[][src]Crate rusoto_accessanalyzer

AWS IAM Access Analyzer helps identify potential resource-access risks by enabling you to identify any policies that grant access to an external principal. It does this by using logic-based reasoning to analyze resource-based policies in your AWS environment. An external principal can be another AWS account, a root user, an IAM user or role, a federated user, an AWS service, or an anonymous user. This guide describes the AWS IAM Access Analyzer operations that you can call programmatically. For general information about Access Analyzer, see the AWS IAM Access Analyzer section of the IAM User Guide.

To start using Access Analyzer, you first need to create an analyzer.

If you're using the service, you're probably looking for AccessAnalyzerClient and AccessAnalyzer.

Structs

AccessAnalyzerClient

A client for the Access Analyzer API.

AnalyzedResource

Contains details about the analyzed resource.

AnalyzedResourceSummary

Contains the ARN of the analyzed resource.

AnalyzerSummary

Contains information about the analyzer.

ArchiveRuleSummary

Contains information about an archive rule.

CreateAnalyzerRequest

Creates an analyzer.

CreateAnalyzerResponse

The response to the request to create an analyzer.

CreateArchiveRuleRequest

Creates an archive rule.

Criterion

The criteria to use in the filter that defines the archive rule.

DeleteAnalyzerRequest

Deletes an analyzer.

DeleteArchiveRuleRequest

Deletes an archive rule.

Finding

Contains information about a finding.

FindingSource

The source of the finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.

FindingSourceDetail

Includes details about how the access that generated the finding is granted. This is populated for Amazon S3 bucket findings.

FindingSummary

Contains information about a finding.

GetAnalyzedResourceRequest

Retrieves an analyzed resource.

GetAnalyzedResourceResponse

The response to the request.

GetAnalyzerRequest

Retrieves an analyzer.

GetAnalyzerResponse

The response to the request.

GetArchiveRuleRequest

Retrieves an archive rule.

GetArchiveRuleResponse

The response to the request.

GetFindingRequest

Retrieves a finding.

GetFindingResponse

The response to the request.

InlineArchiveRule

An criterion statement in an archive rule. Each archive rule may have multiple criteria.

ListAnalyzedResourcesRequest

Retrieves a list of resources that have been analyzed.

ListAnalyzedResourcesResponse

The response to the request.

ListAnalyzersRequest

Retrieves a list of analyzers.

ListAnalyzersResponse

The response to the request.

ListArchiveRulesRequest

Retrieves a list of archive rules created for the specified analyzer.

ListArchiveRulesResponse

The response to the request.

ListFindingsRequest

Retrieves a list of findings generated by the specified analyzer.

ListFindingsResponse

The response to the request.

ListTagsForResourceRequest

Retrieves a list of tags applied to the specified resource.

ListTagsForResourceResponse

The response to the request.

SortCriteria

The criteria used to sort.

StartResourceScanRequest

Starts a scan of the policies applied to the specified resource.

StatusReason

Provides more details about the current status of the analyzer. For example, if the creation for the analyzer fails, a Failed status is displayed. For an analyzer with organization as the type, this failure can be due to an issue with creating the service-linked roles required in the member accounts of the AWS organization.

TagResourceRequest

Adds a tag to the specified resource.

TagResourceResponse

The response to the request.

UntagResourceRequest

Removes a tag from the specified resource.

UntagResourceResponse

The response to the request.

UpdateArchiveRuleRequest

Updates the specified archive rule.

UpdateFindingsRequest

Updates findings with the new values provided in the request.

ValidationExceptionField

Contains information about a validation exception.

Enums

CreateAnalyzerError

Errors returned by CreateAnalyzer

CreateArchiveRuleError

Errors returned by CreateArchiveRule

DeleteAnalyzerError

Errors returned by DeleteAnalyzer

DeleteArchiveRuleError

Errors returned by DeleteArchiveRule

GetAnalyzedResourceError

Errors returned by GetAnalyzedResource

GetAnalyzerError

Errors returned by GetAnalyzer

GetArchiveRuleError

Errors returned by GetArchiveRule

GetFindingError

Errors returned by GetFinding

ListAnalyzedResourcesError

Errors returned by ListAnalyzedResources

ListAnalyzersError

Errors returned by ListAnalyzers

ListArchiveRulesError

Errors returned by ListArchiveRules

ListFindingsError

Errors returned by ListFindings

ListTagsForResourceError

Errors returned by ListTagsForResource

StartResourceScanError

Errors returned by StartResourceScan

TagResourceError

Errors returned by TagResource

UntagResourceError

Errors returned by UntagResource

UpdateArchiveRuleError

Errors returned by UpdateArchiveRule

UpdateFindingsError

Errors returned by UpdateFindings

Traits

AccessAnalyzer

Trait representing the capabilities of the Access Analyzer API. Access Analyzer clients implement this trait.