MACIE

Suggest Edits
docs.aws.amazon.com
AWS documentation

AssociateMemberAccount

valid {
    input.Body.memberAccountId == STRING
    input.ProviderMetadata.Account == STRING
    input.ProviderMetadata.AccessKeyId == STRING
    input.ProviderMetadata.Region == STRING
}

AssociateS3Resources

enum_S3ContinuousClassificationType := [ "FULL" ]
enum_S3OneTimeClassificationType := [ "FULL", "NONE" ]

valid {
    input.Body.memberAccountId == STRING
    input.Body.s3Resources[_].bucketName == STRING
    input.Body.s3Resources[_].prefix == STRING
    input.Body.s3Resources[_].classificationType.oneTime == enum_S3OneTimeClassificationType[_]
    input.Body.s3Resources[_].classificationType.continuous == enum_S3ContinuousClassificationType[_]
    input.ProviderMetadata.Account == STRING
    input.ProviderMetadata.AccessKeyId == STRING
    input.ProviderMetadata.Region == STRING
}

DisassociateMemberAccount

valid {
    input.Body.memberAccountId == STRING
    input.ProviderMetadata.Account == STRING
    input.ProviderMetadata.AccessKeyId == STRING
    input.ProviderMetadata.Region == STRING
}

DisassociateS3Resources

valid {
    input.Body.memberAccountId == STRING
    input.Body.associatedS3Resources[_].bucketName == STRING
    input.Body.associatedS3Resources[_].prefix == STRING
    input.ProviderMetadata.Account == STRING
    input.ProviderMetadata.AccessKeyId == STRING
    input.ProviderMetadata.Region == STRING
}

ListMemberAccounts

valid {
    input.Body.nextToken == STRING
    input.Body.maxResults == INTEGER
    input.ProviderMetadata.Account == STRING
    input.ProviderMetadata.AccessKeyId == STRING
    input.ProviderMetadata.Region == STRING
}

ListS3Resources

valid {
    input.Body.memberAccountId == STRING
    input.Body.nextToken == STRING
    input.Body.maxResults == INTEGER
    input.ProviderMetadata.Account == STRING
    input.ProviderMetadata.AccessKeyId == STRING
    input.ProviderMetadata.Region == STRING
}

UpdateS3Resources

enum_S3ContinuousClassificationType := [ "FULL" ]
enum_S3OneTimeClassificationType := [ "FULL", "NONE" ]

valid {
    input.Body.memberAccountId == STRING
    input.Body.s3ResourcesUpdate[_].bucketName == STRING
    input.Body.s3ResourcesUpdate[_].prefix == STRING
    input.Body.s3ResourcesUpdate[_].classificationTypeUpdate.oneTime == enum_S3OneTimeClassificationType[_]
    input.Body.s3ResourcesUpdate[_].classificationTypeUpdate.continuous == enum_S3ContinuousClassificationType[_]
    input.ProviderMetadata.Account == STRING
    input.ProviderMetadata.AccessKeyId == STRING
    input.ProviderMetadata.Region == STRING
}

Updated 5 months ago