controltower

package
v1.48.2 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 21, 2023 License: Apache-2.0 Imports: 10 Imported by: 0

Documentation

Overview

Package controltower provides the client and types for making API requests to AWS Control Tower.

These interfaces allow you to apply the AWS library of pre-defined controls to your organizational units, programmatically. In AWS Control Tower, the terms "control" and "guardrail" are synonyms.

To call these APIs, you'll need to know:

  • the controlIdentifier for the control--or guardrail--you are targeting.

  • the ARN associated with the target organizational unit (OU), which we call the targetIdentifier.

  • the ARN associated with a resource that you wish to tag or untag.

To get the controlIdentifier for your AWS Control Tower control:

The controlIdentifier is an ARN that is specified for each control. You can view the controlIdentifier in the console on the Control details page, as well as in the documentation.

The controlIdentifier is unique in each AWS Region for each control. You can find the controlIdentifier for each Region and control in the Tables of control metadata (https://docs.aws.amazon.com/controltower/latest/userguide/control-metadata-tables.html) in the AWS Control Tower User Guide.

A quick-reference list of control identifers for the AWS Control Tower legacy Strongly recommended and Elective controls is given in Resource identifiers for APIs and controls (https://docs.aws.amazon.com/controltower/latest/userguide/control-identifiers.html.html) in the Controls reference guide section (https://docs.aws.amazon.com/controltower/latest/userguide/control-identifiers.html) of the AWS Control Tower User Guide. Remember that Mandatory controls cannot be added or removed.

ARN format: arn:aws:controltower:{REGION}::control/{CONTROL_NAME}

Example:

arn:aws:controltower:us-west-2::control/AWS-GR_AUTOSCALING_LAUNCH_CONFIG_PUBLIC_IP_DISABLED

To get the targetIdentifier:

The targetIdentifier is the ARN for an OU.

In the AWS Organizations console, you can find the ARN for the OU on the Organizational unit details page associated with that OU.

OU ARN format:

arn:${Partition}:organizations::${MasterAccountId}:ou/o-${OrganizationId}/ou-${OrganizationalUnitId}

Details and examples

To view the open source resource repository on GitHub, see aws-cloudformation/aws-cloudformation-resource-providers-controltower (https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-controltower)

Recording API Requests

AWS Control Tower supports AWS CloudTrail, a service that records AWS API calls for your AWS account and delivers log files to an Amazon S3 bucket. By using information collected by CloudTrail, you can determine which requests the AWS Control Tower service received, who made the request and when, and so on. For more about AWS Control Tower and its support for CloudTrail, see Logging AWS Control Tower Actions with AWS CloudTrail (https://docs.aws.amazon.com/controltower/latest/userguide/logging-using-cloudtrail.html) in the AWS Control Tower User Guide. To learn more about CloudTrail, including how to turn it on and find your log files, see the AWS CloudTrail User Guide.

See https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10 for more information on this service.

See controltower package documentation for more information. https://docs.aws.amazon.com/sdk-for-go/api/service/controltower/

Using the Client

To contact AWS Control Tower with the SDK use the New function to create a new service client. With that client you can make API requests to the service. These clients are safe to use concurrently.

See the SDK's documentation for more information on how to use the SDK. https://docs.aws.amazon.com/sdk-for-go/api/

See aws.Config documentation for more information on configuring SDK clients. https://docs.aws.amazon.com/sdk-for-go/api/aws/#Config

See the AWS Control Tower client ControlTower for more information on creating client for this service. https://docs.aws.amazon.com/sdk-for-go/api/service/controltower/#New

Index

Constants

View Source 
const (
	// ControlOperationStatusSucceeded is a ControlOperationStatus enum value
	ControlOperationStatusSucceeded = "SUCCEEDED"

	// ControlOperationStatusFailed is a ControlOperationStatus enum value
	ControlOperationStatusFailed = "FAILED"

	// ControlOperationStatusInProgress is a ControlOperationStatus enum value
	ControlOperationStatusInProgress = "IN_PROGRESS"
)
View Source 
const (
	// ControlOperationTypeEnableControl is a ControlOperationType enum value
	ControlOperationTypeEnableControl = "ENABLE_CONTROL"

	// ControlOperationTypeDisableControl is a ControlOperationType enum value
	ControlOperationTypeDisableControl = "DISABLE_CONTROL"
)
View Source 
const (
	// DriftStatusDrifted is a DriftStatus enum value
	DriftStatusDrifted = "DRIFTED"

	// DriftStatusInSync is a DriftStatus enum value
	DriftStatusInSync = "IN_SYNC"

	// DriftStatusNotChecking is a DriftStatus enum value
	DriftStatusNotChecking = "NOT_CHECKING"

	// DriftStatusUnknown is a DriftStatus enum value
	DriftStatusUnknown = "UNKNOWN"
)
View Source 
const (
	// EnablementStatusSucceeded is a EnablementStatus enum value
	EnablementStatusSucceeded = "SUCCEEDED"

	// EnablementStatusFailed is a EnablementStatus enum value
	EnablementStatusFailed = "FAILED"

	// EnablementStatusUnderChange is a EnablementStatus enum value
	EnablementStatusUnderChange = "UNDER_CHANGE"
)
View Source 
const (

	// ErrCodeAccessDeniedException for service response error code
	// "AccessDeniedException".
	//
	// User does not have sufficient access to perform this action.
	ErrCodeAccessDeniedException = "AccessDeniedException"

	// ErrCodeConflictException for service response error code
	// "ConflictException".
	//
	// Updating or deleting a resource can cause an inconsistent state.
	ErrCodeConflictException = "ConflictException"

	// ErrCodeInternalServerException for service response error code
	// "InternalServerException".
	//
	// Unexpected error during processing of request.
	ErrCodeInternalServerException = "InternalServerException"

	// ErrCodeResourceNotFoundException for service response error code
	// "ResourceNotFoundException".
	//
	// Request references a resource which does not exist.
	ErrCodeResourceNotFoundException = "ResourceNotFoundException"

	// ErrCodeServiceQuotaExceededException for service response error code
	// "ServiceQuotaExceededException".
	//
	// Request would cause a service quota to be exceeded. The limit is 10 concurrent
	// operations.
	ErrCodeServiceQuotaExceededException = "ServiceQuotaExceededException"

	// ErrCodeThrottlingException for service response error code
	// "ThrottlingException".
	//
	// Request was denied due to request throttling.
	ErrCodeThrottlingException = "ThrottlingException"

	// ErrCodeValidationException for service response error code
	// "ValidationException".
	//
	// The input fails to satisfy the constraints specified by an AWS service.
	ErrCodeValidationException = "ValidationException"
)
View Source 
const (
	ServiceName = "ControlTower" // Name of service.
	EndpointsID = "controltower" // ID to lookup a service endpoint with.
	ServiceID   = "ControlTower" // ServiceID is a unique identifier of a specific service.
)

Service information constants

Variables

This section is empty.

Functions

func ControlOperationStatus_Values 

func ControlOperationStatus_Values() []string

ControlOperationStatus_Values returns all elements of the ControlOperationStatus enum

func ControlOperationType_Values 

func ControlOperationType_Values() []string

ControlOperationType_Values returns all elements of the ControlOperationType enum

func DriftStatus_Values 

func DriftStatus_Values() []string

DriftStatus_Values returns all elements of the DriftStatus enum

func EnablementStatus_Values 

func EnablementStatus_Values() []string

EnablementStatus_Values returns all elements of the EnablementStatus enum

Types

type AccessDeniedException 

type AccessDeniedException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`
	// contains filtered or unexported fields
}

User does not have sufficient access to perform this action.

func (*AccessDeniedException) Code 

func (s *AccessDeniedException) Code() string

Code returns the exception type name.

func (*AccessDeniedException) Error 

func (s *AccessDeniedException) Error() string

func (AccessDeniedException) GoString 

func (s AccessDeniedException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccessDeniedException) Message 

func (s *AccessDeniedException) Message() string

Message returns the exception's message.

func (*AccessDeniedException) OrigErr 

func (s *AccessDeniedException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*AccessDeniedException) RequestID 

func (s *AccessDeniedException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*AccessDeniedException) StatusCode 

func (s *AccessDeniedException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (AccessDeniedException) String 

func (s AccessDeniedException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ConflictException 

type ConflictException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`
	// contains filtered or unexported fields
}

Updating or deleting a resource can cause an inconsistent state.

func (*ConflictException) Code 

func (s *ConflictException) Code() string

Code returns the exception type name.

func (*ConflictException) Error 

func (s *ConflictException) Error() string

func (ConflictException) GoString 

func (s ConflictException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ConflictException) Message 

func (s *ConflictException) Message() string

Message returns the exception's message.

func (*ConflictException) OrigErr 

func (s *ConflictException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ConflictException) RequestID 

func (s *ConflictException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ConflictException) StatusCode 

func (s *ConflictException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ConflictException) String 

func (s ConflictException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ControlOperation 

type ControlOperation struct {

	// The time that the operation finished.
	EndTime *time.Time `locationName:"endTime" type:"timestamp" timestampFormat:"iso8601"`

	// One of ENABLE_CONTROL or DISABLE_CONTROL.
	OperationType *string `locationName:"operationType" type:"string" enum:"ControlOperationType"`

	// The time that the operation began.
	StartTime *time.Time `locationName:"startTime" type:"timestamp" timestampFormat:"iso8601"`

	// One of IN_PROGRESS, SUCEEDED, or FAILED.
	Status *string `locationName:"status" type:"string" enum:"ControlOperationStatus"`

	// If the operation result is FAILED, this string contains a message explaining
	// why the operation failed.
	StatusMessage *string `locationName:"statusMessage" type:"string"`
	// contains filtered or unexported fields
}

An operation performed by the control.

func (ControlOperation) GoString 

func (s ControlOperation) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ControlOperation) SetEndTime 

func (s *ControlOperation) SetEndTime(v time.Time) *ControlOperation

SetEndTime sets the EndTime field's value.

func (*ControlOperation) SetOperationType 

func (s *ControlOperation) SetOperationType(v string) *ControlOperation

SetOperationType sets the OperationType field's value.

func (*ControlOperation) SetStartTime 

func (s *ControlOperation) SetStartTime(v time.Time) *ControlOperation

SetStartTime sets the StartTime field's value.

func (*ControlOperation) SetStatus 

func (s *ControlOperation) SetStatus(v string) *ControlOperation

SetStatus sets the Status field's value.

func (*ControlOperation) SetStatusMessage 

func (s *ControlOperation) SetStatusMessage(v string) *ControlOperation

SetStatusMessage sets the StatusMessage field's value.

func (ControlOperation) String 

func (s ControlOperation) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ControlTower 

type ControlTower struct {
	*client.Client
}

ControlTower provides the API operation methods for making requests to AWS Control Tower. See this package's package overview docs for details on the service.

ControlTower methods are safe to use concurrently. It is not safe to modify mutate any of the struct's properties though.

func New 

func New(p client.ConfigProvider, cfgs ...*aws.Config) *ControlTower

New creates a new instance of the ControlTower client with a session. If additional configuration is needed for the client instance use the optional aws.Config parameter to add your extra config.

Example: 

mySession := session.Must(session.NewSession())

// Create a ControlTower client from just a session.
svc := controltower.New(mySession)

// Create a ControlTower client with additional configuration
svc := controltower.New(mySession, aws.NewConfig().WithRegion("us-west-2"))

func (*ControlTower) DisableControl 

func (c *ControlTower) DisableControl(input *DisableControlInput) (*DisableControlOutput, error)

DisableControl API operation for AWS Control Tower.

This API call turns off a control. It starts an asynchronous operation that deletes AWS resources on the specified organizational unit and the accounts it contains. The resources will vary according to the control that you specify. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation DisableControl for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • ConflictException Updating or deleting a resource can cause an inconsistent state.

  • ServiceQuotaExceededException Request would cause a service quota to be exceeded. The limit is 10 concurrent operations.

  • InternalServerException Unexpected error during processing of request.

  • AccessDeniedException User does not have sufficient access to perform this action.

  • ThrottlingException Request was denied due to request throttling.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/DisableControl

func (*ControlTower) DisableControlRequest 

func (c *ControlTower) DisableControlRequest(input *DisableControlInput) (req *request.Request, output *DisableControlOutput)

DisableControlRequest generates a "aws/request.Request" representing the client's request for the DisableControl operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DisableControl for more information on using the DisableControl API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DisableControlRequest method.
req, resp := client.DisableControlRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/DisableControl

func (*ControlTower) DisableControlWithContext 

func (c *ControlTower) DisableControlWithContext(ctx aws.Context, input *DisableControlInput, opts ...request.Option) (*DisableControlOutput, error)

DisableControlWithContext is the same as DisableControl with the addition of the ability to pass a context and additional request options.

See DisableControl for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) EnableControl 

func (c *ControlTower) EnableControl(input *EnableControlInput) (*EnableControlOutput, error)

EnableControl API operation for AWS Control Tower.

This API call activates a control. It starts an asynchronous operation that creates AWS resources on the specified organizational unit and the accounts it contains. The resources created will vary according to the control that you specify. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation EnableControl for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • ConflictException Updating or deleting a resource can cause an inconsistent state.

  • ServiceQuotaExceededException Request would cause a service quota to be exceeded. The limit is 10 concurrent operations.

  • InternalServerException Unexpected error during processing of request.

  • AccessDeniedException User does not have sufficient access to perform this action.

  • ThrottlingException Request was denied due to request throttling.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/EnableControl

func (*ControlTower) EnableControlRequest 

func (c *ControlTower) EnableControlRequest(input *EnableControlInput) (req *request.Request, output *EnableControlOutput)

EnableControlRequest generates a "aws/request.Request" representing the client's request for the EnableControl operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See EnableControl for more information on using the EnableControl API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the EnableControlRequest method.
req, resp := client.EnableControlRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/EnableControl

func (*ControlTower) EnableControlWithContext 

func (c *ControlTower) EnableControlWithContext(ctx aws.Context, input *EnableControlInput, opts ...request.Option) (*EnableControlOutput, error)

EnableControlWithContext is the same as EnableControl with the addition of the ability to pass a context and additional request options.

See EnableControl for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) GetControlOperation 

func (c *ControlTower) GetControlOperation(input *GetControlOperationInput) (*GetControlOperationOutput, error)

GetControlOperation API operation for AWS Control Tower.

Returns the status of a particular EnableControl or DisableControl operation. Displays a message in case of error. Details for an operation are available for 90 days. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation GetControlOperation for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • InternalServerException Unexpected error during processing of request.

  • AccessDeniedException User does not have sufficient access to perform this action.

  • ThrottlingException Request was denied due to request throttling.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetControlOperation

func (*ControlTower) GetControlOperationRequest 

func (c *ControlTower) GetControlOperationRequest(input *GetControlOperationInput) (req *request.Request, output *GetControlOperationOutput)

GetControlOperationRequest generates a "aws/request.Request" representing the client's request for the GetControlOperation operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetControlOperation for more information on using the GetControlOperation API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the GetControlOperationRequest method.
req, resp := client.GetControlOperationRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetControlOperation

func (*ControlTower) GetControlOperationWithContext 

func (c *ControlTower) GetControlOperationWithContext(ctx aws.Context, input *GetControlOperationInput, opts ...request.Option) (*GetControlOperationOutput, error)

GetControlOperationWithContext is the same as GetControlOperation with the addition of the ability to pass a context and additional request options.

See GetControlOperation for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) GetEnabledControl 

func (c *ControlTower) GetEnabledControl(input *GetEnabledControlInput) (*GetEnabledControlOutput, error)

GetEnabledControl API operation for AWS Control Tower.

Retrieves details about an enabled control. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation GetEnabledControl for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • InternalServerException Unexpected error during processing of request.

  • AccessDeniedException User does not have sufficient access to perform this action.

  • ThrottlingException Request was denied due to request throttling.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetEnabledControl

func (*ControlTower) GetEnabledControlRequest 

func (c *ControlTower) GetEnabledControlRequest(input *GetEnabledControlInput) (req *request.Request, output *GetEnabledControlOutput)

GetEnabledControlRequest generates a "aws/request.Request" representing the client's request for the GetEnabledControl operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetEnabledControl for more information on using the GetEnabledControl API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the GetEnabledControlRequest method.
req, resp := client.GetEnabledControlRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetEnabledControl

func (*ControlTower) GetEnabledControlWithContext 

func (c *ControlTower) GetEnabledControlWithContext(ctx aws.Context, input *GetEnabledControlInput, opts ...request.Option) (*GetEnabledControlOutput, error)

GetEnabledControlWithContext is the same as GetEnabledControl with the addition of the ability to pass a context and additional request options.

See GetEnabledControl for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) ListEnabledControls 

func (c *ControlTower) ListEnabledControls(input *ListEnabledControlsInput) (*ListEnabledControlsOutput, error)

ListEnabledControls API operation for AWS Control Tower.

Lists the controls enabled by AWS Control Tower on the specified organizational unit and the accounts it contains. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation ListEnabledControls for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • InternalServerException Unexpected error during processing of request.

  • AccessDeniedException User does not have sufficient access to perform this action.

  • ThrottlingException Request was denied due to request throttling.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/ListEnabledControls

func (*ControlTower) ListEnabledControlsPages 

func (c *ControlTower) ListEnabledControlsPages(input *ListEnabledControlsInput, fn func(*ListEnabledControlsOutput, bool) bool) error

ListEnabledControlsPages iterates over the pages of a ListEnabledControls operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListEnabledControls method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListEnabledControls operation.
pageNum := 0
err := client.ListEnabledControlsPages(params,
    func(page *controltower.ListEnabledControlsOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*ControlTower) ListEnabledControlsPagesWithContext 

func (c *ControlTower) ListEnabledControlsPagesWithContext(ctx aws.Context, input *ListEnabledControlsInput, fn func(*ListEnabledControlsOutput, bool) bool, opts ...request.Option) error

ListEnabledControlsPagesWithContext same as ListEnabledControlsPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) ListEnabledControlsRequest 

func (c *ControlTower) ListEnabledControlsRequest(input *ListEnabledControlsInput) (req *request.Request, output *ListEnabledControlsOutput)

ListEnabledControlsRequest generates a "aws/request.Request" representing the client's request for the ListEnabledControls operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListEnabledControls for more information on using the ListEnabledControls API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListEnabledControlsRequest method.
req, resp := client.ListEnabledControlsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/ListEnabledControls

func (*ControlTower) ListEnabledControlsWithContext 

func (c *ControlTower) ListEnabledControlsWithContext(ctx aws.Context, input *ListEnabledControlsInput, opts ...request.Option) (*ListEnabledControlsOutput, error)

ListEnabledControlsWithContext is the same as ListEnabledControls with the addition of the ability to pass a context and additional request options.

See ListEnabledControls for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) ListTagsForResource 

func (c *ControlTower) ListTagsForResource(input *ListTagsForResourceInput) (*ListTagsForResourceOutput, error)

ListTagsForResource API operation for AWS Control Tower.

Returns a list of tags associated with the resource. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation ListTagsForResource for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • InternalServerException Unexpected error during processing of request.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/ListTagsForResource

func (*ControlTower) ListTagsForResourceRequest 

func (c *ControlTower) ListTagsForResourceRequest(input *ListTagsForResourceInput) (req *request.Request, output *ListTagsForResourceOutput)

ListTagsForResourceRequest generates a "aws/request.Request" representing the client's request for the ListTagsForResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListTagsForResource for more information on using the ListTagsForResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListTagsForResourceRequest method.
req, resp := client.ListTagsForResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/ListTagsForResource

func (*ControlTower) ListTagsForResourceWithContext 

func (c *ControlTower) ListTagsForResourceWithContext(ctx aws.Context, input *ListTagsForResourceInput, opts ...request.Option) (*ListTagsForResourceOutput, error)

ListTagsForResourceWithContext is the same as ListTagsForResource with the addition of the ability to pass a context and additional request options.

See ListTagsForResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) TagResource 

func (c *ControlTower) TagResource(input *TagResourceInput) (*TagResourceOutput, error)

TagResource API operation for AWS Control Tower.

Applies tags to a resource. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation TagResource for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • InternalServerException Unexpected error during processing of request.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/TagResource

func (*ControlTower) TagResourceRequest 

func (c *ControlTower) TagResourceRequest(input *TagResourceInput) (req *request.Request, output *TagResourceOutput)

TagResourceRequest generates a "aws/request.Request" representing the client's request for the TagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See TagResource for more information on using the TagResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the TagResourceRequest method.
req, resp := client.TagResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/TagResource

func (*ControlTower) TagResourceWithContext 

func (c *ControlTower) TagResourceWithContext(ctx aws.Context, input *TagResourceInput, opts ...request.Option) (*TagResourceOutput, error)

TagResourceWithContext is the same as TagResource with the addition of the ability to pass a context and additional request options.

See TagResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*ControlTower) UntagResource 

func (c *ControlTower) UntagResource(input *UntagResourceInput) (*UntagResourceOutput, error)

UntagResource API operation for AWS Control Tower.

Removes tags from a resource. For usage examples, see the AWS Control Tower User Guide (https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html).

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Control Tower's API operation UntagResource for usage and error information.

Returned Error Types:

  • ValidationException The input fails to satisfy the constraints specified by an AWS service.

  • InternalServerException Unexpected error during processing of request.

  • ResourceNotFoundException Request references a resource which does not exist.

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/UntagResource

func (*ControlTower) UntagResourceRequest 

func (c *ControlTower) UntagResourceRequest(input *UntagResourceInput) (req *request.Request, output *UntagResourceOutput)

UntagResourceRequest generates a "aws/request.Request" representing the client's request for the UntagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See UntagResource for more information on using the UntagResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the UntagResourceRequest method.
req, resp := client.UntagResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/UntagResource

func (*ControlTower) UntagResourceWithContext 

func (c *ControlTower) UntagResourceWithContext(ctx aws.Context, input *UntagResourceInput, opts ...request.Option) (*UntagResourceOutput, error)

UntagResourceWithContext is the same as UntagResource with the addition of the ability to pass a context and additional request options.

See UntagResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

type DisableControlInput 

type DisableControlInput struct {

	// The ARN of the control. Only Strongly recommended and Elective controls are
	// permitted, with the exception of the Region deny control. For information
	// on how to find the controlIdentifier, see the overview page (https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html).
	//
	// ControlIdentifier is a required field
	ControlIdentifier *string `locationName:"controlIdentifier" min:"20" type:"string" required:"true"`

	// The ARN of the organizational unit. For information on how to find the targetIdentifier,
	// see the overview page (https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html).
	//
	// TargetIdentifier is a required field
	TargetIdentifier *string `locationName:"targetIdentifier" min:"20" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DisableControlInput) GoString 

func (s DisableControlInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DisableControlInput) SetControlIdentifier 

func (s *DisableControlInput) SetControlIdentifier(v string) *DisableControlInput

SetControlIdentifier sets the ControlIdentifier field's value.

func (*DisableControlInput) SetTargetIdentifier 

func (s *DisableControlInput) SetTargetIdentifier(v string) *DisableControlInput

SetTargetIdentifier sets the TargetIdentifier field's value.

func (DisableControlInput) String 

func (s DisableControlInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DisableControlInput) Validate 

func (s *DisableControlInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DisableControlOutput 

type DisableControlOutput struct {

	// The ID of the asynchronous operation, which is used to track status. The
	// operation is available for 90 days.
	//
	// OperationIdentifier is a required field
	OperationIdentifier *string `locationName:"operationIdentifier" min:"36" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DisableControlOutput) GoString 

func (s DisableControlOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DisableControlOutput) SetOperationIdentifier 

func (s *DisableControlOutput) SetOperationIdentifier(v string) *DisableControlOutput

SetOperationIdentifier sets the OperationIdentifier field's value.

func (DisableControlOutput) String 

func (s DisableControlOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DriftStatusSummary 

type DriftStatusSummary struct {

	// The drift status of the enabled control.
	//
	// Valid values:
	//
	//    * DRIFTED: The enabledControl deployed in this configuration doesn’t
	//    match the configuration that AWS Control Tower expected.
	//
	//    * IN_SYNC: The enabledControl deployed in this configuration matches the
	//    configuration that AWS Control Tower expected.
	//
	//    * NOT_CHECKING: AWS Control Tower does not check drift for this enabled
	//    control. Drift is not supported for the control type.
	//
	//    * UNKNOWN: AWS Control Tower is not able to check the drift status for
	//    the enabled control.
	DriftStatus *string `locationName:"driftStatus" type:"string" enum:"DriftStatus"`
	// contains filtered or unexported fields
}

The drift summary of the enabled control.

AWS Control Tower expects the enabled control configuration to include all supported and governed Regions. If the enabled control differs from the expected configuration, it is defined to be in a state of drift. You can repair this drift by resetting the enabled control.

func (DriftStatusSummary) GoString 

func (s DriftStatusSummary) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DriftStatusSummary) SetDriftStatus 

func (s *DriftStatusSummary) SetDriftStatus(v string) *DriftStatusSummary

SetDriftStatus sets the DriftStatus field's value.

func (DriftStatusSummary) String 

func (s DriftStatusSummary) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type EnableControlInput 

type EnableControlInput struct {

	// The ARN of the control. Only Strongly recommended and Elective controls are
	// permitted, with the exception of the Region deny control. For information
	// on how to find the controlIdentifier, see the overview page (https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html).
	//
	// ControlIdentifier is a required field
	ControlIdentifier *string `locationName:"controlIdentifier" min:"20" type:"string" required:"true"`

	// Tags to be applied to the EnabledControl resource.
	Tags map[string]*string `locationName:"tags" type:"map"`

	// The ARN of the organizational unit. For information on how to find the targetIdentifier,
	// see the overview page (https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html).
	//
	// TargetIdentifier is a required field
	TargetIdentifier *string `locationName:"targetIdentifier" min:"20" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (EnableControlInput) GoString 

func (s EnableControlInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*EnableControlInput) SetControlIdentifier 

func (s *EnableControlInput) SetControlIdentifier(v string) *EnableControlInput

SetControlIdentifier sets the ControlIdentifier field's value.

func (*EnableControlInput) SetTags 

func (s *EnableControlInput) SetTags(v map[string]*string) *EnableControlInput

SetTags sets the Tags field's value.

func (*EnableControlInput) SetTargetIdentifier 

func (s *EnableControlInput) SetTargetIdentifier(v string) *EnableControlInput

SetTargetIdentifier sets the TargetIdentifier field's value.

func (EnableControlInput) String 

func (s EnableControlInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*EnableControlInput) Validate 

func (s *EnableControlInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type EnableControlOutput 

type EnableControlOutput struct {

	// The ARN of the EnabledControl resource.
	Arn *string `locationName:"arn" min:"20" type:"string"`

	// The ID of the asynchronous operation, which is used to track status. The
	// operation is available for 90 days.
	//
	// OperationIdentifier is a required field
	OperationIdentifier *string `locationName:"operationIdentifier" min:"36" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (EnableControlOutput) GoString 

func (s EnableControlOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*EnableControlOutput) SetArn 

func (s *EnableControlOutput) SetArn(v string) *EnableControlOutput

SetArn sets the Arn field's value.

func (*EnableControlOutput) SetOperationIdentifier 

func (s *EnableControlOutput) SetOperationIdentifier(v string) *EnableControlOutput

SetOperationIdentifier sets the OperationIdentifier field's value.

func (EnableControlOutput) String 

func (s EnableControlOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type EnabledControlDetails 

type EnabledControlDetails struct {

	// The ARN of the enabled control.
	Arn *string `locationName:"arn" min:"20" type:"string"`

	// The control identifier of the enabled control. For information on how to
	// find the controlIdentifier, see the overview page (https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html).
	ControlIdentifier *string `locationName:"controlIdentifier" min:"20" type:"string"`

	// The drift status of the enabled control.
	DriftStatusSummary *DriftStatusSummary `locationName:"driftStatusSummary" type:"structure"`

	// The deployment summary of the enabled control.
	StatusSummary *EnablementStatusSummary `locationName:"statusSummary" type:"structure"`

	// The ARN of the organizational unit. For information on how to find the targetIdentifier,
	// see the overview page (https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html).
	TargetIdentifier *string `locationName:"targetIdentifier" min:"20" type:"string"`

	// Target AWS Regions for the enabled control.
	TargetRegions []*Region `locationName:"targetRegions" type:"list"`
	// contains filtered or unexported fields
}

Information about the enabled control.

func (EnabledControlDetails) GoString 

func (s EnabledControlDetails) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*EnabledControlDetails) SetArn 

func (s *EnabledControlDetails) SetArn(v string) *EnabledControlDetails

SetArn sets the Arn field's value.

func (*EnabledControlDetails) SetControlIdentifier 

func (s *EnabledControlDetails) SetControlIdentifier(v string) *EnabledControlDetails

SetControlIdentifier sets the ControlIdentifier field's value.

func (*EnabledControlDetails) SetDriftStatusSummary 

func (s *EnabledControlDetails) SetDriftStatusSummary(v *DriftStatusSummary) *EnabledControlDetails

SetDriftStatusSummary sets the DriftStatusSummary field's value.

func (*EnabledControlDetails) SetStatusSummary 

func (s *EnabledControlDetails) SetStatusSummary(v *EnablementStatusSummary) *EnabledControlDetails

SetStatusSummary sets the StatusSummary field's value.

func (*EnabledControlDetails) SetTargetIdentifier 

func (s *EnabledControlDetails) SetTargetIdentifier(v string) *EnabledControlDetails

SetTargetIdentifier sets the TargetIdentifier field's value.

func (*EnabledControlDetails) SetTargetRegions 

func (s *EnabledControlDetails) SetTargetRegions(v []*Region) *EnabledControlDetails

SetTargetRegions sets the TargetRegions field's value.

func (EnabledControlDetails) String 

func (s EnabledControlDetails) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type EnabledControlSummary 

type EnabledControlSummary struct {

	// The ARN of the enabled control.
	Arn *string `locationName:"arn" min:"20" type:"string"`

	// The controlIdentifier of the enabled control.
	ControlIdentifier *string `locationName:"controlIdentifier" min:"20" type:"string"`

	// The drift status of the enabled control.
	DriftStatusSummary *DriftStatusSummary `locationName:"driftStatusSummary" type:"structure"`

	// A short description of the status of the enabled control.
	StatusSummary *EnablementStatusSummary `locationName:"statusSummary" type:"structure"`

	// The ARN of the organizational unit.
	TargetIdentifier *string `locationName:"targetIdentifier" min:"20" type:"string"`
	// contains filtered or unexported fields
}

Returns a summary of information about an enabled control.

func (EnabledControlSummary) GoString 

func (s EnabledControlSummary) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*EnabledControlSummary) SetArn 

func (s *EnabledControlSummary) SetArn(v string) *EnabledControlSummary

SetArn sets the Arn field's value.

func (*EnabledControlSummary) SetControlIdentifier 

func (s *EnabledControlSummary) SetControlIdentifier(v string) *EnabledControlSummary

SetControlIdentifier sets the ControlIdentifier field's value.

func (*EnabledControlSummary) SetDriftStatusSummary 

func (s *EnabledControlSummary) SetDriftStatusSummary(v *DriftStatusSummary) *EnabledControlSummary

SetDriftStatusSummary sets the DriftStatusSummary field's value.

func (*EnabledControlSummary) SetStatusSummary 

func (s *EnabledControlSummary) SetStatusSummary(v *EnablementStatusSummary) *EnabledControlSummary

SetStatusSummary sets the StatusSummary field's value.

func (*EnabledControlSummary) SetTargetIdentifier 

func (s *EnabledControlSummary) SetTargetIdentifier(v string) *EnabledControlSummary

SetTargetIdentifier sets the TargetIdentifier field's value.

func (EnabledControlSummary) String 

func (s EnabledControlSummary) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type EnablementStatusSummary 

type EnablementStatusSummary struct {

	// The last operation identifier for the enabled control.
	LastOperationIdentifier *string `locationName:"lastOperationIdentifier" min:"36" type:"string"`

	// The deployment status of the enabled control.
	//
	// Valid values:
	//
	//    * SUCCEEDED: The enabledControl configuration was deployed successfully.
	//
	//    * UNDER_CHANGE: The enabledControl configuration is changing.
	//
	//    * FAILED: The enabledControl configuration failed to deploy.
	Status *string `locationName:"status" type:"string" enum:"EnablementStatus"`
	// contains filtered or unexported fields
}

The deployment summary of the enabled control.

func (EnablementStatusSummary) GoString 

func (s EnablementStatusSummary) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*EnablementStatusSummary) SetLastOperationIdentifier 

func (s *EnablementStatusSummary) SetLastOperationIdentifier(v string) *EnablementStatusSummary

SetLastOperationIdentifier sets the LastOperationIdentifier field's value.

func (*EnablementStatusSummary) SetStatus 

func (s *EnablementStatusSummary) SetStatus(v string) *EnablementStatusSummary

SetStatus sets the Status field's value.

func (EnablementStatusSummary) String 

func (s EnablementStatusSummary) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type GetControlOperationInput 

type GetControlOperationInput struct {

	// The ID of the asynchronous operation, which is used to track status. The
	// operation is available for 90 days.
	//
	// OperationIdentifier is a required field
	OperationIdentifier *string `locationName:"operationIdentifier" min:"36" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (GetControlOperationInput) GoString 

func (s GetControlOperationInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetControlOperationInput) SetOperationIdentifier 

func (s *GetControlOperationInput) SetOperationIdentifier(v string) *GetControlOperationInput

SetOperationIdentifier sets the OperationIdentifier field's value.

func (GetControlOperationInput) String 

func (s GetControlOperationInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetControlOperationInput) Validate 

func (s *GetControlOperationInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetControlOperationOutput 

type GetControlOperationOutput struct {

	// An operation performed by the control.
	//
	// ControlOperation is a required field
	ControlOperation *ControlOperation `locationName:"controlOperation" type:"structure" required:"true"`
	// contains filtered or unexported fields
}

func (GetControlOperationOutput) GoString 

func (s GetControlOperationOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetControlOperationOutput) SetControlOperation 

func (s *GetControlOperationOutput) SetControlOperation(v *ControlOperation) *GetControlOperationOutput

SetControlOperation sets the ControlOperation field's value.

func (GetControlOperationOutput) String 

func (s GetControlOperationOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type GetEnabledControlInput 

type GetEnabledControlInput struct {

	// The controlIdentifier of the enabled control.
	//
	// EnabledControlIdentifier is a required field
	EnabledControlIdentifier *string `locationName:"enabledControlIdentifier" min:"20" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (GetEnabledControlInput) GoString 

func (s GetEnabledControlInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetEnabledControlInput) SetEnabledControlIdentifier 

func (s *GetEnabledControlInput) SetEnabledControlIdentifier(v string) *GetEnabledControlInput

SetEnabledControlIdentifier sets the EnabledControlIdentifier field's value.

func (GetEnabledControlInput) String 

func (s GetEnabledControlInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetEnabledControlInput) Validate 

func (s *GetEnabledControlInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetEnabledControlOutput 

type GetEnabledControlOutput struct {

	// Information about the enabled control.
	//
	// EnabledControlDetails is a required field
	EnabledControlDetails *EnabledControlDetails `locationName:"enabledControlDetails" type:"structure" required:"true"`
	// contains filtered or unexported fields
}

func (GetEnabledControlOutput) GoString 

func (s GetEnabledControlOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetEnabledControlOutput) SetEnabledControlDetails 

func (s *GetEnabledControlOutput) SetEnabledControlDetails(v *EnabledControlDetails) *GetEnabledControlOutput

SetEnabledControlDetails sets the EnabledControlDetails field's value.

func (GetEnabledControlOutput) String 

func (s GetEnabledControlOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type InternalServerException 

type InternalServerException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`
	// contains filtered or unexported fields
}

Unexpected error during processing of request.

func (*InternalServerException) Code 

func (s *InternalServerException) Code() string

Code returns the exception type name.

func (*InternalServerException) Error 

func (s *InternalServerException) Error() string

func (InternalServerException) GoString 

func (s InternalServerException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*InternalServerException) Message 

func (s *InternalServerException) Message() string

Message returns the exception's message.

func (*InternalServerException) OrigErr 

func (s *InternalServerException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*InternalServerException) RequestID 

func (s *InternalServerException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*InternalServerException) StatusCode 

func (s *InternalServerException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (InternalServerException) String 

func (s InternalServerException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListEnabledControlsInput 

type ListEnabledControlsInput struct {

	// How many results to return per API call.
	MaxResults *int64 `locationName:"maxResults" min:"1" type:"integer"`

	// The token to continue the list from a previous API call with the same parameters.
	NextToken *string `locationName:"nextToken" type:"string"`

	// The ARN of the organizational unit. For information on how to find the targetIdentifier,
	// see the overview page (https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html).
	//
	// TargetIdentifier is a required field
	TargetIdentifier *string `locationName:"targetIdentifier" min:"20" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (ListEnabledControlsInput) GoString 

func (s ListEnabledControlsInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListEnabledControlsInput) SetMaxResults 

func (s *ListEnabledControlsInput) SetMaxResults(v int64) *ListEnabledControlsInput

SetMaxResults sets the MaxResults field's value.

func (*ListEnabledControlsInput) SetNextToken 

func (s *ListEnabledControlsInput) SetNextToken(v string) *ListEnabledControlsInput

SetNextToken sets the NextToken field's value.

func (*ListEnabledControlsInput) SetTargetIdentifier 

func (s *ListEnabledControlsInput) SetTargetIdentifier(v string) *ListEnabledControlsInput

SetTargetIdentifier sets the TargetIdentifier field's value.

func (ListEnabledControlsInput) String 

func (s ListEnabledControlsInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListEnabledControlsInput) Validate 

func (s *ListEnabledControlsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListEnabledControlsOutput 

type ListEnabledControlsOutput struct {

	// Lists the controls enabled by AWS Control Tower on the specified organizational
	// unit and the accounts it contains.
	//
	// EnabledControls is a required field
	EnabledControls []*EnabledControlSummary `locationName:"enabledControls" type:"list" required:"true"`

	// Retrieves the next page of results. If the string is empty, the current response
	// is the end of the results.
	NextToken *string `locationName:"nextToken" type:"string"`
	// contains filtered or unexported fields
}

func (ListEnabledControlsOutput) GoString 

func (s ListEnabledControlsOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListEnabledControlsOutput) SetEnabledControls 

func (s *ListEnabledControlsOutput) SetEnabledControls(v []*EnabledControlSummary) *ListEnabledControlsOutput

SetEnabledControls sets the EnabledControls field's value.

func (*ListEnabledControlsOutput) SetNextToken 

func (s *ListEnabledControlsOutput) SetNextToken(v string) *ListEnabledControlsOutput

SetNextToken sets the NextToken field's value.

func (ListEnabledControlsOutput) String 

func (s ListEnabledControlsOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListTagsForResourceInput 

type ListTagsForResourceInput struct {

	// The ARN of the resource.
	//
	// ResourceArn is a required field
	ResourceArn *string `location:"uri" locationName:"resourceArn" min:"20" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (ListTagsForResourceInput) GoString 

func (s ListTagsForResourceInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListTagsForResourceInput) SetResourceArn 

func (s *ListTagsForResourceInput) SetResourceArn(v string) *ListTagsForResourceInput

SetResourceArn sets the ResourceArn field's value.

func (ListTagsForResourceInput) String 

func (s ListTagsForResourceInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListTagsForResourceInput) Validate 

func (s *ListTagsForResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListTagsForResourceOutput 

type ListTagsForResourceOutput struct {

	// A list of tags, as key:value strings.
	//
	// Tags is a required field
	Tags map[string]*string `locationName:"tags" type:"map" required:"true"`
	// contains filtered or unexported fields
}

func (ListTagsForResourceOutput) GoString 

func (s ListTagsForResourceOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListTagsForResourceOutput) SetTags 

func (s *ListTagsForResourceOutput) SetTags(v map[string]*string) *ListTagsForResourceOutput

SetTags sets the Tags field's value.

func (ListTagsForResourceOutput) String 

func (s ListTagsForResourceOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type Region 

type Region struct {

	// The AWS Region name.
	Name *string `locationName:"name" min:"1" type:"string"`
	// contains filtered or unexported fields
}

An AWS Region in which AWS Control Tower expects to find the control deployed.

The expected Regions are based on the Regions that are governed by the landing zone. In certain cases, a control is not actually enabled in the Region as expected, such as during drift, or mixed governance (https://docs.aws.amazon.com/controltower/latest/userguide/region-how.html#mixed-governance).

func (Region) GoString 

func (s Region) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*Region) SetName 

func (s *Region) SetName(v string) *Region

SetName sets the Name field's value.

func (Region) String 

func (s Region) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ResourceNotFoundException 

type ResourceNotFoundException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`
	// contains filtered or unexported fields
}

Request references a resource which does not exist.

func (*ResourceNotFoundException) Code 

func (s *ResourceNotFoundException) Code() string

Code returns the exception type name.

func (*ResourceNotFoundException) Error 

func (s *ResourceNotFoundException) Error() string

func (ResourceNotFoundException) GoString 

func (s ResourceNotFoundException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ResourceNotFoundException) Message 

func (s *ResourceNotFoundException) Message() string

Message returns the exception's message.

func (*ResourceNotFoundException) OrigErr 

func (s *ResourceNotFoundException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ResourceNotFoundException) RequestID 

func (s *ResourceNotFoundException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ResourceNotFoundException) StatusCode 

func (s *ResourceNotFoundException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ResourceNotFoundException) String 

func (s ResourceNotFoundException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ServiceQuotaExceededException 

type ServiceQuotaExceededException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`
	// contains filtered or unexported fields
}

Request would cause a service quota to be exceeded. The limit is 10 concurrent operations.

func (*ServiceQuotaExceededException) Code 

func (s *ServiceQuotaExceededException) Code() string

Code returns the exception type name.

func (*ServiceQuotaExceededException) Error 

func (s *ServiceQuotaExceededException) Error() string

func (ServiceQuotaExceededException) GoString 

func (s ServiceQuotaExceededException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ServiceQuotaExceededException) Message 

func (s *ServiceQuotaExceededException) Message() string

Message returns the exception's message.

func (*ServiceQuotaExceededException) OrigErr 

func (s *ServiceQuotaExceededException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ServiceQuotaExceededException) RequestID 

func (s *ServiceQuotaExceededException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ServiceQuotaExceededException) StatusCode 

func (s *ServiceQuotaExceededException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ServiceQuotaExceededException) String 

func (s ServiceQuotaExceededException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type TagResourceInput 

type TagResourceInput struct {

	// The ARN of the resource to be tagged.
	//
	// ResourceArn is a required field
	ResourceArn *string `location:"uri" locationName:"resourceArn" min:"20" type:"string" required:"true"`

	// Tags to be applied to the resource.
	//
	// Tags is a required field
	Tags map[string]*string `locationName:"tags" type:"map" required:"true"`
	// contains filtered or unexported fields
}

func (TagResourceInput) GoString 

func (s TagResourceInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*TagResourceInput) SetResourceArn 

func (s *TagResourceInput) SetResourceArn(v string) *TagResourceInput

SetResourceArn sets the ResourceArn field's value.

func (*TagResourceInput) SetTags 

func (s *TagResourceInput) SetTags(v map[string]*string) *TagResourceInput

SetTags sets the Tags field's value.

func (TagResourceInput) String 

func (s TagResourceInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*TagResourceInput) Validate 

func (s *TagResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type TagResourceOutput 

type TagResourceOutput struct {
	// contains filtered or unexported fields
}

func (TagResourceOutput) GoString 

func (s TagResourceOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (TagResourceOutput) String 

func (s TagResourceOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ThrottlingException 

type ThrottlingException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`

	// The ID of the service quota that was exceeded.
	QuotaCode *string `locationName:"quotaCode" type:"string"`

	// The number of seconds the caller should wait before retrying.
	RetryAfterSeconds *int64 `location:"header" locationName:"Retry-After" type:"integer"`

	// The ID of the service that is associated with the error.
	ServiceCode *string `locationName:"serviceCode" type:"string"`
	// contains filtered or unexported fields
}

Request was denied due to request throttling.

func (*ThrottlingException) Code 

func (s *ThrottlingException) Code() string

Code returns the exception type name.

func (*ThrottlingException) Error 

func (s *ThrottlingException) Error() string

func (ThrottlingException) GoString 

func (s ThrottlingException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ThrottlingException) Message 

func (s *ThrottlingException) Message() string

Message returns the exception's message.

func (*ThrottlingException) OrigErr 

func (s *ThrottlingException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ThrottlingException) RequestID 

func (s *ThrottlingException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ThrottlingException) StatusCode 

func (s *ThrottlingException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ThrottlingException) String 

func (s ThrottlingException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type UntagResourceInput 

type UntagResourceInput struct {

	// The ARN of the resource.
	//
	// ResourceArn is a required field
	ResourceArn *string `location:"uri" locationName:"resourceArn" min:"20" type:"string" required:"true"`

	// Tag keys to be removed from the resource.
	//
	// TagKeys is a required field
	TagKeys []*string `location:"querystring" locationName:"tagKeys" type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (UntagResourceInput) GoString 

func (s UntagResourceInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UntagResourceInput) SetResourceArn 

func (s *UntagResourceInput) SetResourceArn(v string) *UntagResourceInput

SetResourceArn sets the ResourceArn field's value.

func (*UntagResourceInput) SetTagKeys 

func (s *UntagResourceInput) SetTagKeys(v []*string) *UntagResourceInput

SetTagKeys sets the TagKeys field's value.

func (UntagResourceInput) String 

func (s UntagResourceInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UntagResourceInput) Validate 

func (s *UntagResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UntagResourceOutput 

type UntagResourceOutput struct {
	// contains filtered or unexported fields
}

func (UntagResourceOutput) GoString 

func (s UntagResourceOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (UntagResourceOutput) String 

func (s UntagResourceOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ValidationException 

type ValidationException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"message" type:"string"`
	// contains filtered or unexported fields
}

The input fails to satisfy the constraints specified by an AWS service.

func (*ValidationException) Code 

func (s *ValidationException) Code() string

Code returns the exception type name.

func (*ValidationException) Error 

func (s *ValidationException) Error() string

func (ValidationException) GoString 

func (s ValidationException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ValidationException) Message 

func (s *ValidationException) Message() string

Message returns the exception's message.

func (*ValidationException) OrigErr 

func (s *ValidationException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ValidationException) RequestID 

func (s *ValidationException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ValidationException) StatusCode 

func (s *ValidationException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ValidationException) String 

func (s ValidationException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

Source Files

View all Source files

Directories

Path Synopsis
Package controltoweriface provides an interface to enable mocking the AWS Control Tower service client for testing your code.
 Package controltoweriface provides an interface to enable mocking the AWS Control Tower service client for testing your code.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.