fields of the type to determine if they are valid. +func (s *GetChannelInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetChannelInput"} + if s.Channel == nil { + invalidParams.Add(request.NewErrParamRequired("Channel")) + } + if s.Channel != nil && len(*s.Channel) < 3 { + invalidParams.Add(request.NewErrParamMinLen("Channel", 3)) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil } -// SetCreatedTimestamp sets the CreatedTimestamp field's value. -func (s *EventDataStore) SetCreatedTimestamp(v time.Time) *EventDataStore { - s.CreatedTimestamp = &v +// SetChannel sets the Channel field's value. +func (s *GetChannelInput) SetChannel(v string) *GetChannelInput { + s.Channel = &v return s } -// SetEventDataStoreArn sets the EventDataStoreArn field's value. -func (s *EventDataStore) SetEventDataStoreArn(v string) *EventDataStore { - s.EventDataStoreArn = &v - return s +type GetChannelOutput struct { + _ struct{} `type:"structure"` + + // The ARN of the CloudTrail service-linked channel. + ChannelArn *string `min:"3" type:"string"` + + // The Amazon Web Services service that created the CloudTrail service-linked + // channel. + Destinations []*Destination `min:"1" type:"list"` + + // The name of the CloudTrail service-linked channel. For service-linked channels, + // the value is aws-service-channel/service-name/custom-suffix where service-name + // represents the name of the Amazon Web Services service that created the channel + // and custom-suffix represents the suffix generated by the Amazon Web Services + // service. + Name *string `min:"3" type:"string"` + + // The trail or event data store for the CloudTrail service-linked channel. + Source *string `min:"1" type:"string"` + + // Provides information about the advanced event selectors configured for the + // service-linked channel, and whether the service-linked channel applies to + // all regions or one region. + SourceConfig *SourceConfig `type:"structure"` } -// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. -func (s *EventDataStore) SetMultiRegionEnabled(v bool) *EventDataStore { - s.MultiRegionEnabled = &v - return s +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s GetChannelOutput) String() string { + return awsutil.Prettify(s) } -// SetName sets the Name field's value. -func (s *EventDataStore) SetName(v string) *EventDataStore { - s.Name = &v - return s +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s GetChannelOutput) GoString() string { + return s.String() } -// SetOrganizationEnabled sets the OrganizationEnabled field's value. -func (s *EventDataStore) SetOrganizationEnabled(v bool) *EventDataStore { - s.OrganizationEnabled = &v +// SetChannelArn sets the ChannelArn field's value. +func (s *GetChannelOutput) SetChannelArn(v string) *GetChannelOutput { + s.ChannelArn = &v return s } -// SetRetentionPeriod sets the RetentionPeriod field's value. -func (s *EventDataStore) SetRetentionPeriod(v int64) *EventDataStore { - s.RetentionPeriod = &v +// SetDestinations sets the Destinations field's value. +func (s *GetChannelOutput) SetDestinations(v []*Destination) *GetChannelOutput { + s.Destinations = v return s } -// SetStatus sets the Status field's value. -func (s *EventDataStore) SetStatus(v string) *EventDataStore { - s.Status = &v +// SetName sets the Name field's value. +func (s *GetChannelOutput) SetName(v string) *GetChannelOutput { + s.Name = &v return s } -// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. -func (s *EventDataStore) SetTerminationProtectionEnabled(v bool) *EventDataStore { - s.TerminationProtectionEnabled = &v +// SetSource sets the Source field's value. +func (s *GetChannelOutput) SetSource(v string) *GetChannelOutput { + s.Source = &v return s } -// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. -func (s *EventDataStore) SetUpdatedTimestamp(v time.Time) *EventDataStore { - s.UpdatedTimestamp = &v +// SetSourceConfig sets the SourceConfig field's value. +func (s *GetChannelOutput) SetSourceConfig(v *SourceConfig) *GetChannelOutput { + s.SourceConfig = v return s } -// The specified event data store ARN is not valid or does not map to an event -// data store in your account. -type EventDataStoreARNInvalidException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` +type GetEventDataStoreInput struct { + _ struct{} `type:"structure"` - Message_ *string `locationName:"message" type:"string"` + // The ARN (or ID suffix of the ARN) of the event data store about which you + // want information. + // + // EventDataStore is a required field + EventDataStore *string `min:"3" type:"string" required:"true"` } // String returns the string representation. @@ -6690,7 +7975,7 @@ type EventDataStoreARNInvalidException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreARNInvalidException) String() string { +func (s GetEventDataStoreInput) String() string { return awsutil.Prettify(s) } @@ -6699,54 +7984,67 @@ func (s EventDataStoreARNInvalidException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreARNInvalidException) GoString() string { +func (s GetEventDataStoreInput) GoString() string { return s.String() } -func newErrorEventDataStoreARNInvalidException(v protocol.ResponseMetadata) error { - return &EventDataStoreARNInvalidException{ - RespMetadata: v, +// Validate inspects the fields of the type to determine if they are valid. +func (s *GetEventDataStoreInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetEventDataStoreInput"} + if s.EventDataStore == nil { + invalidParams.Add(request.NewErrParamRequired("EventDataStore")) } -} - -// Code returns the exception type name. -func (s *EventDataStoreARNInvalidException) Code() string { - return "EventDataStoreARNInvalidException" -} - -// Message returns the exception's message. -func (s *EventDataStoreARNInvalidException) Message() string { - if s.Message_ != nil { - return *s.Message_ + if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { + invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) } - return "" -} -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *EventDataStoreARNInvalidException) OrigErr() error { + if invalidParams.Len() > 0 { + return invalidParams + } return nil } -func (s *EventDataStoreARNInvalidException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetEventDataStore sets the EventDataStore field's value. +func (s *GetEventDataStoreInput) SetEventDataStore(v string) *GetEventDataStoreInput { + s.EventDataStore = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *EventDataStoreARNInvalidException) StatusCode() int { - return s.RespMetadata.StatusCode -} +type GetEventDataStoreOutput struct { + _ struct{} `type:"structure"` -// RequestID returns the service's response RequestID for request. -func (s *EventDataStoreARNInvalidException) RequestID() string { - return s.RespMetadata.RequestID -} + // The advanced event selectors used to select events for the data store. + AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` -// An event data store with that name already exists. -type EventDataStoreAlreadyExistsException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + // The timestamp of the event data store's creation. + CreatedTimestamp *time.Time `type:"timestamp"` - Message_ *string `locationName:"message" type:"string"` + // The event data store Amazon Resource Number (ARN). + EventDataStoreArn *string `min:"3" type:"string"` + + // Indicates whether the event data store includes events from all regions, + // or only from the region in which it was created. + MultiRegionEnabled *bool `type:"boolean"` + + // The name of the event data store. + Name *string `min:"3" type:"string"` + + // Indicates whether an event data store is collecting logged events for an + // organization in Organizations. + OrganizationEnabled *bool `type:"boolean"` + + // The retention period of the event data store, in days. + RetentionPeriod *int64 `min:"7" type:"integer"` + + // The status of an event data store. Values can be ENABLED and PENDING_DELETION. + Status *string `type:"string" enum:"EventDataStoreStatus"` + + // Indicates that termination protection is enabled. + TerminationProtectionEnabled *bool `type:"boolean"` + + // Shows the time that an event data store was updated, if applicable. UpdatedTimestamp + // is always either the same or newer than the time shown in CreatedTimestamp. + UpdatedTimestamp *time.Time `type:"timestamp"` } // String returns the string representation. @@ -6754,7 +8052,7 @@ type EventDataStoreAlreadyExistsException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreAlreadyExistsException) String() string { +func (s GetEventDataStoreOutput) String() string { return awsutil.Prettify(s) } @@ -6763,54 +8061,94 @@ func (s EventDataStoreAlreadyExistsException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreAlreadyExistsException) GoString() string { +func (s GetEventDataStoreOutput) GoString() string { return s.String() } -func newErrorEventDataStoreAlreadyExistsException(v protocol.ResponseMetadata) error { - return &EventDataStoreAlreadyExistsException{ - RespMetadata: v, - } +// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. +func (s *GetEventDataStoreOutput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *GetEventDataStoreOutput { + s.AdvancedEventSelectors = v + return s +} + +// SetCreatedTimestamp sets the CreatedTimestamp field's value. +func (s *GetEventDataStoreOutput) SetCreatedTimestamp(v time.Time) *GetEventDataStoreOutput { + s.CreatedTimestamp = &v + return s +} + +// SetEventDataStoreArn sets the EventDataStoreArn field's value. +func (s *GetEventDataStoreOutput) SetEventDataStoreArn(v string) *GetEventDataStoreOutput { + s.EventDataStoreArn = &v + return s +} + +// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. +func (s *GetEventDataStoreOutput) SetMultiRegionEnabled(v bool) *GetEventDataStoreOutput { + s.MultiRegionEnabled = &v + return s } -// Code returns the exception type name. -func (s *EventDataStoreAlreadyExistsException) Code() string { - return "EventDataStoreAlreadyExistsException" +// SetName sets the Name field's value. +func (s *GetEventDataStoreOutput) SetName(v string) *GetEventDataStoreOutput { + s.Name = &v + return s } -// Message returns the exception's message. -func (s *EventDataStoreAlreadyExistsException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" +// SetOrganizationEnabled sets the OrganizationEnabled field's value. +func (s *GetEventDataStoreOutput) SetOrganizationEnabled(v bool) *GetEventDataStoreOutput { + s.OrganizationEnabled = &v + return s } -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *EventDataStoreAlreadyExistsException) OrigErr() error { - return nil +// SetRetentionPeriod sets the RetentionPeriod field's value. +func (s *GetEventDataStoreOutput) SetRetentionPeriod(v int64) *GetEventDataStoreOutput { + s.RetentionPeriod = &v + return s } -func (s *EventDataStoreAlreadyExistsException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetStatus sets the Status field's value. +func (s *GetEventDataStoreOutput) SetStatus(v string) *GetEventDataStoreOutput { + s.Status = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *EventDataStoreAlreadyExistsException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. +func (s *GetEventDataStoreOutput) SetTerminationProtectionEnabled(v bool) *GetEventDataStoreOutput { + s.TerminationProtectionEnabled = &v + return s } -// RequestID returns the service's response RequestID for request. -func (s *EventDataStoreAlreadyExistsException) RequestID() string { - return s.RespMetadata.RequestID +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *GetEventDataStoreOutput) SetUpdatedTimestamp(v time.Time) *GetEventDataStoreOutput { + s.UpdatedTimestamp = &v + return s } -// Your account has used the maximum number of event data stores. -type EventDataStoreMaxLimitExceededException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` +type GetEventSelectorsInput struct { + _ struct{} `type:"structure"` - Message_ *string `locationName:"message" type:"string"` + // Specifies the name of the trail or trail ARN. If you specify a trail name, + // the string must meet the following requirements: + // + // * Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores + // (_), or dashes (-) + // + // * Start with a letter or number, and end with a letter or number + // + // * Be between 3 and 128 characters + // + // * Have no adjacent periods, underscores or dashes. Names like my-_namespace + // and my--namespace are not valid. + // + // * Not be in IP address format (for example, 192.168.5.4) + // + // If you specify a trail ARN, it must be in the format: + // + // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail + // + // TrailName is a required field + TrailName *string `type:"string" required:"true"` } // String returns the string representation. @@ -6818,7 +8156,7 @@ type EventDataStoreMaxLimitExceededException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreMaxLimitExceededException) String() string { +func (s GetEventSelectorsInput) String() string { return awsutil.Prettify(s) } @@ -6827,54 +8165,40 @@ func (s EventDataStoreMaxLimitExceededException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreMaxLimitExceededException) GoString() string { +func (s GetEventSelectorsInput) GoString() string { return s.String() } -func newErrorEventDataStoreMaxLimitExceededException(v protocol.ResponseMetadata) error { - return &EventDataStoreMaxLimitExceededException{ - RespMetadata: v, +// Validate inspects the fields of the type to determine if they are valid. +func (s *GetEventSelectorsInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetEventSelectorsInput"} + if s.TrailName == nil { + invalidParams.Add(request.NewErrParamRequired("TrailName")) } -} -// Code returns the exception type name. -func (s *EventDataStoreMaxLimitExceededException) Code() string { - return "EventDataStoreMaxLimitExceededException" -} - -// Message returns the exception's message. -func (s *EventDataStoreMaxLimitExceededException) Message() string { - if s.Message_ != nil { - return *s.Message_ + if invalidParams.Len() > 0 { + return invalidParams } - return "" -} - -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *EventDataStoreMaxLimitExceededException) OrigErr() error { return nil } -func (s *EventDataStoreMaxLimitExceededException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetTrailName sets the TrailName field's value. +func (s *GetEventSelectorsInput) SetTrailName(v string) *GetEventSelectorsInput { + s.TrailName = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *EventDataStoreMaxLimitExceededException) StatusCode() int { - return s.RespMetadata.StatusCode -} +type GetEventSelectorsOutput struct { + _ struct{} `type:"structure"` -// RequestID returns the service's response RequestID for request. -func (s *EventDataStoreMaxLimitExceededException) RequestID() string { - return s.RespMetadata.RequestID -} + // The advanced event selectors that are configured for the trail. + AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` -// The specified event data store was not found. -type EventDataStoreNotFoundException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + // The event selectors that are configured for the trail. + EventSelectors []*EventSelector `type:"list"` - Message_ *string `locationName:"message" type:"string"` + // The specified trail ARN that has the event selectors. + TrailARN *string `type:"string"` } // String returns the string representation. @@ -6882,7 +8206,7 @@ type EventDataStoreNotFoundException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreNotFoundException) String() string { +func (s GetEventSelectorsOutput) String() string { return awsutil.Prettify(s) } @@ -6891,55 +8215,35 @@ func (s EventDataStoreNotFoundException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreNotFoundException) GoString() string { +func (s GetEventSelectorsOutput) GoString() string { return s.String() } -func newErrorEventDataStoreNotFoundException(v protocol.ResponseMetadata) error { - return &EventDataStoreNotFoundException{ - RespMetadata: v, - } -} - -// Code returns the exception type name. -func (s *EventDataStoreNotFoundException) Code() string { - return "EventDataStoreNotFoundException" -} - -// Message returns the exception's message. -func (s *EventDataStoreNotFoundException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" -} - -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *EventDataStoreNotFoundException) OrigErr() error { - return nil -} - -func (s *EventDataStoreNotFoundException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. +func (s *GetEventSelectorsOutput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *GetEventSelectorsOutput { + s.AdvancedEventSelectors = v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *EventDataStoreNotFoundException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetEventSelectors sets the EventSelectors field's value. +func (s *GetEventSelectorsOutput) SetEventSelectors(v []*EventSelector) *GetEventSelectorsOutput { + s.EventSelectors = v + return s } -// RequestID returns the service's response RequestID for request. -func (s *EventDataStoreNotFoundException) RequestID() string { - return s.RespMetadata.RequestID +// SetTrailARN sets the TrailARN field's value. +func (s *GetEventSelectorsOutput) SetTrailARN(v string) *GetEventSelectorsOutput { + s.TrailARN = &v + return s } -// The event data store cannot be deleted because termination protection is -// enabled for it. -type EventDataStoreTerminationProtectedException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` +type GetImportInput struct { + _ struct{} `type:"structure"` - Message_ *string `locationName:"message" type:"string"` + // The ID for the import. + // + // ImportId is a required field + ImportId *string `min:"36" type:"string" required:"true"` } // String returns the string representation. @@ -6947,7 +8251,7 @@ type EventDataStoreTerminationProtectedException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreTerminationProtectedException) String() string { +func (s GetImportInput) String() string { return awsutil.Prettify(s) } @@ -6956,102 +8260,63 @@ func (s EventDataStoreTerminationProtectedException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventDataStoreTerminationProtectedException) GoString() string { +func (s GetImportInput) GoString() string { return s.String() } -func newErrorEventDataStoreTerminationProtectedException(v protocol.ResponseMetadata) error { - return &EventDataStoreTerminationProtectedException{ - RespMetadata: v, +// Validate inspects the fields of the type to determine if they are valid. +func (s *GetImportInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetImportInput"} + if s.ImportId == nil { + invalidParams.Add(request.NewErrParamRequired("ImportId")) } -} - -// Code returns the exception type name. -func (s *EventDataStoreTerminationProtectedException) Code() string { - return "EventDataStoreTerminationProtectedException" -} - -// Message returns the exception's message. -func (s *EventDataStoreTerminationProtectedException) Message() string { - if s.Message_ != nil { - return *s.Message_ + if s.ImportId != nil && len(*s.ImportId) < 36 { + invalidParams.Add(request.NewErrParamMinLen("ImportId", 36)) } - return "" -} -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *EventDataStoreTerminationProtectedException) OrigErr() error { + if invalidParams.Len() > 0 { + return invalidParams + } return nil } -func (s *EventDataStoreTerminationProtectedException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetImportId sets the ImportId field's value. +func (s *GetImportInput) SetImportId(v string) *GetImportInput { + s.ImportId = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *EventDataStoreTerminationProtectedException) StatusCode() int { - return s.RespMetadata.StatusCode -} +type GetImportOutput struct { + _ struct{} `type:"structure"` -// RequestID returns the service's response RequestID for request. -func (s *EventDataStoreTerminationProtectedException) RequestID() string { - return s.RespMetadata.RequestID -} + // The timestamp of the import's creation. + CreatedTimestamp *time.Time `type:"timestamp"` -// Use event selectors to further specify the management and data event settings -// for your trail. By default, trails created without specific event selectors -// will be configured to log all read and write management events, and no data -// events. When an event occurs in your account, CloudTrail evaluates the event -// selector for all trails. For each trail, if the event matches any event selector, -// the trail processes and logs the event. If the event doesn't match any event -// selector, the trail doesn't log the event. -// -// You can configure up to five event selectors for a trail. -// -// You cannot apply both event selectors and advanced event selectors to a trail. -type EventSelector struct { - _ struct{} `type:"structure"` + // The destination event data store. + Destinations []*string `min:"1" type:"list"` - // CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, - // and Amazon DynamoDB tables with basic event selectors. You can specify up - // to 250 resources for an individual event selector, but the total number of - // data resources cannot exceed 250 across all event selectors in a trail. This - // limit does not apply if you configure resource logging for all data events. - // - // For more information, see Data Events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-and-data-events-with-cloudtrail.html#logging-data-events) - // and Limits in CloudTrail (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) - // in the CloudTrail User Guide. - DataResources []*DataResource `type:"list"` + // Used with StartEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + EndEventTime *time.Time `type:"timestamp"` - // An optional list of service event sources from which you do not want management - // events to be logged on your trail. In this release, the list can be empty - // (disables the filter), or it can filter out Key Management Service or Amazon - // RDS Data API events by containing kms.amazonaws.com or rdsdata.amazonaws.com. - // By default, ExcludeManagementEventSources is empty, and KMS and Amazon RDS - // Data API events are logged to your trail. You can exclude management event - // sources only in regions that support the event source. - ExcludeManagementEventSources []*string `type:"list"` + // The ID of the import. + ImportId *string `min:"36" type:"string"` + + // The source S3 bucket. + ImportSource *ImportSource `type:"structure"` + + // Provides statistics for the import. + ImportStatistics *ImportStatistics `type:"structure"` - // Specify if you want your event selector to include management events for - // your trail. - // - // For more information, see Management Events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-and-data-events-with-cloudtrail.html#logging-management-events) - // in the CloudTrail User Guide. - // - // By default, the value is true. - // - // The first copy of management events is free. You are charged for additional - // copies of management events that you are logging on any subsequent trail - // in the same region. For more information about CloudTrail pricing, see CloudTrail - // Pricing (http://aws.amazon.com/cloudtrail/pricing/). - IncludeManagementEvents *bool `type:"boolean"` + // The status of the import. + ImportStatus *string `type:"string" enum:"ImportStatus"` - // Specify if you want your trail to log read-only events, write-only events, - // or all. For example, the EC2 GetConsoleOutput is a read-only API operation - // and RunInstances is a write-only API operation. - // - // By default, the value is All. - ReadWriteType *string `type:"string" enum:"ReadWriteType"` + // Used with EndEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + StartEventTime *time.Time `type:"timestamp"` + + // The timestamp of when the import was updated. + UpdatedTimestamp *time.Time `type:"timestamp"` } // String returns the string representation. @@ -7059,7 +8324,7 @@ type EventSelector struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventSelector) String() string { +func (s GetImportOutput) String() string { return awsutil.Prettify(s) } @@ -7068,41 +8333,88 @@ func (s EventSelector) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s EventSelector) GoString() string { +func (s GetImportOutput) GoString() string { return s.String() } -// SetDataResources sets the DataResources field's value. -func (s *EventSelector) SetDataResources(v []*DataResource) *EventSelector { - s.DataResources = v +// SetCreatedTimestamp sets the CreatedTimestamp field's value. +func (s *GetImportOutput) SetCreatedTimestamp(v time.Time) *GetImportOutput { + s.CreatedTimestamp = &v return s } -// SetExcludeManagementEventSources sets the ExcludeManagementEventSources field's value. -func (s *EventSelector) SetExcludeManagementEventSources(v []*string) *EventSelector { - s.ExcludeManagementEventSources = v +// SetDestinations sets the Destinations field's value. +func (s *GetImportOutput) SetDestinations(v []*string) *GetImportOutput { + s.Destinations = v return s } -// SetIncludeManagementEvents sets the IncludeManagementEvents field's value. -func (s *EventSelector) SetIncludeManagementEvents(v bool) *EventSelector { - s.IncludeManagementEvents = &v +// SetEndEventTime sets the EndEventTime field's value. +func (s *GetImportOutput) SetEndEventTime(v time.Time) *GetImportOutput { + s.EndEventTime = &v return s } -// SetReadWriteType sets the ReadWriteType field's value. -func (s *EventSelector) SetReadWriteType(v string) *EventSelector { - s.ReadWriteType = &v +// SetImportId sets the ImportId field's value. +func (s *GetImportOutput) SetImportId(v string) *GetImportOutput { + s.ImportId = &v return s } -type GetChannelInput struct { +// SetImportSource sets the ImportSource field's value. +func (s *GetImportOutput) SetImportSource(v *ImportSource) *GetImportOutput { + s.ImportSource = v + return s +} + +// SetImportStatistics sets the ImportStatistics field's value. +func (s *GetImportOutput) SetImportStatistics(v *ImportStatistics) *GetImportOutput { + s.ImportStatistics = v + return s +} + +// SetImportStatus sets the ImportStatus field's value. +func (s *GetImportOutput) SetImportStatus(v string) *GetImportOutput { + s.ImportStatus = &v + return s +} + +// SetStartEventTime sets the StartEventTime field's value. +func (s *GetImportOutput) SetStartEventTime(v time.Time) *GetImportOutput { + s.StartEventTime = &v + return s +} + +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *GetImportOutput) SetUpdatedTimestamp(v time.Time) *GetImportOutput { + s.UpdatedTimestamp = &v + return s +} + +type GetInsightSelectorsInput struct { _ struct{} `type:"structure"` - // The Amazon Resource Name (ARN) of the CloudTrail service-linked channel. + // Specifies the name of the trail or trail ARN. If you specify a trail name, + // the string must meet the following requirements: // - // Channel is a required field - Channel *string `min:"3" type:"string" required:"true"` + // * Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores + // (_), or dashes (-) + // + // * Start with a letter or number, and end with a letter or number + // + // * Be between 3 and 128 characters + // + // * Have no adjacent periods, underscores or dashes. Names like my-_namespace + // and my--namespace are not valid. + // + // * Not be in IP address format (for example, 192.168.5.4) + // + // If you specify a trail ARN, it must be in the format: + // + // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail + // + // TrailName is a required field + TrailName *string `type:"string" required:"true"` } // String returns the string representation. @@ -7110,7 +8422,7 @@ type GetChannelInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetChannelInput) String() string { +func (s GetInsightSelectorsInput) String() string { return awsutil.Prettify(s) } @@ -7119,18 +8431,15 @@ func (s GetChannelInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetChannelInput) GoString() string { +func (s GetInsightSelectorsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *GetChannelInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "GetChannelInput"} - if s.Channel == nil { - invalidParams.Add(request.NewErrParamRequired("Channel")) - } - if s.Channel != nil && len(*s.Channel) < 3 { - invalidParams.Add(request.NewErrParamMinLen("Channel", 3)) +func (s *GetInsightSelectorsInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetInsightSelectorsInput"} + if s.TrailName == nil { + invalidParams.Add(request.NewErrParamRequired("TrailName")) } if invalidParams.Len() > 0 { @@ -7139,36 +8448,23 @@ func (s *GetChannelInput) Validate() error { return nil } -// SetChannel sets the Channel field's value. -func (s *GetChannelInput) SetChannel(v string) *GetChannelInput { - s.Channel = &v +// SetTrailName sets the TrailName field's value. +func (s *GetInsightSelectorsInput) SetTrailName(v string) *GetInsightSelectorsInput { + s.TrailName = &v return s } -type GetChannelOutput struct { +type GetInsightSelectorsOutput struct { _ struct{} `type:"structure"` - // The ARN of the CloudTrail service-linked channel. - ChannelArn *string `min:"3" type:"string"` - - // The Amazon Web Services service that created the CloudTrail service-linked - // channel. - Destinations []*Destination `min:"1" type:"list"` - - // The name of the CloudTrail service-linked channel. For service-linked channels, - // the value is aws-service-channel/service-name/custom-suffix where service-name - // represents the name of the Amazon Web Services service that created the channel - // and custom-suffix represents the suffix generated by the Amazon Web Services - // service. - Name *string `min:"3" type:"string"` - - // The trail or event data store for the CloudTrail service-linked channel. - Source *string `min:"1" type:"string"` + // A JSON string that contains the insight types you want to log on a trail. + // In this release, ApiErrorRateInsight and ApiCallRateInsight are supported + // as insight types. + InsightSelectors []*InsightSelector `type:"list"` - // Provides information about the advanced event selectors configured for the - // service-linked channel, and whether the service-linked channel applies to - // all regions or one region. - SourceConfig *SourceConfig `type:"structure"` + // The Amazon Resource Name (ARN) of a trail for which you want to get Insights + // selectors. + TrailARN *string `type:"string"` } // String returns the string representation. @@ -7176,7 +8472,7 @@ type GetChannelOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetChannelOutput) String() string { +func (s GetInsightSelectorsOutput) String() string { return awsutil.Prettify(s) } @@ -7185,48 +8481,41 @@ func (s GetChannelOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetChannelOutput) GoString() string { +func (s GetInsightSelectorsOutput) GoString() string { return s.String() } -// SetChannelArn sets the ChannelArn field's value. -func (s *GetChannelOutput) SetChannelArn(v string) *GetChannelOutput { - s.ChannelArn = &v - return s -} - -// SetDestinations sets the Destinations field's value. -func (s *GetChannelOutput) SetDestinations(v []*Destination) *GetChannelOutput { - s.Destinations = v - return s -} - -// SetName sets the Name field's value. -func (s *GetChannelOutput) SetName(v string) *GetChannelOutput { - s.Name = &v - return s -} - -// SetSource sets the Source field's value. -func (s *GetChannelOutput) SetSource(v string) *GetChannelOutput { - s.Source = &v +// SetInsightSelectors sets the InsightSelectors field's value. +func (s *GetInsightSelectorsOutput) SetInsightSelectors(v []*InsightSelector) *GetInsightSelectorsOutput { + s.InsightSelectors = v return s } -// SetSourceConfig sets the SourceConfig field's value. -func (s *GetChannelOutput) SetSourceConfig(v *SourceConfig) *GetChannelOutput { - s.SourceConfig = v +// SetTrailARN sets the TrailARN field's value. +func (s *GetInsightSelectorsOutput) SetTrailARN(v string) *GetInsightSelectorsOutput { + s.TrailARN = &v return s } -type GetEventDataStoreInput struct { +type GetQueryResultsInput struct { _ struct{} `type:"structure"` - // The ARN (or ID suffix of the ARN) of the event data store about which you - // want information. + // The ARN (or ID suffix of the ARN) of the event data store against which the + // query was run. // // EventDataStore is a required field EventDataStore *string `min:"3" type:"string" required:"true"` + + // The maximum number of query results to display on a single page. + MaxQueryResults *int64 `min:"1" type:"integer"` + + // A token you can use to get the next page of query results. + NextToken *string `min:"4" type:"string"` + + // The ID of the query for which you want to get results. + // + // QueryId is a required field + QueryId *string `min:"36" type:"string" required:"true"` } // String returns the string representation. @@ -7234,7 +8523,7 @@ type GetEventDataStoreInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventDataStoreInput) String() string { +func (s GetQueryResultsInput) String() string { return awsutil.Prettify(s) } @@ -7243,19 +8532,31 @@ func (s GetEventDataStoreInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventDataStoreInput) GoString() string { +func (s GetQueryResultsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *GetEventDataStoreInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "GetEventDataStoreInput"} +func (s *GetQueryResultsInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetQueryResultsInput"} if s.EventDataStore == nil { invalidParams.Add(request.NewErrParamRequired("EventDataStore")) } if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) } + if s.MaxQueryResults != nil && *s.MaxQueryResults < 1 { + invalidParams.Add(request.NewErrParamMinValue("MaxQueryResults", 1)) + } + if s.NextToken != nil && len(*s.NextToken) < 4 { + invalidParams.Add(request.NewErrParamMinLen("NextToken", 4)) + } + if s.QueryId == nil { + invalidParams.Add(request.NewErrParamRequired("QueryId")) + } + if s.QueryId != nil && len(*s.QueryId) < 36 { + invalidParams.Add(request.NewErrParamMinLen("QueryId", 36)) + } if invalidParams.Len() > 0 { return invalidParams @@ -7264,46 +8565,47 @@ func (s *GetEventDataStoreInput) Validate() error { } // SetEventDataStore sets the EventDataStore field's value. -func (s *GetEventDataStoreInput) SetEventDataStore(v string) *GetEventDataStoreInput { +func (s *GetQueryResultsInput) SetEventDataStore(v string) *GetQueryResultsInput { s.EventDataStore = &v return s } -type GetEventDataStoreOutput struct { - _ struct{} `type:"structure"` - - // The advanced event selectors used to select events for the data store. - AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` - - // The timestamp of the event data store's creation. - CreatedTimestamp *time.Time `type:"timestamp"` - - // The event data store Amazon Resource Number (ARN). - EventDataStoreArn *string `min:"3" type:"string"` +// SetMaxQueryResults sets the MaxQueryResults field's value. +func (s *GetQueryResultsInput) SetMaxQueryResults(v int64) *GetQueryResultsInput { + s.MaxQueryResults = &v + return s +} - // Indicates whether the event data store includes events from all regions, - // or only from the region in which it was created. - MultiRegionEnabled *bool `type:"boolean"` +// SetNextToken sets the NextToken field's value. +func (s *GetQueryResultsInput) SetNextToken(v string) *GetQueryResultsInput { + s.NextToken = &v + return s +} - // The name of the event data store. - Name *string `min:"3" type:"string"` +// SetQueryId sets the QueryId field's value. +func (s *GetQueryResultsInput) SetQueryId(v string) *GetQueryResultsInput { + s.QueryId = &v + return s +} - // Indicates whether an event data store is collecting logged events for an - // organization in Organizations. - OrganizationEnabled *bool `type:"boolean"` +type GetQueryResultsOutput struct { + _ struct{} `type:"structure"` - // The retention period of the event data store, in days. - RetentionPeriod *int64 `min:"7" type:"integer"` + // The error message returned if a query failed. + ErrorMessage *string `min:"4" type:"string"` - // The status of an event data store. Values can be ENABLED and PENDING_DELETION. - Status *string `type:"string" enum:"EventDataStoreStatus"` + // A token you can use to get the next page of query results. + NextToken *string `min:"4" type:"string"` - // Indicates that termination protection is enabled. - TerminationProtectionEnabled *bool `type:"boolean"` + // Contains the individual event results of the query. + QueryResultRows [][]map[string]*string `type:"list"` - // Shows the time that an event data store was updated, if applicable. UpdatedTimestamp - // is always either the same or newer than the time shown in CreatedTimestamp. - UpdatedTimestamp *time.Time `type:"timestamp"` + // Shows the count of query results. + QueryStatistics *QueryStatistics `type:"structure"` + + // The status of the query. Values include QUEUED, RUNNING, FINISHED, FAILED, + // TIMED_OUT, or CANCELLED. + QueryStatus *string `type:"string" enum:"QueryStatus"` } // String returns the string representation. @@ -7311,7 +8613,7 @@ type GetEventDataStoreOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventDataStoreOutput) String() string { +func (s GetQueryResultsOutput) String() string { return awsutil.Prettify(s) } @@ -7320,94 +8622,48 @@ func (s GetEventDataStoreOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventDataStoreOutput) GoString() string { +func (s GetQueryResultsOutput) GoString() string { return s.String() } -// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. -func (s *GetEventDataStoreOutput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *GetEventDataStoreOutput { - s.AdvancedEventSelectors = v - return s -} - -// SetCreatedTimestamp sets the CreatedTimestamp field's value. -func (s *GetEventDataStoreOutput) SetCreatedTimestamp(v time.Time) *GetEventDataStoreOutput { - s.CreatedTimestamp = &v - return s -} - -// SetEventDataStoreArn sets the EventDataStoreArn field's value. -func (s *GetEventDataStoreOutput) SetEventDataStoreArn(v string) *GetEventDataStoreOutput { - s.EventDataStoreArn = &v - return s -} - -// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. -func (s *GetEventDataStoreOutput) SetMultiRegionEnabled(v bool) *GetEventDataStoreOutput { - s.MultiRegionEnabled = &v - return s -} - -// SetName sets the Name field's value. -func (s *GetEventDataStoreOutput) SetName(v string) *GetEventDataStoreOutput { - s.Name = &v - return s -} - -// SetOrganizationEnabled sets the OrganizationEnabled field's value. -func (s *GetEventDataStoreOutput) SetOrganizationEnabled(v bool) *GetEventDataStoreOutput { - s.OrganizationEnabled = &v +// SetErrorMessage sets the ErrorMessage field's value. +func (s *GetQueryResultsOutput) SetErrorMessage(v string) *GetQueryResultsOutput { + s.ErrorMessage = &v return s } -// SetRetentionPeriod sets the RetentionPeriod field's value. -func (s *GetEventDataStoreOutput) SetRetentionPeriod(v int64) *GetEventDataStoreOutput { - s.RetentionPeriod = &v +// SetNextToken sets the NextToken field's value. +func (s *GetQueryResultsOutput) SetNextToken(v string) *GetQueryResultsOutput { + s.NextToken = &v return s } -// SetStatus sets the Status field's value. -func (s *GetEventDataStoreOutput) SetStatus(v string) *GetEventDataStoreOutput { - s.Status = &v +// SetQueryResultRows sets the QueryResultRows field's value. +func (s *GetQueryResultsOutput) SetQueryResultRows(v [][]map[string]*string) *GetQueryResultsOutput { + s.QueryResultRows = v return s } -// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. -func (s *GetEventDataStoreOutput) SetTerminationProtectionEnabled(v bool) *GetEventDataStoreOutput { - s.TerminationProtectionEnabled = &v +// SetQueryStatistics sets the QueryStatistics field's value. +func (s *GetQueryResultsOutput) SetQueryStatistics(v *QueryStatistics) *GetQueryResultsOutput { + s.QueryStatistics = v return s } -// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. -func (s *GetEventDataStoreOutput) SetUpdatedTimestamp(v time.Time) *GetEventDataStoreOutput { - s.UpdatedTimestamp = &v +// SetQueryStatus sets the QueryStatus field's value. +func (s *GetQueryResultsOutput) SetQueryStatus(v string) *GetQueryResultsOutput { + s.QueryStatus = &v return s } -type GetEventSelectorsInput struct { +type GetTrailInput struct { _ struct{} `type:"structure"` - // Specifies the name of the trail or trail ARN. If you specify a trail name, - // the string must meet the following requirements: - // - // * Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores - // (_), or dashes (-) - // - // * Start with a letter or number, and end with a letter or number - // - // * Be between 3 and 128 characters - // - // * Have no adjacent periods, underscores or dashes. Names like my-_namespace - // and my--namespace are not valid. - // - // * Not be in IP address format (for example, 192.168.5.4) - // - // If you specify a trail ARN, it must be in the format: - // - // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail + // The name or the Amazon Resource Name (ARN) of the trail for which you want + // to retrieve settings information. // - // TrailName is a required field - TrailName *string `type:"string" required:"true"` + // Name is a required field + Name *string `type:"string" required:"true"` } // String returns the string representation. @@ -7415,7 +8671,7 @@ type GetEventSelectorsInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventSelectorsInput) String() string { +func (s GetTrailInput) String() string { return awsutil.Prettify(s) } @@ -7424,15 +8680,15 @@ func (s GetEventSelectorsInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventSelectorsInput) GoString() string { +func (s GetTrailInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *GetEventSelectorsInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "GetEventSelectorsInput"} - if s.TrailName == nil { - invalidParams.Add(request.NewErrParamRequired("TrailName")) +func (s *GetTrailInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetTrailInput"} + if s.Name == nil { + invalidParams.Add(request.NewErrParamRequired("Name")) } if invalidParams.Len() > 0 { @@ -7441,23 +8697,17 @@ func (s *GetEventSelectorsInput) Validate() error { return nil } -// SetTrailName sets the TrailName field's value. -func (s *GetEventSelectorsInput) SetTrailName(v string) *GetEventSelectorsInput { - s.TrailName = &v +// SetName sets the Name field's value. +func (s *GetTrailInput) SetName(v string) *GetTrailInput { + s.Name = &v return s } -type GetEventSelectorsOutput struct { +type GetTrailOutput struct { _ struct{} `type:"structure"` - // The advanced event selectors that are configured for the trail. - AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` - - // The event selectors that are configured for the trail. - EventSelectors []*EventSelector `type:"list"` - - // The specified trail ARN that has the event selectors. - TrailARN *string `type:"string"` + // The settings for a trail. + Trail *Trail `type:"structure"` } // String returns the string representation. @@ -7465,7 +8715,7 @@ type GetEventSelectorsOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventSelectorsOutput) String() string { +func (s GetTrailOutput) String() string { return awsutil.Prettify(s) } @@ -7474,52 +8724,29 @@ func (s GetEventSelectorsOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetEventSelectorsOutput) GoString() string { +func (s GetTrailOutput) GoString() string { return s.String() } -// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. -func (s *GetEventSelectorsOutput) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *GetEventSelectorsOutput { - s.AdvancedEventSelectors = v - return s -} - -// SetEventSelectors sets the EventSelectors field's value. -func (s *GetEventSelectorsOutput) SetEventSelectors(v []*EventSelector) *GetEventSelectorsOutput { - s.EventSelectors = v - return s -} - -// SetTrailARN sets the TrailARN field's value. -func (s *GetEventSelectorsOutput) SetTrailARN(v string) *GetEventSelectorsOutput { - s.TrailARN = &v +// SetTrail sets the Trail field's value. +func (s *GetTrailOutput) SetTrail(v *Trail) *GetTrailOutput { + s.Trail = v return s } -type GetInsightSelectorsInput struct { +// The name of a trail about which you want the current status. +type GetTrailStatusInput struct { _ struct{} `type:"structure"` - // Specifies the name of the trail or trail ARN. If you specify a trail name, - // the string must meet the following requirements: - // - // * Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores - // (_), or dashes (-) - // - // * Start with a letter or number, and end with a letter or number - // - // * Be between 3 and 128 characters - // - // * Have no adjacent periods, underscores or dashes. Names like my-_namespace - // and my--namespace are not valid. - // - // * Not be in IP address format (for example, 192.168.5.4) - // - // If you specify a trail ARN, it must be in the format: + // Specifies the name or the CloudTrail ARN of the trail for which you are requesting + // status. To get the status of a shadow trail (a replication of the trail in + // another region), you must specify its ARN. The following is the format of + // a trail ARN. // // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail // - // TrailName is a required field - TrailName *string `type:"string" required:"true"` + // Name is a required field + Name *string `type:"string" required:"true"` } // String returns the string representation. @@ -7527,7 +8754,7 @@ type GetInsightSelectorsInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetInsightSelectorsInput) String() string { +func (s GetTrailStatusInput) String() string { return awsutil.Prettify(s) } @@ -7536,15 +8763,15 @@ func (s GetInsightSelectorsInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetInsightSelectorsInput) GoString() string { +func (s GetTrailStatusInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *GetInsightSelectorsInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "GetInsightSelectorsInput"} - if s.TrailName == nil { - invalidParams.Add(request.NewErrParamRequired("TrailName")) +func (s *GetTrailStatusInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "GetTrailStatusInput"} + if s.Name == nil { + invalidParams.Add(request.NewErrParamRequired("Name")) } if invalidParams.Len() > 0 { @@ -7553,23 +8780,93 @@ func (s *GetInsightSelectorsInput) Validate() error { return nil } -// SetTrailName sets the TrailName field's value. -func (s *GetInsightSelectorsInput) SetTrailName(v string) *GetInsightSelectorsInput { - s.TrailName = &v +// SetName sets the Name field's value. +func (s *GetTrailStatusInput) SetName(v string) *GetTrailStatusInput { + s.Name = &v return s } -type GetInsightSelectorsOutput struct { - _ struct{} `type:"structure"` +// Returns the objects or data listed below if successful. Otherwise, returns +// an error. +type GetTrailStatusOutput struct { + _ struct{} `type:"structure"` + + // Whether the CloudTrail trail is currently logging Amazon Web Services API + // calls. + IsLogging *bool `type:"boolean"` + + // Displays any CloudWatch Logs error that CloudTrail encountered when attempting + // to deliver logs to CloudWatch Logs. + LatestCloudWatchLogsDeliveryError *string `type:"string"` + + // Displays the most recent date and time when CloudTrail delivered logs to + // CloudWatch Logs. + LatestCloudWatchLogsDeliveryTime *time.Time `type:"timestamp"` + + // This field is no longer in use. + LatestDeliveryAttemptSucceeded *string `type:"string"` + + // This field is no longer in use. + LatestDeliveryAttemptTime *string `type:"string"` + + // Displays any Amazon S3 error that CloudTrail encountered when attempting + // to deliver log files to the designated bucket. For more information, see + // Error Responses (https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html) + // in the Amazon S3 API Reference. + // + // This error occurs only when there is a problem with the destination S3 bucket, + // and does not occur for requests that time out. To resolve the issue, create + // a new bucket, and then call UpdateTrail to specify the new bucket; or fix + // the existing objects so that CloudTrail can again write to the bucket. + LatestDeliveryError *string `type:"string"` + + // Specifies the date and time that CloudTrail last delivered log files to an + // account's Amazon S3 bucket. + LatestDeliveryTime *time.Time `type:"timestamp"` + + // Displays any Amazon S3 error that CloudTrail encountered when attempting + // to deliver a digest file to the designated bucket. For more information, + // see Error Responses (https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html) + // in the Amazon S3 API Reference. + // + // This error occurs only when there is a problem with the destination S3 bucket, + // and does not occur for requests that time out. To resolve the issue, create + // a new bucket, and then call UpdateTrail to specify the new bucket; or fix + // the existing objects so that CloudTrail can again write to the bucket. + LatestDigestDeliveryError *string `type:"string"` + + // Specifies the date and time that CloudTrail last delivered a digest file + // to an account's Amazon S3 bucket. + LatestDigestDeliveryTime *time.Time `type:"timestamp"` + + // This field is no longer in use. + LatestNotificationAttemptSucceeded *string `type:"string"` + + // This field is no longer in use. + LatestNotificationAttemptTime *string `type:"string"` + + // Displays any Amazon SNS error that CloudTrail encountered when attempting + // to send a notification. For more information about Amazon SNS errors, see + // the Amazon SNS Developer Guide (https://docs.aws.amazon.com/sns/latest/dg/welcome.html). + LatestNotificationError *string `type:"string"` + + // Specifies the date and time of the most recent Amazon SNS notification that + // CloudTrail has written a new log file to an account's Amazon S3 bucket. + LatestNotificationTime *time.Time `type:"timestamp"` + + // Specifies the most recent date and time when CloudTrail started recording + // API calls for an Amazon Web Services account. + StartLoggingTime *time.Time `type:"timestamp"` - // A JSON string that contains the insight types you want to log on a trail. - // In this release, ApiErrorRateInsight and ApiCallRateInsight are supported - // as insight types. - InsightSelectors []*InsightSelector `type:"list"` + // Specifies the most recent date and time when CloudTrail stopped recording + // API calls for an Amazon Web Services account. + StopLoggingTime *time.Time `type:"timestamp"` - // The Amazon Resource Name (ARN) of a trail for which you want to get Insights - // selectors. - TrailARN *string `type:"string"` + // This field is no longer in use. + TimeLoggingStarted *string `type:"string"` + + // This field is no longer in use. + TimeLoggingStopped *string `type:"string"` } // String returns the string representation. @@ -7577,7 +8874,7 @@ type GetInsightSelectorsOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetInsightSelectorsOutput) String() string { +func (s GetTrailStatusOutput) String() string { return awsutil.Prettify(s) } @@ -7586,131 +8883,130 @@ func (s GetInsightSelectorsOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetInsightSelectorsOutput) GoString() string { +func (s GetTrailStatusOutput) GoString() string { return s.String() } -// SetInsightSelectors sets the InsightSelectors field's value. -func (s *GetInsightSelectorsOutput) SetInsightSelectors(v []*InsightSelector) *GetInsightSelectorsOutput { - s.InsightSelectors = v +// SetIsLogging sets the IsLogging field's value. +func (s *GetTrailStatusOutput) SetIsLogging(v bool) *GetTrailStatusOutput { + s.IsLogging = &v return s } -// SetTrailARN sets the TrailARN field's value. -func (s *GetInsightSelectorsOutput) SetTrailARN(v string) *GetInsightSelectorsOutput { - s.TrailARN = &v +// SetLatestCloudWatchLogsDeliveryError sets the LatestCloudWatchLogsDeliveryError field's value. +func (s *GetTrailStatusOutput) SetLatestCloudWatchLogsDeliveryError(v string) *GetTrailStatusOutput { + s.LatestCloudWatchLogsDeliveryError = &v return s } -type GetQueryResultsInput struct { - _ struct{} `type:"structure"` +// SetLatestCloudWatchLogsDeliveryTime sets the LatestCloudWatchLogsDeliveryTime field's value. +func (s *GetTrailStatusOutput) SetLatestCloudWatchLogsDeliveryTime(v time.Time) *GetTrailStatusOutput { + s.LatestCloudWatchLogsDeliveryTime = &v + return s +} - // The ARN (or ID suffix of the ARN) of the event data store against which the - // query was run. - // - // EventDataStore is a required field - EventDataStore *string `min:"3" type:"string" required:"true"` +// SetLatestDeliveryAttemptSucceeded sets the LatestDeliveryAttemptSucceeded field's value. +func (s *GetTrailStatusOutput) SetLatestDeliveryAttemptSucceeded(v string) *GetTrailStatusOutput { + s.LatestDeliveryAttemptSucceeded = &v + return s +} - // The maximum number of query results to display on a single page. - MaxQueryResults *int64 `min:"1" type:"integer"` +// SetLatestDeliveryAttemptTime sets the LatestDeliveryAttemptTime field's value. +func (s *GetTrailStatusOutput) SetLatestDeliveryAttemptTime(v string) *GetTrailStatusOutput { + s.LatestDeliveryAttemptTime = &v + return s +} - // A token you can use to get the next page of query results. - NextToken *string `min:"4" type:"string"` +// SetLatestDeliveryError sets the LatestDeliveryError field's value. +func (s *GetTrailStatusOutput) SetLatestDeliveryError(v string) *GetTrailStatusOutput { + s.LatestDeliveryError = &v + return s +} - // The ID of the query for which you want to get results. - // - // QueryId is a required field - QueryId *string `min:"36" type:"string" required:"true"` +// SetLatestDeliveryTime sets the LatestDeliveryTime field's value. +func (s *GetTrailStatusOutput) SetLatestDeliveryTime(v time.Time) *GetTrailStatusOutput { + s.LatestDeliveryTime = &v + return s } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s GetQueryResultsInput) String() string { - return awsutil.Prettify(s) +// SetLatestDigestDeliveryError sets the LatestDigestDeliveryError field's value. +func (s *GetTrailStatusOutput) SetLatestDigestDeliveryError(v string) *GetTrailStatusOutput { + s.LatestDigestDeliveryError = &v + return s } -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s GetQueryResultsInput) GoString() string { - return s.String() +// SetLatestDigestDeliveryTime sets the LatestDigestDeliveryTime field's value. +func (s *GetTrailStatusOutput) SetLatestDigestDeliveryTime(v time.Time) *GetTrailStatusOutput { + s.LatestDigestDeliveryTime = &v + return s } -// Validate inspects the fields of the type to determine if they are valid. -func (s *GetQueryResultsInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "GetQueryResultsInput"} - if s.EventDataStore == nil { - invalidParams.Add(request.NewErrParamRequired("EventDataStore")) - } - if s.EventDataStore != nil && len(*s.EventDataStore) < 3 { - invalidParams.Add(request.NewErrParamMinLen("EventDataStore", 3)) - } - if s.MaxQueryResults != nil && *s.MaxQueryResults < 1 { - invalidParams.Add(request.NewErrParamMinValue("MaxQueryResults", 1)) - } - if s.NextToken != nil && len(*s.NextToken) < 4 { - invalidParams.Add(request.NewErrParamMinLen("NextToken", 4)) - } - if s.QueryId == nil { - invalidParams.Add(request.NewErrParamRequired("QueryId")) - } - if s.QueryId != nil && len(*s.QueryId) < 36 { - invalidParams.Add(request.NewErrParamMinLen("QueryId", 36)) - } +// SetLatestNotificationAttemptSucceeded sets the LatestNotificationAttemptSucceeded field's value. +func (s *GetTrailStatusOutput) SetLatestNotificationAttemptSucceeded(v string) *GetTrailStatusOutput { + s.LatestNotificationAttemptSucceeded = &v + return s +} - if invalidParams.Len() > 0 { - return invalidParams - } - return nil +// SetLatestNotificationAttemptTime sets the LatestNotificationAttemptTime field's value. +func (s *GetTrailStatusOutput) SetLatestNotificationAttemptTime(v string) *GetTrailStatusOutput { + s.LatestNotificationAttemptTime = &v + return s } -// SetEventDataStore sets the EventDataStore field's value. -func (s *GetQueryResultsInput) SetEventDataStore(v string) *GetQueryResultsInput { - s.EventDataStore = &v +// SetLatestNotificationError sets the LatestNotificationError field's value. +func (s *GetTrailStatusOutput) SetLatestNotificationError(v string) *GetTrailStatusOutput { + s.LatestNotificationError = &v return s } -// SetMaxQueryResults sets the MaxQueryResults field's value. -func (s *GetQueryResultsInput) SetMaxQueryResults(v int64) *GetQueryResultsInput { - s.MaxQueryResults = &v +// SetLatestNotificationTime sets the LatestNotificationTime field's value. +func (s *GetTrailStatusOutput) SetLatestNotificationTime(v time.Time) *GetTrailStatusOutput { + s.LatestNotificationTime = &v return s } -// SetNextToken sets the NextToken field's value. -func (s *GetQueryResultsInput) SetNextToken(v string) *GetQueryResultsInput { - s.NextToken = &v +// SetStartLoggingTime sets the StartLoggingTime field's value. +func (s *GetTrailStatusOutput) SetStartLoggingTime(v time.Time) *GetTrailStatusOutput { + s.StartLoggingTime = &v return s } -// SetQueryId sets the QueryId field's value. -func (s *GetQueryResultsInput) SetQueryId(v string) *GetQueryResultsInput { - s.QueryId = &v +// SetStopLoggingTime sets the StopLoggingTime field's value. +func (s *GetTrailStatusOutput) SetStopLoggingTime(v time.Time) *GetTrailStatusOutput { + s.StopLoggingTime = &v return s } -type GetQueryResultsOutput struct { +// SetTimeLoggingStarted sets the TimeLoggingStarted field's value. +func (s *GetTrailStatusOutput) SetTimeLoggingStarted(v string) *GetTrailStatusOutput { + s.TimeLoggingStarted = &v + return s +} + +// SetTimeLoggingStopped sets the TimeLoggingStopped field's value. +func (s *GetTrailStatusOutput) SetTimeLoggingStopped(v string) *GetTrailStatusOutput { + s.TimeLoggingStopped = &v + return s +} + +// Provides information about an import failure. +type ImportFailureListItem struct { _ struct{} `type:"structure"` - // The error message returned if a query failed. - ErrorMessage *string `min:"4" type:"string"` + // Provides the reason the import failed. + ErrorMessage *string `type:"string"` - // A token you can use to get the next page of query results. - NextToken *string `min:"4" type:"string"` + // The type of import error. + ErrorType *string `type:"string"` - // Contains the individual event results of the query. - QueryResultRows [][]map[string]*string `type:"list"` + // When the import was last updated. + LastUpdatedTime *time.Time `type:"timestamp"` - // Shows the count of query results. - QueryStatistics *QueryStatistics `type:"structure"` + // The location of the failure in the S3 bucket. + Location *string `type:"string"` - // The status of the query. Values include QUEUED, RUNNING, FINISHED, FAILED, - // TIMED_OUT, or CANCELLED. - QueryStatus *string `type:"string" enum:"QueryStatus"` + // The status of the import. + Status *string `type:"string" enum:"ImportFailureStatus"` } // String returns the string representation. @@ -7718,7 +9014,7 @@ type GetQueryResultsOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetQueryResultsOutput) String() string { +func (s ImportFailureListItem) String() string { return awsutil.Prettify(s) } @@ -7727,48 +9023,46 @@ func (s GetQueryResultsOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetQueryResultsOutput) GoString() string { +func (s ImportFailureListItem) GoString() string { return s.String() } // SetErrorMessage sets the ErrorMessage field's value. -func (s *GetQueryResultsOutput) SetErrorMessage(v string) *GetQueryResultsOutput { +func (s *ImportFailureListItem) SetErrorMessage(v string) *ImportFailureListItem { s.ErrorMessage = &v return s } -// SetNextToken sets the NextToken field's value. -func (s *GetQueryResultsOutput) SetNextToken(v string) *GetQueryResultsOutput { - s.NextToken = &v +// SetErrorType sets the ErrorType field's value. +func (s *ImportFailureListItem) SetErrorType(v string) *ImportFailureListItem { + s.ErrorType = &v return s } -// SetQueryResultRows sets the QueryResultRows field's value. -func (s *GetQueryResultsOutput) SetQueryResultRows(v [][]map[string]*string) *GetQueryResultsOutput { - s.QueryResultRows = v +// SetLastUpdatedTime sets the LastUpdatedTime field's value. +func (s *ImportFailureListItem) SetLastUpdatedTime(v time.Time) *ImportFailureListItem { + s.LastUpdatedTime = &v return s } -// SetQueryStatistics sets the QueryStatistics field's value. -func (s *GetQueryResultsOutput) SetQueryStatistics(v *QueryStatistics) *GetQueryResultsOutput { - s.QueryStatistics = v +// SetLocation sets the Location field's value. +func (s *ImportFailureListItem) SetLocation(v string) *ImportFailureListItem { + s.Location = &v return s } -// SetQueryStatus sets the QueryStatus field's value. -func (s *GetQueryResultsOutput) SetQueryStatus(v string) *GetQueryResultsOutput { - s.QueryStatus = &v +// SetStatus sets the Status field's value. +func (s *ImportFailureListItem) SetStatus(v string) *ImportFailureListItem { + s.Status = &v return s } -type GetTrailInput struct { - _ struct{} `type:"structure"` +// The specified import was not found. +type ImportNotFoundException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` - // The name or the Amazon Resource Name (ARN) of the trail for which you want - // to retrieve settings information. - // - // Name is a required field - Name *string `type:"string" required:"true"` + Message_ *string `locationName:"message" type:"string"` } // String returns the string representation. @@ -7776,7 +9070,7 @@ type GetTrailInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetTrailInput) String() string { +func (s ImportNotFoundException) String() string { return awsutil.Prettify(s) } @@ -7785,73 +9079,56 @@ func (s GetTrailInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetTrailInput) GoString() string { +func (s ImportNotFoundException) GoString() string { return s.String() } -// Validate inspects the fields of the type to determine if they are valid. -func (s *GetTrailInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "GetTrailInput"} - if s.Name == nil { - invalidParams.Add(request.NewErrParamRequired("Name")) - } - - if invalidParams.Len() > 0 { - return invalidParams +func newErrorImportNotFoundException(v protocol.ResponseMetadata) error { + return &ImportNotFoundException{ + RespMetadata: v, } - return nil } -// SetName sets the Name field's value. -func (s *GetTrailInput) SetName(v string) *GetTrailInput { - s.Name = &v - return s +// Code returns the exception type name. +func (s *ImportNotFoundException) Code() string { + return "ImportNotFoundException" } -type GetTrailOutput struct { - _ struct{} `type:"structure"` - - // The settings for a trail. - Trail *Trail `type:"structure"` +// Message returns the exception's message. +func (s *ImportNotFoundException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" } -// String returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s GetTrailOutput) String() string { - return awsutil.Prettify(s) +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *ImportNotFoundException) OrigErr() error { + return nil } - -// GoString returns the string representation. -// -// API parameter values that are decorated as "sensitive" in the API will not -// be included in the string output. The member name will be present, but the -// value will be replaced with "sensitive". -func (s GetTrailOutput) GoString() string { - return s.String() + +func (s *ImportNotFoundException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } -// SetTrail sets the Trail field's value. -func (s *GetTrailOutput) SetTrail(v *Trail) *GetTrailOutput { - s.Trail = v - return s +// Status code returns the HTTP status code for the request's response error. +func (s *ImportNotFoundException) StatusCode() int { + return s.RespMetadata.StatusCode } -// The name of a trail about which you want the current status. -type GetTrailStatusInput struct { +// RequestID returns the service's response RequestID for request. +func (s *ImportNotFoundException) RequestID() string { + return s.RespMetadata.RequestID +} + +// The import source. +type ImportSource struct { _ struct{} `type:"structure"` - // Specifies the name or the CloudTrail ARN of the trail for which you are requesting - // status. To get the status of a shadow trail (a replication of the trail in - // another region), you must specify its ARN. The following is the format of - // a trail ARN. - // - // arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail + // The source S3 bucket. // - // Name is a required field - Name *string `type:"string" required:"true"` + // S3 is a required field + S3 *S3ImportSource `type:"structure" required:"true"` } // String returns the string representation. @@ -7859,7 +9136,7 @@ type GetTrailStatusInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetTrailStatusInput) String() string { +func (s ImportSource) String() string { return awsutil.Prettify(s) } @@ -7868,15 +9145,20 @@ func (s GetTrailStatusInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetTrailStatusInput) GoString() string { +func (s ImportSource) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *GetTrailStatusInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "GetTrailStatusInput"} - if s.Name == nil { - invalidParams.Add(request.NewErrParamRequired("Name")) +func (s *ImportSource) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "ImportSource"} + if s.S3 == nil { + invalidParams.Add(request.NewErrParamRequired("S3")) + } + if s.S3 != nil { + if err := s.S3.Validate(); err != nil { + invalidParams.AddNested("S3", err.(request.ErrInvalidParams)) + } } if invalidParams.Len() > 0 { @@ -7885,93 +9167,30 @@ func (s *GetTrailStatusInput) Validate() error { return nil } -// SetName sets the Name field's value. -func (s *GetTrailStatusInput) SetName(v string) *GetTrailStatusInput { - s.Name = &v +// SetS3 sets the S3 field's value. +func (s *ImportSource) SetS3(v *S3ImportSource) *ImportSource { + s.S3 = v return s } -// Returns the objects or data listed below if successful. Otherwise, returns -// an error. -type GetTrailStatusOutput struct { +// Provides statistics for the specified ImportID. +type ImportStatistics struct { _ struct{} `type:"structure"` - // Whether the CloudTrail trail is currently logging Amazon Web Services API - // calls. - IsLogging *bool `type:"boolean"` - - // Displays any CloudWatch Logs error that CloudTrail encountered when attempting - // to deliver logs to CloudWatch Logs. - LatestCloudWatchLogsDeliveryError *string `type:"string"` - - // Displays the most recent date and time when CloudTrail delivered logs to - // CloudWatch Logs. - LatestCloudWatchLogsDeliveryTime *time.Time `type:"timestamp"` - - // This field is no longer in use. - LatestDeliveryAttemptSucceeded *string `type:"string"` - - // This field is no longer in use. - LatestDeliveryAttemptTime *string `type:"string"` - - // Displays any Amazon S3 error that CloudTrail encountered when attempting - // to deliver log files to the designated bucket. For more information, see - // Error Responses (https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html) - // in the Amazon S3 API Reference. - // - // This error occurs only when there is a problem with the destination S3 bucket, - // and does not occur for requests that time out. To resolve the issue, create - // a new bucket, and then call UpdateTrail to specify the new bucket; or fix - // the existing objects so that CloudTrail can again write to the bucket. - LatestDeliveryError *string `type:"string"` - - // Specifies the date and time that CloudTrail last delivered log files to an - // account's Amazon S3 bucket. - LatestDeliveryTime *time.Time `type:"timestamp"` - - // Displays any Amazon S3 error that CloudTrail encountered when attempting - // to deliver a digest file to the designated bucket. For more information, - // see Error Responses (https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html) - // in the Amazon S3 API Reference. - // - // This error occurs only when there is a problem with the destination S3 bucket, - // and does not occur for requests that time out. To resolve the issue, create - // a new bucket, and then call UpdateTrail to specify the new bucket; or fix - // the existing objects so that CloudTrail can again write to the bucket. - LatestDigestDeliveryError *string `type:"string"` - - // Specifies the date and time that CloudTrail last delivered a digest file - // to an account's Amazon S3 bucket. - LatestDigestDeliveryTime *time.Time `type:"timestamp"` - - // This field is no longer in use. - LatestNotificationAttemptSucceeded *string `type:"string"` - - // This field is no longer in use. - LatestNotificationAttemptTime *string `type:"string"` - - // Displays any Amazon SNS error that CloudTrail encountered when attempting - // to send a notification. For more information about Amazon SNS errors, see - // the Amazon SNS Developer Guide (https://docs.aws.amazon.com/sns/latest/dg/welcome.html). - LatestNotificationError *string `type:"string"` - - // Specifies the date and time of the most recent Amazon SNS notification that - // CloudTrail has written a new log file to an account's Amazon S3 bucket. - LatestNotificationTime *time.Time `type:"timestamp"` + // The number of trail events imported. + EventsCompleted *int64 `type:"long"` - // Specifies the most recent date and time when CloudTrail started recording - // API calls for an Amazon Web Services account. - StartLoggingTime *time.Time `type:"timestamp"` + // The number of failed entries. + FailedEntries *int64 `type:"long"` - // Specifies the most recent date and time when CloudTrail stopped recording - // API calls for an Amazon Web Services account. - StopLoggingTime *time.Time `type:"timestamp"` + // The number of files that completed import. + FilesCompleted *int64 `type:"long"` - // This field is no longer in use. - TimeLoggingStarted *string `type:"string"` + // The number of S3 prefixes that completed import. + PrefixesCompleted *int64 `type:"long"` - // This field is no longer in use. - TimeLoggingStopped *string `type:"string"` + // The number of S3 prefixes found for the import. + PrefixesFound *int64 `type:"long"` } // String returns the string representation. @@ -7979,7 +9198,7 @@ type GetTrailStatusOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetTrailStatusOutput) String() string { +func (s ImportStatistics) String() string { return awsutil.Prettify(s) } @@ -7988,109 +9207,105 @@ func (s GetTrailStatusOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s GetTrailStatusOutput) GoString() string { +func (s ImportStatistics) GoString() string { return s.String() } -// SetIsLogging sets the IsLogging field's value. -func (s *GetTrailStatusOutput) SetIsLogging(v bool) *GetTrailStatusOutput { - s.IsLogging = &v +// SetEventsCompleted sets the EventsCompleted field's value. +func (s *ImportStatistics) SetEventsCompleted(v int64) *ImportStatistics { + s.EventsCompleted = &v return s } -// SetLatestCloudWatchLogsDeliveryError sets the LatestCloudWatchLogsDeliveryError field's value. -func (s *GetTrailStatusOutput) SetLatestCloudWatchLogsDeliveryError(v string) *GetTrailStatusOutput { - s.LatestCloudWatchLogsDeliveryError = &v +// SetFailedEntries sets the FailedEntries field's value. +func (s *ImportStatistics) SetFailedEntries(v int64) *ImportStatistics { + s.FailedEntries = &v return s } -// SetLatestCloudWatchLogsDeliveryTime sets the LatestCloudWatchLogsDeliveryTime field's value. -func (s *GetTrailStatusOutput) SetLatestCloudWatchLogsDeliveryTime(v time.Time) *GetTrailStatusOutput { - s.LatestCloudWatchLogsDeliveryTime = &v +// SetFilesCompleted sets the FilesCompleted field's value. +func (s *ImportStatistics) SetFilesCompleted(v int64) *ImportStatistics { + s.FilesCompleted = &v return s } -// SetLatestDeliveryAttemptSucceeded sets the LatestDeliveryAttemptSucceeded field's value. -func (s *GetTrailStatusOutput) SetLatestDeliveryAttemptSucceeded(v string) *GetTrailStatusOutput { - s.LatestDeliveryAttemptSucceeded = &v +// SetPrefixesCompleted sets the PrefixesCompleted field's value. +func (s *ImportStatistics) SetPrefixesCompleted(v int64) *ImportStatistics { + s.PrefixesCompleted = &v return s } -// SetLatestDeliveryAttemptTime sets the LatestDeliveryAttemptTime field's value. -func (s *GetTrailStatusOutput) SetLatestDeliveryAttemptTime(v string) *GetTrailStatusOutput { - s.LatestDeliveryAttemptTime = &v +// SetPrefixesFound sets the PrefixesFound field's value. +func (s *ImportStatistics) SetPrefixesFound(v int64) *ImportStatistics { + s.PrefixesFound = &v return s } -// SetLatestDeliveryError sets the LatestDeliveryError field's value. -func (s *GetTrailStatusOutput) SetLatestDeliveryError(v string) *GetTrailStatusOutput { - s.LatestDeliveryError = &v - return s -} +// Contains information about an import that was returned by a lookup request. +type ImportsListItem struct { + _ struct{} `type:"structure"` -// SetLatestDeliveryTime sets the LatestDeliveryTime field's value. -func (s *GetTrailStatusOutput) SetLatestDeliveryTime(v time.Time) *GetTrailStatusOutput { - s.LatestDeliveryTime = &v - return s -} + // The timestamp of the import's creation. + CreatedTimestamp *time.Time `type:"timestamp"` -// SetLatestDigestDeliveryError sets the LatestDigestDeliveryError field's value. -func (s *GetTrailStatusOutput) SetLatestDigestDeliveryError(v string) *GetTrailStatusOutput { - s.LatestDigestDeliveryError = &v - return s -} + // The destination event data store. + Destinations []*string `min:"1" type:"list"` -// SetLatestDigestDeliveryTime sets the LatestDigestDeliveryTime field's value. -func (s *GetTrailStatusOutput) SetLatestDigestDeliveryTime(v time.Time) *GetTrailStatusOutput { - s.LatestDigestDeliveryTime = &v - return s -} + // The ID of the import. + ImportId *string `min:"36" type:"string"` -// SetLatestNotificationAttemptSucceeded sets the LatestNotificationAttemptSucceeded field's value. -func (s *GetTrailStatusOutput) SetLatestNotificationAttemptSucceeded(v string) *GetTrailStatusOutput { - s.LatestNotificationAttemptSucceeded = &v - return s + // The status of the import. + ImportStatus *string `type:"string" enum:"ImportStatus"` + + // The timestamp of the import's last update. + UpdatedTimestamp *time.Time `type:"timestamp"` } -// SetLatestNotificationAttemptTime sets the LatestNotificationAttemptTime field's value. -func (s *GetTrailStatusOutput) SetLatestNotificationAttemptTime(v string) *GetTrailStatusOutput { - s.LatestNotificationAttemptTime = &v - return s +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ImportsListItem) String() string { + return awsutil.Prettify(s) } -// SetLatestNotificationError sets the LatestNotificationError field's value. -func (s *GetTrailStatusOutput) SetLatestNotificationError(v string) *GetTrailStatusOutput { - s.LatestNotificationError = &v - return s +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ImportsListItem) GoString() string { + return s.String() } -// SetLatestNotificationTime sets the LatestNotificationTime field's value. -func (s *GetTrailStatusOutput) SetLatestNotificationTime(v time.Time) *GetTrailStatusOutput { - s.LatestNotificationTime = &v +// SetCreatedTimestamp sets the CreatedTimestamp field's value. +func (s *ImportsListItem) SetCreatedTimestamp(v time.Time) *ImportsListItem { + s.CreatedTimestamp = &v return s } -// SetStartLoggingTime sets the StartLoggingTime field's value. -func (s *GetTrailStatusOutput) SetStartLoggingTime(v time.Time) *GetTrailStatusOutput { - s.StartLoggingTime = &v +// SetDestinations sets the Destinations field's value. +func (s *ImportsListItem) SetDestinations(v []*string) *ImportsListItem { + s.Destinations = v return s } -// SetStopLoggingTime sets the StopLoggingTime field's value. -func (s *GetTrailStatusOutput) SetStopLoggingTime(v time.Time) *GetTrailStatusOutput { - s.StopLoggingTime = &v +// SetImportId sets the ImportId field's value. +func (s *ImportsListItem) SetImportId(v string) *ImportsListItem { + s.ImportId = &v return s } -// SetTimeLoggingStarted sets the TimeLoggingStarted field's value. -func (s *GetTrailStatusOutput) SetTimeLoggingStarted(v string) *GetTrailStatusOutput { - s.TimeLoggingStarted = &v +// SetImportStatus sets the ImportStatus field's value. +func (s *ImportsListItem) SetImportStatus(v string) *ImportsListItem { + s.ImportStatus = &v return s } -// SetTimeLoggingStopped sets the TimeLoggingStopped field's value. -func (s *GetTrailStatusOutput) SetTimeLoggingStopped(v string) *GetTrailStatusOutput { - s.TimeLoggingStopped = &v +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *ImportsListItem) SetUpdatedTimestamp(v time.Time) *ImportsListItem { + s.UpdatedTimestamp = &v return s } @@ -8751,7 +9966,72 @@ func (s *InvalidDateRangeException) Code() string { } // Message returns the exception's message. -func (s *InvalidDateRangeException) Message() string { +func (s *InvalidDateRangeException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *InvalidDateRangeException) OrigErr() error { + return nil +} + +func (s *InvalidDateRangeException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *InvalidDateRangeException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *InvalidDateRangeException) RequestID() string { + return s.RespMetadata.RequestID +} + +// Occurs if an event category that is not valid is specified as a value of +// EventCategory. +type InvalidEventCategoryException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s InvalidEventCategoryException) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s InvalidEventCategoryException) GoString() string { + return s.String() +} + +func newErrorInvalidEventCategoryException(v protocol.ResponseMetadata) error { + return &InvalidEventCategoryException{ + RespMetadata: v, + } +} + +// Code returns the exception type name. +func (s *InvalidEventCategoryException) Code() string { + return "InvalidEventCategoryException" +} + +// Message returns the exception's message. +func (s *InvalidEventCategoryException) Message() string { if s.Message_ != nil { return *s.Message_ } @@ -8759,27 +10039,27 @@ func (s *InvalidDateRangeException) Message() string { } // OrigErr always returns nil, satisfies awserr.Error interface. -func (s *InvalidDateRangeException) OrigErr() error { +func (s *InvalidEventCategoryException) OrigErr() error { return nil } -func (s *InvalidDateRangeException) Error() string { +func (s *InvalidEventCategoryException) Error() string { return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } // Status code returns the HTTP status code for the request's response error. -func (s *InvalidDateRangeException) StatusCode() int { +func (s *InvalidEventCategoryException) StatusCode() int { return s.RespMetadata.StatusCode } // RequestID returns the service's response RequestID for request. -func (s *InvalidDateRangeException) RequestID() string { +func (s *InvalidEventCategoryException) RequestID() string { return s.RespMetadata.RequestID } -// Occurs if an event category that is not valid is specified as a value of -// EventCategory. -type InvalidEventCategoryException struct { +// This exception is thrown when the event data store category is not valid +// for the import. +type InvalidEventDataStoreCategoryException struct { _ struct{} `type:"structure"` RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` @@ -8791,7 +10071,7 @@ type InvalidEventCategoryException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s InvalidEventCategoryException) String() string { +func (s InvalidEventDataStoreCategoryException) String() string { return awsutil.Prettify(s) } @@ -8800,23 +10080,23 @@ func (s InvalidEventCategoryException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s InvalidEventCategoryException) GoString() string { +func (s InvalidEventDataStoreCategoryException) GoString() string { return s.String() } -func newErrorInvalidEventCategoryException(v protocol.ResponseMetadata) error { - return &InvalidEventCategoryException{ +func newErrorInvalidEventDataStoreCategoryException(v protocol.ResponseMetadata) error { + return &InvalidEventDataStoreCategoryException{ RespMetadata: v, } } // Code returns the exception type name. -func (s *InvalidEventCategoryException) Code() string { - return "InvalidEventCategoryException" +func (s *InvalidEventDataStoreCategoryException) Code() string { + return "InvalidEventDataStoreCategoryException" } // Message returns the exception's message. -func (s *InvalidEventCategoryException) Message() string { +func (s *InvalidEventDataStoreCategoryException) Message() string { if s.Message_ != nil { return *s.Message_ } @@ -8824,21 +10104,21 @@ func (s *InvalidEventCategoryException) Message() string { } // OrigErr always returns nil, satisfies awserr.Error interface. -func (s *InvalidEventCategoryException) OrigErr() error { +func (s *InvalidEventDataStoreCategoryException) OrigErr() error { return nil } -func (s *InvalidEventCategoryException) Error() string { +func (s *InvalidEventDataStoreCategoryException) Error() string { return fmt.Sprintf("%s: %s", s.Code(), s.Message()) } // Status code returns the HTTP status code for the request's response error. -func (s *InvalidEventCategoryException) StatusCode() int { +func (s *InvalidEventDataStoreCategoryException) StatusCode() int { return s.RespMetadata.StatusCode } // RequestID returns the service's response RequestID for request. -func (s *InvalidEventCategoryException) RequestID() string { +func (s *InvalidEventDataStoreCategoryException) RequestID() string { return s.RespMetadata.RequestID } @@ -9058,6 +10338,71 @@ func (s *InvalidHomeRegionException) RequestID() string { return s.RespMetadata.RequestID } +// This exception is thrown when the provided source S3 bucket is not valid +// for import. +type InvalidImportSourceException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s InvalidImportSourceException) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s InvalidImportSourceException) GoString() string { + return s.String() +} + +func newErrorInvalidImportSourceException(v protocol.ResponseMetadata) error { + return &InvalidImportSourceException{ + RespMetadata: v, + } +} + +// Code returns the exception type name. +func (s *InvalidImportSourceException) Code() string { + return "InvalidImportSourceException" +} + +// Message returns the exception's message. +func (s *InvalidImportSourceException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *InvalidImportSourceException) OrigErr() error { + return nil +} + +func (s *InvalidImportSourceException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *InvalidImportSourceException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *InvalidImportSourceException) RequestID() string { + return s.RespMetadata.RequestID +} + // The formatting or syntax of the InsightSelectors JSON statement in your PutInsightSelectors // or GetInsightSelectors request is not valid, or the specified insight type // in the InsightSelectors statement is not a valid insight type. @@ -10287,27 +11632,225 @@ func (s *KmsKeyNotFoundException) OrigErr() error { return nil } -func (s *KmsKeyNotFoundException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +func (s *KmsKeyNotFoundException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *KmsKeyNotFoundException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *KmsKeyNotFoundException) RequestID() string { + return s.RespMetadata.RequestID +} + +type ListChannelsInput struct { + _ struct{} `type:"structure"` + + // The maximum number of CloudTrail channels to display on a single page. + MaxResults *int64 `min:"1" type:"integer"` + + // A token you can use to get the next page of results. + NextToken *string `min:"4" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListChannelsInput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListChannelsInput) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *ListChannelsInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "ListChannelsInput"} + if s.MaxResults != nil && *s.MaxResults < 1 { + invalidParams.Add(request.NewErrParamMinValue("MaxResults", 1)) + } + if s.NextToken != nil && len(*s.NextToken) < 4 { + invalidParams.Add(request.NewErrParamMinLen("NextToken", 4)) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetMaxResults sets the MaxResults field's value. +func (s *ListChannelsInput) SetMaxResults(v int64) *ListChannelsInput { + s.MaxResults = &v + return s +} + +// SetNextToken sets the NextToken field's value. +func (s *ListChannelsInput) SetNextToken(v string) *ListChannelsInput { + s.NextToken = &v + return s +} + +type ListChannelsOutput struct { + _ struct{} `type:"structure"` + + // The list of CloudTrail channels. + Channels []*Channel `type:"list"` + + // A token used to get the next page of results. + NextToken *string `min:"4" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListChannelsOutput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListChannelsOutput) GoString() string { + return s.String() +} + +// SetChannels sets the Channels field's value. +func (s *ListChannelsOutput) SetChannels(v []*Channel) *ListChannelsOutput { + s.Channels = v + return s +} + +// SetNextToken sets the NextToken field's value. +func (s *ListChannelsOutput) SetNextToken(v string) *ListChannelsOutput { + s.NextToken = &v + return s +} + +type ListEventDataStoresInput struct { + _ struct{} `type:"structure"` + + // The maximum number of event data stores to display on a single page. + MaxResults *int64 `min:"1" type:"integer"` + + // A token you can use to get the next page of event data store results. + NextToken *string `min:"4" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListEventDataStoresInput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListEventDataStoresInput) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *ListEventDataStoresInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "ListEventDataStoresInput"} + if s.MaxResults != nil && *s.MaxResults < 1 { + invalidParams.Add(request.NewErrParamMinValue("MaxResults", 1)) + } + if s.NextToken != nil && len(*s.NextToken) < 4 { + invalidParams.Add(request.NewErrParamMinLen("NextToken", 4)) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetMaxResults sets the MaxResults field's value. +func (s *ListEventDataStoresInput) SetMaxResults(v int64) *ListEventDataStoresInput { + s.MaxResults = &v + return s +} + +// SetNextToken sets the NextToken field's value. +func (s *ListEventDataStoresInput) SetNextToken(v string) *ListEventDataStoresInput { + s.NextToken = &v + return s +} + +type ListEventDataStoresOutput struct { + _ struct{} `type:"structure"` + + // Contains information about event data stores in the account, in the current + // region. + EventDataStores []*EventDataStore `type:"list"` + + // A token you can use to get the next page of results. + NextToken *string `min:"4" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListEventDataStoresOutput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ListEventDataStoresOutput) GoString() string { + return s.String() } -// Status code returns the HTTP status code for the request's response error. -func (s *KmsKeyNotFoundException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetEventDataStores sets the EventDataStores field's value. +func (s *ListEventDataStoresOutput) SetEventDataStores(v []*EventDataStore) *ListEventDataStoresOutput { + s.EventDataStores = v + return s } -// RequestID returns the service's response RequestID for request. -func (s *KmsKeyNotFoundException) RequestID() string { - return s.RespMetadata.RequestID +// SetNextToken sets the NextToken field's value. +func (s *ListEventDataStoresOutput) SetNextToken(v string) *ListEventDataStoresOutput { + s.NextToken = &v + return s } -type ListChannelsInput struct { +type ListImportFailuresInput struct { _ struct{} `type:"structure"` - // The maximum number of CloudTrail channels to display on a single page. + // The ID of the import. + // + // ImportId is a required field + ImportId *string `min:"36" type:"string" required:"true"` + + // The maximum number of failures to display on a single page. MaxResults *int64 `min:"1" type:"integer"` - // A token you can use to get the next page of results. + // A token you can use to get the next page of import failures. NextToken *string `min:"4" type:"string"` } @@ -10316,7 +11859,7 @@ type ListChannelsInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListChannelsInput) String() string { +func (s ListImportFailuresInput) String() string { return awsutil.Prettify(s) } @@ -10325,13 +11868,19 @@ func (s ListChannelsInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListChannelsInput) GoString() string { +func (s ListImportFailuresInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *ListChannelsInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "ListChannelsInput"} +func (s *ListImportFailuresInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "ListImportFailuresInput"} + if s.ImportId == nil { + invalidParams.Add(request.NewErrParamRequired("ImportId")) + } + if s.ImportId != nil && len(*s.ImportId) < 36 { + invalidParams.Add(request.NewErrParamMinLen("ImportId", 36)) + } if s.MaxResults != nil && *s.MaxResults < 1 { invalidParams.Add(request.NewErrParamMinValue("MaxResults", 1)) } @@ -10345,25 +11894,31 @@ func (s *ListChannelsInput) Validate() error { return nil } +// SetImportId sets the ImportId field's value. +func (s *ListImportFailuresInput) SetImportId(v string) *ListImportFailuresInput { + s.ImportId = &v + return s +} + // SetMaxResults sets the MaxResults field's value. -func (s *ListChannelsInput) SetMaxResults(v int64) *ListChannelsInput { +func (s *ListImportFailuresInput) SetMaxResults(v int64) *ListImportFailuresInput { s.MaxResults = &v return s } // SetNextToken sets the NextToken field's value. -func (s *ListChannelsInput) SetNextToken(v string) *ListChannelsInput { +func (s *ListImportFailuresInput) SetNextToken(v string) *ListImportFailuresInput { s.NextToken = &v return s } -type ListChannelsOutput struct { +type ListImportFailuresOutput struct { _ struct{} `type:"structure"` - // The list of CloudTrail channels. - Channels []*Channel `type:"list"` + // Contains information about the import failures. + Failures []*ImportFailureListItem `type:"list"` - // A token used to get the next page of results. + // A token you can use to get the next page of results. NextToken *string `min:"4" type:"string"` } @@ -10372,7 +11927,7 @@ type ListChannelsOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListChannelsOutput) String() string { +func (s ListImportFailuresOutput) String() string { return awsutil.Prettify(s) } @@ -10381,29 +11936,35 @@ func (s ListChannelsOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListChannelsOutput) GoString() string { +func (s ListImportFailuresOutput) GoString() string { return s.String() } -// SetChannels sets the Channels field's value. -func (s *ListChannelsOutput) SetChannels(v []*Channel) *ListChannelsOutput { - s.Channels = v +// SetFailures sets the Failures field's value. +func (s *ListImportFailuresOutput) SetFailures(v []*ImportFailureListItem) *ListImportFailuresOutput { + s.Failures = v return s } // SetNextToken sets the NextToken field's value. -func (s *ListChannelsOutput) SetNextToken(v string) *ListChannelsOutput { +func (s *ListImportFailuresOutput) SetNextToken(v string) *ListImportFailuresOutput { s.NextToken = &v return s } -type ListEventDataStoresInput struct { +type ListImportsInput struct { _ struct{} `type:"structure"` - // The maximum number of event data stores to display on a single page. + // The destination event data store. + Destination *string `min:"3" type:"string"` + + // The status of the import. + ImportStatus *string `type:"string" enum:"ImportStatus"` + + // The maximum number of imports to display on a single page. MaxResults *int64 `min:"1" type:"integer"` - // A token you can use to get the next page of event data store results. + // A token you can use to get the next page of import results. NextToken *string `min:"4" type:"string"` } @@ -10412,7 +11973,7 @@ type ListEventDataStoresInput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListEventDataStoresInput) String() string { +func (s ListImportsInput) String() string { return awsutil.Prettify(s) } @@ -10421,13 +11982,16 @@ func (s ListEventDataStoresInput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListEventDataStoresInput) GoString() string { +func (s ListImportsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. -func (s *ListEventDataStoresInput) Validate() error { - invalidParams := request.ErrInvalidParams{Context: "ListEventDataStoresInput"} +func (s *ListImportsInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "ListImportsInput"} + if s.Destination != nil && len(*s.Destination) < 3 { + invalidParams.Add(request.NewErrParamMinLen("Destination", 3)) + } if s.MaxResults != nil && *s.MaxResults < 1 { invalidParams.Add(request.NewErrParamMinValue("MaxResults", 1)) } @@ -10441,26 +12005,37 @@ func (s *ListEventDataStoresInput) Validate() error { return nil } +// SetDestination sets the Destination field's value. +func (s *ListImportsInput) SetDestination(v string) *ListImportsInput { + s.Destination = &v + return s +} + +// SetImportStatus sets the ImportStatus field's value. +func (s *ListImportsInput) SetImportStatus(v string) *ListImportsInput { + s.ImportStatus = &v + return s +} + // SetMaxResults sets the MaxResults field's value. -func (s *ListEventDataStoresInput) SetMaxResults(v int64) *ListEventDataStoresInput { +func (s *ListImportsInput) SetMaxResults(v int64) *ListImportsInput { s.MaxResults = &v return s } // SetNextToken sets the NextToken field's value. -func (s *ListEventDataStoresInput) SetNextToken(v string) *ListEventDataStoresInput { +func (s *ListImportsInput) SetNextToken(v string) *ListImportsInput { s.NextToken = &v return s } -type ListEventDataStoresOutput struct { +type ListImportsOutput struct { _ struct{} `type:"structure"` - // Contains information about event data stores in the account, in the current - // region. - EventDataStores []*EventDataStore `type:"list"` + // The list of returned imports. + Imports []*ImportsListItem `type:"list"` - // A token you can use to get the next page of results. + // A token you can use to get the next page of import results. NextToken *string `min:"4" type:"string"` } @@ -10469,7 +12044,7 @@ type ListEventDataStoresOutput struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListEventDataStoresOutput) String() string { +func (s ListImportsOutput) String() string { return awsutil.Prettify(s) } @@ -10478,18 +12053,18 @@ func (s ListEventDataStoresOutput) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s ListEventDataStoresOutput) GoString() string { +func (s ListImportsOutput) GoString() string { return s.String() } -// SetEventDataStores sets the EventDataStores field's value. -func (s *ListEventDataStoresOutput) SetEventDataStores(v []*EventDataStore) *ListEventDataStoresOutput { - s.EventDataStores = v +// SetImports sets the Imports field's value. +func (s *ListImportsOutput) SetImports(v []*ImportsListItem) *ListImportsOutput { + s.Imports = v return s } // SetNextToken sets the NextToken field's value. -func (s *ListEventDataStoresOutput) SetNextToken(v string) *ListEventDataStoresOutput { +func (s *ListImportsOutput) SetNextToken(v string) *ListImportsOutput { s.NextToken = &v return s } @@ -12530,54 +14105,248 @@ func (s *RestoreEventDataStoreOutput) SetEventDataStoreArn(v string) *RestoreEve return s } -// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. -func (s *RestoreEventDataStoreOutput) SetMultiRegionEnabled(v bool) *RestoreEventDataStoreOutput { - s.MultiRegionEnabled = &v - return s +// SetMultiRegionEnabled sets the MultiRegionEnabled field's value. +func (s *RestoreEventDataStoreOutput) SetMultiRegionEnabled(v bool) *RestoreEventDataStoreOutput { + s.MultiRegionEnabled = &v + return s +} + +// SetName sets the Name field's value. +func (s *RestoreEventDataStoreOutput) SetName(v string) *RestoreEventDataStoreOutput { + s.Name = &v + return s +} + +// SetOrganizationEnabled sets the OrganizationEnabled field's value. +func (s *RestoreEventDataStoreOutput) SetOrganizationEnabled(v bool) *RestoreEventDataStoreOutput { + s.OrganizationEnabled = &v + return s +} + +// SetRetentionPeriod sets the RetentionPeriod field's value. +func (s *RestoreEventDataStoreOutput) SetRetentionPeriod(v int64) *RestoreEventDataStoreOutput { + s.RetentionPeriod = &v + return s +} + +// SetStatus sets the Status field's value. +func (s *RestoreEventDataStoreOutput) SetStatus(v string) *RestoreEventDataStoreOutput { + s.Status = &v + return s +} + +// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. +func (s *RestoreEventDataStoreOutput) SetTerminationProtectionEnabled(v bool) *RestoreEventDataStoreOutput { + s.TerminationProtectionEnabled = &v + return s +} + +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *RestoreEventDataStoreOutput) SetUpdatedTimestamp(v time.Time) *RestoreEventDataStoreOutput { + s.UpdatedTimestamp = &v + return s +} + +// This exception is thrown when the specified S3 bucket does not exist. +type S3BucketDoesNotExistException struct { + _ struct{} `type:"structure"` + RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + + Message_ *string `locationName:"message" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s S3BucketDoesNotExistException) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s S3BucketDoesNotExistException) GoString() string { + return s.String() +} + +func newErrorS3BucketDoesNotExistException(v protocol.ResponseMetadata) error { + return &S3BucketDoesNotExistException{ + RespMetadata: v, + } +} + +// Code returns the exception type name. +func (s *S3BucketDoesNotExistException) Code() string { + return "S3BucketDoesNotExistException" +} + +// Message returns the exception's message. +func (s *S3BucketDoesNotExistException) Message() string { + if s.Message_ != nil { + return *s.Message_ + } + return "" +} + +// OrigErr always returns nil, satisfies awserr.Error interface. +func (s *S3BucketDoesNotExistException) OrigErr() error { + return nil +} + +func (s *S3BucketDoesNotExistException) Error() string { + return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +} + +// Status code returns the HTTP status code for the request's response error. +func (s *S3BucketDoesNotExistException) StatusCode() int { + return s.RespMetadata.StatusCode +} + +// RequestID returns the service's response RequestID for request. +func (s *S3BucketDoesNotExistException) RequestID() string { + return s.RespMetadata.RequestID +} + +// The settings for the source S3 bucket. +type S3ImportSource struct { + _ struct{} `type:"structure"` + + // The IAM ARN role used to access the source S3 bucket. + // + // S3BucketAccessRoleArn is a required field + S3BucketAccessRoleArn *string `type:"string" required:"true"` + + // The region associated with the source S3 bucket. + // + // S3BucketRegion is a required field + S3BucketRegion *string `type:"string" required:"true"` + + // The URI for the source S3 bucket. + // + // S3LocationUri is a required field + S3LocationUri *string `type:"string" required:"true"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s S3ImportSource) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s S3ImportSource) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *S3ImportSource) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "S3ImportSource"} + if s.S3BucketAccessRoleArn == nil { + invalidParams.Add(request.NewErrParamRequired("S3BucketAccessRoleArn")) + } + if s.S3BucketRegion == nil { + invalidParams.Add(request.NewErrParamRequired("S3BucketRegion")) + } + if s.S3LocationUri == nil { + invalidParams.Add(request.NewErrParamRequired("S3LocationUri")) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetS3BucketAccessRoleArn sets the S3BucketAccessRoleArn field's value. +func (s *S3ImportSource) SetS3BucketAccessRoleArn(v string) *S3ImportSource { + s.S3BucketAccessRoleArn = &v + return s +} + +// SetS3BucketRegion sets the S3BucketRegion field's value. +func (s *S3ImportSource) SetS3BucketRegion(v string) *S3ImportSource { + s.S3BucketRegion = &v + return s +} + +// SetS3LocationUri sets the S3LocationUri field's value. +func (s *S3ImportSource) SetS3LocationUri(v string) *S3ImportSource { + s.S3LocationUri = &v + return s +} + +// Contains configuration information about the service-linked channel. +type SourceConfig struct { + _ struct{} `type:"structure"` + + // The advanced event selectors configured for the service-linked channel. + AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` + + // Specifies whether the service-linked channel applies to one region or all + // regions. + ApplyToAllRegions *bool `type:"boolean"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s SourceConfig) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s SourceConfig) GoString() string { + return s.String() } -// SetName sets the Name field's value. -func (s *RestoreEventDataStoreOutput) SetName(v string) *RestoreEventDataStoreOutput { - s.Name = &v +// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. +func (s *SourceConfig) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *SourceConfig { + s.AdvancedEventSelectors = v return s } -// SetOrganizationEnabled sets the OrganizationEnabled field's value. -func (s *RestoreEventDataStoreOutput) SetOrganizationEnabled(v bool) *RestoreEventDataStoreOutput { - s.OrganizationEnabled = &v +// SetApplyToAllRegions sets the ApplyToAllRegions field's value. +func (s *SourceConfig) SetApplyToAllRegions(v bool) *SourceConfig { + s.ApplyToAllRegions = &v return s } -// SetRetentionPeriod sets the RetentionPeriod field's value. -func (s *RestoreEventDataStoreOutput) SetRetentionPeriod(v int64) *RestoreEventDataStoreOutput { - s.RetentionPeriod = &v - return s -} +type StartImportInput struct { + _ struct{} `type:"structure"` -// SetStatus sets the Status field's value. -func (s *RestoreEventDataStoreOutput) SetStatus(v string) *RestoreEventDataStoreOutput { - s.Status = &v - return s -} + // The destination event data store. Use this parameter for a new import. + Destinations []*string `min:"1" type:"list"` -// SetTerminationProtectionEnabled sets the TerminationProtectionEnabled field's value. -func (s *RestoreEventDataStoreOutput) SetTerminationProtectionEnabled(v bool) *RestoreEventDataStoreOutput { - s.TerminationProtectionEnabled = &v - return s -} + // Use with StartEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + EndEventTime *time.Time `type:"timestamp"` -// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. -func (s *RestoreEventDataStoreOutput) SetUpdatedTimestamp(v time.Time) *RestoreEventDataStoreOutput { - s.UpdatedTimestamp = &v - return s -} + // The ID of the import. Use this parameter when you are retrying an import. + ImportId *string `min:"36" type:"string"` -// This exception is thrown when the specified S3 bucket does not exist. -type S3BucketDoesNotExistException struct { - _ struct{} `type:"structure"` - RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"` + // The source S3 bucket for the import. Use this parameter for a new import. + ImportSource *ImportSource `type:"structure"` - Message_ *string `locationName:"message" type:"string"` + // Use with EndEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + StartEventTime *time.Time `type:"timestamp"` } // String returns the string representation. @@ -12585,7 +14354,7 @@ type S3BucketDoesNotExistException struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s S3BucketDoesNotExistException) String() string { +func (s StartImportInput) String() string { return awsutil.Prettify(s) } @@ -12594,58 +14363,91 @@ func (s S3BucketDoesNotExistException) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s S3BucketDoesNotExistException) GoString() string { +func (s StartImportInput) GoString() string { return s.String() } -func newErrorS3BucketDoesNotExistException(v protocol.ResponseMetadata) error { - return &S3BucketDoesNotExistException{ - RespMetadata: v, +// Validate inspects the fields of the type to determine if they are valid. +func (s *StartImportInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "StartImportInput"} + if s.Destinations != nil && len(s.Destinations) < 1 { + invalidParams.Add(request.NewErrParamMinLen("Destinations", 1)) + } + if s.ImportId != nil && len(*s.ImportId) < 36 { + invalidParams.Add(request.NewErrParamMinLen("ImportId", 36)) + } + if s.ImportSource != nil { + if err := s.ImportSource.Validate(); err != nil { + invalidParams.AddNested("ImportSource", err.(request.ErrInvalidParams)) + } } -} -// Code returns the exception type name. -func (s *S3BucketDoesNotExistException) Code() string { - return "S3BucketDoesNotExistException" + if invalidParams.Len() > 0 { + return invalidParams + } + return nil } -// Message returns the exception's message. -func (s *S3BucketDoesNotExistException) Message() string { - if s.Message_ != nil { - return *s.Message_ - } - return "" +// SetDestinations sets the Destinations field's value. +func (s *StartImportInput) SetDestinations(v []*string) *StartImportInput { + s.Destinations = v + return s } -// OrigErr always returns nil, satisfies awserr.Error interface. -func (s *S3BucketDoesNotExistException) OrigErr() error { - return nil +// SetEndEventTime sets the EndEventTime field's value. +func (s *StartImportInput) SetEndEventTime(v time.Time) *StartImportInput { + s.EndEventTime = &v + return s } -func (s *S3BucketDoesNotExistException) Error() string { - return fmt.Sprintf("%s: %s", s.Code(), s.Message()) +// SetImportId sets the ImportId field's value. +func (s *StartImportInput) SetImportId(v string) *StartImportInput { + s.ImportId = &v + return s } -// Status code returns the HTTP status code for the request's response error. -func (s *S3BucketDoesNotExistException) StatusCode() int { - return s.RespMetadata.StatusCode +// SetImportSource sets the ImportSource field's value. +func (s *StartImportInput) SetImportSource(v *ImportSource) *StartImportInput { + s.ImportSource = v + return s } -// RequestID returns the service's response RequestID for request. -func (s *S3BucketDoesNotExistException) RequestID() string { - return s.RespMetadata.RequestID +// SetStartEventTime sets the StartEventTime field's value. +func (s *StartImportInput) SetStartEventTime(v time.Time) *StartImportInput { + s.StartEventTime = &v + return s } -// Contains configuration information about the service-linked channel. -type SourceConfig struct { +type StartImportOutput struct { _ struct{} `type:"structure"` - // The advanced event selectors configured for the service-linked channel. - AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` + // The timestamp for the import's creation. + CreatedTimestamp *time.Time `type:"timestamp"` - // Specifies whether the service-linked channel applies to one region or all - // regions. - ApplyToAllRegions *bool `type:"boolean"` + // The destination event data store. + Destinations []*string `min:"1" type:"list"` + + // Used with StartEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + EndEventTime *time.Time `type:"timestamp"` + + // The ID of the import. + ImportId *string `min:"36" type:"string"` + + // The source S3 bucket. + ImportSource *ImportSource `type:"structure"` + + // Shows the status of the import after a StartImport request. An import finishes + // with a status of COMPLETED if there were no failures, or FAILED if there + // were failures. + ImportStatus *string `type:"string" enum:"ImportStatus"` + + // Used with EndEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + StartEventTime *time.Time `type:"timestamp"` + + // The timestamp of the import's last update, if applicable. + UpdatedTimestamp *time.Time `type:"timestamp"` } // String returns the string representation. @@ -12653,7 +14455,7 @@ type SourceConfig struct { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s SourceConfig) String() string { +func (s StartImportOutput) String() string { return awsutil.Prettify(s) } @@ -12662,19 +14464,55 @@ func (s SourceConfig) String() string { // API parameter values that are decorated as "sensitive" in the API will not // be included in the string output. The member name will be present, but the // value will be replaced with "sensitive". -func (s SourceConfig) GoString() string { +func (s StartImportOutput) GoString() string { return s.String() } -// SetAdvancedEventSelectors sets the AdvancedEventSelectors field's value. -func (s *SourceConfig) SetAdvancedEventSelectors(v []*AdvancedEventSelector) *SourceConfig { - s.AdvancedEventSelectors = v +// SetCreatedTimestamp sets the CreatedTimestamp field's value. +func (s *StartImportOutput) SetCreatedTimestamp(v time.Time) *StartImportOutput { + s.CreatedTimestamp = &v return s } -// SetApplyToAllRegions sets the ApplyToAllRegions field's value. -func (s *SourceConfig) SetApplyToAllRegions(v bool) *SourceConfig { - s.ApplyToAllRegions = &v +// SetDestinations sets the Destinations field's value. +func (s *StartImportOutput) SetDestinations(v []*string) *StartImportOutput { + s.Destinations = v + return s +} + +// SetEndEventTime sets the EndEventTime field's value. +func (s *StartImportOutput) SetEndEventTime(v time.Time) *StartImportOutput { + s.EndEventTime = &v + return s +} + +// SetImportId sets the ImportId field's value. +func (s *StartImportOutput) SetImportId(v string) *StartImportOutput { + s.ImportId = &v + return s +} + +// SetImportSource sets the ImportSource field's value. +func (s *StartImportOutput) SetImportSource(v *ImportSource) *StartImportOutput { + s.ImportSource = v + return s +} + +// SetImportStatus sets the ImportStatus field's value. +func (s *StartImportOutput) SetImportStatus(v string) *StartImportOutput { + s.ImportStatus = &v + return s +} + +// SetStartEventTime sets the StartEventTime field's value. +func (s *StartImportOutput) SetStartEventTime(v time.Time) *StartImportOutput { + s.StartEventTime = &v + return s +} + +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *StartImportOutput) SetUpdatedTimestamp(v time.Time) *StartImportOutput { + s.UpdatedTimestamp = &v return s } @@ -12834,6 +14672,160 @@ func (s *StartQueryOutput) SetQueryId(v string) *StartQueryOutput { return s } +type StopImportInput struct { + _ struct{} `type:"structure"` + + // The ID of the import. + // + // ImportId is a required field + ImportId *string `min:"36" type:"string" required:"true"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s StopImportInput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s StopImportInput) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *StopImportInput) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "StopImportInput"} + if s.ImportId == nil { + invalidParams.Add(request.NewErrParamRequired("ImportId")) + } + if s.ImportId != nil && len(*s.ImportId) < 36 { + invalidParams.Add(request.NewErrParamMinLen("ImportId", 36)) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetImportId sets the ImportId field's value. +func (s *StopImportInput) SetImportId(v string) *StopImportInput { + s.ImportId = &v + return s +} + +type StopImportOutput struct { + _ struct{} `type:"structure"` + + // The timestamp of the import's creation. + CreatedTimestamp *time.Time `type:"timestamp"` + + // The destination event data store. + Destinations []*string `min:"1" type:"list"` + + // Used with StartEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + EndEventTime *time.Time `type:"timestamp"` + + // The ID for the import. + ImportId *string `min:"36" type:"string"` + + // The source S3 bucket. + ImportSource *ImportSource `type:"structure"` + + // Returns information on the stopped import. + ImportStatistics *ImportStatistics `type:"structure"` + + // The status of the import. + ImportStatus *string `type:"string" enum:"ImportStatus"` + + // Used with EndEventTime to bound a StartImport request, and limit imported + // trail events to only those events logged within a specified time period. + StartEventTime *time.Time `type:"timestamp"` + + // The timestamp of the import's last update. + UpdatedTimestamp *time.Time `type:"timestamp"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s StopImportOutput) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s StopImportOutput) GoString() string { + return s.String() +} + +// SetCreatedTimestamp sets the CreatedTimestamp field's value. +func (s *StopImportOutput) SetCreatedTimestamp(v time.Time) *StopImportOutput { + s.CreatedTimestamp = &v + return s +} + +// SetDestinations sets the Destinations field's value. +func (s *StopImportOutput) SetDestinations(v []*string) *StopImportOutput { + s.Destinations = v + return s +} + +// SetEndEventTime sets the EndEventTime field's value. +func (s *StopImportOutput) SetEndEventTime(v time.Time) *StopImportOutput { + s.EndEventTime = &v + return s +} + +// SetImportId sets the ImportId field's value. +func (s *StopImportOutput) SetImportId(v string) *StopImportOutput { + s.ImportId = &v + return s +} + +// SetImportSource sets the ImportSource field's value. +func (s *StopImportOutput) SetImportSource(v *ImportSource) *StopImportOutput { + s.ImportSource = v + return s +} + +// SetImportStatistics sets the ImportStatistics field's value. +func (s *StopImportOutput) SetImportStatistics(v *ImportStatistics) *StopImportOutput { + s.ImportStatistics = v + return s +} + +// SetImportStatus sets the ImportStatus field's value. +func (s *StopImportOutput) SetImportStatus(v string) *StopImportOutput { + s.ImportStatus = &v + return s +} + +// SetStartEventTime sets the StartEventTime field's value. +func (s *StopImportOutput) SetStartEventTime(v time.Time) *StopImportOutput { + s.StartEventTime = &v + return s +} + +// SetUpdatedTimestamp sets the UpdatedTimestamp field's value. +func (s *StopImportOutput) SetUpdatedTimestamp(v time.Time) *StopImportOutput { + s.UpdatedTimestamp = &v + return s +} + // Passes the request to CloudTrail to stop logging Amazon Web Services API // calls for the specified account. type StopLoggingInput struct { @@ -13535,6 +15527,8 @@ type UpdateEventDataStoreInput struct { _ struct{} `type:"structure"` // The advanced event selectors used to select events for the event data store. + // You can configure up to five advanced event selectors for each event data + // store. AdvancedEventSelectors []*AdvancedEventSelector `type:"list"` // The ARN (or the ID suffix of the ARN) of the event data store that you want @@ -14177,6 +16171,54 @@ func EventDataStoreStatus_Values() []string { } } +const ( + // ImportFailureStatusFailed is a ImportFailureStatus enum value + ImportFailureStatusFailed = "FAILED" + + // ImportFailureStatusRetry is a ImportFailureStatus enum value + ImportFailureStatusRetry = "RETRY" + + // ImportFailureStatusSucceeded is a ImportFailureStatus enum value + ImportFailureStatusSucceeded = "SUCCEEDED" +) + +// ImportFailureStatus_Values returns all elements of the ImportFailureStatus enum +func ImportFailureStatus_Values() []string { + return []string{ + ImportFailureStatusFailed, + ImportFailureStatusRetry, + ImportFailureStatusSucceeded, + } +} + +const ( + // ImportStatusInitializing is a ImportStatus enum value + ImportStatusInitializing = "INITIALIZING" + + // ImportStatusInProgress is a ImportStatus enum value + ImportStatusInProgress = "IN_PROGRESS" + + // ImportStatusFailed is a ImportStatus enum value + ImportStatusFailed = "FAILED" + + // ImportStatusStopped is a ImportStatus enum value + ImportStatusStopped = "STOPPED" + + // ImportStatusCompleted is a ImportStatus enum value + ImportStatusCompleted = "COMPLETED" +) + +// ImportStatus_Values returns all elements of the ImportStatus enum +func ImportStatus_Values() []string { + return []string{ + ImportStatusInitializing, + ImportStatusInProgress, + ImportStatusFailed, + ImportStatusStopped, + ImportStatusCompleted, + } +} + const ( // InsightTypeApiCallRateInsight is a InsightType enum value InsightTypeApiCallRateInsight = "ApiCallRateInsight" diff --git a/service/cloudtrail/cloudtrailiface/interface.go b/service/cloudtrail/cloudtrailiface/interface.go index ed888b466ea..90f0613ece0 100644 --- a/service/cloudtrail/cloudtrailiface/interface.go +++ b/service/cloudtrail/cloudtrailiface/interface.go @@ -104,6 +104,10 @@ type CloudTrailAPI interface { GetEventSelectorsWithContext(aws.Context, *cloudtrail.GetEventSelectorsInput, ...request.Option) (*cloudtrail.GetEventSelectorsOutput, error) GetEventSelectorsRequest(*cloudtrail.GetEventSelectorsInput) (*request.Request, *cloudtrail.GetEventSelectorsOutput) + GetImport(*cloudtrail.GetImportInput) (*cloudtrail.GetImportOutput, error) + GetImportWithContext(aws.Context, *cloudtrail.GetImportInput, ...request.Option) (*cloudtrail.GetImportOutput, error) + GetImportRequest(*cloudtrail.GetImportInput) (*request.Request, *cloudtrail.GetImportOutput) + GetInsightSelectors(*cloudtrail.GetInsightSelectorsInput) (*cloudtrail.GetInsightSelectorsOutput, error) GetInsightSelectorsWithContext(aws.Context, *cloudtrail.GetInsightSelectorsInput, ...request.Option) (*cloudtrail.GetInsightSelectorsOutput, error) GetInsightSelectorsRequest(*cloudtrail.GetInsightSelectorsInput) (*request.Request, *cloudtrail.GetInsightSelectorsOutput) @@ -137,6 +141,20 @@ type CloudTrailAPI interface { ListEventDataStoresPages(*cloudtrail.ListEventDataStoresInput, func(*cloudtrail.ListEventDataStoresOutput, bool) bool) error ListEventDataStoresPagesWithContext(aws.Context, *cloudtrail.ListEventDataStoresInput, func(*cloudtrail.ListEventDataStoresOutput, bool) bool, ...request.Option) error + ListImportFailures(*cloudtrail.ListImportFailuresInput) (*cloudtrail.ListImportFailuresOutput, error) + ListImportFailuresWithContext(aws.Context, *cloudtrail.ListImportFailuresInput, ...request.Option) (*cloudtrail.ListImportFailuresOutput, error) + ListImportFailuresRequest(*cloudtrail.ListImportFailuresInput) (*request.Request, *cloudtrail.ListImportFailuresOutput) + + ListImportFailuresPages(*cloudtrail.ListImportFailuresInput, func(*cloudtrail.ListImportFailuresOutput, bool) bool) error + ListImportFailuresPagesWithContext(aws.Context, *cloudtrail.ListImportFailuresInput, func(*cloudtrail.ListImportFailuresOutput, bool) bool, ...request.Option) error + + ListImports(*cloudtrail.ListImportsInput) (*cloudtrail.ListImportsOutput, error) + ListImportsWithContext(aws.Context, *cloudtrail.ListImportsInput, ...request.Option) (*cloudtrail.ListImportsOutput, error) + ListImportsRequest(*cloudtrail.ListImportsInput) (*request.Request, *cloudtrail.ListImportsOutput) + + ListImportsPages(*cloudtrail.ListImportsInput, func(*cloudtrail.ListImportsOutput, bool) bool) error + ListImportsPagesWithContext(aws.Context, *cloudtrail.ListImportsInput, func(*cloudtrail.ListImportsOutput, bool) bool, ...request.Option) error + ListPublicKeys(*cloudtrail.ListPublicKeysInput) (*cloudtrail.ListPublicKeysOutput, error) ListPublicKeysWithContext(aws.Context, *cloudtrail.ListPublicKeysInput, ...request.Option) (*cloudtrail.ListPublicKeysOutput, error) ListPublicKeysRequest(*cloudtrail.ListPublicKeysInput) (*request.Request, *cloudtrail.ListPublicKeysOutput) @@ -188,6 +206,10 @@ type CloudTrailAPI interface { RestoreEventDataStoreWithContext(aws.Context, *cloudtrail.RestoreEventDataStoreInput, ...request.Option) (*cloudtrail.RestoreEventDataStoreOutput, error) RestoreEventDataStoreRequest(*cloudtrail.RestoreEventDataStoreInput) (*request.Request, *cloudtrail.RestoreEventDataStoreOutput) + StartImport(*cloudtrail.StartImportInput) (*cloudtrail.StartImportOutput, error) + StartImportWithContext(aws.Context, *cloudtrail.StartImportInput, ...request.Option) (*cloudtrail.StartImportOutput, error) + StartImportRequest(*cloudtrail.StartImportInput) (*request.Request, *cloudtrail.StartImportOutput) + StartLogging(*cloudtrail.StartLoggingInput) (*cloudtrail.StartLoggingOutput, error) StartLoggingWithContext(aws.Context, *cloudtrail.StartLoggingInput, ...request.Option) (*cloudtrail.StartLoggingOutput, error) StartLoggingRequest(*cloudtrail.StartLoggingInput) (*request.Request, *cloudtrail.StartLoggingOutput) @@ -196,6 +218,10 @@ type CloudTrailAPI interface { StartQueryWithContext(aws.Context, *cloudtrail.StartQueryInput, ...request.Option) (*cloudtrail.StartQueryOutput, error) StartQueryRequest(*cloudtrail.StartQueryInput) (*request.Request, *cloudtrail.StartQueryOutput) + StopImport(*cloudtrail.StopImportInput) (*cloudtrail.StopImportOutput, error) + StopImportWithContext(aws.Context, *cloudtrail.StopImportInput, ...request.Option) (*cloudtrail.StopImportOutput, error) + StopImportRequest(*cloudtrail.StopImportInput) (*request.Request, *cloudtrail.StopImportOutput) + StopLogging(*cloudtrail.StopLoggingInput) (*cloudtrail.StopLoggingOutput, error) StopLoggingWithContext(aws.Context, *cloudtrail.StopLoggingInput, ...request.Option) (*cloudtrail.StopLoggingOutput, error) StopLoggingRequest(*cloudtrail.StopLoggingInput) (*request.Request, *cloudtrail.StopLoggingOutput) diff --git a/service/cloudtrail/errors.go b/service/cloudtrail/errors.go index 5a91c5d8a5a..341d6f6328e 100644 --- a/service/cloudtrail/errors.go +++ b/service/cloudtrail/errors.go @@ -26,6 +26,13 @@ const ( // and Prepare For Creating a Trail For Your Organization (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html). ErrCodeAccessNotEnabledException = "CloudTrailAccessNotEnabledException" + // ErrCodeAccountHasOngoingImportException for service response error code + // "AccountHasOngoingImportException". + // + // This exception is thrown when you start a new import and a previous import + // is still in progress. + ErrCodeAccountHasOngoingImportException = "AccountHasOngoingImportException" + // ErrCodeChannelARNInvalidException for service response error code // "ChannelARNInvalidException". // @@ -76,6 +83,13 @@ const ( // An event data store with that name already exists. ErrCodeEventDataStoreAlreadyExistsException = "EventDataStoreAlreadyExistsException" + // ErrCodeEventDataStoreHasOngoingImportException for service response error code + // "EventDataStoreHasOngoingImportException". + // + // This exception is thrown when you try to update or delete an event data store + // that currently has an import in progress. + ErrCodeEventDataStoreHasOngoingImportException = "EventDataStoreHasOngoingImportException" + // ErrCodeEventDataStoreMaxLimitExceededException for service response error code // "EventDataStoreMaxLimitExceededException". // @@ -95,6 +109,12 @@ const ( // enabled for it. ErrCodeEventDataStoreTerminationProtectedException = "EventDataStoreTerminationProtectedException" + // ErrCodeImportNotFoundException for service response error code + // "ImportNotFoundException". + // + // The specified import was not found. + ErrCodeImportNotFoundException = "ImportNotFoundException" + // ErrCodeInactiveEventDataStoreException for service response error code // "InactiveEventDataStoreException". // @@ -171,6 +191,13 @@ const ( // EventCategory. ErrCodeInvalidEventCategoryException = "InvalidEventCategoryException" + // ErrCodeInvalidEventDataStoreCategoryException for service response error code + // "InvalidEventDataStoreCategoryException". + // + // This exception is thrown when the event data store category is not valid + // for the import. + ErrCodeInvalidEventDataStoreCategoryException = "InvalidEventDataStoreCategoryException" + // ErrCodeInvalidEventDataStoreStatusException for service response error code // "InvalidEventDataStoreStatusException". // @@ -213,6 +240,13 @@ const ( // other than the region in which the trail was created. ErrCodeInvalidHomeRegionException = "InvalidHomeRegionException" + // ErrCodeInvalidImportSourceException for service response error code + // "InvalidImportSourceException". + // + // This exception is thrown when the provided source S3 bucket is not valid + // for import. + ErrCodeInvalidImportSourceException = "InvalidImportSourceException" + // ErrCodeInvalidInsightSelectorsException for service response error code // "InvalidInsightSelectorsException". // @@ -457,6 +491,7 @@ const ( var exceptionFromCode = map[string]func(protocol.ResponseMetadata) error{ "CloudTrailARNInvalidException": newErrorARNInvalidException, "CloudTrailAccessNotEnabledException": newErrorAccessNotEnabledException, + "AccountHasOngoingImportException": newErrorAccountHasOngoingImportException, "ChannelARNInvalidException": newErrorChannelARNInvalidException, "ChannelNotFoundException": newErrorChannelNotFoundException, "CloudTrailInvalidClientTokenIdException": newErrorCloudTrailInvalidClientTokenIdException, @@ -464,9 +499,11 @@ var exceptionFromCode = map[string]func(protocol.ResponseMetadata) error{ "ConflictException": newErrorConflictException, "EventDataStoreARNInvalidException": newErrorEventDataStoreARNInvalidException, "EventDataStoreAlreadyExistsException": newErrorEventDataStoreAlreadyExistsException, + "EventDataStoreHasOngoingImportException": newErrorEventDataStoreHasOngoingImportException, "EventDataStoreMaxLimitExceededException": newErrorEventDataStoreMaxLimitExceededException, "EventDataStoreNotFoundException": newErrorEventDataStoreNotFoundException, "EventDataStoreTerminationProtectedException": newErrorEventDataStoreTerminationProtectedException, + "ImportNotFoundException": newErrorImportNotFoundException, "InactiveEventDataStoreException": newErrorInactiveEventDataStoreException, "InactiveQueryException": newErrorInactiveQueryException, "InsightNotEnabledException": newErrorInsightNotEnabledException, @@ -478,9 +515,11 @@ var exceptionFromCode = map[string]func(protocol.ResponseMetadata) error{ "InvalidCloudWatchLogsRoleArnException": newErrorInvalidCloudWatchLogsRoleArnException, "InvalidDateRangeException": newErrorInvalidDateRangeException, "InvalidEventCategoryException": newErrorInvalidEventCategoryException, + "InvalidEventDataStoreCategoryException": newErrorInvalidEventDataStoreCategoryException, "InvalidEventDataStoreStatusException": newErrorInvalidEventDataStoreStatusException, "InvalidEventSelectorsException": newErrorInvalidEventSelectorsException, "InvalidHomeRegionException": newErrorInvalidHomeRegionException, + "InvalidImportSourceException": newErrorInvalidImportSourceException, "InvalidInsightSelectorsException": newErrorInvalidInsightSelectorsException, "InvalidKmsKeyIdException": newErrorInvalidKmsKeyIdException, "InvalidLookupAttributesException": newErrorInvalidLookupAttributesException, diff --git a/service/ec2/api.go b/service/ec2/api.go index 5ce17212aa7..9e7a2a2c584 100644 --- a/service/ec2/api.go +++ b/service/ec2/api.go @@ -21506,11 +21506,6 @@ func (c *EC2) DescribeInstancesRequest(input *DescribeInstancesInput) (req *requ // If you describe instances and specify only instance IDs that are in an unaffected // zone, the call works normally. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon EC2 User Guide. -// // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. @@ -25491,11 +25486,6 @@ func (c *EC2) DescribeReservedInstancesRequest(input *DescribeReservedInstancesI // For more information about Reserved Instances, see Reserved Instances (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/concepts-on-demand-reserved-instances.html) // in the Amazon EC2 User Guide. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. -// // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. @@ -25675,11 +25665,6 @@ func (c *EC2) DescribeReservedInstancesModificationsRequest(input *DescribeReser // For more information, see Modifying Reserved Instances (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ri-modifying.html) // in the Amazon EC2 User Guide. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. -// // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. @@ -25821,11 +25806,6 @@ func (c *EC2) DescribeReservedInstancesOfferingsRequest(input *DescribeReservedI // For more information, see Reserved Instance Marketplace (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ri-market-general.html) // in the Amazon EC2 User Guide. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. -// // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. @@ -26102,11 +26082,6 @@ func (c *EC2) DescribeScheduledInstanceAvailabilityRequest(input *DescribeSchedu // After you find a schedule that meets your needs, call PurchaseScheduledInstances // to purchase Scheduled Instances with that schedule. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. -// // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. @@ -26237,11 +26212,6 @@ func (c *EC2) DescribeScheduledInstancesRequest(input *DescribeScheduledInstance // // Describes the specified Scheduled Instances or all your Scheduled Instances. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. -// // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. @@ -42314,17 +42284,16 @@ func (c *EC2) ModifyReservedInstancesRequest(input *ModifyReservedInstancesInput // ModifyReservedInstances API operation for Amazon Elastic Compute Cloud. // -// Modifies the Availability Zone, instance count, instance type, or network -// platform (EC2-Classic or EC2-VPC) of your Reserved Instances. The Reserved -// Instances to be modified must be identical, except for Availability Zone, -// network platform, and instance type. +// Modifies the configuration of your Reserved Instances, such as the Availability +// Zone, instance count, or instance type. The Reserved Instances to be modified +// must be identical, except for Availability Zone, network platform, and instance +// type. // // For more information, see Modifying Reserved Instances (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ri-modifying.html) // in the Amazon EC2 User Guide. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) +// We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic +// to a VPC. For more information, see Migrate from EC2-Classic to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) // in the Amazon Elastic Compute Cloud User Guide. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions @@ -45015,6 +44984,10 @@ func (c *EC2) PurchaseReservedInstancesOfferingRequest(input *PurchaseReservedIn // and Reserved Instance Marketplace (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ri-market-general.html) // in the Amazon EC2 User Guide. // +// We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic +// to a VPC. For more information, see Migrate from EC2-Classic to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) +// in the Amazon Elastic Compute Cloud User Guide. +// // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. @@ -45086,6 +45059,8 @@ func (c *EC2) PurchaseScheduledInstancesRequest(input *PurchaseScheduledInstance // PurchaseScheduledInstances API operation for Amazon Elastic Compute Cloud. // +// You can no longer purchase Scheduled Instances. +// // Purchases the Scheduled Instances with the specified schedule. // // Scheduled Instances enable you to purchase Amazon EC2 compute capacity by @@ -46909,9 +46884,8 @@ func (c *EC2) RequestSpotInstancesRequest(input *RequestSpotInstancesInput) (req // see Which is the best Spot request method to use? (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-best-practices.html#which-spot-request-method-to-use) // in the Amazon EC2 User Guide for Linux Instances. // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) +// We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic +// to a VPC. For more information, see Migrate from EC2-Classic to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) // in the Amazon EC2 User Guide for Linux Instances. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions @@ -48224,9 +48198,8 @@ func (c *EC2) RunInstancesRequest(input *RunInstancesInput) (req *request.Reques // (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_InstanceStraightToTerminated.html), // and Troubleshooting connecting to your instance (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesConnecting.html). // -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) +// We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic +// to a VPC. For more information, see Migrate from EC2-Classic to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) // in the Amazon EC2 User Guide. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions @@ -57689,6 +57662,50 @@ func (s *CancelledSpotInstanceRequest) SetState(v string) *CancelledSpotInstance return s } +// Information about instance capacity usage for a Capacity Reservation. +type CapacityAllocation struct { + _ struct{} `type:"structure"` + + // The usage type. used indicates that the instance capacity is in use by instances + // that are running in the Capacity Reservation. + AllocationType *string `locationName:"allocationType" type:"string" enum:"AllocationType"` + + // The amount of instance capacity associated with the usage. For example a + // value of 4 indicates that instance capacity for 4 instances is currently + // in use. + Count *int64 `locationName:"count" type:"integer"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s CapacityAllocation) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s CapacityAllocation) GoString() string { + return s.String() +} + +// SetAllocationType sets the AllocationType field's value. +func (s *CapacityAllocation) SetAllocationType(v string) *CapacityAllocation { + s.AllocationType = &v + return s +} + +// SetCount sets the Count field's value. +func (s *CapacityAllocation) SetCount(v int64) *CapacityAllocation { + s.Count = &v + return s +} + // Describes a Capacity Reservation. type CapacityReservation struct { _ struct{} `type:"structure"` @@ -57703,6 +57720,9 @@ type CapacityReservation struct { // in the Capacity Reservation. AvailableInstanceCount *int64 `locationName:"availableInstanceCount" type:"integer"` + // Information about instance capacity usage. + CapacityAllocations []*CapacityAllocation `locationName:"capacityAllocationSet" locationNameList:"item" type:"list"` + // The Amazon Resource Name (ARN) of the Capacity Reservation. CapacityReservationArn *string `locationName:"capacityReservationArn" type:"string"` @@ -57855,6 +57875,12 @@ func (s *CapacityReservation) SetAvailableInstanceCount(v int64) *CapacityReserv return s } +// SetCapacityAllocations sets the CapacityAllocations field's value. +func (s *CapacityReservation) SetCapacityAllocations(v []*CapacityAllocation) *CapacityReservation { + s.CapacityAllocations = v + return s +} + // SetCapacityReservationArn sets the CapacityReservationArn field's value. func (s *CapacityReservation) SetCapacityReservationArn(v string) *CapacityReservation { s.CapacityReservationArn = &v @@ -107753,12 +107779,12 @@ type FleetLaunchTemplateOverrides struct { // The attributes for the instance types. When you specify instance attributes, // Amazon EC2 will identify instance types with those attributes. // - // If you specify InstanceRequirements, you can't specify InstanceTypes. + // If you specify InstanceRequirements, you can't specify InstanceType. InstanceRequirements *InstanceRequirements `locationName:"instanceRequirements" type:"structure"` // The instance type. // - // If you specify InstanceTypes, you can't specify InstanceRequirements. + // If you specify InstanceType, you can't specify InstanceRequirements. InstanceType *string `locationName:"instanceType" type:"string" enum:"InstanceType"` // The maximum price per unit hour that you are willing to pay for a Spot Instance. @@ -107873,12 +107899,12 @@ type FleetLaunchTemplateOverridesRequest struct { // The attributes for the instance types. When you specify instance attributes, // Amazon EC2 will identify instance types with those attributes. // - // If you specify InstanceRequirements, you can't specify InstanceTypes. + // If you specify InstanceRequirements, you can't specify InstanceType. InstanceRequirements *InstanceRequirementsRequest `type:"structure"` // The instance type. // - // If you specify InstanceTypes, you can't specify InstanceRequirements. + // If you specify InstanceType, you can't specify InstanceRequirements. InstanceType *string `type:"string" enum:"InstanceType"` // The maximum price per unit hour that you are willing to pay for a Spot Instance. @@ -118703,12 +118729,12 @@ type InstanceMetadataOptionsRequest struct { // The state of token usage for your instance metadata requests. // // If the state is optional, you can choose to retrieve instance metadata with - // or without a signed token header on your request. If you retrieve the IAM - // role credentials without a token, the version 1.0 role credentials are returned. - // If you retrieve the IAM role credentials using a valid signed token, the + // or without a session token on your request. If you retrieve the IAM role + // credentials without a token, the version 1.0 role credentials are returned. + // If you retrieve the IAM role credentials using a valid session token, the // version 2.0 role credentials are returned. // - // If the state is required, you must send a signed token header with any instance + // If the state is required, you must send a session token with any instance // metadata retrieval requests. In this state, retrieving the IAM role credentials // always returns the version 2.0 credentials; the version 1.0 credentials are // not available. @@ -118798,13 +118824,13 @@ type InstanceMetadataOptionsResponse struct { // The state of token usage for your instance metadata requests. // // If the state is optional, you can choose to retrieve instance metadata with - // or without a signed token header on your request. If you retrieve the IAM - // role credentials without a token, the version 1.0 role credentials are returned. - // If you retrieve the IAM role credentials using a valid signed token, the + // or without a session token on your request. If you retrieve the IAM role + // credentials without a token, the version 1.0 role credentials are returned. + // If you retrieve the IAM role credentials using a valid session token, the // version 2.0 role credentials are returned. // - // If the state is required, you must send a signed token header with any instance - // metadata retrieval requests. In this state, retrieving the IAM role credential + // If the state is required, you must send a session token with any instance + // metadata retrieval requests. In this state, retrieving the IAM role credentials // always returns the version 2.0 credentials; the version 1.0 credentials are // not available. // @@ -119562,12 +119588,12 @@ func (s *InstancePrivateIpAddress) SetPrivateIpAddress(v string) *InstancePrivat // The attributes for the instance types. When you specify instance attributes, // Amazon EC2 will identify instance types with these attributes. // -// When you specify multiple parameters, you get instance types that satisfy -// all of the specified parameters. If you specify multiple values for a parameter, +// When you specify multiple attributes, you get instance types that satisfy +// all of the specified attributes. If you specify multiple values for an attribute, // you get instance types that satisfy any of the specified values. // -// You must specify VCpuCount and MemoryMiB. All other parameters are optional. -// Any unspecified optional parameter is set to its default. +// You must specify VCpuCount and MemoryMiB. All other attributes are optional. +// Any unspecified optional attribute is set to its default. // // For more information, see Attribute-based instance type selection for EC2 // Fleet (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), @@ -119614,6 +119640,11 @@ type InstanceRequirements struct { // // * For instance types with Xilinx VU9P FPGAs, specify vu9p. // + // * For instance types with Amazon Web Services Inferentia GPUs, specify + // inferentia. + // + // * For instance types with NVIDIA GRID K520 GPUs, specify k520. + // // Default: Any accelerator AcceleratorNames []*string `locationName:"acceleratorNameSet" locationNameList:"item" type:"list" enum:"AcceleratorName"` @@ -119679,10 +119710,11 @@ type InstanceRequirements struct { // Default: Any manufacturer CpuManufacturers []*string `locationName:"cpuManufacturerSet" locationNameList:"item" type:"list" enum:"CpuManufacturer"` - // The instance types to exclude. You can use strings with one or more wild - // cards, represented by an asterisk (*), to exclude an instance type, size, - // or generation. The following are examples: m5.8xlarge, c5*.*, m5a.*, r*, - // *3*. + // The instance types to exclude. + // + // You can use strings with one or more wild cards, represented by an asterisk + // (*), to exclude an instance type, size, or generation. The following are + // examples: m5.8xlarge, c5*.*, m5a.*, r*, *3*. // // For example, if you specify c5*,Amazon EC2 will exclude the entire C5 instance // family, which includes all C5a and C5n instance types. If you specify m5a.*, @@ -119944,12 +119976,12 @@ func (s *InstanceRequirements) SetVCpuCount(v *VCpuCountRange) *InstanceRequirem // The attributes for the instance types. When you specify instance attributes, // Amazon EC2 will identify instance types with these attributes. // -// When you specify multiple parameters, you get instance types that satisfy -// all of the specified parameters. If you specify multiple values for a parameter, +// When you specify multiple attributes, you get instance types that satisfy +// all of the specified attributes. If you specify multiple values for an attribute, // you get instance types that satisfy any of the specified values. // -// You must specify VCpuCount and MemoryMiB. All other parameters are optional. -// Any unspecified optional parameter is set to its default. +// You must specify VCpuCount and MemoryMiB. All other attributes are optional. +// Any unspecified optional attribute is set to its default. // // For more information, see Attribute-based instance type selection for EC2 // Fleet (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), @@ -119996,6 +120028,11 @@ type InstanceRequirementsRequest struct { // // * For instance types with Xilinx VU9P FPGAs, specify vu9p. // + // * For instance types with Amazon Web Services Inferentia GPUs, specify + // inferentia. + // + // * For instance types with NVIDIA GRID K520 GPUs, specify k520. + // // Default: Any accelerator AcceleratorNames []*string `locationName:"AcceleratorName" locationNameList:"item" type:"list" enum:"AcceleratorName"` @@ -120061,10 +120098,11 @@ type InstanceRequirementsRequest struct { // Default: Any manufacturer CpuManufacturers []*string `locationName:"CpuManufacturer" locationNameList:"item" type:"list" enum:"CpuManufacturer"` - // The instance types to exclude. You can use strings with one or more wild - // cards, represented by an asterisk (*), to exclude an instance family, type, - // size, or generation. The following are examples: m5.8xlarge, c5*.*, m5a.*, - // r*, *3*. + // The instance types to exclude. + // + // You can use strings with one or more wild cards, represented by an asterisk + // (*), to exclude an instance family, type, size, or generation. The following + // are examples: m5.8xlarge, c5*.*, m5a.*, r*, *3*. // // For example, if you specify c5*,Amazon EC2 will exclude the entire C5 instance // family, which includes all C5a and C5n instance types. If you specify m5a.*, @@ -123410,11 +123448,6 @@ func (s *LaunchPermissionModifications) SetRemove(v []*LaunchPermission) *Launch } // Describes the launch specification for an instance. -// -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon EC2 User Guide for Linux Instances. type LaunchSpecification struct { _ struct{} `type:"structure"` @@ -125475,7 +125508,7 @@ type LaunchTemplateOverrides struct { // these instance types, in the same way as when you specify a list of instance // types. // - // If you specify InstanceRequirements, you can't specify InstanceTypes. + // If you specify InstanceRequirements, you can't specify InstanceType. InstanceRequirements *InstanceRequirements `locationName:"instanceRequirements" type:"structure"` // The instance type. @@ -130438,13 +130471,13 @@ type ModifyInstanceMetadataOptionsInput struct { // is not specified in the request, the default state is optional. // // If the state is optional, you can choose to retrieve instance metadata with - // or without a signed token header on your request. If you retrieve the IAM - // role credentials without a token, the version 1.0 role credentials are returned. - // If you retrieve the IAM role credentials using a valid signed token, the + // or without a session token on your request. If you retrieve the IAM role + // credentials without a token, the version 1.0 role credentials are returned. + // If you retrieve the IAM role credentials using a valid session token, the // version 2.0 role credentials are returned. // - // If the state is required, you must send a signed token header with any instance - // metadata retrieval requests. In this state, retrieving the IAM role credential + // If the state is required, you must send a session token with any instance + // metadata retrieval requests. In this state, retrieving the IAM role credentials // always returns the version 2.0 credentials; the version 1.0 credentials are // not available. HttpTokens *string `type:"string" enum:"HttpTokensState"` @@ -144553,7 +144586,7 @@ type RequestLaunchTemplateData struct { // The attributes for the instance types. When you specify instance attributes, // Amazon EC2 will identify instance types with these attributes. // - // If you specify InstanceRequirements, you can't specify InstanceTypes. + // If you specify InstanceRequirements, you can't specify InstanceType. InstanceRequirements *InstanceRequirementsRequest `type:"structure"` // The instance type. For more information, see Instance types (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) @@ -145435,11 +145468,6 @@ func (s *RequestSpotLaunchSpecification) SetUserData(v string) *RequestSpotLaunc // Describes a launch request for one or more instances, and includes owner, // requester, and security group information that applies to all instances in // the launch request. -// -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon EC2 User Guide. type Reservation struct { _ struct{} `type:"structure"` @@ -145949,11 +145977,6 @@ func (s *ReservedInstances) SetUsagePrice(v float64) *ReservedInstances { } // Describes the configuration settings for the modified Reserved Instances. -// -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. type ReservedInstancesConfiguration struct { _ struct{} `type:"structure"` @@ -149945,11 +149968,6 @@ func (s *S3Storage) SetUploadPolicySignature(v string) *S3Storage { } // Describes a Scheduled Instance. -// -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. type ScheduledInstance struct { _ struct{} `type:"structure"` @@ -150108,11 +150126,6 @@ func (s *ScheduledInstance) SetTotalScheduledInstanceHours(v int64) *ScheduledIn } // Describes a schedule that is available for your Scheduled Instances. -// -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon Elastic Compute Cloud User Guide. type ScheduledInstanceAvailability struct { _ struct{} `type:"structure"` @@ -153539,11 +153552,6 @@ func (s *SpotDatafeedSubscription) SetState(v string) *SpotDatafeedSubscription // include On-Demand capacity in your fleet request or want to specify an EFA // network device, you can't use SpotFleetLaunchSpecification; you must use // LaunchTemplateConfig (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_LaunchTemplateConfig.html). -// -// We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate -// from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic -// to a VPC (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html) -// in the Amazon EC2 User Guide for Linux Instances. type SpotFleetLaunchSpecification struct { _ struct{} `type:"structure"` @@ -153575,7 +153583,7 @@ type SpotFleetLaunchSpecification struct { // The attributes for the instance types. When you specify instance attributes, // Amazon EC2 will identify instance types with those attributes. // - // If you specify InstanceRequirements, you can't specify InstanceTypes. + // If you specify InstanceRequirements, you can't specify InstanceType. InstanceRequirements *InstanceRequirements `locationName:"instanceRequirements" type:"structure"` // The instance type. @@ -153892,26 +153900,34 @@ func (s *SpotFleetRequestConfig) SetTags(v []*Tag) *SpotFleetRequestConfig { type SpotFleetRequestConfigData struct { _ struct{} `type:"structure"` - // Indicates how to allocate the target Spot Instance capacity across the Spot - // Instance pools specified by the Spot Fleet request. + // The strategy that determines how to allocate the target Spot Instance capacity + // across the Spot Instance pools specified by the Spot Fleet launch configuration. + // For more information, see Allocation strategies for Spot Instances (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-allocation-strategy.html) + // in the Amazon EC2 User Guide for Linux Instances. // - // If the allocation strategy is lowestPrice, Spot Fleet launches instances - // from the Spot Instance pools with the lowest price. This is the default allocation - // strategy. + // lowestPrice - Spot Fleet launches instances from the lowest-price Spot Instance + // pool that has available capacity. If the cheapest pool doesn't have available + // capacity, the Spot Instances come from the next cheapest pool that has available + // capacity. If a pool runs out of capacity before fulfilling your desired capacity, + // Spot Fleet will continue to fulfill your request by drawing from the next + // cheapest pool. To ensure that your desired capacity is met, you might receive + // Spot Instances from several pools. // - // If the allocation strategy is diversified, Spot Fleet launches instances - // from all the Spot Instance pools that you specify. + // diversified - Spot Fleet launches instances from all of the Spot Instance + // pools that you specify. + // + // capacityOptimized (recommended) - Spot Fleet launches instances from Spot + // Instance pools with optimal capacity for the number of instances that are + // launching. To give certain instance types a higher chance of launching first, + // use capacityOptimizedPrioritized. Set a priority for each instance type by + // using the Priority parameter for LaunchTemplateOverrides. You can assign + // the same priority to different LaunchTemplateOverrides. EC2 implements the + // priorities on a best-effort basis, but optimizes for capacity first. capacityOptimizedPrioritized + // is supported only if your Spot Fleet uses a launch template. Note that if + // the OnDemandAllocationStrategy is set to prioritized, the same priority is + // applied when fulfilling On-Demand capacity. // - // If the allocation strategy is capacityOptimized (recommended), Spot Fleet - // launches instances from Spot Instance pools with optimal capacity for the - // number of instances that are launching. To give certain instance types a - // higher chance of launching first, use capacityOptimizedPrioritized. Set a - // priority for each instance type by using the Priority parameter for LaunchTemplateOverrides. - // You can assign the same priority to different LaunchTemplateOverrides. EC2 - // implements the priorities on a best-effort basis, but optimizes for capacity - // first. capacityOptimizedPrioritized is supported only if your Spot Fleet - // uses a launch template. Note that if the OnDemandAllocationStrategy is set - // to prioritized, the same priority is applied when fulfilling On-Demand capacity. + // Default: lowestPrice AllocationStrategy *string `locationName:"allocationStrategy" type:"string" enum:"AllocationStrategy"` // A unique, case-sensitive identifier that you provide to ensure the idempotency @@ -154295,7 +154311,7 @@ type SpotFleetTagSpecification struct { // The type of resource. Currently, the only resource type that is supported // is instance. To tag the Spot Fleet request on creation, use the TagSpecifications - // parameter in SpotFleetRequestConfigData (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_SpotFleetRequestConfigData.html). + // parameter in SpotFleetRequestConfigData (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_SpotFleetRequestConfigData.html) . ResourceType *string `locationName:"resourceType" type:"string" enum:"ResourceType"` // The tags. @@ -154769,10 +154785,17 @@ type SpotOptions struct { _ struct{} `type:"structure"` // The strategy that determines how to allocate the target Spot Instance capacity - // across the Spot Instance pools specified by the EC2 Fleet. + // across the Spot Instance pools specified by the EC2 Fleet launch configuration. + // For more information, see Allocation strategies for Spot Instances (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-allocation-strategy.html) + // in the Amazon EC2 User Guide. // - // lowest-price - EC2 Fleet launches instances from the Spot Instance pools - // with the lowest price. + // lowest-price - EC2 Fleet launches instances from the lowest-price Spot Instance + // pool that has available capacity. If the cheapest pool doesn't have available + // capacity, the Spot Instances come from the next cheapest pool that has available + // capacity. If a pool runs out of capacity before fulfilling your desired capacity, + // EC2 Fleet will continue to fulfill your request by drawing from the next + // cheapest pool. To ensure that your desired capacity is met, you might receive + // Spot Instances from several pools. // // diversified - EC2 Fleet launches instances from all of the Spot Instance // pools that you specify. @@ -154917,10 +154940,17 @@ type SpotOptionsRequest struct { _ struct{} `type:"structure"` // The strategy that determines how to allocate the target Spot Instance capacity - // across the Spot Instance pools specified by the EC2 Fleet. + // across the Spot Instance pools specified by the EC2 Fleet launch configuration. + // For more information, see Allocation strategies for Spot Instances (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-allocation-strategy.html) + // in the Amazon EC2 User Guide. // - // lowest-price - EC2 Fleet launches instances from the Spot Instance pools - // with the lowest price. + // lowest-price - EC2 Fleet launches instances from the lowest-price Spot Instance + // pool that has available capacity. If the cheapest pool doesn't have available + // capacity, the Spot Instances come from the next cheapest pool that has available + // capacity. If a pool runs out of capacity before fulfilling your desired capacity, + // EC2 Fleet will continue to fulfill your request by drawing from the next + // cheapest pool. To ensure that your desired capacity is met, you might receive + // Spot Instances from several pools. // // diversified - EC2 Fleet launches instances from all of the Spot Instance // pools that you specify. @@ -165713,6 +165743,18 @@ func AllocationStrategy_Values() []string { } } +const ( + // AllocationTypeUsed is a AllocationType enum value + AllocationTypeUsed = "used" +) + +// AllocationType_Values returns all elements of the AllocationType enum +func AllocationType_Values() []string { + return []string{ + AllocationTypeUsed, + } +} + const ( // AllowsMultipleInstanceTypesOn is a AllowsMultipleInstanceTypes enum value AllowsMultipleInstanceTypesOn = "on" diff --git a/service/mediaconnect/api.go b/service/mediaconnect/api.go index e8ca53833c7..ff7411099dc 100644 --- a/service/mediaconnect/api.go +++ b/service/mediaconnect/api.go @@ -9051,6 +9051,12 @@ type SetSourceRequest struct { // the sender. SenderIpAddress *string `locationName:"senderIpAddress" type:"string"` + // Source IP or domain name for SRT-caller protocol. + SourceListenerAddress *string `locationName:"sourceListenerAddress" type:"string"` + + // Source port for SRT-caller protocol. + SourceListenerPort *int64 `locationName:"sourceListenerPort" type:"integer"` + // The stream ID that you want to use for this transport. This parameter applies // only to Zixi-based streams. StreamId *string `locationName:"streamId" type:"string"` @@ -9185,6 +9191,18 @@ func (s *SetSourceRequest) SetSenderIpAddress(v string) *SetSourceRequest { return s } +// SetSourceListenerAddress sets the SourceListenerAddress field's value. +func (s *SetSourceRequest) SetSourceListenerAddress(v string) *SetSourceRequest { + s.SourceListenerAddress = &v + return s +} + +// SetSourceListenerPort sets the SourceListenerPort field's value. +func (s *SetSourceRequest) SetSourceListenerPort(v int64) *SetSourceRequest { + s.SourceListenerPort = &v + return s +} + // SetStreamId sets the StreamId field's value. func (s *SetSourceRequest) SetStreamId(v string) *SetSourceRequest { s.StreamId = &v @@ -9770,6 +9788,12 @@ type Transport struct { // The smoothing latency in milliseconds for RIST, RTP, and RTP-FEC streams. SmoothingLatency *int64 `locationName:"smoothingLatency" type:"integer"` + // Source IP or domain name for SRT-caller protocol. + SourceListenerAddress *string `locationName:"sourceListenerAddress" type:"string"` + + // Source port for SRT-caller protocol. + SourceListenerPort *int64 `locationName:"sourceListenerPort" type:"integer"` + // The stream ID that you want to use for this transport. This parameter applies // only to Zixi-based streams. StreamId *string `locationName:"streamId" type:"string"` @@ -9853,6 +9877,18 @@ func (s *Transport) SetSmoothingLatency(v int64) *Transport { return s } +// SetSourceListenerAddress sets the SourceListenerAddress field's value. +func (s *Transport) SetSourceListenerAddress(v string) *Transport { + s.SourceListenerAddress = &v + return s +} + +// SetSourceListenerPort sets the SourceListenerPort field's value. +func (s *Transport) SetSourceListenerPort(v int64) *Transport { + s.SourceListenerPort = &v + return s +} + // SetStreamId sets the StreamId field's value. func (s *Transport) SetStreamId(v string) *Transport { s.StreamId = &v @@ -10541,7 +10577,8 @@ type UpdateFlowOutputInput struct { // FlowArn is a required field FlowArn *string `location:"uri" locationName:"flowArn" type:"string" required:"true"` - // The maximum latency in milliseconds for Zixi-based streams. + // The maximum latency in milliseconds. This parameter applies only to RIST-based, + // Zixi-based, and Fujitsu-based streams. MaxLatency *int64 `locationName:"maxLatency" type:"integer"` // The media streams that are associated with the output, and the parameters @@ -10827,6 +10864,8 @@ type UpdateFlowSourceInput struct { // The protocol that is used by the source. Protocol *string `locationName:"protocol" type:"string" enum:"Protocol"` + // The port that the flow uses to send outbound requests to initiate connection + // with the sender. SenderControlPort *int64 `locationName:"senderControlPort" type:"integer"` // The IP address that the flow communicates with to initiate connection with @@ -10836,6 +10875,12 @@ type UpdateFlowSourceInput struct { // SourceArn is a required field SourceArn *string `location:"uri" locationName:"sourceArn" type:"string" required:"true"` + // Source IP or domain name for SRT-caller protocol. + SourceListenerAddress *string `locationName:"sourceListenerAddress" type:"string"` + + // Source port for SRT-caller protocol. + SourceListenerPort *int64 `locationName:"sourceListenerPort" type:"integer"` + // The stream ID that you want to use for this transport. This parameter applies // only to Zixi-based streams. StreamId *string `locationName:"streamId" type:"string"` @@ -10983,6 +11028,18 @@ func (s *UpdateFlowSourceInput) SetSourceArn(v string) *UpdateFlowSourceInput { return s } +// SetSourceListenerAddress sets the SourceListenerAddress field's value. +func (s *UpdateFlowSourceInput) SetSourceListenerAddress(v string) *UpdateFlowSourceInput { + s.SourceListenerAddress = &v + return s +} + +// SetSourceListenerPort sets the SourceListenerPort field's value. +func (s *UpdateFlowSourceInput) SetSourceListenerPort(v int64) *UpdateFlowSourceInput { + s.SourceListenerPort = &v + return s +} + // SetStreamId sets the StreamId field's value. func (s *UpdateFlowSourceInput) SetStreamId(v string) *UpdateFlowSourceInput { s.StreamId = &v @@ -11585,6 +11642,9 @@ const ( // ProtocolSrtListener is a Protocol enum value ProtocolSrtListener = "srt-listener" + // ProtocolSrtCaller is a Protocol enum value + ProtocolSrtCaller = "srt-caller" + // ProtocolFujitsuQos is a Protocol enum value ProtocolFujitsuQos = "fujitsu-qos" ) @@ -11600,6 +11660,7 @@ func Protocol_Values() []string { ProtocolSt2110Jpegxs, ProtocolCdi, ProtocolSrtListener, + ProtocolSrtCaller, ProtocolFujitsuQos, } } diff --git a/service/rds/api.go b/service/rds/api.go index e2789a2018b..d66d8429171 100644 --- a/service/rds/api.go +++ b/service/rds/api.go @@ -9332,7 +9332,15 @@ func (c *RDS) DescribeSourceRegionsRequest(input *DescribeSourceRegionsInput) (r // // Returns a list of the source Amazon Web Services Regions where the current // Amazon Web Services Region can create a read replica, copy a DB snapshot -// from, or replicate automated backups from. This API action supports pagination. +// from, or replicate automated backups from. +// +// Use this operation to determine whether cross-Region features are supported +// between other Regions and your current Region. This operation supports pagination. +// +// To return information about the Regions that are enabled for your account, +// or all Regions, use the EC2 operation DescribeRegions. For more information, +// see DescribeRegions (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeRegions.html) +// in the Amazon EC2 API Reference. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -16665,9 +16673,9 @@ type ConnectionPoolConfiguration struct { // The value is expressed as a percentage of the max_connections setting for // the RDS DB instance or Aurora DB cluster used by the target group. // - // Default: 100 + // Default: 10 for RDS for Microsoft SQL Server, and 100 for all other engines // - // Constraints: between 1 and 100 + // Constraints: Must be between 1 and 100. MaxConnectionsPercent *int64 `type:"integer"` // Controls how actively the proxy closes idle database connections in the connection @@ -16677,9 +16685,13 @@ type ConnectionPoolConfiguration struct { // open. A low value causes the proxy to close more idle connections and return // them to the database. // - // Default: 50 + // Default: The default value is half of the value of MaxConnectionsPercent. + // For example, if MaxConnectionsPercent is 80, then the default value of MaxIdleConnectionsPercent + // is 40. If the value of MaxConnectionsPercent isn't specified, then for SQL + // Server, MaxIdleConnectionsPercent is 5, and for all other engines, the default + // is 50. // - // Constraints: between 0 and MaxConnectionsPercent + // Constraints: Must be between 0 and the value of MaxConnectionsPercent. MaxIdleConnectionsPercent *int64 `type:"integer"` // Each item in the list represents a class of SQL operations that normally @@ -16773,8 +16785,9 @@ type ConnectionPoolConfigurationInfo struct { // Each item in the list represents a class of SQL operations that normally // cause all later statements in a session using a proxy to be pinned to the // same underlying database connection. Including an item in the list exempts - // that class of SQL operations from the pinning behavior. Currently, the only - // allowed value is EXCLUDE_VARIABLE_SETS. + // that class of SQL operations from the pinning behavior. This setting is only + // supported for MySQL engine family databases. Currently, the only allowed + // value is EXCLUDE_VARIABLE_SETS. SessionPinningFilters []*string `type:"list"` } @@ -18557,8 +18570,8 @@ type CreateDBClusterInput struct { DBClusterIdentifier *string `type:"string" required:"true"` // The compute and memory capacity of each DB instance in the Multi-AZ DB cluster, - // for example db.m6g.xlarge. Not all DB instance classes are available in all - // Amazon Web Services Regions, or for all database engines. + // for example db.m6gd.xlarge. Not all DB instance classes are available in + // all Amazon Web Services Regions, or for all database engines. // // For the full list of DB instance classes and availability for your engine, // see DB instance class (https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.DBInstanceClass.html) @@ -20120,8 +20133,8 @@ type CreateDBInstanceInput struct { // // * It must contain 1 to 63 alphanumeric characters. // - // * It must begin with a letter or an underscore. Subsequent characters - // can be letters, underscores, or digits (0 to 9). + // * It must begin with a letter. Subsequent characters can be letters, underscores, + // or digits (0 to 9). // // * It can't be a word reserved by the database engine. DBName *string `type:"string"` @@ -20134,11 +20147,11 @@ type CreateDBInstanceInput struct { // // Constraints: // - // * Must be 1 to 255 letters, numbers, or hyphens. + // * It must be 1 to 255 letters, numbers, or hyphens. // - // * First character must be a letter + // * The first character must be a letter. // - // * Can't end with a hyphen or contain two consecutive hyphens + // * It can't end with a hyphen or contain two consecutive hyphens. DBParameterGroupName *string `type:"string"` // A list of DB security groups to associate with this DB instance. @@ -22104,7 +22117,8 @@ type CreateDBProxyEndpointInput struct { Tags []*Tag `locationNameList:"Tag" type:"list"` // A value that indicates whether the DB proxy endpoint can be used for read/write - // or read-only operations. The default is READ_WRITE. + // or read-only operations. The default is READ_WRITE. The only role that proxies + // for RDS for Microsoft SQL Server support is READ_WRITE. TargetRole *string `type:"string" enum:"DBProxyEndpointTargetRole"` // The VPC security group IDs for the DB proxy endpoint that you create. You @@ -22261,7 +22275,8 @@ type CreateDBProxyInput struct { // which database network protocol the proxy recognizes when it interprets network // traffic to and from the database. For Aurora MySQL, RDS for MariaDB, and // RDS for MySQL databases, specify MYSQL. For Aurora PostgreSQL and RDS for - // PostgreSQL databases, specify POSTGRESQL. + // PostgreSQL databases, specify POSTGRESQL. For RDS for Microsoft SQL Server, + // specify SQLSERVER. // // EngineFamily is a required field EngineFamily *string `type:"string" required:"true" enum:"EngineFamily"` @@ -26645,7 +26660,8 @@ type DBProxy struct { // which database network protocol the proxy recognizes when it interprets network // traffic to and from the database. MYSQL supports Aurora MySQL, RDS for MariaDB, // and RDS for MySQL databases. POSTGRESQL supports Aurora PostgreSQL and RDS - // for PostgreSQL databases. + // for PostgreSQL databases. SQLSERVER supports RDS for Microsoft SQL Server + // databases. EngineFamily *string `type:"string"` // The number of seconds a connection to the proxy can have no activity before @@ -38247,8 +38263,8 @@ type ModifyDBClusterInput struct { DBClusterIdentifier *string `type:"string" required:"true"` // The compute and memory capacity of each DB instance in the Multi-AZ DB cluster, - // for example db.m6g.xlarge. Not all DB instance classes are available in all - // Amazon Web Services Regions, or for all database engines. + // for example db.m6gd.xlarge. Not all DB instance classes are available in + // all Amazon Web Services Regions, or for all database engines. // // For the full list of DB instance classes and availability for your engine, // see DB Instance Class (https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.DBInstanceClass.html) @@ -45347,7 +45363,7 @@ type RestoreDBClusterFromSnapshotInput struct { DBClusterIdentifier *string `type:"string" required:"true"` // The compute and memory capacity of the each DB instance in the Multi-AZ DB - // cluster, for example db.m6g.xlarge. Not all DB instance classes are available + // cluster, for example db.m6gd.xlarge. Not all DB instance classes are available // in all Amazon Web Services Regions, or for all database engines. // // For the full list of DB instance classes, and availability for your engine, @@ -45964,7 +45980,7 @@ type RestoreDBClusterToPointInTimeInput struct { DBClusterIdentifier *string `type:"string" required:"true"` // The compute and memory capacity of the each DB instance in the Multi-AZ DB - // cluster, for example db.m6g.xlarge. Not all DB instance classes are available + // cluster, for example db.m6gd.xlarge. Not all DB instance classes are available // in all Amazon Web Services Regions, or for all database engines. // // For the full list of DB instance classes, and availability for your engine, @@ -50675,7 +50691,8 @@ type UserAuthConfig struct { Description *string `type:"string"` // Whether to require or disallow Amazon Web Services Identity and Access Management - // (IAM) authentication for connections to the proxy. + // (IAM) authentication for connections to the proxy. The ENABLED value is valid + // only for proxies with RDS for Microsoft SQL Server. IAMAuth *string `type:"string" enum:"IAMAuthMode"` // The Amazon Resource Name (ARN) representing the secret that the proxy uses @@ -50749,7 +50766,8 @@ type UserAuthConfigInfo struct { Description *string `type:"string"` // Whether to require or disallow Amazon Web Services Identity and Access Management - // (IAM) authentication for connections to the proxy. + // (IAM) authentication for connections to the proxy. The ENABLED value is valid + // only for proxies with RDS for Microsoft SQL Server. IAMAuth *string `type:"string" enum:"IAMAuthMode"` // The Amazon Resource Name (ARN) representing the secret that the proxy uses @@ -51211,6 +51229,9 @@ const ( // EngineFamilyPostgresql is a EngineFamily enum value EngineFamilyPostgresql = "POSTGRESQL" + + // EngineFamilySqlserver is a EngineFamily enum value + EngineFamilySqlserver = "SQLSERVER" ) // EngineFamily_Values returns all elements of the EngineFamily enum @@ -51218,6 +51239,7 @@ func EngineFamily_Values() []string { return []string{ EngineFamilyMysql, EngineFamilyPostgresql, + EngineFamilySqlserver, } } @@ -51247,6 +51269,9 @@ const ( // IAMAuthModeRequired is a IAMAuthMode enum value IAMAuthModeRequired = "REQUIRED" + + // IAMAuthModeEnabled is a IAMAuthMode enum value + IAMAuthModeEnabled = "ENABLED" ) // IAMAuthMode_Values returns all elements of the IAMAuthMode enum @@ -51254,6 +51279,7 @@ func IAMAuthMode_Values() []string { return []string{ IAMAuthModeDisabled, IAMAuthModeRequired, + IAMAuthModeEnabled, } }