CONTROLTOWER
CreateLandingZone
valid {
input.Body.manifest == {}
input.Body.tags.STRING == STRING
input.Body.version == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
DeleteLandingZone
valid {
input.Body.landingZoneIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
DisableBaseline
valid {
input.Body.enabledBaselineIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
DisableControl
valid {
input.Body.controlIdentifier == STRING
input.Body.targetIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
EnableBaseline
valid {
input.Body.baselineIdentifier == STRING
input.Body.baselineVersion == STRING
input.Body.parameters[_].key == STRING
input.Body.parameters[_].value == {}
input.Body.tags.STRING == STRING
input.Body.targetIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
EnableControl
valid {
input.Body.controlIdentifier == STRING
input.Body.parameters[_].key == STRING
input.Body.parameters[_].value == {}
input.Body.tags.STRING == STRING
input.Body.targetIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
GetBaseline
valid {
input.Body.baselineIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
GetBaselineOperation
valid {
input.Body.operationIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
GetControlOperation
valid {
input.Body.operationIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
GetEnabledBaseline
valid {
input.Body.enabledBaselineIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
GetEnabledControl
valid {
input.Body.enabledControlIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
GetLandingZone
valid {
input.Body.landingZoneIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
GetLandingZoneOperation
valid {
input.Body.operationIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ListBaselines
valid {
input.Body.maxResults == INTEGER
input.Body.nextToken == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ListControlOperations
enum_ControlOperationStatus := [ "SUCCEEDED", "FAILED", "IN_PROGRESS" ]
enum_ControlOperationType := [ "ENABLE_CONTROL", "DISABLE_CONTROL", "UPDATE_ENABLED_CONTROL", "RESET_ENABLED_CONTROL" ]
valid {
input.Body.filter.controlIdentifiers[_] == STRING
input.Body.filter.controlOperationTypes[_] == enum_ControlOperationType[_]
input.Body.filter.enabledControlIdentifiers[_] == STRING
input.Body.filter.statuses[_] == enum_ControlOperationStatus[_]
input.Body.filter.targetIdentifiers[_] == STRING
input.Body.maxResults == INTEGER
input.Body.nextToken == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ListEnabledBaselines
valid {
input.Body.filter.baselineIdentifiers[_] == STRING
input.Body.filter.parentIdentifiers[_] == STRING
input.Body.filter.targetIdentifiers[_] == STRING
input.Body.includeChildren == BOOLEAN
input.Body.maxResults == INTEGER
input.Body.nextToken == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ListEnabledControls
enum_DriftStatus := [ "DRIFTED", "IN_SYNC", "NOT_CHECKING", "UNKNOWN" ]
enum_EnablementStatus := [ "SUCCEEDED", "FAILED", "UNDER_CHANGE" ]
valid {
input.Body.filter.controlIdentifiers[_] == STRING
input.Body.filter.driftStatuses[_] == enum_DriftStatus[_]
input.Body.filter.statuses[_] == enum_EnablementStatus[_]
input.Body.maxResults == INTEGER
input.Body.nextToken == STRING
input.Body.targetIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ListLandingZoneOperations
enum_LandingZoneOperationStatus := [ "SUCCEEDED", "FAILED", "IN_PROGRESS" ]
enum_LandingZoneOperationType := [ "DELETE", "CREATE", "UPDATE", "RESET" ]
valid {
input.Body.filter.statuses[_] == enum_LandingZoneOperationStatus[_]
input.Body.filter.types[_] == enum_LandingZoneOperationType[_]
input.Body.maxResults == INTEGER
input.Body.nextToken == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ListLandingZones
valid {
input.Body.maxResults == INTEGER
input.Body.nextToken == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ListTagsForResource
valid {
input.ReqMap.resourceArn == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ResetEnabledBaseline
valid {
input.Body.enabledBaselineIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ResetEnabledControl
valid {
input.Body.enabledControlIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
ResetLandingZone
valid {
input.Body.landingZoneIdentifier == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
TagResource
valid {
input.Body.tags.STRING == STRING
input.ReqMap.resourceArn == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
UntagResource
valid {
input.ReqMap.resourceArn == STRING
input.Qs.tagKeys[_] == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
UpdateEnabledBaseline
valid {
input.Body.baselineVersion == STRING
input.Body.enabledBaselineIdentifier == STRING
input.Body.parameters[_].key == STRING
input.Body.parameters[_].value == {}
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
UpdateEnabledControl
valid {
input.Body.enabledControlIdentifier == STRING
input.Body.parameters[_].key == STRING
input.Body.parameters[_].value == {}
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
UpdateLandingZone
valid {
input.Body.landingZoneIdentifier == STRING
input.Body.manifest == {}
input.Body.version == STRING
input.ProviderMetadata.Account == STRING
input.ProviderMetadata.AccessKeyId == STRING
input.ProviderMetadata.Region == STRING
}
Updated about 10 hours ago