com.pulumi.aws.cfg.kotlin.RemediationConfigurationArgs.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-aws-kotlin Show documentation
Show all versions of pulumi-aws-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.aws.cfg.kotlin
import com.pulumi.aws.cfg.RemediationConfigurationArgs.builder
import com.pulumi.aws.cfg.kotlin.inputs.RemediationConfigurationExecutionControlsArgs
import com.pulumi.aws.cfg.kotlin.inputs.RemediationConfigurationExecutionControlsArgsBuilder
import com.pulumi.aws.cfg.kotlin.inputs.RemediationConfigurationParameterArgs
import com.pulumi.aws.cfg.kotlin.inputs.RemediationConfigurationParameterArgsBuilder
import com.pulumi.core.Output
import com.pulumi.core.Output.of
import com.pulumi.kotlin.ConvertibleToJava
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.applySuspend
import kotlin.Boolean
import kotlin.Int
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.collections.List
import kotlin.jvm.JvmName
/**
* Provides an AWS Config Remediation Configuration.
* > **Note:** Config Remediation Configuration requires an existing Config Rule to be present.
* ## Example Usage
* AWS managed rules can be used by setting the source owner to `AWS` and the source identifier to the name of the managed rule. More information about AWS managed rules can be found in the [AWS Config Developer Guide](https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_use-managed-rules.html).
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as aws from "@pulumi/aws";
* const _this = new aws.cfg.Rule("this", {
* name: "example",
* source: {
* owner: "AWS",
* sourceIdentifier: "S3_BUCKET_VERSIONING_ENABLED",
* },
* });
* const thisRemediationConfiguration = new aws.cfg.RemediationConfiguration("this", {
* configRuleName: _this.name,
* resourceType: "AWS::S3::Bucket",
* targetType: "SSM_DOCUMENT",
* targetId: "AWS-EnableS3BucketEncryption",
* targetVersion: "1",
* parameters: [
* {
* name: "AutomationAssumeRole",
* staticValue: "arn:aws:iam::875924563244:role/security_config",
* },
* {
* name: "BucketName",
* resourceValue: "RESOURCE_ID",
* },
* {
* name: "SSEAlgorithm",
* staticValue: "AES256",
* },
* ],
* automatic: true,
* maximumAutomaticAttempts: 10,
* retryAttemptSeconds: 600,
* executionControls: {
* ssmControls: {
* concurrentExecutionRatePercentage: 25,
* errorPercentage: 20,
* },
* },
* });
* ```
* ```python
* import pulumi
* import pulumi_aws as aws
* this = aws.cfg.Rule("this",
* name="example",
* source={
* "owner": "AWS",
* "source_identifier": "S3_BUCKET_VERSIONING_ENABLED",
* })
* this_remediation_configuration = aws.cfg.RemediationConfiguration("this",
* config_rule_name=this.name,
* resource_type="AWS::S3::Bucket",
* target_type="SSM_DOCUMENT",
* target_id="AWS-EnableS3BucketEncryption",
* target_version="1",
* parameters=[
* {
* "name": "AutomationAssumeRole",
* "static_value": "arn:aws:iam::875924563244:role/security_config",
* },
* {
* "name": "BucketName",
* "resource_value": "RESOURCE_ID",
* },
* {
* "name": "SSEAlgorithm",
* "static_value": "AES256",
* },
* ],
* automatic=True,
* maximum_automatic_attempts=10,
* retry_attempt_seconds=600,
* execution_controls={
* "ssm_controls": {
* "concurrent_execution_rate_percentage": 25,
* "error_percentage": 20,
* },
* })
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Aws = Pulumi.Aws;
* return await Deployment.RunAsync(() =>
* {
* var @this = new Aws.Cfg.Rule("this", new()
* {
* Name = "example",
* Source = new Aws.Cfg.Inputs.RuleSourceArgs
* {
* Owner = "AWS",
* SourceIdentifier = "S3_BUCKET_VERSIONING_ENABLED",
* },
* });
* var thisRemediationConfiguration = new Aws.Cfg.RemediationConfiguration("this", new()
* {
* ConfigRuleName = @this.Name,
* ResourceType = "AWS::S3::Bucket",
* TargetType = "SSM_DOCUMENT",
* TargetId = "AWS-EnableS3BucketEncryption",
* TargetVersion = "1",
* Parameters = new[]
* {
* new Aws.Cfg.Inputs.RemediationConfigurationParameterArgs
* {
* Name = "AutomationAssumeRole",
* StaticValue = "arn:aws:iam::875924563244:role/security_config",
* },
* new Aws.Cfg.Inputs.RemediationConfigurationParameterArgs
* {
* Name = "BucketName",
* ResourceValue = "RESOURCE_ID",
* },
* new Aws.Cfg.Inputs.RemediationConfigurationParameterArgs
* {
* Name = "SSEAlgorithm",
* StaticValue = "AES256",
* },
* },
* Automatic = true,
* MaximumAutomaticAttempts = 10,
* RetryAttemptSeconds = 600,
* ExecutionControls = new Aws.Cfg.Inputs.RemediationConfigurationExecutionControlsArgs
* {
* SsmControls = new Aws.Cfg.Inputs.RemediationConfigurationExecutionControlsSsmControlsArgs
* {
* ConcurrentExecutionRatePercentage = 25,
* ErrorPercentage = 20,
* },
* },
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/cfg"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* this, err := cfg.NewRule(ctx, "this", &cfg.RuleArgs{
* Name: pulumi.String("example"),
* Source: &cfg.RuleSourceArgs{
* Owner: pulumi.String("AWS"),
* SourceIdentifier: pulumi.String("S3_BUCKET_VERSIONING_ENABLED"),
* },
* })
* if err != nil {
* return err
* }
* _, err = cfg.NewRemediationConfiguration(ctx, "this", &cfg.RemediationConfigurationArgs{
* ConfigRuleName: this.Name,
* ResourceType: pulumi.String("AWS::S3::Bucket"),
* TargetType: pulumi.String("SSM_DOCUMENT"),
* TargetId: pulumi.String("AWS-EnableS3BucketEncryption"),
* TargetVersion: pulumi.String("1"),
* Parameters: cfg.RemediationConfigurationParameterArray{
* &cfg.RemediationConfigurationParameterArgs{
* Name: pulumi.String("AutomationAssumeRole"),
* StaticValue: pulumi.String("arn:aws:iam::875924563244:role/security_config"),
* },
* &cfg.RemediationConfigurationParameterArgs{
* Name: pulumi.String("BucketName"),
* ResourceValue: pulumi.String("RESOURCE_ID"),
* },
* &cfg.RemediationConfigurationParameterArgs{
* Name: pulumi.String("SSEAlgorithm"),
* StaticValue: pulumi.String("AES256"),
* },
* },
* Automatic: pulumi.Bool(true),
* MaximumAutomaticAttempts: pulumi.Int(10),
* RetryAttemptSeconds: pulumi.Int(600),
* ExecutionControls: &cfg.RemediationConfigurationExecutionControlsArgs{
* SsmControls: &cfg.RemediationConfigurationExecutionControlsSsmControlsArgs{
* ConcurrentExecutionRatePercentage: pulumi.Int(25),
* ErrorPercentage: pulumi.Int(20),
* },
* },
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.aws.cfg.Rule;
* import com.pulumi.aws.cfg.RuleArgs;
* import com.pulumi.aws.cfg.inputs.RuleSourceArgs;
* import com.pulumi.aws.cfg.RemediationConfiguration;
* import com.pulumi.aws.cfg.RemediationConfigurationArgs;
* import com.pulumi.aws.cfg.inputs.RemediationConfigurationParameterArgs;
* import com.pulumi.aws.cfg.inputs.RemediationConfigurationExecutionControlsArgs;
* import com.pulumi.aws.cfg.inputs.RemediationConfigurationExecutionControlsSsmControlsArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var this_ = new Rule("this", RuleArgs.builder()
* .name("example")
* .source(RuleSourceArgs.builder()
* .owner("AWS")
* .sourceIdentifier("S3_BUCKET_VERSIONING_ENABLED")
* .build())
* .build());
* var thisRemediationConfiguration = new RemediationConfiguration("thisRemediationConfiguration", RemediationConfigurationArgs.builder()
* .configRuleName(this_.name())
* .resourceType("AWS::S3::Bucket")
* .targetType("SSM_DOCUMENT")
* .targetId("AWS-EnableS3BucketEncryption")
* .targetVersion("1")
* .parameters(
* RemediationConfigurationParameterArgs.builder()
* .name("AutomationAssumeRole")
* .staticValue("arn:aws:iam::875924563244:role/security_config")
* .build(),
* RemediationConfigurationParameterArgs.builder()
* .name("BucketName")
* .resourceValue("RESOURCE_ID")
* .build(),
* RemediationConfigurationParameterArgs.builder()
* .name("SSEAlgorithm")
* .staticValue("AES256")
* .build())
* .automatic(true)
* .maximumAutomaticAttempts(10)
* .retryAttemptSeconds(600)
* .executionControls(RemediationConfigurationExecutionControlsArgs.builder()
* .ssmControls(RemediationConfigurationExecutionControlsSsmControlsArgs.builder()
* .concurrentExecutionRatePercentage(25)
* .errorPercentage(20)
* .build())
* .build())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* this:
* type: aws:cfg:Rule
* properties:
* name: example
* source:
* owner: AWS
* sourceIdentifier: S3_BUCKET_VERSIONING_ENABLED
* thisRemediationConfiguration:
* type: aws:cfg:RemediationConfiguration
* name: this
* properties:
* configRuleName: ${this.name}
* resourceType: AWS::S3::Bucket
* targetType: SSM_DOCUMENT
* targetId: AWS-EnableS3BucketEncryption
* targetVersion: '1'
* parameters:
* - name: AutomationAssumeRole
* staticValue: arn:aws:iam::875924563244:role/security_config
* - name: BucketName
* resourceValue: RESOURCE_ID
* - name: SSEAlgorithm
* staticValue: AES256
* automatic: true
* maximumAutomaticAttempts: 10
* retryAttemptSeconds: 600
* executionControls:
* ssmControls:
* concurrentExecutionRatePercentage: 25
* errorPercentage: 20
* ```
*
* ## Import
* Using `pulumi import`, import Remediation Configurations using the name config_rule_name. For example:
* ```sh
* $ pulumi import aws:cfg/remediationConfiguration:RemediationConfiguration this example
* ```
* @property automatic Remediation is triggered automatically if `true`.
* @property configRuleName Name of the AWS Config rule.
* @property executionControls Configuration block for execution controls. See below.
* @property maximumAutomaticAttempts Maximum number of failed attempts for auto-remediation. If you do not select a number, the default is 5.
* @property parameters Can be specified multiple times for each parameter. Each parameter block supports arguments below.
* @property resourceType Type of resource.
* @property retryAttemptSeconds Maximum time in seconds that AWS Config runs auto-remediation. If you do not select a number, the default is 60 seconds.
* @property targetId Target ID is the name of the public document.
* @property targetType Type of the target. Target executes remediation. For example, SSM document.
* The following arguments are optional:
* @property targetVersion Version of the target. For example, version of the SSM document
*/
public data class RemediationConfigurationArgs(
public val automatic: Output? = null,
public val configRuleName: Output? = null,
public val executionControls: Output? = null,
public val maximumAutomaticAttempts: Output? = null,
public val parameters: Output>? = null,
public val resourceType: Output? = null,
public val retryAttemptSeconds: Output? = null,
public val targetId: Output? = null,
public val targetType: Output? = null,
public val targetVersion: Output? = null,
) : ConvertibleToJava {
override fun toJava(): com.pulumi.aws.cfg.RemediationConfigurationArgs =
com.pulumi.aws.cfg.RemediationConfigurationArgs.builder()
.automatic(automatic?.applyValue({ args0 -> args0 }))
.configRuleName(configRuleName?.applyValue({ args0 -> args0 }))
.executionControls(executionControls?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.maximumAutomaticAttempts(maximumAutomaticAttempts?.applyValue({ args0 -> args0 }))
.parameters(
parameters?.applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 ->
args0.toJava()
})
})
}),
)
.resourceType(resourceType?.applyValue({ args0 -> args0 }))
.retryAttemptSeconds(retryAttemptSeconds?.applyValue({ args0 -> args0 }))
.targetId(targetId?.applyValue({ args0 -> args0 }))
.targetType(targetType?.applyValue({ args0 -> args0 }))
.targetVersion(targetVersion?.applyValue({ args0 -> args0 })).build()
}
/**
* Builder for [RemediationConfigurationArgs].
*/
@PulumiTagMarker
public class RemediationConfigurationArgsBuilder internal constructor() {
private var automatic: Output? = null
private var configRuleName: Output? = null
private var executionControls: Output? = null
private var maximumAutomaticAttempts: Output? = null
private var parameters: Output>? = null
private var resourceType: Output? = null
private var retryAttemptSeconds: Output? = null
private var targetId: Output? = null
private var targetType: Output? = null
private var targetVersion: Output? = null
/**
* @param value Remediation is triggered automatically if `true`.
*/
@JvmName("sxdrsstbxsxqdfsl")
public suspend fun automatic(`value`: Output) {
this.automatic = value
}
/**
* @param value Name of the AWS Config rule.
*/
@JvmName("upkwqsqvlbqxjhts")
public suspend fun configRuleName(`value`: Output) {
this.configRuleName = value
}
/**
* @param value Configuration block for execution controls. See below.
*/
@JvmName("jrvtgmebnisjgfee")
public suspend fun executionControls(`value`: Output) {
this.executionControls = value
}
/**
* @param value Maximum number of failed attempts for auto-remediation. If you do not select a number, the default is 5.
*/
@JvmName("qndtddskccpfitdm")
public suspend fun maximumAutomaticAttempts(`value`: Output) {
this.maximumAutomaticAttempts = value
}
/**
* @param value Can be specified multiple times for each parameter. Each parameter block supports arguments below.
*/
@JvmName("gfgjqlwgufsnuqgu")
public suspend fun parameters(`value`: Output>) {
this.parameters = value
}
@JvmName("jxuedwbyeedxvxhw")
public suspend fun parameters(vararg values: Output) {
this.parameters = Output.all(values.asList())
}
/**
* @param values Can be specified multiple times for each parameter. Each parameter block supports arguments below.
*/
@JvmName("eoivtxniaeuthpvs")
public suspend fun parameters(values: List>) {
this.parameters = Output.all(values)
}
/**
* @param value Type of resource.
*/
@JvmName("oxrfroompsitsaol")
public suspend fun resourceType(`value`: Output) {
this.resourceType = value
}
/**
* @param value Maximum time in seconds that AWS Config runs auto-remediation. If you do not select a number, the default is 60 seconds.
*/
@JvmName("dfpgjsqifghtttyi")
public suspend fun retryAttemptSeconds(`value`: Output) {
this.retryAttemptSeconds = value
}
/**
* @param value Target ID is the name of the public document.
*/
@JvmName("lgvosoosjyumwaga")
public suspend fun targetId(`value`: Output) {
this.targetId = value
}
/**
* @param value Type of the target. Target executes remediation. For example, SSM document.
* The following arguments are optional:
*/
@JvmName("qykcidqvtnsprjlf")
public suspend fun targetType(`value`: Output) {
this.targetType = value
}
/**
* @param value Version of the target. For example, version of the SSM document
*/
@JvmName("xrngercdhqnnkckb")
public suspend fun targetVersion(`value`: Output) {
this.targetVersion = value
}
/**
* @param value Remediation is triggered automatically if `true`.
*/
@JvmName("luudyrpvlhnmyafr")
public suspend fun automatic(`value`: Boolean?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.automatic = mapped
}
/**
* @param value Name of the AWS Config rule.
*/
@JvmName("gyhbhnjmuwxbqrwc")
public suspend fun configRuleName(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.configRuleName = mapped
}
/**
* @param value Configuration block for execution controls. See below.
*/
@JvmName("dftbrwmyfmppvuyf")
public suspend fun executionControls(`value`: RemediationConfigurationExecutionControlsArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.executionControls = mapped
}
/**
* @param argument Configuration block for execution controls. See below.
*/
@JvmName("idwgxvxugqviwaay")
public suspend fun executionControls(argument: suspend RemediationConfigurationExecutionControlsArgsBuilder.() -> Unit) {
val toBeMapped = RemediationConfigurationExecutionControlsArgsBuilder().applySuspend {
argument()
}.build()
val mapped = of(toBeMapped)
this.executionControls = mapped
}
/**
* @param value Maximum number of failed attempts for auto-remediation. If you do not select a number, the default is 5.
*/
@JvmName("cwbtydebeetvkihu")
public suspend fun maximumAutomaticAttempts(`value`: Int?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.maximumAutomaticAttempts = mapped
}
/**
* @param value Can be specified multiple times for each parameter. Each parameter block supports arguments below.
*/
@JvmName("kpgfgppsevmnelon")
public suspend fun parameters(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.parameters = mapped
}
/**
* @param argument Can be specified multiple times for each parameter. Each parameter block supports arguments below.
*/
@JvmName("jqvvijuidexhgwxb")
public suspend fun parameters(argument: List Unit>) {
val toBeMapped = argument.toList().map {
RemediationConfigurationParameterArgsBuilder().applySuspend { it() }.build()
}
val mapped = of(toBeMapped)
this.parameters = mapped
}
/**
* @param argument Can be specified multiple times for each parameter. Each parameter block supports arguments below.
*/
@JvmName("ohcxygbniqrfvvny")
public suspend fun parameters(vararg argument: suspend RemediationConfigurationParameterArgsBuilder.() -> Unit) {
val toBeMapped = argument.toList().map {
RemediationConfigurationParameterArgsBuilder().applySuspend { it() }.build()
}
val mapped = of(toBeMapped)
this.parameters = mapped
}
/**
* @param argument Can be specified multiple times for each parameter. Each parameter block supports arguments below.
*/
@JvmName("nhmbcjtmunvvbuar")
public suspend fun parameters(argument: suspend RemediationConfigurationParameterArgsBuilder.() -> Unit) {
val toBeMapped = listOf(
RemediationConfigurationParameterArgsBuilder().applySuspend {
argument()
}.build(),
)
val mapped = of(toBeMapped)
this.parameters = mapped
}
/**
* @param values Can be specified multiple times for each parameter. Each parameter block supports arguments below.
*/
@JvmName("oykwkdfgtyrkxyot")
public suspend fun parameters(vararg values: RemediationConfigurationParameterArgs) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.parameters = mapped
}
/**
* @param value Type of resource.
*/
@JvmName("dkhdcougyylgisjr")
public suspend fun resourceType(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.resourceType = mapped
}
/**
* @param value Maximum time in seconds that AWS Config runs auto-remediation. If you do not select a number, the default is 60 seconds.
*/
@JvmName("alsaccpiloygsnyf")
public suspend fun retryAttemptSeconds(`value`: Int?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.retryAttemptSeconds = mapped
}
/**
* @param value Target ID is the name of the public document.
*/
@JvmName("hnefjxtsmirjqiyx")
public suspend fun targetId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.targetId = mapped
}
/**
* @param value Type of the target. Target executes remediation. For example, SSM document.
* The following arguments are optional:
*/
@JvmName("epjhumdksilfrdud")
public suspend fun targetType(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.targetType = mapped
}
/**
* @param value Version of the target. For example, version of the SSM document
*/
@JvmName("sphotbrdphjktjxu")
public suspend fun targetVersion(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.targetVersion = mapped
}
internal fun build(): RemediationConfigurationArgs = RemediationConfigurationArgs(
automatic = automatic,
configRuleName = configRuleName,
executionControls = executionControls,
maximumAutomaticAttempts = maximumAutomaticAttempts,
parameters = parameters,
resourceType = resourceType,
retryAttemptSeconds = retryAttemptSeconds,
targetId = targetId,
targetType = targetType,
targetVersion = targetVersion,
)
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy