com.pulumi.aws.guardduty.kotlin.ThreatIntelSet.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-aws-kotlin Show documentation
Show all versions of pulumi-aws-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.aws.guardduty.kotlin
import com.pulumi.core.Output
import com.pulumi.kotlin.KotlinCustomResource
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.ResourceMapper
import com.pulumi.kotlin.options.CustomResourceOptions
import com.pulumi.kotlin.options.CustomResourceOptionsBuilder
import com.pulumi.resources.Resource
import kotlin.Boolean
import kotlin.Deprecated
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.collections.Map
/**
* Builder for [ThreatIntelSet].
*/
@PulumiTagMarker
public class ThreatIntelSetResourceBuilder internal constructor() {
public var name: String? = null
public var args: ThreatIntelSetArgs = ThreatIntelSetArgs()
public var opts: CustomResourceOptions = CustomResourceOptions()
/**
* @param name The _unique_ name of the resulting resource.
*/
public fun name(`value`: String) {
this.name = value
}
/**
* @param block The arguments to use to populate this resource's properties.
*/
public suspend fun args(block: suspend ThreatIntelSetArgsBuilder.() -> Unit) {
val builder = ThreatIntelSetArgsBuilder()
block(builder)
this.args = builder.build()
}
/**
* @param block A bag of options that control this resource's behavior.
*/
public suspend fun opts(block: suspend CustomResourceOptionsBuilder.() -> Unit) {
this.opts = com.pulumi.kotlin.options.CustomResourceOptions.opts(block)
}
internal fun build(): ThreatIntelSet {
val builtJavaResource = com.pulumi.aws.guardduty.ThreatIntelSet(
this.name,
this.args.toJava(),
this.opts.toJava(),
)
return ThreatIntelSet(builtJavaResource)
}
}
/**
* Provides a resource to manage a GuardDuty ThreatIntelSet.
* > **Note:** Currently in GuardDuty, users from member accounts cannot upload and further manage ThreatIntelSets. ThreatIntelSets that are uploaded by the primary account are imposed on GuardDuty functionality in its member accounts. See the [GuardDuty API Documentation](https://docs.aws.amazon.com/guardduty/latest/ug/create-threat-intel-set.html)
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as aws from "@pulumi/aws";
* const primary = new aws.guardduty.Detector("primary", {enable: true});
* const bucket = new aws.s3.BucketV2("bucket", {});
* const bucketAcl = new aws.s3.BucketAclV2("bucket_acl", {
* bucket: bucket.id,
* acl: "private",
* });
* const myThreatIntelSet = new aws.s3.BucketObjectv2("MyThreatIntelSet", {
* acl: "public-read",
* content: "10.0.0.0/8\n",
* bucket: bucket.id,
* key: "MyThreatIntelSet",
* });
* const myThreatIntelSetThreatIntelSet = new aws.guardduty.ThreatIntelSet("MyThreatIntelSet", {
* activate: true,
* detectorId: primary.id,
* format: "TXT",
* location: pulumi.interpolate`https://s3.amazonaws.com/${myThreatIntelSet.bucket}/${myThreatIntelSet.key}`,
* name: "MyThreatIntelSet",
* });
* ```
* ```python
* import pulumi
* import pulumi_aws as aws
* primary = aws.guardduty.Detector("primary", enable=True)
* bucket = aws.s3.BucketV2("bucket")
* bucket_acl = aws.s3.BucketAclV2("bucket_acl",
* bucket=bucket.id,
* acl="private")
* my_threat_intel_set = aws.s3.BucketObjectv2("MyThreatIntelSet",
* acl="public-read",
* content="10.0.0.0/8\n",
* bucket=bucket.id,
* key="MyThreatIntelSet")
* my_threat_intel_set_threat_intel_set = aws.guardduty.ThreatIntelSet("MyThreatIntelSet",
* activate=True,
* detector_id=primary.id,
* format="TXT",
* location=pulumi.Output.all(
* bucket=my_threat_intel_set.bucket,
* key=my_threat_intel_set.key
* ).apply(lambda resolved_outputs: f"https://s3.amazonaws.com/{resolved_outputs['bucket']}/{resolved_outputs['key']}")
* ,
* name="MyThreatIntelSet")
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Aws = Pulumi.Aws;
* return await Deployment.RunAsync(() =>
* {
* var primary = new Aws.GuardDuty.Detector("primary", new()
* {
* Enable = true,
* });
* var bucket = new Aws.S3.BucketV2("bucket");
* var bucketAcl = new Aws.S3.BucketAclV2("bucket_acl", new()
* {
* Bucket = bucket.Id,
* Acl = "private",
* });
* var myThreatIntelSet = new Aws.S3.BucketObjectv2("MyThreatIntelSet", new()
* {
* Acl = "public-read",
* Content = @"10.0.0.0/8
* ",
* Bucket = bucket.Id,
* Key = "MyThreatIntelSet",
* });
* var myThreatIntelSetThreatIntelSet = new Aws.GuardDuty.ThreatIntelSet("MyThreatIntelSet", new()
* {
* Activate = true,
* DetectorId = primary.Id,
* Format = "TXT",
* Location = Output.Tuple(myThreatIntelSet.Bucket, myThreatIntelSet.Key).Apply(values =>
* {
* var bucket = values.Item1;
* var key = values.Item2;
* return $"https://s3.amazonaws.com/{bucket}/{key}";
* }),
* Name = "MyThreatIntelSet",
* });
* });
* ```
* ```go
* package main
* import (
* "fmt"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/guardduty"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/s3"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* primary, err := guardduty.NewDetector(ctx, "primary", &guardduty.DetectorArgs{
* Enable: pulumi.Bool(true),
* })
* if err != nil {
* return err
* }
* bucket, err := s3.NewBucketV2(ctx, "bucket", nil)
* if err != nil {
* return err
* }
* _, err = s3.NewBucketAclV2(ctx, "bucket_acl", &s3.BucketAclV2Args{
* Bucket: bucket.ID(),
* Acl: pulumi.String("private"),
* })
* if err != nil {
* return err
* }
* myThreatIntelSet, err := s3.NewBucketObjectv2(ctx, "MyThreatIntelSet", &s3.BucketObjectv2Args{
* Acl: pulumi.String("public-read"),
* Content: pulumi.String("10.0.0.0/8\n"),
* Bucket: bucket.ID(),
* Key: pulumi.String("MyThreatIntelSet"),
* })
* if err != nil {
* return err
* }
* _, err = guardduty.NewThreatIntelSet(ctx, "MyThreatIntelSet", &guardduty.ThreatIntelSetArgs{
* Activate: pulumi.Bool(true),
* DetectorId: primary.ID(),
* Format: pulumi.String("TXT"),
* Location: pulumi.All(myThreatIntelSet.Bucket, myThreatIntelSet.Key).ApplyT(func(_args []interface{}) (string, error) {
* bucket := _args[0].(string)
* key := _args[1].(string)
* return fmt.Sprintf("https://s3.amazonaws.com/%v/%v", bucket, key), nil
* }).(pulumi.StringOutput),
* Name: pulumi.String("MyThreatIntelSet"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.aws.guardduty.Detector;
* import com.pulumi.aws.guardduty.DetectorArgs;
* import com.pulumi.aws.s3.BucketV2;
* import com.pulumi.aws.s3.BucketAclV2;
* import com.pulumi.aws.s3.BucketAclV2Args;
* import com.pulumi.aws.s3.BucketObjectv2;
* import com.pulumi.aws.s3.BucketObjectv2Args;
* import com.pulumi.aws.guardduty.ThreatIntelSet;
* import com.pulumi.aws.guardduty.ThreatIntelSetArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var primary = new Detector("primary", DetectorArgs.builder()
* .enable(true)
* .build());
* var bucket = new BucketV2("bucket");
* var bucketAcl = new BucketAclV2("bucketAcl", BucketAclV2Args.builder()
* .bucket(bucket.id())
* .acl("private")
* .build());
* var myThreatIntelSet = new BucketObjectv2("myThreatIntelSet", BucketObjectv2Args.builder()
* .acl("public-read")
* .content("""
* 10.0.0.0/8
* """)
* .bucket(bucket.id())
* .key("MyThreatIntelSet")
* .build());
* var myThreatIntelSetThreatIntelSet = new ThreatIntelSet("myThreatIntelSetThreatIntelSet", ThreatIntelSetArgs.builder()
* .activate(true)
* .detectorId(primary.id())
* .format("TXT")
* .location(Output.tuple(myThreatIntelSet.bucket(), myThreatIntelSet.key()).applyValue(values -> {
* var bucket = values.t1;
* var key = values.t2;
* return String.format("https://s3.amazonaws.com/%s/%s", bucket,key);
* }))
* .name("MyThreatIntelSet")
* .build());
* }
* }
* ```
* ```yaml
* resources:
* primary:
* type: aws:guardduty:Detector
* properties:
* enable: true
* bucket:
* type: aws:s3:BucketV2
* bucketAcl:
* type: aws:s3:BucketAclV2
* name: bucket_acl
* properties:
* bucket: ${bucket.id}
* acl: private
* myThreatIntelSet:
* type: aws:s3:BucketObjectv2
* name: MyThreatIntelSet
* properties:
* acl: public-read
* content: |
* 10.0.0.0/8
* bucket: ${bucket.id}
* key: MyThreatIntelSet
* myThreatIntelSetThreatIntelSet:
* type: aws:guardduty:ThreatIntelSet
* name: MyThreatIntelSet
* properties:
* activate: true
* detectorId: ${primary.id}
* format: TXT
* location: https://s3.amazonaws.com/${myThreatIntelSet.bucket}/${myThreatIntelSet.key}
* name: MyThreatIntelSet
* ```
*
* ## Import
* Using `pulumi import`, import GuardDuty ThreatIntelSet using the primary GuardDuty detector ID and ThreatIntelSetID. For example:
* ```sh
* $ pulumi import aws:guardduty/threatIntelSet:ThreatIntelSet MyThreatIntelSet 00b00fd5aecc0ab60a708659477e9617:123456789012
* ```
*/
public class ThreatIntelSet internal constructor(
override val javaResource: com.pulumi.aws.guardduty.ThreatIntelSet,
) : KotlinCustomResource(javaResource, ThreatIntelSetMapper) {
/**
* Specifies whether GuardDuty is to start using the uploaded ThreatIntelSet.
*/
public val activate: Output
get() = javaResource.activate().applyValue({ args0 -> args0 })
/**
* Amazon Resource Name (ARN) of the GuardDuty ThreatIntelSet.
*/
public val arn: Output
get() = javaResource.arn().applyValue({ args0 -> args0 })
/**
* The detector ID of the GuardDuty.
*/
public val detectorId: Output
get() = javaResource.detectorId().applyValue({ args0 -> args0 })
/**
* The format of the file that contains the ThreatIntelSet. Valid values: `TXT` | `STIX` | `OTX_CSV` | `ALIEN_VAULT` | `PROOF_POINT` | `FIRE_EYE`
*/
public val format: Output
get() = javaResource.format().applyValue({ args0 -> args0 })
/**
* The URI of the file that contains the ThreatIntelSet.
*/
public val location: Output
get() = javaResource.location().applyValue({ args0 -> args0 })
/**
* The friendly name to identify the ThreatIntelSet.
*/
public val name: Output
get() = javaResource.name().applyValue({ args0 -> args0 })
/**
* Key-value map of resource tags. .If configured with a provider `default_tags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.
*/
public val tags: Output>?
get() = javaResource.tags().applyValue({ args0 ->
args0.map({ args0 ->
args0.map({ args0 ->
args0.key.to(args0.value)
}).toMap()
}).orElse(null)
})
/**
* A map of tags assigned to the resource, including those inherited from the provider `default_tags` configuration block.
*/
@Deprecated(
message = """
Please use `tags` instead.
""",
)
public val tagsAll: Output>
get() = javaResource.tagsAll().applyValue({ args0 ->
args0.map({ args0 ->
args0.key.to(args0.value)
}).toMap()
})
}
public object ThreatIntelSetMapper : ResourceMapper {
override fun supportsMappingOfType(javaResource: Resource): Boolean =
com.pulumi.aws.guardduty.ThreatIntelSet::class == javaResource::class
override fun map(javaResource: Resource): ThreatIntelSet = ThreatIntelSet(
javaResource as
com.pulumi.aws.guardduty.ThreatIntelSet,
)
}
/**
* @see [ThreatIntelSet].
* @param name The _unique_ name of the resulting resource.
* @param block Builder for [ThreatIntelSet].
*/
public suspend fun threatIntelSet(
name: String,
block: suspend ThreatIntelSetResourceBuilder.() -> Unit,
): ThreatIntelSet {
val builder = ThreatIntelSetResourceBuilder()
builder.name(name)
block(builder)
return builder.build()
}
/**
* @see [ThreatIntelSet].
* @param name The _unique_ name of the resulting resource.
*/
public fun threatIntelSet(name: String): ThreatIntelSet {
val builder = ThreatIntelSetResourceBuilder()
builder.name(name)
return builder.build()
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy