lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.36.0 vs lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.37.0

- old
+ new

@@ -393,10 +393,14 @@ # # @option params [String] :finding_publishing_frequency # An enum value that specifies how frequently updated findings are # exported. # + # @option params [Types::DataSourceConfigurations] :data_sources + # An object that describes which data sources will be enabled for the + # detector. + # # @option params [Hash<String,String>] :tags # The tags to be added to a new detector resource. # # @return [Types::CreateDetectorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods: # @@ -406,10 +410,15 @@ # # resp = client.create_detector({ # enable: false, # required # client_token: "ClientToken", # finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS + # data_sources: { + # s3_logs: { + # enable: false, # required + # }, + # }, # tags: { # "TagKey" => "TagValue", # }, # }) # @@ -639,12 +648,11 @@ # # @option params [required, String] :format # The format of the file that contains the IPSet. # # @option params [required, String] :location - # The URI of the file that contains the IPSet. For example: - # https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key. + # The URI of the file that contains the IPSet. # # @option params [required, Boolean] :activate # A Boolean value that indicates whether GuardDuty is to start using the # uploaded IPSet. # @@ -825,12 +833,11 @@ # # @option params [required, String] :format # The format of the file that contains the ThreatIntelSet. # # @option params [required, String] :location - # The URI of the file that contains the ThreatIntelSet. For example: - # https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key. + # The URI of the file that contains the ThreatIntelSet. # # @option params [required, Boolean] :activate # A Boolean value that indicates whether GuardDuty is to start using the # uploaded ThreatIntelSet. # @@ -1114,10 +1121,11 @@ # # @return [Types::DescribeOrganizationConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods: # # * {Types::DescribeOrganizationConfigurationResponse#auto_enable #auto_enable} => Boolean # * {Types::DescribeOrganizationConfigurationResponse#member_account_limit_reached #member_account_limit_reached} => Boolean + # * {Types::DescribeOrganizationConfigurationResponse#data_sources #data_sources} => Types::OrganizationDataSourceConfigurationsResult # # @example Request syntax with placeholder values # # resp = client.describe_organization_configuration({ # detector_id: "DetectorId", # required @@ -1125,10 +1133,11 @@ # # @example Response structure # # resp.auto_enable #=> Boolean # resp.member_account_limit_reached #=> Boolean + # resp.data_sources.s3_logs.auto_enable #=> Boolean # # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfiguration AWS API Documentation # # @overload describe_organization_configuration(params = {}) # @param [Hash] params ({}) @@ -1298,10 +1307,11 @@ # * {Types::GetDetectorResponse#created_at #created_at} => String # * {Types::GetDetectorResponse#finding_publishing_frequency #finding_publishing_frequency} => String # * {Types::GetDetectorResponse#service_role #service_role} => String # * {Types::GetDetectorResponse#status #status} => String # * {Types::GetDetectorResponse#updated_at #updated_at} => String + # * {Types::GetDetectorResponse#data_sources #data_sources} => Types::DataSourceConfigurationsResult # * {Types::GetDetectorResponse#tags #tags} => Hash&lt;String,String&gt; # # @example Request syntax with placeholder values # # resp = client.get_detector({ @@ -1313,10 +1323,14 @@ # resp.created_at #=> String # resp.finding_publishing_frequency #=> String, one of "FIFTEEN_MINUTES", "ONE_HOUR", "SIX_HOURS" # resp.service_role #=> String # resp.status #=> String, one of "ENABLED", "DISABLED" # resp.updated_at #=> String + # resp.data_sources.cloud_trail.status #=> String, one of "ENABLED", "DISABLED" + # resp.data_sources.dns_logs.status #=> String, one of "ENABLED", "DISABLED" + # resp.data_sources.flow_logs.status #=> String, one of "ENABLED", "DISABLED" + # resp.data_sources.s3_logs.status #=> String, one of "ENABLED", "DISABLED" # resp.tags #=> Hash # resp.tags["TagKey"] #=> String # # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetDetector AWS API Documentation # @@ -1710,10 +1724,52 @@ def get_master_account(params = {}, options = {}) req = build_request(:get_master_account, params) req.send_request(options) end + # Describes which data sources are enabled for the member account's + # detector. + # + # @option params [required, String] :detector_id + # The detector ID for the master account. + # + # @option params [required, Array<String>] :account_ids + # The account ID of the member account. + # + # @return [Types::GetMemberDetectorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods: + # + # * {Types::GetMemberDetectorsResponse#member_data_source_configurations #member_data_source_configurations} => Array&lt;Types::MemberDataSourceConfiguration&gt; + # * {Types::GetMemberDetectorsResponse#unprocessed_accounts #unprocessed_accounts} => Array&lt;Types::UnprocessedAccount&gt; + # + # @example Request syntax with placeholder values + # + # resp = client.get_member_detectors({ + # detector_id: "DetectorId", # required + # account_ids: ["AccountId"], # required + # }) + # + # @example Response structure + # + # resp.member_data_source_configurations #=> Array + # resp.member_data_source_configurations[0].account_id #=> String + # resp.member_data_source_configurations[0].data_sources.cloud_trail.status #=> String, one of "ENABLED", "DISABLED" + # resp.member_data_source_configurations[0].data_sources.dns_logs.status #=> String, one of "ENABLED", "DISABLED" + # resp.member_data_source_configurations[0].data_sources.flow_logs.status #=> String, one of "ENABLED", "DISABLED" + # resp.member_data_source_configurations[0].data_sources.s3_logs.status #=> String, one of "ENABLED", "DISABLED" + # resp.unprocessed_accounts #=> Array + # resp.unprocessed_accounts[0].account_id #=> String + # resp.unprocessed_accounts[0].result #=> String + # + # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetMemberDetectors AWS API Documentation + # + # @overload get_member_detectors(params = {}) + # @param [Hash] params ({}) + def get_member_detectors(params = {}, options = {}) + req = build_request(:get_member_detectors, params) + req.send_request(options) + end + # Retrieves GuardDuty member accounts (to the current GuardDuty master # account) specified by the account IDs. # # @option params [required, String] :detector_id # The unique ID of the detector of the GuardDuty account whose members @@ -1974,10 +2030,12 @@ # # * resource.instanceDetails.imageId # # * resource.instanceDetails.instanceId # + # * resource.instanceDetails.outpostArn + # # * resource.instanceDetails.networkInterfaces.ipv6Addresses # # * resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress # # * resource.instanceDetails.networkInterfaces.publicDnsName @@ -2024,10 +2082,12 @@ # # * service.action.networkConnectionAction.localPortDetails.port # # * service.action.networkConnectionAction.protocol # + # * service.action.networkConnectionAction.localIpDetails.ipAddressV4 + # # * service.action.networkConnectionAction.remoteIpDetails.city.cityName # # * service.action.networkConnectionAction.remoteIpDetails.country.countryName # # * service.action.networkConnectionAction.remoteIpDetails.ipAddressV4 @@ -2218,12 +2278,12 @@ def list_invitations(params = {}, options = {}) req = build_request(:list_invitations, params) req.send_request(options) end - # Lists details about all member accounts for the current GuardDuty - # master account. + # Lists details about associated member accounts for the current + # GuardDuty master account. # # @option params [required, String] :detector_id # The unique ID of the detector the member is associated with. # # @option params [Integer] :max_results @@ -2237,13 +2297,15 @@ # subsequent calls to the action, fill nextToken in the request with the # value of NextToken from the previous response to continue listing # data. # # @option params [String] :only_associated - # Specifies whether to only return associated members or to return all - # members (including members who haven't been invited yet or have been - # disassociated). + # Specifies what member accounts the response includes based on their + # relationship status with the master account. The default value is + # "true". If set to "false" the response includes all existing + # member accounts (including members who haven't been invited yet or + # have been disassociated). # # @return [Types::ListMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods: # # * {Types::ListMembersResponse#members #members} => Array&lt;Types::Member&gt; # * {Types::ListMembersResponse#next_token #next_token} => String @@ -2618,18 +2680,26 @@ # # @option params [String] :finding_publishing_frequency # An enum value that specifies how frequently findings are exported, # such as to CloudWatch Events. # + # @option params [Types::DataSourceConfigurations] :data_sources + # An object that describes which data sources will be updated. + # # @return [Struct] Returns an empty {Seahorse::Client::Response response}. # # @example Request syntax with placeholder values # # resp = client.update_detector({ # detector_id: "DetectorId", # required # enable: false, # finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS + # data_sources: { + # s3_logs: { + # enable: false, # required + # }, + # }, # }) # # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateDetector AWS API Documentation # # @overload update_detector(params = {}) @@ -2755,12 +2825,11 @@ # # @option params [String] :name # The unique ID that specifies the IPSet that you want to update. # # @option params [String] :location - # The updated URI of the file that contains the IPSet. For example: - # https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key. + # The updated URI of the file that contains the IPSet. # # @option params [Boolean] :activate # The updated Boolean value that specifies whether the IPSet is active # or not. # @@ -2783,26 +2852,76 @@ def update_ip_set(params = {}, options = {}) req = build_request(:update_ip_set, params) req.send_request(options) end + # Contains information on member accounts to be updated. + # + # @option params [required, String] :detector_id + # The detector ID of the master account. + # + # @option params [required, Array<String>] :account_ids + # A list of member account IDs to be updated. + # + # @option params [Types::DataSourceConfigurations] :data_sources + # An object describes which data sources will be updated. + # + # @return [Types::UpdateMemberDetectorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods: + # + # * {Types::UpdateMemberDetectorsResponse#unprocessed_accounts #unprocessed_accounts} => Array&lt;Types::UnprocessedAccount&gt; + # + # @example Request syntax with placeholder values + # + # resp = client.update_member_detectors({ + # detector_id: "DetectorId", # required + # account_ids: ["AccountId"], # required + # data_sources: { + # s3_logs: { + # enable: false, # required + # }, + # }, + # }) + # + # @example Response structure + # + # resp.unprocessed_accounts #=> Array + # resp.unprocessed_accounts[0].account_id #=> String + # resp.unprocessed_accounts[0].result #=> String + # + # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateMemberDetectors AWS API Documentation + # + # @overload update_member_detectors(params = {}) + # @param [Hash] params ({}) + def update_member_detectors(params = {}, options = {}) + req = build_request(:update_member_detectors, params) + req.send_request(options) + end + # Updates the delegated administrator account with the values provided. # # @option params [required, String] :detector_id # The ID of the detector to update the delegated administrator for. # # @option params [required, Boolean] :auto_enable # Indicates whether to automatically enable member accounts in the # organization. # + # @option params [Types::OrganizationDataSourceConfigurations] :data_sources + # An object describes which data sources will be updated. + # # @return [Struct] Returns an empty {Seahorse::Client::Response response}. # # @example Request syntax with placeholder values # # resp = client.update_organization_configuration({ # detector_id: "DetectorId", # required # auto_enable: false, # required + # data_sources: { + # s3_logs: { + # auto_enable: false, # required + # }, + # }, # }) # # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfiguration AWS API Documentation # # @overload update_organization_configuration(params = {}) @@ -2861,12 +2980,11 @@ # @option params [String] :name # The unique ID that specifies the ThreatIntelSet that you want to # update. # # @option params [String] :location - # The updated URI of the file that contains the ThreateIntelSet. For - # example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key. + # The updated URI of the file that contains the ThreateIntelSet. # # @option params [Boolean] :activate # The updated Boolean value that specifies whether the ThreateIntelSet # is active or not. # @@ -2902,10 +3020,10 @@ operation: config.api.operation(operation_name), client: self, params: params, config: config) context[:gem_name] = 'aws-sdk-guardduty' - context[:gem_version] = '1.36.0' + context[:gem_version] = '1.37.0' Seahorse::Client::Request.new(handlers, context) end # @api private # @deprecated