Safe Haskell | None |
---|---|
Language | Haskell2010 |
The AWS::CloudTrail::Trail resource creates a trail and specifies where logs are published. An AWS CloudTrail (CloudTrail) trail can capture AWS API calls made by your AWS account and publishes the logs to an Amazon S3 bucket. For more information, see What is AWS CloudTrail? in the AWS CloudTrail User Guide.
- data Trail = Trail {
- _trailCloudWatchLogsLogGroupArn :: Maybe (Val Text)
- _trailCloudWatchLogsRoleArn :: Maybe (Val Text)
- _trailEnableLogFileValidation :: Maybe (Val Bool)
- _trailIncludeGlobalServiceEvents :: Maybe (Val Bool)
- _trailIsLogging :: Val Bool
- _trailIsMultiRegionTrail :: Maybe (Val Bool)
- _trailKMSKeyId :: Maybe (Val Text)
- _trailS3BucketName :: Val Text
- _trailS3KeyPrefix :: Maybe (Val Text)
- _trailSnsTopicName :: Maybe (Val Text)
- _trailTags :: Maybe [ResourceTag]
- trail :: Val Bool -> Val Text -> Trail
- tCloudWatchLogsLogGroupArn :: Lens' Trail (Maybe (Val Text))
- tCloudWatchLogsRoleArn :: Lens' Trail (Maybe (Val Text))
- tEnableLogFileValidation :: Lens' Trail (Maybe (Val Bool))
- tIncludeGlobalServiceEvents :: Lens' Trail (Maybe (Val Bool))
- tIsLogging :: Lens' Trail (Val Bool)
- tIsMultiRegionTrail :: Lens' Trail (Maybe (Val Bool))
- tKMSKeyId :: Lens' Trail (Maybe (Val Text))
- tS3BucketName :: Lens' Trail (Val Text)
- tS3KeyPrefix :: Lens' Trail (Maybe (Val Text))
- tSnsTopicName :: Lens' Trail (Maybe (Val Text))
- tTags :: Lens' Trail (Maybe [ResourceTag])
Documentation
Full data type definition for Trail. See trail
for a more convenient
constructor.
Trail | |
|
tCloudWatchLogsLogGroupArn :: Lens' Trail (Maybe (Val Text)) Source #
The Amazon Resource Name (ARN) of a log group to which CloudTrail logs will be delivered.
tCloudWatchLogsRoleArn :: Lens' Trail (Maybe (Val Text)) Source #
The role ARN that Amazon CloudWatch Logs (CloudWatch Logs) assumes to write logs to a log group. For more information, see Role Policy Document for CloudTrail to Use CloudWatch Logs for Monitoring in the AWS CloudTrail User Guide.
tEnableLogFileValidation :: Lens' Trail (Maybe (Val Bool)) Source #
Indicates whether CloudTrail validates the integrity of log files. By default, AWS CloudFormation sets this value to false. When you disable log file integrity validation, CloudTrail stops creating digest files. For more information, see CreateTrail in the AWS CloudTrail API Reference.
tIncludeGlobalServiceEvents :: Lens' Trail (Maybe (Val Bool)) Source #
Indicates whether the trail is publishing events from global services, such as IAM, to the log files. By default, AWS CloudFormation sets this value to false.
tIsLogging :: Lens' Trail (Val Bool) Source #
Indicates whether the CloudTrail trail is currently logging AWS API calls.
tIsMultiRegionTrail :: Lens' Trail (Maybe (Val Bool)) Source #
Indicates whether the CloudTrail trail is created in the region in which you create the stack (false) or in all regions (true). By default, AWS CloudFormation sets this value to false. For more information, see How Does CloudTrail Behave Regionally and Globally? in the AWS CloudTrail User Guide.
tKMSKeyId :: Lens' Trail (Maybe (Val Text)) Source #
The AWS Key Management Service (AWS KMS) key ID that you want to use to encrypt CloudTrail logs. You can specify an alias name (prefixed with alias/), an alias ARN, a key ARN, or a globally unique identifier.
tS3BucketName :: Lens' Trail (Val Text) Source #
The name of the Amazon S3 bucket where CloudTrail publishes log files.
tS3KeyPrefix :: Lens' Trail (Maybe (Val Text)) Source #
An Amazon S3 object key prefix that precedes the name of all log files.