Struct aws_sdk_fms::model::PolicySummary

#[non_exhaustive]
pub struct PolicySummary {
    pub policy_arn: Option<String>,
    pub policy_id: Option<String>,
    pub policy_name: Option<String>,
    pub resource_type: Option<String>,
    pub security_service_type: Option<SecurityServiceType>,
    pub remediation_enabled: bool,
    pub delete_unused_fm_managed_resources: bool,
}

Details of the Firewall Manager policy.

Fields (Non-exhaustive)

Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.

policy_arn: Option<String>

The Amazon Resource Name (ARN) of the specified policy.

policy_id: Option<String>

The ID of the specified policy.

policy_name: Option<String>

The name of the specified policy.

resource_type: Option<String>

The type of resource protected by or in scope of the policy. This is in the format shown in the Amazon Web Services Resource Types Reference. For WAF and Shield Advanced, examples include AWS::ElasticLoadBalancingV2::LoadBalancer and AWS::CloudFront::Distribution. For a security group common policy, valid values are AWS::EC2::NetworkInterface and AWS::EC2::Instance. For a security group content audit policy, valid values are AWS::EC2::SecurityGroup, AWS::EC2::NetworkInterface, and AWS::EC2::Instance. For a security group usage audit policy, the value is AWS::EC2::SecurityGroup. For an Network Firewall policy or DNS Firewall policy, the value is AWS::EC2::VPC.

security_service_type: Option<SecurityServiceType>

The service that the policy is using to protect the resources. This specifies the type of policy that is created, either an WAF policy, a Shield Advanced policy, or a security group policy.

remediation_enabled: bool

Indicates if the policy should be automatically applied to new resources.

delete_unused_fm_managed_resources: bool

Indicates whether Firewall Manager should automatically remove protections from resources that leave the policy scope and clean up resources that Firewall Manager is managing for accounts when those accounts leave policy scope. For example, Firewall Manager will disassociate a Firewall Manager managed web ACL from a protected customer resource when the customer resource leaves policy scope.

By default, Firewall Manager doesn't remove protections or delete Firewall Manager managed resources.

This option is not available for Shield Advanced or WAF Classic policies.

Implementations

impl PolicySummary

pub fn policy_arn(&self) -> Option<&str>

The Amazon Resource Name (ARN) of the specified policy.

pub fn policy_id(&self) -> Option<&str>

The ID of the specified policy.

pub fn policy_name(&self) -> Option<&str>

The name of the specified policy.

pub fn resource_type(&self) -> Option<&str>

The type of resource protected by or in scope of the policy. This is in the format shown in the Amazon Web Services Resource Types Reference. For WAF and Shield Advanced, examples include AWS::ElasticLoadBalancingV2::LoadBalancer and AWS::CloudFront::Distribution. For a security group common policy, valid values are AWS::EC2::NetworkInterface and AWS::EC2::Instance. For a security group content audit policy, valid values are AWS::EC2::SecurityGroup, AWS::EC2::NetworkInterface, and AWS::EC2::Instance. For a security group usage audit policy, the value is AWS::EC2::SecurityGroup. For an Network Firewall policy or DNS Firewall policy, the value is AWS::EC2::VPC.

pub fn security_service_type(&self) -> Option<&SecurityServiceType>

The service that the policy is using to protect the resources. This specifies the type of policy that is created, either an WAF policy, a Shield Advanced policy, or a security group policy.

pub fn remediation_enabled(&self) -> bool

Indicates if the policy should be automatically applied to new resources.

pub fn delete_unused_fm_managed_resources(&self) -> bool

Indicates whether Firewall Manager should automatically remove protections from resources that leave the policy scope and clean up resources that Firewall Manager is managing for accounts when those accounts leave policy scope. For example, Firewall Manager will disassociate a Firewall Manager managed web ACL from a protected customer resource when the customer resource leaves policy scope.

By default, Firewall Manager doesn't remove protections or delete Firewall Manager managed resources.

This option is not available for Shield Advanced or WAF Classic policies.

impl PolicySummary

pub fn builder() -> Builder

Creates a new builder-style object to manufacture PolicySummary.

Trait Implementations

impl Clone for PolicySummary

fn clone(&self) -> PolicySummary

Returns a copy of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for PolicySummary

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl PartialEq<PolicySummary> for PolicySummary

fn eq(&self, other: &PolicySummary) -> bool

This method tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &PolicySummary) -> bool

This method tests for !=.

impl StructuralPartialEq for PolicySummary