Package software.amazon.awscdk.services.accessanalyzer

Interface CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty

All Superinterfaces:

software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:

CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty.Jsii$Proxy

Enclosing class:

CfnAnalyzer

@Stability(Stable)
public static interface CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty
extends software.amazon.jsii.JsiiSerializable

The criteria for an analysis rule for an internal access analyzer.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.accessanalyzer.*;
 InternalAccessAnalysisRuleCriteriaProperty internalAccessAnalysisRuleCriteriaProperty = InternalAccessAnalysisRuleCriteriaProperty.builder()
         .accountIds(List.of("accountIds"))
         .resourceArns(List.of("resourceArns"))
         .resourceTypes(List.of("resourceTypes"))
         .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-accessanalyzer-analyzer-internalaccessanalysisrulecriteria.html

Nested Class Summary

Nested Classes

Modifier and Type	Interface	Description
static final class	CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty.Builder	A builder for CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty
static final class	CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty.Jsii$Proxy	An implementation for CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty

Method Summary

Modifier and Type	Method	Description
static CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty.Builder	builder()
default List<String>	getAccountIds()	A list of AWS account IDs to apply to the internal access analysis rule criteria.
default List<String>	getResourceArns()	A list of resource ARNs to apply to the internal access analysis rule criteria.
default List<String>	getResourceTypes()	A list of resource types to apply to the internal access analysis rule criteria.

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Method Details

getAccountIds

@Stability(Stable)
@Nullable
default List<String> getAccountIds()

A list of AWS account IDs to apply to the internal access analysis rule criteria.

Account IDs can only be applied to the analysis rule criteria for organization-level analyzers.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-accessanalyzer-analyzer-internalaccessanalysisrulecriteria.html#cfn-accessanalyzer-analyzer-internalaccessanalysisrulecriteria-accountids

getResourceArns

@Stability(Stable)
@Nullable
default List<String> getResourceArns()

A list of resource ARNs to apply to the internal access analysis rule criteria.

The analyzer will only generate findings for resources that match these ARNs.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-accessanalyzer-analyzer-internalaccessanalysisrulecriteria.html#cfn-accessanalyzer-analyzer-internalaccessanalysisrulecriteria-resourcearns

getResourceTypes

@Stability(Stable)
@Nullable
default List<String> getResourceTypes()

A list of resource types to apply to the internal access analysis rule criteria.

The analyzer will only generate findings for resources of these types. These resource types are currently supported for internal access analyzers:

• AWS::S3::Bucket
• AWS::RDS::DBSnapshot
• AWS::RDS::DBClusterSnapshot
• AWS::S3Express::DirectoryBucket
• AWS::DynamoDB::Table
• AWS::DynamoDB::Stream

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-accessanalyzer-analyzer-internalaccessanalysisrulecriteria.html#cfn-accessanalyzer-analyzer-internalaccessanalysisrulecriteria-resourcetypes

builder

@Stability(Stable)
static CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty.Builder builder()

Returns:

a CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty.Builder of CfnAnalyzer.InternalAccessAnalysisRuleCriteriaProperty