Package software.amazon.awscdk.services.cloudtrail

Interface CfnEventDataStore.AdvancedEventSelectorProperty

All Superinterfaces:

software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:

CfnEventDataStore.AdvancedEventSelectorProperty.Jsii$Proxy

Enclosing class:

CfnEventDataStore

@Stability(Stable)
public static interface CfnEventDataStore.AdvancedEventSelectorProperty
extends software.amazon.jsii.JsiiSerializable

Advanced event selectors let you create fine-grained selectors for AWS CloudTrail management, data, and network activity events.

They help you control costs by logging only those events that are important to you. For more information about configuring advanced event selectors, see the Logging data events , Logging network activity events , and Logging management events topics in the AWS CloudTrail User Guide .

You cannot apply both event selectors and advanced event selectors to a trail.

Supported CloudTrail event record fields for management events

• eventCategory (required)
• eventSource
• readOnly

The following additional fields are available for event data stores:

• eventName
• eventType
• sessionCredentialFromConsole
• userIdentity.arn

Supported CloudTrail event record fields for data events

• eventCategory (required)
• resources.type (required)
• readOnly
• eventName
• resources.ARN

The following additional fields are available for event data stores:

• eventSource
• eventType
• sessionCredentialFromConsole
• userIdentity.arn

Supported CloudTrail event record fields for network activity events

• eventCategory (required)
• eventSource (required)
• eventName
• errorCode - The only valid value for errorCode is VpceAccessDenied .
• vpcEndpointId

For event data stores for CloudTrail Insights events, AWS Config configuration items, Audit Manager evidence, or events outside of AWS , the only supported field is eventCategory .

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.cloudtrail.*;
 AdvancedEventSelectorProperty advancedEventSelectorProperty = AdvancedEventSelectorProperty.builder()
         .fieldSelectors(List.of(AdvancedFieldSelectorProperty.builder()
                 .field("field")
                 // the properties below are optional
                 .endsWith(List.of("endsWith"))
                 .equalTo(List.of("equalTo"))
                 .notEndsWith(List.of("notEndsWith"))
                 .notEquals(List.of("notEquals"))
                 .notStartsWith(List.of("notStartsWith"))
                 .startsWith(List.of("startsWith"))
                 .build()))
         // the properties below are optional
         .name("name")
         .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudtrail-eventdatastore-advancedeventselector.html

Nested Class Summary

Nested Classes

Modifier and Type	Interface	Description
static final class	CfnEventDataStore.AdvancedEventSelectorProperty.Builder	A builder for CfnEventDataStore.AdvancedEventSelectorProperty
static final class	CfnEventDataStore.AdvancedEventSelectorProperty.Jsii$Proxy	An implementation for CfnEventDataStore.AdvancedEventSelectorProperty

Method Summary

Modifier and Type	Method	Description
static CfnEventDataStore.AdvancedEventSelectorProperty.Builder	builder()
Object	getFieldSelectors()	Contains all selector statements in an advanced event selector.
default String	getName()	An optional, descriptive name for an advanced event selector, such as "Log data events for only two S3 buckets".

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Method Details

getFieldSelectors

@Stability(Stable)
@NotNull
Object getFieldSelectors()

Contains all selector statements in an advanced event selector.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudtrail-eventdatastore-advancedeventselector.html#cfn-cloudtrail-eventdatastore-advancedeventselector-fieldselectors

getName

@Stability(Stable)
@Nullable
default String getName()

An optional, descriptive name for an advanced event selector, such as "Log data events for only two S3 buckets".

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudtrail-eventdatastore-advancedeventselector.html#cfn-cloudtrail-eventdatastore-advancedeventselector-name

builder

@Stability(Stable)
static CfnEventDataStore.AdvancedEventSelectorProperty.Builder builder()

Returns:

a CfnEventDataStore.AdvancedEventSelectorProperty.Builder of CfnEventDataStore.AdvancedEventSelectorProperty