| Copyright | (c) 2013-2023 Brendan Hay |
|---|---|
| License | Mozilla Public License, v. 2.0. |
| Maintainer | Brendan Hay |
| Stability | auto-generated |
| Portability | non-portable (GHC extensions) |
| Safe Haskell | Safe-Inferred |
| Language | Haskell2010 |
Amazonka.MacieV2.Types
Contents
- Service Configuration
- Errors
- AdminStatus
- AllowListStatusCode
- AllowsUnencryptedObjectUploads
- AutomatedDiscoveryStatus
- AvailabilityCode
- BucketMetadataErrorCode
- ClassificationScopeUpdateOperation
- Currency
- DataIdentifierSeverity
- DataIdentifierType
- DayOfWeek
- EffectivePermission
- EncryptionType
- ErrorCode
- FindingActionType
- FindingCategory
- FindingPublishingFrequency
- FindingStatisticsSortAttributeName
- FindingType
- FindingsFilterAction
- GroupBy
- IsDefinedInJob
- IsMonitoredByJob
- JobComparator
- JobStatus
- JobType
- LastRunErrorStatusCode
- ListJobsFilterKey
- ListJobsSortAttributeName
- MacieStatus
- ManagedDataIdentifierSelector
- OrderBy
- OriginType
- RelationshipStatus
- RevealRequestStatus
- RevealStatus
- ScopeFilterKey
- SearchResourcesComparator
- SearchResourcesSimpleCriterionKey
- SearchResourcesSortAttributeName
- SensitiveDataItemCategory
- SeverityDescription
- SharedAccess
- SimpleCriterionKeyForJob
- StorageClass
- TagTarget
- TimeRange
- Type
- UnavailabilityReasonCode
- Unit
- UsageStatisticsFilterComparator
- UsageStatisticsFilterKey
- UsageStatisticsSortKey
- UsageType
- UserIdentityType
- AccessControlList
- AccountDetail
- AccountLevelPermissions
- AdminAccount
- AllowListCriteria
- AllowListStatus
- AllowListSummary
- ApiCallDetails
- AssumedRole
- AwsAccount
- AwsService
- BatchGetCustomDataIdentifierSummary
- BlockPublicAccess
- BucketCountByEffectivePermission
- BucketCountByEncryptionType
- BucketCountBySharedAccessType
- BucketCountPolicyAllowsUnencryptedObjectUploads
- BucketCriteriaAdditionalProperties
- BucketLevelPermissions
- BucketMetadata
- BucketPermissionConfiguration
- BucketPolicy
- BucketPublicAccess
- BucketServerSideEncryption
- BucketSortCriteria
- BucketStatisticsBySensitivity
- Cell
- ClassificationDetails
- ClassificationExportConfiguration
- ClassificationResult
- ClassificationResultStatus
- ClassificationScopeSummary
- CriteriaBlockForJob
- CriteriaForJob
- CriterionAdditionalProperties
- CustomDataIdentifierSummary
- CustomDataIdentifiers
- CustomDetection
- DailySchedule
- DefaultDetection
- DetectedDataDetails
- Detection
- DomainDetails
- FederatedUser
- Finding
- FindingAction
- FindingActor
- FindingCriteria
- FindingStatisticsSortCriteria
- FindingsFilterListItem
- GroupCount
- IamUser
- Invitation
- IpAddressDetails
- IpCity
- IpCountry
- IpGeoLocation
- IpOwner
- JobDetails
- JobScheduleFrequency
- JobScopeTerm
- JobScopingBlock
- JobSummary
- KeyValuePair
- LastRunErrorStatus
- ListJobsFilterCriteria
- ListJobsFilterTerm
- ListJobsSortCriteria
- ManagedDataIdentifierSummary
- MatchingBucket
- MatchingResource
- Member
- MonthlySchedule
- ObjectCountByEncryptionType
- ObjectLevelStatistics
- Occurrences
- Page
- PolicyDetails
- Range
- Record
- ReplicationDetails
- ResourceProfileArtifact
- ResourceStatistics
- ResourcesAffected
- RevealConfiguration
- S3Bucket
- S3BucketCriteriaForJob
- S3BucketDefinitionForJob
- S3BucketOwner
- S3ClassificationScope
- S3ClassificationScopeExclusion
- S3ClassificationScopeExclusionUpdate
- S3ClassificationScopeUpdate
- S3Destination
- S3JobDefinition
- S3Object
- S3WordsList
- Scoping
- SearchResourcesBucketCriteria
- SearchResourcesCriteria
- SearchResourcesCriteriaBlock
- SearchResourcesSimpleCriterion
- SearchResourcesSortCriteria
- SearchResourcesTagCriterion
- SearchResourcesTagCriterionPair
- SecurityHubConfiguration
- SensitiveDataItem
- SensitivityAggregations
- SensitivityInspectionTemplateExcludes
- SensitivityInspectionTemplateIncludes
- SensitivityInspectionTemplatesEntry
- ServerSideEncryption
- ServiceLimit
- SessionContext
- SessionContextAttributes
- SessionIssuer
- Severity
- SeverityLevel
- SimpleCriterionForJob
- SimpleScopeTerm
- SortCriteria
- Statistics
- SuppressDataIdentifier
- TagCriterionForJob
- TagCriterionPairForJob
- TagScopeTerm
- TagValuePair
- UnprocessedAccount
- UsageByAccount
- UsageRecord
- UsageStatisticsFilter
- UsageStatisticsSortBy
- UsageTotal
- UserIdentity
- UserIdentityRoot
- UserPausedDetails
- WeeklySchedule
Description
Synopsis
- defaultService :: Service
- _AccessDeniedException :: AsError a => Fold a ServiceError
- _ConflictException :: AsError a => Fold a ServiceError
- _InternalServerException :: AsError a => Fold a ServiceError
- _ResourceNotFoundException :: AsError a => Fold a ServiceError
- _ServiceQuotaExceededException :: AsError a => Fold a ServiceError
- _ThrottlingException :: AsError a => Fold a ServiceError
- _UnprocessableEntityException :: AsError a => Fold a ServiceError
- _ValidationException :: AsError a => Fold a ServiceError
- newtype AdminStatus where
- AdminStatus' { }
- pattern AdminStatus_DISABLING_IN_PROGRESS :: AdminStatus
- pattern AdminStatus_ENABLED :: AdminStatus
- newtype AllowListStatusCode where
- AllowListStatusCode' { }
- pattern AllowListStatusCode_OK :: AllowListStatusCode
- pattern AllowListStatusCode_S3_OBJECT_ACCESS_DENIED :: AllowListStatusCode
- pattern AllowListStatusCode_S3_OBJECT_EMPTY :: AllowListStatusCode
- pattern AllowListStatusCode_S3_OBJECT_NOT_FOUND :: AllowListStatusCode
- pattern AllowListStatusCode_S3_OBJECT_OVERSIZE :: AllowListStatusCode
- pattern AllowListStatusCode_S3_THROTTLED :: AllowListStatusCode
- pattern AllowListStatusCode_S3_USER_ACCESS_DENIED :: AllowListStatusCode
- pattern AllowListStatusCode_UNKNOWN_ERROR :: AllowListStatusCode
- newtype AllowsUnencryptedObjectUploads where
- newtype AutomatedDiscoveryStatus where
- newtype AvailabilityCode where
- AvailabilityCode' { }
- pattern AvailabilityCode_AVAILABLE :: AvailabilityCode
- pattern AvailabilityCode_UNAVAILABLE :: AvailabilityCode
- newtype BucketMetadataErrorCode where
- newtype ClassificationScopeUpdateOperation where
- newtype Currency where
- Currency' {
- fromCurrency :: Text
- pattern Currency_USD :: Currency
- Currency' {
- newtype DataIdentifierSeverity where
- newtype DataIdentifierType where
- DataIdentifierType' { }
- pattern DataIdentifierType_CUSTOM :: DataIdentifierType
- pattern DataIdentifierType_MANAGED :: DataIdentifierType
- newtype DayOfWeek where
- DayOfWeek' { }
- pattern DayOfWeek_FRIDAY :: DayOfWeek
- pattern DayOfWeek_MONDAY :: DayOfWeek
- pattern DayOfWeek_SATURDAY :: DayOfWeek
- pattern DayOfWeek_SUNDAY :: DayOfWeek
- pattern DayOfWeek_THURSDAY :: DayOfWeek
- pattern DayOfWeek_TUESDAY :: DayOfWeek
- pattern DayOfWeek_WEDNESDAY :: DayOfWeek
- newtype EffectivePermission where
- newtype EncryptionType where
- EncryptionType' { }
- pattern EncryptionType_AES256 :: EncryptionType
- pattern EncryptionType_Aws_kms :: EncryptionType
- pattern EncryptionType_NONE :: EncryptionType
- pattern EncryptionType_UNKNOWN :: EncryptionType
- newtype ErrorCode where
- ErrorCode' { }
- pattern ErrorCode_ClientError :: ErrorCode
- pattern ErrorCode_InternalError :: ErrorCode
- newtype FindingActionType where
- newtype FindingCategory where
- FindingCategory' { }
- pattern FindingCategory_CLASSIFICATION :: FindingCategory
- pattern FindingCategory_POLICY :: FindingCategory
- newtype FindingPublishingFrequency where
- newtype FindingStatisticsSortAttributeName where
- newtype FindingType where
- FindingType' { }
- pattern FindingType_Policy_IAMUser_S3BlockPublicAccessDisabled :: FindingType
- pattern FindingType_Policy_IAMUser_S3BucketEncryptionDisabled :: FindingType
- pattern FindingType_Policy_IAMUser_S3BucketPublic :: FindingType
- pattern FindingType_Policy_IAMUser_S3BucketReplicatedExternally :: FindingType
- pattern FindingType_Policy_IAMUser_S3BucketSharedExternally :: FindingType
- pattern FindingType_SensitiveData_S3Object_Credentials :: FindingType
- pattern FindingType_SensitiveData_S3Object_CustomIdentifier :: FindingType
- pattern FindingType_SensitiveData_S3Object_Financial :: FindingType
- pattern FindingType_SensitiveData_S3Object_Multiple :: FindingType
- pattern FindingType_SensitiveData_S3Object_Personal :: FindingType
- newtype FindingsFilterAction where
- newtype GroupBy where
- GroupBy' {
- fromGroupBy :: Text
- pattern GroupBy_ClassificationDetails_jobId :: GroupBy
- pattern GroupBy_ResourcesAffected_s3Bucket_name :: GroupBy
- pattern GroupBy_Severity_description :: GroupBy
- pattern GroupBy_Type :: GroupBy
- GroupBy' {
- newtype IsDefinedInJob where
- IsDefinedInJob' { }
- pattern IsDefinedInJob_FALSE :: IsDefinedInJob
- pattern IsDefinedInJob_TRUE :: IsDefinedInJob
- pattern IsDefinedInJob_UNKNOWN :: IsDefinedInJob
- newtype IsMonitoredByJob where
- IsMonitoredByJob' { }
- pattern IsMonitoredByJob_FALSE :: IsMonitoredByJob
- pattern IsMonitoredByJob_TRUE :: IsMonitoredByJob
- pattern IsMonitoredByJob_UNKNOWN :: IsMonitoredByJob
- newtype JobComparator where
- JobComparator' { }
- pattern JobComparator_CONTAINS :: JobComparator
- pattern JobComparator_EQ :: JobComparator
- pattern JobComparator_GT :: JobComparator
- pattern JobComparator_GTE :: JobComparator
- pattern JobComparator_LT :: JobComparator
- pattern JobComparator_LTE :: JobComparator
- pattern JobComparator_NE :: JobComparator
- pattern JobComparator_STARTS_WITH :: JobComparator
- newtype JobStatus where
- JobStatus' { }
- pattern JobStatus_CANCELLED :: JobStatus
- pattern JobStatus_COMPLETE :: JobStatus
- pattern JobStatus_IDLE :: JobStatus
- pattern JobStatus_PAUSED :: JobStatus
- pattern JobStatus_RUNNING :: JobStatus
- pattern JobStatus_USER_PAUSED :: JobStatus
- newtype JobType where
- JobType' {
- fromJobType :: Text
- pattern JobType_ONE_TIME :: JobType
- pattern JobType_SCHEDULED :: JobType
- JobType' {
- newtype LastRunErrorStatusCode where
- newtype ListJobsFilterKey where
- ListJobsFilterKey' { }
- pattern ListJobsFilterKey_CreatedAt :: ListJobsFilterKey
- pattern ListJobsFilterKey_JobStatus :: ListJobsFilterKey
- pattern ListJobsFilterKey_JobType :: ListJobsFilterKey
- pattern ListJobsFilterKey_Name :: ListJobsFilterKey
- newtype ListJobsSortAttributeName where
- ListJobsSortAttributeName' { }
- pattern ListJobsSortAttributeName_CreatedAt :: ListJobsSortAttributeName
- pattern ListJobsSortAttributeName_JobStatus :: ListJobsSortAttributeName
- pattern ListJobsSortAttributeName_JobType :: ListJobsSortAttributeName
- pattern ListJobsSortAttributeName_Name :: ListJobsSortAttributeName
- newtype MacieStatus where
- MacieStatus' { }
- pattern MacieStatus_ENABLED :: MacieStatus
- pattern MacieStatus_PAUSED :: MacieStatus
- newtype ManagedDataIdentifierSelector where
- ManagedDataIdentifierSelector' { }
- pattern ManagedDataIdentifierSelector_ALL :: ManagedDataIdentifierSelector
- pattern ManagedDataIdentifierSelector_EXCLUDE :: ManagedDataIdentifierSelector
- pattern ManagedDataIdentifierSelector_INCLUDE :: ManagedDataIdentifierSelector
- pattern ManagedDataIdentifierSelector_NONE :: ManagedDataIdentifierSelector
- newtype OrderBy where
- OrderBy' {
- fromOrderBy :: Text
- pattern OrderBy_ASC :: OrderBy
- pattern OrderBy_DESC :: OrderBy
- OrderBy' {
- newtype OriginType where
- newtype RelationshipStatus where
- RelationshipStatus' { }
- pattern RelationshipStatus_AccountSuspended :: RelationshipStatus
- pattern RelationshipStatus_Created :: RelationshipStatus
- pattern RelationshipStatus_EmailVerificationFailed :: RelationshipStatus
- pattern RelationshipStatus_EmailVerificationInProgress :: RelationshipStatus
- pattern RelationshipStatus_Enabled :: RelationshipStatus
- pattern RelationshipStatus_Invited :: RelationshipStatus
- pattern RelationshipStatus_Paused :: RelationshipStatus
- pattern RelationshipStatus_RegionDisabled :: RelationshipStatus
- pattern RelationshipStatus_Removed :: RelationshipStatus
- pattern RelationshipStatus_Resigned :: RelationshipStatus
- newtype RevealRequestStatus where
- newtype RevealStatus where
- RevealStatus' { }
- pattern RevealStatus_DISABLED :: RevealStatus
- pattern RevealStatus_ENABLED :: RevealStatus
- newtype ScopeFilterKey where
- ScopeFilterKey' { }
- pattern ScopeFilterKey_OBJECT_EXTENSION :: ScopeFilterKey
- pattern ScopeFilterKey_OBJECT_KEY :: ScopeFilterKey
- pattern ScopeFilterKey_OBJECT_LAST_MODIFIED_DATE :: ScopeFilterKey
- pattern ScopeFilterKey_OBJECT_SIZE :: ScopeFilterKey
- newtype SearchResourcesComparator where
- newtype SearchResourcesSimpleCriterionKey where
- SearchResourcesSimpleCriterionKey' { }
- pattern SearchResourcesSimpleCriterionKey_ACCOUNT_ID :: SearchResourcesSimpleCriterionKey
- pattern SearchResourcesSimpleCriterionKey_S3_BUCKET_EFFECTIVE_PERMISSION :: SearchResourcesSimpleCriterionKey
- pattern SearchResourcesSimpleCriterionKey_S3_BUCKET_NAME :: SearchResourcesSimpleCriterionKey
- pattern SearchResourcesSimpleCriterionKey_S3_BUCKET_SHARED_ACCESS :: SearchResourcesSimpleCriterionKey
- newtype SearchResourcesSortAttributeName where
- SearchResourcesSortAttributeName' { }
- pattern SearchResourcesSortAttributeName_ACCOUNT_ID :: SearchResourcesSortAttributeName
- pattern SearchResourcesSortAttributeName_RESOURCE_NAME :: SearchResourcesSortAttributeName
- pattern SearchResourcesSortAttributeName_S3_CLASSIFIABLE_OBJECT_COUNT :: SearchResourcesSortAttributeName
- pattern SearchResourcesSortAttributeName_S3_CLASSIFIABLE_SIZE_IN_BYTES :: SearchResourcesSortAttributeName
- newtype SensitiveDataItemCategory where
- SensitiveDataItemCategory' { }
- pattern SensitiveDataItemCategory_CREDENTIALS :: SensitiveDataItemCategory
- pattern SensitiveDataItemCategory_CUSTOM_IDENTIFIER :: SensitiveDataItemCategory
- pattern SensitiveDataItemCategory_FINANCIAL_INFORMATION :: SensitiveDataItemCategory
- pattern SensitiveDataItemCategory_PERSONAL_INFORMATION :: SensitiveDataItemCategory
- newtype SeverityDescription where
- SeverityDescription' { }
- pattern SeverityDescription_High :: SeverityDescription
- pattern SeverityDescription_Low :: SeverityDescription
- pattern SeverityDescription_Medium :: SeverityDescription
- newtype SharedAccess where
- SharedAccess' { }
- pattern SharedAccess_EXTERNAL :: SharedAccess
- pattern SharedAccess_INTERNAL :: SharedAccess
- pattern SharedAccess_NOT_SHARED :: SharedAccess
- pattern SharedAccess_UNKNOWN :: SharedAccess
- newtype SimpleCriterionKeyForJob where
- SimpleCriterionKeyForJob' { }
- pattern SimpleCriterionKeyForJob_ACCOUNT_ID :: SimpleCriterionKeyForJob
- pattern SimpleCriterionKeyForJob_S3_BUCKET_EFFECTIVE_PERMISSION :: SimpleCriterionKeyForJob
- pattern SimpleCriterionKeyForJob_S3_BUCKET_NAME :: SimpleCriterionKeyForJob
- pattern SimpleCriterionKeyForJob_S3_BUCKET_SHARED_ACCESS :: SimpleCriterionKeyForJob
- newtype StorageClass where
- StorageClass' { }
- pattern StorageClass_DEEP_ARCHIVE :: StorageClass
- pattern StorageClass_GLACIER :: StorageClass
- pattern StorageClass_GLACIER_IR :: StorageClass
- pattern StorageClass_INTELLIGENT_TIERING :: StorageClass
- pattern StorageClass_ONEZONE_IA :: StorageClass
- pattern StorageClass_OUTPOSTS :: StorageClass
- pattern StorageClass_REDUCED_REDUNDANCY :: StorageClass
- pattern StorageClass_STANDARD :: StorageClass
- pattern StorageClass_STANDARD_IA :: StorageClass
- newtype TagTarget where
- TagTarget' { }
- pattern TagTarget_S3_OBJECT :: TagTarget
- newtype TimeRange where
- TimeRange' { }
- pattern TimeRange_MONTH_TO_DATE :: TimeRange
- pattern TimeRange_PAST_30_DAYS :: TimeRange
- newtype Type where
- Type' { }
- pattern Type_AES256 :: Type
- pattern Type_Aws_kms :: Type
- pattern Type_NONE :: Type
- newtype UnavailabilityReasonCode where
- UnavailabilityReasonCode' { }
- pattern UnavailabilityReasonCode_INVALID_CLASSIFICATION_RESULT :: UnavailabilityReasonCode
- pattern UnavailabilityReasonCode_OBJECT_EXCEEDS_SIZE_QUOTA :: UnavailabilityReasonCode
- pattern UnavailabilityReasonCode_OBJECT_UNAVAILABLE :: UnavailabilityReasonCode
- pattern UnavailabilityReasonCode_UNSUPPORTED_FINDING_TYPE :: UnavailabilityReasonCode
- pattern UnavailabilityReasonCode_UNSUPPORTED_OBJECT_TYPE :: UnavailabilityReasonCode
- newtype Unit where
- Unit' { }
- pattern Unit_TERABYTES :: Unit
- newtype UsageStatisticsFilterComparator where
- UsageStatisticsFilterComparator' { }
- pattern UsageStatisticsFilterComparator_CONTAINS :: UsageStatisticsFilterComparator
- pattern UsageStatisticsFilterComparator_EQ :: UsageStatisticsFilterComparator
- pattern UsageStatisticsFilterComparator_GT :: UsageStatisticsFilterComparator
- pattern UsageStatisticsFilterComparator_GTE :: UsageStatisticsFilterComparator
- pattern UsageStatisticsFilterComparator_LT :: UsageStatisticsFilterComparator
- pattern UsageStatisticsFilterComparator_LTE :: UsageStatisticsFilterComparator
- pattern UsageStatisticsFilterComparator_NE :: UsageStatisticsFilterComparator
- newtype UsageStatisticsFilterKey where
- UsageStatisticsFilterKey' { }
- pattern UsageStatisticsFilterKey_AccountId :: UsageStatisticsFilterKey
- pattern UsageStatisticsFilterKey_FreeTrialStartDate :: UsageStatisticsFilterKey
- pattern UsageStatisticsFilterKey_ServiceLimit :: UsageStatisticsFilterKey
- pattern UsageStatisticsFilterKey_Total :: UsageStatisticsFilterKey
- newtype UsageStatisticsSortKey where
- UsageStatisticsSortKey' { }
- pattern UsageStatisticsSortKey_AccountId :: UsageStatisticsSortKey
- pattern UsageStatisticsSortKey_FreeTrialStartDate :: UsageStatisticsSortKey
- pattern UsageStatisticsSortKey_ServiceLimitValue :: UsageStatisticsSortKey
- pattern UsageStatisticsSortKey_Total :: UsageStatisticsSortKey
- newtype UsageType where
- UsageType' { }
- pattern UsageType_AUTOMATED_OBJECT_MONITORING :: UsageType
- pattern UsageType_AUTOMATED_SENSITIVE_DATA_DISCOVERY :: UsageType
- pattern UsageType_DATA_INVENTORY_EVALUATION :: UsageType
- pattern UsageType_SENSITIVE_DATA_DISCOVERY :: UsageType
- newtype UserIdentityType where
- UserIdentityType' { }
- pattern UserIdentityType_AWSAccount :: UserIdentityType
- pattern UserIdentityType_AWSService :: UserIdentityType
- pattern UserIdentityType_AssumedRole :: UserIdentityType
- pattern UserIdentityType_FederatedUser :: UserIdentityType
- pattern UserIdentityType_IAMUser :: UserIdentityType
- pattern UserIdentityType_Root :: UserIdentityType
- data AccessControlList = AccessControlList' {}
- newAccessControlList :: AccessControlList
- accessControlList_allowsPublicReadAccess :: Lens' AccessControlList (Maybe Bool)
- accessControlList_allowsPublicWriteAccess :: Lens' AccessControlList (Maybe Bool)
- data AccountDetail = AccountDetail' {}
- newAccountDetail :: Text -> Text -> AccountDetail
- accountDetail_email :: Lens' AccountDetail Text
- accountDetail_accountId :: Lens' AccountDetail Text
- data AccountLevelPermissions = AccountLevelPermissions' {}
- newAccountLevelPermissions :: AccountLevelPermissions
- accountLevelPermissions_blockPublicAccess :: Lens' AccountLevelPermissions (Maybe BlockPublicAccess)
- data AdminAccount = AdminAccount' {}
- newAdminAccount :: AdminAccount
- adminAccount_accountId :: Lens' AdminAccount (Maybe Text)
- adminAccount_status :: Lens' AdminAccount (Maybe AdminStatus)
- data AllowListCriteria = AllowListCriteria' {}
- newAllowListCriteria :: AllowListCriteria
- allowListCriteria_regex :: Lens' AllowListCriteria (Maybe Text)
- allowListCriteria_s3WordsList :: Lens' AllowListCriteria (Maybe S3WordsList)
- data AllowListStatus = AllowListStatus' {}
- newAllowListStatus :: AllowListStatusCode -> AllowListStatus
- allowListStatus_description :: Lens' AllowListStatus (Maybe Text)
- allowListStatus_code :: Lens' AllowListStatus AllowListStatusCode
- data AllowListSummary = AllowListSummary' {}
- newAllowListSummary :: AllowListSummary
- allowListSummary_arn :: Lens' AllowListSummary (Maybe Text)
- allowListSummary_createdAt :: Lens' AllowListSummary (Maybe UTCTime)
- allowListSummary_description :: Lens' AllowListSummary (Maybe Text)
- allowListSummary_id :: Lens' AllowListSummary (Maybe Text)
- allowListSummary_name :: Lens' AllowListSummary (Maybe Text)
- allowListSummary_updatedAt :: Lens' AllowListSummary (Maybe UTCTime)
- data ApiCallDetails = ApiCallDetails' {}
- newApiCallDetails :: ApiCallDetails
- apiCallDetails_api :: Lens' ApiCallDetails (Maybe Text)
- apiCallDetails_apiServiceName :: Lens' ApiCallDetails (Maybe Text)
- apiCallDetails_firstSeen :: Lens' ApiCallDetails (Maybe UTCTime)
- apiCallDetails_lastSeen :: Lens' ApiCallDetails (Maybe UTCTime)
- data AssumedRole = AssumedRole' {}
- newAssumedRole :: AssumedRole
- assumedRole_accessKeyId :: Lens' AssumedRole (Maybe Text)
- assumedRole_accountId :: Lens' AssumedRole (Maybe Text)
- assumedRole_arn :: Lens' AssumedRole (Maybe Text)
- assumedRole_principalId :: Lens' AssumedRole (Maybe Text)
- assumedRole_sessionContext :: Lens' AssumedRole (Maybe SessionContext)
- data AwsAccount = AwsAccount' {}
- newAwsAccount :: AwsAccount
- awsAccount_accountId :: Lens' AwsAccount (Maybe Text)
- awsAccount_principalId :: Lens' AwsAccount (Maybe Text)
- data AwsService = AwsService' {}
- newAwsService :: AwsService
- awsService_invokedBy :: Lens' AwsService (Maybe Text)
- data BatchGetCustomDataIdentifierSummary = BatchGetCustomDataIdentifierSummary' {}
- newBatchGetCustomDataIdentifierSummary :: BatchGetCustomDataIdentifierSummary
- batchGetCustomDataIdentifierSummary_arn :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text)
- batchGetCustomDataIdentifierSummary_createdAt :: Lens' BatchGetCustomDataIdentifierSummary (Maybe UTCTime)
- batchGetCustomDataIdentifierSummary_deleted :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Bool)
- batchGetCustomDataIdentifierSummary_description :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text)
- batchGetCustomDataIdentifierSummary_id :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text)
- batchGetCustomDataIdentifierSummary_name :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text)
- data BlockPublicAccess = BlockPublicAccess' {}
- newBlockPublicAccess :: BlockPublicAccess
- blockPublicAccess_blockPublicAcls :: Lens' BlockPublicAccess (Maybe Bool)
- blockPublicAccess_blockPublicPolicy :: Lens' BlockPublicAccess (Maybe Bool)
- blockPublicAccess_ignorePublicAcls :: Lens' BlockPublicAccess (Maybe Bool)
- blockPublicAccess_restrictPublicBuckets :: Lens' BlockPublicAccess (Maybe Bool)
- data BucketCountByEffectivePermission = BucketCountByEffectivePermission' {}
- newBucketCountByEffectivePermission :: BucketCountByEffectivePermission
- bucketCountByEffectivePermission_publiclyAccessible :: Lens' BucketCountByEffectivePermission (Maybe Integer)
- bucketCountByEffectivePermission_publiclyReadable :: Lens' BucketCountByEffectivePermission (Maybe Integer)
- bucketCountByEffectivePermission_publiclyWritable :: Lens' BucketCountByEffectivePermission (Maybe Integer)
- bucketCountByEffectivePermission_unknown :: Lens' BucketCountByEffectivePermission (Maybe Integer)
- data BucketCountByEncryptionType = BucketCountByEncryptionType' {}
- newBucketCountByEncryptionType :: BucketCountByEncryptionType
- bucketCountByEncryptionType_kmsManaged :: Lens' BucketCountByEncryptionType (Maybe Integer)
- bucketCountByEncryptionType_s3Managed :: Lens' BucketCountByEncryptionType (Maybe Integer)
- bucketCountByEncryptionType_unencrypted :: Lens' BucketCountByEncryptionType (Maybe Integer)
- bucketCountByEncryptionType_unknown :: Lens' BucketCountByEncryptionType (Maybe Integer)
- data BucketCountBySharedAccessType = BucketCountBySharedAccessType' {}
- newBucketCountBySharedAccessType :: BucketCountBySharedAccessType
- bucketCountBySharedAccessType_external :: Lens' BucketCountBySharedAccessType (Maybe Integer)
- bucketCountBySharedAccessType_internal :: Lens' BucketCountBySharedAccessType (Maybe Integer)
- bucketCountBySharedAccessType_notShared :: Lens' BucketCountBySharedAccessType (Maybe Integer)
- bucketCountBySharedAccessType_unknown :: Lens' BucketCountBySharedAccessType (Maybe Integer)
- data BucketCountPolicyAllowsUnencryptedObjectUploads = BucketCountPolicyAllowsUnencryptedObjectUploads' {}
- newBucketCountPolicyAllowsUnencryptedObjectUploads :: BucketCountPolicyAllowsUnencryptedObjectUploads
- bucketCountPolicyAllowsUnencryptedObjectUploads_allowsUnencryptedObjectUploads :: Lens' BucketCountPolicyAllowsUnencryptedObjectUploads (Maybe Integer)
- bucketCountPolicyAllowsUnencryptedObjectUploads_deniesUnencryptedObjectUploads :: Lens' BucketCountPolicyAllowsUnencryptedObjectUploads (Maybe Integer)
- bucketCountPolicyAllowsUnencryptedObjectUploads_unknown :: Lens' BucketCountPolicyAllowsUnencryptedObjectUploads (Maybe Integer)
- data BucketCriteriaAdditionalProperties = BucketCriteriaAdditionalProperties' {}
- newBucketCriteriaAdditionalProperties :: BucketCriteriaAdditionalProperties
- bucketCriteriaAdditionalProperties_eq :: Lens' BucketCriteriaAdditionalProperties (Maybe [Text])
- bucketCriteriaAdditionalProperties_gt :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer)
- bucketCriteriaAdditionalProperties_gte :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer)
- bucketCriteriaAdditionalProperties_lt :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer)
- bucketCriteriaAdditionalProperties_lte :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer)
- bucketCriteriaAdditionalProperties_neq :: Lens' BucketCriteriaAdditionalProperties (Maybe [Text])
- bucketCriteriaAdditionalProperties_prefix :: Lens' BucketCriteriaAdditionalProperties (Maybe Text)
- data BucketLevelPermissions = BucketLevelPermissions' {}
- newBucketLevelPermissions :: BucketLevelPermissions
- bucketLevelPermissions_accessControlList :: Lens' BucketLevelPermissions (Maybe AccessControlList)
- bucketLevelPermissions_blockPublicAccess :: Lens' BucketLevelPermissions (Maybe BlockPublicAccess)
- bucketLevelPermissions_bucketPolicy :: Lens' BucketLevelPermissions (Maybe BucketPolicy)
- data BucketMetadata = BucketMetadata' {
- accountId :: Maybe Text
- allowsUnencryptedObjectUploads :: Maybe AllowsUnencryptedObjectUploads
- bucketArn :: Maybe Text
- bucketCreatedAt :: Maybe ISO8601
- bucketName :: Maybe Text
- classifiableObjectCount :: Maybe Integer
- classifiableSizeInBytes :: Maybe Integer
- errorCode :: Maybe BucketMetadataErrorCode
- errorMessage :: Maybe Text
- jobDetails :: Maybe JobDetails
- lastAutomatedDiscoveryTime :: Maybe ISO8601
- lastUpdated :: Maybe ISO8601
- objectCount :: Maybe Integer
- objectCountByEncryptionType :: Maybe ObjectCountByEncryptionType
- publicAccess :: Maybe BucketPublicAccess
- region :: Maybe Text
- replicationDetails :: Maybe ReplicationDetails
- sensitivityScore :: Maybe Int
- serverSideEncryption :: Maybe BucketServerSideEncryption
- sharedAccess :: Maybe SharedAccess
- sizeInBytes :: Maybe Integer
- sizeInBytesCompressed :: Maybe Integer
- tags :: Maybe [KeyValuePair]
- unclassifiableObjectCount :: Maybe ObjectLevelStatistics
- unclassifiableObjectSizeInBytes :: Maybe ObjectLevelStatistics
- versioning :: Maybe Bool
- newBucketMetadata :: BucketMetadata
- bucketMetadata_accountId :: Lens' BucketMetadata (Maybe Text)
- bucketMetadata_allowsUnencryptedObjectUploads :: Lens' BucketMetadata (Maybe AllowsUnencryptedObjectUploads)
- bucketMetadata_bucketArn :: Lens' BucketMetadata (Maybe Text)
- bucketMetadata_bucketCreatedAt :: Lens' BucketMetadata (Maybe UTCTime)
- bucketMetadata_bucketName :: Lens' BucketMetadata (Maybe Text)
- bucketMetadata_classifiableObjectCount :: Lens' BucketMetadata (Maybe Integer)
- bucketMetadata_classifiableSizeInBytes :: Lens' BucketMetadata (Maybe Integer)
- bucketMetadata_errorCode :: Lens' BucketMetadata (Maybe BucketMetadataErrorCode)
- bucketMetadata_errorMessage :: Lens' BucketMetadata (Maybe Text)
- bucketMetadata_jobDetails :: Lens' BucketMetadata (Maybe JobDetails)
- bucketMetadata_lastAutomatedDiscoveryTime :: Lens' BucketMetadata (Maybe UTCTime)
- bucketMetadata_lastUpdated :: Lens' BucketMetadata (Maybe UTCTime)
- bucketMetadata_objectCount :: Lens' BucketMetadata (Maybe Integer)
- bucketMetadata_objectCountByEncryptionType :: Lens' BucketMetadata (Maybe ObjectCountByEncryptionType)
- bucketMetadata_publicAccess :: Lens' BucketMetadata (Maybe BucketPublicAccess)
- bucketMetadata_region :: Lens' BucketMetadata (Maybe Text)
- bucketMetadata_replicationDetails :: Lens' BucketMetadata (Maybe ReplicationDetails)
- bucketMetadata_sensitivityScore :: Lens' BucketMetadata (Maybe Int)
- bucketMetadata_serverSideEncryption :: Lens' BucketMetadata (Maybe BucketServerSideEncryption)
- bucketMetadata_sharedAccess :: Lens' BucketMetadata (Maybe SharedAccess)
- bucketMetadata_sizeInBytes :: Lens' BucketMetadata (Maybe Integer)
- bucketMetadata_sizeInBytesCompressed :: Lens' BucketMetadata (Maybe Integer)
- bucketMetadata_tags :: Lens' BucketMetadata (Maybe [KeyValuePair])
- bucketMetadata_unclassifiableObjectCount :: Lens' BucketMetadata (Maybe ObjectLevelStatistics)
- bucketMetadata_unclassifiableObjectSizeInBytes :: Lens' BucketMetadata (Maybe ObjectLevelStatistics)
- bucketMetadata_versioning :: Lens' BucketMetadata (Maybe Bool)
- data BucketPermissionConfiguration = BucketPermissionConfiguration' {}
- newBucketPermissionConfiguration :: BucketPermissionConfiguration
- bucketPermissionConfiguration_accountLevelPermissions :: Lens' BucketPermissionConfiguration (Maybe AccountLevelPermissions)
- bucketPermissionConfiguration_bucketLevelPermissions :: Lens' BucketPermissionConfiguration (Maybe BucketLevelPermissions)
- data BucketPolicy = BucketPolicy' {}
- newBucketPolicy :: BucketPolicy
- bucketPolicy_allowsPublicReadAccess :: Lens' BucketPolicy (Maybe Bool)
- bucketPolicy_allowsPublicWriteAccess :: Lens' BucketPolicy (Maybe Bool)
- data BucketPublicAccess = BucketPublicAccess' {}
- newBucketPublicAccess :: BucketPublicAccess
- bucketPublicAccess_effectivePermission :: Lens' BucketPublicAccess (Maybe EffectivePermission)
- bucketPublicAccess_permissionConfiguration :: Lens' BucketPublicAccess (Maybe BucketPermissionConfiguration)
- data BucketServerSideEncryption = BucketServerSideEncryption' {}
- newBucketServerSideEncryption :: BucketServerSideEncryption
- bucketServerSideEncryption_kmsMasterKeyId :: Lens' BucketServerSideEncryption (Maybe Text)
- bucketServerSideEncryption_type :: Lens' BucketServerSideEncryption (Maybe Type)
- data BucketSortCriteria = BucketSortCriteria' {}
- newBucketSortCriteria :: BucketSortCriteria
- bucketSortCriteria_attributeName :: Lens' BucketSortCriteria (Maybe Text)
- bucketSortCriteria_orderBy :: Lens' BucketSortCriteria (Maybe OrderBy)
- data BucketStatisticsBySensitivity = BucketStatisticsBySensitivity' {}
- newBucketStatisticsBySensitivity :: BucketStatisticsBySensitivity
- bucketStatisticsBySensitivity_classificationError :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations)
- bucketStatisticsBySensitivity_notClassified :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations)
- bucketStatisticsBySensitivity_notSensitive :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations)
- bucketStatisticsBySensitivity_sensitive :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations)
- data Cell = Cell' {}
- newCell :: Cell
- cell_cellReference :: Lens' Cell (Maybe Text)
- cell_column :: Lens' Cell (Maybe Integer)
- cell_columnName :: Lens' Cell (Maybe Text)
- cell_row :: Lens' Cell (Maybe Integer)
- data ClassificationDetails = ClassificationDetails' {}
- newClassificationDetails :: ClassificationDetails
- classificationDetails_detailedResultsLocation :: Lens' ClassificationDetails (Maybe Text)
- classificationDetails_jobArn :: Lens' ClassificationDetails (Maybe Text)
- classificationDetails_jobId :: Lens' ClassificationDetails (Maybe Text)
- classificationDetails_originType :: Lens' ClassificationDetails (Maybe OriginType)
- classificationDetails_result :: Lens' ClassificationDetails (Maybe ClassificationResult)
- data ClassificationExportConfiguration = ClassificationExportConfiguration' {}
- newClassificationExportConfiguration :: ClassificationExportConfiguration
- classificationExportConfiguration_s3Destination :: Lens' ClassificationExportConfiguration (Maybe S3Destination)
- data ClassificationResult = ClassificationResult' {}
- newClassificationResult :: ClassificationResult
- classificationResult_additionalOccurrences :: Lens' ClassificationResult (Maybe Bool)
- classificationResult_customDataIdentifiers :: Lens' ClassificationResult (Maybe CustomDataIdentifiers)
- classificationResult_mimeType :: Lens' ClassificationResult (Maybe Text)
- classificationResult_sensitiveData :: Lens' ClassificationResult (Maybe [SensitiveDataItem])
- classificationResult_sizeClassified :: Lens' ClassificationResult (Maybe Integer)
- classificationResult_status :: Lens' ClassificationResult (Maybe ClassificationResultStatus)
- data ClassificationResultStatus = ClassificationResultStatus' {}
- newClassificationResultStatus :: ClassificationResultStatus
- classificationResultStatus_code :: Lens' ClassificationResultStatus (Maybe Text)
- classificationResultStatus_reason :: Lens' ClassificationResultStatus (Maybe Text)
- data ClassificationScopeSummary = ClassificationScopeSummary' {}
- newClassificationScopeSummary :: ClassificationScopeSummary
- classificationScopeSummary_id :: Lens' ClassificationScopeSummary (Maybe Text)
- classificationScopeSummary_name :: Lens' ClassificationScopeSummary (Maybe Text)
- data CriteriaBlockForJob = CriteriaBlockForJob' {
- and :: Maybe [CriteriaForJob]
- newCriteriaBlockForJob :: CriteriaBlockForJob
- criteriaBlockForJob_and :: Lens' CriteriaBlockForJob (Maybe [CriteriaForJob])
- data CriteriaForJob = CriteriaForJob' {}
- newCriteriaForJob :: CriteriaForJob
- criteriaForJob_simpleCriterion :: Lens' CriteriaForJob (Maybe SimpleCriterionForJob)
- criteriaForJob_tagCriterion :: Lens' CriteriaForJob (Maybe TagCriterionForJob)
- data CriterionAdditionalProperties = CriterionAdditionalProperties' {}
- newCriterionAdditionalProperties :: CriterionAdditionalProperties
- criterionAdditionalProperties_eq :: Lens' CriterionAdditionalProperties (Maybe [Text])
- criterionAdditionalProperties_eqExactMatch :: Lens' CriterionAdditionalProperties (Maybe [Text])
- criterionAdditionalProperties_gt :: Lens' CriterionAdditionalProperties (Maybe Integer)
- criterionAdditionalProperties_gte :: Lens' CriterionAdditionalProperties (Maybe Integer)
- criterionAdditionalProperties_lt :: Lens' CriterionAdditionalProperties (Maybe Integer)
- criterionAdditionalProperties_lte :: Lens' CriterionAdditionalProperties (Maybe Integer)
- criterionAdditionalProperties_neq :: Lens' CriterionAdditionalProperties (Maybe [Text])
- data CustomDataIdentifierSummary = CustomDataIdentifierSummary' {}
- newCustomDataIdentifierSummary :: CustomDataIdentifierSummary
- customDataIdentifierSummary_arn :: Lens' CustomDataIdentifierSummary (Maybe Text)
- customDataIdentifierSummary_createdAt :: Lens' CustomDataIdentifierSummary (Maybe UTCTime)
- customDataIdentifierSummary_description :: Lens' CustomDataIdentifierSummary (Maybe Text)
- customDataIdentifierSummary_id :: Lens' CustomDataIdentifierSummary (Maybe Text)
- customDataIdentifierSummary_name :: Lens' CustomDataIdentifierSummary (Maybe Text)
- data CustomDataIdentifiers = CustomDataIdentifiers' {}
- newCustomDataIdentifiers :: CustomDataIdentifiers
- customDataIdentifiers_detections :: Lens' CustomDataIdentifiers (Maybe [CustomDetection])
- customDataIdentifiers_totalCount :: Lens' CustomDataIdentifiers (Maybe Integer)
- data CustomDetection = CustomDetection' {}
- newCustomDetection :: CustomDetection
- customDetection_arn :: Lens' CustomDetection (Maybe Text)
- customDetection_count :: Lens' CustomDetection (Maybe Integer)
- customDetection_name :: Lens' CustomDetection (Maybe Text)
- customDetection_occurrences :: Lens' CustomDetection (Maybe Occurrences)
- data DailySchedule = DailySchedule' {
- newDailySchedule :: DailySchedule
- data DefaultDetection = DefaultDetection' {
- count :: Maybe Integer
- occurrences :: Maybe Occurrences
- type' :: Maybe Text
- newDefaultDetection :: DefaultDetection
- defaultDetection_count :: Lens' DefaultDetection (Maybe Integer)
- defaultDetection_occurrences :: Lens' DefaultDetection (Maybe Occurrences)
- defaultDetection_type :: Lens' DefaultDetection (Maybe Text)
- data DetectedDataDetails = DetectedDataDetails' {}
- newDetectedDataDetails :: Text -> DetectedDataDetails
- detectedDataDetails_value :: Lens' DetectedDataDetails Text
- data Detection = Detection' {}
- newDetection :: Detection
- detection_arn :: Lens' Detection (Maybe Text)
- detection_count :: Lens' Detection (Maybe Integer)
- detection_id :: Lens' Detection (Maybe Text)
- detection_name :: Lens' Detection (Maybe Text)
- detection_suppressed :: Lens' Detection (Maybe Bool)
- detection_type :: Lens' Detection (Maybe DataIdentifierType)
- data DomainDetails = DomainDetails' {
- domainName :: Maybe Text
- newDomainDetails :: DomainDetails
- domainDetails_domainName :: Lens' DomainDetails (Maybe Text)
- data FederatedUser = FederatedUser' {}
- newFederatedUser :: FederatedUser
- federatedUser_accessKeyId :: Lens' FederatedUser (Maybe Text)
- federatedUser_accountId :: Lens' FederatedUser (Maybe Text)
- federatedUser_arn :: Lens' FederatedUser (Maybe Text)
- federatedUser_principalId :: Lens' FederatedUser (Maybe Text)
- federatedUser_sessionContext :: Lens' FederatedUser (Maybe SessionContext)
- data Finding = Finding' {
- accountId :: Maybe Text
- archived :: Maybe Bool
- category :: Maybe FindingCategory
- classificationDetails :: Maybe ClassificationDetails
- count :: Maybe Integer
- createdAt :: Maybe ISO8601
- description :: Maybe Text
- id :: Maybe Text
- partition :: Maybe Text
- policyDetails :: Maybe PolicyDetails
- region :: Maybe Text
- resourcesAffected :: Maybe ResourcesAffected
- sample :: Maybe Bool
- schemaVersion :: Maybe Text
- severity :: Maybe Severity
- title :: Maybe Text
- type' :: Maybe FindingType
- updatedAt :: Maybe ISO8601
- newFinding :: Finding
- finding_accountId :: Lens' Finding (Maybe Text)
- finding_archived :: Lens' Finding (Maybe Bool)
- finding_category :: Lens' Finding (Maybe FindingCategory)
- finding_classificationDetails :: Lens' Finding (Maybe ClassificationDetails)
- finding_count :: Lens' Finding (Maybe Integer)
- finding_createdAt :: Lens' Finding (Maybe UTCTime)
- finding_description :: Lens' Finding (Maybe Text)
- finding_id :: Lens' Finding (Maybe Text)
- finding_partition :: Lens' Finding (Maybe Text)
- finding_policyDetails :: Lens' Finding (Maybe PolicyDetails)
- finding_region :: Lens' Finding (Maybe Text)
- finding_resourcesAffected :: Lens' Finding (Maybe ResourcesAffected)
- finding_sample :: Lens' Finding (Maybe Bool)
- finding_schemaVersion :: Lens' Finding (Maybe Text)
- finding_severity :: Lens' Finding (Maybe Severity)
- finding_title :: Lens' Finding (Maybe Text)
- finding_type :: Lens' Finding (Maybe FindingType)
- finding_updatedAt :: Lens' Finding (Maybe UTCTime)
- data FindingAction = FindingAction' {}
- newFindingAction :: FindingAction
- findingAction_actionType :: Lens' FindingAction (Maybe FindingActionType)
- findingAction_apiCallDetails :: Lens' FindingAction (Maybe ApiCallDetails)
- data FindingActor = FindingActor' {}
- newFindingActor :: FindingActor
- findingActor_domainDetails :: Lens' FindingActor (Maybe DomainDetails)
- findingActor_ipAddressDetails :: Lens' FindingActor (Maybe IpAddressDetails)
- findingActor_userIdentity :: Lens' FindingActor (Maybe UserIdentity)
- data FindingCriteria = FindingCriteria' {}
- newFindingCriteria :: FindingCriteria
- findingCriteria_criterion :: Lens' FindingCriteria (Maybe (HashMap Text CriterionAdditionalProperties))
- data FindingStatisticsSortCriteria = FindingStatisticsSortCriteria' {}
- newFindingStatisticsSortCriteria :: FindingStatisticsSortCriteria
- findingStatisticsSortCriteria_attributeName :: Lens' FindingStatisticsSortCriteria (Maybe FindingStatisticsSortAttributeName)
- findingStatisticsSortCriteria_orderBy :: Lens' FindingStatisticsSortCriteria (Maybe OrderBy)
- data FindingsFilterListItem = FindingsFilterListItem' {}
- newFindingsFilterListItem :: FindingsFilterListItem
- findingsFilterListItem_action :: Lens' FindingsFilterListItem (Maybe FindingsFilterAction)
- findingsFilterListItem_arn :: Lens' FindingsFilterListItem (Maybe Text)
- findingsFilterListItem_id :: Lens' FindingsFilterListItem (Maybe Text)
- findingsFilterListItem_name :: Lens' FindingsFilterListItem (Maybe Text)
- findingsFilterListItem_tags :: Lens' FindingsFilterListItem (Maybe (HashMap Text Text))
- data GroupCount = GroupCount' {}
- newGroupCount :: GroupCount
- groupCount_count :: Lens' GroupCount (Maybe Integer)
- groupCount_groupKey :: Lens' GroupCount (Maybe Text)
- data IamUser = IamUser' {}
- newIamUser :: IamUser
- iamUser_accountId :: Lens' IamUser (Maybe Text)
- iamUser_arn :: Lens' IamUser (Maybe Text)
- iamUser_principalId :: Lens' IamUser (Maybe Text)
- iamUser_userName :: Lens' IamUser (Maybe Text)
- data Invitation = Invitation' {}
- newInvitation :: Invitation
- invitation_accountId :: Lens' Invitation (Maybe Text)
- invitation_invitationId :: Lens' Invitation (Maybe Text)
- invitation_invitedAt :: Lens' Invitation (Maybe UTCTime)
- invitation_relationshipStatus :: Lens' Invitation (Maybe RelationshipStatus)
- data IpAddressDetails = IpAddressDetails' {}
- newIpAddressDetails :: IpAddressDetails
- ipAddressDetails_ipAddressV4 :: Lens' IpAddressDetails (Maybe Text)
- ipAddressDetails_ipCity :: Lens' IpAddressDetails (Maybe IpCity)
- ipAddressDetails_ipCountry :: Lens' IpAddressDetails (Maybe IpCountry)
- ipAddressDetails_ipGeoLocation :: Lens' IpAddressDetails (Maybe IpGeoLocation)
- ipAddressDetails_ipOwner :: Lens' IpAddressDetails (Maybe IpOwner)
- data IpCity = IpCity' {}
- newIpCity :: IpCity
- ipCity_name :: Lens' IpCity (Maybe Text)
- data IpCountry = IpCountry' {}
- newIpCountry :: IpCountry
- ipCountry_code :: Lens' IpCountry (Maybe Text)
- ipCountry_name :: Lens' IpCountry (Maybe Text)
- data IpGeoLocation = IpGeoLocation' {}
- newIpGeoLocation :: IpGeoLocation
- ipGeoLocation_lat :: Lens' IpGeoLocation (Maybe Double)
- ipGeoLocation_lon :: Lens' IpGeoLocation (Maybe Double)
- data IpOwner = IpOwner' {}
- newIpOwner :: IpOwner
- ipOwner_asn :: Lens' IpOwner (Maybe Text)
- ipOwner_asnOrg :: Lens' IpOwner (Maybe Text)
- ipOwner_isp :: Lens' IpOwner (Maybe Text)
- ipOwner_org :: Lens' IpOwner (Maybe Text)
- data JobDetails = JobDetails' {}
- newJobDetails :: JobDetails
- jobDetails_isDefinedInJob :: Lens' JobDetails (Maybe IsDefinedInJob)
- jobDetails_isMonitoredByJob :: Lens' JobDetails (Maybe IsMonitoredByJob)
- jobDetails_lastJobId :: Lens' JobDetails (Maybe Text)
- jobDetails_lastJobRunTime :: Lens' JobDetails (Maybe UTCTime)
- data JobScheduleFrequency = JobScheduleFrequency' {}
- newJobScheduleFrequency :: JobScheduleFrequency
- jobScheduleFrequency_dailySchedule :: Lens' JobScheduleFrequency (Maybe DailySchedule)
- jobScheduleFrequency_monthlySchedule :: Lens' JobScheduleFrequency (Maybe MonthlySchedule)
- jobScheduleFrequency_weeklySchedule :: Lens' JobScheduleFrequency (Maybe WeeklySchedule)
- data JobScopeTerm = JobScopeTerm' {}
- newJobScopeTerm :: JobScopeTerm
- jobScopeTerm_simpleScopeTerm :: Lens' JobScopeTerm (Maybe SimpleScopeTerm)
- jobScopeTerm_tagScopeTerm :: Lens' JobScopeTerm (Maybe TagScopeTerm)
- data JobScopingBlock = JobScopingBlock' {
- and :: Maybe [JobScopeTerm]
- newJobScopingBlock :: JobScopingBlock
- jobScopingBlock_and :: Lens' JobScopingBlock (Maybe [JobScopeTerm])
- data JobSummary = JobSummary' {
- bucketCriteria :: Maybe S3BucketCriteriaForJob
- bucketDefinitions :: Maybe [S3BucketDefinitionForJob]
- createdAt :: Maybe ISO8601
- jobId :: Maybe Text
- jobStatus :: Maybe JobStatus
- jobType :: Maybe JobType
- lastRunErrorStatus :: Maybe LastRunErrorStatus
- name :: Maybe Text
- userPausedDetails :: Maybe UserPausedDetails
- newJobSummary :: JobSummary
- jobSummary_bucketCriteria :: Lens' JobSummary (Maybe S3BucketCriteriaForJob)
- jobSummary_bucketDefinitions :: Lens' JobSummary (Maybe [S3BucketDefinitionForJob])
- jobSummary_createdAt :: Lens' JobSummary (Maybe UTCTime)
- jobSummary_jobId :: Lens' JobSummary (Maybe Text)
- jobSummary_jobStatus :: Lens' JobSummary (Maybe JobStatus)
- jobSummary_jobType :: Lens' JobSummary (Maybe JobType)
- jobSummary_lastRunErrorStatus :: Lens' JobSummary (Maybe LastRunErrorStatus)
- jobSummary_name :: Lens' JobSummary (Maybe Text)
- jobSummary_userPausedDetails :: Lens' JobSummary (Maybe UserPausedDetails)
- data KeyValuePair = KeyValuePair' {}
- newKeyValuePair :: KeyValuePair
- keyValuePair_key :: Lens' KeyValuePair (Maybe Text)
- keyValuePair_value :: Lens' KeyValuePair (Maybe Text)
- data LastRunErrorStatus = LastRunErrorStatus' {}
- newLastRunErrorStatus :: LastRunErrorStatus
- lastRunErrorStatus_code :: Lens' LastRunErrorStatus (Maybe LastRunErrorStatusCode)
- data ListJobsFilterCriteria = ListJobsFilterCriteria' {}
- newListJobsFilterCriteria :: ListJobsFilterCriteria
- listJobsFilterCriteria_excludes :: Lens' ListJobsFilterCriteria (Maybe [ListJobsFilterTerm])
- listJobsFilterCriteria_includes :: Lens' ListJobsFilterCriteria (Maybe [ListJobsFilterTerm])
- data ListJobsFilterTerm = ListJobsFilterTerm' {
- comparator :: Maybe JobComparator
- key :: Maybe ListJobsFilterKey
- values :: Maybe [Text]
- newListJobsFilterTerm :: ListJobsFilterTerm
- listJobsFilterTerm_comparator :: Lens' ListJobsFilterTerm (Maybe JobComparator)
- listJobsFilterTerm_key :: Lens' ListJobsFilterTerm (Maybe ListJobsFilterKey)
- listJobsFilterTerm_values :: Lens' ListJobsFilterTerm (Maybe [Text])
- data ListJobsSortCriteria = ListJobsSortCriteria' {}
- newListJobsSortCriteria :: ListJobsSortCriteria
- listJobsSortCriteria_attributeName :: Lens' ListJobsSortCriteria (Maybe ListJobsSortAttributeName)
- listJobsSortCriteria_orderBy :: Lens' ListJobsSortCriteria (Maybe OrderBy)
- data ManagedDataIdentifierSummary = ManagedDataIdentifierSummary' {}
- newManagedDataIdentifierSummary :: ManagedDataIdentifierSummary
- managedDataIdentifierSummary_category :: Lens' ManagedDataIdentifierSummary (Maybe SensitiveDataItemCategory)
- managedDataIdentifierSummary_id :: Lens' ManagedDataIdentifierSummary (Maybe Text)
- data MatchingBucket = MatchingBucket' {
- accountId :: Maybe Text
- bucketName :: Maybe Text
- classifiableObjectCount :: Maybe Integer
- classifiableSizeInBytes :: Maybe Integer
- errorCode :: Maybe BucketMetadataErrorCode
- errorMessage :: Maybe Text
- jobDetails :: Maybe JobDetails
- lastAutomatedDiscoveryTime :: Maybe ISO8601
- objectCount :: Maybe Integer
- objectCountByEncryptionType :: Maybe ObjectCountByEncryptionType
- sensitivityScore :: Maybe Int
- sizeInBytes :: Maybe Integer
- sizeInBytesCompressed :: Maybe Integer
- unclassifiableObjectCount :: Maybe ObjectLevelStatistics
- unclassifiableObjectSizeInBytes :: Maybe ObjectLevelStatistics
- newMatchingBucket :: MatchingBucket
- matchingBucket_accountId :: Lens' MatchingBucket (Maybe Text)
- matchingBucket_bucketName :: Lens' MatchingBucket (Maybe Text)
- matchingBucket_classifiableObjectCount :: Lens' MatchingBucket (Maybe Integer)
- matchingBucket_classifiableSizeInBytes :: Lens' MatchingBucket (Maybe Integer)
- matchingBucket_errorCode :: Lens' MatchingBucket (Maybe BucketMetadataErrorCode)
- matchingBucket_errorMessage :: Lens' MatchingBucket (Maybe Text)
- matchingBucket_jobDetails :: Lens' MatchingBucket (Maybe JobDetails)
- matchingBucket_lastAutomatedDiscoveryTime :: Lens' MatchingBucket (Maybe UTCTime)
- matchingBucket_objectCount :: Lens' MatchingBucket (Maybe Integer)
- matchingBucket_objectCountByEncryptionType :: Lens' MatchingBucket (Maybe ObjectCountByEncryptionType)
- matchingBucket_sensitivityScore :: Lens' MatchingBucket (Maybe Int)
- matchingBucket_sizeInBytes :: Lens' MatchingBucket (Maybe Integer)
- matchingBucket_sizeInBytesCompressed :: Lens' MatchingBucket (Maybe Integer)
- matchingBucket_unclassifiableObjectCount :: Lens' MatchingBucket (Maybe ObjectLevelStatistics)
- matchingBucket_unclassifiableObjectSizeInBytes :: Lens' MatchingBucket (Maybe ObjectLevelStatistics)
- data MatchingResource = MatchingResource' {}
- newMatchingResource :: MatchingResource
- matchingResource_matchingBucket :: Lens' MatchingResource (Maybe MatchingBucket)
- data Member = Member' {}
- newMember :: Member
- member_accountId :: Lens' Member (Maybe Text)
- member_administratorAccountId :: Lens' Member (Maybe Text)
- member_arn :: Lens' Member (Maybe Text)
- member_email :: Lens' Member (Maybe Text)
- member_invitedAt :: Lens' Member (Maybe UTCTime)
- member_masterAccountId :: Lens' Member (Maybe Text)
- member_relationshipStatus :: Lens' Member (Maybe RelationshipStatus)
- member_tags :: Lens' Member (Maybe (HashMap Text Text))
- member_updatedAt :: Lens' Member (Maybe UTCTime)
- data MonthlySchedule = MonthlySchedule' {
- dayOfMonth :: Maybe Int
- newMonthlySchedule :: MonthlySchedule
- monthlySchedule_dayOfMonth :: Lens' MonthlySchedule (Maybe Int)
- data ObjectCountByEncryptionType = ObjectCountByEncryptionType' {}
- newObjectCountByEncryptionType :: ObjectCountByEncryptionType
- objectCountByEncryptionType_customerManaged :: Lens' ObjectCountByEncryptionType (Maybe Integer)
- objectCountByEncryptionType_kmsManaged :: Lens' ObjectCountByEncryptionType (Maybe Integer)
- objectCountByEncryptionType_s3Managed :: Lens' ObjectCountByEncryptionType (Maybe Integer)
- objectCountByEncryptionType_unencrypted :: Lens' ObjectCountByEncryptionType (Maybe Integer)
- objectCountByEncryptionType_unknown :: Lens' ObjectCountByEncryptionType (Maybe Integer)
- data ObjectLevelStatistics = ObjectLevelStatistics' {}
- newObjectLevelStatistics :: ObjectLevelStatistics
- objectLevelStatistics_fileType :: Lens' ObjectLevelStatistics (Maybe Integer)
- objectLevelStatistics_storageClass :: Lens' ObjectLevelStatistics (Maybe Integer)
- objectLevelStatistics_total :: Lens' ObjectLevelStatistics (Maybe Integer)
- data Occurrences = Occurrences' {}
- newOccurrences :: Occurrences
- occurrences_cells :: Lens' Occurrences (Maybe [Cell])
- occurrences_lineRanges :: Lens' Occurrences (Maybe [Range])
- occurrences_offsetRanges :: Lens' Occurrences (Maybe [Range])
- occurrences_pages :: Lens' Occurrences (Maybe [Page])
- occurrences_records :: Lens' Occurrences (Maybe [Record])
- data Page = Page' {}
- newPage :: Page
- page_lineRange :: Lens' Page (Maybe Range)
- page_offsetRange :: Lens' Page (Maybe Range)
- page_pageNumber :: Lens' Page (Maybe Integer)
- data PolicyDetails = PolicyDetails' {}
- newPolicyDetails :: PolicyDetails
- policyDetails_action :: Lens' PolicyDetails (Maybe FindingAction)
- policyDetails_actor :: Lens' PolicyDetails (Maybe FindingActor)
- data Range = Range' {}
- newRange :: Range
- range_end :: Lens' Range (Maybe Integer)
- range_start :: Lens' Range (Maybe Integer)
- range_startColumn :: Lens' Range (Maybe Integer)
- data Record = Record' {}
- newRecord :: Record
- record_jsonPath :: Lens' Record (Maybe Text)
- record_recordIndex :: Lens' Record (Maybe Integer)
- data ReplicationDetails = ReplicationDetails' {}
- newReplicationDetails :: ReplicationDetails
- replicationDetails_replicated :: Lens' ReplicationDetails (Maybe Bool)
- replicationDetails_replicatedExternally :: Lens' ReplicationDetails (Maybe Bool)
- replicationDetails_replicationAccounts :: Lens' ReplicationDetails (Maybe [Text])
- data ResourceProfileArtifact = ResourceProfileArtifact' {}
- newResourceProfileArtifact :: Text -> Text -> ResourceProfileArtifact
- resourceProfileArtifact_sensitive :: Lens' ResourceProfileArtifact (Maybe Bool)
- resourceProfileArtifact_classificationResultStatus :: Lens' ResourceProfileArtifact Text
- resourceProfileArtifact_arn :: Lens' ResourceProfileArtifact Text
- data ResourceStatistics = ResourceStatistics' {
- totalBytesClassified :: Maybe Integer
- totalDetections :: Maybe Integer
- totalDetectionsSuppressed :: Maybe Integer
- totalItemsClassified :: Maybe Integer
- totalItemsSensitive :: Maybe Integer
- totalItemsSkipped :: Maybe Integer
- totalItemsSkippedInvalidEncryption :: Maybe Integer
- totalItemsSkippedInvalidKms :: Maybe Integer
- totalItemsSkippedPermissionDenied :: Maybe Integer
- newResourceStatistics :: ResourceStatistics
- resourceStatistics_totalBytesClassified :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalDetections :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalDetectionsSuppressed :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalItemsClassified :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalItemsSensitive :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalItemsSkipped :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalItemsSkippedInvalidEncryption :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalItemsSkippedInvalidKms :: Lens' ResourceStatistics (Maybe Integer)
- resourceStatistics_totalItemsSkippedPermissionDenied :: Lens' ResourceStatistics (Maybe Integer)
- data ResourcesAffected = ResourcesAffected' {}
- newResourcesAffected :: ResourcesAffected
- resourcesAffected_s3Bucket :: Lens' ResourcesAffected (Maybe S3Bucket)
- resourcesAffected_s3Object :: Lens' ResourcesAffected (Maybe S3Object)
- data RevealConfiguration = RevealConfiguration' {
- kmsKeyId :: Maybe Text
- status :: RevealStatus
- newRevealConfiguration :: RevealStatus -> RevealConfiguration
- revealConfiguration_kmsKeyId :: Lens' RevealConfiguration (Maybe Text)
- revealConfiguration_status :: Lens' RevealConfiguration RevealStatus
- data S3Bucket = S3Bucket' {}
- newS3Bucket :: S3Bucket
- s3Bucket_allowsUnencryptedObjectUploads :: Lens' S3Bucket (Maybe AllowsUnencryptedObjectUploads)
- s3Bucket_arn :: Lens' S3Bucket (Maybe Text)
- s3Bucket_createdAt :: Lens' S3Bucket (Maybe UTCTime)
- s3Bucket_defaultServerSideEncryption :: Lens' S3Bucket (Maybe ServerSideEncryption)
- s3Bucket_name :: Lens' S3Bucket (Maybe Text)
- s3Bucket_owner :: Lens' S3Bucket (Maybe S3BucketOwner)
- s3Bucket_publicAccess :: Lens' S3Bucket (Maybe BucketPublicAccess)
- s3Bucket_tags :: Lens' S3Bucket (Maybe [KeyValuePair])
- data S3BucketCriteriaForJob = S3BucketCriteriaForJob' {}
- newS3BucketCriteriaForJob :: S3BucketCriteriaForJob
- s3BucketCriteriaForJob_excludes :: Lens' S3BucketCriteriaForJob (Maybe CriteriaBlockForJob)
- s3BucketCriteriaForJob_includes :: Lens' S3BucketCriteriaForJob (Maybe CriteriaBlockForJob)
- data S3BucketDefinitionForJob = S3BucketDefinitionForJob' {}
- newS3BucketDefinitionForJob :: Text -> S3BucketDefinitionForJob
- s3BucketDefinitionForJob_accountId :: Lens' S3BucketDefinitionForJob Text
- s3BucketDefinitionForJob_buckets :: Lens' S3BucketDefinitionForJob [Text]
- data S3BucketOwner = S3BucketOwner' {}
- newS3BucketOwner :: S3BucketOwner
- s3BucketOwner_displayName :: Lens' S3BucketOwner (Maybe Text)
- s3BucketOwner_id :: Lens' S3BucketOwner (Maybe Text)
- data S3ClassificationScope = S3ClassificationScope' {}
- newS3ClassificationScope :: S3ClassificationScopeExclusion -> S3ClassificationScope
- s3ClassificationScope_excludes :: Lens' S3ClassificationScope S3ClassificationScopeExclusion
- data S3ClassificationScopeExclusion = S3ClassificationScopeExclusion' {
- bucketNames :: [Text]
- newS3ClassificationScopeExclusion :: S3ClassificationScopeExclusion
- s3ClassificationScopeExclusion_bucketNames :: Lens' S3ClassificationScopeExclusion [Text]
- data S3ClassificationScopeExclusionUpdate = S3ClassificationScopeExclusionUpdate' {}
- newS3ClassificationScopeExclusionUpdate :: ClassificationScopeUpdateOperation -> S3ClassificationScopeExclusionUpdate
- s3ClassificationScopeExclusionUpdate_bucketNames :: Lens' S3ClassificationScopeExclusionUpdate [Text]
- s3ClassificationScopeExclusionUpdate_operation :: Lens' S3ClassificationScopeExclusionUpdate ClassificationScopeUpdateOperation
- data S3ClassificationScopeUpdate = S3ClassificationScopeUpdate' {}
- newS3ClassificationScopeUpdate :: S3ClassificationScopeExclusionUpdate -> S3ClassificationScopeUpdate
- s3ClassificationScopeUpdate_excludes :: Lens' S3ClassificationScopeUpdate S3ClassificationScopeExclusionUpdate
- data S3Destination = S3Destination' {}
- newS3Destination :: Text -> Text -> S3Destination
- s3Destination_keyPrefix :: Lens' S3Destination (Maybe Text)
- s3Destination_bucketName :: Lens' S3Destination Text
- s3Destination_kmsKeyArn :: Lens' S3Destination Text
- data S3JobDefinition = S3JobDefinition' {}
- newS3JobDefinition :: S3JobDefinition
- s3JobDefinition_bucketCriteria :: Lens' S3JobDefinition (Maybe S3BucketCriteriaForJob)
- s3JobDefinition_bucketDefinitions :: Lens' S3JobDefinition (Maybe [S3BucketDefinitionForJob])
- s3JobDefinition_scoping :: Lens' S3JobDefinition (Maybe Scoping)
- data S3Object = S3Object' {
- bucketArn :: Maybe Text
- eTag :: Maybe Text
- extension :: Maybe Text
- key :: Maybe Text
- lastModified :: Maybe ISO8601
- path :: Maybe Text
- publicAccess :: Maybe Bool
- serverSideEncryption :: Maybe ServerSideEncryption
- size :: Maybe Integer
- storageClass :: Maybe StorageClass
- tags :: Maybe [KeyValuePair]
- versionId :: Maybe Text
- newS3Object :: S3Object
- s3Object_bucketArn :: Lens' S3Object (Maybe Text)
- s3Object_eTag :: Lens' S3Object (Maybe Text)
- s3Object_extension :: Lens' S3Object (Maybe Text)
- s3Object_key :: Lens' S3Object (Maybe Text)
- s3Object_lastModified :: Lens' S3Object (Maybe UTCTime)
- s3Object_path :: Lens' S3Object (Maybe Text)
- s3Object_publicAccess :: Lens' S3Object (Maybe Bool)
- s3Object_serverSideEncryption :: Lens' S3Object (Maybe ServerSideEncryption)
- s3Object_size :: Lens' S3Object (Maybe Integer)
- s3Object_storageClass :: Lens' S3Object (Maybe StorageClass)
- s3Object_tags :: Lens' S3Object (Maybe [KeyValuePair])
- s3Object_versionId :: Lens' S3Object (Maybe Text)
- data S3WordsList = S3WordsList' {
- bucketName :: Text
- objectKey :: Text
- newS3WordsList :: Text -> Text -> S3WordsList
- s3WordsList_bucketName :: Lens' S3WordsList Text
- s3WordsList_objectKey :: Lens' S3WordsList Text
- data Scoping = Scoping' {}
- newScoping :: Scoping
- scoping_excludes :: Lens' Scoping (Maybe JobScopingBlock)
- scoping_includes :: Lens' Scoping (Maybe JobScopingBlock)
- data SearchResourcesBucketCriteria = SearchResourcesBucketCriteria' {}
- newSearchResourcesBucketCriteria :: SearchResourcesBucketCriteria
- searchResourcesBucketCriteria_excludes :: Lens' SearchResourcesBucketCriteria (Maybe SearchResourcesCriteriaBlock)
- searchResourcesBucketCriteria_includes :: Lens' SearchResourcesBucketCriteria (Maybe SearchResourcesCriteriaBlock)
- data SearchResourcesCriteria = SearchResourcesCriteria' {}
- newSearchResourcesCriteria :: SearchResourcesCriteria
- searchResourcesCriteria_simpleCriterion :: Lens' SearchResourcesCriteria (Maybe SearchResourcesSimpleCriterion)
- searchResourcesCriteria_tagCriterion :: Lens' SearchResourcesCriteria (Maybe SearchResourcesTagCriterion)
- data SearchResourcesCriteriaBlock = SearchResourcesCriteriaBlock' {}
- newSearchResourcesCriteriaBlock :: SearchResourcesCriteriaBlock
- searchResourcesCriteriaBlock_and :: Lens' SearchResourcesCriteriaBlock (Maybe [SearchResourcesCriteria])
- data SearchResourcesSimpleCriterion = SearchResourcesSimpleCriterion' {}
- newSearchResourcesSimpleCriterion :: SearchResourcesSimpleCriterion
- searchResourcesSimpleCriterion_comparator :: Lens' SearchResourcesSimpleCriterion (Maybe SearchResourcesComparator)
- searchResourcesSimpleCriterion_key :: Lens' SearchResourcesSimpleCriterion (Maybe SearchResourcesSimpleCriterionKey)
- searchResourcesSimpleCriterion_values :: Lens' SearchResourcesSimpleCriterion (Maybe [Text])
- data SearchResourcesSortCriteria = SearchResourcesSortCriteria' {}
- newSearchResourcesSortCriteria :: SearchResourcesSortCriteria
- searchResourcesSortCriteria_attributeName :: Lens' SearchResourcesSortCriteria (Maybe SearchResourcesSortAttributeName)
- searchResourcesSortCriteria_orderBy :: Lens' SearchResourcesSortCriteria (Maybe OrderBy)
- data SearchResourcesTagCriterion = SearchResourcesTagCriterion' {}
- newSearchResourcesTagCriterion :: SearchResourcesTagCriterion
- searchResourcesTagCriterion_comparator :: Lens' SearchResourcesTagCriterion (Maybe SearchResourcesComparator)
- searchResourcesTagCriterion_tagValues :: Lens' SearchResourcesTagCriterion (Maybe [SearchResourcesTagCriterionPair])
- data SearchResourcesTagCriterionPair = SearchResourcesTagCriterionPair' {}
- newSearchResourcesTagCriterionPair :: SearchResourcesTagCriterionPair
- searchResourcesTagCriterionPair_key :: Lens' SearchResourcesTagCriterionPair (Maybe Text)
- searchResourcesTagCriterionPair_value :: Lens' SearchResourcesTagCriterionPair (Maybe Text)
- data SecurityHubConfiguration = SecurityHubConfiguration' {}
- newSecurityHubConfiguration :: Bool -> Bool -> SecurityHubConfiguration
- securityHubConfiguration_publishPolicyFindings :: Lens' SecurityHubConfiguration Bool
- securityHubConfiguration_publishClassificationFindings :: Lens' SecurityHubConfiguration Bool
- data SensitiveDataItem = SensitiveDataItem' {}
- newSensitiveDataItem :: SensitiveDataItem
- sensitiveDataItem_category :: Lens' SensitiveDataItem (Maybe SensitiveDataItemCategory)
- sensitiveDataItem_detections :: Lens' SensitiveDataItem (Maybe [DefaultDetection])
- sensitiveDataItem_totalCount :: Lens' SensitiveDataItem (Maybe Integer)
- data SensitivityAggregations = SensitivityAggregations' {}
- newSensitivityAggregations :: SensitivityAggregations
- sensitivityAggregations_classifiableSizeInBytes :: Lens' SensitivityAggregations (Maybe Integer)
- sensitivityAggregations_publiclyAccessibleCount :: Lens' SensitivityAggregations (Maybe Integer)
- sensitivityAggregations_totalCount :: Lens' SensitivityAggregations (Maybe Integer)
- sensitivityAggregations_totalSizeInBytes :: Lens' SensitivityAggregations (Maybe Integer)
- data SensitivityInspectionTemplateExcludes = SensitivityInspectionTemplateExcludes' {}
- newSensitivityInspectionTemplateExcludes :: SensitivityInspectionTemplateExcludes
- sensitivityInspectionTemplateExcludes_managedDataIdentifierIds :: Lens' SensitivityInspectionTemplateExcludes (Maybe [Text])
- data SensitivityInspectionTemplateIncludes = SensitivityInspectionTemplateIncludes' {}
- newSensitivityInspectionTemplateIncludes :: SensitivityInspectionTemplateIncludes
- sensitivityInspectionTemplateIncludes_allowListIds :: Lens' SensitivityInspectionTemplateIncludes (Maybe [Text])
- sensitivityInspectionTemplateIncludes_customDataIdentifierIds :: Lens' SensitivityInspectionTemplateIncludes (Maybe [Text])
- sensitivityInspectionTemplateIncludes_managedDataIdentifierIds :: Lens' SensitivityInspectionTemplateIncludes (Maybe [Text])
- data SensitivityInspectionTemplatesEntry = SensitivityInspectionTemplatesEntry' {}
- newSensitivityInspectionTemplatesEntry :: SensitivityInspectionTemplatesEntry
- sensitivityInspectionTemplatesEntry_id :: Lens' SensitivityInspectionTemplatesEntry (Maybe Text)
- sensitivityInspectionTemplatesEntry_name :: Lens' SensitivityInspectionTemplatesEntry (Maybe Text)
- data ServerSideEncryption = ServerSideEncryption' {}
- newServerSideEncryption :: ServerSideEncryption
- serverSideEncryption_encryptionType :: Lens' ServerSideEncryption (Maybe EncryptionType)
- serverSideEncryption_kmsMasterKeyId :: Lens' ServerSideEncryption (Maybe Text)
- data ServiceLimit = ServiceLimit' {}
- newServiceLimit :: ServiceLimit
- serviceLimit_isServiceLimited :: Lens' ServiceLimit (Maybe Bool)
- serviceLimit_unit :: Lens' ServiceLimit (Maybe Unit)
- serviceLimit_value :: Lens' ServiceLimit (Maybe Integer)
- data SessionContext = SessionContext' {}
- newSessionContext :: SessionContext
- sessionContext_attributes :: Lens' SessionContext (Maybe SessionContextAttributes)
- sessionContext_sessionIssuer :: Lens' SessionContext (Maybe SessionIssuer)
- data SessionContextAttributes = SessionContextAttributes' {}
- newSessionContextAttributes :: SessionContextAttributes
- sessionContextAttributes_creationDate :: Lens' SessionContextAttributes (Maybe UTCTime)
- sessionContextAttributes_mfaAuthenticated :: Lens' SessionContextAttributes (Maybe Bool)
- data SessionIssuer = SessionIssuer' {}
- newSessionIssuer :: SessionIssuer
- sessionIssuer_accountId :: Lens' SessionIssuer (Maybe Text)
- sessionIssuer_arn :: Lens' SessionIssuer (Maybe Text)
- sessionIssuer_principalId :: Lens' SessionIssuer (Maybe Text)
- sessionIssuer_type :: Lens' SessionIssuer (Maybe Text)
- sessionIssuer_userName :: Lens' SessionIssuer (Maybe Text)
- data Severity = Severity' {}
- newSeverity :: Severity
- severity_description :: Lens' Severity (Maybe SeverityDescription)
- severity_score :: Lens' Severity (Maybe Integer)
- data SeverityLevel = SeverityLevel' {}
- newSeverityLevel :: Integer -> DataIdentifierSeverity -> SeverityLevel
- severityLevel_occurrencesThreshold :: Lens' SeverityLevel Integer
- severityLevel_severity :: Lens' SeverityLevel DataIdentifierSeverity
- data SimpleCriterionForJob = SimpleCriterionForJob' {}
- newSimpleCriterionForJob :: SimpleCriterionForJob
- simpleCriterionForJob_comparator :: Lens' SimpleCriterionForJob (Maybe JobComparator)
- simpleCriterionForJob_key :: Lens' SimpleCriterionForJob (Maybe SimpleCriterionKeyForJob)
- simpleCriterionForJob_values :: Lens' SimpleCriterionForJob (Maybe [Text])
- data SimpleScopeTerm = SimpleScopeTerm' {
- comparator :: Maybe JobComparator
- key :: Maybe ScopeFilterKey
- values :: Maybe [Text]
- newSimpleScopeTerm :: SimpleScopeTerm
- simpleScopeTerm_comparator :: Lens' SimpleScopeTerm (Maybe JobComparator)
- simpleScopeTerm_key :: Lens' SimpleScopeTerm (Maybe ScopeFilterKey)
- simpleScopeTerm_values :: Lens' SimpleScopeTerm (Maybe [Text])
- data SortCriteria = SortCriteria' {}
- newSortCriteria :: SortCriteria
- sortCriteria_attributeName :: Lens' SortCriteria (Maybe Text)
- sortCriteria_orderBy :: Lens' SortCriteria (Maybe OrderBy)
- data Statistics = Statistics' {}
- newStatistics :: Statistics
- statistics_approximateNumberOfObjectsToProcess :: Lens' Statistics (Maybe Double)
- statistics_numberOfRuns :: Lens' Statistics (Maybe Double)
- data SuppressDataIdentifier = SuppressDataIdentifier' {}
- newSuppressDataIdentifier :: SuppressDataIdentifier
- suppressDataIdentifier_id :: Lens' SuppressDataIdentifier (Maybe Text)
- suppressDataIdentifier_type :: Lens' SuppressDataIdentifier (Maybe DataIdentifierType)
- data TagCriterionForJob = TagCriterionForJob' {}
- newTagCriterionForJob :: TagCriterionForJob
- tagCriterionForJob_comparator :: Lens' TagCriterionForJob (Maybe JobComparator)
- tagCriterionForJob_tagValues :: Lens' TagCriterionForJob (Maybe [TagCriterionPairForJob])
- data TagCriterionPairForJob = TagCriterionPairForJob' {}
- newTagCriterionPairForJob :: TagCriterionPairForJob
- tagCriterionPairForJob_key :: Lens' TagCriterionPairForJob (Maybe Text)
- tagCriterionPairForJob_value :: Lens' TagCriterionPairForJob (Maybe Text)
- data TagScopeTerm = TagScopeTerm' {
- comparator :: Maybe JobComparator
- key :: Maybe Text
- tagValues :: Maybe [TagValuePair]
- target :: Maybe TagTarget
- newTagScopeTerm :: TagScopeTerm
- tagScopeTerm_comparator :: Lens' TagScopeTerm (Maybe JobComparator)
- tagScopeTerm_key :: Lens' TagScopeTerm (Maybe Text)
- tagScopeTerm_tagValues :: Lens' TagScopeTerm (Maybe [TagValuePair])
- tagScopeTerm_target :: Lens' TagScopeTerm (Maybe TagTarget)
- data TagValuePair = TagValuePair' {}
- newTagValuePair :: TagValuePair
- tagValuePair_key :: Lens' TagValuePair (Maybe Text)
- tagValuePair_value :: Lens' TagValuePair (Maybe Text)
- data UnprocessedAccount = UnprocessedAccount' {}
- newUnprocessedAccount :: UnprocessedAccount
- unprocessedAccount_accountId :: Lens' UnprocessedAccount (Maybe Text)
- unprocessedAccount_errorCode :: Lens' UnprocessedAccount (Maybe ErrorCode)
- unprocessedAccount_errorMessage :: Lens' UnprocessedAccount (Maybe Text)
- data UsageByAccount = UsageByAccount' {}
- newUsageByAccount :: UsageByAccount
- usageByAccount_currency :: Lens' UsageByAccount (Maybe Currency)
- usageByAccount_estimatedCost :: Lens' UsageByAccount (Maybe Text)
- usageByAccount_serviceLimit :: Lens' UsageByAccount (Maybe ServiceLimit)
- usageByAccount_type :: Lens' UsageByAccount (Maybe UsageType)
- data UsageRecord = UsageRecord' {}
- newUsageRecord :: UsageRecord
- usageRecord_accountId :: Lens' UsageRecord (Maybe Text)
- usageRecord_automatedDiscoveryFreeTrialStartDate :: Lens' UsageRecord (Maybe UTCTime)
- usageRecord_freeTrialStartDate :: Lens' UsageRecord (Maybe UTCTime)
- usageRecord_usage :: Lens' UsageRecord (Maybe [UsageByAccount])
- data UsageStatisticsFilter = UsageStatisticsFilter' {}
- newUsageStatisticsFilter :: UsageStatisticsFilter
- usageStatisticsFilter_comparator :: Lens' UsageStatisticsFilter (Maybe UsageStatisticsFilterComparator)
- usageStatisticsFilter_key :: Lens' UsageStatisticsFilter (Maybe UsageStatisticsFilterKey)
- usageStatisticsFilter_values :: Lens' UsageStatisticsFilter (Maybe [Text])
- data UsageStatisticsSortBy = UsageStatisticsSortBy' {}
- newUsageStatisticsSortBy :: UsageStatisticsSortBy
- usageStatisticsSortBy_key :: Lens' UsageStatisticsSortBy (Maybe UsageStatisticsSortKey)
- usageStatisticsSortBy_orderBy :: Lens' UsageStatisticsSortBy (Maybe OrderBy)
- data UsageTotal = UsageTotal' {}
- newUsageTotal :: UsageTotal
- usageTotal_currency :: Lens' UsageTotal (Maybe Currency)
- usageTotal_estimatedCost :: Lens' UsageTotal (Maybe Text)
- usageTotal_type :: Lens' UsageTotal (Maybe UsageType)
- data UserIdentity = UserIdentity' {}
- newUserIdentity :: UserIdentity
- userIdentity_assumedRole :: Lens' UserIdentity (Maybe AssumedRole)
- userIdentity_awsAccount :: Lens' UserIdentity (Maybe AwsAccount)
- userIdentity_awsService :: Lens' UserIdentity (Maybe AwsService)
- userIdentity_federatedUser :: Lens' UserIdentity (Maybe FederatedUser)
- userIdentity_iamUser :: Lens' UserIdentity (Maybe IamUser)
- userIdentity_root :: Lens' UserIdentity (Maybe UserIdentityRoot)
- userIdentity_type :: Lens' UserIdentity (Maybe UserIdentityType)
- data UserIdentityRoot = UserIdentityRoot' {}
- newUserIdentityRoot :: UserIdentityRoot
- userIdentityRoot_accountId :: Lens' UserIdentityRoot (Maybe Text)
- userIdentityRoot_arn :: Lens' UserIdentityRoot (Maybe Text)
- userIdentityRoot_principalId :: Lens' UserIdentityRoot (Maybe Text)
- data UserPausedDetails = UserPausedDetails' {}
- newUserPausedDetails :: UserPausedDetails
- userPausedDetails_jobExpiresAt :: Lens' UserPausedDetails (Maybe UTCTime)
- userPausedDetails_jobImminentExpirationHealthEventArn :: Lens' UserPausedDetails (Maybe Text)
- userPausedDetails_jobPausedAt :: Lens' UserPausedDetails (Maybe UTCTime)
- data WeeklySchedule = WeeklySchedule' {}
- newWeeklySchedule :: WeeklySchedule
- weeklySchedule_dayOfWeek :: Lens' WeeklySchedule (Maybe DayOfWeek)
Service Configuration
defaultService :: Service Source #
API version 2020-01-01 of the Amazon Macie 2 SDK configuration.
Errors
_AccessDeniedException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred due to insufficient access to a specified resource.
_ConflictException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred due to a versioning conflict for a specified resource.
_InternalServerException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred due to an unknown internal server error, exception, or failure.
_ResourceNotFoundException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred because a specified resource wasn't found.
_ServiceQuotaExceededException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred due to one or more service quotas for an account.
_ThrottlingException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred because too many requests were sent during a certain amount of time.
_UnprocessableEntityException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred due to an unprocessable entity.
_ValidationException :: AsError a => Fold a ServiceError Source #
Provides information about an error that occurred due to a syntax error in a request.
AdminStatus
newtype AdminStatus Source #
The current status of an account as the delegated Amazon Macie administrator account for an organization in Organizations. Possible values are:
Constructors
| AdminStatus' | |
Fields | |
Bundled Patterns
| pattern AdminStatus_DISABLING_IN_PROGRESS :: AdminStatus | |
| pattern AdminStatus_ENABLED :: AdminStatus |
Instances
AllowListStatusCode
newtype AllowListStatusCode Source #
Indicates the current status of an allow list. Depending on the type of criteria that the list specifies, possible values are:
Constructors
| AllowListStatusCode' | |
Fields | |
Bundled Patterns
Instances
AllowsUnencryptedObjectUploads
newtype AllowsUnencryptedObjectUploads Source #
Constructors
| AllowsUnencryptedObjectUploads' | |
Fields | |
Bundled Patterns
Instances
AutomatedDiscoveryStatus
newtype AutomatedDiscoveryStatus Source #
The status of the automated sensitive data discovery configuration for an Amazon Macie account. Valid values are:
Constructors
| AutomatedDiscoveryStatus' | |
Fields | |
Bundled Patterns
| pattern AutomatedDiscoveryStatus_DISABLED :: AutomatedDiscoveryStatus | |
| pattern AutomatedDiscoveryStatus_ENABLED :: AutomatedDiscoveryStatus |
Instances
AvailabilityCode
newtype AvailabilityCode Source #
Specifies whether occurrences of sensitive data can be retrieved for a finding. Possible values are:
Constructors
| AvailabilityCode' | |
Fields | |
Bundled Patterns
| pattern AvailabilityCode_AVAILABLE :: AvailabilityCode | |
| pattern AvailabilityCode_UNAVAILABLE :: AvailabilityCode |
Instances
BucketMetadataErrorCode
newtype BucketMetadataErrorCode Source #
The error code for an error that prevented Amazon Macie from retrieving and processing metadata from Amazon S3 for an S3 bucket and the bucket's objects.
Constructors
| BucketMetadataErrorCode' | |
Fields | |
Bundled Patterns
| pattern BucketMetadataErrorCode_ACCESS_DENIED :: BucketMetadataErrorCode |
Instances
ClassificationScopeUpdateOperation
newtype ClassificationScopeUpdateOperation Source #
Specifies how to apply changes to the S3 bucket exclusion list defined by the classification scope for an Amazon Macie account. Valid values are:
Constructors
| ClassificationScopeUpdateOperation' | |
Bundled Patterns
Instances
Currency
The type of currency that the data for an Amazon Macie usage metric is reported in. Possible values are:
Constructors
| Currency' | |
Fields
| |
Bundled Patterns
| pattern Currency_USD :: Currency |
Instances
DataIdentifierSeverity
newtype DataIdentifierSeverity Source #
The severity of a finding, ranging from LOW, for least severe, to HIGH, for most severe. Valid values are:
Constructors
| DataIdentifierSeverity' | |
Fields | |
Bundled Patterns
| pattern DataIdentifierSeverity_HIGH :: DataIdentifierSeverity | |
| pattern DataIdentifierSeverity_LOW :: DataIdentifierSeverity | |
| pattern DataIdentifierSeverity_MEDIUM :: DataIdentifierSeverity |
Instances
DataIdentifierType
newtype DataIdentifierType Source #
The type of data identifier that detected a specific type of sensitive data in an S3 bucket. Possible values are:
Constructors
| DataIdentifierType' | |
Fields | |
Bundled Patterns
| pattern DataIdentifierType_CUSTOM :: DataIdentifierType | |
| pattern DataIdentifierType_MANAGED :: DataIdentifierType |
Instances
DayOfWeek
Constructors
| DayOfWeek' | |
Fields | |
Bundled Patterns
| pattern DayOfWeek_FRIDAY :: DayOfWeek | |
| pattern DayOfWeek_MONDAY :: DayOfWeek | |
| pattern DayOfWeek_SATURDAY :: DayOfWeek | |
| pattern DayOfWeek_SUNDAY :: DayOfWeek | |
| pattern DayOfWeek_THURSDAY :: DayOfWeek | |
| pattern DayOfWeek_TUESDAY :: DayOfWeek | |
| pattern DayOfWeek_WEDNESDAY :: DayOfWeek |
Instances
EffectivePermission
newtype EffectivePermission Source #
Constructors
| EffectivePermission' | |
Fields | |
Bundled Patterns
| pattern EffectivePermission_NOT_PUBLIC :: EffectivePermission | |
| pattern EffectivePermission_PUBLIC :: EffectivePermission | |
| pattern EffectivePermission_UNKNOWN :: EffectivePermission |
Instances
EncryptionType
newtype EncryptionType Source #
The type of server-side encryption that's used to encrypt an S3 object or objects in an S3 bucket. Possible values are:
Constructors
| EncryptionType' | |
Fields | |
Bundled Patterns
| pattern EncryptionType_AES256 :: EncryptionType | |
| pattern EncryptionType_Aws_kms :: EncryptionType | |
| pattern EncryptionType_NONE :: EncryptionType | |
| pattern EncryptionType_UNKNOWN :: EncryptionType |
Instances
ErrorCode
The source of an issue or delay. Possible values are:
Constructors
| ErrorCode' | |
Fields | |
Bundled Patterns
| pattern ErrorCode_ClientError :: ErrorCode | |
| pattern ErrorCode_InternalError :: ErrorCode |
Instances
FindingActionType
newtype FindingActionType Source #
The type of action that occurred for the resource and produced the policy finding:
Constructors
| FindingActionType' | |
Fields | |
Bundled Patterns
| pattern FindingActionType_AWS_API_CALL :: FindingActionType |
Instances
FindingCategory
newtype FindingCategory Source #
The category of the finding. Possible values are:
Constructors
| FindingCategory' | |
Fields | |
Bundled Patterns
| pattern FindingCategory_CLASSIFICATION :: FindingCategory | |
| pattern FindingCategory_POLICY :: FindingCategory |
Instances
FindingPublishingFrequency
newtype FindingPublishingFrequency Source #
The frequency with which Amazon Macie publishes updates to policy findings for an account. This includes publishing updates to Security Hub and Amazon EventBridge (formerly Amazon CloudWatch Events). For more information, see Monitoring and processing findings in the Amazon Macie User Guide. Valid values are:
Constructors
| FindingPublishingFrequency' | |
Fields | |
Bundled Patterns
Instances
FindingStatisticsSortAttributeName
newtype FindingStatisticsSortAttributeName Source #
The grouping to sort the results by. Valid values are:
Constructors
| FindingStatisticsSortAttributeName' | |
Bundled Patterns
| pattern FindingStatisticsSortAttributeName_Count :: FindingStatisticsSortAttributeName | |
| pattern FindingStatisticsSortAttributeName_GroupKey :: FindingStatisticsSortAttributeName |
Instances
FindingType
newtype FindingType Source #
The type of finding. For details about each type, see Types of Amazon Macie findings in the Amazon Macie User Guide. Possible values are:
Constructors
| FindingType' | |
Fields | |
Bundled Patterns
Instances
FindingsFilterAction
newtype FindingsFilterAction Source #
The action to perform on findings that match the filter criteria. To suppress (automatically archive) findings that match the criteria, set this value to ARCHIVE. Valid values are:
Constructors
| FindingsFilterAction' | |
Fields | |
Bundled Patterns
| pattern FindingsFilterAction_ARCHIVE :: FindingsFilterAction | |
| pattern FindingsFilterAction_NOOP :: FindingsFilterAction |
Instances
GroupBy
Constructors
| GroupBy' | |
Fields
| |
Bundled Patterns
| pattern GroupBy_ClassificationDetails_jobId :: GroupBy | |
| pattern GroupBy_ResourcesAffected_s3Bucket_name :: GroupBy | |
| pattern GroupBy_Severity_description :: GroupBy | |
| pattern GroupBy_Type :: GroupBy |
Instances
IsDefinedInJob
newtype IsDefinedInJob Source #
Constructors
| IsDefinedInJob' | |
Fields | |
Bundled Patterns
| pattern IsDefinedInJob_FALSE :: IsDefinedInJob | |
| pattern IsDefinedInJob_TRUE :: IsDefinedInJob | |
| pattern IsDefinedInJob_UNKNOWN :: IsDefinedInJob |
Instances
IsMonitoredByJob
newtype IsMonitoredByJob Source #
Constructors
| IsMonitoredByJob' | |
Fields | |
Bundled Patterns
| pattern IsMonitoredByJob_FALSE :: IsMonitoredByJob | |
| pattern IsMonitoredByJob_TRUE :: IsMonitoredByJob | |
| pattern IsMonitoredByJob_UNKNOWN :: IsMonitoredByJob |
Instances
JobComparator
newtype JobComparator Source #
The operator to use in a condition. Depending on the type of condition, possible values are:
Constructors
| JobComparator' | |
Fields | |
Bundled Patterns
| pattern JobComparator_CONTAINS :: JobComparator | |
| pattern JobComparator_EQ :: JobComparator | |
| pattern JobComparator_GT :: JobComparator | |
| pattern JobComparator_GTE :: JobComparator | |
| pattern JobComparator_LT :: JobComparator | |
| pattern JobComparator_LTE :: JobComparator | |
| pattern JobComparator_NE :: JobComparator | |
| pattern JobComparator_STARTS_WITH :: JobComparator |
Instances
JobStatus
The status of a classification job. Possible values are:
Constructors
| JobStatus' | |
Fields | |
Bundled Patterns
| pattern JobStatus_CANCELLED :: JobStatus | |
| pattern JobStatus_COMPLETE :: JobStatus | |
| pattern JobStatus_IDLE :: JobStatus | |
| pattern JobStatus_PAUSED :: JobStatus | |
| pattern JobStatus_RUNNING :: JobStatus | |
| pattern JobStatus_USER_PAUSED :: JobStatus |
Instances
JobType
The schedule for running a classification job. Valid values are:
Constructors
| JobType' | |
Fields
| |
Bundled Patterns
| pattern JobType_ONE_TIME :: JobType | |
| pattern JobType_SCHEDULED :: JobType |
Instances
LastRunErrorStatusCode
newtype LastRunErrorStatusCode Source #
Specifies whether any account- or bucket-level access errors occurred during the run of a one-time classification job or the most recent run of a recurring classification job. Possible values are:
Constructors
| LastRunErrorStatusCode' | |
Fields | |
Bundled Patterns
| pattern LastRunErrorStatusCode_ERROR :: LastRunErrorStatusCode | |
| pattern LastRunErrorStatusCode_NONE :: LastRunErrorStatusCode |
Instances
ListJobsFilterKey
newtype ListJobsFilterKey Source #
The property to use to filter the results. Valid values are:
Constructors
| ListJobsFilterKey' | |
Fields | |
Bundled Patterns
| pattern ListJobsFilterKey_CreatedAt :: ListJobsFilterKey | |
| pattern ListJobsFilterKey_JobStatus :: ListJobsFilterKey | |
| pattern ListJobsFilterKey_JobType :: ListJobsFilterKey | |
| pattern ListJobsFilterKey_Name :: ListJobsFilterKey |
Instances
ListJobsSortAttributeName
newtype ListJobsSortAttributeName Source #
The property to sort the results by. Valid values are:
Constructors
| ListJobsSortAttributeName' | |
Fields | |
Bundled Patterns
Instances
MacieStatus
newtype MacieStatus Source #
The status of an Amazon Macie account. Valid values are:
Constructors
| MacieStatus' | |
Fields | |
Bundled Patterns
| pattern MacieStatus_ENABLED :: MacieStatus | |
| pattern MacieStatus_PAUSED :: MacieStatus |
Instances
ManagedDataIdentifierSelector
newtype ManagedDataIdentifierSelector Source #
The selection type that determines which managed data identifiers a classification job uses to analyze data. Valid values are:
Constructors
| ManagedDataIdentifierSelector' | |
Fields | |
Bundled Patterns
Instances
OrderBy
Constructors
| OrderBy' | |
Fields
| |
Bundled Patterns
| pattern OrderBy_ASC :: OrderBy | |
| pattern OrderBy_DESC :: OrderBy |
Instances
OriginType
newtype OriginType Source #
Specifies how Amazon Macie found the sensitive data that produced a finding. Possible values are:
Constructors
| OriginType' | |
Fields | |
Bundled Patterns
| pattern OriginType_AUTOMATED_SENSITIVE_DATA_DISCOVERY :: OriginType | |
| pattern OriginType_SENSITIVE_DATA_DISCOVERY_JOB :: OriginType |
Instances
RelationshipStatus
newtype RelationshipStatus Source #
The current status of the relationship between an account and an associated Amazon Macie administrator account. Possible values are:
Constructors
| RelationshipStatus' | |
Fields | |
Bundled Patterns
| pattern RelationshipStatus_AccountSuspended :: RelationshipStatus | |
| pattern RelationshipStatus_Created :: RelationshipStatus | |
| pattern RelationshipStatus_EmailVerificationFailed :: RelationshipStatus | |
| pattern RelationshipStatus_EmailVerificationInProgress :: RelationshipStatus | |
| pattern RelationshipStatus_Enabled :: RelationshipStatus | |
| pattern RelationshipStatus_Invited :: RelationshipStatus | |
| pattern RelationshipStatus_Paused :: RelationshipStatus | |
| pattern RelationshipStatus_RegionDisabled :: RelationshipStatus | |
| pattern RelationshipStatus_Removed :: RelationshipStatus | |
| pattern RelationshipStatus_Resigned :: RelationshipStatus |
Instances
RevealRequestStatus
newtype RevealRequestStatus Source #
The status of a request to retrieve occurrences of sensitive data reported by a finding. Possible values are:
Constructors
| RevealRequestStatus' | |
Fields | |
Bundled Patterns
| pattern RevealRequestStatus_ERROR :: RevealRequestStatus | |
| pattern RevealRequestStatus_PROCESSING :: RevealRequestStatus | |
| pattern RevealRequestStatus_SUCCESS :: RevealRequestStatus |
Instances
RevealStatus
newtype RevealStatus Source #
The status of the configuration for retrieving occurrences of sensitive data reported by findings. Valid values are:
Constructors
| RevealStatus' | |
Fields | |
Bundled Patterns
| pattern RevealStatus_DISABLED :: RevealStatus | |
| pattern RevealStatus_ENABLED :: RevealStatus |
Instances
ScopeFilterKey
newtype ScopeFilterKey Source #
The property to use in a condition that determines whether an S3 object is included or excluded from a classification job. Valid values are:
Constructors
| ScopeFilterKey' | |
Fields | |
Bundled Patterns
| pattern ScopeFilterKey_OBJECT_EXTENSION :: ScopeFilterKey | |
| pattern ScopeFilterKey_OBJECT_KEY :: ScopeFilterKey | |
| pattern ScopeFilterKey_OBJECT_LAST_MODIFIED_DATE :: ScopeFilterKey | |
| pattern ScopeFilterKey_OBJECT_SIZE :: ScopeFilterKey |
Instances
SearchResourcesComparator
newtype SearchResourcesComparator Source #
The operator to use in a condition that filters the results of a query. Valid values are:
Constructors
| SearchResourcesComparator' | |
Fields | |
Bundled Patterns
| pattern SearchResourcesComparator_EQ :: SearchResourcesComparator | |
| pattern SearchResourcesComparator_NE :: SearchResourcesComparator |
Instances
SearchResourcesSimpleCriterionKey
newtype SearchResourcesSimpleCriterionKey Source #
The property to use in a condition that filters the query results. Valid values are:
Constructors
| SearchResourcesSimpleCriterionKey' | |
Bundled Patterns
Instances
SearchResourcesSortAttributeName
newtype SearchResourcesSortAttributeName Source #
The property to sort the query results by. Valid values are:
Constructors
| SearchResourcesSortAttributeName' | |
Fields | |
Bundled Patterns
Instances
SensitiveDataItemCategory
newtype SensitiveDataItemCategory Source #
For a finding, the category of sensitive data that was detected and produced the finding. For a managed data identifier, the category of sensitive data that the managed data identifier detects. Possible values are:
Constructors
| SensitiveDataItemCategory' | |
Fields | |
Bundled Patterns
Instances
SeverityDescription
newtype SeverityDescription Source #
The qualitative representation of the finding's severity. Possible values are:
Constructors
| SeverityDescription' | |
Fields | |
Bundled Patterns
| pattern SeverityDescription_High :: SeverityDescription | |
| pattern SeverityDescription_Low :: SeverityDescription | |
| pattern SeverityDescription_Medium :: SeverityDescription |
Instances
SharedAccess
newtype SharedAccess Source #
Constructors
| SharedAccess' | |
Fields | |
Bundled Patterns
| pattern SharedAccess_EXTERNAL :: SharedAccess | |
| pattern SharedAccess_INTERNAL :: SharedAccess | |
| pattern SharedAccess_NOT_SHARED :: SharedAccess | |
| pattern SharedAccess_UNKNOWN :: SharedAccess |
Instances
SimpleCriterionKeyForJob
newtype SimpleCriterionKeyForJob Source #
The property to use in a condition that determines whether an S3 bucket is included or excluded from a classification job. Valid values are:
Constructors
| SimpleCriterionKeyForJob' | |
Fields | |
Bundled Patterns
Instances
StorageClass
newtype StorageClass Source #
The storage class of the S3 object. Possible values are:
Constructors
| StorageClass' | |
Fields | |
Bundled Patterns
| pattern StorageClass_DEEP_ARCHIVE :: StorageClass | |
| pattern StorageClass_GLACIER :: StorageClass | |
| pattern StorageClass_GLACIER_IR :: StorageClass | |
| pattern StorageClass_INTELLIGENT_TIERING :: StorageClass | |
| pattern StorageClass_ONEZONE_IA :: StorageClass | |
| pattern StorageClass_OUTPOSTS :: StorageClass | |
| pattern StorageClass_REDUCED_REDUNDANCY :: StorageClass | |
| pattern StorageClass_STANDARD :: StorageClass | |
| pattern StorageClass_STANDARD_IA :: StorageClass |
Instances
TagTarget
The type of object to apply a tag-based condition to. Valid values are:
Constructors
| TagTarget' | |
Fields | |
Bundled Patterns
| pattern TagTarget_S3_OBJECT :: TagTarget |
Instances
TimeRange
An inclusive time period that Amazon Macie usage data applies to. Possible values are:
Constructors
| TimeRange' | |
Fields | |
Bundled Patterns
| pattern TimeRange_MONTH_TO_DATE :: TimeRange | |
| pattern TimeRange_PAST_30_DAYS :: TimeRange |
Instances
Type
Bundled Patterns
| pattern Type_AES256 :: Type | |
| pattern Type_Aws_kms :: Type | |
| pattern Type_NONE :: Type |
Instances
UnavailabilityReasonCode
newtype UnavailabilityReasonCode Source #
Specifies why occurrences of sensitive data can't be retrieved for a finding. Possible values are:
Constructors
| UnavailabilityReasonCode' | |
Fields | |
Bundled Patterns
Instances
Unit
Bundled Patterns
| pattern Unit_TERABYTES :: Unit |
Instances
UsageStatisticsFilterComparator
newtype UsageStatisticsFilterComparator Source #
The operator to use in a condition that filters the results of a query for Amazon Macie account quotas and usage data. Valid values are:
Constructors
| UsageStatisticsFilterComparator' | |
Fields | |
Bundled Patterns
Instances
UsageStatisticsFilterKey
newtype UsageStatisticsFilterKey Source #
The field to use in a condition that filters the results of a query for Amazon Macie account quotas and usage data. Valid values are:
Constructors
| UsageStatisticsFilterKey' | |
Fields | |
Bundled Patterns
Instances
UsageStatisticsSortKey
newtype UsageStatisticsSortKey Source #
The field to use to sort the results of a query for Amazon Macie account quotas and usage data. Valid values are:
Constructors
| UsageStatisticsSortKey' | |
Fields | |
Bundled Patterns
Instances
UsageType
The name of an Amazon Macie usage metric for an account. Possible values are:
Constructors
| UsageType' | |
Fields | |
Bundled Patterns
| pattern UsageType_AUTOMATED_OBJECT_MONITORING :: UsageType | |
| pattern UsageType_AUTOMATED_SENSITIVE_DATA_DISCOVERY :: UsageType | |
| pattern UsageType_DATA_INVENTORY_EVALUATION :: UsageType | |
| pattern UsageType_SENSITIVE_DATA_DISCOVERY :: UsageType |
Instances
UserIdentityType
newtype UserIdentityType Source #
The type of entity that performed the action on the affected resource. Possible values are:
Constructors
| UserIdentityType' | |
Fields | |
Bundled Patterns
| pattern UserIdentityType_AWSAccount :: UserIdentityType | |
| pattern UserIdentityType_AWSService :: UserIdentityType | |
| pattern UserIdentityType_AssumedRole :: UserIdentityType | |
| pattern UserIdentityType_FederatedUser :: UserIdentityType | |
| pattern UserIdentityType_IAMUser :: UserIdentityType | |
| pattern UserIdentityType_Root :: UserIdentityType |
Instances
AccessControlList
data AccessControlList Source #
Provides information about the permissions settings of the bucket-level access control list (ACL) for an S3 bucket.
See: newAccessControlList smart constructor.
Constructors
| AccessControlList' | |
Fields
| |
Instances
newAccessControlList :: AccessControlList Source #
Create a value of AccessControlList with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:allowsPublicReadAccess:AccessControlList', accessControlList_allowsPublicReadAccess - Specifies whether the ACL grants the general public with read access
permissions for the bucket.
$sel:allowsPublicWriteAccess:AccessControlList', accessControlList_allowsPublicWriteAccess - Specifies whether the ACL grants the general public with write access
permissions for the bucket.
accessControlList_allowsPublicReadAccess :: Lens' AccessControlList (Maybe Bool) Source #
Specifies whether the ACL grants the general public with read access permissions for the bucket.
accessControlList_allowsPublicWriteAccess :: Lens' AccessControlList (Maybe Bool) Source #
Specifies whether the ACL grants the general public with write access permissions for the bucket.
AccountDetail
data AccountDetail Source #
Specifies the details of an account to associate with an Amazon Macie administrator account.
See: newAccountDetail smart constructor.
Constructors
| AccountDetail' | |
Instances
Create a value of AccountDetail with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:email:AccountDetail', accountDetail_email - The email address for the account.
$sel:accountId:AccountDetail', accountDetail_accountId - The Amazon Web Services account ID for the account.
accountDetail_email :: Lens' AccountDetail Text Source #
The email address for the account.
accountDetail_accountId :: Lens' AccountDetail Text Source #
The Amazon Web Services account ID for the account.
AccountLevelPermissions
data AccountLevelPermissions Source #
Provides information about the account-level permissions settings that apply to an S3 bucket.
See: newAccountLevelPermissions smart constructor.
Constructors
| AccountLevelPermissions' | |
Fields
| |
Instances
newAccountLevelPermissions :: AccountLevelPermissions Source #
Create a value of AccountLevelPermissions with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:blockPublicAccess:AccountLevelPermissions', accountLevelPermissions_blockPublicAccess - The block public access settings for the Amazon Web Services account
that owns the bucket.
accountLevelPermissions_blockPublicAccess :: Lens' AccountLevelPermissions (Maybe BlockPublicAccess) Source #
The block public access settings for the Amazon Web Services account that owns the bucket.
AdminAccount
data AdminAccount Source #
Provides information about the delegated Amazon Macie administrator account for an organization in Organizations.
See: newAdminAccount smart constructor.
Constructors
| AdminAccount' | |
Instances
newAdminAccount :: AdminAccount Source #
Create a value of AdminAccount with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:AdminAccount', adminAccount_accountId - The Amazon Web Services account ID for the account.
$sel:status:AdminAccount', adminAccount_status - The current status of the account as the delegated Amazon Macie
administrator account for the organization.
adminAccount_accountId :: Lens' AdminAccount (Maybe Text) Source #
The Amazon Web Services account ID for the account.
adminAccount_status :: Lens' AdminAccount (Maybe AdminStatus) Source #
The current status of the account as the delegated Amazon Macie administrator account for the organization.
AllowListCriteria
data AllowListCriteria Source #
Specifies the criteria for an allow list. The criteria must specify a regular expression (regex) or an S3 object (s3WordsList). It can't specify both.
See: newAllowListCriteria smart constructor.
Constructors
| AllowListCriteria' | |
Fields
| |
Instances
newAllowListCriteria :: AllowListCriteria Source #
Create a value of AllowListCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:regex:AllowListCriteria', allowListCriteria_regex - The regular expression (regex) that defines the text pattern to
ignore. The expression can contain as many as 512 characters.
$sel:s3WordsList:AllowListCriteria', allowListCriteria_s3WordsList - The location and name of the S3 object that lists specific text to
ignore.
allowListCriteria_regex :: Lens' AllowListCriteria (Maybe Text) Source #
The regular expression (regex) that defines the text pattern to ignore. The expression can contain as many as 512 characters.
allowListCriteria_s3WordsList :: Lens' AllowListCriteria (Maybe S3WordsList) Source #
The location and name of the S3 object that lists specific text to ignore.
AllowListStatus
data AllowListStatus Source #
Provides information about the current status of an allow list, which indicates whether Amazon Macie can access and use the list's criteria.
See: newAllowListStatus smart constructor.
Constructors
| AllowListStatus' | |
Fields
| |
Instances
Arguments
| :: AllowListStatusCode | |
| -> AllowListStatus |
Create a value of AllowListStatus with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:description:AllowListStatus', allowListStatus_description - A brief description of the status of the allow list. Amazon Macie uses
this value to provide additional information about an error that
occurred when Macie tried to access and use the list's criteria.
$sel:code:AllowListStatus', allowListStatus_code - The current status of the allow list. If the list's criteria specify a
regular expression (regex), this value is typically OK. Amazon Macie can
compile the expression.
If the list's criteria specify an S3 object, possible values are:
- OK - Macie can retrieve and parse the contents of the object.
- S3_OBJECT_ACCESS_DENIED - Macie isn't allowed to access the object or the object is encrypted with a customer managed KMS key that Macie isn't allowed to use. Check the bucket policy and other permissions settings for the bucket and the object. If the object is encrypted, also ensure that it's encrypted with a key that Macie is allowed to use.
- S3_OBJECT_EMPTY - Macie can retrieve the object but the object doesn't contain any content. Ensure that the object contains the correct entries. Also ensure that the list's criteria specify the correct bucket and object names.
- S3_OBJECT_NOT_FOUND - The object doesn't exist in Amazon S3. Ensure that the list's criteria specify the correct bucket and object names.
- S3_OBJECT_OVERSIZE - Macie can retrieve the object. However, the object contains too many entries or its storage size exceeds the quota for an allow list. Try breaking the list into multiple files and ensure that each file doesn't exceed any quotas. Then configure list settings in Macie for each file.
- S3_THROTTLED - Amazon S3 throttled the request to retrieve the object. Wait a few minutes and then try again.
- S3_USER_ACCESS_DENIED - Amazon S3 denied the request to retrieve the object. If the specified object exists, you're not allowed to access it or it's encrypted with an KMS key that you're not allowed to use. Work with your Amazon Web Services administrator to ensure that the list's criteria specify the correct bucket and object names, and you have read access to the bucket and the object. If the object is encrypted, also ensure that it's encrypted with a key that you're allowed to use.
- UNKNOWN_ERROR - A transient or internal error occurred when Macie attempted to retrieve or parse the object. Wait a few minutes and then try again. A list can also have this status if it's encrypted with a key that Amazon S3 and Macie can't access or use.
allowListStatus_description :: Lens' AllowListStatus (Maybe Text) Source #
A brief description of the status of the allow list. Amazon Macie uses this value to provide additional information about an error that occurred when Macie tried to access and use the list's criteria.
allowListStatus_code :: Lens' AllowListStatus AllowListStatusCode Source #
The current status of the allow list. If the list's criteria specify a regular expression (regex), this value is typically OK. Amazon Macie can compile the expression.
If the list's criteria specify an S3 object, possible values are:
- OK - Macie can retrieve and parse the contents of the object.
- S3_OBJECT_ACCESS_DENIED - Macie isn't allowed to access the object or the object is encrypted with a customer managed KMS key that Macie isn't allowed to use. Check the bucket policy and other permissions settings for the bucket and the object. If the object is encrypted, also ensure that it's encrypted with a key that Macie is allowed to use.
- S3_OBJECT_EMPTY - Macie can retrieve the object but the object doesn't contain any content. Ensure that the object contains the correct entries. Also ensure that the list's criteria specify the correct bucket and object names.
- S3_OBJECT_NOT_FOUND - The object doesn't exist in Amazon S3. Ensure that the list's criteria specify the correct bucket and object names.
- S3_OBJECT_OVERSIZE - Macie can retrieve the object. However, the object contains too many entries or its storage size exceeds the quota for an allow list. Try breaking the list into multiple files and ensure that each file doesn't exceed any quotas. Then configure list settings in Macie for each file.
- S3_THROTTLED - Amazon S3 throttled the request to retrieve the object. Wait a few minutes and then try again.
- S3_USER_ACCESS_DENIED - Amazon S3 denied the request to retrieve the object. If the specified object exists, you're not allowed to access it or it's encrypted with an KMS key that you're not allowed to use. Work with your Amazon Web Services administrator to ensure that the list's criteria specify the correct bucket and object names, and you have read access to the bucket and the object. If the object is encrypted, also ensure that it's encrypted with a key that you're allowed to use.
- UNKNOWN_ERROR - A transient or internal error occurred when Macie attempted to retrieve or parse the object. Wait a few minutes and then try again. A list can also have this status if it's encrypted with a key that Amazon S3 and Macie can't access or use.
AllowListSummary
data AllowListSummary Source #
Provides a subset of information about an allow list.
See: newAllowListSummary smart constructor.
Constructors
| AllowListSummary' | |
Fields
| |
Instances
newAllowListSummary :: AllowListSummary Source #
Create a value of AllowListSummary with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:arn:AllowListSummary', allowListSummary_arn - The Amazon Resource Name (ARN) of the allow list.
$sel:createdAt:AllowListSummary', allowListSummary_createdAt - The date and time, in UTC and extended ISO 8601 format, when the allow
list was created in Amazon Macie.
$sel:description:AllowListSummary', allowListSummary_description - The custom description of the allow list.
$sel:id:AllowListSummary', allowListSummary_id - The unique identifier for the allow list.
$sel:name:AllowListSummary', allowListSummary_name - The custom name of the allow list.
$sel:updatedAt:AllowListSummary', allowListSummary_updatedAt - The date and time, in UTC and extended ISO 8601 format, when the allow
list's settings were most recently changed in Amazon Macie.
allowListSummary_arn :: Lens' AllowListSummary (Maybe Text) Source #
The Amazon Resource Name (ARN) of the allow list.
allowListSummary_createdAt :: Lens' AllowListSummary (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the allow list was created in Amazon Macie.
allowListSummary_description :: Lens' AllowListSummary (Maybe Text) Source #
The custom description of the allow list.
allowListSummary_id :: Lens' AllowListSummary (Maybe Text) Source #
The unique identifier for the allow list.
allowListSummary_name :: Lens' AllowListSummary (Maybe Text) Source #
The custom name of the allow list.
allowListSummary_updatedAt :: Lens' AllowListSummary (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the allow list's settings were most recently changed in Amazon Macie.
ApiCallDetails
data ApiCallDetails Source #
Provides information about an API operation that an entity invoked for an affected resource.
See: newApiCallDetails smart constructor.
Constructors
| ApiCallDetails' | |
Fields
| |
Instances
newApiCallDetails :: ApiCallDetails Source #
Create a value of ApiCallDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:api:ApiCallDetails', apiCallDetails_api - The name of the operation that was invoked most recently and produced
the finding.
$sel:apiServiceName:ApiCallDetails', apiCallDetails_apiServiceName - The URL of the Amazon Web Service that provides the operation, for
example: s3.amazonaws.com.
$sel:firstSeen:ApiCallDetails', apiCallDetails_firstSeen - The first date and time, in UTC and extended ISO 8601 format, when any
operation was invoked and produced the finding.
$sel:lastSeen:ApiCallDetails', apiCallDetails_lastSeen - The most recent date and time, in UTC and extended ISO 8601 format, when
the specified operation (api) was invoked and produced the finding.
apiCallDetails_api :: Lens' ApiCallDetails (Maybe Text) Source #
The name of the operation that was invoked most recently and produced the finding.
apiCallDetails_apiServiceName :: Lens' ApiCallDetails (Maybe Text) Source #
The URL of the Amazon Web Service that provides the operation, for example: s3.amazonaws.com.
apiCallDetails_firstSeen :: Lens' ApiCallDetails (Maybe UTCTime) Source #
The first date and time, in UTC and extended ISO 8601 format, when any operation was invoked and produced the finding.
apiCallDetails_lastSeen :: Lens' ApiCallDetails (Maybe UTCTime) Source #
The most recent date and time, in UTC and extended ISO 8601 format, when the specified operation (api) was invoked and produced the finding.
AssumedRole
data AssumedRole Source #
Provides information about an identity that performed an action on an affected resource by using temporary security credentials. The credentials were obtained using the AssumeRole operation of the Security Token Service (STS) API.
See: newAssumedRole smart constructor.
Constructors
| AssumedRole' | |
Fields
| |
Instances
newAssumedRole :: AssumedRole Source #
Create a value of AssumedRole with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accessKeyId:AssumedRole', assumedRole_accessKeyId - The Amazon Web Services access key ID that identifies the credentials.
$sel:accountId:AssumedRole', assumedRole_accountId - The unique identifier for the Amazon Web Services account that owns the
entity that was used to get the credentials.
$sel:arn:AssumedRole', assumedRole_arn - The Amazon Resource Name (ARN) of the entity that was used to get the
credentials.
$sel:principalId:AssumedRole', assumedRole_principalId - The unique identifier for the entity that was used to get the
credentials.
$sel:sessionContext:AssumedRole', assumedRole_sessionContext - The details of the session that was created for the credentials,
including the entity that issued the session.
assumedRole_accessKeyId :: Lens' AssumedRole (Maybe Text) Source #
The Amazon Web Services access key ID that identifies the credentials.
assumedRole_accountId :: Lens' AssumedRole (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that owns the entity that was used to get the credentials.
assumedRole_arn :: Lens' AssumedRole (Maybe Text) Source #
The Amazon Resource Name (ARN) of the entity that was used to get the credentials.
assumedRole_principalId :: Lens' AssumedRole (Maybe Text) Source #
The unique identifier for the entity that was used to get the credentials.
assumedRole_sessionContext :: Lens' AssumedRole (Maybe SessionContext) Source #
The details of the session that was created for the credentials, including the entity that issued the session.
AwsAccount
data AwsAccount Source #
Provides information about an Amazon Web Services account and entity that performed an action on an affected resource. The action was performed using the credentials for an Amazon Web Services account other than your own account.
See: newAwsAccount smart constructor.
Constructors
| AwsAccount' | |
Instances
newAwsAccount :: AwsAccount Source #
Create a value of AwsAccount with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:AwsAccount', awsAccount_accountId - The unique identifier for the Amazon Web Services account.
$sel:principalId:AwsAccount', awsAccount_principalId - The unique identifier for the entity that performed the action.
awsAccount_accountId :: Lens' AwsAccount (Maybe Text) Source #
The unique identifier for the Amazon Web Services account.
awsAccount_principalId :: Lens' AwsAccount (Maybe Text) Source #
The unique identifier for the entity that performed the action.
AwsService
data AwsService Source #
Provides information about an Amazon Web Service that performed an action on an affected resource.
See: newAwsService smart constructor.
Constructors
| AwsService' | |
Instances
newAwsService :: AwsService Source #
Create a value of AwsService with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:invokedBy:AwsService', awsService_invokedBy - The name of the Amazon Web Service that performed the action.
awsService_invokedBy :: Lens' AwsService (Maybe Text) Source #
The name of the Amazon Web Service that performed the action.
BatchGetCustomDataIdentifierSummary
data BatchGetCustomDataIdentifierSummary Source #
Provides information about a custom data identifier.
See: newBatchGetCustomDataIdentifierSummary smart constructor.
Constructors
| BatchGetCustomDataIdentifierSummary' | |
Fields
| |
Instances
newBatchGetCustomDataIdentifierSummary :: BatchGetCustomDataIdentifierSummary Source #
Create a value of BatchGetCustomDataIdentifierSummary with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:arn:BatchGetCustomDataIdentifierSummary', batchGetCustomDataIdentifierSummary_arn - The Amazon Resource Name (ARN) of the custom data identifier.
$sel:createdAt:BatchGetCustomDataIdentifierSummary', batchGetCustomDataIdentifierSummary_createdAt - The date and time, in UTC and extended ISO 8601 format, when the custom
data identifier was created.
$sel:deleted:BatchGetCustomDataIdentifierSummary', batchGetCustomDataIdentifierSummary_deleted - Specifies whether the custom data identifier was deleted. If you delete
a custom data identifier, Amazon Macie doesn't delete it permanently.
Instead, it soft deletes the identifier.
$sel:description:BatchGetCustomDataIdentifierSummary', batchGetCustomDataIdentifierSummary_description - The custom description of the custom data identifier.
$sel:id:BatchGetCustomDataIdentifierSummary', batchGetCustomDataIdentifierSummary_id - The unique identifier for the custom data identifier.
$sel:name:BatchGetCustomDataIdentifierSummary', batchGetCustomDataIdentifierSummary_name - The custom name of the custom data identifier.
batchGetCustomDataIdentifierSummary_arn :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text) Source #
The Amazon Resource Name (ARN) of the custom data identifier.
batchGetCustomDataIdentifierSummary_createdAt :: Lens' BatchGetCustomDataIdentifierSummary (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the custom data identifier was created.
batchGetCustomDataIdentifierSummary_deleted :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Bool) Source #
Specifies whether the custom data identifier was deleted. If you delete a custom data identifier, Amazon Macie doesn't delete it permanently. Instead, it soft deletes the identifier.
batchGetCustomDataIdentifierSummary_description :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text) Source #
The custom description of the custom data identifier.
batchGetCustomDataIdentifierSummary_id :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text) Source #
The unique identifier for the custom data identifier.
batchGetCustomDataIdentifierSummary_name :: Lens' BatchGetCustomDataIdentifierSummary (Maybe Text) Source #
The custom name of the custom data identifier.
BlockPublicAccess
data BlockPublicAccess Source #
Provides information about the block public access settings for an S3 bucket. These settings can apply to a bucket at the account or bucket level. For detailed information about each setting, see Blocking public access to your Amazon S3 storage in the Amazon Simple Storage Service User Guide.
See: newBlockPublicAccess smart constructor.
Constructors
| BlockPublicAccess' | |
Fields
| |
Instances
newBlockPublicAccess :: BlockPublicAccess Source #
Create a value of BlockPublicAccess with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:blockPublicAcls:BlockPublicAccess', blockPublicAccess_blockPublicAcls - Specifies whether Amazon S3 blocks public access control lists (ACLs)
for the bucket and objects in the bucket.
$sel:blockPublicPolicy:BlockPublicAccess', blockPublicAccess_blockPublicPolicy - Specifies whether Amazon S3 blocks public bucket policies for the
bucket.
$sel:ignorePublicAcls:BlockPublicAccess', blockPublicAccess_ignorePublicAcls - Specifies whether Amazon S3 ignores public ACLs for the bucket and
objects in the bucket.
$sel:restrictPublicBuckets:BlockPublicAccess', blockPublicAccess_restrictPublicBuckets - Specifies whether Amazon S3 restricts public bucket policies for the
bucket.
blockPublicAccess_blockPublicAcls :: Lens' BlockPublicAccess (Maybe Bool) Source #
Specifies whether Amazon S3 blocks public access control lists (ACLs) for the bucket and objects in the bucket.
blockPublicAccess_blockPublicPolicy :: Lens' BlockPublicAccess (Maybe Bool) Source #
Specifies whether Amazon S3 blocks public bucket policies for the bucket.
blockPublicAccess_ignorePublicAcls :: Lens' BlockPublicAccess (Maybe Bool) Source #
Specifies whether Amazon S3 ignores public ACLs for the bucket and objects in the bucket.
blockPublicAccess_restrictPublicBuckets :: Lens' BlockPublicAccess (Maybe Bool) Source #
Specifies whether Amazon S3 restricts public bucket policies for the bucket.
BucketCountByEffectivePermission
data BucketCountByEffectivePermission Source #
Provides information about the number of S3 buckets that are publicly accessible based on a combination of permissions settings for each bucket.
See: newBucketCountByEffectivePermission smart constructor.
Constructors
| BucketCountByEffectivePermission' | |
Fields
| |
Instances
newBucketCountByEffectivePermission :: BucketCountByEffectivePermission Source #
Create a value of BucketCountByEffectivePermission with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:publiclyAccessible:BucketCountByEffectivePermission', bucketCountByEffectivePermission_publiclyAccessible - The total number of buckets that allow the general public to have read
or write access to the bucket.
$sel:publiclyReadable:BucketCountByEffectivePermission', bucketCountByEffectivePermission_publiclyReadable - The total number of buckets that allow the general public to have read
access to the bucket.
$sel:publiclyWritable:BucketCountByEffectivePermission', bucketCountByEffectivePermission_publiclyWritable - The total number of buckets that allow the general public to have write
access to the bucket.
$sel:unknown:BucketCountByEffectivePermission', bucketCountByEffectivePermission_unknown - The total number of buckets that Amazon Macie wasn't able to evaluate
permissions settings for. Macie can't determine whether these buckets
are publicly accessible.
bucketCountByEffectivePermission_publiclyAccessible :: Lens' BucketCountByEffectivePermission (Maybe Integer) Source #
The total number of buckets that allow the general public to have read or write access to the bucket.
bucketCountByEffectivePermission_publiclyReadable :: Lens' BucketCountByEffectivePermission (Maybe Integer) Source #
The total number of buckets that allow the general public to have read access to the bucket.
bucketCountByEffectivePermission_publiclyWritable :: Lens' BucketCountByEffectivePermission (Maybe Integer) Source #
The total number of buckets that allow the general public to have write access to the bucket.
bucketCountByEffectivePermission_unknown :: Lens' BucketCountByEffectivePermission (Maybe Integer) Source #
The total number of buckets that Amazon Macie wasn't able to evaluate permissions settings for. Macie can't determine whether these buckets are publicly accessible.
BucketCountByEncryptionType
data BucketCountByEncryptionType Source #
Provides information about the number of S3 buckets that use certain types of server-side encryption by default or don't encrypt new objects by default. For detailed information about these settings, see Setting default server-side encryption behavior for Amazon S3 buckets in the Amazon Simple Storage Service User Guide.
See: newBucketCountByEncryptionType smart constructor.
Constructors
| BucketCountByEncryptionType' | |
Fields
| |
Instances
newBucketCountByEncryptionType :: BucketCountByEncryptionType Source #
Create a value of BucketCountByEncryptionType with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:kmsManaged:BucketCountByEncryptionType', bucketCountByEncryptionType_kmsManaged - The total number of buckets that use an KMS key to encrypt new objects
by default, either an Amazon Web Services managed key or a customer
managed key. These buckets use KMS encryption (SSE-KMS) by default.
$sel:s3Managed:BucketCountByEncryptionType', bucketCountByEncryptionType_s3Managed - The total number of buckets that use an Amazon S3 managed key to encrypt
new objects by default. These buckets use Amazon S3 managed encryption
(SSE-S3) by default.
$sel:unencrypted:BucketCountByEncryptionType', bucketCountByEncryptionType_unencrypted - The total number of buckets that don't encrypt new objects by default.
Default encryption is disabled for these buckets.
$sel:unknown:BucketCountByEncryptionType', bucketCountByEncryptionType_unknown - The total number of buckets that Amazon Macie doesn't have current
encryption metadata for. Macie can't provide current data about the
default encryption settings for these buckets.
bucketCountByEncryptionType_kmsManaged :: Lens' BucketCountByEncryptionType (Maybe Integer) Source #
The total number of buckets that use an KMS key to encrypt new objects by default, either an Amazon Web Services managed key or a customer managed key. These buckets use KMS encryption (SSE-KMS) by default.
bucketCountByEncryptionType_s3Managed :: Lens' BucketCountByEncryptionType (Maybe Integer) Source #
The total number of buckets that use an Amazon S3 managed key to encrypt new objects by default. These buckets use Amazon S3 managed encryption (SSE-S3) by default.
bucketCountByEncryptionType_unencrypted :: Lens' BucketCountByEncryptionType (Maybe Integer) Source #
The total number of buckets that don't encrypt new objects by default. Default encryption is disabled for these buckets.
bucketCountByEncryptionType_unknown :: Lens' BucketCountByEncryptionType (Maybe Integer) Source #
The total number of buckets that Amazon Macie doesn't have current encryption metadata for. Macie can't provide current data about the default encryption settings for these buckets.
BucketCountBySharedAccessType
data BucketCountBySharedAccessType Source #
Provides information about the number of S3 buckets that are or aren't shared with other Amazon Web Services accounts.
See: newBucketCountBySharedAccessType smart constructor.
Constructors
| BucketCountBySharedAccessType' | |
Fields
| |
Instances
newBucketCountBySharedAccessType :: BucketCountBySharedAccessType Source #
Create a value of BucketCountBySharedAccessType with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:external:BucketCountBySharedAccessType', bucketCountBySharedAccessType_external - The total number of buckets that are shared with an Amazon Web Services
account that isn't part of the same Amazon Macie organization.
$sel:internal:BucketCountBySharedAccessType', bucketCountBySharedAccessType_internal - The total number of buckets that are shared with an Amazon Web Services
account that's part of the same Amazon Macie organization.
$sel:notShared:BucketCountBySharedAccessType', bucketCountBySharedAccessType_notShared - The total number of buckets that aren't shared with other Amazon Web
Services accounts.
$sel:unknown:BucketCountBySharedAccessType', bucketCountBySharedAccessType_unknown - The total number of buckets that Amazon Macie wasn't able to evaluate
shared access settings for. Macie can't determine whether these buckets
are shared with other Amazon Web Services accounts.
bucketCountBySharedAccessType_external :: Lens' BucketCountBySharedAccessType (Maybe Integer) Source #
The total number of buckets that are shared with an Amazon Web Services account that isn't part of the same Amazon Macie organization.
bucketCountBySharedAccessType_internal :: Lens' BucketCountBySharedAccessType (Maybe Integer) Source #
The total number of buckets that are shared with an Amazon Web Services account that's part of the same Amazon Macie organization.
bucketCountBySharedAccessType_notShared :: Lens' BucketCountBySharedAccessType (Maybe Integer) Source #
The total number of buckets that aren't shared with other Amazon Web Services accounts.
bucketCountBySharedAccessType_unknown :: Lens' BucketCountBySharedAccessType (Maybe Integer) Source #
The total number of buckets that Amazon Macie wasn't able to evaluate shared access settings for. Macie can't determine whether these buckets are shared with other Amazon Web Services accounts.
BucketCountPolicyAllowsUnencryptedObjectUploads
data BucketCountPolicyAllowsUnencryptedObjectUploads Source #
Provides information about the number of S3 buckets whose bucket policies do or don't require server-side encryption of objects when objects are uploaded to the buckets.
See: newBucketCountPolicyAllowsUnencryptedObjectUploads smart constructor.
Constructors
| BucketCountPolicyAllowsUnencryptedObjectUploads' | |
Fields
| |
Instances
newBucketCountPolicyAllowsUnencryptedObjectUploads :: BucketCountPolicyAllowsUnencryptedObjectUploads Source #
Create a value of BucketCountPolicyAllowsUnencryptedObjectUploads with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:allowsUnencryptedObjectUploads:BucketCountPolicyAllowsUnencryptedObjectUploads', bucketCountPolicyAllowsUnencryptedObjectUploads_allowsUnencryptedObjectUploads - The total number of buckets that don't have a bucket policy or have a
bucket policy that doesn't require server-side encryption of new
objects. If a bucket policy exists, the policy doesn't require
PutObject requests to include a valid server-side encryption header: the
x-amz-server-side-encryption header with a value of AES256 or aws:kms,
or the x-amz-server-side-encryption-customer-algorithm header with a
value of AES256.
$sel:deniesUnencryptedObjectUploads:BucketCountPolicyAllowsUnencryptedObjectUploads', bucketCountPolicyAllowsUnencryptedObjectUploads_deniesUnencryptedObjectUploads - The total number of buckets whose bucket policies require server-side
encryption of new objects. PutObject requests for these buckets must
include a valid server-side encryption header: the
x-amz-server-side-encryption header with a value of AES256 or aws:kms,
or the x-amz-server-side-encryption-customer-algorithm header with a
value of AES256.
$sel:unknown:BucketCountPolicyAllowsUnencryptedObjectUploads', bucketCountPolicyAllowsUnencryptedObjectUploads_unknown - The total number of buckets that Amazon Macie wasn't able to evaluate
server-side encryption requirements for. Macie can't determine whether
the bucket policies for these buckets require server-side encryption of
new objects.
bucketCountPolicyAllowsUnencryptedObjectUploads_allowsUnencryptedObjectUploads :: Lens' BucketCountPolicyAllowsUnencryptedObjectUploads (Maybe Integer) Source #
The total number of buckets that don't have a bucket policy or have a bucket policy that doesn't require server-side encryption of new objects. If a bucket policy exists, the policy doesn't require PutObject requests to include a valid server-side encryption header: the x-amz-server-side-encryption header with a value of AES256 or aws:kms, or the x-amz-server-side-encryption-customer-algorithm header with a value of AES256.
bucketCountPolicyAllowsUnencryptedObjectUploads_deniesUnencryptedObjectUploads :: Lens' BucketCountPolicyAllowsUnencryptedObjectUploads (Maybe Integer) Source #
The total number of buckets whose bucket policies require server-side encryption of new objects. PutObject requests for these buckets must include a valid server-side encryption header: the x-amz-server-side-encryption header with a value of AES256 or aws:kms, or the x-amz-server-side-encryption-customer-algorithm header with a value of AES256.
bucketCountPolicyAllowsUnencryptedObjectUploads_unknown :: Lens' BucketCountPolicyAllowsUnencryptedObjectUploads (Maybe Integer) Source #
The total number of buckets that Amazon Macie wasn't able to evaluate server-side encryption requirements for. Macie can't determine whether the bucket policies for these buckets require server-side encryption of new objects.
BucketCriteriaAdditionalProperties
data BucketCriteriaAdditionalProperties Source #
Specifies the operator to use in a property-based condition that filters the results of a query for information about S3 buckets.
See: newBucketCriteriaAdditionalProperties smart constructor.
Constructors
| BucketCriteriaAdditionalProperties' | |
Fields
| |
Instances
newBucketCriteriaAdditionalProperties :: BucketCriteriaAdditionalProperties Source #
Create a value of BucketCriteriaAdditionalProperties with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:eq:BucketCriteriaAdditionalProperties', bucketCriteriaAdditionalProperties_eq - The value for the property matches (equals) the specified value. If you
specify multiple values, Amazon Macie uses OR logic to join the values.
$sel:gt:BucketCriteriaAdditionalProperties', bucketCriteriaAdditionalProperties_gt - The value for the property is greater than the specified value.
$sel:gte:BucketCriteriaAdditionalProperties', bucketCriteriaAdditionalProperties_gte - The value for the property is greater than or equal to the specified
value.
$sel:lt:BucketCriteriaAdditionalProperties', bucketCriteriaAdditionalProperties_lt - The value for the property is less than the specified value.
$sel:lte:BucketCriteriaAdditionalProperties', bucketCriteriaAdditionalProperties_lte - The value for the property is less than or equal to the specified value.
$sel:neq:BucketCriteriaAdditionalProperties', bucketCriteriaAdditionalProperties_neq - The value for the property doesn't match (doesn't equal) the specified
value. If you specify multiple values, Amazon Macie uses OR logic to
join the values.
$sel:prefix:BucketCriteriaAdditionalProperties', bucketCriteriaAdditionalProperties_prefix - The name of the bucket begins with the specified value.
bucketCriteriaAdditionalProperties_eq :: Lens' BucketCriteriaAdditionalProperties (Maybe [Text]) Source #
The value for the property matches (equals) the specified value. If you specify multiple values, Amazon Macie uses OR logic to join the values.
bucketCriteriaAdditionalProperties_gt :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer) Source #
The value for the property is greater than the specified value.
bucketCriteriaAdditionalProperties_gte :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer) Source #
The value for the property is greater than or equal to the specified value.
bucketCriteriaAdditionalProperties_lt :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer) Source #
The value for the property is less than the specified value.
bucketCriteriaAdditionalProperties_lte :: Lens' BucketCriteriaAdditionalProperties (Maybe Integer) Source #
The value for the property is less than or equal to the specified value.
bucketCriteriaAdditionalProperties_neq :: Lens' BucketCriteriaAdditionalProperties (Maybe [Text]) Source #
The value for the property doesn't match (doesn't equal) the specified value. If you specify multiple values, Amazon Macie uses OR logic to join the values.
bucketCriteriaAdditionalProperties_prefix :: Lens' BucketCriteriaAdditionalProperties (Maybe Text) Source #
The name of the bucket begins with the specified value.
BucketLevelPermissions
data BucketLevelPermissions Source #
Provides information about the bucket-level permissions settings for an S3 bucket.
See: newBucketLevelPermissions smart constructor.
Constructors
| BucketLevelPermissions' | |
Fields
| |
Instances
newBucketLevelPermissions :: BucketLevelPermissions Source #
Create a value of BucketLevelPermissions with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accessControlList:BucketLevelPermissions', bucketLevelPermissions_accessControlList - The permissions settings of the access control list (ACL) for the
bucket. This value is null if an ACL hasn't been defined for the
bucket.
$sel:blockPublicAccess:BucketLevelPermissions', bucketLevelPermissions_blockPublicAccess - The block public access settings for the bucket.
$sel:bucketPolicy:BucketLevelPermissions', bucketLevelPermissions_bucketPolicy - The permissions settings of the bucket policy for the bucket. This value
is null if a bucket policy hasn't been defined for the bucket.
bucketLevelPermissions_accessControlList :: Lens' BucketLevelPermissions (Maybe AccessControlList) Source #
The permissions settings of the access control list (ACL) for the bucket. This value is null if an ACL hasn't been defined for the bucket.
bucketLevelPermissions_blockPublicAccess :: Lens' BucketLevelPermissions (Maybe BlockPublicAccess) Source #
The block public access settings for the bucket.
bucketLevelPermissions_bucketPolicy :: Lens' BucketLevelPermissions (Maybe BucketPolicy) Source #
The permissions settings of the bucket policy for the bucket. This value is null if a bucket policy hasn't been defined for the bucket.
BucketMetadata
data BucketMetadata Source #
Provides statistical data and other information about an S3 bucket that Amazon Macie monitors and analyzes for your account. If an error occurs when Macie attempts to retrieve and process metadata from Amazon S3 for the bucket and the bucket's objects, the value for the versioning property is false and the value for most other properties is null. Key exceptions are accountId, bucketArn, bucketCreatedAt, bucketName, lastUpdated, and region. To identify the cause of the error, refer to the errorCode and errorMessage values.
See: newBucketMetadata smart constructor.
Constructors
| BucketMetadata' | |
Fields
| |
Instances
newBucketMetadata :: BucketMetadata Source #
Create a value of BucketMetadata with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:BucketMetadata', bucketMetadata_accountId - The unique identifier for the Amazon Web Services account that owns the
bucket.
$sel:allowsUnencryptedObjectUploads:BucketMetadata', bucketMetadata_allowsUnencryptedObjectUploads - Specifies whether the bucket policy for the bucket requires server-side
encryption of objects when objects are uploaded to the bucket. Possible
values are:
- FALSE - The bucket policy requires server-side encryption of new objects. PutObject requests must include a valid server-side encryption header.
- TRUE - The bucket doesn't have a bucket policy or it has a bucket policy that doesn't require server-side encryption of new objects. If a bucket policy exists, it doesn't require PutObject requests to include a valid server-side encryption header.
- UNKNOWN - Amazon Macie can't determine whether the bucket policy requires server-side encryption of new objects.
Valid server-side encryption headers are: x-amz-server-side-encryption with a value of AES256 or aws:kms, and x-amz-server-side-encryption-customer-algorithm with a value of AES256.
$sel:bucketArn:BucketMetadata', bucketMetadata_bucketArn - The Amazon Resource Name (ARN) of the bucket.
$sel:bucketCreatedAt:BucketMetadata', bucketMetadata_bucketCreatedAt - The date and time, in UTC and extended ISO 8601 format, when the bucket
was created, or changes such as edits to the bucket's policy were most
recently made to the bucket.
$sel:bucketName:BucketMetadata', bucketMetadata_bucketName - The name of the bucket.
$sel:classifiableObjectCount:BucketMetadata', bucketMetadata_classifiableObjectCount - The total number of objects that Amazon Macie can analyze in the bucket.
These objects use a supported storage class and have a file name
extension for a supported file or storage format.
$sel:classifiableSizeInBytes:BucketMetadata', bucketMetadata_classifiableSizeInBytes - The total storage size, in bytes, of the objects that Amazon Macie can
analyze in the bucket. These objects use a supported storage class and
have a file name extension for a supported file or storage format.
If versioning is enabled for the bucket, Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
$sel:errorCode:BucketMetadata', bucketMetadata_errorCode - Specifies the error code for an error that prevented Amazon Macie from
retrieving and processing information about the bucket and the bucket's
objects. If this value is ACCESS_DENIED, Macie doesn't have permission
to retrieve the information. For example, the bucket has a restrictive
bucket policy and Amazon S3 denied the request. If this value is null,
Macie was able to retrieve and process the information.
$sel:errorMessage:BucketMetadata', bucketMetadata_errorMessage - A brief description of the error (errorCode) that prevented Amazon Macie
from retrieving and processing information about the bucket and the
bucket's objects. This value is null if Macie was able to retrieve and
process the information.
$sel:jobDetails:BucketMetadata', bucketMetadata_jobDetails - Specifies whether any one-time or recurring classification jobs are
configured to analyze data in the bucket, and, if so, the details of the
job that ran most recently.
$sel:lastAutomatedDiscoveryTime:BucketMetadata', bucketMetadata_lastAutomatedDiscoveryTime - The date and time, in UTC and extended ISO 8601 format, when Amazon
Macie most recently performed automated sensitive data discovery for the
bucket. This value is null if automated sensitive data discovery is
currently disabled for your account.
$sel:lastUpdated:BucketMetadata', bucketMetadata_lastUpdated - The date and time, in UTC and extended ISO 8601 format, when Amazon
Macie most recently retrieved both bucket and object metadata from
Amazon S3 for the bucket.
$sel:objectCount:BucketMetadata', bucketMetadata_objectCount - The total number of objects in the bucket.
$sel:objectCountByEncryptionType:BucketMetadata', bucketMetadata_objectCountByEncryptionType - The total number of objects that are in the bucket, grouped by
server-side encryption type. This includes a grouping that reports the
total number of objects that aren't encrypted or use client-side
encryption.
$sel:publicAccess:BucketMetadata', bucketMetadata_publicAccess - Specifies whether the bucket is publicly accessible due to the
combination of permissions settings that apply to the bucket, and
provides information about those settings.
$sel:region:BucketMetadata', bucketMetadata_region - The Amazon Web Services Region that hosts the bucket.
$sel:replicationDetails:BucketMetadata', bucketMetadata_replicationDetails - Specifies whether the bucket is configured to replicate one or more
objects to buckets for other Amazon Web Services accounts and, if so,
which accounts.
$sel:sensitivityScore:BucketMetadata', bucketMetadata_sensitivityScore - The sensitivity score for the bucket, ranging from -1 (no analysis due
to an error) to 100 (sensitive). This value is null if automated
sensitive data discovery is currently disabled for your account.
$sel:serverSideEncryption:BucketMetadata', bucketMetadata_serverSideEncryption - Specifies whether the bucket encrypts new objects by default and, if so,
the type of server-side encryption that's used.
$sel:sharedAccess:BucketMetadata', bucketMetadata_sharedAccess - Specifies whether the bucket is shared with another Amazon Web Services
account. Possible values are:
- EXTERNAL - The bucket is shared with an Amazon Web Services account that isn't part of the same Amazon Macie organization.
- INTERNAL - The bucket is shared with an Amazon Web Services account that's part of the same Amazon Macie organization.
- NOT_SHARED - The bucket isn't shared with other Amazon Web Services accounts.
- UNKNOWN - Amazon Macie wasn't able to evaluate the shared access settings for the bucket.
$sel:sizeInBytes:BucketMetadata', bucketMetadata_sizeInBytes - The total storage size, in bytes, of the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each object in the bucket. This value doesn't reflect the storage size of all versions of each object in the bucket.
$sel:sizeInBytesCompressed:BucketMetadata', bucketMetadata_sizeInBytesCompressed - The total storage size, in bytes, of the objects that are compressed
(.gz, .gzip, .zip) files in the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
$sel:tags:BucketMetadata', bucketMetadata_tags - An array that specifies the tags (keys and values) that are associated
with the bucket.
$sel:unclassifiableObjectCount:BucketMetadata', bucketMetadata_unclassifiableObjectCount - The total number of objects that Amazon Macie can't analyze in the
bucket. These objects don't use a supported storage class or don't
have a file name extension for a supported file or storage format.
$sel:unclassifiableObjectSizeInBytes:BucketMetadata', bucketMetadata_unclassifiableObjectSizeInBytes - The total storage size, in bytes, of the objects that Amazon Macie
can't analyze in the bucket. These objects don't use a supported
storage class or don't have a file name extension for a supported file
or storage format.
$sel:versioning:BucketMetadata', bucketMetadata_versioning - Specifies whether versioning is enabled for the bucket.
bucketMetadata_accountId :: Lens' BucketMetadata (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that owns the bucket.
bucketMetadata_allowsUnencryptedObjectUploads :: Lens' BucketMetadata (Maybe AllowsUnencryptedObjectUploads) Source #
Specifies whether the bucket policy for the bucket requires server-side encryption of objects when objects are uploaded to the bucket. Possible values are:
- FALSE - The bucket policy requires server-side encryption of new objects. PutObject requests must include a valid server-side encryption header.
- TRUE - The bucket doesn't have a bucket policy or it has a bucket policy that doesn't require server-side encryption of new objects. If a bucket policy exists, it doesn't require PutObject requests to include a valid server-side encryption header.
- UNKNOWN - Amazon Macie can't determine whether the bucket policy requires server-side encryption of new objects.
Valid server-side encryption headers are: x-amz-server-side-encryption with a value of AES256 or aws:kms, and x-amz-server-side-encryption-customer-algorithm with a value of AES256.
bucketMetadata_bucketArn :: Lens' BucketMetadata (Maybe Text) Source #
The Amazon Resource Name (ARN) of the bucket.
bucketMetadata_bucketCreatedAt :: Lens' BucketMetadata (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the bucket was created, or changes such as edits to the bucket's policy were most recently made to the bucket.
bucketMetadata_bucketName :: Lens' BucketMetadata (Maybe Text) Source #
The name of the bucket.
bucketMetadata_classifiableObjectCount :: Lens' BucketMetadata (Maybe Integer) Source #
The total number of objects that Amazon Macie can analyze in the bucket. These objects use a supported storage class and have a file name extension for a supported file or storage format.
bucketMetadata_classifiableSizeInBytes :: Lens' BucketMetadata (Maybe Integer) Source #
The total storage size, in bytes, of the objects that Amazon Macie can analyze in the bucket. These objects use a supported storage class and have a file name extension for a supported file or storage format.
If versioning is enabled for the bucket, Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
bucketMetadata_errorCode :: Lens' BucketMetadata (Maybe BucketMetadataErrorCode) Source #
Specifies the error code for an error that prevented Amazon Macie from retrieving and processing information about the bucket and the bucket's objects. If this value is ACCESS_DENIED, Macie doesn't have permission to retrieve the information. For example, the bucket has a restrictive bucket policy and Amazon S3 denied the request. If this value is null, Macie was able to retrieve and process the information.
bucketMetadata_errorMessage :: Lens' BucketMetadata (Maybe Text) Source #
A brief description of the error (errorCode) that prevented Amazon Macie from retrieving and processing information about the bucket and the bucket's objects. This value is null if Macie was able to retrieve and process the information.
bucketMetadata_jobDetails :: Lens' BucketMetadata (Maybe JobDetails) Source #
Specifies whether any one-time or recurring classification jobs are configured to analyze data in the bucket, and, if so, the details of the job that ran most recently.
bucketMetadata_lastAutomatedDiscoveryTime :: Lens' BucketMetadata (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when Amazon Macie most recently performed automated sensitive data discovery for the bucket. This value is null if automated sensitive data discovery is currently disabled for your account.
bucketMetadata_lastUpdated :: Lens' BucketMetadata (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when Amazon Macie most recently retrieved both bucket and object metadata from Amazon S3 for the bucket.
bucketMetadata_objectCount :: Lens' BucketMetadata (Maybe Integer) Source #
The total number of objects in the bucket.
bucketMetadata_objectCountByEncryptionType :: Lens' BucketMetadata (Maybe ObjectCountByEncryptionType) Source #
The total number of objects that are in the bucket, grouped by server-side encryption type. This includes a grouping that reports the total number of objects that aren't encrypted or use client-side encryption.
bucketMetadata_publicAccess :: Lens' BucketMetadata (Maybe BucketPublicAccess) Source #
Specifies whether the bucket is publicly accessible due to the combination of permissions settings that apply to the bucket, and provides information about those settings.
bucketMetadata_region :: Lens' BucketMetadata (Maybe Text) Source #
The Amazon Web Services Region that hosts the bucket.
bucketMetadata_replicationDetails :: Lens' BucketMetadata (Maybe ReplicationDetails) Source #
Specifies whether the bucket is configured to replicate one or more objects to buckets for other Amazon Web Services accounts and, if so, which accounts.
bucketMetadata_sensitivityScore :: Lens' BucketMetadata (Maybe Int) Source #
The sensitivity score for the bucket, ranging from -1 (no analysis due to an error) to 100 (sensitive). This value is null if automated sensitive data discovery is currently disabled for your account.
bucketMetadata_serverSideEncryption :: Lens' BucketMetadata (Maybe BucketServerSideEncryption) Source #
Specifies whether the bucket encrypts new objects by default and, if so, the type of server-side encryption that's used.
bucketMetadata_sharedAccess :: Lens' BucketMetadata (Maybe SharedAccess) Source #
Specifies whether the bucket is shared with another Amazon Web Services account. Possible values are:
- EXTERNAL - The bucket is shared with an Amazon Web Services account that isn't part of the same Amazon Macie organization.
- INTERNAL - The bucket is shared with an Amazon Web Services account that's part of the same Amazon Macie organization.
- NOT_SHARED - The bucket isn't shared with other Amazon Web Services accounts.
- UNKNOWN - Amazon Macie wasn't able to evaluate the shared access settings for the bucket.
bucketMetadata_sizeInBytes :: Lens' BucketMetadata (Maybe Integer) Source #
The total storage size, in bytes, of the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each object in the bucket. This value doesn't reflect the storage size of all versions of each object in the bucket.
bucketMetadata_sizeInBytesCompressed :: Lens' BucketMetadata (Maybe Integer) Source #
The total storage size, in bytes, of the objects that are compressed (.gz, .gzip, .zip) files in the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
bucketMetadata_tags :: Lens' BucketMetadata (Maybe [KeyValuePair]) Source #
An array that specifies the tags (keys and values) that are associated with the bucket.
bucketMetadata_unclassifiableObjectCount :: Lens' BucketMetadata (Maybe ObjectLevelStatistics) Source #
The total number of objects that Amazon Macie can't analyze in the bucket. These objects don't use a supported storage class or don't have a file name extension for a supported file or storage format.
bucketMetadata_unclassifiableObjectSizeInBytes :: Lens' BucketMetadata (Maybe ObjectLevelStatistics) Source #
The total storage size, in bytes, of the objects that Amazon Macie can't analyze in the bucket. These objects don't use a supported storage class or don't have a file name extension for a supported file or storage format.
bucketMetadata_versioning :: Lens' BucketMetadata (Maybe Bool) Source #
Specifies whether versioning is enabled for the bucket.
BucketPermissionConfiguration
data BucketPermissionConfiguration Source #
Provides information about the account-level and bucket-level permissions settings for an S3 bucket.
See: newBucketPermissionConfiguration smart constructor.
Constructors
| BucketPermissionConfiguration' | |
Fields
| |
Instances
newBucketPermissionConfiguration :: BucketPermissionConfiguration Source #
Create a value of BucketPermissionConfiguration with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountLevelPermissions:BucketPermissionConfiguration', bucketPermissionConfiguration_accountLevelPermissions - The account-level permissions settings that apply to the bucket.
$sel:bucketLevelPermissions:BucketPermissionConfiguration', bucketPermissionConfiguration_bucketLevelPermissions - The bucket-level permissions settings for the bucket.
bucketPermissionConfiguration_accountLevelPermissions :: Lens' BucketPermissionConfiguration (Maybe AccountLevelPermissions) Source #
The account-level permissions settings that apply to the bucket.
bucketPermissionConfiguration_bucketLevelPermissions :: Lens' BucketPermissionConfiguration (Maybe BucketLevelPermissions) Source #
The bucket-level permissions settings for the bucket.
BucketPolicy
data BucketPolicy Source #
Provides information about the permissions settings of the bucket policy for an S3 bucket.
See: newBucketPolicy smart constructor.
Constructors
| BucketPolicy' | |
Fields
| |
Instances
newBucketPolicy :: BucketPolicy Source #
Create a value of BucketPolicy with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:allowsPublicReadAccess:BucketPolicy', bucketPolicy_allowsPublicReadAccess - Specifies whether the bucket policy allows the general public to have
read access to the bucket.
$sel:allowsPublicWriteAccess:BucketPolicy', bucketPolicy_allowsPublicWriteAccess - Specifies whether the bucket policy allows the general public to have
write access to the bucket.
bucketPolicy_allowsPublicReadAccess :: Lens' BucketPolicy (Maybe Bool) Source #
Specifies whether the bucket policy allows the general public to have read access to the bucket.
bucketPolicy_allowsPublicWriteAccess :: Lens' BucketPolicy (Maybe Bool) Source #
Specifies whether the bucket policy allows the general public to have write access to the bucket.
BucketPublicAccess
data BucketPublicAccess Source #
Provides information about the permissions settings that determine whether an S3 bucket is publicly accessible.
See: newBucketPublicAccess smart constructor.
Constructors
| BucketPublicAccess' | |
Fields
| |
Instances
newBucketPublicAccess :: BucketPublicAccess Source #
Create a value of BucketPublicAccess with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:effectivePermission:BucketPublicAccess', bucketPublicAccess_effectivePermission - Specifies whether the bucket is publicly accessible due to the
combination of permissions settings that apply to the bucket. Possible
values are:
- NOT_PUBLIC - The bucket isn't publicly accessible.
- PUBLIC - The bucket is publicly accessible.
- UNKNOWN - Amazon Macie can't determine whether the bucket is publicly accessible.
$sel:permissionConfiguration:BucketPublicAccess', bucketPublicAccess_permissionConfiguration - The account-level and bucket-level permissions settings for the bucket.
bucketPublicAccess_effectivePermission :: Lens' BucketPublicAccess (Maybe EffectivePermission) Source #
Specifies whether the bucket is publicly accessible due to the combination of permissions settings that apply to the bucket. Possible values are:
- NOT_PUBLIC - The bucket isn't publicly accessible.
- PUBLIC - The bucket is publicly accessible.
- UNKNOWN - Amazon Macie can't determine whether the bucket is publicly accessible.
bucketPublicAccess_permissionConfiguration :: Lens' BucketPublicAccess (Maybe BucketPermissionConfiguration) Source #
The account-level and bucket-level permissions settings for the bucket.
BucketServerSideEncryption
data BucketServerSideEncryption Source #
Provides information about the default server-side encryption settings for an S3 bucket. For detailed information about these settings, see Setting default server-side encryption behavior for Amazon S3 buckets in the Amazon Simple Storage Service User Guide.
See: newBucketServerSideEncryption smart constructor.
Constructors
| BucketServerSideEncryption' | |
Fields
| |
Instances
newBucketServerSideEncryption :: BucketServerSideEncryption Source #
Create a value of BucketServerSideEncryption with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:kmsMasterKeyId:BucketServerSideEncryption', bucketServerSideEncryption_kmsMasterKeyId - The Amazon Resource Name (ARN) or unique identifier (key ID) for the KMS
key that's used by default to encrypt objects that are added to the
bucket. This value is null if the bucket uses an Amazon S3 managed key
to encrypt new objects or the bucket doesn't encrypt new objects by
default.
$sel:type':BucketServerSideEncryption', bucketServerSideEncryption_type - The type of server-side encryption that's used by default when storing
new objects in the bucket. Possible values are:
- AES256 - New objects are encrypted with an Amazon S3 managed key. They use SSE-S3 encryption.
- aws:kms - New objects are encrypted with an KMS key (kmsMasterKeyId), either an Amazon Web Services managed key or a customer managed key. They use SSE-KMS encryption.
- NONE - New objects aren't encrypted by default. Default encryption is disabled for the bucket.
bucketServerSideEncryption_kmsMasterKeyId :: Lens' BucketServerSideEncryption (Maybe Text) Source #
The Amazon Resource Name (ARN) or unique identifier (key ID) for the KMS key that's used by default to encrypt objects that are added to the bucket. This value is null if the bucket uses an Amazon S3 managed key to encrypt new objects or the bucket doesn't encrypt new objects by default.
bucketServerSideEncryption_type :: Lens' BucketServerSideEncryption (Maybe Type) Source #
The type of server-side encryption that's used by default when storing new objects in the bucket. Possible values are:
- AES256 - New objects are encrypted with an Amazon S3 managed key. They use SSE-S3 encryption.
- aws:kms - New objects are encrypted with an KMS key (kmsMasterKeyId), either an Amazon Web Services managed key or a customer managed key. They use SSE-KMS encryption.
- NONE - New objects aren't encrypted by default. Default encryption is disabled for the bucket.
BucketSortCriteria
data BucketSortCriteria Source #
Specifies criteria for sorting the results of a query for information about S3 buckets.
See: newBucketSortCriteria smart constructor.
Constructors
| BucketSortCriteria' | |
Fields
| |
Instances
newBucketSortCriteria :: BucketSortCriteria Source #
Create a value of BucketSortCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:attributeName:BucketSortCriteria', bucketSortCriteria_attributeName - The name of the bucket property to sort the results by. This value can
be one of the following properties that Amazon Macie defines as bucket
metadata: accountId, bucketName, classifiableObjectCount,
classifiableSizeInBytes, objectCount, sensitivityScore, or sizeInBytes.
$sel:orderBy:BucketSortCriteria', bucketSortCriteria_orderBy - The sort order to apply to the results, based on the value specified by
the attributeName property. Valid values are: ASC, sort the results in
ascending order; and, DESC, sort the results in descending order.
bucketSortCriteria_attributeName :: Lens' BucketSortCriteria (Maybe Text) Source #
The name of the bucket property to sort the results by. This value can be one of the following properties that Amazon Macie defines as bucket metadata: accountId, bucketName, classifiableObjectCount, classifiableSizeInBytes, objectCount, sensitivityScore, or sizeInBytes.
bucketSortCriteria_orderBy :: Lens' BucketSortCriteria (Maybe OrderBy) Source #
The sort order to apply to the results, based on the value specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
BucketStatisticsBySensitivity
data BucketStatisticsBySensitivity Source #
Provides aggregated statistical data for sensitive data discovery metrics that apply to S3 buckets, grouped by bucket sensitivity score (sensitivityScore). If automated sensitive data discovery is currently disabled for your account, the value for each metric is 0.
See: newBucketStatisticsBySensitivity smart constructor.
Constructors
| BucketStatisticsBySensitivity' | |
Fields
| |
Instances
newBucketStatisticsBySensitivity :: BucketStatisticsBySensitivity Source #
Create a value of BucketStatisticsBySensitivity with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:classificationError:BucketStatisticsBySensitivity', bucketStatisticsBySensitivity_classificationError - The aggregated statistical data for all buckets that have a sensitivity
score of -1.
$sel:notClassified:BucketStatisticsBySensitivity', bucketStatisticsBySensitivity_notClassified - The aggregated statistical data for all buckets that have a sensitivity
score of 50.
$sel:notSensitive:BucketStatisticsBySensitivity', bucketStatisticsBySensitivity_notSensitive - The aggregated statistical data for all buckets that have a sensitivity
score of 0-49.
$sel:sensitive:BucketStatisticsBySensitivity', bucketStatisticsBySensitivity_sensitive - The aggregated statistical data for all buckets that have a sensitivity
score of 51-100.
bucketStatisticsBySensitivity_classificationError :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations) Source #
The aggregated statistical data for all buckets that have a sensitivity score of -1.
bucketStatisticsBySensitivity_notClassified :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations) Source #
The aggregated statistical data for all buckets that have a sensitivity score of 50.
bucketStatisticsBySensitivity_notSensitive :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations) Source #
The aggregated statistical data for all buckets that have a sensitivity score of 0-49.
bucketStatisticsBySensitivity_sensitive :: Lens' BucketStatisticsBySensitivity (Maybe SensitivityAggregations) Source #
The aggregated statistical data for all buckets that have a sensitivity score of 51-100.
Cell
Specifies the location of an occurrence of sensitive data in a Microsoft Excel workbook, CSV file, or TSV file.
See: newCell smart constructor.
Constructors
| Cell' | |
Fields
| |
Instances
| FromJSON Cell Source # | |
| Generic Cell Source # | |
| Read Cell Source # | |
| Show Cell Source # | |
| NFData Cell Source # | |
Defined in Amazonka.MacieV2.Types.Cell | |
| Eq Cell Source # | |
| Hashable Cell Source # | |
Defined in Amazonka.MacieV2.Types.Cell | |
| type Rep Cell Source # | |
Defined in Amazonka.MacieV2.Types.Cell type Rep Cell = D1 ('MetaData "Cell" "Amazonka.MacieV2.Types.Cell" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "Cell'" 'PrefixI 'True) ((S1 ('MetaSel ('Just "cellReference") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "column") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer))) :*: (S1 ('MetaSel ('Just "columnName") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "row") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer))))) | |
Create a value of Cell with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:cellReference:Cell', cell_cellReference - The location of the cell, as an absolute cell reference, that contains
the sensitive data, for example Sheet2!C5 for cell C5 on Sheet2 in a
Microsoft Excel workbook. This value is null for CSV and TSV files.
$sel:column:Cell', cell_column - The column number of the column that contains the sensitive data. For a
Microsoft Excel workbook, this value correlates to the alphabetical
character(s) for a column identifier, for example: 1 for column A, 2 for
column B, and so on.
$sel:columnName:Cell', cell_columnName - The name of the column that contains the sensitive data, if available.
$sel:row:Cell', cell_row - The row number of the row that contains the sensitive data.
cell_cellReference :: Lens' Cell (Maybe Text) Source #
The location of the cell, as an absolute cell reference, that contains the sensitive data, for example Sheet2!C5 for cell C5 on Sheet2 in a Microsoft Excel workbook. This value is null for CSV and TSV files.
cell_column :: Lens' Cell (Maybe Integer) Source #
The column number of the column that contains the sensitive data. For a Microsoft Excel workbook, this value correlates to the alphabetical character(s) for a column identifier, for example: 1 for column A, 2 for column B, and so on.
cell_columnName :: Lens' Cell (Maybe Text) Source #
The name of the column that contains the sensitive data, if available.
cell_row :: Lens' Cell (Maybe Integer) Source #
The row number of the row that contains the sensitive data.
ClassificationDetails
data ClassificationDetails Source #
Provides information about a sensitive data finding and the details of the finding.
See: newClassificationDetails smart constructor.
Constructors
| ClassificationDetails' | |
Fields
| |
Instances
newClassificationDetails :: ClassificationDetails Source #
Create a value of ClassificationDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:detailedResultsLocation:ClassificationDetails', classificationDetails_detailedResultsLocation - The path to the folder or file in Amazon S3 that contains the
corresponding sensitive data discovery result for the finding. If a
finding applies to a large archive or compressed file, this value is the
path to a folder. Otherwise, this value is the path to a file.
$sel:jobArn:ClassificationDetails', classificationDetails_jobArn - The Amazon Resource Name (ARN) of the classification job that produced
the finding. This value is null if the origin of the finding
(originType) is AUTOMATED_SENSITIVE_DATA_DISCOVERY.
$sel:jobId:ClassificationDetails', classificationDetails_jobId - The unique identifier for the classification job that produced the
finding. This value is null if the origin of the finding (originType) is
AUTOMATED_SENSITIVE_DATA_DISCOVERY.
$sel:originType:ClassificationDetails', classificationDetails_originType - Specifies how Amazon Macie found the sensitive data that produced the
finding. Possible values are: SENSITIVE_DATA_DISCOVERY_JOB, for a
classification job; and, AUTOMATED_SENSITIVE_DATA_DISCOVERY, for
automated sensitive data discovery.
$sel:result:ClassificationDetails', classificationDetails_result - The status and other details of the finding.
classificationDetails_detailedResultsLocation :: Lens' ClassificationDetails (Maybe Text) Source #
The path to the folder or file in Amazon S3 that contains the corresponding sensitive data discovery result for the finding. If a finding applies to a large archive or compressed file, this value is the path to a folder. Otherwise, this value is the path to a file.
classificationDetails_jobArn :: Lens' ClassificationDetails (Maybe Text) Source #
The Amazon Resource Name (ARN) of the classification job that produced the finding. This value is null if the origin of the finding (originType) is AUTOMATED_SENSITIVE_DATA_DISCOVERY.
classificationDetails_jobId :: Lens' ClassificationDetails (Maybe Text) Source #
The unique identifier for the classification job that produced the finding. This value is null if the origin of the finding (originType) is AUTOMATED_SENSITIVE_DATA_DISCOVERY.
classificationDetails_originType :: Lens' ClassificationDetails (Maybe OriginType) Source #
Specifies how Amazon Macie found the sensitive data that produced the finding. Possible values are: SENSITIVE_DATA_DISCOVERY_JOB, for a classification job; and, AUTOMATED_SENSITIVE_DATA_DISCOVERY, for automated sensitive data discovery.
classificationDetails_result :: Lens' ClassificationDetails (Maybe ClassificationResult) Source #
The status and other details of the finding.
ClassificationExportConfiguration
data ClassificationExportConfiguration Source #
Specifies where to store data classification results, and the encryption settings to use when storing results in that location. The location must be an S3 bucket.
See: newClassificationExportConfiguration smart constructor.
Constructors
| ClassificationExportConfiguration' | |
Fields
| |
Instances
newClassificationExportConfiguration :: ClassificationExportConfiguration Source #
Create a value of ClassificationExportConfiguration with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:s3Destination:ClassificationExportConfiguration', classificationExportConfiguration_s3Destination - The S3 bucket to store data classification results in, and the
encryption settings to use when storing results in that bucket.
classificationExportConfiguration_s3Destination :: Lens' ClassificationExportConfiguration (Maybe S3Destination) Source #
The S3 bucket to store data classification results in, and the encryption settings to use when storing results in that bucket.
ClassificationResult
data ClassificationResult Source #
Provides the details of a sensitive data finding, including the types, number of occurrences, and locations of the sensitive data that was detected.
See: newClassificationResult smart constructor.
Constructors
| ClassificationResult' | |
Fields
| |
Instances
newClassificationResult :: ClassificationResult Source #
Create a value of ClassificationResult with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:additionalOccurrences:ClassificationResult', classificationResult_additionalOccurrences - Specifies whether Amazon Macie detected additional occurrences of
sensitive data in the S3 object. A finding includes location data for a
maximum of 15 occurrences of sensitive data.
This value can help you determine whether to investigate additional occurrences of sensitive data in an object. You can do this by referring to the corresponding sensitive data discovery result for the finding (ClassificationDetails.detailedResultsLocation).
$sel:customDataIdentifiers:ClassificationResult', classificationResult_customDataIdentifiers - The custom data identifiers that detected the sensitive data and the
number of occurrences of the data that they detected.
$sel:mimeType:ClassificationResult', classificationResult_mimeType - The type of content, as a MIME type, that the finding applies to. For
example, application/gzip, for a GNU Gzip compressed archive file, or
application/pdf, for an Adobe Portable Document Format file.
$sel:sensitiveData:ClassificationResult', classificationResult_sensitiveData - The category, types, and number of occurrences of the sensitive data
that produced the finding.
$sel:sizeClassified:ClassificationResult', classificationResult_sizeClassified - The total size, in bytes, of the data that the finding applies to.
$sel:status:ClassificationResult', classificationResult_status - The status of the finding.
classificationResult_additionalOccurrences :: Lens' ClassificationResult (Maybe Bool) Source #
Specifies whether Amazon Macie detected additional occurrences of sensitive data in the S3 object. A finding includes location data for a maximum of 15 occurrences of sensitive data.
This value can help you determine whether to investigate additional occurrences of sensitive data in an object. You can do this by referring to the corresponding sensitive data discovery result for the finding (ClassificationDetails.detailedResultsLocation).
classificationResult_customDataIdentifiers :: Lens' ClassificationResult (Maybe CustomDataIdentifiers) Source #
The custom data identifiers that detected the sensitive data and the number of occurrences of the data that they detected.
classificationResult_mimeType :: Lens' ClassificationResult (Maybe Text) Source #
The type of content, as a MIME type, that the finding applies to. For example, application/gzip, for a GNU Gzip compressed archive file, or application/pdf, for an Adobe Portable Document Format file.
classificationResult_sensitiveData :: Lens' ClassificationResult (Maybe [SensitiveDataItem]) Source #
The category, types, and number of occurrences of the sensitive data that produced the finding.
classificationResult_sizeClassified :: Lens' ClassificationResult (Maybe Integer) Source #
The total size, in bytes, of the data that the finding applies to.
classificationResult_status :: Lens' ClassificationResult (Maybe ClassificationResultStatus) Source #
The status of the finding.
ClassificationResultStatus
data ClassificationResultStatus Source #
Provides information about the status of a sensitive data finding.
See: newClassificationResultStatus smart constructor.
Constructors
| ClassificationResultStatus' | |
Fields
| |
Instances
newClassificationResultStatus :: ClassificationResultStatus Source #
Create a value of ClassificationResultStatus with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:code:ClassificationResultStatus', classificationResultStatus_code - The status of the finding. Possible values are:
- COMPLETE - Amazon Macie successfully completed its analysis of the S3 object that the finding applies to.
- PARTIAL - Macie analyzed only a subset of the data in the S3 object that the finding applies to. For example, the object is an archive file that contains files in an unsupported format.
- SKIPPED - Macie wasn't able to analyze the S3 object that the finding applies to. For example, the object is a file that uses an unsupported format.
$sel:reason:ClassificationResultStatus', classificationResultStatus_reason - A brief description of the status of the finding. This value is null if
the status (code) of the finding is COMPLETE.
Amazon Macie uses this value to notify you of any errors, warnings, or considerations that might impact your analysis of the finding and the affected S3 object. Possible values are:
- ARCHIVE_CONTAINS_UNPROCESSED_FILES - The object is an archive file and Macie extracted and analyzed only some or none of the files in the archive. To determine which files Macie analyzed, if any, you can refer to the corresponding sensitive data discovery result for the finding (ClassificationDetails.detailedResultsLocation).
- ARCHIVE_EXCEEDS_SIZE_LIMIT - The object is an archive file whose total storage size exceeds the size quota for this type of archive.
- ARCHIVE_NESTING_LEVEL_OVER_LIMIT - The object is an archive file whose nested depth exceeds the quota for the maximum number of nested levels that Macie analyzes for this type of archive.
- ARCHIVE_TOTAL_BYTES_EXTRACTED_OVER_LIMIT - The object is an archive file that exceeds the quota for the maximum amount of data that Macie extracts and analyzes for this type of archive.
- ARCHIVE_TOTAL_DOCUMENTS_PROCESSED_OVER_LIMIT - The object is an archive file that contains more than the maximum number of files that Macie extracts and analyzes for this type of archive.
- FILE_EXCEEDS_SIZE_LIMIT - The storage size of the object exceeds the size quota for this type of file.
- INVALID_ENCRYPTION - The object is encrypted using server-side encryption but Macie isn’t allowed to use the key. Macie can’t decrypt and analyze the object.
- INVALID_KMS_KEY - The object is encrypted with an KMS key that was disabled or is being deleted. Macie can’t decrypt and analyze the object.
- INVALID_OBJECT_STATE - The object doesn’t use a supported Amazon S3 storage class. For more information, see Discovering sensitive data in the Amazon Macie User Guide.
- JSON_NESTING_LEVEL_OVER_LIMIT - The object contains JSON data and the nested depth of the data exceeds the quota for the number of nested levels that Macie analyzes for this type of file.
- MALFORMED_FILE - The object is a malformed or corrupted file. An error occurred when Macie attempted to detect the file’s type or extract data from the file.
- OBJECT_VERSION_MISMATCH - The object was changed while Macie was analyzing it.
- NO_SUCH_BUCKET_AVAILABLE - The object was in a bucket that was deleted shortly before or when Macie attempted to analyze the object.
- MALFORMED_OR_FILE_SIZE_EXCEEDS_LIMIT - The object is a Microsoft Office file that is malformed or exceeds the size quota for this type of file. If the file is malformed, an error occurred when Macie attempted to extract data from the file.
- OOXML_UNCOMPRESSED_SIZE_EXCEEDS_LIMIT - The object is an Office Open XML file that exceeds the size quota for this type of file.
- OOXML_UNCOMPRESSED_RATIO_EXCEEDS_LIMIT - The object is an Office Open XML file whose compression ratio exceeds the compression quota for this type of file.
- PERMISSION_DENIED - Macie isn’t allowed to access the object. The object’s permissions settings prevent Macie from analyzing the object.
- SOURCE_OBJECT_NO_LONGER_AVAILABLE - The object was deleted shortly before or when Macie attempted to analyze it.
- UNABLE_TO_PARSE_FILE - The object is a file that contains structured data and an error occurred when Macie attempted to parse the data.
- UNSUPPORTED_FILE_TYPE_EXCEPTION - The object is a file that uses an unsupported file or storage format. For more information, see Supported file and storage formats in the Amazon Macie User Guide.
For information about sensitive data discovery quotas for files, see Amazon Macie quotas in the Amazon Macie User Guide.
classificationResultStatus_code :: Lens' ClassificationResultStatus (Maybe Text) Source #
The status of the finding. Possible values are:
- COMPLETE - Amazon Macie successfully completed its analysis of the S3 object that the finding applies to.
- PARTIAL - Macie analyzed only a subset of the data in the S3 object that the finding applies to. For example, the object is an archive file that contains files in an unsupported format.
- SKIPPED - Macie wasn't able to analyze the S3 object that the finding applies to. For example, the object is a file that uses an unsupported format.
classificationResultStatus_reason :: Lens' ClassificationResultStatus (Maybe Text) Source #
A brief description of the status of the finding. This value is null if the status (code) of the finding is COMPLETE.
Amazon Macie uses this value to notify you of any errors, warnings, or considerations that might impact your analysis of the finding and the affected S3 object. Possible values are:
- ARCHIVE_CONTAINS_UNPROCESSED_FILES - The object is an archive file and Macie extracted and analyzed only some or none of the files in the archive. To determine which files Macie analyzed, if any, you can refer to the corresponding sensitive data discovery result for the finding (ClassificationDetails.detailedResultsLocation).
- ARCHIVE_EXCEEDS_SIZE_LIMIT - The object is an archive file whose total storage size exceeds the size quota for this type of archive.
- ARCHIVE_NESTING_LEVEL_OVER_LIMIT - The object is an archive file whose nested depth exceeds the quota for the maximum number of nested levels that Macie analyzes for this type of archive.
- ARCHIVE_TOTAL_BYTES_EXTRACTED_OVER_LIMIT - The object is an archive file that exceeds the quota for the maximum amount of data that Macie extracts and analyzes for this type of archive.
- ARCHIVE_TOTAL_DOCUMENTS_PROCESSED_OVER_LIMIT - The object is an archive file that contains more than the maximum number of files that Macie extracts and analyzes for this type of archive.
- FILE_EXCEEDS_SIZE_LIMIT - The storage size of the object exceeds the size quota for this type of file.
- INVALID_ENCRYPTION - The object is encrypted using server-side encryption but Macie isn’t allowed to use the key. Macie can’t decrypt and analyze the object.
- INVALID_KMS_KEY - The object is encrypted with an KMS key that was disabled or is being deleted. Macie can’t decrypt and analyze the object.
- INVALID_OBJECT_STATE - The object doesn’t use a supported Amazon S3 storage class. For more information, see Discovering sensitive data in the Amazon Macie User Guide.
- JSON_NESTING_LEVEL_OVER_LIMIT - The object contains JSON data and the nested depth of the data exceeds the quota for the number of nested levels that Macie analyzes for this type of file.
- MALFORMED_FILE - The object is a malformed or corrupted file. An error occurred when Macie attempted to detect the file’s type or extract data from the file.
- OBJECT_VERSION_MISMATCH - The object was changed while Macie was analyzing it.
- NO_SUCH_BUCKET_AVAILABLE - The object was in a bucket that was deleted shortly before or when Macie attempted to analyze the object.
- MALFORMED_OR_FILE_SIZE_EXCEEDS_LIMIT - The object is a Microsoft Office file that is malformed or exceeds the size quota for this type of file. If the file is malformed, an error occurred when Macie attempted to extract data from the file.
- OOXML_UNCOMPRESSED_SIZE_EXCEEDS_LIMIT - The object is an Office Open XML file that exceeds the size quota for this type of file.
- OOXML_UNCOMPRESSED_RATIO_EXCEEDS_LIMIT - The object is an Office Open XML file whose compression ratio exceeds the compression quota for this type of file.
- PERMISSION_DENIED - Macie isn’t allowed to access the object. The object’s permissions settings prevent Macie from analyzing the object.
- SOURCE_OBJECT_NO_LONGER_AVAILABLE - The object was deleted shortly before or when Macie attempted to analyze it.
- UNABLE_TO_PARSE_FILE - The object is a file that contains structured data and an error occurred when Macie attempted to parse the data.
- UNSUPPORTED_FILE_TYPE_EXCEPTION - The object is a file that uses an unsupported file or storage format. For more information, see Supported file and storage formats in the Amazon Macie User Guide.
For information about sensitive data discovery quotas for files, see Amazon Macie quotas in the Amazon Macie User Guide.
ClassificationScopeSummary
data ClassificationScopeSummary Source #
Provides information about the classification scope for an Amazon Macie account. Macie uses the scope's settings when it performs automated sensitive data discovery for the account.
See: newClassificationScopeSummary smart constructor.
Constructors
| ClassificationScopeSummary' | |
Instances
newClassificationScopeSummary :: ClassificationScopeSummary Source #
Create a value of ClassificationScopeSummary with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:id:ClassificationScopeSummary', classificationScopeSummary_id - The unique identifier for the classification scope.
$sel:name:ClassificationScopeSummary', classificationScopeSummary_name - The name of the classification scope.
classificationScopeSummary_id :: Lens' ClassificationScopeSummary (Maybe Text) Source #
The unique identifier for the classification scope.
classificationScopeSummary_name :: Lens' ClassificationScopeSummary (Maybe Text) Source #
The name of the classification scope.
CriteriaBlockForJob
data CriteriaBlockForJob Source #
Specifies one or more property- and tag-based conditions that define criteria for including or excluding S3 buckets from a classification job.
See: newCriteriaBlockForJob smart constructor.
Constructors
| CriteriaBlockForJob' | |
Fields
| |
Instances
newCriteriaBlockForJob :: CriteriaBlockForJob Source #
Create a value of CriteriaBlockForJob with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:and:CriteriaBlockForJob', criteriaBlockForJob_and - An array of conditions, one for each condition that determines which
buckets to include or exclude from the job. If you specify more than one
condition, Amazon Macie uses AND logic to join the conditions.
criteriaBlockForJob_and :: Lens' CriteriaBlockForJob (Maybe [CriteriaForJob]) Source #
An array of conditions, one for each condition that determines which buckets to include or exclude from the job. If you specify more than one condition, Amazon Macie uses AND logic to join the conditions.
CriteriaForJob
data CriteriaForJob Source #
Specifies a property- or tag-based condition that defines criteria for including or excluding S3 buckets from a classification job.
See: newCriteriaForJob smart constructor.
Constructors
| CriteriaForJob' | |
Fields
| |
Instances
newCriteriaForJob :: CriteriaForJob Source #
Create a value of CriteriaForJob with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:simpleCriterion:CriteriaForJob', criteriaForJob_simpleCriterion - A property-based condition that defines a property, operator, and one or
more values for including or excluding buckets from the job.
$sel:tagCriterion:CriteriaForJob', criteriaForJob_tagCriterion - A tag-based condition that defines an operator and tag keys, tag values,
or tag key and value pairs for including or excluding buckets from the
job.
criteriaForJob_simpleCriterion :: Lens' CriteriaForJob (Maybe SimpleCriterionForJob) Source #
A property-based condition that defines a property, operator, and one or more values for including or excluding buckets from the job.
criteriaForJob_tagCriterion :: Lens' CriteriaForJob (Maybe TagCriterionForJob) Source #
A tag-based condition that defines an operator and tag keys, tag values, or tag key and value pairs for including or excluding buckets from the job.
CriterionAdditionalProperties
data CriterionAdditionalProperties Source #
Specifies the operator to use in a property-based condition that filters the results of a query for findings. For detailed information and examples of each operator, see Fundamentals of filtering findings in the Amazon Macie User Guide.
See: newCriterionAdditionalProperties smart constructor.
Constructors
| CriterionAdditionalProperties' | |
Fields
| |
Instances
newCriterionAdditionalProperties :: CriterionAdditionalProperties Source #
Create a value of CriterionAdditionalProperties with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:eq:CriterionAdditionalProperties', criterionAdditionalProperties_eq - The value for the property matches (equals) the specified value. If you
specify multiple values, Macie uses OR logic to join the values.
$sel:eqExactMatch:CriterionAdditionalProperties', criterionAdditionalProperties_eqExactMatch - The value for the property exclusively matches (equals an exact match
for) all the specified values. If you specify multiple values, Amazon
Macie uses AND logic to join the values.
You can use this operator with the following properties: customDataIdentifiers.detections.arn, customDataIdentifiers.detections.name, resourcesAffected.s3Bucket.tags.key, resourcesAffected.s3Bucket.tags.value, resourcesAffected.s3Object.tags.key, resourcesAffected.s3Object.tags.value, sensitiveData.category, and sensitiveData.detections.type.
$sel:gt:CriterionAdditionalProperties', criterionAdditionalProperties_gt - The value for the property is greater than the specified value.
$sel:gte:CriterionAdditionalProperties', criterionAdditionalProperties_gte - The value for the property is greater than or equal to the specified
value.
$sel:lt:CriterionAdditionalProperties', criterionAdditionalProperties_lt - The value for the property is less than the specified value.
$sel:lte:CriterionAdditionalProperties', criterionAdditionalProperties_lte - The value for the property is less than or equal to the specified value.
$sel:neq:CriterionAdditionalProperties', criterionAdditionalProperties_neq - The value for the property doesn't match (doesn't equal) the specified
value. If you specify multiple values, Macie uses OR logic to join the
values.
criterionAdditionalProperties_eq :: Lens' CriterionAdditionalProperties (Maybe [Text]) Source #
The value for the property matches (equals) the specified value. If you specify multiple values, Macie uses OR logic to join the values.
criterionAdditionalProperties_eqExactMatch :: Lens' CriterionAdditionalProperties (Maybe [Text]) Source #
The value for the property exclusively matches (equals an exact match for) all the specified values. If you specify multiple values, Amazon Macie uses AND logic to join the values.
You can use this operator with the following properties: customDataIdentifiers.detections.arn, customDataIdentifiers.detections.name, resourcesAffected.s3Bucket.tags.key, resourcesAffected.s3Bucket.tags.value, resourcesAffected.s3Object.tags.key, resourcesAffected.s3Object.tags.value, sensitiveData.category, and sensitiveData.detections.type.
criterionAdditionalProperties_gt :: Lens' CriterionAdditionalProperties (Maybe Integer) Source #
The value for the property is greater than the specified value.
criterionAdditionalProperties_gte :: Lens' CriterionAdditionalProperties (Maybe Integer) Source #
The value for the property is greater than or equal to the specified value.
criterionAdditionalProperties_lt :: Lens' CriterionAdditionalProperties (Maybe Integer) Source #
The value for the property is less than the specified value.
criterionAdditionalProperties_lte :: Lens' CriterionAdditionalProperties (Maybe Integer) Source #
The value for the property is less than or equal to the specified value.
criterionAdditionalProperties_neq :: Lens' CriterionAdditionalProperties (Maybe [Text]) Source #
The value for the property doesn't match (doesn't equal) the specified value. If you specify multiple values, Macie uses OR logic to join the values.
CustomDataIdentifierSummary
data CustomDataIdentifierSummary Source #
Provides information about a custom data identifier.
See: newCustomDataIdentifierSummary smart constructor.
Constructors
| CustomDataIdentifierSummary' | |
Fields
| |
Instances
newCustomDataIdentifierSummary :: CustomDataIdentifierSummary Source #
Create a value of CustomDataIdentifierSummary with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:arn:CustomDataIdentifierSummary', customDataIdentifierSummary_arn - The Amazon Resource Name (ARN) of the custom data identifier.
$sel:createdAt:CustomDataIdentifierSummary', customDataIdentifierSummary_createdAt - The date and time, in UTC and extended ISO 8601 format, when the custom
data identifier was created.
$sel:description:CustomDataIdentifierSummary', customDataIdentifierSummary_description - The custom description of the custom data identifier.
$sel:id:CustomDataIdentifierSummary', customDataIdentifierSummary_id - The unique identifier for the custom data identifier.
$sel:name:CustomDataIdentifierSummary', customDataIdentifierSummary_name - The custom name of the custom data identifier.
customDataIdentifierSummary_arn :: Lens' CustomDataIdentifierSummary (Maybe Text) Source #
The Amazon Resource Name (ARN) of the custom data identifier.
customDataIdentifierSummary_createdAt :: Lens' CustomDataIdentifierSummary (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the custom data identifier was created.
customDataIdentifierSummary_description :: Lens' CustomDataIdentifierSummary (Maybe Text) Source #
The custom description of the custom data identifier.
customDataIdentifierSummary_id :: Lens' CustomDataIdentifierSummary (Maybe Text) Source #
The unique identifier for the custom data identifier.
customDataIdentifierSummary_name :: Lens' CustomDataIdentifierSummary (Maybe Text) Source #
The custom name of the custom data identifier.
CustomDataIdentifiers
data CustomDataIdentifiers Source #
Provides information about custom data identifiers that produced a sensitive data finding, and the number of occurrences of the data that they detected for the finding.
See: newCustomDataIdentifiers smart constructor.
Constructors
| CustomDataIdentifiers' | |
Fields
| |
Instances
newCustomDataIdentifiers :: CustomDataIdentifiers Source #
Create a value of CustomDataIdentifiers with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:detections:CustomDataIdentifiers', customDataIdentifiers_detections - The custom data identifiers that detected the data, and the number of
occurrences of the data that each identifier detected.
$sel:totalCount:CustomDataIdentifiers', customDataIdentifiers_totalCount - The total number of occurrences of the data that was detected by the
custom data identifiers and produced the finding.
customDataIdentifiers_detections :: Lens' CustomDataIdentifiers (Maybe [CustomDetection]) Source #
The custom data identifiers that detected the data, and the number of occurrences of the data that each identifier detected.
customDataIdentifiers_totalCount :: Lens' CustomDataIdentifiers (Maybe Integer) Source #
The total number of occurrences of the data that was detected by the custom data identifiers and produced the finding.
CustomDetection
data CustomDetection Source #
Provides information about a custom data identifier that produced a sensitive data finding, and the sensitive data that it detected for the finding.
See: newCustomDetection smart constructor.
Constructors
| CustomDetection' | |
Fields
| |
Instances
newCustomDetection :: CustomDetection Source #
Create a value of CustomDetection with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:arn:CustomDetection', customDetection_arn - The Amazon Resource Name (ARN) of the custom data identifier.
$sel:count:CustomDetection', customDetection_count - The total number of occurrences of the sensitive data that the custom
data identifier detected.
$sel:name:CustomDetection', customDetection_name - The name of the custom data identifier.
$sel:occurrences:CustomDetection', customDetection_occurrences - The location of 1-15 occurrences of the sensitive data that the custom
data identifier detected. A finding includes location data for a maximum
of 15 occurrences of sensitive data.
customDetection_arn :: Lens' CustomDetection (Maybe Text) Source #
The Amazon Resource Name (ARN) of the custom data identifier.
customDetection_count :: Lens' CustomDetection (Maybe Integer) Source #
The total number of occurrences of the sensitive data that the custom data identifier detected.
customDetection_name :: Lens' CustomDetection (Maybe Text) Source #
The name of the custom data identifier.
customDetection_occurrences :: Lens' CustomDetection (Maybe Occurrences) Source #
The location of 1-15 occurrences of the sensitive data that the custom data identifier detected. A finding includes location data for a maximum of 15 occurrences of sensitive data.
DailySchedule
data DailySchedule Source #
Specifies that a classification job runs once a day, every day. This is an empty object.
See: newDailySchedule smart constructor.
Constructors
| DailySchedule' | |
Instances
newDailySchedule :: DailySchedule Source #
Create a value of DailySchedule with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
DefaultDetection
data DefaultDetection Source #
Provides information about a type of sensitive data that was detected by a managed data identifier and produced a sensitive data finding.
See: newDefaultDetection smart constructor.
Constructors
| DefaultDetection' | |
Fields
| |
Instances
newDefaultDetection :: DefaultDetection Source #
Create a value of DefaultDetection with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:count:DefaultDetection', defaultDetection_count - The total number of occurrences of the type of sensitive data that was
detected.
$sel:occurrences:DefaultDetection', defaultDetection_occurrences - The location of 1-15 occurrences of the sensitive data that was
detected. A finding includes location data for a maximum of 15
occurrences of sensitive data.
$sel:type':DefaultDetection', defaultDetection_type - The type of sensitive data that was detected. For example,
AWS_CREDENTIALS, PHONE_NUMBER, or ADDRESS.
defaultDetection_count :: Lens' DefaultDetection (Maybe Integer) Source #
The total number of occurrences of the type of sensitive data that was detected.
defaultDetection_occurrences :: Lens' DefaultDetection (Maybe Occurrences) Source #
The location of 1-15 occurrences of the sensitive data that was detected. A finding includes location data for a maximum of 15 occurrences of sensitive data.
defaultDetection_type :: Lens' DefaultDetection (Maybe Text) Source #
The type of sensitive data that was detected. For example, AWS_CREDENTIALS, PHONE_NUMBER, or ADDRESS.
DetectedDataDetails
data DetectedDataDetails Source #
Specifies 1-10 occurrences of a specific type of sensitive data reported by a finding.
See: newDetectedDataDetails smart constructor.
Constructors
| DetectedDataDetails' | |
Instances
newDetectedDataDetails Source #
Arguments
| :: Text | |
| -> DetectedDataDetails |
Create a value of DetectedDataDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:value:DetectedDataDetails', detectedDataDetails_value - An occurrence of the specified type of sensitive data. Each occurrence
can contain 1-128 characters.
detectedDataDetails_value :: Lens' DetectedDataDetails Text Source #
An occurrence of the specified type of sensitive data. Each occurrence can contain 1-128 characters.
Detection
Provides information about a type of sensitive data that Amazon Macie found in an S3 bucket while performing automated sensitive data discovery for the bucket. The information also specifies the custom data identifier or managed data identifier that detected the data. This information is available only if automated sensitive data discovery is currently enabled for your account.
See: newDetection smart constructor.
Constructors
| Detection' | |
Fields
| |
Instances
newDetection :: Detection Source #
Create a value of Detection with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:arn:Detection', detection_arn - If the sensitive data was detected by a custom data identifier, the
Amazon Resource Name (ARN) of the custom data identifier that detected
the data. Otherwise, this value is null.
$sel:count:Detection', detection_count - The total number of occurrences of the sensitive data.
$sel:id:Detection', detection_id - The unique identifier for the custom data identifier or managed data
identifier that detected the sensitive data. For additional details
about a specified managed data identifier, see
Using managed data identifiers
in the Amazon Macie User Guide.
$sel:name:Detection', detection_name - The name of the custom data identifier or managed data identifier that
detected the sensitive data. For a managed data identifier, this value
is the same as the unique identifier (id).
$sel:suppressed:Detection', detection_suppressed - Specifies whether occurrences of this type of sensitive data are
excluded (true) or included (false) in the bucket's sensitivity score.
$sel:type':Detection', detection_type - The type of data identifier that detected the sensitive data. Possible
values are: CUSTOM, for a custom data identifier; and, MANAGED, for a
managed data identifier.
detection_arn :: Lens' Detection (Maybe Text) Source #
If the sensitive data was detected by a custom data identifier, the Amazon Resource Name (ARN) of the custom data identifier that detected the data. Otherwise, this value is null.
detection_count :: Lens' Detection (Maybe Integer) Source #
The total number of occurrences of the sensitive data.
detection_id :: Lens' Detection (Maybe Text) Source #
The unique identifier for the custom data identifier or managed data identifier that detected the sensitive data. For additional details about a specified managed data identifier, see Using managed data identifiers in the Amazon Macie User Guide.
detection_name :: Lens' Detection (Maybe Text) Source #
The name of the custom data identifier or managed data identifier that detected the sensitive data. For a managed data identifier, this value is the same as the unique identifier (id).
detection_suppressed :: Lens' Detection (Maybe Bool) Source #
Specifies whether occurrences of this type of sensitive data are excluded (true) or included (false) in the bucket's sensitivity score.
detection_type :: Lens' Detection (Maybe DataIdentifierType) Source #
The type of data identifier that detected the sensitive data. Possible values are: CUSTOM, for a custom data identifier; and, MANAGED, for a managed data identifier.
DomainDetails
data DomainDetails Source #
Provides information about the domain name of the device that an entity used to perform an action on an affected resource.
See: newDomainDetails smart constructor.
Constructors
| DomainDetails' | |
Fields
| |
Instances
newDomainDetails :: DomainDetails Source #
Create a value of DomainDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:domainName:DomainDetails', domainDetails_domainName - The name of the domain.
domainDetails_domainName :: Lens' DomainDetails (Maybe Text) Source #
The name of the domain.
FederatedUser
data FederatedUser Source #
Provides information about an identity that performed an action on an affected resource by using temporary security credentials. The credentials were obtained using the GetFederationToken operation of the Security Token Service (STS) API.
See: newFederatedUser smart constructor.
Constructors
| FederatedUser' | |
Fields
| |
Instances
newFederatedUser :: FederatedUser Source #
Create a value of FederatedUser with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accessKeyId:FederatedUser', federatedUser_accessKeyId - The Amazon Web Services access key ID that identifies the credentials.
$sel:accountId:FederatedUser', federatedUser_accountId - The unique identifier for the Amazon Web Services account that owns the
entity that was used to get the credentials.
$sel:arn:FederatedUser', federatedUser_arn - The Amazon Resource Name (ARN) of the entity that was used to get the
credentials.
$sel:principalId:FederatedUser', federatedUser_principalId - The unique identifier for the entity that was used to get the
credentials.
$sel:sessionContext:FederatedUser', federatedUser_sessionContext - The details of the session that was created for the credentials,
including the entity that issued the session.
federatedUser_accessKeyId :: Lens' FederatedUser (Maybe Text) Source #
The Amazon Web Services access key ID that identifies the credentials.
federatedUser_accountId :: Lens' FederatedUser (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that owns the entity that was used to get the credentials.
federatedUser_arn :: Lens' FederatedUser (Maybe Text) Source #
The Amazon Resource Name (ARN) of the entity that was used to get the credentials.
federatedUser_principalId :: Lens' FederatedUser (Maybe Text) Source #
The unique identifier for the entity that was used to get the credentials.
federatedUser_sessionContext :: Lens' FederatedUser (Maybe SessionContext) Source #
The details of the session that was created for the credentials, including the entity that issued the session.
Finding
Provides the details of a finding.
See: newFinding smart constructor.
Constructors
| Finding' | |
Fields
| |
Instances
newFinding :: Finding Source #
Create a value of Finding with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:Finding', finding_accountId - The unique identifier for the Amazon Web Services account that the
finding applies to. This is typically the account that owns the affected
resource.
$sel:archived:Finding', finding_archived - Specifies whether the finding is archived (suppressed).
$sel:category:Finding', finding_category - The category of the finding. Possible values are: CLASSIFICATION, for a
sensitive data finding; and, POLICY, for a policy finding.
$sel:classificationDetails:Finding', finding_classificationDetails - The details of a sensitive data finding. This value is null for a policy
finding.
$sel:count:Finding', finding_count - The total number of occurrences of the finding. For sensitive data
findings, this value is always 1. All sensitive data findings are
considered unique.
$sel:createdAt:Finding', finding_createdAt - The date and time, in UTC and extended ISO 8601 format, when Amazon
Macie created the finding.
Finding, finding_description - The description of the finding.
$sel:id:Finding', finding_id - The unique identifier for the finding. This is a random string that
Amazon Macie generates and assigns to a finding when it creates the
finding.
$sel:partition:Finding', finding_partition - The Amazon Web Services partition that Amazon Macie created the finding
in.
$sel:policyDetails:Finding', finding_policyDetails - The details of a policy finding. This value is null for a sensitive data
finding.
$sel:region:Finding', finding_region - The Amazon Web Services Region that Amazon Macie created the finding in.
$sel:resourcesAffected:Finding', finding_resourcesAffected - The resources that the finding applies to.
$sel:sample:Finding', finding_sample - Specifies whether the finding is a sample finding. A sample finding is
a finding that uses example data to demonstrate what a finding might
contain.
$sel:schemaVersion:Finding', finding_schemaVersion - The version of the schema that was used to define the data structures in
the finding.
$sel:severity:Finding', finding_severity - The severity level and score for the finding.
$sel:title:Finding', finding_title - The brief description of the finding.
$sel:type':Finding', finding_type - The type of the finding.
$sel:updatedAt:Finding', finding_updatedAt - The date and time, in UTC and extended ISO 8601 format, when Amazon
Macie last updated the finding. For sensitive data findings, this value
is the same as the value for the createdAt property. All sensitive data
findings are considered new.
finding_accountId :: Lens' Finding (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that the finding applies to. This is typically the account that owns the affected resource.
finding_archived :: Lens' Finding (Maybe Bool) Source #
Specifies whether the finding is archived (suppressed).
finding_category :: Lens' Finding (Maybe FindingCategory) Source #
The category of the finding. Possible values are: CLASSIFICATION, for a sensitive data finding; and, POLICY, for a policy finding.
finding_classificationDetails :: Lens' Finding (Maybe ClassificationDetails) Source #
The details of a sensitive data finding. This value is null for a policy finding.
finding_count :: Lens' Finding (Maybe Integer) Source #
The total number of occurrences of the finding. For sensitive data findings, this value is always 1. All sensitive data findings are considered unique.
finding_createdAt :: Lens' Finding (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when Amazon Macie created the finding.
finding_id :: Lens' Finding (Maybe Text) Source #
The unique identifier for the finding. This is a random string that Amazon Macie generates and assigns to a finding when it creates the finding.
finding_partition :: Lens' Finding (Maybe Text) Source #
The Amazon Web Services partition that Amazon Macie created the finding in.
finding_policyDetails :: Lens' Finding (Maybe PolicyDetails) Source #
The details of a policy finding. This value is null for a sensitive data finding.
finding_region :: Lens' Finding (Maybe Text) Source #
The Amazon Web Services Region that Amazon Macie created the finding in.
finding_resourcesAffected :: Lens' Finding (Maybe ResourcesAffected) Source #
The resources that the finding applies to.
finding_sample :: Lens' Finding (Maybe Bool) Source #
Specifies whether the finding is a sample finding. A sample finding is a finding that uses example data to demonstrate what a finding might contain.
finding_schemaVersion :: Lens' Finding (Maybe Text) Source #
The version of the schema that was used to define the data structures in the finding.
finding_severity :: Lens' Finding (Maybe Severity) Source #
The severity level and score for the finding.
finding_type :: Lens' Finding (Maybe FindingType) Source #
The type of the finding.
finding_updatedAt :: Lens' Finding (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when Amazon Macie last updated the finding. For sensitive data findings, this value is the same as the value for the createdAt property. All sensitive data findings are considered new.
FindingAction
data FindingAction Source #
Provides information about an action that occurred for a resource and produced a policy finding.
See: newFindingAction smart constructor.
Constructors
| FindingAction' | |
Fields
| |
Instances
newFindingAction :: FindingAction Source #
Create a value of FindingAction with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:actionType:FindingAction', findingAction_actionType - The type of action that occurred for the affected resource. This value
is typically AWS_API_CALL, which indicates that an entity invoked an API
operation for the resource.
$sel:apiCallDetails:FindingAction', findingAction_apiCallDetails - The invocation details of the API operation that an entity invoked for
the affected resource, if the value for the actionType property is
AWS_API_CALL.
findingAction_actionType :: Lens' FindingAction (Maybe FindingActionType) Source #
The type of action that occurred for the affected resource. This value is typically AWS_API_CALL, which indicates that an entity invoked an API operation for the resource.
findingAction_apiCallDetails :: Lens' FindingAction (Maybe ApiCallDetails) Source #
The invocation details of the API operation that an entity invoked for the affected resource, if the value for the actionType property is AWS_API_CALL.
FindingActor
data FindingActor Source #
Provides information about an entity that performed an action that produced a policy finding for a resource.
See: newFindingActor smart constructor.
Constructors
| FindingActor' | |
Fields
| |
Instances
newFindingActor :: FindingActor Source #
Create a value of FindingActor with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:domainDetails:FindingActor', findingActor_domainDetails - The domain name of the device that the entity used to perform the action
on the affected resource.
$sel:ipAddressDetails:FindingActor', findingActor_ipAddressDetails - The IP address of the device that the entity used to perform the action
on the affected resource. This object also provides information such as
the owner and geographic location for the IP address.
$sel:userIdentity:FindingActor', findingActor_userIdentity - The type and other characteristics of the entity that performed the
action on the affected resource.
findingActor_domainDetails :: Lens' FindingActor (Maybe DomainDetails) Source #
The domain name of the device that the entity used to perform the action on the affected resource.
findingActor_ipAddressDetails :: Lens' FindingActor (Maybe IpAddressDetails) Source #
The IP address of the device that the entity used to perform the action on the affected resource. This object also provides information such as the owner and geographic location for the IP address.
findingActor_userIdentity :: Lens' FindingActor (Maybe UserIdentity) Source #
The type and other characteristics of the entity that performed the action on the affected resource.
FindingCriteria
data FindingCriteria Source #
Specifies, as a map, one or more property-based conditions that filter the results of a query for findings.
See: newFindingCriteria smart constructor.
Constructors
| FindingCriteria' | |
Fields
| |
Instances
newFindingCriteria :: FindingCriteria Source #
Create a value of FindingCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:criterion:FindingCriteria', findingCriteria_criterion - A condition that specifies the property, operator, and one or more
values to use to filter the results.
findingCriteria_criterion :: Lens' FindingCriteria (Maybe (HashMap Text CriterionAdditionalProperties)) Source #
A condition that specifies the property, operator, and one or more values to use to filter the results.
FindingStatisticsSortCriteria
data FindingStatisticsSortCriteria Source #
Specifies criteria for sorting the results of a query that retrieves aggregated statistical data about findings.
See: newFindingStatisticsSortCriteria smart constructor.
Constructors
| FindingStatisticsSortCriteria' | |
Fields
| |
Instances
newFindingStatisticsSortCriteria :: FindingStatisticsSortCriteria Source #
Create a value of FindingStatisticsSortCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:attributeName:FindingStatisticsSortCriteria', findingStatisticsSortCriteria_attributeName - The grouping to sort the results by. Valid values are: count, sort the
results by the number of findings in each group of results; and,
groupKey, sort the results by the name of each group of results.
$sel:orderBy:FindingStatisticsSortCriteria', findingStatisticsSortCriteria_orderBy - The sort order to apply to the results, based on the value for the
property specified by the attributeName property. Valid values are: ASC,
sort the results in ascending order; and, DESC, sort the results in
descending order.
findingStatisticsSortCriteria_attributeName :: Lens' FindingStatisticsSortCriteria (Maybe FindingStatisticsSortAttributeName) Source #
The grouping to sort the results by. Valid values are: count, sort the results by the number of findings in each group of results; and, groupKey, sort the results by the name of each group of results.
findingStatisticsSortCriteria_orderBy :: Lens' FindingStatisticsSortCriteria (Maybe OrderBy) Source #
The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
FindingsFilterListItem
data FindingsFilterListItem Source #
Provides information about a findings filter.
See: newFindingsFilterListItem smart constructor.
Constructors
| FindingsFilterListItem' | |
Fields
| |
Instances
newFindingsFilterListItem :: FindingsFilterListItem Source #
Create a value of FindingsFilterListItem with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:action:FindingsFilterListItem', findingsFilterListItem_action - The action that's performed on findings that match the filter criteria.
Possible values are: ARCHIVE, suppress (automatically archive) the
findings; and, NOOP, don't perform any action on the findings.
$sel:arn:FindingsFilterListItem', findingsFilterListItem_arn - The Amazon Resource Name (ARN) of the filter.
$sel:id:FindingsFilterListItem', findingsFilterListItem_id - The unique identifier for the filter.
$sel:name:FindingsFilterListItem', findingsFilterListItem_name - The custom name of the filter.
$sel:tags:FindingsFilterListItem', findingsFilterListItem_tags - A map of key-value pairs that specifies which tags (keys and values) are
associated with the filter.
findingsFilterListItem_action :: Lens' FindingsFilterListItem (Maybe FindingsFilterAction) Source #
The action that's performed on findings that match the filter criteria. Possible values are: ARCHIVE, suppress (automatically archive) the findings; and, NOOP, don't perform any action on the findings.
findingsFilterListItem_arn :: Lens' FindingsFilterListItem (Maybe Text) Source #
The Amazon Resource Name (ARN) of the filter.
findingsFilterListItem_id :: Lens' FindingsFilterListItem (Maybe Text) Source #
The unique identifier for the filter.
findingsFilterListItem_name :: Lens' FindingsFilterListItem (Maybe Text) Source #
The custom name of the filter.
findingsFilterListItem_tags :: Lens' FindingsFilterListItem (Maybe (HashMap Text Text)) Source #
A map of key-value pairs that specifies which tags (keys and values) are associated with the filter.
GroupCount
data GroupCount Source #
Provides a group of results for a query that retrieved aggregated statistical data about findings.
See: newGroupCount smart constructor.
Constructors
| GroupCount' | |
Instances
newGroupCount :: GroupCount Source #
Create a value of GroupCount with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:count:GroupCount', groupCount_count - The total number of findings in the group of query results.
$sel:groupKey:GroupCount', groupCount_groupKey - The name of the property that defines the group in the query results, as
specified by the groupBy property in the query request.
groupCount_count :: Lens' GroupCount (Maybe Integer) Source #
The total number of findings in the group of query results.
groupCount_groupKey :: Lens' GroupCount (Maybe Text) Source #
The name of the property that defines the group in the query results, as specified by the groupBy property in the query request.
IamUser
Provides information about an Identity and Access Management (IAM) user who performed an action on an affected resource.
See: newIamUser smart constructor.
Constructors
| IamUser' | |
Fields
| |
Instances
| FromJSON IamUser Source # | |
| Generic IamUser Source # | |
| Read IamUser Source # | |
| Show IamUser Source # | |
| NFData IamUser Source # | |
Defined in Amazonka.MacieV2.Types.IamUser | |
| Eq IamUser Source # | |
| Hashable IamUser Source # | |
Defined in Amazonka.MacieV2.Types.IamUser | |
| type Rep IamUser Source # | |
Defined in Amazonka.MacieV2.Types.IamUser type Rep IamUser = D1 ('MetaData "IamUser" "Amazonka.MacieV2.Types.IamUser" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "IamUser'" 'PrefixI 'True) ((S1 ('MetaSel ('Just "accountId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "arn") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text))) :*: (S1 ('MetaSel ('Just "principalId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "userName") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text))))) | |
newIamUser :: IamUser Source #
Create a value of IamUser with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:IamUser', iamUser_accountId - The unique identifier for the Amazon Web Services account that's
associated with the IAM user who performed the action.
$sel:arn:IamUser', iamUser_arn - The Amazon Resource Name (ARN) of the principal that performed the
action. The last section of the ARN contains the name of the user who
performed the action.
$sel:principalId:IamUser', iamUser_principalId - The unique identifier for the IAM user who performed the action.
$sel:userName:IamUser', iamUser_userName - The user name of the IAM user who performed the action.
iamUser_accountId :: Lens' IamUser (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that's associated with the IAM user who performed the action.
iamUser_arn :: Lens' IamUser (Maybe Text) Source #
The Amazon Resource Name (ARN) of the principal that performed the action. The last section of the ARN contains the name of the user who performed the action.
iamUser_principalId :: Lens' IamUser (Maybe Text) Source #
The unique identifier for the IAM user who performed the action.
iamUser_userName :: Lens' IamUser (Maybe Text) Source #
The user name of the IAM user who performed the action.
Invitation
data Invitation Source #
Provides information about an Amazon Macie membership invitation.
See: newInvitation smart constructor.
Constructors
| Invitation' | |
Fields
| |
Instances
newInvitation :: Invitation Source #
Create a value of Invitation with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:Invitation', invitation_accountId - The Amazon Web Services account ID for the account that sent the
invitation.
$sel:invitationId:Invitation', invitation_invitationId - The unique identifier for the invitation.
$sel:invitedAt:Invitation', invitation_invitedAt - The date and time, in UTC and extended ISO 8601 format, when the
invitation was sent.
$sel:relationshipStatus:Invitation', invitation_relationshipStatus - The status of the relationship between the account that sent the
invitation and the account that received the invitation.
invitation_accountId :: Lens' Invitation (Maybe Text) Source #
The Amazon Web Services account ID for the account that sent the invitation.
invitation_invitationId :: Lens' Invitation (Maybe Text) Source #
The unique identifier for the invitation.
invitation_invitedAt :: Lens' Invitation (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the invitation was sent.
invitation_relationshipStatus :: Lens' Invitation (Maybe RelationshipStatus) Source #
The status of the relationship between the account that sent the invitation and the account that received the invitation.
IpAddressDetails
data IpAddressDetails Source #
Provides information about the IP address of the device that an entity used to perform an action on an affected resource.
See: newIpAddressDetails smart constructor.
Constructors
| IpAddressDetails' | |
Fields
| |
Instances
newIpAddressDetails :: IpAddressDetails Source #
Create a value of IpAddressDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:ipAddressV4:IpAddressDetails', ipAddressDetails_ipAddressV4 - The Internet Protocol version 4 (IPv4) address of the device.
$sel:ipCity:IpAddressDetails', ipAddressDetails_ipCity - The city that the IP address originated from.
$sel:ipCountry:IpAddressDetails', ipAddressDetails_ipCountry - The country that the IP address originated from.
$sel:ipGeoLocation:IpAddressDetails', ipAddressDetails_ipGeoLocation - The geographic coordinates of the location that the IP address
originated from.
$sel:ipOwner:IpAddressDetails', ipAddressDetails_ipOwner - The registered owner of the IP address.
ipAddressDetails_ipAddressV4 :: Lens' IpAddressDetails (Maybe Text) Source #
The Internet Protocol version 4 (IPv4) address of the device.
ipAddressDetails_ipCity :: Lens' IpAddressDetails (Maybe IpCity) Source #
The city that the IP address originated from.
ipAddressDetails_ipCountry :: Lens' IpAddressDetails (Maybe IpCountry) Source #
The country that the IP address originated from.
ipAddressDetails_ipGeoLocation :: Lens' IpAddressDetails (Maybe IpGeoLocation) Source #
The geographic coordinates of the location that the IP address originated from.
ipAddressDetails_ipOwner :: Lens' IpAddressDetails (Maybe IpOwner) Source #
The registered owner of the IP address.
IpCity
Provides information about the city that an IP address originated from.
See: newIpCity smart constructor.
Instances
| FromJSON IpCity Source # | |
| Generic IpCity Source # | |
| Read IpCity Source # | |
| Show IpCity Source # | |
| NFData IpCity Source # | |
Defined in Amazonka.MacieV2.Types.IpCity | |
| Eq IpCity Source # | |
| Hashable IpCity Source # | |
Defined in Amazonka.MacieV2.Types.IpCity | |
| type Rep IpCity Source # | |
Defined in Amazonka.MacieV2.Types.IpCity | |
Create a value of IpCity with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:name:IpCity', ipCity_name - The name of the city.
IpCountry
Provides information about the country that an IP address originated from.
See: newIpCountry smart constructor.
Constructors
| IpCountry' | |
Instances
| FromJSON IpCountry Source # | |
| Generic IpCountry Source # | |
| Read IpCountry Source # | |
| Show IpCountry Source # | |
| NFData IpCountry Source # | |
Defined in Amazonka.MacieV2.Types.IpCountry | |
| Eq IpCountry Source # | |
| Hashable IpCountry Source # | |
Defined in Amazonka.MacieV2.Types.IpCountry | |
| type Rep IpCountry Source # | |
Defined in Amazonka.MacieV2.Types.IpCountry type Rep IpCountry = D1 ('MetaData "IpCountry" "Amazonka.MacieV2.Types.IpCountry" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "IpCountry'" 'PrefixI 'True) (S1 ('MetaSel ('Just "code") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "name") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)))) | |
newIpCountry :: IpCountry Source #
Create a value of IpCountry with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:code:IpCountry', ipCountry_code - The two-character code, in ISO 3166-1 alpha-2 format, for the country
that the IP address originated from. For example, US for the United
States.
$sel:name:IpCountry', ipCountry_name - The name of the country that the IP address originated from.
ipCountry_code :: Lens' IpCountry (Maybe Text) Source #
The two-character code, in ISO 3166-1 alpha-2 format, for the country that the IP address originated from. For example, US for the United States.
ipCountry_name :: Lens' IpCountry (Maybe Text) Source #
The name of the country that the IP address originated from.
IpGeoLocation
data IpGeoLocation Source #
Provides geographic coordinates that indicate where a specified IP address originated from.
See: newIpGeoLocation smart constructor.
Constructors
| IpGeoLocation' | |
Instances
newIpGeoLocation :: IpGeoLocation Source #
Create a value of IpGeoLocation with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:lat:IpGeoLocation', ipGeoLocation_lat - The latitude coordinate of the location, rounded to four decimal places.
$sel:lon:IpGeoLocation', ipGeoLocation_lon - The longitude coordinate of the location, rounded to four decimal
places.
ipGeoLocation_lat :: Lens' IpGeoLocation (Maybe Double) Source #
The latitude coordinate of the location, rounded to four decimal places.
ipGeoLocation_lon :: Lens' IpGeoLocation (Maybe Double) Source #
The longitude coordinate of the location, rounded to four decimal places.
IpOwner
Provides information about the registered owner of an IP address.
See: newIpOwner smart constructor.
Constructors
| IpOwner' | |
Fields
| |
Instances
| FromJSON IpOwner Source # | |
| Generic IpOwner Source # | |
| Read IpOwner Source # | |
| Show IpOwner Source # | |
| NFData IpOwner Source # | |
Defined in Amazonka.MacieV2.Types.IpOwner | |
| Eq IpOwner Source # | |
| Hashable IpOwner Source # | |
Defined in Amazonka.MacieV2.Types.IpOwner | |
| type Rep IpOwner Source # | |
Defined in Amazonka.MacieV2.Types.IpOwner type Rep IpOwner = D1 ('MetaData "IpOwner" "Amazonka.MacieV2.Types.IpOwner" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "IpOwner'" 'PrefixI 'True) ((S1 ('MetaSel ('Just "asn") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "asnOrg") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text))) :*: (S1 ('MetaSel ('Just "isp") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "org") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text))))) | |
newIpOwner :: IpOwner Source #
Create a value of IpOwner with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:asn:IpOwner', ipOwner_asn - The autonomous system number (ASN) for the autonomous system that
included the IP address.
$sel:asnOrg:IpOwner', ipOwner_asnOrg - The organization identifier that's associated with the autonomous
system number (ASN) for the autonomous system that included the IP
address.
$sel:isp:IpOwner', ipOwner_isp - The name of the internet service provider (ISP) that owned the IP
address.
$sel:org:IpOwner', ipOwner_org - The name of the organization that owned the IP address.
ipOwner_asn :: Lens' IpOwner (Maybe Text) Source #
The autonomous system number (ASN) for the autonomous system that included the IP address.
ipOwner_asnOrg :: Lens' IpOwner (Maybe Text) Source #
The organization identifier that's associated with the autonomous system number (ASN) for the autonomous system that included the IP address.
ipOwner_isp :: Lens' IpOwner (Maybe Text) Source #
The name of the internet service provider (ISP) that owned the IP address.
ipOwner_org :: Lens' IpOwner (Maybe Text) Source #
The name of the organization that owned the IP address.
JobDetails
data JobDetails Source #
Specifies whether any one-time or recurring classification jobs are configured to analyze data in an S3 bucket, and, if so, the details of the job that ran most recently.
See: newJobDetails smart constructor.
Constructors
| JobDetails' | |
Fields
| |
Instances
newJobDetails :: JobDetails Source #
Create a value of JobDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:isDefinedInJob:JobDetails', jobDetails_isDefinedInJob - Specifies whether any one-time or recurring jobs are configured to
analyze data in the bucket. Possible values are:
- TRUE - The bucket is explicitly included in the bucket definition (S3BucketDefinitionForJob) for one or more jobs and at least one of those jobs has a status other than CANCELLED. Or the bucket matched the bucket criteria (S3BucketCriteriaForJob) for at least one job that previously ran.
- FALSE - The bucket isn't explicitly included in the bucket definition (S3BucketDefinitionForJob) for any jobs, all the jobs that explicitly include the bucket in their bucket definitions have a status of CANCELLED, or the bucket didn't match the bucket criteria (S3BucketCriteriaForJob) for any jobs that previously ran.
- UNKNOWN - An exception occurred when Amazon Macie attempted to retrieve job data for the bucket.
$sel:isMonitoredByJob:JobDetails', jobDetails_isMonitoredByJob - Specifies whether any recurring jobs are configured to analyze data in
the bucket. Possible values are:
- TRUE - The bucket is explicitly included in the bucket definition (S3BucketDefinitionForJob) for one or more recurring jobs or the bucket matches the bucket criteria (S3BucketCriteriaForJob) for one or more recurring jobs. At least one of those jobs has a status other than CANCELLED.
- FALSE - The bucket isn't explicitly included in the bucket definition (S3BucketDefinitionForJob) for any recurring jobs, the bucket doesn't match the bucket criteria (S3BucketCriteriaForJob) for any recurring jobs, or all the recurring jobs that are configured to analyze data in the bucket have a status of CANCELLED.
- UNKNOWN - An exception occurred when Amazon Macie attempted to retrieve job data for the bucket.
$sel:lastJobId:JobDetails', jobDetails_lastJobId - The unique identifier for the job that ran most recently and is
configured to analyze data in the bucket, either the latest run of a
recurring job or the only run of a one-time job.
This value is typically null if the value for the isDefinedInJob property is FALSE or UNKNOWN.
$sel:lastJobRunTime:JobDetails', jobDetails_lastJobRunTime - The date and time, in UTC and extended ISO 8601 format, when the job
(lastJobId) started. If the job is a recurring job, this value indicates
when the most recent run started.
This value is typically null if the value for the isDefinedInJob property is FALSE or UNKNOWN.
jobDetails_isDefinedInJob :: Lens' JobDetails (Maybe IsDefinedInJob) Source #
Specifies whether any one-time or recurring jobs are configured to analyze data in the bucket. Possible values are:
- TRUE - The bucket is explicitly included in the bucket definition (S3BucketDefinitionForJob) for one or more jobs and at least one of those jobs has a status other than CANCELLED. Or the bucket matched the bucket criteria (S3BucketCriteriaForJob) for at least one job that previously ran.
- FALSE - The bucket isn't explicitly included in the bucket definition (S3BucketDefinitionForJob) for any jobs, all the jobs that explicitly include the bucket in their bucket definitions have a status of CANCELLED, or the bucket didn't match the bucket criteria (S3BucketCriteriaForJob) for any jobs that previously ran.
- UNKNOWN - An exception occurred when Amazon Macie attempted to retrieve job data for the bucket.
jobDetails_isMonitoredByJob :: Lens' JobDetails (Maybe IsMonitoredByJob) Source #
Specifies whether any recurring jobs are configured to analyze data in the bucket. Possible values are:
- TRUE - The bucket is explicitly included in the bucket definition (S3BucketDefinitionForJob) for one or more recurring jobs or the bucket matches the bucket criteria (S3BucketCriteriaForJob) for one or more recurring jobs. At least one of those jobs has a status other than CANCELLED.
- FALSE - The bucket isn't explicitly included in the bucket definition (S3BucketDefinitionForJob) for any recurring jobs, the bucket doesn't match the bucket criteria (S3BucketCriteriaForJob) for any recurring jobs, or all the recurring jobs that are configured to analyze data in the bucket have a status of CANCELLED.
- UNKNOWN - An exception occurred when Amazon Macie attempted to retrieve job data for the bucket.
jobDetails_lastJobId :: Lens' JobDetails (Maybe Text) Source #
The unique identifier for the job that ran most recently and is configured to analyze data in the bucket, either the latest run of a recurring job or the only run of a one-time job.
This value is typically null if the value for the isDefinedInJob property is FALSE or UNKNOWN.
jobDetails_lastJobRunTime :: Lens' JobDetails (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the job (lastJobId) started. If the job is a recurring job, this value indicates when the most recent run started.
This value is typically null if the value for the isDefinedInJob property is FALSE or UNKNOWN.
JobScheduleFrequency
data JobScheduleFrequency Source #
Specifies the recurrence pattern for running a classification job.
See: newJobScheduleFrequency smart constructor.
Constructors
| JobScheduleFrequency' | |
Fields
| |
Instances
newJobScheduleFrequency :: JobScheduleFrequency Source #
Create a value of JobScheduleFrequency with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:dailySchedule:JobScheduleFrequency', jobScheduleFrequency_dailySchedule - Specifies a daily recurrence pattern for running the job.
$sel:monthlySchedule:JobScheduleFrequency', jobScheduleFrequency_monthlySchedule - Specifies a monthly recurrence pattern for running the job.
$sel:weeklySchedule:JobScheduleFrequency', jobScheduleFrequency_weeklySchedule - Specifies a weekly recurrence pattern for running the job.
jobScheduleFrequency_dailySchedule :: Lens' JobScheduleFrequency (Maybe DailySchedule) Source #
Specifies a daily recurrence pattern for running the job.
jobScheduleFrequency_monthlySchedule :: Lens' JobScheduleFrequency (Maybe MonthlySchedule) Source #
Specifies a monthly recurrence pattern for running the job.
jobScheduleFrequency_weeklySchedule :: Lens' JobScheduleFrequency (Maybe WeeklySchedule) Source #
Specifies a weekly recurrence pattern for running the job.
JobScopeTerm
data JobScopeTerm Source #
Specifies a property- or tag-based condition that defines criteria for including or excluding S3 objects from a classification job. A JobScopeTerm object can contain only one simpleScopeTerm object or one tagScopeTerm object.
See: newJobScopeTerm smart constructor.
Constructors
| JobScopeTerm' | |
Fields
| |
Instances
newJobScopeTerm :: JobScopeTerm Source #
Create a value of JobScopeTerm with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:simpleScopeTerm:JobScopeTerm', jobScopeTerm_simpleScopeTerm - A property-based condition that defines a property, operator, and one or
more values for including or excluding objects from the job.
$sel:tagScopeTerm:JobScopeTerm', jobScopeTerm_tagScopeTerm - A tag-based condition that defines the operator and tag keys or tag key
and value pairs for including or excluding objects from the job.
jobScopeTerm_simpleScopeTerm :: Lens' JobScopeTerm (Maybe SimpleScopeTerm) Source #
A property-based condition that defines a property, operator, and one or more values for including or excluding objects from the job.
jobScopeTerm_tagScopeTerm :: Lens' JobScopeTerm (Maybe TagScopeTerm) Source #
A tag-based condition that defines the operator and tag keys or tag key and value pairs for including or excluding objects from the job.
JobScopingBlock
data JobScopingBlock Source #
Specifies one or more property- and tag-based conditions that define criteria for including or excluding S3 objects from a classification job.
See: newJobScopingBlock smart constructor.
Constructors
| JobScopingBlock' | |
Fields
| |
Instances
newJobScopingBlock :: JobScopingBlock Source #
Create a value of JobScopingBlock with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:and:JobScopingBlock', jobScopingBlock_and - An array of conditions, one for each property- or tag-based condition
that determines which objects to include or exclude from the job. If you
specify more than one condition, Amazon Macie uses AND logic to join the
conditions.
jobScopingBlock_and :: Lens' JobScopingBlock (Maybe [JobScopeTerm]) Source #
An array of conditions, one for each property- or tag-based condition that determines which objects to include or exclude from the job. If you specify more than one condition, Amazon Macie uses AND logic to join the conditions.
JobSummary
data JobSummary Source #
Provides information about a classification job, including the current status of the job.
See: newJobSummary smart constructor.
Constructors
| JobSummary' | |
Fields
| |
Instances
newJobSummary :: JobSummary Source #
Create a value of JobSummary with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:bucketCriteria:JobSummary', jobSummary_bucketCriteria - The property- and tag-based conditions that determine which S3 buckets
are included or excluded from the job's analysis. Each time the job
runs, the job uses these criteria to determine which buckets to analyze.
A job's definition can contain a bucketCriteria object or a
bucketDefinitions array, not both.
$sel:bucketDefinitions:JobSummary', jobSummary_bucketDefinitions - An array of objects, one for each Amazon Web Services account that owns
specific S3 buckets for the job to analyze. Each object specifies the
account ID for an account and one or more buckets to analyze for that
account. A job's definition can contain a bucketDefinitions array or a
bucketCriteria object, not both.
$sel:createdAt:JobSummary', jobSummary_createdAt - The date and time, in UTC and extended ISO 8601 format, when the job was
created.
$sel:jobId:JobSummary', jobSummary_jobId - The unique identifier for the job.
$sel:jobStatus:JobSummary', jobSummary_jobStatus - The current status of the job. Possible values are:
- CANCELLED - You cancelled the job or, if it's a one-time job, you paused the job and didn't resume it within 30 days.
- COMPLETE - For a one-time job, Amazon Macie finished processing the data specified for the job. This value doesn't apply to recurring jobs.
- IDLE - For a recurring job, the previous scheduled run is complete and the next scheduled run is pending. This value doesn't apply to one-time jobs.
- PAUSED - Macie started running the job but additional processing would exceed the monthly sensitive data discovery quota for your account or one or more member accounts that the job analyzes data for.
- RUNNING - For a one-time job, the job is in progress. For a recurring job, a scheduled run is in progress.
- USER_PAUSED - You paused the job. If you paused the job while it had a status of RUNNING and you don't resume it within 30 days of pausing it, the job or job run will expire and be cancelled, depending on the job's type. To check the expiration date, refer to the UserPausedDetails.jobExpiresAt property.
$sel:jobType:JobSummary', jobSummary_jobType - The schedule for running the job. Possible values are:
- ONE_TIME - The job runs only once.
- SCHEDULED - The job runs on a daily, weekly, or monthly basis.
$sel:lastRunErrorStatus:JobSummary', jobSummary_lastRunErrorStatus - Specifies whether any account- or bucket-level access errors occurred
when the job ran. For a recurring job, this value indicates the error
status of the job's most recent run.
$sel:name:JobSummary', jobSummary_name - The custom name of the job.
$sel:userPausedDetails:JobSummary', jobSummary_userPausedDetails - If the current status of the job is USER_PAUSED, specifies when the job
was paused and when the job or job run will expire and be cancelled if
it isn't resumed. This value is present only if the value for jobStatus
is USER_PAUSED.
jobSummary_bucketCriteria :: Lens' JobSummary (Maybe S3BucketCriteriaForJob) Source #
The property- and tag-based conditions that determine which S3 buckets are included or excluded from the job's analysis. Each time the job runs, the job uses these criteria to determine which buckets to analyze. A job's definition can contain a bucketCriteria object or a bucketDefinitions array, not both.
jobSummary_bucketDefinitions :: Lens' JobSummary (Maybe [S3BucketDefinitionForJob]) Source #
An array of objects, one for each Amazon Web Services account that owns specific S3 buckets for the job to analyze. Each object specifies the account ID for an account and one or more buckets to analyze for that account. A job's definition can contain a bucketDefinitions array or a bucketCriteria object, not both.
jobSummary_createdAt :: Lens' JobSummary (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the job was created.
jobSummary_jobId :: Lens' JobSummary (Maybe Text) Source #
The unique identifier for the job.
jobSummary_jobStatus :: Lens' JobSummary (Maybe JobStatus) Source #
The current status of the job. Possible values are:
- CANCELLED - You cancelled the job or, if it's a one-time job, you paused the job and didn't resume it within 30 days.
- COMPLETE - For a one-time job, Amazon Macie finished processing the data specified for the job. This value doesn't apply to recurring jobs.
- IDLE - For a recurring job, the previous scheduled run is complete and the next scheduled run is pending. This value doesn't apply to one-time jobs.
- PAUSED - Macie started running the job but additional processing would exceed the monthly sensitive data discovery quota for your account or one or more member accounts that the job analyzes data for.
- RUNNING - For a one-time job, the job is in progress. For a recurring job, a scheduled run is in progress.
- USER_PAUSED - You paused the job. If you paused the job while it had a status of RUNNING and you don't resume it within 30 days of pausing it, the job or job run will expire and be cancelled, depending on the job's type. To check the expiration date, refer to the UserPausedDetails.jobExpiresAt property.
jobSummary_jobType :: Lens' JobSummary (Maybe JobType) Source #
The schedule for running the job. Possible values are:
- ONE_TIME - The job runs only once.
- SCHEDULED - The job runs on a daily, weekly, or monthly basis.
jobSummary_lastRunErrorStatus :: Lens' JobSummary (Maybe LastRunErrorStatus) Source #
Specifies whether any account- or bucket-level access errors occurred when the job ran. For a recurring job, this value indicates the error status of the job's most recent run.
jobSummary_name :: Lens' JobSummary (Maybe Text) Source #
The custom name of the job.
jobSummary_userPausedDetails :: Lens' JobSummary (Maybe UserPausedDetails) Source #
If the current status of the job is USER_PAUSED, specifies when the job was paused and when the job or job run will expire and be cancelled if it isn't resumed. This value is present only if the value for jobStatus is USER_PAUSED.
KeyValuePair
data KeyValuePair Source #
Provides information about the tags that are associated with an S3 bucket or object. Each tag consists of a required tag key and an associated tag value.
See: newKeyValuePair smart constructor.
Constructors
| KeyValuePair' | |
Fields
| |
Instances
newKeyValuePair :: KeyValuePair Source #
Create a value of KeyValuePair with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:key:KeyValuePair', keyValuePair_key - One part of a key-value pair that comprises a tag. A tag key is a
general label that acts as a category for more specific tag values.
$sel:value:KeyValuePair', keyValuePair_value - One part of a key-value pair that comprises a tag. A tag value acts as a
descriptor for a tag key. A tag value can be an empty string.
keyValuePair_key :: Lens' KeyValuePair (Maybe Text) Source #
One part of a key-value pair that comprises a tag. A tag key is a general label that acts as a category for more specific tag values.
keyValuePair_value :: Lens' KeyValuePair (Maybe Text) Source #
One part of a key-value pair that comprises a tag. A tag value acts as a descriptor for a tag key. A tag value can be an empty string.
LastRunErrorStatus
data LastRunErrorStatus Source #
Specifies whether any account- or bucket-level access errors occurred when a classification job ran. For information about using logging data to investigate these errors, see Monitoring sensitive data discovery jobs in the Amazon Macie User Guide.
See: newLastRunErrorStatus smart constructor.
Constructors
| LastRunErrorStatus' | |
Fields
| |
Instances
newLastRunErrorStatus :: LastRunErrorStatus Source #
Create a value of LastRunErrorStatus with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:code:LastRunErrorStatus', lastRunErrorStatus_code - Specifies whether any account- or bucket-level access errors occurred
when the job ran. For a recurring job, this value indicates the error
status of the job's most recent run. Possible values are:
- ERROR - One or more errors occurred. Amazon Macie didn't process all the data specified for the job.
- NONE - No errors occurred. Macie processed all the data specified for the job.
lastRunErrorStatus_code :: Lens' LastRunErrorStatus (Maybe LastRunErrorStatusCode) Source #
Specifies whether any account- or bucket-level access errors occurred when the job ran. For a recurring job, this value indicates the error status of the job's most recent run. Possible values are:
- ERROR - One or more errors occurred. Amazon Macie didn't process all the data specified for the job.
- NONE - No errors occurred. Macie processed all the data specified for the job.
ListJobsFilterCriteria
data ListJobsFilterCriteria Source #
Specifies criteria for filtering the results of a request for information about classification jobs.
See: newListJobsFilterCriteria smart constructor.
Constructors
| ListJobsFilterCriteria' | |
Fields
| |
Instances
newListJobsFilterCriteria :: ListJobsFilterCriteria Source #
Create a value of ListJobsFilterCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:excludes:ListJobsFilterCriteria', listJobsFilterCriteria_excludes - An array of objects, one for each condition that determines which jobs
to exclude from the results.
$sel:includes:ListJobsFilterCriteria', listJobsFilterCriteria_includes - An array of objects, one for each condition that determines which jobs
to include in the results.
listJobsFilterCriteria_excludes :: Lens' ListJobsFilterCriteria (Maybe [ListJobsFilterTerm]) Source #
An array of objects, one for each condition that determines which jobs to exclude from the results.
listJobsFilterCriteria_includes :: Lens' ListJobsFilterCriteria (Maybe [ListJobsFilterTerm]) Source #
An array of objects, one for each condition that determines which jobs to include in the results.
ListJobsFilterTerm
data ListJobsFilterTerm Source #
Specifies a condition that filters the results of a request for information about classification jobs. Each condition consists of a property, an operator, and one or more values.
See: newListJobsFilterTerm smart constructor.
Constructors
| ListJobsFilterTerm' | |
Fields
| |
Instances
newListJobsFilterTerm :: ListJobsFilterTerm Source #
Create a value of ListJobsFilterTerm with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:ListJobsFilterTerm', listJobsFilterTerm_comparator - The operator to use to filter the results.
$sel:key:ListJobsFilterTerm', listJobsFilterTerm_key - The property to use to filter the results.
$sel:values:ListJobsFilterTerm', listJobsFilterTerm_values - An array that lists one or more values to use to filter the results.
listJobsFilterTerm_comparator :: Lens' ListJobsFilterTerm (Maybe JobComparator) Source #
The operator to use to filter the results.
listJobsFilterTerm_key :: Lens' ListJobsFilterTerm (Maybe ListJobsFilterKey) Source #
The property to use to filter the results.
listJobsFilterTerm_values :: Lens' ListJobsFilterTerm (Maybe [Text]) Source #
An array that lists one or more values to use to filter the results.
ListJobsSortCriteria
data ListJobsSortCriteria Source #
Specifies criteria for sorting the results of a request for information about classification jobs.
See: newListJobsSortCriteria smart constructor.
Constructors
| ListJobsSortCriteria' | |
Fields
| |
Instances
newListJobsSortCriteria :: ListJobsSortCriteria Source #
Create a value of ListJobsSortCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:attributeName:ListJobsSortCriteria', listJobsSortCriteria_attributeName - The property to sort the results by.
$sel:orderBy:ListJobsSortCriteria', listJobsSortCriteria_orderBy - The sort order to apply to the results, based on the value for the
property specified by the attributeName property. Valid values are: ASC,
sort the results in ascending order; and, DESC, sort the results in
descending order.
listJobsSortCriteria_attributeName :: Lens' ListJobsSortCriteria (Maybe ListJobsSortAttributeName) Source #
The property to sort the results by.
listJobsSortCriteria_orderBy :: Lens' ListJobsSortCriteria (Maybe OrderBy) Source #
The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
ManagedDataIdentifierSummary
data ManagedDataIdentifierSummary Source #
Provides information about a managed data identifier. For additional information, see Using managed data identifiers in the Amazon Macie User Guide.
See: newManagedDataIdentifierSummary smart constructor.
Constructors
| ManagedDataIdentifierSummary' | |
Fields
| |
Instances
newManagedDataIdentifierSummary :: ManagedDataIdentifierSummary Source #
Create a value of ManagedDataIdentifierSummary with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:category:ManagedDataIdentifierSummary', managedDataIdentifierSummary_category - The category of sensitive data that the managed data identifier detects:
CREDENTIALS, for credentials data such as private keys or Amazon Web
Services secret access keys; FINANCIAL_INFORMATION, for financial data
such as credit card numbers; or, PERSONAL_INFORMATION, for personal
health information, such as health insurance identification numbers, or
personally identifiable information, such as passport numbers.
$sel:id:ManagedDataIdentifierSummary', managedDataIdentifierSummary_id - The unique identifier for the managed data identifier. This is a string
that describes the type of sensitive data that the managed data
identifier detects. For example: OPENSSH_PRIVATE_KEY for OpenSSH private
keys, CREDIT_CARD_NUMBER for credit card numbers, or USA_PASSPORT_NUMBER
for US passport numbers.
managedDataIdentifierSummary_category :: Lens' ManagedDataIdentifierSummary (Maybe SensitiveDataItemCategory) Source #
The category of sensitive data that the managed data identifier detects: CREDENTIALS, for credentials data such as private keys or Amazon Web Services secret access keys; FINANCIAL_INFORMATION, for financial data such as credit card numbers; or, PERSONAL_INFORMATION, for personal health information, such as health insurance identification numbers, or personally identifiable information, such as passport numbers.
managedDataIdentifierSummary_id :: Lens' ManagedDataIdentifierSummary (Maybe Text) Source #
The unique identifier for the managed data identifier. This is a string that describes the type of sensitive data that the managed data identifier detects. For example: OPENSSH_PRIVATE_KEY for OpenSSH private keys, CREDIT_CARD_NUMBER for credit card numbers, or USA_PASSPORT_NUMBER for US passport numbers.
MatchingBucket
data MatchingBucket Source #
Provides statistical data and other information about an S3 bucket that Amazon Macie monitors and analyzes for your account. If an error occurs when Macie attempts to retrieve and process information about the bucket or the bucket's objects, the value for most of these properties is null. Key exceptions are accountId and bucketName. To identify the cause of the error, refer to the errorCode and errorMessage values.
See: newMatchingBucket smart constructor.
Constructors
| MatchingBucket' | |
Fields
| |
Instances
newMatchingBucket :: MatchingBucket Source #
Create a value of MatchingBucket with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:MatchingBucket', matchingBucket_accountId - The unique identifier for the Amazon Web Services account that owns the
bucket.
$sel:bucketName:MatchingBucket', matchingBucket_bucketName - The name of the bucket.
$sel:classifiableObjectCount:MatchingBucket', matchingBucket_classifiableObjectCount - The total number of objects that Amazon Macie can analyze in the bucket.
These objects use a supported storage class and have a file name
extension for a supported file or storage format.
$sel:classifiableSizeInBytes:MatchingBucket', matchingBucket_classifiableSizeInBytes - The total storage size, in bytes, of the objects that Amazon Macie can
analyze in the bucket. These objects use a supported storage class and
have a file name extension for a supported file or storage format.
If versioning is enabled for the bucket, Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
$sel:errorCode:MatchingBucket', matchingBucket_errorCode - Specifies the error code for an error that prevented Amazon Macie from
retrieving and processing information about the bucket and the bucket's
objects. If this value is ACCESS_DENIED, Macie doesn't have permission
to retrieve the information. For example, the bucket has a restrictive
bucket policy and Amazon S3 denied the request. If this value is null,
Macie was able to retrieve and process the information.
$sel:errorMessage:MatchingBucket', matchingBucket_errorMessage - A brief description of the error (errorCode) that prevented Amazon Macie
from retrieving and processing information about the bucket and the
bucket's objects. This value is null if Macie was able to retrieve and
process the information.
$sel:jobDetails:MatchingBucket', matchingBucket_jobDetails - Specifies whether any one-time or recurring classification jobs are
configured to analyze objects in the bucket, and, if so, the details of
the job that ran most recently.
$sel:lastAutomatedDiscoveryTime:MatchingBucket', matchingBucket_lastAutomatedDiscoveryTime - The date and time, in UTC and extended ISO 8601 format, when Amazon
Macie most recently performed automated sensitive data discovery for the
bucket. This value is null if automated sensitive data discovery is
currently disabled for your account.
$sel:objectCount:MatchingBucket', matchingBucket_objectCount - The total number of objects in the bucket.
$sel:objectCountByEncryptionType:MatchingBucket', matchingBucket_objectCountByEncryptionType - The total number of objects in the bucket, grouped by server-side
encryption type. This includes a grouping that reports the total number
of objects that aren't encrypted or use client-side encryption.
$sel:sensitivityScore:MatchingBucket', matchingBucket_sensitivityScore - The current sensitivity score for the bucket, ranging from -1 (no
analysis due to an error) to 100 (sensitive). This value is null if
automated sensitive data discovery is currently disabled for your
account.
$sel:sizeInBytes:MatchingBucket', matchingBucket_sizeInBytes - The total storage size, in bytes, of the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each object in the bucket. This value doesn't reflect the storage size of all versions of each object in the bucket.
$sel:sizeInBytesCompressed:MatchingBucket', matchingBucket_sizeInBytesCompressed - The total storage size, in bytes, of the objects that are compressed
(.gz, .gzip, .zip) files in the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
$sel:unclassifiableObjectCount:MatchingBucket', matchingBucket_unclassifiableObjectCount - The total number of objects that Amazon Macie can't analyze in the
bucket. These objects don't use a supported storage class or don't
have a file name extension for a supported file or storage format.
$sel:unclassifiableObjectSizeInBytes:MatchingBucket', matchingBucket_unclassifiableObjectSizeInBytes - The total storage size, in bytes, of the objects that Amazon Macie
can't analyze in the bucket. These objects don't use a supported
storage class or don't have a file name extension for a supported file
or storage format.
matchingBucket_accountId :: Lens' MatchingBucket (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that owns the bucket.
matchingBucket_bucketName :: Lens' MatchingBucket (Maybe Text) Source #
The name of the bucket.
matchingBucket_classifiableObjectCount :: Lens' MatchingBucket (Maybe Integer) Source #
The total number of objects that Amazon Macie can analyze in the bucket. These objects use a supported storage class and have a file name extension for a supported file or storage format.
matchingBucket_classifiableSizeInBytes :: Lens' MatchingBucket (Maybe Integer) Source #
The total storage size, in bytes, of the objects that Amazon Macie can analyze in the bucket. These objects use a supported storage class and have a file name extension for a supported file or storage format.
If versioning is enabled for the bucket, Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
matchingBucket_errorCode :: Lens' MatchingBucket (Maybe BucketMetadataErrorCode) Source #
Specifies the error code for an error that prevented Amazon Macie from retrieving and processing information about the bucket and the bucket's objects. If this value is ACCESS_DENIED, Macie doesn't have permission to retrieve the information. For example, the bucket has a restrictive bucket policy and Amazon S3 denied the request. If this value is null, Macie was able to retrieve and process the information.
matchingBucket_errorMessage :: Lens' MatchingBucket (Maybe Text) Source #
A brief description of the error (errorCode) that prevented Amazon Macie from retrieving and processing information about the bucket and the bucket's objects. This value is null if Macie was able to retrieve and process the information.
matchingBucket_jobDetails :: Lens' MatchingBucket (Maybe JobDetails) Source #
Specifies whether any one-time or recurring classification jobs are configured to analyze objects in the bucket, and, if so, the details of the job that ran most recently.
matchingBucket_lastAutomatedDiscoveryTime :: Lens' MatchingBucket (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when Amazon Macie most recently performed automated sensitive data discovery for the bucket. This value is null if automated sensitive data discovery is currently disabled for your account.
matchingBucket_objectCount :: Lens' MatchingBucket (Maybe Integer) Source #
The total number of objects in the bucket.
matchingBucket_objectCountByEncryptionType :: Lens' MatchingBucket (Maybe ObjectCountByEncryptionType) Source #
The total number of objects in the bucket, grouped by server-side encryption type. This includes a grouping that reports the total number of objects that aren't encrypted or use client-side encryption.
matchingBucket_sensitivityScore :: Lens' MatchingBucket (Maybe Int) Source #
The current sensitivity score for the bucket, ranging from -1 (no analysis due to an error) to 100 (sensitive). This value is null if automated sensitive data discovery is currently disabled for your account.
matchingBucket_sizeInBytes :: Lens' MatchingBucket (Maybe Integer) Source #
The total storage size, in bytes, of the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each object in the bucket. This value doesn't reflect the storage size of all versions of each object in the bucket.
matchingBucket_sizeInBytesCompressed :: Lens' MatchingBucket (Maybe Integer) Source #
The total storage size, in bytes, of the objects that are compressed (.gz, .gzip, .zip) files in the bucket.
If versioning is enabled for the bucket, Amazon Macie calculates this value based on the size of the latest version of each applicable object in the bucket. This value doesn't reflect the storage size of all versions of each applicable object in the bucket.
matchingBucket_unclassifiableObjectCount :: Lens' MatchingBucket (Maybe ObjectLevelStatistics) Source #
The total number of objects that Amazon Macie can't analyze in the bucket. These objects don't use a supported storage class or don't have a file name extension for a supported file or storage format.
matchingBucket_unclassifiableObjectSizeInBytes :: Lens' MatchingBucket (Maybe ObjectLevelStatistics) Source #
The total storage size, in bytes, of the objects that Amazon Macie can't analyze in the bucket. These objects don't use a supported storage class or don't have a file name extension for a supported file or storage format.
MatchingResource
data MatchingResource Source #
Provides statistical data and other information about an Amazon Web Services resource that Amazon Macie monitors and analyzes for your account.
See: newMatchingResource smart constructor.
Constructors
| MatchingResource' | |
Fields
| |
Instances
newMatchingResource :: MatchingResource Source #
Create a value of MatchingResource with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:matchingBucket:MatchingResource', matchingResource_matchingBucket - The details of an S3 bucket that Amazon Macie monitors and analyzes.
matchingResource_matchingBucket :: Lens' MatchingResource (Maybe MatchingBucket) Source #
The details of an S3 bucket that Amazon Macie monitors and analyzes.
Member
Provides information about an account that's associated with an Amazon Macie administrator account.
See: newMember smart constructor.
Constructors
| Member' | |
Fields
| |
Instances
Create a value of Member with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:Member', member_accountId - The Amazon Web Services account ID for the account.
$sel:administratorAccountId:Member', member_administratorAccountId - The Amazon Web Services account ID for the administrator account.
$sel:arn:Member', member_arn - The Amazon Resource Name (ARN) of the account.
$sel:email:Member', member_email - The email address for the account.
$sel:invitedAt:Member', member_invitedAt - The date and time, in UTC and extended ISO 8601 format, when an Amazon
Macie membership invitation was last sent to the account. This value is
null if an invitation hasn't been sent to the account.
$sel:masterAccountId:Member', member_masterAccountId - (Deprecated) The Amazon Web Services account ID for the administrator
account. This property has been replaced by the administratorAccountId
property and is retained only for backward compatibility.
$sel:relationshipStatus:Member', member_relationshipStatus - The current status of the relationship between the account and the
administrator account.
$sel:tags:Member', member_tags - A map of key-value pairs that specifies which tags (keys and values) are
associated with the account in Amazon Macie.
$sel:updatedAt:Member', member_updatedAt - The date and time, in UTC and extended ISO 8601 format, of the most
recent change to the status of the relationship between the account and
the administrator account.
member_accountId :: Lens' Member (Maybe Text) Source #
The Amazon Web Services account ID for the account.
member_administratorAccountId :: Lens' Member (Maybe Text) Source #
The Amazon Web Services account ID for the administrator account.
member_invitedAt :: Lens' Member (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when an Amazon Macie membership invitation was last sent to the account. This value is null if an invitation hasn't been sent to the account.
member_masterAccountId :: Lens' Member (Maybe Text) Source #
(Deprecated) The Amazon Web Services account ID for the administrator account. This property has been replaced by the administratorAccountId property and is retained only for backward compatibility.
member_relationshipStatus :: Lens' Member (Maybe RelationshipStatus) Source #
The current status of the relationship between the account and the administrator account.
member_tags :: Lens' Member (Maybe (HashMap Text Text)) Source #
A map of key-value pairs that specifies which tags (keys and values) are associated with the account in Amazon Macie.
member_updatedAt :: Lens' Member (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, of the most recent change to the status of the relationship between the account and the administrator account.
MonthlySchedule
data MonthlySchedule Source #
Specifies a monthly recurrence pattern for running a classification job.
See: newMonthlySchedule smart constructor.
Constructors
| MonthlySchedule' | |
Fields
| |
Instances
newMonthlySchedule :: MonthlySchedule Source #
Create a value of MonthlySchedule with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:dayOfMonth:MonthlySchedule', monthlySchedule_dayOfMonth - The numeric day of the month when Amazon Macie runs the job. This value
can be an integer from 1 through 31.
If this value exceeds the number of days in a certain month, Macie doesn't run the job that month. Macie runs the job only during months that have the specified day. For example, if this value is 31 and a month has only 30 days, Macie doesn't run the job that month. To run the job every month, specify a value that's less than 29.
monthlySchedule_dayOfMonth :: Lens' MonthlySchedule (Maybe Int) Source #
The numeric day of the month when Amazon Macie runs the job. This value can be an integer from 1 through 31.
If this value exceeds the number of days in a certain month, Macie doesn't run the job that month. Macie runs the job only during months that have the specified day. For example, if this value is 31 and a month has only 30 days, Macie doesn't run the job that month. To run the job every month, specify a value that's less than 29.
ObjectCountByEncryptionType
data ObjectCountByEncryptionType Source #
Provides information about the number of objects that are in an S3 bucket and use certain types of server-side encryption, use client-side encryption, or aren't encrypted.
See: newObjectCountByEncryptionType smart constructor.
Constructors
| ObjectCountByEncryptionType' | |
Fields
| |
Instances
newObjectCountByEncryptionType :: ObjectCountByEncryptionType Source #
Create a value of ObjectCountByEncryptionType with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:customerManaged:ObjectCountByEncryptionType', objectCountByEncryptionType_customerManaged - The total number of objects that are encrypted with a customer-provided
key. The objects use customer-provided server-side encryption (SSE-C).
$sel:kmsManaged:ObjectCountByEncryptionType', objectCountByEncryptionType_kmsManaged - The total number of objects that are encrypted with an KMS key, either
an Amazon Web Services managed key or a customer managed key. The
objects use KMS encryption (SSE-KMS).
$sel:s3Managed:ObjectCountByEncryptionType', objectCountByEncryptionType_s3Managed - The total number of objects that are encrypted with an Amazon S3 managed
key. The objects use Amazon S3 managed encryption (SSE-S3).
$sel:unencrypted:ObjectCountByEncryptionType', objectCountByEncryptionType_unencrypted - The total number of objects that aren't encrypted or use client-side
encryption.
$sel:unknown:ObjectCountByEncryptionType', objectCountByEncryptionType_unknown - The total number of objects that Amazon Macie doesn't have current
encryption metadata for. Macie can't provide current data about the
encryption settings for these objects.
objectCountByEncryptionType_customerManaged :: Lens' ObjectCountByEncryptionType (Maybe Integer) Source #
The total number of objects that are encrypted with a customer-provided key. The objects use customer-provided server-side encryption (SSE-C).
objectCountByEncryptionType_kmsManaged :: Lens' ObjectCountByEncryptionType (Maybe Integer) Source #
The total number of objects that are encrypted with an KMS key, either an Amazon Web Services managed key or a customer managed key. The objects use KMS encryption (SSE-KMS).
objectCountByEncryptionType_s3Managed :: Lens' ObjectCountByEncryptionType (Maybe Integer) Source #
The total number of objects that are encrypted with an Amazon S3 managed key. The objects use Amazon S3 managed encryption (SSE-S3).
objectCountByEncryptionType_unencrypted :: Lens' ObjectCountByEncryptionType (Maybe Integer) Source #
The total number of objects that aren't encrypted or use client-side encryption.
objectCountByEncryptionType_unknown :: Lens' ObjectCountByEncryptionType (Maybe Integer) Source #
The total number of objects that Amazon Macie doesn't have current encryption metadata for. Macie can't provide current data about the encryption settings for these objects.
ObjectLevelStatistics
data ObjectLevelStatistics Source #
Provides information about the total storage size (in bytes) or number of objects that Amazon Macie can't analyze in one or more S3 buckets. In a BucketMetadata or MatchingBucket object, this data is for a specific bucket. In a GetBucketStatisticsResponse object, this data is aggregated for all the buckets in the query results. If versioning is enabled for a bucket, storage size values are based on the size of the latest version of each applicable object in the bucket.
See: newObjectLevelStatistics smart constructor.
Constructors
| ObjectLevelStatistics' | |
Fields
| |
Instances
newObjectLevelStatistics :: ObjectLevelStatistics Source #
Create a value of ObjectLevelStatistics with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:fileType:ObjectLevelStatistics', objectLevelStatistics_fileType - The total storage size (in bytes) or number of objects that Amazon Macie
can't analyze because the objects don't have a file name extension for
a supported file or storage format.
$sel:storageClass:ObjectLevelStatistics', objectLevelStatistics_storageClass - The total storage size (in bytes) or number of objects that Amazon Macie
can't analyze because the objects use an unsupported storage class.
$sel:total:ObjectLevelStatistics', objectLevelStatistics_total - The total storage size (in bytes) or number of objects that Amazon Macie
can't analyze because the objects use an unsupported storage class or
don't have a file name extension for a supported file or storage
format.
objectLevelStatistics_fileType :: Lens' ObjectLevelStatistics (Maybe Integer) Source #
The total storage size (in bytes) or number of objects that Amazon Macie can't analyze because the objects don't have a file name extension for a supported file or storage format.
objectLevelStatistics_storageClass :: Lens' ObjectLevelStatistics (Maybe Integer) Source #
The total storage size (in bytes) or number of objects that Amazon Macie can't analyze because the objects use an unsupported storage class.
objectLevelStatistics_total :: Lens' ObjectLevelStatistics (Maybe Integer) Source #
The total storage size (in bytes) or number of objects that Amazon Macie can't analyze because the objects use an unsupported storage class or don't have a file name extension for a supported file or storage format.
Occurrences
data Occurrences Source #
Specifies the location of 1-15 occurrences of sensitive data that was detected by a managed data identifier or a custom data identifier and produced a sensitive data finding.
See: newOccurrences smart constructor.
Constructors
| Occurrences' | |
Fields
| |
Instances
newOccurrences :: Occurrences Source #
Create a value of Occurrences with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:cells:Occurrences', occurrences_cells - An array of objects, one for each occurrence of sensitive data in a
Microsoft Excel workbook, CSV file, or TSV file. This value is null for
all other types of files.
Each Cell object specifies a cell or field that contains the sensitive data.
$sel:lineRanges:Occurrences', occurrences_lineRanges - An array of objects, one for each occurrence of sensitive data in a
non-binary text file, such as an HTML, TXT, or XML file. Each Range
object specifies a line or inclusive range of lines that contains the
sensitive data, and the position of the data on the specified line or
lines.
This value is often null for file types that are supported by Cell, Page, or Record objects. Exceptions are the location of sensitive data in: unstructured sections of an otherwise structured file, such as a comment in a file; a malformed file that Amazon Macie analyzes as plain text; and, a CSV or TSV file that has any column names that contain sensitive data.
$sel:offsetRanges:Occurrences', occurrences_offsetRanges - Reserved for future use.
$sel:pages:Occurrences', occurrences_pages - An array of objects, one for each occurrence of sensitive data in an
Adobe Portable Document Format file. This value is null for all other
types of files.
Each Page object specifies a page that contains the sensitive data.
$sel:records:Occurrences', occurrences_records - An array of objects, one for each occurrence of sensitive data in an
Apache Avro object container, Apache Parquet file, JSON file, or JSON
Lines file. This value is null for all other types of files.
For an Avro object container or Parquet file, each Record object specifies a record index and the path to a field in a record that contains the sensitive data. For a JSON or JSON Lines file, each Record object specifies the path to a field or array that contains the sensitive data. For a JSON Lines file, it also specifies the index of the line that contains the data.
occurrences_cells :: Lens' Occurrences (Maybe [Cell]) Source #
An array of objects, one for each occurrence of sensitive data in a Microsoft Excel workbook, CSV file, or TSV file. This value is null for all other types of files.
Each Cell object specifies a cell or field that contains the sensitive data.
occurrences_lineRanges :: Lens' Occurrences (Maybe [Range]) Source #
An array of objects, one for each occurrence of sensitive data in a non-binary text file, such as an HTML, TXT, or XML file. Each Range object specifies a line or inclusive range of lines that contains the sensitive data, and the position of the data on the specified line or lines.
This value is often null for file types that are supported by Cell, Page, or Record objects. Exceptions are the location of sensitive data in: unstructured sections of an otherwise structured file, such as a comment in a file; a malformed file that Amazon Macie analyzes as plain text; and, a CSV or TSV file that has any column names that contain sensitive data.
occurrences_offsetRanges :: Lens' Occurrences (Maybe [Range]) Source #
Reserved for future use.
occurrences_pages :: Lens' Occurrences (Maybe [Page]) Source #
An array of objects, one for each occurrence of sensitive data in an Adobe Portable Document Format file. This value is null for all other types of files.
Each Page object specifies a page that contains the sensitive data.
occurrences_records :: Lens' Occurrences (Maybe [Record]) Source #
An array of objects, one for each occurrence of sensitive data in an Apache Avro object container, Apache Parquet file, JSON file, or JSON Lines file. This value is null for all other types of files.
For an Avro object container or Parquet file, each Record object specifies a record index and the path to a field in a record that contains the sensitive data. For a JSON or JSON Lines file, each Record object specifies the path to a field or array that contains the sensitive data. For a JSON Lines file, it also specifies the index of the line that contains the data.
Page
Specifies the location of an occurrence of sensitive data in an Adobe Portable Document Format file.
See: newPage smart constructor.
Constructors
| Page' | |
Fields
| |
Instances
| FromJSON Page Source # | |
| Generic Page Source # | |
| Read Page Source # | |
| Show Page Source # | |
| NFData Page Source # | |
Defined in Amazonka.MacieV2.Types.Page | |
| Eq Page Source # | |
| Hashable Page Source # | |
Defined in Amazonka.MacieV2.Types.Page | |
| type Rep Page Source # | |
Defined in Amazonka.MacieV2.Types.Page type Rep Page = D1 ('MetaData "Page" "Amazonka.MacieV2.Types.Page" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "Page'" 'PrefixI 'True) (S1 ('MetaSel ('Just "lineRange") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Range)) :*: (S1 ('MetaSel ('Just "offsetRange") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Range)) :*: S1 ('MetaSel ('Just "pageNumber") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer))))) | |
Create a value of Page with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:lineRange:Page', page_lineRange - Reserved for future use.
$sel:offsetRange:Page', page_offsetRange - Reserved for future use.
$sel:pageNumber:Page', page_pageNumber - The page number of the page that contains the sensitive data.
page_pageNumber :: Lens' Page (Maybe Integer) Source #
The page number of the page that contains the sensitive data.
PolicyDetails
data PolicyDetails Source #
Provides the details of a policy finding.
See: newPolicyDetails smart constructor.
Constructors
| PolicyDetails' | |
Fields
| |
Instances
newPolicyDetails :: PolicyDetails Source #
Create a value of PolicyDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:action:PolicyDetails', policyDetails_action - The action that produced the finding.
$sel:actor:PolicyDetails', policyDetails_actor - The entity that performed the action that produced the finding.
policyDetails_action :: Lens' PolicyDetails (Maybe FindingAction) Source #
The action that produced the finding.
policyDetails_actor :: Lens' PolicyDetails (Maybe FindingActor) Source #
The entity that performed the action that produced the finding.
Range
Specifies the location of an occurrence of sensitive data in a non-binary text file, such as an HTML, TXT, or XML file.
See: newRange smart constructor.
Constructors
| Range' | |
Fields
| |
Instances
| FromJSON Range Source # | |
| Generic Range Source # | |
| Read Range Source # | |
| Show Range Source # | |
| NFData Range Source # | |
Defined in Amazonka.MacieV2.Types.Range | |
| Eq Range Source # | |
| Hashable Range Source # | |
Defined in Amazonka.MacieV2.Types.Range | |
| type Rep Range Source # | |
Defined in Amazonka.MacieV2.Types.Range type Rep Range = D1 ('MetaData "Range" "Amazonka.MacieV2.Types.Range" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "Range'" 'PrefixI 'True) (S1 ('MetaSel ('Just "end") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer)) :*: (S1 ('MetaSel ('Just "start") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer)) :*: S1 ('MetaSel ('Just "startColumn") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer))))) | |
Create a value of Range with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:end:Range', range_end - The number of lines from the beginning of the file to the end of the
sensitive data.
$sel:start:Range', range_start - The number of lines from the beginning of the file to the beginning of
the sensitive data.
$sel:startColumn:Range', range_startColumn - The number of characters, with spaces and starting from 1, from the
beginning of the first line that contains the sensitive data (start) to
the beginning of the sensitive data.
range_end :: Lens' Range (Maybe Integer) Source #
The number of lines from the beginning of the file to the end of the sensitive data.
range_start :: Lens' Range (Maybe Integer) Source #
The number of lines from the beginning of the file to the beginning of the sensitive data.
range_startColumn :: Lens' Range (Maybe Integer) Source #
The number of characters, with spaces and starting from 1, from the beginning of the first line that contains the sensitive data (start) to the beginning of the sensitive data.
Record
Specifies the location of an occurrence of sensitive data in an Apache Avro object container, Apache Parquet file, JSON file, or JSON Lines file.
See: newRecord smart constructor.
Constructors
| Record' | |
Fields
| |
Instances
| FromJSON Record Source # | |
| Generic Record Source # | |
| Read Record Source # | |
| Show Record Source # | |
| NFData Record Source # | |
Defined in Amazonka.MacieV2.Types.Record | |
| Eq Record Source # | |
| Hashable Record Source # | |
Defined in Amazonka.MacieV2.Types.Record | |
| type Rep Record Source # | |
Defined in Amazonka.MacieV2.Types.Record type Rep Record = D1 ('MetaData "Record" "Amazonka.MacieV2.Types.Record" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "Record'" 'PrefixI 'True) (S1 ('MetaSel ('Just "jsonPath") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "recordIndex") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer)))) | |
Create a value of Record with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:jsonPath:Record', record_jsonPath - The path, as a JSONPath expression, to the sensitive data. For an Avro
object container or Parquet file, this is the path to the field in the
record (recordIndex) that contains the data. For a JSON or JSON Lines
file, this is the path to the field or array that contains the data. If
the data is a value in an array, the path also indicates which value
contains the data.
If Amazon Macie detects sensitive data in the name of any element in the path, Macie omits this field. If the name of an element exceeds 20 characters, Macie truncates the name by removing characters from the beginning of the name. If the resulting full path exceeds 250 characters, Macie also truncates the path, starting with the first element in the path, until the path contains 250 or fewer characters.
$sel:recordIndex:Record', record_recordIndex - For an Avro object container or Parquet file, the record index, starting
from 0, for the record that contains the sensitive data. For a JSON
Lines file, the line index, starting from 0, for the line that contains
the sensitive data. This value is always 0 for JSON files.
record_jsonPath :: Lens' Record (Maybe Text) Source #
The path, as a JSONPath expression, to the sensitive data. For an Avro object container or Parquet file, this is the path to the field in the record (recordIndex) that contains the data. For a JSON or JSON Lines file, this is the path to the field or array that contains the data. If the data is a value in an array, the path also indicates which value contains the data.
If Amazon Macie detects sensitive data in the name of any element in the path, Macie omits this field. If the name of an element exceeds 20 characters, Macie truncates the name by removing characters from the beginning of the name. If the resulting full path exceeds 250 characters, Macie also truncates the path, starting with the first element in the path, until the path contains 250 or fewer characters.
record_recordIndex :: Lens' Record (Maybe Integer) Source #
For an Avro object container or Parquet file, the record index, starting from 0, for the record that contains the sensitive data. For a JSON Lines file, the line index, starting from 0, for the line that contains the sensitive data. This value is always 0 for JSON files.
ReplicationDetails
data ReplicationDetails Source #
Provides information about settings that define whether one or more objects in an S3 bucket are replicated to S3 buckets for other Amazon Web Services accounts and, if so, which accounts.
See: newReplicationDetails smart constructor.
Constructors
| ReplicationDetails' | |
Fields
| |
Instances
newReplicationDetails :: ReplicationDetails Source #
Create a value of ReplicationDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:replicated:ReplicationDetails', replicationDetails_replicated - Specifies whether the bucket is configured to replicate one or more
objects to any destination.
$sel:replicatedExternally:ReplicationDetails', replicationDetails_replicatedExternally - Specifies whether the bucket is configured to replicate one or more
objects to an Amazon Web Services account that isn't part of the same
Amazon Macie organization.
$sel:replicationAccounts:ReplicationDetails', replicationDetails_replicationAccounts - An array of Amazon Web Services account IDs, one for each Amazon Web
Services account that the bucket is configured to replicate one or more
objects to.
replicationDetails_replicated :: Lens' ReplicationDetails (Maybe Bool) Source #
Specifies whether the bucket is configured to replicate one or more objects to any destination.
replicationDetails_replicatedExternally :: Lens' ReplicationDetails (Maybe Bool) Source #
Specifies whether the bucket is configured to replicate one or more objects to an Amazon Web Services account that isn't part of the same Amazon Macie organization.
replicationDetails_replicationAccounts :: Lens' ReplicationDetails (Maybe [Text]) Source #
An array of Amazon Web Services account IDs, one for each Amazon Web Services account that the bucket is configured to replicate one or more objects to.
ResourceProfileArtifact
data ResourceProfileArtifact Source #
Provides information about an S3 object that Amazon Macie selected for analysis while performing automated sensitive data discovery for an S3 bucket, and the status and results of the analysis. This information is available only if automated sensitive data discovery is currently enabled for your account.
See: newResourceProfileArtifact smart constructor.
Constructors
| ResourceProfileArtifact' | |
Fields
| |
Instances
newResourceProfileArtifact Source #
Arguments
| :: Text | |
| -> Text | |
| -> ResourceProfileArtifact |
Create a value of ResourceProfileArtifact with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:sensitive:ResourceProfileArtifact', resourceProfileArtifact_sensitive - Specifies whether Amazon Macie found sensitive data in the object.
$sel:classificationResultStatus:ResourceProfileArtifact', resourceProfileArtifact_classificationResultStatus - The status of the analysis. Possible values are:
- COMPLETE - Amazon Macie successfully completed its analysis of the object.
- PARTIAL - Macie analyzed only a subset of data in the object. For example, the object is an archive file that contains files in an unsupported format.
- SKIPPED - Macie wasn't able to analyze the object. For example, the object is a malformed file.
$sel:arn:ResourceProfileArtifact', resourceProfileArtifact_arn - The Amazon Resource Name (ARN) of the object.
resourceProfileArtifact_sensitive :: Lens' ResourceProfileArtifact (Maybe Bool) Source #
Specifies whether Amazon Macie found sensitive data in the object.
resourceProfileArtifact_classificationResultStatus :: Lens' ResourceProfileArtifact Text Source #
The status of the analysis. Possible values are:
- COMPLETE - Amazon Macie successfully completed its analysis of the object.
- PARTIAL - Macie analyzed only a subset of data in the object. For example, the object is an archive file that contains files in an unsupported format.
- SKIPPED - Macie wasn't able to analyze the object. For example, the object is a malformed file.
resourceProfileArtifact_arn :: Lens' ResourceProfileArtifact Text Source #
The Amazon Resource Name (ARN) of the object.
ResourceStatistics
data ResourceStatistics Source #
Provides statistical data for sensitive data discovery metrics that apply to an S3 bucket that Amazon Macie monitors and analyzes for your account. The statistics capture the results of automated sensitive data discovery activities that Macie has performed for the bucket. The data is available only if automated sensitive data discovery is currently enabled for your account.
See: newResourceStatistics smart constructor.
Constructors
| ResourceStatistics' | |
Fields
| |
Instances
newResourceStatistics :: ResourceStatistics Source #
Create a value of ResourceStatistics with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:totalBytesClassified:ResourceStatistics', resourceStatistics_totalBytesClassified - The total amount of data, in bytes, that Amazon Macie has analyzed in
the bucket.
$sel:totalDetections:ResourceStatistics', resourceStatistics_totalDetections - The total number of occurrences of sensitive data that Amazon Macie has
found in the bucket's objects. This includes occurrences that are
currently suppressed by the sensitivity scoring settings for the bucket
(totalDetectionsSuppressed).
$sel:totalDetectionsSuppressed:ResourceStatistics', resourceStatistics_totalDetectionsSuppressed - The total number of occurrences of sensitive data that are currently
suppressed by the sensitivity scoring settings for the bucket. These
represent occurrences of sensitive data that Amazon Macie found in the
bucket's objects, but the occurrences were manually suppressed. By
default, suppressed occurrences are excluded from the bucket's
sensitivity score.
$sel:totalItemsClassified:ResourceStatistics', resourceStatistics_totalItemsClassified - The total number of objects that Amazon Macie has analyzed in the
bucket.
$sel:totalItemsSensitive:ResourceStatistics', resourceStatistics_totalItemsSensitive - The total number of the bucket's objects that Amazon Macie has found
sensitive data in.
$sel:totalItemsSkipped:ResourceStatistics', resourceStatistics_totalItemsSkipped - The total number of objects that Amazon Macie hasn't analyzed in the
bucket due to an error or issue. For example, the object is a malformed
file. This value includes objects that Macie hasn't analyzed for
reasons reported by other statistics in the ResourceStatistics object.
$sel:totalItemsSkippedInvalidEncryption:ResourceStatistics', resourceStatistics_totalItemsSkippedInvalidEncryption - The total number of objects that Amazon Macie hasn't analyzed in the
bucket because the objects are encrypted with a key that Macie isn't
allowed to use.
$sel:totalItemsSkippedInvalidKms:ResourceStatistics', resourceStatistics_totalItemsSkippedInvalidKms - The total number of objects that Amazon Macie hasn't analyzed in the
bucket because the objects are encrypted with an KMS key that was
disabled or deleted.
$sel:totalItemsSkippedPermissionDenied:ResourceStatistics', resourceStatistics_totalItemsSkippedPermissionDenied - The total number of objects that Amazon Macie hasn't analyzed in the
bucket because Macie isn't allowed to access the objects.
resourceStatistics_totalBytesClassified :: Lens' ResourceStatistics (Maybe Integer) Source #
The total amount of data, in bytes, that Amazon Macie has analyzed in the bucket.
resourceStatistics_totalDetections :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of occurrences of sensitive data that Amazon Macie has found in the bucket's objects. This includes occurrences that are currently suppressed by the sensitivity scoring settings for the bucket (totalDetectionsSuppressed).
resourceStatistics_totalDetectionsSuppressed :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of occurrences of sensitive data that are currently suppressed by the sensitivity scoring settings for the bucket. These represent occurrences of sensitive data that Amazon Macie found in the bucket's objects, but the occurrences were manually suppressed. By default, suppressed occurrences are excluded from the bucket's sensitivity score.
resourceStatistics_totalItemsClassified :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of objects that Amazon Macie has analyzed in the bucket.
resourceStatistics_totalItemsSensitive :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of the bucket's objects that Amazon Macie has found sensitive data in.
resourceStatistics_totalItemsSkipped :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of objects that Amazon Macie hasn't analyzed in the bucket due to an error or issue. For example, the object is a malformed file. This value includes objects that Macie hasn't analyzed for reasons reported by other statistics in the ResourceStatistics object.
resourceStatistics_totalItemsSkippedInvalidEncryption :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of objects that Amazon Macie hasn't analyzed in the bucket because the objects are encrypted with a key that Macie isn't allowed to use.
resourceStatistics_totalItemsSkippedInvalidKms :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of objects that Amazon Macie hasn't analyzed in the bucket because the objects are encrypted with an KMS key that was disabled or deleted.
resourceStatistics_totalItemsSkippedPermissionDenied :: Lens' ResourceStatistics (Maybe Integer) Source #
The total number of objects that Amazon Macie hasn't analyzed in the bucket because Macie isn't allowed to access the objects.
ResourcesAffected
data ResourcesAffected Source #
Provides information about the resources that a finding applies to.
See: newResourcesAffected smart constructor.
Constructors
| ResourcesAffected' | |
Instances
newResourcesAffected :: ResourcesAffected Source #
Create a value of ResourcesAffected with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:s3Bucket:ResourcesAffected', resourcesAffected_s3Bucket - The details of the S3 bucket that the finding applies to.
$sel:s3Object:ResourcesAffected', resourcesAffected_s3Object - The details of the S3 object that the finding applies to.
resourcesAffected_s3Bucket :: Lens' ResourcesAffected (Maybe S3Bucket) Source #
The details of the S3 bucket that the finding applies to.
resourcesAffected_s3Object :: Lens' ResourcesAffected (Maybe S3Object) Source #
The details of the S3 object that the finding applies to.
RevealConfiguration
data RevealConfiguration Source #
Specifies the configuration settings for retrieving occurrences of sensitive data reported by findings, and the status of the configuration for an Amazon Macie account. When you enable the configuration for the first time, your request must specify an Key Management Service (KMS) key. Otherwise, an error occurs. Macie uses the specified key to encrypt the sensitive data that you retrieve.
See: newRevealConfiguration smart constructor.
Constructors
| RevealConfiguration' | |
Fields
| |
Instances
newRevealConfiguration Source #
Create a value of RevealConfiguration with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:kmsKeyId:RevealConfiguration', revealConfiguration_kmsKeyId - The Amazon Resource Name (ARN), ID, or alias of the KMS key to use to
encrypt sensitive data that's retrieved. The key must be an existing,
customer managed, symmetric encryption key that's in the same Amazon
Web Services Region as the Amazon Macie account.
If this value specifies an alias, it must include the following prefix: alias/. If this value specifies a key that's owned by another Amazon Web Services account, it must specify the ARN of the key or the ARN of the key's alias.
$sel:status:RevealConfiguration', revealConfiguration_status - The status of the configuration for the Amazon Macie account. In a
request, valid values are: ENABLED, enable the configuration for the
account; and, DISABLED, disable the configuration for the account. In a
response, possible values are: ENABLED, the configuration is currently
enabled for the account; and, DISABLED, the configuration is currently
disabled for the account.
revealConfiguration_kmsKeyId :: Lens' RevealConfiguration (Maybe Text) Source #
The Amazon Resource Name (ARN), ID, or alias of the KMS key to use to encrypt sensitive data that's retrieved. The key must be an existing, customer managed, symmetric encryption key that's in the same Amazon Web Services Region as the Amazon Macie account.
If this value specifies an alias, it must include the following prefix: alias/. If this value specifies a key that's owned by another Amazon Web Services account, it must specify the ARN of the key or the ARN of the key's alias.
revealConfiguration_status :: Lens' RevealConfiguration RevealStatus Source #
The status of the configuration for the Amazon Macie account. In a request, valid values are: ENABLED, enable the configuration for the account; and, DISABLED, disable the configuration for the account. In a response, possible values are: ENABLED, the configuration is currently enabled for the account; and, DISABLED, the configuration is currently disabled for the account.
S3Bucket
Provides information about the S3 bucket that a finding applies to.
See: newS3Bucket smart constructor.
Constructors
| S3Bucket' | |
Fields
| |
Instances
newS3Bucket :: S3Bucket Source #
Create a value of S3Bucket with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:allowsUnencryptedObjectUploads:S3Bucket', s3Bucket_allowsUnencryptedObjectUploads - Specifies whether the bucket policy for the bucket requires server-side
encryption of objects when objects are uploaded to the bucket. Possible
values are:
- FALSE - The bucket policy requires server-side encryption of new objects. PutObject requests must include a valid server-side encryption header.
- TRUE - The bucket doesn't have a bucket policy or it has a bucket policy that doesn't require server-side encryption of new objects. If a bucket policy exists, it doesn't require PutObject requests to include a valid server-side encryption header.
- UNKNOWN - Amazon Macie can't determine whether the bucket policy requires server-side encryption of new objects.
Valid server-side encryption headers are: x-amz-server-side-encryption with a value of AES256 or aws:kms, and x-amz-server-side-encryption-customer-algorithm with a value of AES256.
$sel:arn:S3Bucket', s3Bucket_arn - The Amazon Resource Name (ARN) of the bucket.
$sel:createdAt:S3Bucket', s3Bucket_createdAt - The date and time, in UTC and extended ISO 8601 format, when the bucket
was created.
$sel:defaultServerSideEncryption:S3Bucket', s3Bucket_defaultServerSideEncryption - The type of server-side encryption that's used by default to encrypt
objects in the bucket.
$sel:name:S3Bucket', s3Bucket_name - The name of the bucket.
$sel:owner:S3Bucket', s3Bucket_owner - The display name and canonical user ID for the Amazon Web Services
account that owns the bucket.
$sel:publicAccess:S3Bucket', s3Bucket_publicAccess - The permissions settings that determine whether the bucket is publicly
accessible.
$sel:tags:S3Bucket', s3Bucket_tags - The tags that are associated with the bucket.
s3Bucket_allowsUnencryptedObjectUploads :: Lens' S3Bucket (Maybe AllowsUnencryptedObjectUploads) Source #
Specifies whether the bucket policy for the bucket requires server-side encryption of objects when objects are uploaded to the bucket. Possible values are:
- FALSE - The bucket policy requires server-side encryption of new objects. PutObject requests must include a valid server-side encryption header.
- TRUE - The bucket doesn't have a bucket policy or it has a bucket policy that doesn't require server-side encryption of new objects. If a bucket policy exists, it doesn't require PutObject requests to include a valid server-side encryption header.
- UNKNOWN - Amazon Macie can't determine whether the bucket policy requires server-side encryption of new objects.
Valid server-side encryption headers are: x-amz-server-side-encryption with a value of AES256 or aws:kms, and x-amz-server-side-encryption-customer-algorithm with a value of AES256.
s3Bucket_createdAt :: Lens' S3Bucket (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the bucket was created.
s3Bucket_defaultServerSideEncryption :: Lens' S3Bucket (Maybe ServerSideEncryption) Source #
The type of server-side encryption that's used by default to encrypt objects in the bucket.
s3Bucket_owner :: Lens' S3Bucket (Maybe S3BucketOwner) Source #
The display name and canonical user ID for the Amazon Web Services account that owns the bucket.
s3Bucket_publicAccess :: Lens' S3Bucket (Maybe BucketPublicAccess) Source #
The permissions settings that determine whether the bucket is publicly accessible.
s3Bucket_tags :: Lens' S3Bucket (Maybe [KeyValuePair]) Source #
The tags that are associated with the bucket.
S3BucketCriteriaForJob
data S3BucketCriteriaForJob Source #
Specifies property- and tag-based conditions that define criteria for including or excluding S3 buckets from a classification job. Exclude conditions take precedence over include conditions.
See: newS3BucketCriteriaForJob smart constructor.
Constructors
| S3BucketCriteriaForJob' | |
Fields
| |
Instances
newS3BucketCriteriaForJob :: S3BucketCriteriaForJob Source #
Create a value of S3BucketCriteriaForJob with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:excludes:S3BucketCriteriaForJob', s3BucketCriteriaForJob_excludes - The property- and tag-based conditions that determine which buckets to
exclude from the job.
$sel:includes:S3BucketCriteriaForJob', s3BucketCriteriaForJob_includes - The property- and tag-based conditions that determine which buckets to
include in the job.
s3BucketCriteriaForJob_excludes :: Lens' S3BucketCriteriaForJob (Maybe CriteriaBlockForJob) Source #
The property- and tag-based conditions that determine which buckets to exclude from the job.
s3BucketCriteriaForJob_includes :: Lens' S3BucketCriteriaForJob (Maybe CriteriaBlockForJob) Source #
The property- and tag-based conditions that determine which buckets to include in the job.
S3BucketDefinitionForJob
data S3BucketDefinitionForJob Source #
Specifies an Amazon Web Services account that owns S3 buckets for a classification job to analyze, and one or more specific buckets to analyze for that account.
See: newS3BucketDefinitionForJob smart constructor.
Constructors
| S3BucketDefinitionForJob' | |
Instances
newS3BucketDefinitionForJob Source #
Create a value of S3BucketDefinitionForJob with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:S3BucketDefinitionForJob', s3BucketDefinitionForJob_accountId - The unique identifier for the Amazon Web Services account that owns the
buckets.
$sel:buckets:S3BucketDefinitionForJob', s3BucketDefinitionForJob_buckets - An array that lists the names of the buckets.
s3BucketDefinitionForJob_accountId :: Lens' S3BucketDefinitionForJob Text Source #
The unique identifier for the Amazon Web Services account that owns the buckets.
s3BucketDefinitionForJob_buckets :: Lens' S3BucketDefinitionForJob [Text] Source #
An array that lists the names of the buckets.
S3BucketOwner
data S3BucketOwner Source #
Provides information about the Amazon Web Services account that owns an S3 bucket.
See: newS3BucketOwner smart constructor.
Constructors
| S3BucketOwner' | |
Instances
newS3BucketOwner :: S3BucketOwner Source #
Create a value of S3BucketOwner with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:displayName:S3BucketOwner', s3BucketOwner_displayName - The display name of the account that owns the bucket.
$sel:id:S3BucketOwner', s3BucketOwner_id - The canonical user ID for the account that owns the bucket.
s3BucketOwner_displayName :: Lens' S3BucketOwner (Maybe Text) Source #
The display name of the account that owns the bucket.
s3BucketOwner_id :: Lens' S3BucketOwner (Maybe Text) Source #
The canonical user ID for the account that owns the bucket.
S3ClassificationScope
data S3ClassificationScope Source #
Specifies the S3 buckets that are excluded from automated sensitive data discovery for an Amazon Macie account.
See: newS3ClassificationScope smart constructor.
Constructors
| S3ClassificationScope' | |
Fields
| |
Instances
newS3ClassificationScope Source #
Arguments
| :: S3ClassificationScopeExclusion | |
| -> S3ClassificationScope |
Create a value of S3ClassificationScope with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:excludes:S3ClassificationScope', s3ClassificationScope_excludes - The S3 buckets that are excluded.
s3ClassificationScope_excludes :: Lens' S3ClassificationScope S3ClassificationScopeExclusion Source #
The S3 buckets that are excluded.
S3ClassificationScopeExclusion
data S3ClassificationScopeExclusion Source #
Specifies the names of the S3 buckets that are excluded from automated sensitive data discovery.
See: newS3ClassificationScopeExclusion smart constructor.
Constructors
| S3ClassificationScopeExclusion' | |
Fields
| |
Instances
newS3ClassificationScopeExclusion :: S3ClassificationScopeExclusion Source #
Create a value of S3ClassificationScopeExclusion with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:bucketNames:S3ClassificationScopeExclusion', s3ClassificationScopeExclusion_bucketNames - An array of strings, one for each S3 bucket that is excluded. Each
string is the full name of an excluded bucket.
s3ClassificationScopeExclusion_bucketNames :: Lens' S3ClassificationScopeExclusion [Text] Source #
An array of strings, one for each S3 bucket that is excluded. Each string is the full name of an excluded bucket.
S3ClassificationScopeExclusionUpdate
data S3ClassificationScopeExclusionUpdate Source #
Specifies S3 buckets to add or remove from the exclusion list defined by the classification scope for an Amazon Macie account.
See: newS3ClassificationScopeExclusionUpdate smart constructor.
Constructors
| S3ClassificationScopeExclusionUpdate' | |
Fields
| |
Instances
newS3ClassificationScopeExclusionUpdate Source #
Create a value of S3ClassificationScopeExclusionUpdate with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:bucketNames:S3ClassificationScopeExclusionUpdate', s3ClassificationScopeExclusionUpdate_bucketNames - Depending on the value specified for the update operation
(ClassificationScopeUpdateOperation), an array of strings that: lists
the names of buckets to add or remove from the list, or specifies a new
set of bucket names that overwrites all existing names in the list. Each
string must be the full name of an S3 bucket. Values are case sensitive.
$sel:operation:S3ClassificationScopeExclusionUpdate', s3ClassificationScopeExclusionUpdate_operation - Specifies how to apply the changes to the exclusion list. Valid values
are:
- ADD - Append the specified bucket names to the current list.
- REMOVE - Remove the specified bucket names from the current list.
- REPLACE - Overwrite the current list with the specified list of bucket names. If you specify this value, Amazon Macie removes all existing names from the list and adds all the specified names to the list.
s3ClassificationScopeExclusionUpdate_bucketNames :: Lens' S3ClassificationScopeExclusionUpdate [Text] Source #
Depending on the value specified for the update operation (ClassificationScopeUpdateOperation), an array of strings that: lists the names of buckets to add or remove from the list, or specifies a new set of bucket names that overwrites all existing names in the list. Each string must be the full name of an S3 bucket. Values are case sensitive.
s3ClassificationScopeExclusionUpdate_operation :: Lens' S3ClassificationScopeExclusionUpdate ClassificationScopeUpdateOperation Source #
Specifies how to apply the changes to the exclusion list. Valid values are:
- ADD - Append the specified bucket names to the current list.
- REMOVE - Remove the specified bucket names from the current list.
- REPLACE - Overwrite the current list with the specified list of bucket names. If you specify this value, Amazon Macie removes all existing names from the list and adds all the specified names to the list.
S3ClassificationScopeUpdate
data S3ClassificationScopeUpdate Source #
Specifies changes to the list of S3 buckets that are excluded from automated sensitive data discovery for an Amazon Macie account.
See: newS3ClassificationScopeUpdate smart constructor.
Constructors
| S3ClassificationScopeUpdate' | |
Fields
| |
Instances
newS3ClassificationScopeUpdate Source #
Create a value of S3ClassificationScopeUpdate with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:excludes:S3ClassificationScopeUpdate', s3ClassificationScopeUpdate_excludes - The names of the S3 buckets to add or remove from the list.
s3ClassificationScopeUpdate_excludes :: Lens' S3ClassificationScopeUpdate S3ClassificationScopeExclusionUpdate Source #
The names of the S3 buckets to add or remove from the list.
S3Destination
data S3Destination Source #
Specifies an S3 bucket to store data classification results in, and the encryption settings to use when storing results in that bucket.
See: newS3Destination smart constructor.
Constructors
| S3Destination' | |
Fields
| |
Instances
Create a value of S3Destination with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:keyPrefix:S3Destination', s3Destination_keyPrefix - The path prefix to use in the path to the location in the bucket. This
prefix specifies where to store classification results in the bucket.
$sel:bucketName:S3Destination', s3Destination_bucketName - The name of the bucket.
$sel:kmsKeyArn:S3Destination', s3Destination_kmsKeyArn - The Amazon Resource Name (ARN) of the customer managed KMS key to use
for encryption of the results. This must be the ARN of an existing,
symmetric encryption KMS key that's in the same Amazon Web Services
Region as the bucket.
s3Destination_keyPrefix :: Lens' S3Destination (Maybe Text) Source #
The path prefix to use in the path to the location in the bucket. This prefix specifies where to store classification results in the bucket.
s3Destination_bucketName :: Lens' S3Destination Text Source #
The name of the bucket.
s3Destination_kmsKeyArn :: Lens' S3Destination Text Source #
The Amazon Resource Name (ARN) of the customer managed KMS key to use for encryption of the results. This must be the ARN of an existing, symmetric encryption KMS key that's in the same Amazon Web Services Region as the bucket.
S3JobDefinition
data S3JobDefinition Source #
Specifies which S3 buckets contain the objects that a classification job analyzes, and the scope of that analysis. The bucket specification can be static (bucketDefinitions) or dynamic (bucketCriteria). If it's static, the job analyzes objects in the same predefined set of buckets each time the job runs. If it's dynamic, the job analyzes objects in any buckets that match the specified criteria each time the job starts to run.
See: newS3JobDefinition smart constructor.
Constructors
| S3JobDefinition' | |
Fields
| |
Instances
newS3JobDefinition :: S3JobDefinition Source #
Create a value of S3JobDefinition with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:bucketCriteria:S3JobDefinition', s3JobDefinition_bucketCriteria - The property- and tag-based conditions that determine which S3 buckets
to include or exclude from the analysis. Each time the job runs, the job
uses these criteria to determine which buckets contain objects to
analyze. A job's definition can contain a bucketCriteria object or a
bucketDefinitions array, not both.
$sel:bucketDefinitions:S3JobDefinition', s3JobDefinition_bucketDefinitions - An array of objects, one for each Amazon Web Services account that owns
specific S3 buckets to analyze. Each object specifies the account ID for
an account and one or more buckets to analyze for that account. A job's
definition can contain a bucketDefinitions array or a bucketCriteria
object, not both.
$sel:scoping:S3JobDefinition', s3JobDefinition_scoping - The property- and tag-based conditions that determine which S3 objects
to include or exclude from the analysis. Each time the job runs, the job
uses these criteria to determine which objects to analyze.
s3JobDefinition_bucketCriteria :: Lens' S3JobDefinition (Maybe S3BucketCriteriaForJob) Source #
The property- and tag-based conditions that determine which S3 buckets to include or exclude from the analysis. Each time the job runs, the job uses these criteria to determine which buckets contain objects to analyze. A job's definition can contain a bucketCriteria object or a bucketDefinitions array, not both.
s3JobDefinition_bucketDefinitions :: Lens' S3JobDefinition (Maybe [S3BucketDefinitionForJob]) Source #
An array of objects, one for each Amazon Web Services account that owns specific S3 buckets to analyze. Each object specifies the account ID for an account and one or more buckets to analyze for that account. A job's definition can contain a bucketDefinitions array or a bucketCriteria object, not both.
s3JobDefinition_scoping :: Lens' S3JobDefinition (Maybe Scoping) Source #
The property- and tag-based conditions that determine which S3 objects to include or exclude from the analysis. Each time the job runs, the job uses these criteria to determine which objects to analyze.
S3Object
Provides information about the S3 object that a finding applies to.
See: newS3Object smart constructor.
Constructors
| S3Object' | |
Fields
| |
Instances
newS3Object :: S3Object Source #
Create a value of S3Object with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:bucketArn:S3Object', s3Object_bucketArn - The Amazon Resource Name (ARN) of the bucket that contains the object.
$sel:eTag:S3Object', s3Object_eTag - The entity tag (ETag) that identifies the affected version of the
object. If the object was overwritten or changed after Amazon Macie
produced the finding, this value might be different from the current
ETag for the object.
$sel:extension:S3Object', s3Object_extension - The file name extension of the object. If the object doesn't have a
file name extension, this value is "".
S3Object, s3Object_key - The full key (name) that's assigned to the object.
$sel:lastModified:S3Object', s3Object_lastModified - The date and time, in UTC and extended ISO 8601 format, when the object
was last modified.
$sel:path:S3Object', s3Object_path - The path to the object, including the full key (name).
$sel:publicAccess:S3Object', s3Object_publicAccess - Specifies whether the object is publicly accessible due to the
combination of permissions settings that apply to the object.
$sel:serverSideEncryption:S3Object', s3Object_serverSideEncryption - The type of server-side encryption that's used to encrypt the object.
$sel:size:S3Object', s3Object_size - The total storage size, in bytes, of the object.
$sel:storageClass:S3Object', s3Object_storageClass - The storage class of the object.
$sel:tags:S3Object', s3Object_tags - The tags that are associated with the object.
$sel:versionId:S3Object', s3Object_versionId - The identifier for the affected version of the object.
s3Object_bucketArn :: Lens' S3Object (Maybe Text) Source #
The Amazon Resource Name (ARN) of the bucket that contains the object.
s3Object_eTag :: Lens' S3Object (Maybe Text) Source #
The entity tag (ETag) that identifies the affected version of the object. If the object was overwritten or changed after Amazon Macie produced the finding, this value might be different from the current ETag for the object.
s3Object_extension :: Lens' S3Object (Maybe Text) Source #
The file name extension of the object. If the object doesn't have a file name extension, this value is "".
s3Object_key :: Lens' S3Object (Maybe Text) Source #
The full key (name) that's assigned to the object.
s3Object_lastModified :: Lens' S3Object (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the object was last modified.
s3Object_path :: Lens' S3Object (Maybe Text) Source #
The path to the object, including the full key (name).
s3Object_publicAccess :: Lens' S3Object (Maybe Bool) Source #
Specifies whether the object is publicly accessible due to the combination of permissions settings that apply to the object.
s3Object_serverSideEncryption :: Lens' S3Object (Maybe ServerSideEncryption) Source #
The type of server-side encryption that's used to encrypt the object.
s3Object_size :: Lens' S3Object (Maybe Integer) Source #
The total storage size, in bytes, of the object.
s3Object_storageClass :: Lens' S3Object (Maybe StorageClass) Source #
The storage class of the object.
s3Object_tags :: Lens' S3Object (Maybe [KeyValuePair]) Source #
The tags that are associated with the object.
s3Object_versionId :: Lens' S3Object (Maybe Text) Source #
The identifier for the affected version of the object.
S3WordsList
data S3WordsList Source #
Provides information about an S3 object that lists specific text to ignore.
See: newS3WordsList smart constructor.
Constructors
| S3WordsList' | |
Fields
| |
Instances
Create a value of S3WordsList with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:bucketName:S3WordsList', s3WordsList_bucketName - The full name of the S3 bucket that contains the object.
$sel:objectKey:S3WordsList', s3WordsList_objectKey - The full name (key) of the object.
s3WordsList_bucketName :: Lens' S3WordsList Text Source #
The full name of the S3 bucket that contains the object.
s3WordsList_objectKey :: Lens' S3WordsList Text Source #
The full name (key) of the object.
Scoping
Specifies one or more property- and tag-based conditions that define criteria for including or excluding S3 objects from a classification job. Exclude conditions take precedence over include conditions.
See: newScoping smart constructor.
Constructors
| Scoping' | |
Fields
| |
Instances
| FromJSON Scoping Source # | |
| ToJSON Scoping Source # | |
Defined in Amazonka.MacieV2.Types.Scoping | |
| Generic Scoping Source # | |
| Read Scoping Source # | |
| Show Scoping Source # | |
| NFData Scoping Source # | |
Defined in Amazonka.MacieV2.Types.Scoping | |
| Eq Scoping Source # | |
| Hashable Scoping Source # | |
Defined in Amazonka.MacieV2.Types.Scoping | |
| type Rep Scoping Source # | |
Defined in Amazonka.MacieV2.Types.Scoping type Rep Scoping = D1 ('MetaData "Scoping" "Amazonka.MacieV2.Types.Scoping" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "Scoping'" 'PrefixI 'True) (S1 ('MetaSel ('Just "excludes") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe JobScopingBlock)) :*: S1 ('MetaSel ('Just "includes") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe JobScopingBlock)))) | |
newScoping :: Scoping Source #
Create a value of Scoping with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:excludes:Scoping', scoping_excludes - The property- and tag-based conditions that determine which objects to
exclude from the analysis.
$sel:includes:Scoping', scoping_includes - The property- and tag-based conditions that determine which objects to
include in the analysis.
scoping_excludes :: Lens' Scoping (Maybe JobScopingBlock) Source #
The property- and tag-based conditions that determine which objects to exclude from the analysis.
scoping_includes :: Lens' Scoping (Maybe JobScopingBlock) Source #
The property- and tag-based conditions that determine which objects to include in the analysis.
SearchResourcesBucketCriteria
data SearchResourcesBucketCriteria Source #
Specifies property- and tag-based conditions that define filter criteria for including or excluding S3 buckets from the query results. Exclude conditions take precedence over include conditions.
See: newSearchResourcesBucketCriteria smart constructor.
Constructors
| SearchResourcesBucketCriteria' | |
Fields
| |
Instances
newSearchResourcesBucketCriteria :: SearchResourcesBucketCriteria Source #
Create a value of SearchResourcesBucketCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:excludes:SearchResourcesBucketCriteria', searchResourcesBucketCriteria_excludes - The property- and tag-based conditions that determine which buckets to
exclude from the results.
$sel:includes:SearchResourcesBucketCriteria', searchResourcesBucketCriteria_includes - The property- and tag-based conditions that determine which buckets to
include in the results.
searchResourcesBucketCriteria_excludes :: Lens' SearchResourcesBucketCriteria (Maybe SearchResourcesCriteriaBlock) Source #
The property- and tag-based conditions that determine which buckets to exclude from the results.
searchResourcesBucketCriteria_includes :: Lens' SearchResourcesBucketCriteria (Maybe SearchResourcesCriteriaBlock) Source #
The property- and tag-based conditions that determine which buckets to include in the results.
SearchResourcesCriteria
data SearchResourcesCriteria Source #
Specifies a property- or tag-based filter condition for including or excluding Amazon Web Services resources from the query results.
See: newSearchResourcesCriteria smart constructor.
Constructors
| SearchResourcesCriteria' | |
Fields
| |
Instances
newSearchResourcesCriteria :: SearchResourcesCriteria Source #
Create a value of SearchResourcesCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:simpleCriterion:SearchResourcesCriteria', searchResourcesCriteria_simpleCriterion - A property-based condition that defines a property, operator, and one or
more values for including or excluding resources from the results.
$sel:tagCriterion:SearchResourcesCriteria', searchResourcesCriteria_tagCriterion - A tag-based condition that defines an operator and tag keys, tag values,
or tag key and value pairs for including or excluding resources from the
results.
searchResourcesCriteria_simpleCriterion :: Lens' SearchResourcesCriteria (Maybe SearchResourcesSimpleCriterion) Source #
A property-based condition that defines a property, operator, and one or more values for including or excluding resources from the results.
searchResourcesCriteria_tagCriterion :: Lens' SearchResourcesCriteria (Maybe SearchResourcesTagCriterion) Source #
A tag-based condition that defines an operator and tag keys, tag values, or tag key and value pairs for including or excluding resources from the results.
SearchResourcesCriteriaBlock
data SearchResourcesCriteriaBlock Source #
Specifies property- and tag-based conditions that define filter criteria for including or excluding Amazon Web Services resources from the query results.
See: newSearchResourcesCriteriaBlock smart constructor.
Constructors
| SearchResourcesCriteriaBlock' | |
Fields
| |
Instances
newSearchResourcesCriteriaBlock :: SearchResourcesCriteriaBlock Source #
Create a value of SearchResourcesCriteriaBlock with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:and:SearchResourcesCriteriaBlock', searchResourcesCriteriaBlock_and - An array of objects, one for each property- or tag-based condition that
includes or excludes resources from the query results. If you specify
more than one condition, Amazon Macie uses AND logic to join the
conditions.
searchResourcesCriteriaBlock_and :: Lens' SearchResourcesCriteriaBlock (Maybe [SearchResourcesCriteria]) Source #
An array of objects, one for each property- or tag-based condition that includes or excludes resources from the query results. If you specify more than one condition, Amazon Macie uses AND logic to join the conditions.
SearchResourcesSimpleCriterion
data SearchResourcesSimpleCriterion Source #
Specifies a property-based filter condition that determines which Amazon Web Services resources are included or excluded from the query results.
See: newSearchResourcesSimpleCriterion smart constructor.
Constructors
| SearchResourcesSimpleCriterion' | |
Fields
| |
Instances
newSearchResourcesSimpleCriterion :: SearchResourcesSimpleCriterion Source #
Create a value of SearchResourcesSimpleCriterion with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:SearchResourcesSimpleCriterion', searchResourcesSimpleCriterion_comparator - The operator to use in the condition. Valid values are EQ (equals) and
NE (not equals).
$sel:key:SearchResourcesSimpleCriterion', searchResourcesSimpleCriterion_key - The property to use in the condition.
$sel:values:SearchResourcesSimpleCriterion', searchResourcesSimpleCriterion_values - An array that lists one or more values to use in the condition. If you
specify multiple values, Amazon Macie uses OR logic to join the values.
Valid values for each supported property (key) are:
- ACCOUNT_ID - A string that represents the unique identifier for the Amazon Web Services account that owns the resource.
- S3_BUCKET_EFFECTIVE_PERMISSION - A string that represents an enumerated value that Macie defines for the BucketPublicAccess.effectivePermission property of an S3 bucket.
- S3_BUCKET_NAME - A string that represents the name of an S3 bucket.
- S3_BUCKET_SHARED_ACCESS - A string that represents an enumerated value that Macie defines for the BucketMetadata.sharedAccess property of an S3 bucket.
Values are case sensitive. Also, Macie doesn't support use of partial values or wildcard characters in values.
searchResourcesSimpleCriterion_comparator :: Lens' SearchResourcesSimpleCriterion (Maybe SearchResourcesComparator) Source #
The operator to use in the condition. Valid values are EQ (equals) and NE (not equals).
searchResourcesSimpleCriterion_key :: Lens' SearchResourcesSimpleCriterion (Maybe SearchResourcesSimpleCriterionKey) Source #
The property to use in the condition.
searchResourcesSimpleCriterion_values :: Lens' SearchResourcesSimpleCriterion (Maybe [Text]) Source #
An array that lists one or more values to use in the condition. If you specify multiple values, Amazon Macie uses OR logic to join the values. Valid values for each supported property (key) are:
- ACCOUNT_ID - A string that represents the unique identifier for the Amazon Web Services account that owns the resource.
- S3_BUCKET_EFFECTIVE_PERMISSION - A string that represents an enumerated value that Macie defines for the BucketPublicAccess.effectivePermission property of an S3 bucket.
- S3_BUCKET_NAME - A string that represents the name of an S3 bucket.
- S3_BUCKET_SHARED_ACCESS - A string that represents an enumerated value that Macie defines for the BucketMetadata.sharedAccess property of an S3 bucket.
Values are case sensitive. Also, Macie doesn't support use of partial values or wildcard characters in values.
SearchResourcesSortCriteria
data SearchResourcesSortCriteria Source #
Specifies criteria for sorting the results of a query for information about Amazon Web Services resources that Amazon Macie monitors and analyzes.
See: newSearchResourcesSortCriteria smart constructor.
Constructors
| SearchResourcesSortCriteria' | |
Fields
| |
Instances
newSearchResourcesSortCriteria :: SearchResourcesSortCriteria Source #
Create a value of SearchResourcesSortCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:attributeName:SearchResourcesSortCriteria', searchResourcesSortCriteria_attributeName - The property to sort the results by.
$sel:orderBy:SearchResourcesSortCriteria', searchResourcesSortCriteria_orderBy - The sort order to apply to the results, based on the value for the
property specified by the attributeName property. Valid values are: ASC,
sort the results in ascending order; and, DESC, sort the results in
descending order.
searchResourcesSortCriteria_attributeName :: Lens' SearchResourcesSortCriteria (Maybe SearchResourcesSortAttributeName) Source #
The property to sort the results by.
searchResourcesSortCriteria_orderBy :: Lens' SearchResourcesSortCriteria (Maybe OrderBy) Source #
The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
SearchResourcesTagCriterion
data SearchResourcesTagCriterion Source #
Specifies a tag-based filter condition that determines which Amazon Web Services resources are included or excluded from the query results.
See: newSearchResourcesTagCriterion smart constructor.
Constructors
| SearchResourcesTagCriterion' | |
Fields
| |
Instances
newSearchResourcesTagCriterion :: SearchResourcesTagCriterion Source #
Create a value of SearchResourcesTagCriterion with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:SearchResourcesTagCriterion', searchResourcesTagCriterion_comparator - The operator to use in the condition. Valid values are EQ (equals) and
NE (not equals).
$sel:tagValues:SearchResourcesTagCriterion', searchResourcesTagCriterion_tagValues - The tag keys, tag values, or tag key and value pairs to use in the
condition.
searchResourcesTagCriterion_comparator :: Lens' SearchResourcesTagCriterion (Maybe SearchResourcesComparator) Source #
The operator to use in the condition. Valid values are EQ (equals) and NE (not equals).
searchResourcesTagCriterion_tagValues :: Lens' SearchResourcesTagCriterion (Maybe [SearchResourcesTagCriterionPair]) Source #
The tag keys, tag values, or tag key and value pairs to use in the condition.
SearchResourcesTagCriterionPair
data SearchResourcesTagCriterionPair Source #
Specifies a tag key, a tag value, or a tag key and value (as a pair) to use in a tag-based filter condition for a query. Tag keys and values are case sensitive. Also, Amazon Macie doesn't support use of partial values or wildcard characters in tag-based filter conditions.
See: newSearchResourcesTagCriterionPair smart constructor.
Constructors
| SearchResourcesTagCriterionPair' | |
Instances
newSearchResourcesTagCriterionPair :: SearchResourcesTagCriterionPair Source #
Create a value of SearchResourcesTagCriterionPair with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:key:SearchResourcesTagCriterionPair', searchResourcesTagCriterionPair_key - The value for the tag key to use in the condition.
$sel:value:SearchResourcesTagCriterionPair', searchResourcesTagCriterionPair_value - The tag value to use in the condition.
searchResourcesTagCriterionPair_key :: Lens' SearchResourcesTagCriterionPair (Maybe Text) Source #
The value for the tag key to use in the condition.
searchResourcesTagCriterionPair_value :: Lens' SearchResourcesTagCriterionPair (Maybe Text) Source #
The tag value to use in the condition.
SecurityHubConfiguration
data SecurityHubConfiguration Source #
Specifies configuration settings that determine which findings are published to Security Hub automatically. For information about how Macie publishes findings to Security Hub, see Amazon Macie integration with Security Hub in the Amazon Macie User Guide.
See: newSecurityHubConfiguration smart constructor.
Constructors
| SecurityHubConfiguration' | |
Fields
| |
Instances
newSecurityHubConfiguration Source #
Arguments
| :: Bool | |
| -> Bool |
|
| -> SecurityHubConfiguration |
Create a value of SecurityHubConfiguration with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:publishPolicyFindings:SecurityHubConfiguration', securityHubConfiguration_publishPolicyFindings - Specifies whether to publish policy findings to Security Hub. If you set
this value to true, Amazon Macie automatically publishes all new and
updated policy findings that weren't suppressed by a findings filter.
The default value is true.
$sel:publishClassificationFindings:SecurityHubConfiguration', securityHubConfiguration_publishClassificationFindings - Specifies whether to publish sensitive data findings to Security Hub. If
you set this value to true, Amazon Macie automatically publishes all
sensitive data findings that weren't suppressed by a findings filter.
The default value is false.
securityHubConfiguration_publishPolicyFindings :: Lens' SecurityHubConfiguration Bool Source #
Specifies whether to publish policy findings to Security Hub. If you set this value to true, Amazon Macie automatically publishes all new and updated policy findings that weren't suppressed by a findings filter. The default value is true.
securityHubConfiguration_publishClassificationFindings :: Lens' SecurityHubConfiguration Bool Source #
Specifies whether to publish sensitive data findings to Security Hub. If you set this value to true, Amazon Macie automatically publishes all sensitive data findings that weren't suppressed by a findings filter. The default value is false.
SensitiveDataItem
data SensitiveDataItem Source #
Provides information about the category, types, and occurrences of sensitive data that produced a sensitive data finding.
See: newSensitiveDataItem smart constructor.
Constructors
| SensitiveDataItem' | |
Fields
| |
Instances
newSensitiveDataItem :: SensitiveDataItem Source #
Create a value of SensitiveDataItem with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:category:SensitiveDataItem', sensitiveDataItem_category - The category of sensitive data that was detected. For example:
CREDENTIALS, for credentials data such as private keys or Amazon Web
Services secret access keys; FINANCIAL_INFORMATION, for financial data
such as credit card numbers; or, PERSONAL_INFORMATION, for personal
health information, such as health insurance identification numbers, or
personally identifiable information, such as passport numbers.
$sel:detections:SensitiveDataItem', sensitiveDataItem_detections - An array of objects, one for each type of sensitive data that was
detected. Each object reports the number of occurrences of a specific
type of sensitive data that was detected, and the location of up to 15
of those occurrences.
$sel:totalCount:SensitiveDataItem', sensitiveDataItem_totalCount - The total number of occurrences of the sensitive data that was detected.
sensitiveDataItem_category :: Lens' SensitiveDataItem (Maybe SensitiveDataItemCategory) Source #
The category of sensitive data that was detected. For example: CREDENTIALS, for credentials data such as private keys or Amazon Web Services secret access keys; FINANCIAL_INFORMATION, for financial data such as credit card numbers; or, PERSONAL_INFORMATION, for personal health information, such as health insurance identification numbers, or personally identifiable information, such as passport numbers.
sensitiveDataItem_detections :: Lens' SensitiveDataItem (Maybe [DefaultDetection]) Source #
An array of objects, one for each type of sensitive data that was detected. Each object reports the number of occurrences of a specific type of sensitive data that was detected, and the location of up to 15 of those occurrences.
sensitiveDataItem_totalCount :: Lens' SensitiveDataItem (Maybe Integer) Source #
The total number of occurrences of the sensitive data that was detected.
SensitivityAggregations
data SensitivityAggregations Source #
Provides aggregated statistical data for sensitive data discovery metrics that apply to S3 buckets. Each field contains aggregated data for all the buckets that have a sensitivity score (sensitivityScore) of a specified value or within a specified range (BucketStatisticsBySensitivity). If automated sensitive data discovery is currently disabled for your account, the value for each field is 0.
See: newSensitivityAggregations smart constructor.
Constructors
| SensitivityAggregations' | |
Fields
| |
Instances
newSensitivityAggregations :: SensitivityAggregations Source #
Create a value of SensitivityAggregations with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:classifiableSizeInBytes:SensitivityAggregations', sensitivityAggregations_classifiableSizeInBytes - The total storage size, in bytes, of all the objects that Amazon Macie
can analyze in the buckets. These objects use a supported storage class
and have a file name extension for a supported file or storage format.
If versioning is enabled for any of the buckets, this value is based on the size of the latest version of each applicable object in the buckets. This value doesn't reflect the storage size of all versions of all applicable objects in the buckets.
$sel:publiclyAccessibleCount:SensitivityAggregations', sensitivityAggregations_publiclyAccessibleCount - The total number of buckets that are publicly accessible based on a
combination of permissions settings for each bucket.
$sel:totalCount:SensitivityAggregations', sensitivityAggregations_totalCount - The total number of buckets.
$sel:totalSizeInBytes:SensitivityAggregations', sensitivityAggregations_totalSizeInBytes - The total storage size, in bytes, of the buckets.
If versioning is enabled for any of the buckets, this value is based on the size of the latest version of each object in the buckets. This value doesn't reflect the storage size of all versions of the objects in the buckets.
sensitivityAggregations_classifiableSizeInBytes :: Lens' SensitivityAggregations (Maybe Integer) Source #
The total storage size, in bytes, of all the objects that Amazon Macie can analyze in the buckets. These objects use a supported storage class and have a file name extension for a supported file or storage format.
If versioning is enabled for any of the buckets, this value is based on the size of the latest version of each applicable object in the buckets. This value doesn't reflect the storage size of all versions of all applicable objects in the buckets.
sensitivityAggregations_publiclyAccessibleCount :: Lens' SensitivityAggregations (Maybe Integer) Source #
The total number of buckets that are publicly accessible based on a combination of permissions settings for each bucket.
sensitivityAggregations_totalCount :: Lens' SensitivityAggregations (Maybe Integer) Source #
The total number of buckets.
sensitivityAggregations_totalSizeInBytes :: Lens' SensitivityAggregations (Maybe Integer) Source #
The total storage size, in bytes, of the buckets.
If versioning is enabled for any of the buckets, this value is based on the size of the latest version of each object in the buckets. This value doesn't reflect the storage size of all versions of the objects in the buckets.
SensitivityInspectionTemplateExcludes
data SensitivityInspectionTemplateExcludes Source #
Specifies managed data identifiers to exclude (not use) when performing automated sensitive data discovery for an Amazon Macie account. For information about the managed data identifiers that Amazon Macie currently provides, see Using managed data identifiers in the Amazon Macie User Guide.
See: newSensitivityInspectionTemplateExcludes smart constructor.
Constructors
| SensitivityInspectionTemplateExcludes' | |
Fields
| |
Instances
newSensitivityInspectionTemplateExcludes :: SensitivityInspectionTemplateExcludes Source #
Create a value of SensitivityInspectionTemplateExcludes with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:managedDataIdentifierIds:SensitivityInspectionTemplateExcludes', sensitivityInspectionTemplateExcludes_managedDataIdentifierIds - An array of unique identifiers, one for each managed data identifier to
exclude. To retrieve a list of valid values, use the
ListManagedDataIdentifiers operation.
sensitivityInspectionTemplateExcludes_managedDataIdentifierIds :: Lens' SensitivityInspectionTemplateExcludes (Maybe [Text]) Source #
An array of unique identifiers, one for each managed data identifier to exclude. To retrieve a list of valid values, use the ListManagedDataIdentifiers operation.
SensitivityInspectionTemplateIncludes
data SensitivityInspectionTemplateIncludes Source #
Specifies the allow lists, custom data identifiers, and managed data identifiers to include (use) when performing automated sensitive data discovery for an Amazon Macie account. The configuration must specify at least one custom data identifier or managed data identifier. For information about the managed data identifiers that Amazon Macie currently provides, see Using managed data identifiers in the Amazon Macie User Guide.
See: newSensitivityInspectionTemplateIncludes smart constructor.
Constructors
| SensitivityInspectionTemplateIncludes' | |
Fields
| |
Instances
newSensitivityInspectionTemplateIncludes :: SensitivityInspectionTemplateIncludes Source #
Create a value of SensitivityInspectionTemplateIncludes with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:allowListIds:SensitivityInspectionTemplateIncludes', sensitivityInspectionTemplateIncludes_allowListIds - An array of unique identifiers, one for each allow list to include.
$sel:customDataIdentifierIds:SensitivityInspectionTemplateIncludes', sensitivityInspectionTemplateIncludes_customDataIdentifierIds - An array of unique identifiers, one for each custom data identifier to
include.
$sel:managedDataIdentifierIds:SensitivityInspectionTemplateIncludes', sensitivityInspectionTemplateIncludes_managedDataIdentifierIds - An array of unique identifiers, one for each managed data identifier to
include.
Amazon Macie uses these managed data identifiers in addition to managed data identifiers that are subsequently released and recommended for automated sensitive data discovery. To retrieve a list of valid values for the managed data identifiers that are currently available, use the ListManagedDataIdentifiers operation.
sensitivityInspectionTemplateIncludes_allowListIds :: Lens' SensitivityInspectionTemplateIncludes (Maybe [Text]) Source #
An array of unique identifiers, one for each allow list to include.
sensitivityInspectionTemplateIncludes_customDataIdentifierIds :: Lens' SensitivityInspectionTemplateIncludes (Maybe [Text]) Source #
An array of unique identifiers, one for each custom data identifier to include.
sensitivityInspectionTemplateIncludes_managedDataIdentifierIds :: Lens' SensitivityInspectionTemplateIncludes (Maybe [Text]) Source #
An array of unique identifiers, one for each managed data identifier to include.
Amazon Macie uses these managed data identifiers in addition to managed data identifiers that are subsequently released and recommended for automated sensitive data discovery. To retrieve a list of valid values for the managed data identifiers that are currently available, use the ListManagedDataIdentifiers operation.
SensitivityInspectionTemplatesEntry
data SensitivityInspectionTemplatesEntry Source #
Provides information about the sensitivity inspection template for an Amazon Macie account. Macie uses the template's settings when it performs automated sensitive data discovery for the account.
See: newSensitivityInspectionTemplatesEntry smart constructor.
Constructors
| SensitivityInspectionTemplatesEntry' | |
Instances
newSensitivityInspectionTemplatesEntry :: SensitivityInspectionTemplatesEntry Source #
Create a value of SensitivityInspectionTemplatesEntry with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:id:SensitivityInspectionTemplatesEntry', sensitivityInspectionTemplatesEntry_id - The unique identifier for the sensitivity inspection template for the
account.
$sel:name:SensitivityInspectionTemplatesEntry', sensitivityInspectionTemplatesEntry_name - The name of the sensitivity inspection template for the account.
sensitivityInspectionTemplatesEntry_id :: Lens' SensitivityInspectionTemplatesEntry (Maybe Text) Source #
The unique identifier for the sensitivity inspection template for the account.
sensitivityInspectionTemplatesEntry_name :: Lens' SensitivityInspectionTemplatesEntry (Maybe Text) Source #
The name of the sensitivity inspection template for the account.
ServerSideEncryption
data ServerSideEncryption Source #
Provides information about the server-side encryption settings for an S3 bucket or S3 object.
See: newServerSideEncryption smart constructor.
Constructors
| ServerSideEncryption' | |
Fields
| |
Instances
newServerSideEncryption :: ServerSideEncryption Source #
Create a value of ServerSideEncryption with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:encryptionType:ServerSideEncryption', serverSideEncryption_encryptionType - The server-side encryption algorithm that's used when storing data in
the bucket or object. If default encryption is disabled for the bucket
or the object isn't encrypted using server-side encryption, this value
is NONE.
$sel:kmsMasterKeyId:ServerSideEncryption', serverSideEncryption_kmsMasterKeyId - The Amazon Resource Name (ARN) or unique identifier (key ID) for the KMS
key that's used to encrypt data in the bucket or the object. This value
is null if an KMS key isn't used to encrypt the data.
serverSideEncryption_encryptionType :: Lens' ServerSideEncryption (Maybe EncryptionType) Source #
The server-side encryption algorithm that's used when storing data in the bucket or object. If default encryption is disabled for the bucket or the object isn't encrypted using server-side encryption, this value is NONE.
serverSideEncryption_kmsMasterKeyId :: Lens' ServerSideEncryption (Maybe Text) Source #
The Amazon Resource Name (ARN) or unique identifier (key ID) for the KMS key that's used to encrypt data in the bucket or the object. This value is null if an KMS key isn't used to encrypt the data.
ServiceLimit
data ServiceLimit Source #
Specifies a current quota for an Amazon Macie account.
See: newServiceLimit smart constructor.
Constructors
| ServiceLimit' | |
Fields
| |
Instances
newServiceLimit :: ServiceLimit Source #
Create a value of ServiceLimit with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:isServiceLimited:ServiceLimit', serviceLimit_isServiceLimited - Specifies whether the account has met the quota that corresponds to the
metric specified by the UsageByAccount.type field in the response.
$sel:unit:ServiceLimit', serviceLimit_unit - The unit of measurement for the value specified by the value field.
$sel:value:ServiceLimit', serviceLimit_value - The value for the metric specified by the UsageByAccount.type field in
the response.
serviceLimit_isServiceLimited :: Lens' ServiceLimit (Maybe Bool) Source #
Specifies whether the account has met the quota that corresponds to the metric specified by the UsageByAccount.type field in the response.
serviceLimit_unit :: Lens' ServiceLimit (Maybe Unit) Source #
The unit of measurement for the value specified by the value field.
serviceLimit_value :: Lens' ServiceLimit (Maybe Integer) Source #
The value for the metric specified by the UsageByAccount.type field in the response.
SessionContext
data SessionContext Source #
Provides information about a session that was created for an entity that performed an action by using temporary security credentials.
See: newSessionContext smart constructor.
Constructors
| SessionContext' | |
Fields
| |
Instances
newSessionContext :: SessionContext Source #
Create a value of SessionContext with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:attributes:SessionContext', sessionContext_attributes - The date and time when the credentials were issued, and whether the
credentials were authenticated with a multi-factor authentication (MFA)
device.
$sel:sessionIssuer:SessionContext', sessionContext_sessionIssuer - The source and type of credentials that were issued to the entity.
sessionContext_attributes :: Lens' SessionContext (Maybe SessionContextAttributes) Source #
The date and time when the credentials were issued, and whether the credentials were authenticated with a multi-factor authentication (MFA) device.
sessionContext_sessionIssuer :: Lens' SessionContext (Maybe SessionIssuer) Source #
The source and type of credentials that were issued to the entity.
SessionContextAttributes
data SessionContextAttributes Source #
Provides information about the context in which temporary security credentials were issued to an entity.
See: newSessionContextAttributes smart constructor.
Constructors
| SessionContextAttributes' | |
Fields
| |
Instances
newSessionContextAttributes :: SessionContextAttributes Source #
Create a value of SessionContextAttributes with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:creationDate:SessionContextAttributes', sessionContextAttributes_creationDate - The date and time, in UTC and ISO 8601 format, when the credentials were
issued.
$sel:mfaAuthenticated:SessionContextAttributes', sessionContextAttributes_mfaAuthenticated - Specifies whether the credentials were authenticated with a multi-factor
authentication (MFA) device.
sessionContextAttributes_creationDate :: Lens' SessionContextAttributes (Maybe UTCTime) Source #
The date and time, in UTC and ISO 8601 format, when the credentials were issued.
sessionContextAttributes_mfaAuthenticated :: Lens' SessionContextAttributes (Maybe Bool) Source #
Specifies whether the credentials were authenticated with a multi-factor authentication (MFA) device.
SessionIssuer
data SessionIssuer Source #
Provides information about the source and type of temporary security credentials that were issued to an entity.
See: newSessionIssuer smart constructor.
Constructors
| SessionIssuer' | |
Fields
| |
Instances
newSessionIssuer :: SessionIssuer Source #
Create a value of SessionIssuer with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:SessionIssuer', sessionIssuer_accountId - The unique identifier for the Amazon Web Services account that owns the
entity that was used to get the credentials.
$sel:arn:SessionIssuer', sessionIssuer_arn - The Amazon Resource Name (ARN) of the source account, IAM user, or role
that was used to get the credentials.
$sel:principalId:SessionIssuer', sessionIssuer_principalId - The unique identifier for the entity that was used to get the
credentials.
$sel:type':SessionIssuer', sessionIssuer_type - The source of the temporary security credentials, such as Root, IAMUser,
or Role.
$sel:userName:SessionIssuer', sessionIssuer_userName - The name or alias of the user or role that issued the session. This
value is null if the credentials were obtained from a root account that
doesn't have an alias.
sessionIssuer_accountId :: Lens' SessionIssuer (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that owns the entity that was used to get the credentials.
sessionIssuer_arn :: Lens' SessionIssuer (Maybe Text) Source #
The Amazon Resource Name (ARN) of the source account, IAM user, or role that was used to get the credentials.
sessionIssuer_principalId :: Lens' SessionIssuer (Maybe Text) Source #
The unique identifier for the entity that was used to get the credentials.
sessionIssuer_type :: Lens' SessionIssuer (Maybe Text) Source #
The source of the temporary security credentials, such as Root, IAMUser, or Role.
sessionIssuer_userName :: Lens' SessionIssuer (Maybe Text) Source #
The name or alias of the user or role that issued the session. This value is null if the credentials were obtained from a root account that doesn't have an alias.
Severity
Provides the numerical and qualitative representations of a finding's severity.
See: newSeverity smart constructor.
Constructors
| Severity' | |
Fields
| |
Instances
| FromJSON Severity Source # | |
| Generic Severity Source # | |
| Read Severity Source # | |
| Show Severity Source # | |
| NFData Severity Source # | |
Defined in Amazonka.MacieV2.Types.Severity | |
| Eq Severity Source # | |
| Hashable Severity Source # | |
Defined in Amazonka.MacieV2.Types.Severity | |
| type Rep Severity Source # | |
Defined in Amazonka.MacieV2.Types.Severity type Rep Severity = D1 ('MetaData "Severity" "Amazonka.MacieV2.Types.Severity" "amazonka-maciev2-2.0-5WBPWSHaxt7LOrO1LzXg18" 'False) (C1 ('MetaCons "Severity'" 'PrefixI 'True) (S1 ('MetaSel ('Just "description") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe SeverityDescription)) :*: S1 ('MetaSel ('Just "score") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Integer)))) | |
newSeverity :: Severity Source #
Create a value of Severity with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:description:Severity', severity_description - The qualitative representation of the finding's severity, ranging from
Low (least severe) to High (most severe).
$sel:score:Severity', severity_score - The numerical representation of the finding's severity, ranging from 1
(least severe) to 3 (most severe).
severity_description :: Lens' Severity (Maybe SeverityDescription) Source #
The qualitative representation of the finding's severity, ranging from Low (least severe) to High (most severe).
severity_score :: Lens' Severity (Maybe Integer) Source #
The numerical representation of the finding's severity, ranging from 1 (least severe) to 3 (most severe).
SeverityLevel
data SeverityLevel Source #
Specifies a severity level for findings that a custom data identifier produces. A severity level determines which severity is assigned to the findings, based on the number of occurrences of text that matches the custom data identifier's detection criteria.
See: newSeverityLevel smart constructor.
Constructors
| SeverityLevel' | |
Fields
| |
Instances
Arguments
| :: Integer | |
| -> DataIdentifierSeverity | |
| -> SeverityLevel |
Create a value of SeverityLevel with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:occurrencesThreshold:SeverityLevel', severityLevel_occurrencesThreshold - The minimum number of occurrences of text that must match the custom
data identifier's detection criteria in order to produce a finding with
the specified severity (severity).
$sel:severity:SeverityLevel', severityLevel_severity - The severity to assign to a finding: if the number of occurrences is
greater than or equal to the specified threshold (occurrencesThreshold);
and, if applicable, the number of occurrences is less than the threshold
for the next consecutive severity level for the custom data identifier,
moving from LOW to HIGH.
severityLevel_occurrencesThreshold :: Lens' SeverityLevel Integer Source #
The minimum number of occurrences of text that must match the custom data identifier's detection criteria in order to produce a finding with the specified severity (severity).
severityLevel_severity :: Lens' SeverityLevel DataIdentifierSeverity Source #
The severity to assign to a finding: if the number of occurrences is greater than or equal to the specified threshold (occurrencesThreshold); and, if applicable, the number of occurrences is less than the threshold for the next consecutive severity level for the custom data identifier, moving from LOW to HIGH.
SimpleCriterionForJob
data SimpleCriterionForJob Source #
Specifies a property-based condition that determines whether an S3 bucket is included or excluded from a classification job.
See: newSimpleCriterionForJob smart constructor.
Constructors
| SimpleCriterionForJob' | |
Fields
| |
Instances
newSimpleCriterionForJob :: SimpleCriterionForJob Source #
Create a value of SimpleCriterionForJob with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:SimpleCriterionForJob', simpleCriterionForJob_comparator - The operator to use in the condition. Valid values are EQ (equals) and
NE (not equals).
$sel:key:SimpleCriterionForJob', simpleCriterionForJob_key - The property to use in the condition.
$sel:values:SimpleCriterionForJob', simpleCriterionForJob_values - An array that lists one or more values to use in the condition. If you
specify multiple values, Amazon Macie uses OR logic to join the values.
Valid values for each supported property (key) are:
- ACCOUNT_ID - A string that represents the unique identifier for the Amazon Web Services account that owns the bucket.
- S3_BUCKET_EFFECTIVE_PERMISSION - A string that represents an enumerated value that Macie defines for the BucketPublicAccess.effectivePermission property of a bucket.
- S3_BUCKET_NAME - A string that represents the name of a bucket.
- S3_BUCKET_SHARED_ACCESS - A string that represents an enumerated value that Macie defines for the BucketMetadata.sharedAccess property of a bucket.
Values are case sensitive. Also, Macie doesn't support use of partial values or wildcard characters in these values.
simpleCriterionForJob_comparator :: Lens' SimpleCriterionForJob (Maybe JobComparator) Source #
The operator to use in the condition. Valid values are EQ (equals) and NE (not equals).
simpleCriterionForJob_key :: Lens' SimpleCriterionForJob (Maybe SimpleCriterionKeyForJob) Source #
The property to use in the condition.
simpleCriterionForJob_values :: Lens' SimpleCriterionForJob (Maybe [Text]) Source #
An array that lists one or more values to use in the condition. If you specify multiple values, Amazon Macie uses OR logic to join the values. Valid values for each supported property (key) are:
- ACCOUNT_ID - A string that represents the unique identifier for the Amazon Web Services account that owns the bucket.
- S3_BUCKET_EFFECTIVE_PERMISSION - A string that represents an enumerated value that Macie defines for the BucketPublicAccess.effectivePermission property of a bucket.
- S3_BUCKET_NAME - A string that represents the name of a bucket.
- S3_BUCKET_SHARED_ACCESS - A string that represents an enumerated value that Macie defines for the BucketMetadata.sharedAccess property of a bucket.
Values are case sensitive. Also, Macie doesn't support use of partial values or wildcard characters in these values.
SimpleScopeTerm
data SimpleScopeTerm Source #
Specifies a property-based condition that determines whether an S3 object is included or excluded from a classification job.
See: newSimpleScopeTerm smart constructor.
Constructors
| SimpleScopeTerm' | |
Fields
| |
Instances
newSimpleScopeTerm :: SimpleScopeTerm Source #
Create a value of SimpleScopeTerm with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:SimpleScopeTerm', simpleScopeTerm_comparator - The operator to use in the condition. Valid values for each supported
property (key) are:
- OBJECT_EXTENSION - EQ (equals) or NE (not equals)
- OBJECT_KEY - STARTS_WITH
- OBJECT_LAST_MODIFIED_DATE - Any operator except CONTAINS
- OBJECT_SIZE - Any operator except CONTAINS
$sel:key:SimpleScopeTerm', simpleScopeTerm_key - The object property to use in the condition.
$sel:values:SimpleScopeTerm', simpleScopeTerm_values - An array that lists the values to use in the condition. If the value for
the key property is OBJECT_EXTENSION or OBJECT_KEY, this array can
specify multiple values and Amazon Macie uses OR logic to join the
values. Otherwise, this array can specify only one value.
Valid values for each supported property (key) are:
- OBJECT_EXTENSION - A string that represents the file name extension of an object. For example: docx or pdf
- OBJECT_KEY - A string that represents the key prefix (folder name or path) of an object. For example: logs or awslogs/eventlogs. This value applies a condition to objects whose keys (names) begin with the specified value.
- OBJECT_LAST_MODIFIED_DATE - The date and time (in UTC and extended ISO 8601 format) when an object was created or last changed, whichever is latest. For example: 2020-09-28T14:31:13Z
- OBJECT_SIZE - An integer that represents the storage size (in bytes) of an object.
Macie doesn't support use of wildcard characters in these values. Also, string values are case sensitive.
simpleScopeTerm_comparator :: Lens' SimpleScopeTerm (Maybe JobComparator) Source #
The operator to use in the condition. Valid values for each supported property (key) are:
- OBJECT_EXTENSION - EQ (equals) or NE (not equals)
- OBJECT_KEY - STARTS_WITH
- OBJECT_LAST_MODIFIED_DATE - Any operator except CONTAINS
- OBJECT_SIZE - Any operator except CONTAINS
simpleScopeTerm_key :: Lens' SimpleScopeTerm (Maybe ScopeFilterKey) Source #
The object property to use in the condition.
simpleScopeTerm_values :: Lens' SimpleScopeTerm (Maybe [Text]) Source #
An array that lists the values to use in the condition. If the value for the key property is OBJECT_EXTENSION or OBJECT_KEY, this array can specify multiple values and Amazon Macie uses OR logic to join the values. Otherwise, this array can specify only one value.
Valid values for each supported property (key) are:
- OBJECT_EXTENSION - A string that represents the file name extension of an object. For example: docx or pdf
- OBJECT_KEY - A string that represents the key prefix (folder name or path) of an object. For example: logs or awslogs/eventlogs. This value applies a condition to objects whose keys (names) begin with the specified value.
- OBJECT_LAST_MODIFIED_DATE - The date and time (in UTC and extended ISO 8601 format) when an object was created or last changed, whichever is latest. For example: 2020-09-28T14:31:13Z
- OBJECT_SIZE - An integer that represents the storage size (in bytes) of an object.
Macie doesn't support use of wildcard characters in these values. Also, string values are case sensitive.
SortCriteria
data SortCriteria Source #
Specifies criteria for sorting the results of a request for findings.
See: newSortCriteria smart constructor.
Constructors
| SortCriteria' | |
Fields
| |
Instances
newSortCriteria :: SortCriteria Source #
Create a value of SortCriteria with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:attributeName:SortCriteria', sortCriteria_attributeName - The name of the property to sort the results by. This value can be the
name of any property that Amazon Macie defines for a finding.
$sel:orderBy:SortCriteria', sortCriteria_orderBy - The sort order to apply to the results, based on the value for the
property specified by the attributeName property. Valid values are: ASC,
sort the results in ascending order; and, DESC, sort the results in
descending order.
sortCriteria_attributeName :: Lens' SortCriteria (Maybe Text) Source #
The name of the property to sort the results by. This value can be the name of any property that Amazon Macie defines for a finding.
sortCriteria_orderBy :: Lens' SortCriteria (Maybe OrderBy) Source #
The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
Statistics
data Statistics Source #
Provides processing statistics for a classification job.
See: newStatistics smart constructor.
Constructors
| Statistics' | |
Fields
| |
Instances
newStatistics :: Statistics Source #
Create a value of Statistics with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:approximateNumberOfObjectsToProcess:Statistics', statistics_approximateNumberOfObjectsToProcess - The approximate number of objects that the job has yet to process during
its current run.
$sel:numberOfRuns:Statistics', statistics_numberOfRuns - The number of times that the job has run.
statistics_approximateNumberOfObjectsToProcess :: Lens' Statistics (Maybe Double) Source #
The approximate number of objects that the job has yet to process during its current run.
statistics_numberOfRuns :: Lens' Statistics (Maybe Double) Source #
The number of times that the job has run.
SuppressDataIdentifier
data SuppressDataIdentifier Source #
Specifies a custom data identifier or managed data identifier that detected a type of sensitive data to start excluding or including in an S3 bucket's sensitivity score.
See: newSuppressDataIdentifier smart constructor.
Constructors
| SuppressDataIdentifier' | |
Fields
| |
Instances
newSuppressDataIdentifier :: SuppressDataIdentifier Source #
Create a value of SuppressDataIdentifier with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:id:SuppressDataIdentifier', suppressDataIdentifier_id - The unique identifier for the custom data identifier or managed data
identifier that detected the type of sensitive data to exclude or
include in the score.
$sel:type':SuppressDataIdentifier', suppressDataIdentifier_type - The type of data identifier that detected the sensitive data. Possible
values are: CUSTOM, for a custom data identifier; and, MANAGED, for a
managed data identifier.
suppressDataIdentifier_id :: Lens' SuppressDataIdentifier (Maybe Text) Source #
The unique identifier for the custom data identifier or managed data identifier that detected the type of sensitive data to exclude or include in the score.
suppressDataIdentifier_type :: Lens' SuppressDataIdentifier (Maybe DataIdentifierType) Source #
The type of data identifier that detected the sensitive data. Possible values are: CUSTOM, for a custom data identifier; and, MANAGED, for a managed data identifier.
TagCriterionForJob
data TagCriterionForJob Source #
Specifies a tag-based condition that determines whether an S3 bucket is included or excluded from a classification job.
See: newTagCriterionForJob smart constructor.
Constructors
| TagCriterionForJob' | |
Fields
| |
Instances
newTagCriterionForJob :: TagCriterionForJob Source #
Create a value of TagCriterionForJob with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:TagCriterionForJob', tagCriterionForJob_comparator - The operator to use in the condition. Valid values are EQ (equals) and
NE (not equals).
$sel:tagValues:TagCriterionForJob', tagCriterionForJob_tagValues - The tag keys, tag values, or tag key and value pairs to use in the
condition.
tagCriterionForJob_comparator :: Lens' TagCriterionForJob (Maybe JobComparator) Source #
The operator to use in the condition. Valid values are EQ (equals) and NE (not equals).
tagCriterionForJob_tagValues :: Lens' TagCriterionForJob (Maybe [TagCriterionPairForJob]) Source #
The tag keys, tag values, or tag key and value pairs to use in the condition.
TagCriterionPairForJob
data TagCriterionPairForJob Source #
Specifies a tag key, a tag value, or a tag key and value (as a pair) to use in a tag-based condition that determines whether an S3 bucket is included or excluded from a classification job. Tag keys and values are case sensitive. Also, Amazon Macie doesn't support use of partial values or wildcard characters in tag-based conditions.
See: newTagCriterionPairForJob smart constructor.
Constructors
| TagCriterionPairForJob' | |
Instances
newTagCriterionPairForJob :: TagCriterionPairForJob Source #
Create a value of TagCriterionPairForJob with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:key:TagCriterionPairForJob', tagCriterionPairForJob_key - The value for the tag key to use in the condition.
$sel:value:TagCriterionPairForJob', tagCriterionPairForJob_value - The tag value to use in the condition.
tagCriterionPairForJob_key :: Lens' TagCriterionPairForJob (Maybe Text) Source #
The value for the tag key to use in the condition.
tagCriterionPairForJob_value :: Lens' TagCriterionPairForJob (Maybe Text) Source #
The tag value to use in the condition.
TagScopeTerm
data TagScopeTerm Source #
Specifies a tag-based condition that determines whether an S3 object is included or excluded from a classification job.
See: newTagScopeTerm smart constructor.
Constructors
| TagScopeTerm' | |
Fields
| |
Instances
newTagScopeTerm :: TagScopeTerm Source #
Create a value of TagScopeTerm with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:TagScopeTerm', tagScopeTerm_comparator - The operator to use in the condition. Valid values are EQ (equals) or NE
(not equals).
TagScopeTerm, tagScopeTerm_key - The object property to use in the condition. The only valid value is
TAG.
$sel:tagValues:TagScopeTerm', tagScopeTerm_tagValues - The tag keys or tag key and value pairs to use in the condition. To
specify only tag keys in a condition, specify the keys in this array and
set the value for each associated tag value to an empty string.
$sel:target:TagScopeTerm', tagScopeTerm_target - The type of object to apply the condition to.
tagScopeTerm_comparator :: Lens' TagScopeTerm (Maybe JobComparator) Source #
The operator to use in the condition. Valid values are EQ (equals) or NE (not equals).
tagScopeTerm_key :: Lens' TagScopeTerm (Maybe Text) Source #
The object property to use in the condition. The only valid value is TAG.
tagScopeTerm_tagValues :: Lens' TagScopeTerm (Maybe [TagValuePair]) Source #
The tag keys or tag key and value pairs to use in the condition. To specify only tag keys in a condition, specify the keys in this array and set the value for each associated tag value to an empty string.
tagScopeTerm_target :: Lens' TagScopeTerm (Maybe TagTarget) Source #
The type of object to apply the condition to.
TagValuePair
data TagValuePair Source #
Specifies a tag key or tag key and value pair to use in a tag-based condition that determines whether an S3 object is included or excluded from a classification job. Tag keys and values are case sensitive. Also, Amazon Macie doesn't support use of partial values or wildcard characters in tag-based conditions.
See: newTagValuePair smart constructor.
Constructors
| TagValuePair' | |
Instances
newTagValuePair :: TagValuePair Source #
Create a value of TagValuePair with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:key:TagValuePair', tagValuePair_key - The value for the tag key to use in the condition.
$sel:value:TagValuePair', tagValuePair_value - The tag value, associated with the specified tag key (key), to use in
the condition. To specify only a tag key for a condition, specify the
tag key for the key property and set this value to an empty string.
tagValuePair_key :: Lens' TagValuePair (Maybe Text) Source #
The value for the tag key to use in the condition.
tagValuePair_value :: Lens' TagValuePair (Maybe Text) Source #
The tag value, associated with the specified tag key (key), to use in the condition. To specify only a tag key for a condition, specify the tag key for the key property and set this value to an empty string.
UnprocessedAccount
data UnprocessedAccount Source #
Provides information about an account-related request that hasn't been processed.
See: newUnprocessedAccount smart constructor.
Constructors
| UnprocessedAccount' | |
Instances
newUnprocessedAccount :: UnprocessedAccount Source #
Create a value of UnprocessedAccount with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:UnprocessedAccount', unprocessedAccount_accountId - The Amazon Web Services account ID for the account that the request
applies to.
$sel:errorCode:UnprocessedAccount', unprocessedAccount_errorCode - The source of the issue or delay in processing the request.
$sel:errorMessage:UnprocessedAccount', unprocessedAccount_errorMessage - The reason why the request hasn't been processed.
unprocessedAccount_accountId :: Lens' UnprocessedAccount (Maybe Text) Source #
The Amazon Web Services account ID for the account that the request applies to.
unprocessedAccount_errorCode :: Lens' UnprocessedAccount (Maybe ErrorCode) Source #
The source of the issue or delay in processing the request.
unprocessedAccount_errorMessage :: Lens' UnprocessedAccount (Maybe Text) Source #
The reason why the request hasn't been processed.
UsageByAccount
data UsageByAccount Source #
Provides data for a specific usage metric and the corresponding quota for an Amazon Macie account.
See: newUsageByAccount smart constructor.
Constructors
| UsageByAccount' | |
Fields
| |
Instances
newUsageByAccount :: UsageByAccount Source #
Create a value of UsageByAccount with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:currency:UsageByAccount', usageByAccount_currency - The type of currency that the value for the metric (estimatedCost) is
reported in.
$sel:estimatedCost:UsageByAccount', usageByAccount_estimatedCost - The estimated value for the metric.
$sel:serviceLimit:UsageByAccount', usageByAccount_serviceLimit - The current value for the quota that corresponds to the metric specified
by the type field.
$sel:type':UsageByAccount', usageByAccount_type - The name of the metric. Possible values are:
AUTOMATED_OBJECT_MONITORING, to monitor S3 objects for automated
sensitive data discovery; AUTOMATED_SENSITIVE_DATA_DISCOVERY, to analyze
S3 objects for automated sensitive data discovery;
DATA_INVENTORY_EVALUATION, to monitor S3 buckets; and,
SENSITIVE_DATA_DISCOVERY, to run classification jobs.
usageByAccount_currency :: Lens' UsageByAccount (Maybe Currency) Source #
The type of currency that the value for the metric (estimatedCost) is reported in.
usageByAccount_estimatedCost :: Lens' UsageByAccount (Maybe Text) Source #
The estimated value for the metric.
usageByAccount_serviceLimit :: Lens' UsageByAccount (Maybe ServiceLimit) Source #
The current value for the quota that corresponds to the metric specified by the type field.
usageByAccount_type :: Lens' UsageByAccount (Maybe UsageType) Source #
The name of the metric. Possible values are: AUTOMATED_OBJECT_MONITORING, to monitor S3 objects for automated sensitive data discovery; AUTOMATED_SENSITIVE_DATA_DISCOVERY, to analyze S3 objects for automated sensitive data discovery; DATA_INVENTORY_EVALUATION, to monitor S3 buckets; and, SENSITIVE_DATA_DISCOVERY, to run classification jobs.
UsageRecord
data UsageRecord Source #
Provides quota and aggregated usage data for an Amazon Macie account.
See: newUsageRecord smart constructor.
Constructors
| UsageRecord' | |
Fields
| |
Instances
newUsageRecord :: UsageRecord Source #
Create a value of UsageRecord with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:UsageRecord', usageRecord_accountId - The unique identifier for the Amazon Web Services account that the data
applies to.
$sel:automatedDiscoveryFreeTrialStartDate:UsageRecord', usageRecord_automatedDiscoveryFreeTrialStartDate - The date and time, in UTC and extended ISO 8601 format, when the free
trial of automated sensitive data discovery started for the account. If
the account is a member account in an organization, this value is the
same as the value for the organization's Amazon Macie administrator
account.
$sel:freeTrialStartDate:UsageRecord', usageRecord_freeTrialStartDate - The date and time, in UTC and extended ISO 8601 format, when the Amazon
Macie free trial started for the account.
$sel:usage:UsageRecord', usageRecord_usage - An array of objects that contains usage data and quotas for the account.
Each object contains the data for a specific usage metric and the
corresponding quota.
usageRecord_accountId :: Lens' UsageRecord (Maybe Text) Source #
The unique identifier for the Amazon Web Services account that the data applies to.
usageRecord_automatedDiscoveryFreeTrialStartDate :: Lens' UsageRecord (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the free trial of automated sensitive data discovery started for the account. If the account is a member account in an organization, this value is the same as the value for the organization's Amazon Macie administrator account.
usageRecord_freeTrialStartDate :: Lens' UsageRecord (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the Amazon Macie free trial started for the account.
usageRecord_usage :: Lens' UsageRecord (Maybe [UsageByAccount]) Source #
An array of objects that contains usage data and quotas for the account. Each object contains the data for a specific usage metric and the corresponding quota.
UsageStatisticsFilter
data UsageStatisticsFilter Source #
Specifies a condition for filtering the results of a query for quota and usage data for one or more Amazon Macie accounts.
See: newUsageStatisticsFilter smart constructor.
Constructors
| UsageStatisticsFilter' | |
Fields
| |
Instances
newUsageStatisticsFilter :: UsageStatisticsFilter Source #
Create a value of UsageStatisticsFilter with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:comparator:UsageStatisticsFilter', usageStatisticsFilter_comparator - The operator to use in the condition. If the value for the key property
is accountId, this value must be CONTAINS. If the value for the key
property is any other supported field, this value can be EQ, GT, GTE,
LT, LTE, or NE.
$sel:key:UsageStatisticsFilter', usageStatisticsFilter_key - The field to use in the condition.
$sel:values:UsageStatisticsFilter', usageStatisticsFilter_values - An array that lists values to use in the condition, based on the value
for the field specified by the key property. If the value for the key
property is accountId, this array can specify multiple values.
Otherwise, this array can specify only one value.
Valid values for each supported field are:
- accountId - The unique identifier for an Amazon Web Services account.
- freeTrialStartDate - The date and time, in UTC and extended ISO 8601 format, when the Amazon Macie free trial started for an account.
- serviceLimit - A Boolean (true or false) value that indicates whether an account has reached its monthly quota.
- total - A string that represents the current estimated cost for an account.
usageStatisticsFilter_comparator :: Lens' UsageStatisticsFilter (Maybe UsageStatisticsFilterComparator) Source #
The operator to use in the condition. If the value for the key property is accountId, this value must be CONTAINS. If the value for the key property is any other supported field, this value can be EQ, GT, GTE, LT, LTE, or NE.
usageStatisticsFilter_key :: Lens' UsageStatisticsFilter (Maybe UsageStatisticsFilterKey) Source #
The field to use in the condition.
usageStatisticsFilter_values :: Lens' UsageStatisticsFilter (Maybe [Text]) Source #
An array that lists values to use in the condition, based on the value for the field specified by the key property. If the value for the key property is accountId, this array can specify multiple values. Otherwise, this array can specify only one value.
Valid values for each supported field are:
- accountId - The unique identifier for an Amazon Web Services account.
- freeTrialStartDate - The date and time, in UTC and extended ISO 8601 format, when the Amazon Macie free trial started for an account.
- serviceLimit - A Boolean (true or false) value that indicates whether an account has reached its monthly quota.
- total - A string that represents the current estimated cost for an account.
UsageStatisticsSortBy
data UsageStatisticsSortBy Source #
Specifies criteria for sorting the results of a query for Amazon Macie account quotas and usage data.
See: newUsageStatisticsSortBy smart constructor.
Constructors
| UsageStatisticsSortBy' | |
Fields
| |
Instances
newUsageStatisticsSortBy :: UsageStatisticsSortBy Source #
Create a value of UsageStatisticsSortBy with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:key:UsageStatisticsSortBy', usageStatisticsSortBy_key - The field to sort the results by.
$sel:orderBy:UsageStatisticsSortBy', usageStatisticsSortBy_orderBy - The sort order to apply to the results, based on the value for the field
specified by the key property. Valid values are: ASC, sort the results
in ascending order; and, DESC, sort the results in descending order.
usageStatisticsSortBy_key :: Lens' UsageStatisticsSortBy (Maybe UsageStatisticsSortKey) Source #
The field to sort the results by.
usageStatisticsSortBy_orderBy :: Lens' UsageStatisticsSortBy (Maybe OrderBy) Source #
The sort order to apply to the results, based on the value for the field specified by the key property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
UsageTotal
data UsageTotal Source #
Provides aggregated data for an Amazon Macie usage metric. The value for the metric reports estimated usage data for an account for the preceding 30 days or the current calendar month to date, depending on the time period (timeRange) specified in the request.
See: newUsageTotal smart constructor.
Constructors
| UsageTotal' | |
Fields
| |
Instances
newUsageTotal :: UsageTotal Source #
Create a value of UsageTotal with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:currency:UsageTotal', usageTotal_currency - The type of currency that the value for the metric (estimatedCost) is
reported in.
$sel:estimatedCost:UsageTotal', usageTotal_estimatedCost - The estimated value for the metric.
$sel:type':UsageTotal', usageTotal_type - The name of the metric. Possible values are:
AUTOMATED_OBJECT_MONITORING, to monitor S3 objects for automated
sensitive data discovery; AUTOMATED_SENSITIVE_DATA_DISCOVERY, to analyze
S3 objects for automated sensitive data discovery;
DATA_INVENTORY_EVALUATION, to monitor S3 buckets; and,
SENSITIVE_DATA_DISCOVERY, to run classification jobs.
usageTotal_currency :: Lens' UsageTotal (Maybe Currency) Source #
The type of currency that the value for the metric (estimatedCost) is reported in.
usageTotal_estimatedCost :: Lens' UsageTotal (Maybe Text) Source #
The estimated value for the metric.
usageTotal_type :: Lens' UsageTotal (Maybe UsageType) Source #
The name of the metric. Possible values are: AUTOMATED_OBJECT_MONITORING, to monitor S3 objects for automated sensitive data discovery; AUTOMATED_SENSITIVE_DATA_DISCOVERY, to analyze S3 objects for automated sensitive data discovery; DATA_INVENTORY_EVALUATION, to monitor S3 buckets; and, SENSITIVE_DATA_DISCOVERY, to run classification jobs.
UserIdentity
data UserIdentity Source #
Provides information about the type and other characteristics of an entity that performed an action on an affected resource.
See: newUserIdentity smart constructor.
Constructors
| UserIdentity' | |
Fields
| |
Instances
newUserIdentity :: UserIdentity Source #
Create a value of UserIdentity with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:assumedRole:UserIdentity', userIdentity_assumedRole - If the action was performed with temporary security credentials that
were obtained using the AssumeRole operation of the Security Token
Service (STS) API, the identifiers, session context, and other details
about the identity.
$sel:awsAccount:UserIdentity', userIdentity_awsAccount - If the action was performed using the credentials for another Amazon Web
Services account, the details of that account.
$sel:awsService:UserIdentity', userIdentity_awsService - If the action was performed by an Amazon Web Services account that
belongs to an Amazon Web Service, the name of the service.
$sel:federatedUser:UserIdentity', userIdentity_federatedUser - If the action was performed with temporary security credentials that
were obtained using the GetFederationToken operation of the Security
Token Service (STS) API, the identifiers, session context, and other
details about the identity.
$sel:iamUser:UserIdentity', userIdentity_iamUser - If the action was performed using the credentials for an Identity and
Access Management (IAM) user, the name and other details about the user.
$sel:root:UserIdentity', userIdentity_root - If the action was performed using the credentials for your Amazon Web
Services account, the details of your account.
$sel:type':UserIdentity', userIdentity_type - The type of entity that performed the action.
userIdentity_assumedRole :: Lens' UserIdentity (Maybe AssumedRole) Source #
If the action was performed with temporary security credentials that were obtained using the AssumeRole operation of the Security Token Service (STS) API, the identifiers, session context, and other details about the identity.
userIdentity_awsAccount :: Lens' UserIdentity (Maybe AwsAccount) Source #
If the action was performed using the credentials for another Amazon Web Services account, the details of that account.
userIdentity_awsService :: Lens' UserIdentity (Maybe AwsService) Source #
If the action was performed by an Amazon Web Services account that belongs to an Amazon Web Service, the name of the service.
userIdentity_federatedUser :: Lens' UserIdentity (Maybe FederatedUser) Source #
If the action was performed with temporary security credentials that were obtained using the GetFederationToken operation of the Security Token Service (STS) API, the identifiers, session context, and other details about the identity.
userIdentity_iamUser :: Lens' UserIdentity (Maybe IamUser) Source #
If the action was performed using the credentials for an Identity and Access Management (IAM) user, the name and other details about the user.
userIdentity_root :: Lens' UserIdentity (Maybe UserIdentityRoot) Source #
If the action was performed using the credentials for your Amazon Web Services account, the details of your account.
userIdentity_type :: Lens' UserIdentity (Maybe UserIdentityType) Source #
The type of entity that performed the action.
UserIdentityRoot
data UserIdentityRoot Source #
Provides information about an Amazon Web Services account and entity that performed an action on an affected resource. The action was performed using the credentials for your Amazon Web Services account.
See: newUserIdentityRoot smart constructor.
Constructors
| UserIdentityRoot' | |
Fields
| |
Instances
newUserIdentityRoot :: UserIdentityRoot Source #
Create a value of UserIdentityRoot with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:accountId:UserIdentityRoot', userIdentityRoot_accountId - The unique identifier for the Amazon Web Services account.
$sel:arn:UserIdentityRoot', userIdentityRoot_arn - The Amazon Resource Name (ARN) of the principal that performed the
action. The last section of the ARN contains the name of the user or
role that performed the action.
$sel:principalId:UserIdentityRoot', userIdentityRoot_principalId - The unique identifier for the entity that performed the action.
userIdentityRoot_accountId :: Lens' UserIdentityRoot (Maybe Text) Source #
The unique identifier for the Amazon Web Services account.
userIdentityRoot_arn :: Lens' UserIdentityRoot (Maybe Text) Source #
The Amazon Resource Name (ARN) of the principal that performed the action. The last section of the ARN contains the name of the user or role that performed the action.
userIdentityRoot_principalId :: Lens' UserIdentityRoot (Maybe Text) Source #
The unique identifier for the entity that performed the action.
UserPausedDetails
data UserPausedDetails Source #
Provides information about when a classification job was paused. For a one-time job, this object also specifies when the job will expire and be cancelled if it isn't resumed. For a recurring job, this object also specifies when the paused job run will expire and be cancelled if it isn't resumed. This object is present only if a job's current status (jobStatus) is USER_PAUSED. The information in this object applies only to a job that was paused while it had a status of RUNNING.
See: newUserPausedDetails smart constructor.
Constructors
| UserPausedDetails' | |
Fields
| |
Instances
newUserPausedDetails :: UserPausedDetails Source #
Create a value of UserPausedDetails with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:jobExpiresAt:UserPausedDetails', userPausedDetails_jobExpiresAt - The date and time, in UTC and extended ISO 8601 format, when the job or
job run will expire and be cancelled if you don't resume it first.
$sel:jobImminentExpirationHealthEventArn:UserPausedDetails', userPausedDetails_jobImminentExpirationHealthEventArn - The Amazon Resource Name (ARN) of the Health event that Amazon Macie
sent to notify you of the job or job run's pending expiration and
cancellation. This value is null if a job has been paused for less than
23 days.
$sel:jobPausedAt:UserPausedDetails', userPausedDetails_jobPausedAt - The date and time, in UTC and extended ISO 8601 format, when you paused
the job.
userPausedDetails_jobExpiresAt :: Lens' UserPausedDetails (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when the job or job run will expire and be cancelled if you don't resume it first.
userPausedDetails_jobImminentExpirationHealthEventArn :: Lens' UserPausedDetails (Maybe Text) Source #
The Amazon Resource Name (ARN) of the Health event that Amazon Macie sent to notify you of the job or job run's pending expiration and cancellation. This value is null if a job has been paused for less than 23 days.
userPausedDetails_jobPausedAt :: Lens' UserPausedDetails (Maybe UTCTime) Source #
The date and time, in UTC and extended ISO 8601 format, when you paused the job.
WeeklySchedule
data WeeklySchedule Source #
Specifies a weekly recurrence pattern for running a classification job.
See: newWeeklySchedule smart constructor.
Constructors
| WeeklySchedule' | |
Instances
newWeeklySchedule :: WeeklySchedule Source #
Create a value of WeeklySchedule with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:dayOfWeek:WeeklySchedule', weeklySchedule_dayOfWeek - The day of the week when Amazon Macie runs the job.
weeklySchedule_dayOfWeek :: Lens' WeeklySchedule (Maybe DayOfWeek) Source #
The day of the week when Amazon Macie runs the job.