stratosphere-0.2.0: EDSL for AWS CloudFormation

Safe HaskellNone
LanguageHaskell2010

Stratosphere.Resources.Trail

Description

The AWS::CloudTrail::Trail resource creates a trail and specifies where logs are published. An AWS CloudTrail (CloudTrail) trail can capture AWS API calls made by your AWS account and publishes the logs to an Amazon S3 bucket. For more information, see What is AWS CloudTrail? in the AWS CloudTrail User Guide.

Synopsis

Documentation

data Trail Source #

Full data type definition for Trail. See trail for a more convenient constructor.

Instances

Show Trail Source # 

Methods

showsPrec :: Int -> Trail -> ShowS #

show :: Trail -> String #

showList :: [Trail] -> ShowS #

Generic Trail Source # 

Associated Types

type Rep Trail :: * -> * #

Methods

from :: Trail -> Rep Trail x #

to :: Rep Trail x -> Trail #

ToJSON Trail Source # 
FromJSON Trail Source # 
type Rep Trail Source # 
type Rep Trail = D1 (MetaData "Trail" "Stratosphere.Resources.Trail" "stratosphere-0.2.0-B1WeL9cnxuQ3qer3csMa6f" False) (C1 (MetaCons "Trail" PrefixI True) ((:*:) ((:*:) ((:*:) (S1 (MetaSel (Just Symbol "_trailCloudWatchLogsLogGroupArn") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Text)))) (S1 (MetaSel (Just Symbol "_trailCloudWatchLogsRoleArn") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Text))))) ((:*:) (S1 (MetaSel (Just Symbol "_trailEnableLogFileValidation") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Bool)))) ((:*:) (S1 (MetaSel (Just Symbol "_trailIncludeGlobalServiceEvents") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Bool)))) (S1 (MetaSel (Just Symbol "_trailIsLogging") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Val Bool)))))) ((:*:) ((:*:) (S1 (MetaSel (Just Symbol "_trailIsMultiRegionTrail") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Bool)))) ((:*:) (S1 (MetaSel (Just Symbol "_trailKMSKeyId") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Text)))) (S1 (MetaSel (Just Symbol "_trailS3BucketName") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Val Text))))) ((:*:) (S1 (MetaSel (Just Symbol "_trailS3KeyPrefix") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Text)))) ((:*:) (S1 (MetaSel (Just Symbol "_trailSnsTopicName") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe (Val Text)))) (S1 (MetaSel (Just Symbol "_trailTags") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe [ResourceTag]))))))))

trail Source #

Constructor for Trail containing required fields as arguments.

tCloudWatchLogsLogGroupArn :: Lens' Trail (Maybe (Val Text)) Source #

The Amazon Resource Name (ARN) of a log group to which CloudTrail logs will be delivered.

tCloudWatchLogsRoleArn :: Lens' Trail (Maybe (Val Text)) Source #

The role ARN that Amazon CloudWatch Logs (CloudWatch Logs) assumes to write logs to a log group. For more information, see Role Policy Document for CloudTrail to Use CloudWatch Logs for Monitoring in the AWS CloudTrail User Guide.

tEnableLogFileValidation :: Lens' Trail (Maybe (Val Bool)) Source #

Indicates whether CloudTrail validates the integrity of log files. By default, AWS CloudFormation sets this value to false. When you disable log file integrity validation, CloudTrail stops creating digest files. For more information, see CreateTrail in the AWS CloudTrail API Reference.

tIncludeGlobalServiceEvents :: Lens' Trail (Maybe (Val Bool)) Source #

Indicates whether the trail is publishing events from global services, such as IAM, to the log files. By default, AWS CloudFormation sets this value to false.

tIsLogging :: Lens' Trail (Val Bool) Source #

Indicates whether the CloudTrail trail is currently logging AWS API calls.

tIsMultiRegionTrail :: Lens' Trail (Maybe (Val Bool)) Source #

Indicates whether the CloudTrail trail is created in the region in which you create the stack (false) or in all regions (true). By default, AWS CloudFormation sets this value to false. For more information, see How Does CloudTrail Behave Regionally and Globally? in the AWS CloudTrail User Guide.

tKMSKeyId :: Lens' Trail (Maybe (Val Text)) Source #

The AWS Key Management Service (AWS KMS) key ID that you want to use to encrypt CloudTrail logs. You can specify an alias name (prefixed with alias/), an alias ARN, a key ARN, or a globally unique identifier.

tS3BucketName :: Lens' Trail (Val Text) Source #

The name of the Amazon S3 bucket where CloudTrail publishes log files.

tS3KeyPrefix :: Lens' Trail (Maybe (Val Text)) Source #

An Amazon S3 object key prefix that precedes the name of all log files.

tSnsTopicName :: Lens' Trail (Maybe (Val Text)) Source #

The name of an Amazon SNS topic that is notified when new log files are published.

tTags :: Lens' Trail (Maybe [ResourceTag]) Source #

An arbitrary set of tags (key–value pairs) for this trail.