| Class | Description |
|---|---|
| Access |
Contains information about actions and resources that define permissions to check against a policy.
|
| AccessPreview |
Contains information about an access preview.
|
| AccessPreviewFinding |
An access preview finding generated by the access preview.
|
| AccessPreviewStatusReason |
Provides more details about the current status of the access preview.
|
| AccessPreviewSummary |
Contains a summary of information about an access preview.
|
| AclGrantee |
You specify each grantee as a type-value pair using one of these types.
|
| AnalyzedResource |
Contains details about the analyzed resource.
|
| AnalyzedResourceSummary |
Contains the ARN of the analyzed resource.
|
| AnalyzerConfiguration |
Contains information about the configuration of an unused access analyzer for an Amazon Web Services organization or
account.
|
| AnalyzerSummary |
Contains information about the analyzer.
|
| ApplyArchiveRuleRequest |
Retroactively applies an archive rule.
|
| ApplyArchiveRuleResult | |
| ArchiveRuleSummary |
Contains information about an archive rule.
|
| CancelPolicyGenerationRequest | |
| CancelPolicyGenerationResult | |
| CheckAccessNotGrantedRequest | |
| CheckAccessNotGrantedResult | |
| CheckNoNewAccessRequest | |
| CheckNoNewAccessResult | |
| CheckNoPublicAccessRequest | |
| CheckNoPublicAccessResult | |
| CloudTrailDetails |
Contains information about CloudTrail access.
|
| CloudTrailProperties |
Contains information about CloudTrail access.
|
| Configuration |
Access control configuration structures for your resource.
|
| CreateAccessPreviewRequest | |
| CreateAccessPreviewResult | |
| CreateAnalyzerRequest |
Creates an analyzer.
|
| CreateAnalyzerResult |
The response to the request to create an analyzer.
|
| CreateArchiveRuleRequest |
Creates an archive rule.
|
| CreateArchiveRuleResult | |
| Criterion |
The criteria to use in the filter that defines the archive rule.
|
| DeleteAnalyzerRequest |
Deletes an analyzer.
|
| DeleteAnalyzerResult | |
| DeleteArchiveRuleRequest |
Deletes an archive rule.
|
| DeleteArchiveRuleResult | |
| DynamodbStreamConfiguration |
The proposed access control configuration for a DynamoDB stream.
|
| DynamodbTableConfiguration |
The proposed access control configuration for a DynamoDB table or index.
|
| EbsSnapshotConfiguration |
The proposed access control configuration for an Amazon EBS volume snapshot.
|
| EcrRepositoryConfiguration |
The proposed access control configuration for an Amazon ECR repository.
|
| EfsFileSystemConfiguration |
The proposed access control configuration for an Amazon EFS file system.
|
| ExternalAccessDetails |
Contains information about an external access finding.
|
| Finding |
Contains information about a finding.
|
| FindingDetails |
Contains information about an external access or unused access finding.
|
| FindingSource |
The source of the finding.
|
| FindingSourceDetail |
Includes details about how the access that generated the finding is granted.
|
| FindingSummary |
Contains information about a finding.
|
| FindingSummaryV2 |
Contains information about a finding.
|
| GeneratedPolicy |
Contains the text for the generated policy.
|
| GeneratedPolicyProperties |
Contains the generated policy details.
|
| GeneratedPolicyResult |
Contains the text for the generated policy and its details.
|
| GenerateFindingRecommendationRequest | |
| GenerateFindingRecommendationResult | |
| GetAccessPreviewRequest | |
| GetAccessPreviewResult | |
| GetAnalyzedResourceRequest |
Retrieves an analyzed resource.
|
| GetAnalyzedResourceResult |
The response to the request.
|
| GetAnalyzerRequest |
Retrieves an analyzer.
|
| GetAnalyzerResult |
The response to the request.
|
| GetArchiveRuleRequest |
Retrieves an archive rule.
|
| GetArchiveRuleResult |
The response to the request.
|
| GetFindingRecommendationRequest | |
| GetFindingRecommendationResult | |
| GetFindingRequest |
Retrieves a finding.
|
| GetFindingResult |
The response to the request.
|
| GetFindingV2Request | |
| GetFindingV2Result | |
| GetGeneratedPolicyRequest | |
| GetGeneratedPolicyResult | |
| IamRoleConfiguration |
The proposed access control configuration for an IAM role.
|
| InlineArchiveRule |
An criterion statement in an archive rule.
|
| InternetConfiguration |
This configuration sets the network origin for the Amazon S3 access point or multi-region access point to
Internet. |
| JobDetails |
Contains details about the policy generation request.
|
| JobError |
Contains the details about the policy generation error.
|
| KmsGrantConfiguration |
A proposed grant configuration for a KMS key.
|
| KmsGrantConstraints |
Use this structure to propose allowing cryptographic
operations in the grant only when the operation request includes the specified encryption context.
|
| KmsKeyConfiguration |
Proposed access control configuration for a KMS key.
|
| ListAccessPreviewFindingsRequest | |
| ListAccessPreviewFindingsResult | |
| ListAccessPreviewsRequest | |
| ListAccessPreviewsResult | |
| ListAnalyzedResourcesRequest |
Retrieves a list of resources that have been analyzed.
|
| ListAnalyzedResourcesResult |
The response to the request.
|
| ListAnalyzersRequest |
Retrieves a list of analyzers.
|
| ListAnalyzersResult |
The response to the request.
|
| ListArchiveRulesRequest |
Retrieves a list of archive rules created for the specified analyzer.
|
| ListArchiveRulesResult |
The response to the request.
|
| ListFindingsRequest |
Retrieves a list of findings generated by the specified analyzer.
|
| ListFindingsResult |
The response to the request.
|
| ListFindingsV2Request | |
| ListFindingsV2Result | |
| ListPolicyGenerationsRequest | |
| ListPolicyGenerationsResult | |
| ListTagsForResourceRequest |
Retrieves a list of tags applied to the specified resource.
|
| ListTagsForResourceResult |
The response to the request.
|
| Location |
A location in a policy that is represented as a path through the JSON representation and a corresponding span.
|
| NetworkOriginConfiguration |
The proposed
InternetConfiguration or VpcConfiguration to apply to the Amazon S3 access
point. |
| PathElement |
A single element in a path through the JSON representation of a policy.
|
| PolicyGeneration |
Contains details about the policy generation status and properties.
|
| PolicyGenerationDetails |
Contains the ARN details about the IAM entity for which the policy is generated.
|
| Position |
A position in a policy.
|
| RdsDbClusterSnapshotAttributeValue |
The values for a manual Amazon RDS DB cluster snapshot attribute.
|
| RdsDbClusterSnapshotConfiguration |
The proposed access control configuration for an Amazon RDS DB cluster snapshot.
|
| RdsDbSnapshotAttributeValue |
The name and values of a manual Amazon RDS DB snapshot attribute.
|
| RdsDbSnapshotConfiguration |
The proposed access control configuration for an Amazon RDS DB snapshot.
|
| ReasonSummary |
Contains information about the reasoning why a check for access passed or failed.
|
| RecommendationError |
Contains information about the reason that the retrieval of a recommendation for a finding failed.
|
| RecommendedStep |
Contains information about a recommended step for an unused access analyzer finding.
|
| S3AccessPointConfiguration |
The configuration for an Amazon S3 access point or multi-region access point for the bucket.
|
| S3BucketAclGrantConfiguration |
A proposed access control list grant configuration for an Amazon S3 bucket.
|
| S3BucketConfiguration |
Proposed access control configuration for an Amazon S3 bucket.
|
| S3ExpressDirectoryBucketConfiguration |
Proposed access control configuration for an Amazon S3 directory bucket.
|
| S3PublicAccessBlockConfiguration |
The
PublicAccessBlock configuration to apply to this Amazon S3 bucket. |
| SecretsManagerSecretConfiguration |
The configuration for a Secrets Manager secret.
|
| SnsTopicConfiguration |
The proposed access control configuration for an Amazon SNS topic.
|
| SortCriteria |
The criteria used to sort.
|
| Span |
A span in a policy.
|
| SqsQueueConfiguration |
The proposed access control configuration for an Amazon SQS queue.
|
| StartPolicyGenerationRequest | |
| StartPolicyGenerationResult | |
| StartResourceScanRequest |
Starts a scan of the policies applied to the specified resource.
|
| StartResourceScanResult | |
| StatusReason |
Provides more details about the current status of the analyzer.
|
| Substring |
A reference to a substring of a literal string in a JSON document.
|
| TagResourceRequest |
Adds a tag to the specified resource.
|
| TagResourceResult |
The response to the request.
|
| Trail |
Contains details about the CloudTrail trail being analyzed to generate a policy.
|
| TrailProperties |
Contains details about the CloudTrail trail being analyzed to generate a policy.
|
| UntagResourceRequest |
Removes a tag from the specified resource.
|
| UntagResourceResult |
The response to the request.
|
| UnusedAccessConfiguration |
Contains information about an unused access analyzer.
|
| UnusedAction |
Contains information about an unused access finding for an action.
|
| UnusedIamRoleDetails |
Contains information about an unused access finding for an IAM role.
|
| UnusedIamUserAccessKeyDetails |
Contains information about an unused access finding for an IAM user access key.
|
| UnusedIamUserPasswordDetails |
Contains information about an unused access finding for an IAM user password.
|
| UnusedPermissionDetails |
Contains information about an unused access finding for a permission.
|
| UnusedPermissionsRecommendedStep |
Contains information about the action to take for a policy in an unused permissions finding.
|
| UpdateArchiveRuleRequest |
Updates the specified archive rule.
|
| UpdateArchiveRuleResult | |
| UpdateFindingsRequest |
Updates findings with the new values provided in the request.
|
| UpdateFindingsResult | |
| ValidatePolicyFinding |
A finding in a policy.
|
| ValidatePolicyRequest | |
| ValidatePolicyResult | |
| ValidationExceptionField |
Contains information about a validation exception.
|
| VpcConfiguration |
The proposed virtual private cloud (VPC) configuration for the Amazon S3 access point.
|
| Exception | Description |
|---|---|
| AccessDeniedException |
You do not have sufficient access to perform this action.
|
| AWSAccessAnalyzerException |
Base exception for all service exceptions thrown by Access Analyzer
|
| ConflictException |
A conflict exception error.
|
| InternalServerException |
Internal server error.
|
| InvalidParameterException |
The specified parameter is invalid.
|
| ResourceNotFoundException |
The specified resource could not be found.
|
| ServiceQuotaExceededException |
Service quote met error.
|
| ThrottlingException |
Throttling limit exceeded error.
|
| UnprocessableEntityException |
The specified entity could not be processed.
|
| ValidationException |
Validation exception error.
|