Interface ExternalAccessDetails.Builder

All Superinterfaces:
Buildable, CopyableBuilder<ExternalAccessDetails.Builder,ExternalAccessDetails>, SdkBuilder<ExternalAccessDetails.Builder,ExternalAccessDetails>, SdkPojo
Enclosing class:
ExternalAccessDetails
@Mutable @NotThreadSafe public static interface ExternalAccessDetails.Builder extends SdkPojo, CopyableBuilder<ExternalAccessDetails.Builder,ExternalAccessDetails>

  • Method Details

    • action

      ExternalAccessDetails.Builder action(Collection<String> action)

      The action in the analyzed policy statement that an external principal has permission to use.

      Parameters:
      action - The action in the analyzed policy statement that an external principal has permission to use.
      Returns:
      Returns a reference to this object so that method calls can be chained together.

    • action

      ExternalAccessDetails.Builder action(String... action)

      The action in the analyzed policy statement that an external principal has permission to use.

      Parameters:
      action - The action in the analyzed policy statement that an external principal has permission to use.
      Returns:
      Returns a reference to this object so that method calls can be chained together.

    • condition

      ExternalAccessDetails.Builder condition(Map<String,String> condition)

      The condition in the analyzed policy statement that resulted in an external access finding.

      Parameters:
      condition - The condition in the analyzed policy statement that resulted in an external access finding.
      Returns:
      Returns a reference to this object so that method calls can be chained together.

    • isPublic

      ExternalAccessDetails.Builder isPublic(Boolean isPublic)

      Specifies whether the external access finding is public.

      Parameters:
      isPublic - Specifies whether the external access finding is public.
      Returns:
      Returns a reference to this object so that method calls can be chained together.

    • principal

      ExternalAccessDetails.Builder principal(Map<String,String> principal)

      The external principal that has access to a resource within the zone of trust.

      Parameters:
      principal - The external principal that has access to a resource within the zone of trust.
      Returns:
      Returns a reference to this object so that method calls can be chained together.

    • sources

      ExternalAccessDetails.Builder sources(Collection<FindingSource> sources)

      The sources of the external access finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.

      Parameters:
      sources - The sources of the external access finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.
      Returns:
      Returns a reference to this object so that method calls can be chained together.

    • sources

      ExternalAccessDetails.Builder sources(FindingSource... sources)

      The sources of the external access finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.

      Parameters:
      sources - The sources of the external access finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.
      Returns:
      Returns a reference to this object so that method calls can be chained together.

    • sources

      ExternalAccessDetails.Builder sources(Consumer<FindingSource.Builder>... sources)

      The sources of the external access finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.

      This is a convenience method that creates an instance of the FindingSource.Builder avoiding the need to create one manually via FindingSource.builder().

      When the Consumer completes, SdkBuilder.build() is called immediately and its result is passed to sources(List<FindingSource>).

      Parameters:
      sources - a consumer that will call methods on FindingSource.Builder
      Returns:
      Returns a reference to this object so that method calls can be chained together.
      See Also:

    • resourceControlPolicyRestriction

      ExternalAccessDetails.Builder resourceControlPolicyRestriction(String resourceControlPolicyRestriction)

      The type of restriction applied to the finding by the resource owner with an Organizations resource control policy (RCP).

      • APPLICABLE: There is an RCP present in the organization but IAM Access Analyzer does not include it in the evaluation of effective permissions. For example, if s3:DeleteObject is blocked by the RCP and the restriction is APPLICABLE, then s3:DeleteObject would still be included in the list of actions for the finding.

      • FAILED_TO_EVALUATE_RCP: There was an error evaluating the RCP.

      • NOT_APPLICABLE: There was no RCP present in the organization, or there was no RCP applicable to the resource. For example, the resource being analyzed is an Amazon RDS snapshot and there is an RCP in the organization, but the RCP only impacts Amazon S3 buckets.

      • APPLIED: This restriction is not currently available for external access findings.

      Parameters:
      resourceControlPolicyRestriction - The type of restriction applied to the finding by the resource owner with an Organizations resource control policy (RCP).

      • APPLICABLE: There is an RCP present in the organization but IAM Access Analyzer does not include it in the evaluation of effective permissions. For example, if s3:DeleteObject is blocked by the RCP and the restriction is APPLICABLE, then s3:DeleteObject would still be included in the list of actions for the finding.

      • FAILED_TO_EVALUATE_RCP: There was an error evaluating the RCP.

      • NOT_APPLICABLE: There was no RCP present in the organization, or there was no RCP applicable to the resource. For example, the resource being analyzed is an Amazon RDS snapshot and there is an RCP in the organization, but the RCP only impacts Amazon S3 buckets.

      • APPLIED: This restriction is not currently available for external access findings.

      Returns:
      Returns a reference to this object so that method calls can be chained together.
      See Also:

    • resourceControlPolicyRestriction

      ExternalAccessDetails.Builder resourceControlPolicyRestriction(ResourceControlPolicyRestriction resourceControlPolicyRestriction)

      The type of restriction applied to the finding by the resource owner with an Organizations resource control policy (RCP).

      • APPLICABLE: There is an RCP present in the organization but IAM Access Analyzer does not include it in the evaluation of effective permissions. For example, if s3:DeleteObject is blocked by the RCP and the restriction is APPLICABLE, then s3:DeleteObject would still be included in the list of actions for the finding.

      • FAILED_TO_EVALUATE_RCP: There was an error evaluating the RCP.

      • NOT_APPLICABLE: There was no RCP present in the organization, or there was no RCP applicable to the resource. For example, the resource being analyzed is an Amazon RDS snapshot and there is an RCP in the organization, but the RCP only impacts Amazon S3 buckets.

      • APPLIED: This restriction is not currently available for external access findings.

      Parameters:
      resourceControlPolicyRestriction - The type of restriction applied to the finding by the resource owner with an Organizations resource control policy (RCP).

      • APPLICABLE: There is an RCP present in the organization but IAM Access Analyzer does not include it in the evaluation of effective permissions. For example, if s3:DeleteObject is blocked by the RCP and the restriction is APPLICABLE, then s3:DeleteObject would still be included in the list of actions for the finding.

      • FAILED_TO_EVALUATE_RCP: There was an error evaluating the RCP.

      • NOT_APPLICABLE: There was no RCP present in the organization, or there was no RCP applicable to the resource. For example, the resource being analyzed is an Amazon RDS snapshot and there is an RCP in the organization, but the RCP only impacts Amazon S3 buckets.

      • APPLIED: This restriction is not currently available for external access findings.

      Returns:
      Returns a reference to this object so that method calls can be chained together.
      See Also: