|
2 | 2 | "version": "2.0", |
3 | 3 | "service": "<p>AWS IAM Access Analyzer helps identify potential resource-access risks by enabling you to identify any policies that grant access to an external principal. It does this by using logic-based reasoning to analyze resource-based policies in your AWS environment. An external principal can be another AWS account, a root user, an IAM user or role, a federated user, an AWS service, or an anonymous user. This guide describes the AWS IAM Access Analyzer operations that you can call programmatically. For general information about Access Analyzer, see the <a href=\"https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html\">AWS IAM Access Analyzer section of the IAM User Guide</a>.</p> <p>To start using Access Analyzer, you first need to create an analyzer.</p>", |
4 | 4 | "operations": { |
| 5 | + "ApplyArchiveRule": "<p>Retroactively applies the archive rule to existing findings that meet the archive rule criteria.</p>", |
5 | 6 | "CreateAnalyzer": "<p>Creates an analyzer for your account.</p>", |
6 | | - "CreateArchiveRule": "<p>Creates an archive rule for the specified analyzer. Archive rules automatically archive findings that meet the criteria you define when you create the rule.</p>", |
| 7 | + "CreateArchiveRule": "<p>Creates an archive rule for the specified analyzer. Archive rules automatically archive new findings that meet the criteria you define when you create the rule.</p>", |
7 | 8 | "DeleteAnalyzer": "<p>Deletes the specified analyzer. When you delete an analyzer, Access Analyzer is disabled for the account in the current or specific Region. All findings that were generated by the analyzer are deleted. You cannot undo this action.</p>", |
8 | 9 | "DeleteArchiveRule": "<p>Deletes the specified archive rule.</p>", |
9 | 10 | "GetAnalyzedResource": "<p>Retrieves information about a resource that was analyzed.</p>", |
|
57 | 58 | "base": null, |
58 | 59 | "refs": { |
59 | 60 | "AnalyzerSummary$arn": "<p>The ARN of the analyzer.</p>", |
| 61 | + "ApplyArchiveRuleRequest$analyzerArn": "<p>The Amazon resource name (ARN) of the analyzer.</p>", |
60 | 62 | "CreateAnalyzerResponse$arn": "<p>The ARN of the analyzer that was created by the request.</p>", |
61 | 63 | "GetAnalyzedResourceRequest$analyzerArn": "<p>The ARN of the analyzer to retrieve information from.</p>", |
62 | 64 | "GetFindingRequest$analyzerArn": "<p>The ARN of the analyzer that generated the finding.</p>", |
|
85 | 87 | "ListAnalyzersResponse$analyzers": "<p>The analyzers retrieved.</p>" |
86 | 88 | } |
87 | 89 | }, |
| 90 | + "ApplyArchiveRuleRequest": { |
| 91 | + "base": "<p>Retroactively applies an archive rule.</p>", |
| 92 | + "refs": { |
| 93 | + } |
| 94 | + }, |
88 | 95 | "ArchiveRuleSummary": { |
89 | 96 | "base": "<p>Contains information about an archive rule.</p>", |
90 | 97 | "refs": { |
|
354 | 361 | "base": null, |
355 | 362 | "refs": { |
356 | 363 | "AnalyzerSummary$name": "<p>The name of the analyzer.</p>", |
| 364 | + "ApplyArchiveRuleRequest$ruleName": "<p>The name of the rule to apply.</p>", |
357 | 365 | "ArchiveRuleSummary$ruleName": "<p>The name of the archive rule.</p>", |
358 | 366 | "CreateAnalyzerRequest$analyzerName": "<p>The name of the analyzer to create.</p>", |
359 | 367 | "CreateArchiveRuleRequest$analyzerName": "<p>The name of the created analyzer.</p>", |
|
451 | 459 | "AnalyzedResource$resourceOwnerAccount": "<p>The AWS account ID that owns the resource.</p>", |
452 | 460 | "AnalyzedResourceSummary$resourceOwnerAccount": "<p>The AWS account ID that owns the resource.</p>", |
453 | 461 | "AnalyzerSummary$lastResourceAnalyzed": "<p>The resource that was most recently analyzed by the analyzer.</p>", |
| 462 | + "ApplyArchiveRuleRequest$clientToken": "<p>A client token.</p>", |
454 | 463 | "ConditionKeyMap$key": null, |
455 | 464 | "ConditionKeyMap$value": null, |
456 | 465 | "ConflictException$message": null, |
|
0 commit comments