Cloudtrail Event
Accessanalyzer
Account
Acm
Amp
Amplify
Amplifybackend
Accessanalyzer
Account
Acm
Amp
Amplify
Amplifybackend
Apigateway
Apigatewaymanagementapi
Apigatewayv2
Appconfig
Appflow
Appintegrations
Application-autoscaling
Applicationcostprofiler
Appmesh
Apprunner
Appstream
Appsync
Athena
Auditmanager
Autoscaling-plans
Autoscaling
Batch
Braket
Budgets
Chime-sdk-identity
Chime-sdk-meetings
Chime-sdk-messaging
Chime
Cloud9
Cloudcontrol
Cloudformation
Cloudfront
Cloudhsm
Cloudhsmv2
Cloudsearch
Cloudsearchdomain
Cloudwatch
Codeartifact
Codebuild
Codecommit
Codedeploy
Codeguru-reviewer
Codeguruprofiler
Codepipeline
Codestar-connections
Codestar-notifications
Codestar
Cognito-identity
Cognito-sync
Comprehendmedical
Compute-optimizer
Connect-contact-lens
Connect
Connectparticipant
Cur
Databrew
Dataexchange
Datapipeline
Datasync
Detective
Devicefarm
Devops-guru
Directconnect
Discovery
Dlm
Docdb
Ds
Dynamodb
Dynamodbstreams
Ebs
Ec2-instance-connect
Ecr-public
Ecr
Ecs
Eks
Elastic-inference
Elasticache
Elasticbeanstalk
Elastictranscoder
Elb
Elbv2
Emr-containers
Emr
Es
Events
Finspace-data
Finspace
Firehose
Fis
Forecast
Forecastquery
Gamelift
Glacier
Globalaccelerator
Grafana
Greengrass
Greengrassv2
Guardduty
Health
Healthlake
Honeycode
Iam
Identitystore
Imagebuilder
Importexport
Inspector
Iot-data
Iot-jobs-data
Iot
Iot1click-devices
Iot1click-projects
Iotanalytics
Iotdeviceadvisor
Iotevents-data
Iotevents
Iotfleethub
Iotsecuretunneling
Iotsitewise
Iotthingsgraph
Iotwireless
Ivs
Kafka
Kafkaconnect
Kendra
Kinesis-video-media
Kinesis-video-signaling
Kinesis
Kinesisanalytics
Kinesisanalyticsv2
Kinesisvideo
Kms
Lakeformation
Lambda
Lex-models
Lex-runtime
Lexv2-models
Lexv2-runtime
License-manager
Lightsail
Logs
Lookoutequipment
Lookoutmetrics
Lookoutvision
Machinelearning
Macie
Macie2
Managedblockchain
Marketplace-catalog
Marketplace-entitlement
Marketplacecommerceanalytics
Mediaconnect
Mediaconvert
Medialive
Mediapackage-vod
Mediapackage
Mediastore
Mediatailor
Memorydb
Mgh
Mgn
Migrationhub-config
Mobile
Mq
Mwaa
Neptune
Networkmanager
Nimble
Opensearch
Opsworks
Opsworkscm
Organizations
Outposts
Panorama
Personalize-events
Personalize-runtime
Personalize
Pi
Pinpoint-email
Pinpoint-sms-voice
Polly
Pricing
Proton
Qldb-session
Qldb
Quicksight
Ram
Rds-data
Rds
Redshift-data
Redshift
Rekognition
Resource-groups
Resourcegroupstaggingapi
Robomaker
Route53-recovery-cluster
Route53-recovery-control-config
Route53-recovery-readiness
Route53
Route53domains
Route53resolver
S3
S3control
S3outposts
Sagemaker-a2i-runtime
Sagemaker-edge
Sagemaker-featurestore-runtime
Sagemaker-runtime
Sagemaker
Savingsplans
Schemas
Sdb
Secretsmanager
Securityhub
Serverlessrepo
Service-quotas
Servicecatalog-appregistry
Servicecatalog
Servicediscovery
Ses
Sesv2
Shield
Signer
Sms-voice
Sms
Snow-device-management
Snowball
Sns
Sqs
Ssm-contacts
Ssm-incidents
Ssm
Sso-admin
Sso-oidc
Sso
Stepfunctions
Sts
Support
Swf
Synthetics
Textract
Timestream-query
Timestream-write
Transcribe
Transfer
Translate
Voice-id
Waf-regional
Waf
Wafv2
Wellarchitected
Wisdom
Workdocs
Worklink
Workmailmessageflow
Workspaces
Xray
Accessanalyzer Events
| Service | Event Name | Description |
|---|---|---|
| accessanalyzer | ApplyArchiveRule | |
| CancelPolicyGeneration |
Show DescriptionCancels the requested policy generation. |
|
| CreateAccessPreview |
Show DescriptionCreates an access preview that allows you to preview IAM Access Analyzer findings for your resource before deploying resource permissions. |
|
| CreateAnalyzer |
Show DescriptionCreates an analyzer for your account. |
|
| CreateArchiveRule | ||
| DeleteAnalyzer | ||
| DeleteArchiveRule | ||
| GetAccessPreview |
Show DescriptionRetrieves information about an access preview for the specified analyzer. |
|
| GetAnalyzedResource |
Show DescriptionRetrieves information about a resource that was analyzed. |
|
| GetAnalyzer |
Show DescriptionRetrieves information about the specified analyzer. |
|
| GetArchiveRule |
Show DescriptionRetrieves information about an archive rule. To learn about filter keys that you can use to create an archive rule, see IAM Access Analyzer filter keys in the IAM User Guide. |
|
| GetFinding |
Show DescriptionRetrieves information about the specified finding. |
|
| GetGeneratedPolicy |
Show DescriptionRetrieves the policy that was generated usingStartPolicyGeneration.
|
|
| ListAccessPreviewFindings |
Show DescriptionRetrieves a list of access preview findings generated by the specified access preview. |
|
| ListAccessPreviews |
Show DescriptionRetrieves a list of access previews for the specified analyzer. |
|
| ListAnalyzedResources |
Show DescriptionRetrieves a list of resources of the specified type that have been analyzed by the specified analyzer.. |
|
| ListAnalyzers |
Show DescriptionRetrieves a list of analyzers. |
|
| ListArchiveRules |
Show DescriptionRetrieves a list of archive rules created for the specified analyzer. |
|
| ListFindings |
Show DescriptionRetrieves a list of findings generated by the specified analyzer. To learn about filter keys that you can use to retrieve a list of findings, see IAM Access Analyzer filter keys in the IAM User Guide. |
|
| ListPolicyGenerations |
Show DescriptionLists all of the policy generations requested in the last seven days. |
|
| ListTagsForResource |
Show DescriptionRetrieves a list of tags applied to the specified resource. |
|
| StartPolicyGeneration |
Show DescriptionStarts the policy generation request. |
|
| StartResourceScan | ||
| TagResource |
Show DescriptionAdds a tag to the specified resource. |
|
| UntagResource |
Show DescriptionRemoves a tag from the specified resource. |
|
| UpdateArchiveRule | ||
| UpdateFindings |
Account Events
| Service | Event Name | Description |
|---|---|---|
| account | DeleteAlternateContact | |
| GetAlternateContact |
Show DescriptionRetrieves the specified alternate contact attached to an Amazon Web Services account. For complete details about how to use the alternate contact operations, see Access or updating the alternate contacts. |
Acm Events
| Service | Event Name | Description |
|---|---|---|
| acm | AddTagsToCertificate | |
| DeleteCertificate | ||
| DescribeCertificate |
Show DescriptionReturns detailed metadata about the specified ACM certificate. |
|
| ExportCertificate |
Show DescriptionExports a private certificate issued by a private certificate authority (CA) for use anywhere. The exported file contains the certificate, the certificate chain, and the encrypted private 2048-bit RSA key associated with the public key that is embedded in the certificate. For security, you must assign a passphrase for the private key when exporting it. For information about exporting and formatting a certificate using the ACM console or CLI, see Export a Private Certificate. |
|
| GetAccountConfiguration |
Show DescriptionReturns the account configuration options associated with an Amazon Web Services account. |
|
| GetCertificate |
Show DescriptionRetrieves an Amazon-issued certificate and its certificate chain. The chain consists of the certificate of the issuing CA and the intermediate certificates of any other subordinate CAs. All of the certificates are base64 encoded. You can use OpenSSL to decode the certificates and inspect individual fields. |
|
| ImportCertificate |
Show DescriptionImports a certificate into Amazon Web Services Certificate Manager (ACM) to use with services that are integrated with ACM. Note that integrated services allow only certificate types and keys they support to be associated with their resources. Further, their support differs depending on whether the certificate is imported into IAM or into ACM. For more information, see the documentation for each service. For more information about importing certificates into ACM, see Importing Certificates in the Amazon Web Services Certificate Manager User Guide.
|
|
| ListCertificates |
Show DescriptionRetrieves a list of certificate ARNs and domain names. You can request that only certificates that match a specific status be listed. You can also filter by specific attributes of the certificate. Default filtering returns onlyRSA_2048 certificates. For more information, see Filters.
|
|
| ListTagsForCertificate |
Show DescriptionLists the tags that have been applied to the ACM certificate. Use the certificate's Amazon Resource Name (ARN) to specify the certificate. To add a tag to an ACM certificate, use the AddTagsToCertificate action. To delete a tag, use the RemoveTagsFromCertificate action. |
|
| PutAccountConfiguration | ||
| RemoveTagsFromCertificate | ||
| RenewCertificate | ||
| RequestCertificate |
Show DescriptionRequests an ACM certificate for use with other Amazon Web Services services. To request an ACM certificate, you must specify a fully qualified domain name (FQDN) in theDomainName parameter. You can also specify additional FQDNs in the SubjectAlternativeNames parameter. If you are requesting a private certificate, domain validation is not required. If you are requesting a public certificate, each domain name that you specify must be validated to verify that you own or control the domain. You can use DNS validation or email validation. We recommend that you use DNS validation. ACM issues public certificates after receiving approval from the domain owner. |
|
| ResendValidationEmail |
Amp Events
| Service | Event Name | Description |
|---|---|---|
| amp | CreateAlertManagerDefinition |
Show DescriptionCreate an alert manager definition. |
| CreateRuleGroupsNamespace |
Show DescriptionCreate a rule group namespace. |
|
| CreateWorkspace |
Show DescriptionCreates a new AMP workspace. |
|
| DeleteAlertManagerDefinition | ||
| DeleteRuleGroupsNamespace | ||
| DeleteWorkspace | ||
| DescribeAlertManagerDefinition |
Show DescriptionDescribes an alert manager definition. |
|
| DescribeRuleGroupsNamespace |
Show DescriptionDescribe a rule groups namespace. |
|
| DescribeWorkspace |
Show DescriptionDescribes an existing AMP workspace. |
|
| ListRuleGroupsNamespaces |
Show DescriptionLists rule groups namespaces. |
|
| ListTagsForResource |
Show DescriptionLists the tags you have assigned to the resource. |
|
| ListWorkspaces |
Show DescriptionLists all AMP workspaces, including workspaces being created or deleted. |
|
| PutAlertManagerDefinition |
Show DescriptionUpdate an alert manager definition. |
|
| PutRuleGroupsNamespace |
Show DescriptionUpdate a rule groups namespace. |
|
| TagResource |
Show DescriptionCreates tags for the specified resource. |
|
| UntagResource |
Show DescriptionDeletes tags from the specified resource. |
Amplify Events
| Service | Event Name | Description |
|---|---|---|
| amplify | CreateApp |
Show DescriptionCreates a new Amplify app. |
| CreateBackendEnvironment |
Show DescriptionCreates a new backend environment for an Amplify app. |
|
| CreateBranch |
Show DescriptionCreates a new branch for an Amplify app. |
|
| CreateDeployment |
Show DescriptionCreates a deployment for a manually deployed Amplify app. Manually deployed apps are not connected to a repository. |
|
| CreateDomainAssociation |
Show DescriptionCreates a new domain association for an Amplify app. This action associates a custom domain with the Amplify app |
|
| CreateWebhook |
Show DescriptionCreates a new webhook on an Amplify app. |
|
| DeleteApp |
Show DescriptionDeletes an existing Amplify app specified by an app ID. |
|
| DeleteBackendEnvironment |
Show DescriptionDeletes a backend environment for an Amplify app. |
|
| DeleteBranch |
Show DescriptionDeletes a branch for an Amplify app. |
|
| DeleteDomainAssociation |
Show DescriptionDeletes a domain association for an Amplify app. |
|
| DeleteJob |
Show DescriptionDeletes a job for a branch of an Amplify app. |
|
| DeleteWebhook |
Show DescriptionDeletes a webhook. |
|
| GenerateAccessLogs |
Show DescriptionReturns the website access logs for a specific time range using a presigned URL. |
|
| GetApp |
Show DescriptionReturns an existing Amplify app by appID. |
|
| GetArtifactUrl |
Show DescriptionReturns the artifact info that corresponds to an artifact id. |
|
| GetBackendEnvironment |
Show DescriptionReturns a backend environment for an Amplify app. |
|
| GetBranch |
Show DescriptionReturns a branch for an Amplify app. |
|
| GetDomainAssociation |
Show DescriptionReturns the domain information for an Amplify app. |
|
| GetJob |
Show DescriptionReturns a job for a branch of an Amplify app. |
|
| GetWebhook |
Show DescriptionReturns the webhook information that corresponds to a specified webhook ID. |
|
| ListApps |
Show DescriptionReturns a list of the existing Amplify apps. |
|
| ListArtifacts |
Show DescriptionReturns a list of artifacts for a specified app, branch, and job. |
|
| ListBackendEnvironments |
Show DescriptionLists the backend environments for an Amplify app. |
|
| ListBranches |
Show DescriptionLists the branches of an Amplify app. |
|
| ListDomainAssociations |
Show DescriptionReturns the domain associations for an Amplify app. |
|
| ListJobs |
Show DescriptionLists the jobs for a branch of an Amplify app. |
|
| ListTagsForResource |
Show DescriptionReturns a list of tags for a specified Amazon Resource Name (ARN). |
|
| ListWebhooks |
Show DescriptionReturns a list of webhooks for an Amplify app. |
|
| StartDeployment |
Show DescriptionStarts a deployment for a manually deployed app. Manually deployed apps are not connected to a repository. |
|
| StartJob |
Show DescriptionStarts a new job for a branch of an Amplify app. |
|
| StopJob |
Show DescriptionStops a job that is in progress for a branch of an Amplify app. |
|
| TagResource |
Show DescriptionTags the resource with a tag key and value. |
|
| UntagResource |
Show DescriptionUntags a resource with a specified Amazon Resource Name (ARN). |
|
| UpdateApp |
Show DescriptionUpdates an existing Amplify app. |
|
| UpdateBranch |
Show DescriptionUpdates a branch for an Amplify app. |
|
| UpdateDomainAssociation |
Show DescriptionCreates a new domain association for an Amplify app. |
Amplifybackend Events
| Service | Event Name | Description |
|---|---|---|
| amplifybackend | CloneBackend |
Show DescriptionThis operation clones an existing backend. |
| CreateBackend |
Show DescriptionThis operation creates a backend for an Amplify app. Backends are automatically created at the time of app creation. |
|
| CreateBackendAPI |
Show DescriptionCreates a new backend API resource. |
|
| CreateBackendAuth |
Show DescriptionCreates a new backend authentication resource. |
|
| CreateBackendConfig |
Show DescriptionCreates a config object for a backend. |
|
| CreateToken |
Show DescriptionGenerates a one-time challenge code to authenticate a user into your Amplify Admin UI. |
|
| DeleteBackend |
Show DescriptionRemoves an existing environment from your Amplify project. |
|
| DeleteBackendAPI |
Show DescriptionDeletes an existing backend API resource. |
|
| DeleteBackendAuth |
Show DescriptionDeletes an existing backend authentication resource. |
|
| DeleteToken |
Show DescriptionDeletes the challenge token based on the given appId and sessionId. |
|
| GenerateBackendAPIModels |
Show DescriptionGenerates a model schema for an existing backend API resource. |
|
| GetBackend |
Show DescriptionProvides project-level details for your Amplify UI project. |
|
| GetBackendAPI |
Show DescriptionGets the details for a backend API. |
|
| GetBackendAPIModels |
Show DescriptionGenerates a model schema for existing backend API resource. |
|
| GetBackendAuth |
Show DescriptionGets a backend auth details. |
|
| GetBackendJob |
Show DescriptionReturns information about a specific job. |
|
| GetToken |
Show DescriptionGets the challenge token based on the given appId and sessionId. |
|
| ImportBackendAuth |
Show DescriptionImports an existing backend authentication resource. |
|
| ListBackendJobs |
Show DescriptionLists the jobs for the backend of an Amplify app. |
|
| RemoveAllBackends |
Show DescriptionRemoves all backend environments from your Amplify project. |
|
| RemoveBackendConfig |
Show DescriptionRemoves the AWS resources required to access the Amplify Admin UI. |
|
| UpdateBackendAPI |
Show DescriptionUpdates an existing backend API resource. |
|
| UpdateBackendAuth |
Show DescriptionUpdates an existing backend authentication resource. |
|
| UpdateBackendConfig |
Show DescriptionUpdates the AWS resources required to access the Amplify Admin UI. |
Apigateway Events
| Service | Event Name | Description |
|---|---|---|
| apigateway | CreateApiKey | |
| CreateAuthorizer | ||
| CreateBasePathMapping |
Show DescriptionCreates a new BasePathMapping resource. |
|
| CreateDeployment |
Show DescriptionCreates a Deployment resource, which makes a specified RestApi callable over the internet. |
|
| CreateDocumentationPart |
Show DescriptionNone |
|
| CreateDocumentationVersion |
Show DescriptionNone |
|
| CreateDomainName |
Show DescriptionCreates a new domain name. |
|
| CreateModel | ||
| CreateRequestValidator | ||
| CreateResource |
Show DescriptionCreates a Resource resource. |
|
| CreateRestApi |
Show DescriptionCreates a new RestApi resource. |
|
| CreateStage |
Show DescriptionCreates a new Stage resource that references a pre-existing Deployment for the API. |
|
| CreateUsagePlan |
Show DescriptionCreates a usage plan with the throttle and quota limits, as well as the associated API stages, specified in the payload. |
|
| CreateUsagePlanKey |
Show DescriptionCreates a usage plan key for adding an existing API key to a usage plan. |
|
| CreateVpcLink |
Show DescriptionCreates a VPC link, under the caller's account in a selected region, in an asynchronous operation that typically takes 2-4 minutes to complete and become operational. The caller must have permissions to create and update VPC Endpoint services. |
|
| DeleteApiKey | ||
| DeleteAuthorizer | ||
| DeleteBasePathMapping | ||
| DeleteClientCertificate | ||
| DeleteDeployment | ||
| DeleteDocumentationPart | ||
| DeleteDocumentationVersion | ||
| DeleteDomainName | ||
| DeleteGatewayResponse | ||
| DeleteIntegration | ||
| DeleteIntegrationResponse | ||
| DeleteMethod | ||
| DeleteMethodResponse | ||
| DeleteModel | ||
| DeleteRequestValidator | ||
| DeleteResource | ||
| DeleteRestApi | ||
| DeleteStage | ||
| DeleteUsagePlan | ||
| DeleteUsagePlanKey | ||
| DeleteVpcLink | ||
| FlushStageAuthorizersCache | ||
| FlushStageCache | ||
| GenerateClientCertificate |
Show DescriptionGenerates a ClientCertificate resource. |
|
| GetAccount |
Show DescriptionGets information about the current Account resource. |
|
| GetApiKey |
Show DescriptionGets information about the current ApiKey resource. |
|
| GetApiKeys |
Show DescriptionGets information about the current ApiKeys resource. |
|
| GetAuthorizer | ||
| GetAuthorizers | ||
| GetBasePathMapping |
Show DescriptionDescribe a BasePathMapping resource. |
|
| GetBasePathMappings |
Show DescriptionRepresents a collection of BasePathMapping resources. |
|
| GetClientCertificate |
Show DescriptionGets information about the current ClientCertificate resource. |
|
| GetClientCertificates |
Show DescriptionGets a collection of ClientCertificate resources. |
|
| GetDeployment |
Show DescriptionGets information about a Deployment resource. |
|
| GetDeployments |
Show DescriptionGets information about a Deployments collection. |
|
| GetDocumentationPart |
Show DescriptionNone |
|
| GetDocumentationParts |
Show DescriptionNone |
|
| GetDocumentationVersion |
Show DescriptionNone |
|
| GetDocumentationVersions |
Show DescriptionNone |
|
| GetDomainName |
Show DescriptionRepresents a domain name that is contained in a simpler, more intuitive URL that can be called. |
|
| GetDomainNames |
Show DescriptionRepresents a collection of DomainName resources. |
|
| GetExport |
Show DescriptionExports a deployed version of a RestApi in a specified format. |
|
| GetGatewayResponse | ||
| GetGatewayResponses |
Show DescriptionGets the GatewayResponses collection on the given RestApi. If an API developer has not added any definitions for gateway responses, the result will be the API Gateway-generated default GatewayResponses collection for the supported response types. |
|
| GetIntegration |
Show DescriptionGet the integration settings. |
|
| GetIntegrationResponse |
Show DescriptionRepresents a get integration response. |
|
| GetMethod |
Show DescriptionDescribe an existing Method resource. |
|
| GetMethodResponse |
Show DescriptionDescribes a MethodResponse resource. |
|
| GetModel |
Show DescriptionDescribes an existing model defined for a RestApi resource. |
|
| GetModelTemplate |
Show DescriptionGenerates a sample mapping template that can be used to transform a payload into the structure of a model. |
|
| GetModels | ||
| GetRequestValidator | ||
| GetRequestValidators | ||
| GetResource |
Show DescriptionLists information about a resource. |
|
| GetResources |
Show DescriptionLists information about a collection of Resource resources. |
|
| GetRestApi |
Show DescriptionLists the RestApi resource in the collection. |
|
| GetRestApis |
Show DescriptionLists the RestApis resources for your collection. |
|
| GetSdk | ||
| GetSdkType |
Show DescriptionNone |
|
| GetSdkTypes |
Show DescriptionNone |
|
| GetStage |
Show DescriptionGets information about a Stage resource. |
|
| GetStages |
Show DescriptionGets information about one or more Stage resources. |
|
| GetTags |
Show DescriptionGets the Tags collection for a given resource. |
|
| GetUsage |
Show DescriptionGets the usage data of a usage plan in a specified time interval. |
|
| GetUsagePlan |
Show DescriptionGets a usage plan of a given plan identifier. |
|
| GetUsagePlanKey |
Show DescriptionGets a usage plan key of a given key identifier. |
|
| GetUsagePlanKeys |
Show DescriptionGets all the usage plan keys representing the API keys added to a specified usage plan. |
|
| GetUsagePlans |
Show DescriptionGets all the usage plans of the caller's account. |
|
| GetVpcLink |
Show DescriptionGets a specified VPC link under the caller's account in a region. |
|
| GetVpcLinks |
Show DescriptionGets the VpcLinks collection under the caller's account in a selected region. |
|
| ImportApiKeys |
Show DescriptionImport API keys from an external source, such as a CSV-formatted file. |
|
| ImportDocumentationParts |
Show DescriptionNone |
|
| ImportRestApi |
Show DescriptionA feature of the API Gateway control service for creating a new API from an external API definition file. |
|
| PutGatewayResponse |
Show DescriptionCreates a customization of a GatewayResponse of a specified response type and status code on the given RestApi. |
|
| PutIntegration |
Show DescriptionSets up a method's integration. |
|
| PutIntegrationResponse |
Show DescriptionRepresents a put integration. |
|
| PutMethod |
Show DescriptionAdd a method to an existing Resource resource. |
|
| PutMethodResponse | ||
| PutRestApi |
Show DescriptionA feature of the API Gateway control service for updating an existing API with an input of external API definitions. The update can take the form of merging the supplied definition into the existing API or overwriting the existing API. |
|
| TagResource | ||
| TestInvokeAuthorizer |
Show DescriptionSimulate the execution of an Authorizer in your RestApi with headers, parameters, and an incoming request body. |
|
| TestInvokeMethod | ||
| UntagResource | ||
| UpdateAccount |
Show DescriptionChanges information about the current Account resource. |
|
| UpdateApiKey |
Show DescriptionChanges information about an ApiKey resource. |
|
| UpdateAuthorizer | ||
| UpdateBasePathMapping |
Show DescriptionChanges information about the BasePathMapping resource. |
|
| UpdateClientCertificate |
Show DescriptionChanges information about an ClientCertificate resource. |
|
| UpdateDeployment |
Show DescriptionChanges information about a Deployment resource. |
|
| UpdateDocumentationPart |
Show DescriptionNone |
|
| UpdateDocumentationVersion |
Show DescriptionNone |
|
| UpdateDomainName |
Show DescriptionChanges information about the DomainName resource. |
|
| UpdateGatewayResponse | ||
| UpdateIntegration |
Show DescriptionRepresents an update integration. |
|
| UpdateIntegrationResponse |
Show DescriptionRepresents an update integration response. |
|
| UpdateMethod |
Show DescriptionUpdates an existing Method resource. |
|
| UpdateMethodResponse |
Show DescriptionUpdates an existing MethodResponse resource. |
|
| UpdateModel |
Show DescriptionChanges information about a model. |
|
| UpdateRequestValidator | ||
| UpdateResource |
Show DescriptionChanges information about a Resource resource. |
|
| UpdateRestApi |
Show DescriptionChanges information about the specified API. |
|
| UpdateStage |
Show DescriptionChanges information about a Stage resource. |
|
| UpdateUsage |
Show DescriptionGrants a temporary extension to the remaining quota of a usage plan associated with a specified API key. |
|
| UpdateUsagePlan |
Show DescriptionUpdates a usage plan of a given plan Id. |
Apigatewaymanagementapi Events
| Service | Event Name | Description |
|---|---|---|
| apigatewaymanagementapi | DeleteConnection | |
| GetConnection |
Show DescriptionGet information about the connection with the provided id. |
Apigatewayv2 Events
| Service | Event Name | Description |
|---|---|---|
| apigatewayv2 | CreateApi |
Show DescriptionCreates an Api resource. |
| CreateApiMapping |
Show DescriptionCreates an API mapping. |
|
| CreateAuthorizer |
Show DescriptionCreates an Authorizer for an API. |
|
| CreateDeployment |
Show DescriptionCreates a Deployment for an API. |
|
| CreateDomainName |
Show DescriptionCreates a domain name. |
|
| CreateIntegration |
Show DescriptionCreates an Integration. |
|
| CreateIntegrationResponse |
Show DescriptionCreates an IntegrationResponses. |
|
| CreateModel |
Show DescriptionCreates a Model for an API. |
|
| CreateRoute |
Show DescriptionCreates a Route for an API. |
|
| CreateRouteResponse |
Show DescriptionCreates a RouteResponse for a Route. |
|
| CreateStage |
Show DescriptionCreates a Stage for an API. |
|
| CreateVpcLink |
Show DescriptionCreates a VPC link. |
|
| DeleteAccessLogSettings | ||
| DeleteApi | ||
| DeleteApiMapping | ||
| DeleteAuthorizer | ||
| DeleteCorsConfiguration | ||
| DeleteDeployment | ||
| DeleteDomainName | ||
| DeleteIntegration | ||
| DeleteIntegrationResponse | ||
| DeleteModel | ||
| DeleteRoute | ||
| DeleteRouteRequestParameter | ||
| DeleteRouteResponse | ||
| DeleteRouteSettings | ||
| DeleteStage | ||
| DeleteVpcLink |
Show DescriptionDeletes a VPC link. |
|
| ExportApi |
Show DescriptionNone |
|
| ResetAuthorizersCache | ||
| GetApi |
Show DescriptionGets an Api resource. |
|
| GetApiMapping |
Show DescriptionGets an API mapping. |
|
| GetApiMappings |
Show DescriptionGets API mappings. |
|
| GetApis |
Show DescriptionGets a collection of Api resources. |
|
| GetAuthorizer |
Show DescriptionGets an Authorizer. |
|
| GetAuthorizers |
Show DescriptionGets the Authorizers for an API. |
|
| GetDeployment |
Show DescriptionGets a Deployment. |
|
| GetDeployments |
Show DescriptionGets the Deployments for an API. |
|
| GetDomainName |
Show DescriptionGets a domain name. |
|
| GetDomainNames |
Show DescriptionGets the domain names for an AWS account. |
|
| GetIntegration |
Show DescriptionGets an Integration. |
|
| GetIntegrationResponse |
Show DescriptionGets an IntegrationResponses. |
|
| GetIntegrationResponses |
Show DescriptionGets the IntegrationResponses for an Integration. |
|
| GetIntegrations |
Show DescriptionGets the Integrations for an API. |
|
| GetModel |
Show DescriptionGets a Model. |
|
| GetModelTemplate |
Show DescriptionGets a model template. |
|
| GetModels |
Show DescriptionGets the Models for an API. |
|
| GetRoute |
Show DescriptionGets a Route. |
|
| GetRouteResponse |
Show DescriptionGets a RouteResponse. |
|
| GetRouteResponses |
Show DescriptionGets the RouteResponses for a Route. |
|
| GetRoutes |
Show DescriptionGets the Routes for an API. |
|
| GetStage |
Show DescriptionGets a Stage. |
|
| GetStages |
Show DescriptionGets the Stages for an API. |
|
| GetTags |
Show DescriptionGets a collection of Tag resources. |
|
| GetVpcLink |
Show DescriptionGets a VPC link. |
|
| GetVpcLinks |
Show DescriptionGets a collection of VPC links. |
|
| ImportApi |
Show DescriptionImports an API. |
|
| ReimportApi |
Show DescriptionPuts an Api resource. |
|
| TagResource |
Show DescriptionCreates a new Tag resource to represent a tag. |
|
| UntagResource | ||
| UpdateApi |
Show DescriptionUpdates an Api resource. |
|
| UpdateApiMapping |
Show DescriptionThe API mapping. |
|
| UpdateAuthorizer |
Show DescriptionUpdates an Authorizer. |
|
| UpdateDeployment |
Show DescriptionUpdates a Deployment. |
|
| UpdateDomainName |
Show DescriptionUpdates a domain name. |
|
| UpdateIntegration |
Show DescriptionUpdates an Integration. |
|
| UpdateIntegrationResponse |
Show DescriptionUpdates an IntegrationResponses. |
|
| UpdateModel |
Show DescriptionUpdates a Model. |
|
| UpdateRoute |
Show DescriptionUpdates a Route. |
|
| UpdateRouteResponse |
Show DescriptionUpdates a RouteResponse. |
|
| UpdateStage |
Show DescriptionUpdates a Stage. |
Appconfig Events
| Service | Event Name | Description |
|---|---|---|
| appconfig | CreateApplication |
Show DescriptionAn application in AppConfig is a logical unit of code that provides capabilities for your customers. For example, an application can be a microservice that runs on Amazon EC2 instances, a mobile application installed by your users, a serverless application using Amazon API Gateway and AWS Lambda, or any system you run on behalf of others. |
| CreateConfigurationProfile |
Show DescriptionInformation that enables AppConfig to access the configuration source. Valid configuration sources include Systems Manager (SSM) documents, SSM Parameter Store parameters, and Amazon S3 objects. A configuration profile includes the following information.
|
|
| CreateDeploymentStrategy |
Show DescriptionA deployment strategy defines important criteria for rolling out your configuration to the designated targets. A deployment strategy includes: the overall duration required, a percentage of targets to receive the deployment during each interval, an algorithm that defines how percentage grows, and bake time. |
|
| CreateEnvironment |
Show DescriptionFor each application, you define one or more environments. An environment is a logical deployment group of AppConfig targets, such as applications in aBeta or Production environment. You can also define environments for application subcomponents such as the Web, Mobile and Back-end components for your application. You can configure Amazon CloudWatch alarms for each environment. The system monitors alarms during a configuration deployment. If an alarm is triggered, the system rolls back the configuration.
|
|
| CreateHostedConfigurationVersion |
Show DescriptionCreate a new configuration in the AppConfig configuration store. |
|
| DeleteApplication | ||
| DeleteConfigurationProfile | ||
| DeleteDeploymentStrategy | ||
| DeleteEnvironment | ||
| DeleteHostedConfigurationVersion | ||
| GetApplication |
Show DescriptionRetrieve information about an application. |
|
| GetConfiguration |
Show DescriptionReceive information about a configuration.ClientConfigurationVersion parameter to identify the configuration version on your clients. If you don’t send ClientConfigurationVersion with each call to GetConfiguration, your clients receive the current configuration. You are charged each time your clients receive a configuration. To avoid excess charges, we recommend that you include the ClientConfigurationVersion value with every call to GetConfiguration. This value must be saved on your client. Subsequent calls to GetConfiguration must pass this value by using the ClientConfigurationVersion parameter. |
|
| GetConfigurationProfile |
Show DescriptionRetrieve information about a configuration profile. |
|
| GetDeployment |
Show DescriptionRetrieve information about a configuration deployment. |
|
| GetDeploymentStrategy |
Show DescriptionRetrieve information about a deployment strategy. A deployment strategy defines important criteria for rolling out your configuration to the designated targets. A deployment strategy includes: the overall duration required, a percentage of targets to receive the deployment during each interval, an algorithm that defines how percentage grows, and bake time. |
|
| GetEnvironment |
Show DescriptionRetrieve information about an environment. An environment is a logical deployment group of AppConfig applications, such as applications in aProduction environment or in an EU_Region environment. Each configuration deployment targets an environment. You can enable one or more Amazon CloudWatch alarms for an environment. If an alarm is triggered during a deployment, AppConfig roles back the configuration.
|
|
| GetHostedConfigurationVersion |
Show DescriptionGet information about a specific configuration version. |
|
| ListApplications |
Show DescriptionList all applications in your AWS account. |
|
| ListConfigurationProfiles |
Show DescriptionLists the configuration profiles for an application. |
|
| ListDeploymentStrategies |
Show DescriptionList deployment strategies. |
|
| ListDeployments |
Show DescriptionLists the deployments for an environment. |
|
| ListEnvironments |
Show DescriptionList the environments for an application. |
|
| ListHostedConfigurationVersions |
Show DescriptionView a list of configurations stored in the AppConfig configuration store by version. |
|
| ListTagsForResource |
Show DescriptionRetrieves the list of key-value tags assigned to the resource. |
|
| StartDeployment |
Show DescriptionStarts a deployment. |
|
| StopDeployment |
Show DescriptionStops a deployment. This API action works only on deployments that have a status ofDEPLOYING. This action moves the deployment to a status of ROLLED_BACK.
|
|
| TagResource | ||
| UntagResource | ||
| UpdateApplication |
Show DescriptionUpdates an application. |
|
| UpdateConfigurationProfile |
Show DescriptionUpdates a configuration profile. |
|
| UpdateDeploymentStrategy |
Show DescriptionUpdates a deployment strategy. |
|
| UpdateEnvironment |
Show DescriptionUpdates an environment. |
Appflow Events
| Service | Event Name | Description |
|---|---|---|
| appflow | CreateConnectorProfile |
Show DescriptionCreates a new connector profile associated with your Amazon Web Services account. There is a soft quota of 100 connector profiles per Amazon Web Services account. If you need more connector profiles than this quota allows, you can submit a request to the Amazon AppFlow team through the Amazon AppFlow support channel. |
| CreateFlow |
Show DescriptionEnables your application to create a new flow using Amazon AppFlow. You must create a connector profile before calling this API. Please note that the Request Syntax below shows syntax for multiple destinations, however, you can only transfer data to one item in this list at a time. Amazon AppFlow does not currently support flows to multiple destinations at once. |
|
| DeleteConnectorProfile |
Show DescriptionEnables you to delete an existing connector profile. |
|
| DeleteFlow |
Show DescriptionEnables your application to delete an existing flow. Before deleting the flow, Amazon AppFlow validates the request by checking the flow configuration and status. You can delete flows one at a time. |
|
| DescribeConnectorEntity |
Show DescriptionProvides details regarding the entity used with the connector, with a description of the data model for each entity. |
|
| DescribeConnectorProfiles |
Show DescriptionReturns a list ofconnector-profile details matching the provided connector-profile names and connector-types. Both input lists are optional, and you can use them to filter the result. If no names or connector-types are provided, returns all connector profiles in a paginated form. If there is no match, this operation returns an empty list.
|
|
| DescribeConnectors |
Show DescriptionDescribes the connectors vended by Amazon AppFlow for specified connector types. If you don't specify a connector type, this operation describes all connectors vended by Amazon AppFlow. If there are more connectors than can be returned in one page, the response contains anextToken object, which can be be passed in to the next call to the DescribeConnectors API operation to retrieve the next page.
|
|
| DescribeFlow |
Show DescriptionProvides a description of the specified flow. |
|
| DescribeFlowExecutionRecords |
Show DescriptionFetches the execution history of the flow. |
|
| ListConnectorEntities |
Show DescriptionReturns the list of available connector entities supported by Amazon AppFlow. For example, you can query Salesforce for Account and Opportunity entities, or query ServiceNow for the Incident entity. |
|
| ListFlows |
Show DescriptionLists all of the flows associated with your account. |
|
| ListTagsForResource |
Show DescriptionRetrieves the tags that are associated with a specified flow. |
|
| StartFlow |
Show DescriptionActivates an existing flow. For on-demand flows, this operation runs the flow immediately. For schedule and event-triggered flows, this operation activates the flow. |
|
| StopFlow |
Show DescriptionDeactivates the existing flow. For on-demand flows, this operation returns anunsupportedOperationException error message. For schedule and event-triggered flows, this operation deactivates the flow.
|
|
| TagResource |
Show DescriptionApplies a tag to the specified flow. |
|
| UntagResource |
Show DescriptionRemoves a tag from the specified flow. |
|
| UpdateConnectorProfile |
Show DescriptionUpdates a given connector profile associated with your account. |
Appintegrations Events
| Service | Event Name | Description |
|---|---|---|
| appintegrations | CreateDataIntegration |
Show DescriptionCreates and persists a DataIntegration resource.CreateDataIntegration API. |
| CreateEventIntegration |
Show DescriptionCreates an EventIntegration, given a specified name, description, and a reference to an Amazon EventBridge bus in your account and a partner event source that pushes events to that bus. No objects are created in the your account, only metadata that is persisted on the EventIntegration control plane. |
|
| DeleteDataIntegration |
Show DescriptionDeletes the DataIntegration. Only DataIntegrations that don't have any DataIntegrationAssociations can be deleted. Deleting a DataIntegration also deletes the underlying Amazon AppFlow flow and service linked role. |
|
| DeleteEventIntegration |
Show DescriptionDeletes the specified existing event integration. If the event integration is associated with clients, the request is rejected. |
|
| GetDataIntegration |
Show DescriptionReturns information about the DataIntegration. |
|
| GetEventIntegration |
Show DescriptionReturns information about the event integration. |
|
| ListDataIntegrationAssociations |
Show DescriptionReturns a paginated list of DataIntegration associations in the account. |
|
| ListDataIntegrations |
Show DescriptionReturns a paginated list of DataIntegrations in the account. |
|
| ListEventIntegrationAssociations |
Show DescriptionReturns a paginated list of event integration associations in the account. |
|
| ListEventIntegrations |
Show DescriptionReturns a paginated list of event integrations in the account. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified resource. |
|
| TagResource |
Show DescriptionAdds the specified tags to the specified resource. |
|
| UntagResource |
Show DescriptionRemoves the specified tags from the specified resource. |
|
| UpdateDataIntegration |
Show DescriptionUpdates the description of a DataIntegration. |
Application-autoscaling Events
| Service | Event Name | Description |
|---|---|---|
| application-autoscaling | DeleteScalingPolicy |
Show DescriptionDeletes the specified scaling policy for an Application Auto Scaling scalable target. Deleting a step scaling policy deletes the underlying alarm action, but does not delete the CloudWatch alarm associated with the scaling policy, even if it no longer has an associated action. For more information, see Delete a step scaling policy and Delete a target tracking scaling policy in the Application Auto Scaling User Guide. |
| DeleteScheduledAction |
Show DescriptionDeletes the specified scheduled action for an Application Auto Scaling scalable target. For more information, see Delete a scheduled action in the Application Auto Scaling User Guide. |
|
| DeregisterScalableTarget |
Show DescriptionDeregisters an Application Auto Scaling scalable target when you have finished using it. To see which resources have been registered, use DescribeScalableTargets. |
|
| DescribeScalableTargets |
Show DescriptionGets information about the scalable targets in the specified namespace. You can filter the results usingResourceIds and ScalableDimension.
|
|
| DescribeScalingActivities |
Show DescriptionProvides descriptive information about the scaling activities in the specified namespace from the previous six weeks. You can filter the results usingResourceId and ScalableDimension.
|
|
| DescribeScalingPolicies |
Show DescriptionDescribes the Application Auto Scaling scaling policies for the specified service namespace. You can filter the results usingResourceId, ScalableDimension, and PolicyNames. For more information, see Target tracking scaling policies and Step scaling policies in the Application Auto Scaling User Guide.
|
|
| DescribeScheduledActions |
Show DescriptionDescribes the Application Auto Scaling scheduled actions for the specified service namespace. You can filter the results using theResourceId, ScalableDimension, and ScheduledActionNames parameters. For more information, see Scheduled scaling and Managing scheduled scaling in the Application Auto Scaling User Guide.
|
|
| PutScalingPolicy |
Show DescriptionCreates or updates a scaling policy for an Application Auto Scaling scalable target. Each scalable target is identified by a service namespace, resource ID, and scalable dimension. A scaling policy applies to the scalable target identified by those three attributes. You cannot create a scaling policy until you have registered the resource as a scalable target. Multiple scaling policies can be in force at the same time for the same scalable target. You can have one or more target tracking scaling policies, one or more step scaling policies, or both. However, there is a chance that multiple policies could conflict, instructing the scalable target to scale out or in at the same time. Application Auto Scaling gives precedence to the policy that provides the largest capacity for both scale out and scale in. For example, if one policy increases capacity by 3, another policy increases capacity by 200 percent, and the current capacity is 10, Application Auto Scaling uses the policy with the highest calculated capacity (200% of 10 = 20) and scales out to 30. We recommend caution, however, when using target tracking scaling policies with step scaling policies because conflicts between these policies can cause undesirable behavior. For example, if the step scaling policy initiates a scale-in activity before the target tracking policy is ready to scale in, the scale-in activity will not be blocked. After the scale-in activity completes, the target tracking policy could instruct the scalable target to scale out again. For more information, see Target tracking scaling policies and Step scaling policies in the Application Auto Scaling User Guide. |
|
| PutScheduledAction |
Show DescriptionCreates or updates a scheduled action for an Application Auto Scaling scalable target. Each scalable target is identified by a service namespace, resource ID, and scalable dimension. A scheduled action applies to the scalable target identified by those three attributes. You cannot create a scheduled action until you have registered the resource as a scalable target. When start and end times are specified with a recurring schedule using a cron expression or rates, they form the boundaries for when the recurring action starts and stops. To update a scheduled action, specify the parameters that you want to change. If you don't specify start and end times, the old values are deleted. For more information, see Scheduled scaling in the Application Auto Scaling User Guide. |
Applicationcostprofiler Events
| Service | Event Name | Description |
|---|---|---|
| applicationcostprofiler | DeleteReportDefinition |
Show DescriptionDeletes the specified report definition in AWS Application Cost Profiler. This stops the report from being generated. |
| GetReportDefinition |
Show DescriptionRetrieves the definition of a report already configured in AWS Application Cost Profiler. |
|
| ImportApplicationUsage |
Show DescriptionIngests application usage data from Amazon Simple Storage Service (Amazon S3). The data must already exist in the S3 location. As part of the action, AWS Application Cost Profiler copies the object from your S3 bucket to an S3 bucket owned by Amazon for processing asynchronously. |
|
| ListReportDefinitions |
Show DescriptionRetrieves a list of all reports and their configurations for your AWS account. The maximum number of reports is one. |
|
| PutReportDefinition |
Show DescriptionCreates the report definition for a report in Application Cost Profiler. |
Appmesh Events
| Service | Event Name | Description |
|---|---|---|
| appmesh | CreateGatewayRoute |
Show DescriptionCreates a gateway route. A gateway route is attached to a virtual gateway and routes traffic to an existing virtual service. If a route matches a request, it can distribute traffic to a target virtual service. For more information about gateway routes, see Gateway routes. |
| CreateMesh |
Show DescriptionCreates a service mesh. A service mesh is a logical boundary for network traffic between services that are represented by resources within the mesh. After you create your service mesh, you can create virtual services, virtual nodes, virtual routers, and routes to distribute traffic between the applications in your mesh. For more information about service meshes, see Service meshes. |
|
| CreateRoute |
Show DescriptionCreates a route that is associated with a virtual router. You can route several different protocols and define a retry policy for a route. Traffic can be routed to one or more virtual nodes. For more information about routes, see Routes. |
|
| CreateVirtualGateway |
Show DescriptionCreates a virtual gateway. A virtual gateway allows resources outside your mesh to communicate to resources that are inside your mesh. The virtual gateway represents an Envoy proxy running in an Amazon ECS task, in a Kubernetes service, or on an Amazon EC2 instance. Unlike a virtual node, which represents an Envoy running with an application, a virtual gateway represents Envoy deployed by itself. For more information about virtual gateways, see Virtual gateways. |
|
| CreateVirtualNode |
Show DescriptionCreates a virtual node within a service mesh. A virtual node acts as a logical pointer to a particular task group, such as an Amazon ECS service or a Kubernetes deployment. When you create a virtual node, you can specify the service discovery information for your task group, and whether the proxy running in a task group will communicate with other proxies using Transport Layer Security (TLS). You define alistener for any inbound traffic that your virtual node expects. Any virtual service that your virtual node expects to communicate to is specified as a backend. The response metadata for your new virtual node contains the arn that is associated with the virtual node. Set this value to the full ARN; for example, arn:aws:appmesh:us-west-2:123456789012:myMesh/default/virtualNode/myApp) as the APPMESH_RESOURCE_ARN environment variable for your task group's Envoy proxy container in your task definition or pod spec. This is then mapped to the node.id and node.cluster Envoy parameters. APPMESH_RESOURCE_ARN when Envoy is referring to itself in metrics and traces. You can override this behavior by setting the APPMESH_RESOURCE_CLUSTER environment variable with your own name. 1.15.0 or later of the Envoy image when setting these variables. For more information aboutApp Mesh Envoy variables, see Envoy image in the AWS App Mesh User Guide.
|
|
| CreateVirtualRouter |
Show DescriptionCreates a virtual router within a service mesh. Specify alistener for any inbound traffic that your virtual router receives. Create a virtual router for each protocol and port that you need to route. Virtual routers handle traffic for one or more virtual services within your mesh. After you create your virtual router, create and associate routes for your virtual router that direct incoming requests to different virtual nodes. For more information about virtual routers, see Virtual routers.
|
|
| CreateVirtualService |
Show DescriptionCreates a virtual service within a service mesh. A virtual service is an abstraction of a real service that is provided by a virtual node directly or indirectly by means of a virtual router. Dependent services call your virtual service by itsvirtualServiceName, and those requests are routed to the virtual node or virtual router that is specified as the provider for the virtual service. For more information about virtual services, see Virtual services.
|
|
| DeleteGatewayRoute |
Show DescriptionDeletes an existing gateway route. |
|
| DeleteMesh |
Show DescriptionDeletes an existing service mesh. You must delete all resources (virtual services, routes, virtual routers, and virtual nodes) in the service mesh before you can delete the mesh itself. |
|
| DeleteRoute |
Show DescriptionDeletes an existing route. |
|
| DeleteVirtualGateway |
Show DescriptionDeletes an existing virtual gateway. You cannot delete a virtual gateway if any gateway routes are associated to it. |
|
| DeleteVirtualNode |
Show DescriptionDeletes an existing virtual node. You must delete any virtual services that list a virtual node as a service provider before you can delete the virtual node itself. |
|
| DeleteVirtualRouter |
Show DescriptionDeletes an existing virtual router. You must delete any routes associated with the virtual router before you can delete the router itself. |
|
| DeleteVirtualService |
Show DescriptionDeletes an existing virtual service. |
|
| DescribeGatewayRoute |
Show DescriptionDescribes an existing gateway route. |
|
| DescribeMesh |
Show DescriptionDescribes an existing service mesh. |
|
| DescribeRoute |
Show DescriptionDescribes an existing route. |
|
| DescribeVirtualGateway |
Show DescriptionDescribes an existing virtual gateway. |
|
| DescribeVirtualNode |
Show DescriptionDescribes an existing virtual node. |
|
| DescribeVirtualRouter |
Show DescriptionDescribes an existing virtual router. |
|
| DescribeVirtualService |
Show DescriptionDescribes an existing virtual service. |
|
| ListGatewayRoutes |
Show DescriptionReturns a list of existing gateway routes that are associated to a virtual gateway. |
|
| ListMeshes |
Show DescriptionReturns a list of existing service meshes. |
|
| ListRoutes |
Show DescriptionReturns a list of existing routes in a service mesh. |
|
| ListTagsForResource |
Show DescriptionList the tags for an App Mesh resource. |
|
| ListVirtualGateways |
Show DescriptionReturns a list of existing virtual gateways in a service mesh. |
|
| ListVirtualNodes |
Show DescriptionReturns a list of existing virtual nodes. |
|
| ListVirtualRouters |
Show DescriptionReturns a list of existing virtual routers in a service mesh. |
|
| ListVirtualServices |
Show DescriptionReturns a list of existing virtual services in a service mesh. |
|
| TagResource |
Show DescriptionAssociates the specified tags to a resource with the specifiedresourceArn. If existing tags on a resource aren't specified in the request parameters, they aren't changed. When a resource is deleted, the tags associated with that resource are also deleted.
|
|
| UntagResource |
Show DescriptionDeletes specified tags from a resource. |
|
| UpdateGatewayRoute |
Show DescriptionUpdates an existing gateway route that is associated to a specified virtual gateway in a service mesh. |
|
| UpdateMesh |
Show DescriptionUpdates an existing service mesh. |
|
| UpdateRoute |
Show DescriptionUpdates an existing route for a specified service mesh and virtual router. |
|
| UpdateVirtualGateway |
Show DescriptionUpdates an existing virtual gateway in a specified service mesh. |
|
| UpdateVirtualNode |
Show DescriptionUpdates an existing virtual node in a specified service mesh. |
|
| UpdateVirtualRouter |
Show DescriptionUpdates an existing virtual router in a specified service mesh. |
Apprunner Events
| Service | Event Name | Description |
|---|---|---|
| apprunner | AssociateCustomDomain |
Show DescriptionAssociate your own domain name with the App Runner subdomain URL of your App Runner service. After you callAssociateCustomDomain and receive a successful response, use the information in the CustomDomain record that's returned to add CNAME records to your Domain Name System (DNS). For each mapped domain name, add a mapping to the target App Runner subdomain and one or more certificate validation records. App Runner then performs DNS validation to verify that you own or control the domain name that you associated. App Runner tracks domain validity in a certificate stored in AWS Certificate Manager (ACM).
|
| CreateAutoScalingConfiguration |
Show DescriptionCreate an App Runner automatic scaling configuration resource. App Runner requires this resource when you create App Runner services that require non-default auto scaling settings. You can share an auto scaling configuration across multiple services. Create multiple revisions of a configuration by using the sameAutoScalingConfigurationName and different AutoScalingConfigurationRevision values. When you create a service, you can set it to use the latest active revision of an auto scaling configuration or a specific revision. Configure a higher MinSize to increase the spread of your App Runner service over more Availability Zones in the Amazon Web Services Region. The tradeoff is a higher minimal cost. Configure a lower MaxSize to control your cost. The tradeoff is lower responsiveness during peak demand.
|
|
| CreateConnection |
Show DescriptionCreate an App Runner connection resource. App Runner requires a connection resource when you create App Runner services that access private repositories from certain third-party providers. You can share a connection across multiple services. A connection resource is needed to access GitHub repositories. GitHub requires a user interface approval process through the App Runner console before you can use the connection. |
|
| CreateService |
Show DescriptionCreate an App Runner service. After the service is created, the action also automatically starts a deployment. This is an asynchronous operation. On a successful call, you can use the returnedOperationId and the ListOperations call to track the operation's progress.
|
|
| DeleteAutoScalingConfiguration |
Show DescriptionDelete an App Runner automatic scaling configuration resource. You can delete a specific revision or the latest active revision. You can't delete a configuration that's used by one or more App Runner services. |
|
| DeleteConnection |
Show DescriptionDelete an App Runner connection. You must first ensure that there are no running App Runner services that use this connection. If there are any, theDeleteConnection action fails.
|
|
| DeleteService |
Show DescriptionDelete an App Runner service. This is an asynchronous operation. On a successful call, you can use the returnedOperationId and the ListOperations call to track the operation's progress.
|
|
| DescribeAutoScalingConfiguration |
Show DescriptionReturn a full description of an App Runner automatic scaling configuration resource. |
|
| DescribeCustomDomains |
Show DescriptionReturn a description of custom domain names that are associated with an App Runner service. |
|
| DescribeService |
Show DescriptionReturn a full description of an App Runner service. |
|
| DisassociateCustomDomain |
Show DescriptionDisassociate a custom domain name from an App Runner service. Certificates tracking domain validity are associated with a custom domain and are stored in AWS Certificate Manager (ACM). These certificates aren't deleted as part of this action. App Runner delays certificate deletion for 30 days after a domain is disassociated from your service. |
|
| ListAutoScalingConfigurations |
Show DescriptionReturns a list of App Runner automatic scaling configurations in your Amazon Web Services account. You can query the revisions for a specific configuration name or the revisions for all configurations in your account. You can optionally query only the latest revision of each requested name. |
|
| ListConnections |
Show DescriptionReturns a list of App Runner connections that are associated with your Amazon Web Services account. |
|
| ListOperations |
Show DescriptionReturn a list of operations that occurred on an App Runner service. The resulting list of OperationSummary objects is sorted in reverse chronological order. The first object on the list represents the last started operation. |
|
| ListServices |
Show DescriptionReturns a list of running App Runner services in your Amazon Web Services account. |
|
| ListTagsForResource |
Show DescriptionList tags that are associated with for an App Runner resource. The response contains a list of tag key-value pairs. |
|
| PauseService |
Show DescriptionPause an active App Runner service. App Runner reduces compute capacity for the service to zero and loses state (for example, ephemeral storage is removed). This is an asynchronous operation. On a successful call, you can use the returnedOperationId and the ListOperations call to track the operation's progress.
|
|
| ResumeService |
Show DescriptionResume an active App Runner service. App Runner provisions compute capacity for the service. This is an asynchronous operation. On a successful call, you can use the returnedOperationId and the ListOperations call to track the operation's progress.
|
|
| StartDeployment |
Show DescriptionInitiate a manual deployment of the latest commit in a source code repository or the latest image in a source image repository to an App Runner service. For a source code repository, App Runner retrieves the commit and builds a Docker image. For a source image repository, App Runner retrieves the latest Docker image. In both cases, App Runner then deploys the new image to your service and starts a new container instance. This is an asynchronous operation. On a successful call, you can use the returnedOperationId and the ListOperations call to track the operation's progress.
|
|
| TagResource |
Show DescriptionAdd tags to, or update the tag values of, an App Runner resource. A tag is a key-value pair. |
|
| UntagResource |
Show DescriptionRemove tags from an App Runner resource. |
Appstream Events
| Service | Event Name | Description |
|---|---|---|
| appstream | AssociateFleet |
Show DescriptionAssociates the specified fleet with the specified stack. |
| BatchAssociateUserStack |
Show DescriptionAssociates the specified users with the specified stacks. Users in a user pool cannot be assigned to stacks with fleets that are joined to an Active Directory domain. |
|
| BatchDisassociateUserStack |
Show DescriptionDisassociates the specified users from the specified stacks. |
|
| CopyImage |
Show DescriptionCopies the image within the same region or to a new region within the same AWS account. Note that any tags you added to the image will not be copied. |
|
| CreateDirectoryConfig |
Show DescriptionCreates a Directory Config object in AppStream 2.0. This object includes the configuration information required to join fleets and image builders to Microsoft Active Directory domains. |
|
| CreateFleet |
Show DescriptionCreates a fleet. A fleet consists of streaming instances that run a specified image. |
|
| CreateImageBuilder |
Show DescriptionCreates an image builder. An image builder is a virtual machine that is used to create an image. The initial state of the builder isPENDING. When it is ready, the state is RUNNING.
|
|
| CreateImageBuilderStreamingURL |
Show DescriptionCreates a URL to start an image builder streaming session. |
|
| CreateStack |
Show DescriptionCreates a stack to start streaming applications to users. A stack consists of an associated fleet, user access policies, and storage configurations. |
|
| CreateStreamingURL |
Show DescriptionCreates a temporary URL to start an AppStream 2.0 streaming session for the specified user. A streaming URL enables application streaming to be tested without user setup. |
|
| CreateUpdatedImage |
Show DescriptionCreates a new image with the latest Windows operating system updates, driver updates, and AppStream 2.0 agent software. For more information, see the "Update an Image by Using Managed AppStream 2.0 Image Updates" section in Administer Your AppStream 2.0 Images, in the Amazon AppStream 2.0 Administration Guide. |
|
| CreateUsageReportSubscription |
Show DescriptionCreates a usage report subscription. Usage reports are generated daily. |
|
| CreateUser |
Show DescriptionCreates a new user in the user pool. |
|
| DeleteDirectoryConfig |
Show DescriptionDeletes the specified Directory Config object from AppStream 2.0. This object includes the information required to join streaming instances to an Active Directory domain. |
|
| DeleteFleet |
Show DescriptionDeletes the specified fleet. |
|
| DeleteImage |
Show DescriptionDeletes the specified image. You cannot delete an image when it is in use. After you delete an image, you cannot provision new capacity using the image. |
|
| DeleteImageBuilder |
Show DescriptionDeletes the specified image builder and releases the capacity. |
|
| DeleteImagePermissions |
Show DescriptionDeletes permissions for the specified private image. After you delete permissions for an image, AWS accounts to which you previously granted these permissions can no longer use the image. |
|
| DeleteStack |
Show DescriptionDeletes the specified stack. After the stack is deleted, the application streaming environment provided by the stack is no longer available to users. Also, any reservations made for application streaming sessions for the stack are released. |
|
| DeleteUsageReportSubscription |
Show DescriptionDisables usage report generation. |
|
| DeleteUser |
Show DescriptionDeletes a user from the user pool. |
|
| DescribeDirectoryConfigs |
Show DescriptionRetrieves a list that describes one or more specified Directory Config objects for AppStream 2.0, if the names for these objects are provided. Otherwise, all Directory Config objects in the account are described. These objects include the configuration information required to join fleets and image builders to Microsoft Active Directory domains. Although the response syntax in this topic includes the account password, this password is not returned in the actual response. |
|
| DescribeFleets |
Show DescriptionRetrieves a list that describes one or more specified fleets, if the fleet names are provided. Otherwise, all fleets in the account are described. |
|
| DescribeImageBuilders |
Show DescriptionRetrieves a list that describes one or more specified image builders, if the image builder names are provided. Otherwise, all image builders in the account are described. |
|
| DescribeImagePermissions |
Show DescriptionRetrieves a list that describes the permissions for shared AWS account IDs on a private image that you own. |
|
| DescribeImages |
Show DescriptionRetrieves a list that describes one or more specified images, if the image names or image ARNs are provided. Otherwise, all images in the account are described. |
|
| DescribeSessions |
Show DescriptionRetrieves a list that describes the streaming sessions for a specified stack and fleet. If a UserId is provided for the stack and fleet, only streaming sessions for that user are described. If an authentication type is not provided, the default is to authenticate users using a streaming URL. |
|
| DescribeStacks |
Show DescriptionRetrieves a list that describes one or more specified stacks, if the stack names are provided. Otherwise, all stacks in the account are described. |
|
| DescribeUsageReportSubscriptions |
Show DescriptionRetrieves a list that describes one or more usage report subscriptions. |
|
| DescribeUserStackAssociations |
Show DescriptionRetrieves a list that describes the UserStackAssociation objects. You must specify either or both of the following:
|
|
| DescribeUsers |
Show DescriptionRetrieves a list that describes one or more specified users in the user pool. |
|
| DisableUser |
Show DescriptionDisables the specified user in the user pool. Users can't sign in to AppStream 2.0 until they are re-enabled. This action does not delete the user. |
|
| DisassociateFleet |
Show DescriptionDisassociates the specified fleet from the specified stack. |
|
| EnableUser |
Show DescriptionEnables a user in the user pool. After being enabled, users can sign in to AppStream 2.0 and open applications from the stacks to which they are assigned. |
|
| ExpireSession |
Show DescriptionImmediately stops the specified streaming session. |
|
| ListAssociatedFleets |
Show DescriptionRetrieves the name of the fleet that is associated with the specified stack. |
|
| ListAssociatedStacks |
Show DescriptionRetrieves the name of the stack with which the specified fleet is associated. |
|
| ListTagsForResource |
Show DescriptionRetrieves a list of all tags for the specified AppStream 2.0 resource. You can tag AppStream 2.0 image builders, images, fleets, and stacks. For more information about tags, see Tagging Your Resources in the Amazon AppStream 2.0 Administration Guide. |
|
| StartFleet |
Show DescriptionStarts the specified fleet. |
|
| StartImageBuilder |
Show DescriptionStarts the specified image builder. |
|
| StopFleet |
Show DescriptionStops the specified fleet. |
|
| StopImageBuilder |
Show DescriptionStops the specified image builder. |
|
| TagResource |
Show DescriptionAdds or overwrites one or more tags for the specified AppStream 2.0 resource. You can tag AppStream 2.0 image builders, images, fleets, and stacks. Each tag consists of a key and an optional value. If a resource already has a tag with the same key, this operation updates its value. To list the current tags for your resources, use ListTagsForResource. To disassociate tags from your resources, use UntagResource. For more information about tags, see Tagging Your Resources in the Amazon AppStream 2.0 Administration Guide. |
|
| UntagResource |
Show DescriptionDisassociates one or more specified tags from the specified AppStream 2.0 resource. To list the current tags for your resources, use ListTagsForResource. For more information about tags, see Tagging Your Resources in the Amazon AppStream 2.0 Administration Guide. |
|
| UpdateDirectoryConfig |
Show DescriptionUpdates the specified Directory Config object in AppStream 2.0. This object includes the configuration information required to join fleets and image builders to Microsoft Active Directory domains. |
|
| UpdateFleet |
Show DescriptionUpdates the specified fleet. If the fleet is in theSTOPPED state, you can update any attribute except the fleet name. If the fleet is in the RUNNING state, you can update the DisplayName, ComputeCapacity, ImageARN, ImageName, IdleDisconnectTimeoutInSeconds, and DisconnectTimeoutInSeconds attributes. If the fleet is in the STARTING or STOPPING state, you can't update it.
|
|
| UpdateImagePermissions |
Show DescriptionAdds or updates permissions for the specified private image. |
Appsync Events
| Service | Event Name | Description |
|---|---|---|
| appsync | CreateApiCache |
Show DescriptionCreates a cache for the GraphQL API. |
| CreateApiKey |
Show DescriptionCreates a unique key that you can distribute to clients who are executing your API. |
|
| CreateDataSource |
Show DescriptionCreates aDataSource object.
|
|
| CreateFunction |
Show DescriptionCreates aFunction object. A function is a reusable entity. Multiple functions can be used to compose the resolver logic.
|
|
| CreateGraphqlApi |
Show DescriptionCreates aGraphqlApi object.
|
|
| CreateResolver |
Show DescriptionCreates aResolver object. A resolver converts incoming requests into a format that a data source can understand and converts the data source's responses into GraphQL.
|
|
| CreateType |
Show DescriptionCreates aType object.
|
|
| DeleteApiCache |
Show DescriptionDeletes anApiCache object.
|
|
| DeleteApiKey |
Show DescriptionDeletes an API key. |
|
| DeleteDataSource |
Show DescriptionDeletes aDataSource object.
|
|
| DeleteFunction |
Show DescriptionDeletes aFunction.
|
|
| DeleteGraphqlApi |
Show DescriptionDeletes aGraphqlApi object.
|
|
| DeleteResolver |
Show DescriptionDeletes aResolver object.
|
|
| DeleteType |
Show DescriptionDeletes aType object.
|
|
| FlushApiCache |
Show DescriptionFlushes anApiCache object.
|
|
| GetApiCache |
Show DescriptionRetrieves anApiCache object.
|
|
| GetDataSource |
Show DescriptionRetrieves aDataSource object.
|
|
| GetFunction |
Show DescriptionGet aFunction.
|
|
| GetGraphqlApi |
Show DescriptionRetrieves aGraphqlApi object.
|
|
| GetIntrospectionSchema |
Show DescriptionRetrieves the introspection schema for a GraphQL API. |
|
| GetResolver |
Show DescriptionRetrieves aResolver object.
|
|
| GetSchemaCreationStatus |
Show DescriptionRetrieves the current status of a schema creation operation. |
|
| GetType |
Show DescriptionRetrieves aType object.
|
|
| ListApiKeys |
Show DescriptionLists the API keys for a given API.DeleteApiKey to manually delete a key before it's automatically deleted. |
|
| ListDataSources |
Show DescriptionLists the data sources for a given API. |
|
| ListFunctions |
Show DescriptionList multiple functions. |
|
| ListGraphqlApis |
Show DescriptionLists your GraphQL APIs. |
|
| ListResolvers |
Show DescriptionLists the resolvers for a given API and type. |
|
| ListResolversByFunction |
Show DescriptionList the resolvers that are associated with a specific function. |
|
| ListTagsForResource |
Show DescriptionLists the tags for a resource. |
|
| ListTypes |
Show DescriptionLists the types for a given API. |
|
| StartSchemaCreation |
Show DescriptionAdds a new schema to your GraphQL API. This operation is asynchronous. Use to determine when it has completed. |
|
| TagResource |
Show DescriptionTags a resource with user-supplied tags. |
|
| UntagResource |
Show DescriptionUntags a resource. |
|
| UpdateApiCache |
Show DescriptionUpdates the cache for the GraphQL API. |
|
| UpdateApiKey |
Show DescriptionUpdates an API key. The key can be updated while it is not deleted. |
|
| UpdateDataSource |
Show DescriptionUpdates aDataSource object.
|
|
| UpdateFunction |
Show DescriptionUpdates aFunction object.
|
|
| UpdateGraphqlApi |
Show DescriptionUpdates aGraphqlApi object.
|
|
| UpdateResolver |
Show DescriptionUpdates aResolver object.
|
Athena Events
| Service | Event Name | Description |
|---|---|---|
| athena | BatchGetNamedQuery |
Show DescriptionReturns the details of a single named query or a list of up to 50 queries, which you provide as an array of query ID strings. Requires you to have access to the workgroup in which the queries were saved. Use ListNamedQueriesInput to get the list of named query IDs in the specified workgroup. If information could not be retrieved for a submitted query ID, information about the query ID submitted is listed under UnprocessedNamedQueryId. Named queries differ from executed queries. Use BatchGetQueryExecutionInput to get details about each unique query execution, and ListQueryExecutionsInput to get a list of query execution IDs. |
| BatchGetQueryExecution |
Show DescriptionReturns the details of a single query execution or a list of up to 50 query executions, which you provide as an array of query execution ID strings. Requires you to have access to the workgroup in which the queries ran. To get a list of query execution IDs, use ListQueryExecutionsInput$WorkGroup. Query executions differ from named (saved) queries. Use BatchGetNamedQueryInput to get details about named queries. |
|
| CreateDataCatalog |
Show DescriptionCreates (registers) a data catalog with the specified name and properties. Catalogs created are visible to all users of the same Amazon Web Services account. |
|
| CreateNamedQuery |
Show DescriptionCreates a named query in the specified workgroup. Requires that you have access to the workgroup. For code samples using the Amazon Web Services SDK for Java, see Examples and Code Samples in the Amazon Athena User Guide. |
|
| CreatePreparedStatement |
Show DescriptionCreates a prepared statement for use with SQL queries in Athena. |
|
| CreateWorkGroup |
Show DescriptionCreates a workgroup with the specified name. |
|
| DeleteDataCatalog |
Show DescriptionDeletes a data catalog. |
|
| DeleteNamedQuery |
Show DescriptionDeletes the named query if you have access to the workgroup in which the query was saved. For code samples using the Amazon Web Services SDK for Java, see Examples and Code Samples in the Amazon Athena User Guide. |
|
| DeletePreparedStatement |
Show DescriptionDeletes the prepared statement with the specified name from the specified workgroup. |
|
| DeleteWorkGroup |
Show DescriptionDeletes the workgroup with the specified name. The primary workgroup cannot be deleted. |
|
| GetDataCatalog |
Show DescriptionReturns the specified data catalog. |
|
| GetDatabase |
Show DescriptionReturns a database object for the specified database and data catalog. |
|
| GetNamedQuery |
Show DescriptionReturns information about a single query. Requires that you have access to the workgroup in which the query was saved. |
|
| GetPreparedStatement |
Show DescriptionRetrieves the prepared statement with the specified name from the specified workgroup. |
|
| GetQueryExecution |
Show DescriptionReturns information about a single execution of a query if you have access to the workgroup in which the query ran. Each time a query executes, information about the query execution is saved with a unique ID. |
|
| GetQueryResults |
Show DescriptionStreams the results of a single query execution specified byQueryExecutionId from the Athena query results location in Amazon S3. For more information, see Query Results in the Amazon Athena User Guide. This request does not execute the query but returns results. Use StartQueryExecution to run a query. To stream query results successfully, the IAM principal with permission to call GetQueryResults also must have permissions to the Amazon S3 GetObject action for the Athena query results location. GetObject action for the query results location are able to retrieve query results from Amazon S3 even if permission to the GetQueryResults action is denied. To restrict user or role access, ensure that Amazon S3 permissions to the Athena query location are denied. |
|
| GetTableMetadata |
Show DescriptionReturns table metadata for the specified catalog, database, and table. |
|
| GetWorkGroup |
Show DescriptionReturns information about the workgroup with the specified name. |
|
| ListDataCatalogs |
Show DescriptionLists the data catalogs in the current Amazon Web Services account. |
|
| ListDatabases |
Show DescriptionLists the databases in the specified data catalog. |
|
| ListEngineVersions |
Show DescriptionReturns a list of engine versions that are available to choose from, including the Auto option. |
|
| ListNamedQueries |
Show DescriptionProvides a list of available query IDs only for queries saved in the specified workgroup. Requires that you have access to the specified workgroup. If a workgroup is not specified, lists the saved queries for the primary workgroup. For code samples using the Amazon Web Services SDK for Java, see Examples and Code Samples in the Amazon Athena User Guide. |
|
| ListPreparedStatements |
Show DescriptionLists the prepared statements in the specfied workgroup. |
|
| ListQueryExecutions |
Show DescriptionProvides a list of available query execution IDs for the queries in the specified workgroup. If a workgroup is not specified, returns a list of query execution IDs for the primary workgroup. Requires you to have access to the workgroup in which the queries ran. For code samples using the Amazon Web Services SDK for Java, see Examples and Code Samples in the Amazon Athena User Guide. |
|
| ListTableMetadata |
Show DescriptionLists the metadata for the tables in the specified data catalog database. |
|
| ListTagsForResource |
Show DescriptionLists the tags associated with an Athena workgroup or data catalog resource. |
|
| ListWorkGroups |
Show DescriptionLists available workgroups for the account. |
|
| StartQueryExecution |
Show DescriptionRuns the SQL query statements contained in theQuery. Requires you to have access to the workgroup in which the query ran. Running queries against an external catalog requires GetDataCatalog permission to the catalog. For code samples using the Amazon Web Services SDK for Java, see Examples and Code Samples in the Amazon Athena User Guide.
|
|
| StopQueryExecution |
Show DescriptionStops a query execution. Requires you to have access to the workgroup in which the query ran. For code samples using the Amazon Web Services SDK for Java, see Examples and Code Samples in the Amazon Athena User Guide. |
|
| TagResource |
Show DescriptionAdds one or more tags to an Athena resource. A tag is a label that you assign to a resource. In Athena, a resource can be a workgroup or data catalog. Each tag consists of a key and an optional value, both of which you define. For example, you can use tags to categorize Athena workgroups or data catalogs by purpose, owner, or environment. Use a consistent set of tag keys to make it easier to search and filter workgroups or data catalogs in your account. For best practices, see Tagging Best Practices. Tag keys can be from 1 to 128 UTF-8 Unicode characters, and tag values can be from 0 to 256 UTF-8 Unicode characters. Tags can use letters and numbers representable in UTF-8, and the following characters: + - = . _ : / @. Tag keys and values are case-sensitive. Tag keys must be unique per resource. If you specify more than one tag, separate them by commas. |
|
| UntagResource |
Show DescriptionRemoves one or more tags from a data catalog or workgroup resource. |
|
| UpdateDataCatalog |
Show DescriptionUpdates the data catalog that has the specified name. |
|
| UpdatePreparedStatement |
Show DescriptionUpdates a prepared statement. |
Auditmanager Events
| Service | Event Name | Description |
|---|---|---|
| auditmanager | AssociateAssessmentReportEvidenceFolder |
Show DescriptionAssociates an evidence folder to an assessment report in a Audit Manager assessment. |
| BatchAssociateAssessmentReportEvidence |
Show DescriptionAssociates a list of evidence to an assessment report in an Audit Manager assessment. |
|
| BatchCreateDelegationByAssessment |
Show DescriptionCreates a batch of delegations for an assessment in Audit Manager. |
|
| BatchDeleteDelegationByAssessment |
Show DescriptionDeletes a batch of delegations for an assessment in Audit Manager. |
|
| BatchDisassociateAssessmentReportEvidence |
Show DescriptionDisassociates a list of evidence from an assessment report in Audit Manager. |
|
| BatchImportEvidenceToAssessmentControl |
Show DescriptionUploads one or more pieces of evidence to a control in an Audit Manager assessment. |
|
| CreateAssessment |
Show DescriptionCreates an assessment in Audit Manager. |
|
| CreateAssessmentFramework |
Show DescriptionCreates a custom framework in Audit Manager. |
|
| CreateAssessmentReport |
Show DescriptionCreates an assessment report for the specified assessment. |
|
| CreateControl |
Show DescriptionCreates a new custom control in Audit Manager. |
|
| DeleteAssessment |
Show DescriptionDeletes an assessment in Audit Manager. |
|
| DeleteAssessmentFramework |
Show DescriptionDeletes a custom framework in Audit Manager. |
|
| DeleteAssessmentFrameworkShare |
Show DescriptionDeletes a share request for a custom framework in Audit Manager. |
|
| DeleteAssessmentReport |
Show DescriptionDeletes an assessment report from an assessment in Audit Manager. |
|
| DeleteControl |
Show DescriptionDeletes a custom control in Audit Manager. |
|
| DeregisterAccount |
Show DescriptionDeregisters an account in Audit Manager. |
|
| DeregisterOrganizationAdminAccount |
Show DescriptionRemoves the specified member Amazon Web Services account as a delegated administrator for Audit Manager. |
|
| DisassociateAssessmentReportEvidenceFolder |
Show DescriptionDisassociates an evidence folder from the specified assessment report in Audit Manager. |
|
| GetAccountStatus |
Show DescriptionReturns the registration status of an account in Audit Manager. |
|
| GetAssessment |
Show DescriptionReturns an assessment from Audit Manager. |
|
| GetAssessmentFramework |
Show DescriptionReturns a framework from Audit Manager. |
|
| GetAssessmentReportUrl |
Show DescriptionReturns the URL of an assessment report in Audit Manager. |
|
| GetChangeLogs |
Show DescriptionReturns a list of changelogs from Audit Manager. |
|
| GetControl |
Show DescriptionReturns a control from Audit Manager. |
|
| GetDelegations |
Show DescriptionReturns a list of delegations from an audit owner to a delegate. |
|
| GetEvidence |
Show DescriptionReturns evidence from Audit Manager. |
|
| GetEvidenceByEvidenceFolder |
Show DescriptionReturns all evidence from a specified evidence folder in Audit Manager. |
|
| GetEvidenceFolder |
Show DescriptionReturns an evidence folder from the specified assessment in Audit Manager. |
|
| GetEvidenceFoldersByAssessment |
Show DescriptionReturns the evidence folders from a specified assessment in Audit Manager. |
|
| GetEvidenceFoldersByAssessmentControl |
Show DescriptionReturns a list of evidence folders that are associated with a specified control of an assessment in Audit Manager. |
|
| GetOrganizationAdminAccount |
Show DescriptionReturns the name of the delegated Amazon Web Services administrator account for the organization. |
|
| GetServicesInScope |
Show DescriptionReturns a list of the in-scope Amazon Web Services services for the specified assessment. |
|
| GetSettings |
Show DescriptionReturns the settings for the specified Amazon Web Services account. |
|
| ListAssessmentFrameworkShareRequests |
Show DescriptionReturns a list of sent or received share requests for custom frameworks in Audit Manager. |
|
| ListAssessmentFrameworks |
Show DescriptionReturns a list of the frameworks that are available in the Audit Manager framework library. |
|
| ListAssessmentReports |
Show DescriptionReturns a list of assessment reports created in Audit Manager. |
|
| ListAssessments |
Show DescriptionReturns a list of current and past assessments from Audit Manager. |
|
| ListControls |
Show DescriptionReturns a list of controls from Audit Manager. |
|
| ListKeywordsForDataSource |
Show DescriptionReturns a list of keywords that are pre-mapped to the specified control data source. |
|
| ListNotifications |
Show DescriptionReturns a list of all Audit Manager notifications. |
|
| ListTagsForResource |
Show DescriptionReturns a list of tags for the specified resource in Audit Manager. |
|
| RegisterAccount |
Show DescriptionEnables Audit Manager for the specified Amazon Web Services account. |
|
| RegisterOrganizationAdminAccount |
Show DescriptionEnables an Amazon Web Services account within the organization as the delegated administrator for Audit Manager. |
|
| StartAssessmentFrameworkShare |
Show DescriptionCreates a share request for a custom framework in Audit Manager. The share request specifies a recipient and notifies them that a custom framework is available. Recipients have 120 days to accept or decline the request. If no action is taken, the share request expires.StartAssessmentFrameworkShare API, you are about to share a custom framework with another Amazon Web Services account. You may not share a custom framework that is derived from a standard framework if the standard framework is designated as not eligible for sharing by Amazon Web Services, unless you have obtained permission to do so from the owner of the standard framework. To learn more about which standard frameworks are eligible for sharing, see Framework sharing eligibility in the Audit Manager User Guide. |
|
| TagResource |
Show DescriptionTags the specified resource in Audit Manager. |
|
| UntagResource |
Show DescriptionRemoves a tag from a resource in Audit Manager. |
|
| UpdateAssessment |
Show DescriptionEdits an Audit Manager assessment. |
|
| UpdateAssessmentControl |
Show DescriptionUpdates a control within an assessment in Audit Manager. |
|
| UpdateAssessmentControlSetStatus |
Show DescriptionUpdates the status of a control set in an Audit Manager assessment. |
|
| UpdateAssessmentFramework |
Show DescriptionUpdates a custom framework in Audit Manager. |
|
| UpdateAssessmentFrameworkShare |
Show DescriptionUpdates a share request for a custom framework in Audit Manager. |
|
| UpdateAssessmentStatus |
Show DescriptionUpdates the status of an assessment in Audit Manager. |
|
| UpdateControl |
Show DescriptionUpdates a custom control in Audit Manager. |
|
| UpdateSettings |
Show DescriptionUpdates Audit Manager settings for the current user account. |
Autoscaling-plans Events
| Service | Event Name | Description |
|---|---|---|
| autoscaling-plans | CreateScalingPlan |
Show DescriptionCreates a scaling plan. |
| DeleteScalingPlan |
Show DescriptionDeletes the specified scaling plan. Deleting a scaling plan deletes the underlying ScalingInstruction for all of the scalable resources that are covered by the plan. If the plan has launched resources or has scaling activities in progress, you must delete those resources separately. |
|
| DescribeScalingPlanResources |
Show DescriptionDescribes the scalable resources in the specified scaling plan. |
|
| DescribeScalingPlans |
Show DescriptionDescribes one or more of your scaling plans. |
|
| GetScalingPlanResourceForecastData |
Show DescriptionRetrieves the forecast data for a scalable resource. Capacity forecasts are represented as predicted values, or data points, that are calculated using historical data points from a specified CloudWatch load metric. Data points are available for up to 56 days. |
Autoscaling Events
| Service | Event Name | Description |
|---|---|---|
| autoscaling | AttachInstances | |
| AttachLoadBalancerTargetGroups |
Show DescriptionAttaches one or more target groups to the specified Auto Scaling group. This operation is used with the following load balancer types:
|
|
| AttachLoadBalancers |
Show Description |
|
| BatchDeleteScheduledAction |
Show DescriptionDeletes one or more scheduled actions for the specified Auto Scaling group. |
|
| BatchPutScheduledUpdateGroupAction |
Show DescriptionCreates or updates one or more scheduled scaling actions for an Auto Scaling group. |
|
| CancelInstanceRefresh |
Show DescriptionCancels an instance refresh operation in progress. Cancellation does not roll back any replacements that have already been completed, but it prevents new replacements from being started. This operation is part of the instance refresh feature in Amazon EC2 Auto Scaling, which helps you update instances in your Auto Scaling group after you make configuration changes. |
|
| CompleteLifecycleAction |
Show DescriptionCompletes the lifecycle action for the specified token or instance with the specified result. This step is a part of the procedure for adding a lifecycle hook to an Auto Scaling group:
|
|
| CreateAutoScalingGroup | ||
| CreateLaunchConfiguration | ||
| CreateOrUpdateTags | ||
| DeleteAutoScalingGroup | ||
| DeleteLaunchConfiguration | ||
| DeleteLifecycleHook |
Show DescriptionDeletes the specified lifecycle hook. If there are any outstanding lifecycle actions, they are completed first (ABANDON for launching instances, CONTINUE for terminating instances).
|
|
| DeleteNotificationConfiguration | ||
| DeletePolicy | ||
| DeleteScheduledAction | ||
| DeleteTags | ||
| DeleteWarmPool |
Show DescriptionDeletes the warm pool for the specified Auto Scaling group. For more information, see Warm pools for Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide. |
|
| DescribeAccountLimits |
Show DescriptionDescribes the current Amazon EC2 Auto Scaling resource quotas for your account. When you establish an Amazon Web Services account, the account has initial quotas on the maximum number of Auto Scaling groups and launch configurations that you can create in a given Region. For more information, see Amazon EC2 Auto Scaling service quotas in the Amazon EC2 Auto Scaling User Guide. |
|
| DescribeAdjustmentTypes |
Show DescriptionDescribes the available adjustment types for step scaling and simple scaling policies. The following adjustment types are supported:
|
|
| DescribeAutoScalingGroups |
Show DescriptionGets information about the Auto Scaling groups in the account and Region. If you specify Auto Scaling group names, the output includes information for only the specified Auto Scaling groups. If you specify filters, the output includes information for only those Auto Scaling groups that meet the filter criteria. If you do not specify group names or filters, the output includes information for all Auto Scaling groups. This operation also returns information about instances in Auto Scaling groups. To retrieve information about the instances in a warm pool, you must call the DescribeWarmPool API. |
|
| DescribeAutoScalingInstances |
Show DescriptionGets information about the Auto Scaling instances in the account and Region. |
|
| DescribeAutoScalingNotificationTypes |
Show DescriptionDescribes the notification types that are supported by Amazon EC2 Auto Scaling. |
|
| DescribeInstanceRefreshes |
Show DescriptionGets information about the instance refreshes for the specified Auto Scaling group. This operation is part of the instance refresh feature in Amazon EC2 Auto Scaling, which helps you update instances in your Auto Scaling group after you make configuration changes. To help you determine the status of an instance refresh, this operation returns information about the instance refreshes you previously initiated, including their status, end time, the percentage of the instance refresh that is complete, and the number of instances remaining to update before the instance refresh is complete. The following are the possible statuses:
|
|
| DescribeLaunchConfigurations |
Show DescriptionGets information about the launch configurations in the account and Region. |
|
| DescribeLifecycleHookTypes |
Show DescriptionDescribes the available types of lifecycle hooks. The following hook types are supported:
|
|
| DescribeLifecycleHooks |
Show DescriptionGets information about the lifecycle hooks for the specified Auto Scaling group. |
|
| DescribeLoadBalancerTargetGroups |
Show DescriptionGets information about the load balancer target groups for the specified Auto Scaling group. To determine the availability of registered instances, use theState element in the response. When you attach a target group to an Auto Scaling group, the initial State value is Adding. The state transitions to Added after all Auto Scaling instances are registered with the target group. If Elastic Load Balancing health checks are enabled for the Auto Scaling group, the state transitions to InService after at least one Auto Scaling instance passes the health check. When the target group is in the InService state, Amazon EC2 Auto Scaling can terminate and replace any instances that are reported as unhealthy. If no registered instances pass the health checks, the target group doesn't enter the InService state. Target groups also have an InService state if you attach them in the CreateAutoScalingGroup API call. If your target group state is InService, but it is not working properly, check the scaling activities by calling DescribeScalingActivities and take any corrective actions necessary. For help with failed health checks, see Troubleshooting Amazon EC2 Auto Scaling: Health checks in the Amazon EC2 Auto Scaling User Guide. For more information, see Elastic Load Balancing and Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide.
|
|
| DescribeLoadBalancers |
Show DescriptionGets information about the load balancers for the specified Auto Scaling group. This operation describes only Classic Load Balancers. If you have Application Load Balancers, Network Load Balancers, or Gateway Load Balancers, use the DescribeLoadBalancerTargetGroups API instead. To determine the availability of registered instances, use theState element in the response. When you attach a load balancer to an Auto Scaling group, the initial State value is Adding. The state transitions to Added after all Auto Scaling instances are registered with the load balancer. If Elastic Load Balancing health checks are enabled for the Auto Scaling group, the state transitions to InService after at least one Auto Scaling instance passes the health check. When the load balancer is in the InService state, Amazon EC2 Auto Scaling can terminate and replace any instances that are reported as unhealthy. If no registered instances pass the health checks, the load balancer doesn't enter the InService state. Load balancers also have an InService state if you attach them in the CreateAutoScalingGroup API call. If your load balancer state is InService, but it is not working properly, check the scaling activities by calling DescribeScalingActivities and take any corrective actions necessary. For help with failed health checks, see Troubleshooting Amazon EC2 Auto Scaling: Health checks in the Amazon EC2 Auto Scaling User Guide. For more information, see Elastic Load Balancing and Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide.
|
|
| DescribeMetricCollectionTypes |
Show DescriptionDescribes the available CloudWatch metrics for Amazon EC2 Auto Scaling. TheGroupStandbyInstances metric is not returned by default. You must explicitly request this metric when calling the EnableMetricsCollection API.
|
|
| DescribeNotificationConfigurations |
Show DescriptionGets information about the Amazon SNS notifications that are configured for one or more Auto Scaling groups. |
|
| DescribePolicies |
Show DescriptionGets information about the scaling policies in the account and Region. |
|
| DescribeScalingActivities |
Show DescriptionGets information about the scaling activities in the account and Region. When scaling events occur, you see a record of the scaling activity in the scaling activities. For more information, see Verifying a scaling activity for an Auto Scaling group in the Amazon EC2 Auto Scaling User Guide. If the scaling event succeeds, the value of theStatusCode element in the response is Successful. If an attempt to launch instances failed, the StatusCode value is Failed or Cancelled and the StatusMessage element in the response indicates the cause of the failure. For help interpreting the StatusMessage, see Troubleshooting Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide.
|
|
| DescribeScalingProcessTypes |
Show DescriptionDescribes the scaling process types for use with the ResumeProcesses and SuspendProcesses APIs. |
|
| DescribeScheduledActions |
Show DescriptionGets information about the scheduled actions that haven't run or that have not reached their end time. To describe the scaling activities for scheduled actions that have already run, call the DescribeScalingActivities API. |
|
| DescribeTags |
Show DescriptionDescribes the specified tags. You can use filters to limit the results. For example, you can query for the tags for a specific Auto Scaling group. You can specify multiple values for a filter. A tag must match at least one of the specified values for it to be included in the results. You can also specify multiple filters. The result includes information for a particular tag only if it matches all the filters. If there's no match, no special message is returned. For more information, see Tagging Auto Scaling groups and instances in the Amazon EC2 Auto Scaling User Guide. |
|
| DescribeTerminationPolicyTypes |
Show DescriptionDescribes the termination policies supported by Amazon EC2 Auto Scaling. For more information, see Controlling which Auto Scaling instances terminate during scale in in the Amazon EC2 Auto Scaling User Guide. |
|
| DescribeWarmPool |
Show DescriptionGets information about a warm pool and its instances. For more information, see Warm pools for Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide. |
|
| DetachInstances |
Show DescriptionRemoves one or more instances from the specified Auto Scaling group. After the instances are detached, you can manage them independent of the Auto Scaling group. If you do not specify the option to decrement the desired capacity, Amazon EC2 Auto Scaling launches instances to replace the ones that are detached. If there is a Classic Load Balancer attached to the Auto Scaling group, the instances are deregistered from the load balancer. If there are target groups attached to the Auto Scaling group, the instances are deregistered from the target groups. For more information, see Detach EC2 instances from your Auto Scaling group in the Amazon EC2 Auto Scaling User Guide. |
|
| DetachLoadBalancerTargetGroups |
Show DescriptionDetaches one or more target groups from the specified Auto Scaling group. |
|
| DetachLoadBalancers |
Show DescriptionDetaches one or more Classic Load Balancers from the specified Auto Scaling group. This operation detaches only Classic Load Balancers. If you have Application Load Balancers, Network Load Balancers, or Gateway Load Balancers, use the DetachLoadBalancerTargetGroups API instead. When you detach a load balancer, it enters theRemoving state while deregistering the instances in the group. When all instances are deregistered, then you can no longer describe the load balancer using the DescribeLoadBalancers API call. The instances remain running.
|
|
| DisableMetricsCollection | ||
| EnableMetricsCollection | ||
| EnterStandby |
Show DescriptionMoves the specified instances into the standby state. If you choose to decrement the desired capacity of the Auto Scaling group, the instances can enter standby as long as the desired capacity of the Auto Scaling group after the instances are placed into standby is equal to or greater than the minimum capacity of the group. If you choose not to decrement the desired capacity of the Auto Scaling group, the Auto Scaling group launches new instances to replace the instances on standby. For more information, see Temporarily removing instances from your Auto Scaling group in the Amazon EC2 Auto Scaling User Guide. |
|
| ExecutePolicy | ||
| ExitStandby |
Show DescriptionMoves the specified instances out of the standby state. After you put the instances back in service, the desired capacity is incremented. For more information, see Temporarily removing instances from your Auto Scaling group in the Amazon EC2 Auto Scaling User Guide. |
|
| GetPredictiveScalingForecast |
Show DescriptionRetrieves the forecast data for a predictive scaling policy. Load forecasts are predictions of the hourly load values using historical load data from CloudWatch and an analysis of historical trends. Capacity forecasts are represented as predicted values for the minimum capacity that is needed on an hourly basis, based on the hourly load forecast. A minimum of 24 hours of data is required to create the initial forecasts. However, having a full 14 days of historical data results in more accurate forecasts. For more information, see Predictive scaling for Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide. |
|
| PutLifecycleHook |
Show DescriptionCreates or updates a lifecycle hook for the specified Auto Scaling group. A lifecycle hook tells Amazon EC2 Auto Scaling to perform an action on an instance when the instance launches (before it is put into service) or as the instance terminates (before it is fully terminated). This step is a part of the procedure for adding a lifecycle hook to an Auto Scaling group:
|
|
| PutNotificationConfiguration | ||
| PutScalingPolicy |
Show DescriptionCreates or updates a scaling policy for an Auto Scaling group. Scaling policies are used to scale an Auto Scaling group based on configurable metrics. If no policies are defined, the dynamic scaling and predictive scaling features are not used. For more information about using dynamic scaling, see Target tracking scaling policies and Step and simple scaling policies in the Amazon EC2 Auto Scaling User Guide. For more information about using predictive scaling, see Predictive scaling for Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide. You can view the scaling policies for an Auto Scaling group using the DescribePolicies API call. If you are no longer using a scaling policy, you can delete it by calling the DeletePolicy API. |
|
| PutScheduledUpdateGroupAction | ||
| PutWarmPool |
Show DescriptionCreates or updates a warm pool for the specified Auto Scaling group. A warm pool is a pool of pre-initialized EC2 instances that sits alongside the Auto Scaling group. Whenever your application needs to scale out, the Auto Scaling group can draw on the warm pool to meet its new desired capacity. For more information and example configurations, see Warm pools for Amazon EC2 Auto Scaling in the Amazon EC2 Auto Scaling User Guide. This operation must be called from the Region in which the Auto Scaling group was created. This operation cannot be called on an Auto Scaling group that has a mixed instances policy or a launch template or launch configuration that requests Spot Instances. You can view the instances in the warm pool using the DescribeWarmPool API call. If you are no longer using a warm pool, you can delete it by calling the DeleteWarmPool API. |
|
| RecordLifecycleActionHeartbeat |
Show DescriptionRecords a heartbeat for the lifecycle action associated with the specified token or instance. This extends the timeout by the length of time defined using the PutLifecycleHook API call. This step is a part of the procedure for adding a lifecycle hook to an Auto Scaling group:
|
|
| ResumeProcesses | ||
| SetDesiredCapacity | ||
| SetInstanceHealth | ||
| SetInstanceProtection |
Show DescriptionUpdates the instance protection settings of the specified instances. This operation cannot be called on instances in a warm pool. For more information about preventing instances that are part of an Auto Scaling group from terminating on scale in, see Instance scale-in protection in the Amazon EC2 Auto Scaling User Guide. If you exceed your maximum limit of instance IDs, which is 50 per Auto Scaling group, the call fails. |
|
| StartInstanceRefresh |
Show DescriptionStarts a new instance refresh operation. An instance refresh performs a rolling replacement of all or some instances in an Auto Scaling group. Each instance is terminated first and then replaced, which temporarily reduces the capacity available within your Auto Scaling group. This operation is part of the instance refresh feature in Amazon EC2 Auto Scaling, which helps you update instances in your Auto Scaling group. This feature is helpful, for example, when you have a new AMI or a new user data script. You just need to create a new launch template that specifies the new AMI or user data script. Then start an instance refresh to immediately begin the process of updating instances in the group. If the call succeeds, it creates a new instance refresh request with a unique ID that you can use to track its progress. To query its status, call the DescribeInstanceRefreshes API. To describe the instance refreshes that have already run, call the DescribeInstanceRefreshes API. To cancel an instance refresh operation in progress, use the CancelInstanceRefresh API. |
|
| SuspendProcesses | ||
| TerminateInstanceInAutoScalingGroup |
Show DescriptionTerminates the specified instance and optionally adjusts the desired group size. This operation cannot be called on instances in a warm pool. This call simply makes a termination request. The instance is not terminated immediately. When an instance is terminated, the instance status changes toterminated. You can't connect to or start an instance after you've terminated it. If you do not specify the option to decrement the desired capacity, Amazon EC2 Auto Scaling launches instances to replace the ones that are terminated. By default, Amazon EC2 Auto Scaling balances instances across all Availability Zones. If you decrement the desired capacity, your Auto Scaling group can become unbalanced between Availability Zones. Amazon EC2 Auto Scaling tries to rebalance the group, and rebalancing might terminate instances in other zones. For more information, see Rebalancing activities in the Amazon EC2 Auto Scaling User Guide.
|
Batch Events
| Service | Event Name | Description |
|---|---|---|
| batch | CancelJob |
Show DescriptionCancels a job in an Batch job queue. Jobs that are in theSUBMITTED, PENDING, or RUNNABLE state are canceled. Jobs that have progressed to STARTING or RUNNING aren't canceled, but the API operation still succeeds, even if no job is canceled. These jobs must be terminated with the TerminateJob operation.
|
| CreateComputeEnvironment |
Show DescriptionCreates an Batch compute environment. You can createMANAGED or UNMANAGED compute environments. MANAGED compute environments can use Amazon EC2 or Fargate resources. UNMANAGED compute environments can only use EC2 resources. In a managed compute environment, Batch manages the capacity and instance types of the compute resources within the environment. This is based on the compute resource specification that you define or the launch template that you specify when you create the compute environment. Either, you can choose to use EC2 On-Demand Instances and EC2 Spot Instances. Or, you can use Fargate and Fargate Spot capacity in your managed compute environment. You can optionally set a maximum price so that Spot Instances only launch when the Spot Instance price is less than a specified percentage of the On-Demand price.
|
|
| CreateJobQueue |
Show DescriptionCreates an Batch job queue. When you create a job queue, you associate one or more compute environments to the queue and assign an order of preference for the compute environments. You also set a priority to the job queue that determines the order that the Batch scheduler places jobs onto its associated compute environments. For example, if a compute environment is associated with more than one job queue, the job queue with a higher priority is given preference for scheduling jobs to that compute environment. |
|
| DeleteComputeEnvironment |
Show DescriptionDeletes an Batch compute environment. Before you can delete a compute environment, you must set its state toDISABLED with the UpdateComputeEnvironment API operation and disassociate it from any job queues with the UpdateJobQueue API operation. Compute environments that use Fargate resources must terminate all active jobs on that compute environment before deleting the compute environment. If this isn't done, the compute environment enters an invalid state.
|
|
| DeleteJobQueue |
Show DescriptionDeletes the specified job queue. You must first disable submissions for a queue with the UpdateJobQueue operation. All jobs in the queue are eventually terminated when you delete a job queue. The jobs are terminated at a rate of about 16 jobs each second. It's not necessary to disassociate compute environments from a queue before submitting aDeleteJobQueue request.
|
|
| DeregisterJobDefinition |
Show DescriptionDeregisters an Batch job definition. Job definitions are permanently deleted after 180 days. |
|
| DescribeComputeEnvironments |
Show DescriptionDescribes one or more of your compute environments. If you're using an unmanaged compute environment, you can use theDescribeComputeEnvironment operation to determine the ecsClusterArn that you should launch your Amazon ECS container instances into.
|
|
| DescribeJobDefinitions |
Show DescriptionDescribes a list of job definitions. You can specify astatus (such as ACTIVE) to only return job definitions that match that status.
|
|
| DescribeJobQueues |
Show DescriptionDescribes one or more of your job queues. |
|
| DescribeJobs |
Show DescriptionDescribes a list of Batch jobs. |
|
| ListJobs |
Show DescriptionReturns a list of Batch jobs. You must specify only one of the following items:
jobStatus parameter. If you don't specify a status, only RUNNING jobs are returned.
|
|
| ListTagsForResource |
Show DescriptionLists the tags for an Batch resource. Batch resources that support tags are compute environments, jobs, job definitions, and job queues. ARNs for child jobs of array and multi-node parallel (MNP) jobs are not supported. |
|
| RegisterJobDefinition |
Show DescriptionRegisters an Batch job definition. |
|
| SubmitJob |
Show DescriptionSubmits an Batch job from a job definition. Parameters that are specified during SubmitJob override parameters defined in the job definition. vCPU and memory requirements that are specified in theResourceRequirements objects in the job definition are the exception. They can't be overridden this way using the memory and vcpus parameters. Rather, you must specify updates to job definition parameters in a ResourceRequirements object that's included in the containerOverrides parameter. |
|
| TagResource |
Show DescriptionAssociates the specified tags to a resource with the specifiedresourceArn. If existing tags on a resource aren't specified in the request parameters, they aren't changed. When a resource is deleted, the tags that are associated with that resource are deleted as well. Batch resources that support tags are compute environments, jobs, job definitions, and job queues. ARNs for child jobs of array and multi-node parallel (MNP) jobs are not supported.
|
|
| TerminateJob |
Show DescriptionTerminates a job in a job queue. Jobs that are in theSTARTING or RUNNING state are terminated, which causes them to transition to FAILED. Jobs that have not progressed to the STARTING state are cancelled.
|
|
| UntagResource |
Show DescriptionDeletes specified tags from an Batch resource. |
|
| UpdateComputeEnvironment |
Show DescriptionUpdates an Batch compute environment. |
Braket Events
| Service | Event Name | Description |
|---|---|---|
| braket | CancelQuantumTask |
Show DescriptionCancels the specified task. |
| CreateQuantumTask |
Show DescriptionCreates a quantum task. |
|
| GetDevice |
Show DescriptionRetrieves the devices available in Amazon Braket. |
|
| GetQuantumTask |
Show DescriptionRetrieves the specified quantum task. |
|
| ListTagsForResource |
Show DescriptionShows the tags associated with this resource. |
|
| SearchDevices |
Show DescriptionSearches for devices using the specified filters. |
|
| SearchQuantumTasks |
Show DescriptionSearches for tasks that match the specified filter values. |
|
| TagResource |
Show DescriptionAdd a tag to the specified resource. |
Budgets Events
| Service | Event Name | Description |
|---|---|---|
| budgets | CreateBudget |
Show DescriptionCreates a budget and, if included, notifications and subscribers.BudgetLimit or PlannedBudgetLimits can be present in the syntax at one time. Use the syntax that matches your case. The Request Syntax section shows the BudgetLimit syntax. For PlannedBudgetLimits, see the Examples section. |
| CreateBudgetAction |
Show DescriptionCreates a budget action. |
|
| CreateNotification |
Show DescriptionCreates a notification. You must create the budget before you create the associated notification. |
|
| CreateSubscriber |
Show DescriptionCreates a subscriber. You must create the associated budget and notification before you create the subscriber. |
|
| DeleteBudget |
Show DescriptionDeletes a budget. You can delete your budget at any time. |
|
| DeleteBudgetAction |
Show DescriptionDeletes a budget action. |
|
| DeleteNotification |
Show DescriptionDeletes a notification. |
|
| DeleteSubscriber |
Show DescriptionDeletes a subscriber. |
|
| DescribeBudget |
Show DescriptionDescribes a budget.BudgetLimit syntax. For PlannedBudgetLimits, see the Examples section. |
|
| DescribeBudgetAction |
Show DescriptionDescribes a budget action detail. |
|
| DescribeBudgetActionHistories |
Show DescriptionDescribes a budget action history detail. |
|
| DescribeBudgetActionsForAccount |
Show DescriptionDescribes all of the budget actions for an account. |
|
| DescribeBudgetActionsForBudget |
Show DescriptionDescribes all of the budget actions for a budget. |
|
| DescribeBudgetPerformanceHistory |
Show DescriptionDescribes the history forDAILY, MONTHLY, and QUARTERLY budgets. Budget history isn't available for ANNUAL budgets.
|
|
| DescribeBudgets |
Show DescriptionLists the budgets that are associated with an account.BudgetLimit syntax. For PlannedBudgetLimits, see the Examples section. |
|
| DescribeNotificationsForBudget |
Show DescriptionLists the notifications that are associated with a budget. |
|
| DescribeSubscribersForNotification |
Show DescriptionLists the subscribers that are associated with a notification. |
|
| ExecuteBudgetAction |
Show DescriptionExecutes a budget action. |
|
| UpdateBudget |
Show DescriptionUpdates a budget. You can change every part of a budget except for thebudgetName and the calculatedSpend. When you modify a budget, the calculatedSpend drops to zero until AWS has new usage data to use for forecasting. BudgetLimit or PlannedBudgetLimits can be present in the syntax at one time. Use the syntax that matches your case. The Request Syntax section shows the BudgetLimit syntax. For PlannedBudgetLimits, see the Examples section. |
|
| UpdateBudgetAction |
Show DescriptionUpdates a budget action. |
|
| UpdateNotification |
Show DescriptionUpdates a notification. |
Cloudcontrol Events
| Service | Event Name | Description |
|---|---|---|
| cloudcontrol | CancelResourceRequest |
Show DescriptionCancels the specified resource operation request. For more information, see Canceling resource operation requests in the Amazon Web Services Cloud Control API User Guide. Only resource operations requests with a status ofPENDING or IN_PROGRESS can be cancelled.
|
| CreateResource |
Show DescriptionCreates the specified resource. For more information, see Creating a resource in the Amazon Web Services Cloud Control API User Guide. After you have initiated a resource creation request, you can monitor the progress of your request by calling GetResourceRequestStatus using theRequestToken of the ProgressEvent type returned by CreateResource.
|
|
| DeleteResource |
Show DescriptionDeletes the specified resource. For details, see Deleting a resource in the Amazon Web Services Cloud Control API User Guide. After you have initiated a resource deletion request, you can monitor the progress of your request by calling GetResourceRequestStatus using theRequestToken of the ProgressEvent returned by DeleteResource.
|
|
| GetResource |
Show DescriptionReturns information about the current state of the specified resource. For details, see Reading a resource's current state. You can use this action to return information about an existing resource in your account and Amazon Web Services Region, whether or not those resources were provisioned using Cloud Control API. |
|
| GetResourceRequestStatus |
Show DescriptionReturns the current status of a resource operation request. For more information, see Tracking the progress of resource operation requests in the Amazon Web Services Cloud Control API User Guide. |
|
| ListResourceRequests |
Show DescriptionReturns existing resource operation requests. This includes requests of all status types. For more information, see Listing active resource operation requests in the Amazon Web Services Cloud Control API User Guide. |
|
| ListResources |
Show DescriptionReturns information about the specified resources. For more information, see Discovering resources in the Amazon Web Services Cloud Control API User Guide. You can use this action to return information about existing resources in your account and Amazon Web Services Region, whether or not those resources were provisioned using Cloud Control API. |
Cloudformation Events
| Service | Event Name | Description |
|---|---|---|
| cloudformation | ActivateType |
Show DescriptionActivates a public third-party extension, making it available for use in stack templates. For more information, see Using public extensions in the CloudFormation User Guide. Once you have activated a public third-party extension in your account and region, use SetTypeConfiguration to specify configuration properties for the extension. For more information, see Configuring extensions at the account level in the CloudFormation User Guide. |
| BatchDescribeTypeConfigurations |
Show DescriptionReturns configuration data for the specified CloudFormation extensions, from the CloudFormation registry for the account and region. For more information, see Configuring extensions at the account level in the CloudFormation User Guide. |
|
| CancelUpdateStack | ||
| ContinueUpdateRollback |
Show DescriptionFor a specified stack that is in theUPDATE_ROLLBACK_FAILED state, continues rolling it back to the UPDATE_ROLLBACK_COMPLETE state. Depending on the cause of the failure, you can manually fix the error and continue the rollback. By continuing the rollback, you can return your stack to a working state (the UPDATE_ROLLBACK_COMPLETE state), and then try to update the stack again. A stack goes into the UPDATE_ROLLBACK_FAILED state when CloudFormation cannot roll back all changes after a failed stack update. For example, you might have a stack that is rolling back to an old database instance that was deleted outside of CloudFormation. Because CloudFormation doesn't know the database was deleted, it assumes that the database instance still exists and attempts to roll back to it, causing the update rollback to fail.
|
|
| CreateChangeSet |
Show DescriptionCreates a list of changes that will be applied to a stack so that you can review the changes before executing them. You can create a change set for a stack that doesn't exist or an existing stack. If you create a change set for a stack that doesn't exist, the change set shows all of the resources that CloudFormation will create. If you create a change set for an existing stack, CloudFormation compares the stack's information with the information that you submit in the change set and lists the differences. Use change sets to understand which resources CloudFormation will create or change, and how it will change resources in an existing stack, before you create or update a stack. To create a change set for a stack that doesn't exist, for theChangeSetType parameter, specify CREATE. To create a change set for an existing stack, specify UPDATE for the ChangeSetType parameter. To create a change set for an import operation, specify IMPORT for the ChangeSetType parameter. After the CreateChangeSet call successfully completes, CloudFormation starts creating the change set. To check the status of the change set or to review it, use the DescribeChangeSet action. When you are satisfied with the changes the change set will make, execute the change set by using the ExecuteChangeSet action. CloudFormation doesn't make changes until you execute the change set. To create a change set for the entire stack hierachy, set IncludeNestedStacks to True.
|
|
| CreateStack |
Show DescriptionCreates a stack as specified in the template. After the call completes successfully, the stack creation starts. You can check the status of the stack via the DescribeStacks API. |
|
| CreateStackInstances |
Show DescriptionCreates stack instances for the specified accounts, within the specified Regions. A stack instance refers to a stack in a specific account and Region. You must specify at least one value for eitherAccounts or DeploymentTargets, and you must specify at least one value for Regions.
|
|
| CreateStackSet |
Show DescriptionCreates a stack set. |
|
| DeactivateType |
Show DescriptionDeactivates a public extension that was previously activated in this account and region. Once deactivated, an extension cannot be used in any CloudFormation operation. This includes stack update operations where the stack template includes the extension, even if no updates are being made to the extension. In addition, deactivated extensions are not automatically updated if a new version of the extension is released. |
|
| DeleteChangeSet |
Show DescriptionDeletes the specified change set. Deleting change sets ensures that no one executes the wrong change set. If the call successfully completes, CloudFormation successfully deleted the change set. IfIncludeNestedStacks specifies True during the creation of the nested change set, then DeleteChangeSet will delete all change sets that belong to the stacks hierarchy and will also delete all change sets for nested stacks with the status of REVIEW_IN_PROGRESS.
|
|
| DeleteStack | ||
| DeleteStackInstances |
Show DescriptionDeletes stack instances for the specified accounts, in the specified Regions. |
|
| DeleteStackSet |
Show DescriptionDeletes a stack set. Before you can delete a stack set, all of its member stack instances must be deleted. For more information about how to do this, see DeleteStackInstances. |
|
| DeregisterType |
Show DescriptionMarks an extension or extension version asDEPRECATED in the CloudFormation registry, removing it from active use. Deprecated extensions or extension versions cannot be used in CloudFormation operations. To deregister an entire extension, you must individually deregister all active versions of that extension. If an extension has only a single active version, deregistering that version results in the extension itself being deregistered and marked as deprecated in the registry. You cannot deregister the default version of an extension if there are other active version of that extension. If you do deregister the default version of an extension, the textensionype itself is deregistered as well and marked as deprecated. To view the deprecation status of an extension or extension version, use DescribeType.
|
|
| DescribeAccountLimits |
Show DescriptionRetrieves your account's CloudFormation limits, such as the maximum number of stacks that you can create in your account. For more information about account limits, see CloudFormation Limits in the CloudFormation User Guide. |
|
| DescribeChangeSet |
Show DescriptionReturns the inputs for the change set and a list of changes that CloudFormation will make if you execute the change set. For more information, see Updating Stacks Using Change Sets in the CloudFormation User Guide. |
|
| DescribePublisher |
Show DescriptionReturns information about a CloudFormation extension publisher. If you do not supply aPublisherId, and you have registered as an extension publisher, DescribePublisher returns information about your own publisher account. For more information on registering as a publisher, see:
|
|
| DescribeStackDriftDetectionStatus |
Show DescriptionReturns information about a stack drift detection operation. A stack drift detection operation detects whether a stack's actual configuration differs, or has drifted, from it's expected configuration, as defined in the stack template and any values specified as template parameters. A stack is considered to have drifted if one or more of its resources have drifted. For more information on stack and resource drift, see Detecting Unregulated Configuration Changes to Stacks and Resources. Use DetectStackDrift to initiate a stack drift detection operation.DetectStackDrift returns a StackDriftDetectionId you can use to monitor the progress of the operation using DescribeStackDriftDetectionStatus. Once the drift detection operation has completed, use DescribeStackResourceDrifts to return drift information about the stack and its resources.
|
|
| DescribeStackEvents |
Show DescriptionReturns all stack related events for a specified stack in reverse chronological order. For more information about a stack's event history, go to Stacks in the CloudFormation User Guide. |
|
| DescribeStackInstance |
Show DescriptionReturns the stack instance that's associated with the specified stack set, Amazon Web Services account, and Region. For a list of stack instances that are associated with a specific stack set, use ListStackInstances. |
|
| DescribeStackResource |
Show DescriptionReturns a description of the specified resource in the specified stack. For deleted stacks, DescribeStackResource returns resource information for up to 90 days after the stack has been deleted. |
|
| DescribeStackResourceDrifts |
Show DescriptionReturns drift information for the resources that have been checked for drift in the specified stack. This includes actual and expected configuration values for resources where CloudFormation detects configuration drift. For a given stack, there will be oneStackResourceDrift for each stack resource that has been checked for drift. Resources that haven't yet been checked for drift are not included. Resources that do not currently support drift detection are not checked, and so not included. For a list of resources that support drift detection, see Resources that Support Drift Detection. Use DetectStackResourceDrift to detect drift on individual resources, or DetectStackDrift to detect drift on all supported resources for a given stack.
|
|
| DescribeStackResources |
Show DescriptionReturns Amazon Web Services resource descriptions for running and deleted stacks. IfStackName is specified, all the associated resources that are part of the stack are returned. If PhysicalResourceId is specified, the associated resources of the stack that the resource belongs to are returned. ListStackResources instead. DescribeStackResources returns resource information for up to 90 days after the stack has been deleted. You must specify either StackName or PhysicalResourceId, but not both. In addition, you can specify LogicalResourceId to filter the returned result. For more information about resources, the LogicalResourceId and PhysicalResourceId, go to the CloudFormation User Guide. ValidationError is returned if you specify both StackName and PhysicalResourceId in the same request. |
|
| DescribeStackSet |
Show DescriptionReturns the description of the specified stack set. |
|
| DescribeStackSetOperation |
Show DescriptionReturns the description of the specified stack set operation. |
|
| DescribeStacks |
Show DescriptionReturns the description for the specified stack; if no stack name was specified, then it returns the description for all the stacks created.ValidationError is returned. |
|
| DescribeType |
Show DescriptionReturns detailed information about an extension that has been registered. If you specify aVersionId, DescribeType returns information about that specific extension version. Otherwise, it returns information about the default extension version.
|
|
| DescribeTypeRegistration |
Show DescriptionReturns information about an extension's registration, including its current status and type and version identifiers. When you initiate a registration request using RegisterType , you can then use DescribeTypeRegistration to monitor the progress of that registration request. Once the registration request has completed, use DescribeType to return detailed information about an extension.
|
|
| DetectStackDrift |
Show DescriptionDetects whether a stack's actual configuration differs, or has drifted, from it's expected configuration, as defined in the stack template and any values specified as template parameters. For each resource in the stack that supports drift detection, CloudFormation compares the actual configuration of the resource with its expected template configuration. Only resource properties explicitly defined in the stack template are checked for drift. A stack is considered to have drifted if one or more of its resources differ from their expected template configurations. For more information, see Detecting Unregulated Configuration Changes to Stacks and Resources. UseDetectStackDrift to detect drift on all supported resources for a given stack, or DetectStackResourceDrift to detect drift on individual resources. For a list of stack resources that currently support drift detection, see Resources that Support Drift Detection. DetectStackDrift can take up to several minutes, depending on the number of resources contained within the stack. Use DescribeStackDriftDetectionStatus to monitor the progress of a detect stack drift operation. Once the drift detection operation has completed, use DescribeStackResourceDrifts to return drift information about the stack and its resources. When detecting drift on a stack, CloudFormation does not detect drift on any nested stacks belonging to that stack. Perform DetectStackDrift directly on the nested stack itself.
|
|
| DetectStackResourceDrift |
Show DescriptionReturns information about whether a resource's actual configuration differs, or has drifted, from it's expected configuration, as defined in the stack template and any values specified as template parameters. This information includes actual and expected property values for resources in which CloudFormation detects drift. Only resource properties explicitly defined in the stack template are checked for drift. For more information about stack and resource drift, see Detecting Unregulated Configuration Changes to Stacks and Resources. UseDetectStackResourceDrift to detect drift on individual resources, or DetectStackDrift to detect drift on all resources in a given stack that support drift detection. Resources that do not currently support drift detection cannot be checked. For a list of resources that support drift detection, see Resources that Support Drift Detection.
|
|
| DetectStackSetDrift |
Show DescriptionDetect drift on a stack set. When CloudFormation performs drift detection on a stack set, it performs drift detection on the stack associated with each stack instance in the stack set. For more information, see How CloudFormation Performs Drift Detection on a Stack Set.DetectStackSetDrift returns the OperationId of the stack set drift detection operation. Use this operation id with DescribeStackSetOperation to monitor the progress of the drift detection operation. The drift detection operation may take some time, depending on the number of stack instances included in the stack set, as well as the number of resources included in each stack. Once the operation has completed, use the following actions to return drift information:
StopStackSetOperation .
|
|
| EstimateTemplateCost |
Show DescriptionReturns the estimated monthly cost of a template. The return value is an Amazon Web Services Simple Monthly Calculator URL with a query string that describes the resources required to run the template. |
|
| ExecuteChangeSet |
Show DescriptionUpdates a stack using the input information that was provided when the specified change set was created. After the call successfully completes, CloudFormation starts updating the stack. Use the DescribeStacks action to view the status of the update. When you execute a change set, CloudFormation deletes all other change sets associated with the stack because they aren't valid for the updated stack. If a stack policy is associated with the stack, CloudFormation enforces the policy during the update. You can't specify a temporary stack policy that overrides the current policy. To create a change set for the entire stack hierachy,IncludeNestedStacks must have been set to True.
|
|
| GetStackPolicy |
Show DescriptionReturns the stack policy for a specified stack. If a stack doesn't have a policy, a null value is returned. |
|
| GetTemplate |
Show DescriptionReturns the template body for a specified stack. You can get the template for running or deleted stacks. For deleted stacks, GetTemplate returns the template for up to 90 days after the stack has been deleted.ValidationError is returned. |
|
| GetTemplateSummary |
Show DescriptionReturns information about a new or existing template. TheGetTemplateSummary action is useful for viewing parameter information, such as default parameter values and parameter types, before you create or update a stack or stack set. You can use the GetTemplateSummary action when you submit a template, or you can get template information for a stack set, or a running or deleted stack. For deleted stacks, GetTemplateSummary returns the template information for up to 90 days after the stack has been deleted. If the template does not exist, a ValidationError is returned.
|
|
| ImportStacksToStackSet |
Show DescriptionImport existing stacks into a new stack sets. Use the stack import operation to import up to 10 stacks into a new stack set in the same account as the source stack or in a different administrator account and Region, by specifying the stack ID of the stack you intend to import.ImportStacksToStackSet is only supported by self-managed permissions. |
|
| ListChangeSets |
Show DescriptionReturns the ID and status of each active change set for a stack. For example, CloudFormation lists change sets that are in theCREATE_IN_PROGRESS or CREATE_PENDING state.
|
|
| ListExports |
Show DescriptionLists all exported output values in the account and Region in which you call this action. Use this action to see the exported output values that you can import into other stacks. To import values, use theFn::ImportValue function. For more information, see CloudFormation Export Stack Output Values.
|
|
| ListImports |
Show DescriptionLists all stacks that are importing an exported output value. To modify or remove an exported output value, first use this action to see which stacks are using it. To see the exported output values in your account, see ListExports. For more information about importing an exported output value, see theFn::ImportValue function.
|
|
| ListStackInstances |
Show DescriptionReturns summary information about stack instances that are associated with the specified stack set. You can filter for stack instances that are associated with a specific Amazon Web Services account name or Region, or that have a specific status. |
|
| ListStackResources |
Show DescriptionReturns descriptions of all resources of the specified stack. For deleted stacks, ListStackResources returns resource information for up to 90 days after the stack has been deleted. |
|
| ListStackSetOperationResults |
Show DescriptionReturns summary information about the results of a stack set operation. |
|
| ListStackSetOperations |
Show DescriptionReturns summary information about operations performed on a stack set. |
|
| ListStackSets |
Show DescriptionReturns summary information about stack sets that are associated with the user.
|
|
| ListStacks |
Show DescriptionReturns the summary information for stacks whose status matches the specified StackStatusFilter. Summary information for stacks that have been deleted is kept for 90 days after the stack is deleted. If no StackStatusFilter is specified, summary information for all stacks is returned (including existing stacks and stacks that have been deleted). |
|
| ListTypeRegistrations |
Show DescriptionReturns a list of registration tokens for the specified extension(s). |
|
| ListTypeVersions |
Show DescriptionReturns summary information about the versions of an extension. |
|
| ListTypes |
Show DescriptionReturns summary information about extension that have been registered with CloudFormation. |
|
| PublishType |
Show DescriptionPublishes the specified extension to the CloudFormation registry as a public extension in this region. Public extensions are available for use by all CloudFormation users. For more information on publishing extensions, see Publishing extensions to make them available for public use in the CloudFormation CLI User Guide. To publish an extension, you must be registered as a publisher with CloudFormation. For more information, see RegisterPublisher. |
|
| RecordHandlerProgress |
Show DescriptionReports progress of a resource handler to CloudFormation. Reserved for use by the CloudFormation CLI. Do not use this API in your code. |
|
| RegisterPublisher |
Show DescriptionRegisters your account as a publisher of public extensions in the CloudFormation registry. Public extensions are available for use by all CloudFormation users. This publisher ID applies to your account in all Amazon Web Services Regions. For information on requirements for registering as a public extension publisher, see Registering your account to publish CloudFormation extensions in the CloudFormation CLI User Guide. |
|
| RegisterType |
Show DescriptionRegisters an extension with the CloudFormation service. Registering an extension makes it available for use in CloudFormation templates in your Amazon Web Services account, and includes:
RegisterType , you can use DescribeTypeRegistration to monitor the progress of the registration request. Once you have registered a private extension in your account and region, use SetTypeConfiguration to specify configuration properties for the extension. For more information, see Configuring extensions at the account level in the CloudFormation User Guide.
|
|
| RollbackStack |
Show DescriptionWhen specifyingRollbackStack, you preserve the state of previously provisioned resources when an operation fails. You can check the status of the stack through the DescribeStacks API. Rolls back the specified stack to the last known stable state from CREATE_FAILED or UPDATE_FAILED stack statuses. This operation will delete a stack if it doesn't contain a last known stable state. A last known stable state includes any status in a *_COMPLETE. This includes the following stack statuses.
|
|
| SetStackPolicy | ||
| SetTypeConfiguration |
Show DescriptionSpecifies the configuration data for a registered CloudFormation extension, in the given account and region. To view the current configuration data for an extension, refer to theConfigurationSchema element of DescribeType. For more information, see Configuring extensions at the account level in the CloudFormation User Guide. |
|
| SetTypeDefaultVersion |
Show DescriptionSpecify the default version of an extension. The default version of an extension will be used in CloudFormation operations. |
|
| SignalResource | ||
| StopStackSetOperation |
Show DescriptionStops an in-progress operation on a stack set and its associated stack instances. |
|
| TestType |
Show DescriptionTests a registered extension to make sure it meets all necessary requirements for being published in the CloudFormation registry.
TestType, you can use DescribeType to monitor the current test status and test status description for the extension. An extension must have a test status of PASSED before it can be published. For more information, see Publishing extensions to make them available for public use in the CloudFormation CLI User Guide.
|
|
| UpdateStack |
Show DescriptionUpdates a stack as specified in the template. After the call completes successfully, the stack update starts. You can check the status of the stack via the DescribeStacks action. To get a copy of the template for an existing stack, you can use the GetTemplate action. For more information about creating an update template, updating a stack, and monitoring the progress of the update, see Updating a Stack. |
|
| UpdateStackInstances |
Show DescriptionUpdates the parameter values for stack instances for the specified accounts, within the specified Regions. A stack instance refers to a stack in a specific account and Region. You can only update stack instances in Regions and accounts where they already exist; to create additional stack instances, use CreateStackInstances. During stack set updates, any parameters overridden for a stack instance are not updated, but retain their overridden value. You can only update the parameter values that are specified in the stack set; to add or delete a parameter itself, use UpdateStackSet to update the stack set template. If you add a parameter to a template, before you can override the parameter value specified in the stack set you must first use UpdateStackSet to update all stack instances with the updated template and parameter value specified in the stack set. Once a stack instance has been updated with the new parameter, you can then override the parameter value usingUpdateStackInstances.
|
|
| UpdateStackSet |
Show DescriptionUpdates the stack set, and associated stack instances in the specified accounts and Regions. Even if the stack set operation created by updating the stack set fails (completely or partially, below or above a specified failure tolerance), the stack set is updated with your changes. Subsequent CreateStackInstances calls on the specified stack set use the updated stack set. |
|
| UpdateTerminationProtection |
Show DescriptionUpdates termination protection for the specified stack. If a user attempts to delete a stack with termination protection enabled, the operation fails and the stack remains unchanged. For more information, see Protecting a Stack From Being Deleted in the CloudFormation User Guide. For nested stacks, termination protection is set on the root stack and cannot be changed directly on the nested stack. |
Cloudfront Events
| Service | Event Name | Description |
|---|---|---|
| cloudfront | AssociateAlias | |
| CreateCachePolicy |
Show DescriptionCreates a cache policy. After you create a cache policy, you can attach it to one or more cache behaviors. When it’s attached to a cache behavior, the cache policy determines the following:
OriginRequestPolicy. For more information about cache policies, see Controlling the cache key in the Amazon CloudFront Developer Guide.
|
|
| CreateCloudFrontOriginAccessIdentity |
Show DescriptionCreates a new origin access identity. If you're using Amazon S3 for your origin, you can use an origin access identity to require users to access your content using a CloudFront URL instead of the Amazon S3 URL. For more information about how to use origin access identities, see Serving Private Content through CloudFront in the Amazon CloudFront Developer Guide. |
|
| CreateDistribution |
Show DescriptionCreates a new web distribution. You create a CloudFront distribution to tell CloudFront where you want content to be delivered from, and the details about how to track and manage content delivery. Send aPOST request to the /CloudFront API version/distribution/distribution ID resource. |
|
| CreateDistributionWithTags |
Show DescriptionCreate a new distribution with tags. |
|
| CreateFieldLevelEncryptionConfig |
Show DescriptionCreate a new field-level encryption configuration. |
|
| CreateFieldLevelEncryptionProfile |
Show DescriptionCreate a field-level encryption profile. |
|
| CreateFunction |
Show DescriptionCreates a CloudFront function. To create a function, you provide the function code and some configuration information about the function. The response contains an Amazon Resource Name (ARN) that uniquely identifies the function. When you create a function, it’s in theDEVELOPMENT stage. In this stage, you can test the function with TestFunction, and update it with UpdateFunction. When you’re ready to use your function with a CloudFront distribution, use PublishFunction to copy the function from the DEVELOPMENT stage to LIVE. When it’s live, you can attach the function to a distribution’s cache behavior, using the function’s ARN.
|
|
| CreateInvalidation |
Show DescriptionCreate a new invalidation. |
|
| CreateKeyGroup |
Show DescriptionCreates a key group that you can use with CloudFront signed URLs and signed cookies. To create a key group, you must specify at least one public key for the key group. After you create a key group, you can reference it from one or more cache behaviors. When you reference a key group in a cache behavior, CloudFront requires signed URLs or signed cookies for all requests that match the cache behavior. The URLs or cookies must be signed with a private key whose corresponding public key is in the key group. The signed URL or cookie contains information about which public key CloudFront should use to verify the signature. For more information, see Serving private content in the Amazon CloudFront Developer Guide. |
|
| CreateMonitoringSubscription |
Show DescriptionEnables additional CloudWatch metrics for the specified CloudFront distribution. The additional metrics incur an additional cost. For more information, see Viewing additional CloudFront distribution metrics in the Amazon CloudFront Developer Guide. |
|
| CreateOriginRequestPolicy |
Show DescriptionCreates an origin request policy. After you create an origin request policy, you can attach it to one or more cache behaviors. When it’s attached to a cache behavior, the origin request policy determines the values that CloudFront includes in requests that it sends to the origin. Each request that CloudFront sends to the origin includes the following:
CachePolicy. For more information about origin request policies, see Controlling origin requests in the Amazon CloudFront Developer Guide.
|
|
| CreatePublicKey |
Show DescriptionUploads a public key to CloudFront that you can use with signed URLs and signed cookies, or with field-level encryption. |
|
| CreateRealtimeLogConfig |
Show DescriptionCreates a real-time log configuration. After you create a real-time log configuration, you can attach it to one or more cache behaviors to send real-time log data to the specified Amazon Kinesis data stream. For more information about real-time log configurations, see Real-time logs in the Amazon CloudFront Developer Guide. |
|
| CreateResponseHeadersPolicy |
Show DescriptionCreates a response headers policy. A response headers policy contains information about a set of HTTP response headers and their values. To create a response headers policy, you provide some metadata about the policy, and a set of configurations that specify the response headers. After you create a response headers policy, you can use its ID to attach it to one or more cache behaviors in a CloudFront distribution. When it’s attached to a cache behavior, CloudFront adds the headers in the policy to HTTP responses that it sends for requests that match the cache behavior. |
|
| CreateStreamingDistribution |
Show DescriptionThis API is deprecated. Amazon CloudFront is deprecating real-time messaging protocol (RTMP) distributions on December 31, 2020. For more information, read the announcement on the Amazon CloudFront discussion forum. |
|
| CreateStreamingDistributionWithTags |
Show DescriptionThis API is deprecated. Amazon CloudFront is deprecating real-time messaging protocol (RTMP) distributions on December 31, 2020. For more information, read the announcement on the Amazon CloudFront discussion forum. |
|
| DeleteCachePolicy | ||
| DeleteCloudFrontOriginAccessIdentity | ||
| DeleteDistribution | ||
| DeleteFieldLevelEncryptionConfig | ||
| DeleteFieldLevelEncryptionProfile | ||
| DeleteFunction | ||
| DeleteKeyGroup | ||
| DeleteMonitoringSubscription |
Show DescriptionDisables additional CloudWatch metrics for the specified CloudFront distribution. |
|
| DeleteOriginRequestPolicy | ||
| DeletePublicKey | ||
| DeleteRealtimeLogConfig | ||
| DeleteResponseHeadersPolicy | ||
| DeleteStreamingDistribution | ||
| DescribeFunction |
Show DescriptionGets configuration information and metadata about a CloudFront function, but not the function’s code. To get a function’s code, useGetFunction. To get configuration information and metadata about a function, you must provide the function’s name and stage. To get these values, you can use ListFunctions.
|
|
| GetCachePolicy |
Show DescriptionGets a cache policy, including the following metadata:
ListDistributions or GetDistribution. If the cache policy is not attached to a cache behavior, you can get the identifier using ListCachePolicies.
|
|
| GetCachePolicyConfig |
Show DescriptionGets a cache policy configuration. To get a cache policy configuration, you must provide the policy’s identifier. If the cache policy is attached to a distribution’s cache behavior, you can get the policy’s identifier usingListDistributions or GetDistribution. If the cache policy is not attached to a cache behavior, you can get the identifier using ListCachePolicies.
|
|
| GetCloudFrontOriginAccessIdentity |
Show DescriptionGet the information about an origin access identity. |
|
| GetCloudFrontOriginAccessIdentityConfig |
Show DescriptionGet the configuration information about an origin access identity. |
|
| GetDistribution |
Show DescriptionGet the information about a distribution. |
|
| GetDistributionConfig |
Show DescriptionGet the configuration information about a distribution. |
|
| GetFieldLevelEncryption |
Show DescriptionGet the field-level encryption configuration information. |
|
| GetFieldLevelEncryptionConfig |
Show DescriptionGet the field-level encryption configuration information. |
|
| GetFieldLevelEncryptionProfile |
Show DescriptionGet the field-level encryption profile information. |
|
| GetFieldLevelEncryptionProfileConfig |
Show DescriptionGet the field-level encryption profile configuration information. |
|
| GetFunction |
Show DescriptionGets the code of a CloudFront function. To get configuration information and metadata about a function, useDescribeFunction. To get a function’s code, you must provide the function’s name and stage. To get these values, you can use ListFunctions.
|
|
| GetInvalidation |
Show DescriptionGet the information about an invalidation. |
|
| GetKeyGroup |
Show DescriptionGets a key group, including the date and time when the key group was last modified. To get a key group, you must provide the key group’s identifier. If the key group is referenced in a distribution’s cache behavior, you can get the key group’s identifier usingListDistributions or GetDistribution. If the key group is not referenced in a cache behavior, you can get the identifier using ListKeyGroups.
|
|
| GetKeyGroupConfig |
Show DescriptionGets a key group configuration. To get a key group configuration, you must provide the key group’s identifier. If the key group is referenced in a distribution’s cache behavior, you can get the key group’s identifier usingListDistributions or GetDistribution. If the key group is not referenced in a cache behavior, you can get the identifier using ListKeyGroups.
|
|
| GetMonitoringSubscription |
Show DescriptionGets information about whether additional CloudWatch metrics are enabled for the specified CloudFront distribution. |
|
| GetOriginRequestPolicy |
Show DescriptionGets an origin request policy, including the following metadata:
ListDistributions or GetDistribution. If the origin request policy is not attached to a cache behavior, you can get the identifier using ListOriginRequestPolicies.
|
|
| GetOriginRequestPolicyConfig |
Show DescriptionGets an origin request policy configuration. To get an origin request policy configuration, you must provide the policy’s identifier. If the origin request policy is attached to a distribution’s cache behavior, you can get the policy’s identifier usingListDistributions or GetDistribution. If the origin request policy is not attached to a cache behavior, you can get the identifier using ListOriginRequestPolicies.
|
|
| GetPublicKey |
Show DescriptionGets a public key. |
|
| GetPublicKeyConfig |
Show DescriptionGets a public key configuration. |
|
| GetRealtimeLogConfig |
Show DescriptionGets a real-time log configuration. To get a real-time log configuration, you can provide the configuration’s name or its Amazon Resource Name (ARN). You must provide at least one. If you provide both, CloudFront uses the name to identify the real-time log configuration to get. |
|
| GetResponseHeadersPolicy |
Show DescriptionGets a response headers policy, including metadata (the policy’s identifier and the date and time when the policy was last modified). To get a response headers policy, you must provide the policy’s identifier. If the response headers policy is attached to a distribution’s cache behavior, you can get the policy’s identifier usingListDistributions or GetDistribution. If the response headers policy is not attached to a cache behavior, you can get the identifier using ListResponseHeadersPolicies.
|
|
| GetResponseHeadersPolicyConfig |
Show DescriptionGets a response headers policy configuration. To get a response headers policy configuration, you must provide the policy’s identifier. If the response headers policy is attached to a distribution’s cache behavior, you can get the policy’s identifier usingListDistributions or GetDistribution. If the response headers policy is not attached to a cache behavior, you can get the identifier using ListResponseHeadersPolicies.
|
|
| GetStreamingDistribution |
Show DescriptionGets information about a specified RTMP distribution, including the distribution configuration. |
|
| GetStreamingDistributionConfig |
Show DescriptionGet the configuration information about a streaming distribution. |
|
| ListCachePolicies |
Show DescriptionGets a list of cache policies. You can optionally apply a filter to return only the managed policies created by Amazon Web Services, or only the custom policies created in your Amazon Web Services account. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListCloudFrontOriginAccessIdentities |
Show DescriptionLists origin access identities. |
|
| ListConflictingAliases |
Show DescriptionGets a list of aliases (also called CNAMEs or alternate domain names) that conflict or overlap with the provided alias, and the associated CloudFront distributions and Amazon Web Services accounts for each conflicting alias. In the returned list, the distribution and account IDs are partially hidden, which allows you to identify the distributions and accounts that you own, but helps to protect the information of ones that you don’t own. Use this operation to find aliases that are in use in CloudFront that conflict or overlap with the provided alias. For example, if you providewww.example.com as input, the returned list can include www.example.com and the overlapping wildcard alternate domain name (*.example.com), if they exist. If you provide *.example.com as input, the returned list can include *.example.com and any alternate domain names covered by that wildcard (for example, www.example.com, test.example.com, dev.example.com, and so on), if they exist. To list conflicting aliases, you provide the alias to search and the ID of a distribution in your account that has an attached SSL/TLS certificate that includes the provided alias. For more information, including how to set up the distribution and certificate, see Moving an alternate domain name to a different distribution in the Amazon CloudFront Developer Guide. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies the NextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListDistributions |
Show DescriptionList CloudFront distributions. |
|
| ListDistributionsByCachePolicyId |
Show DescriptionGets a list of distribution IDs for distributions that have a cache behavior that’s associated with the specified cache policy. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListDistributionsByKeyGroup |
Show DescriptionGets a list of distribution IDs for distributions that have a cache behavior that references the specified key group. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListDistributionsByOriginRequestPolicyId |
Show DescriptionGets a list of distribution IDs for distributions that have a cache behavior that’s associated with the specified origin request policy. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListDistributionsByRealtimeLogConfig |
Show DescriptionGets a list of distributions that have a cache behavior that’s associated with the specified real-time log configuration. You can specify the real-time log configuration by its name or its Amazon Resource Name (ARN). You must provide at least one. If you provide both, CloudFront uses the name to identify the real-time log configuration to list distributions for. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListDistributionsByResponseHeadersPolicyId |
Show DescriptionGets a list of distribution IDs for distributions that have a cache behavior that’s associated with the specified response headers policy. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListDistributionsByWebACLId |
Show DescriptionList the distributions that are associated with a specified WAF web ACL. |
|
| ListFieldLevelEncryptionConfigs |
Show DescriptionList all field-level encryption configurations that have been created in CloudFront for this account. |
|
| ListFieldLevelEncryptionProfiles |
Show DescriptionRequest a list of field-level encryption profiles that have been created in CloudFront for this account. |
|
| ListFunctions |
Show DescriptionGets a list of all CloudFront functions in your Amazon Web Services account. You can optionally apply a filter to return only the functions that are in the specified stage, eitherDEVELOPMENT or LIVE. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies the NextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListInvalidations |
Show DescriptionLists invalidation batches. |
|
| ListKeyGroups |
Show DescriptionGets a list of key groups. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListOriginRequestPolicies |
Show DescriptionGets a list of origin request policies. You can optionally apply a filter to return only the managed policies created by Amazon Web Services, or only the custom policies created in your Amazon Web Services account. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListPublicKeys |
Show DescriptionList all public keys that have been added to CloudFront for this account. |
|
| ListRealtimeLogConfigs |
Show DescriptionGets a list of real-time log configurations. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListResponseHeadersPolicies |
Show DescriptionGets a list of response headers policies. You can optionally apply a filter to get only the managed policies created by Amazon Web Services, or only the custom policies created in your Amazon Web Services account. You can optionally specify the maximum number of items to receive in the response. If the total number of items in the list exceeds the maximum that you specify, or the default maximum, the response is paginated. To get the next page of items, send a subsequent request that specifies theNextMarker value from the current response as the Marker value in the subsequent request.
|
|
| ListStreamingDistributions |
Show DescriptionList streaming distributions. |
|
| ListTagsForResource |
Show DescriptionList tags for a CloudFront resource. |
|
| PublishFunction |
Show DescriptionPublishes a CloudFront function by copying the function code from theDEVELOPMENT stage to LIVE. This automatically updates all cache behaviors that are using this function to use the newly published copy in the LIVE stage. When a function is published to the LIVE stage, you can attach the function to a distribution’s cache behavior, using the function’s Amazon Resource Name (ARN). To publish a function, you must provide the function’s name and version (ETag value). To get these values, you can use ListFunctions and DescribeFunction.
|
|
| TagResource | ||
| TestFunction |
Show DescriptionTests a CloudFront function. To test a function, you provide an event object that represents an HTTP request or response that your CloudFront distribution could receive in production. CloudFront runs the function, passing it the event object that you provided, and returns the function’s result (the modified event object) in the response. The response also contains function logs and error messages, if any exist. For more information about testing functions, see Testing functions in the Amazon CloudFront Developer Guide. To test a function, you provide the function’s name and version (ETag value) along with the event object. To get the function’s name and version, you can use ListFunctions and DescribeFunction.
|
|
| UntagResource | ||
| UpdateCachePolicy |
Show DescriptionUpdates a cache policy configuration. When you update a cache policy configuration, all the fields are updated with the values provided in the request. You cannot update some fields independent of others. To update a cache policy configuration:
|
|
| UpdateCloudFrontOriginAccessIdentity |
Show DescriptionUpdate an origin access identity. |
|
| UpdateDistribution |
Show DescriptionUpdates the configuration for a web distribution.UpdateDistribution request to make the updates. For information about updating a distribution using the CloudFront console instead, see Creating a Distribution in the Amazon CloudFront Developer Guide. To update a web distribution using the CloudFront API
|
|
| UpdateFieldLevelEncryptionConfig |
Show DescriptionUpdate a field-level encryption configuration. |
|
| UpdateFieldLevelEncryptionProfile |
Show DescriptionUpdate a field-level encryption profile. |
|
| UpdateFunction |
Show DescriptionUpdates a CloudFront function. You can update a function’s code or the comment that describes the function. You cannot update a function’s name. To update a function, you provide the function’s name and version (ETag value) along with the updated function code. To get the name and version, you can use ListFunctions and DescribeFunction.
|
|
| UpdateKeyGroup |
Show DescriptionUpdates a key group. When you update a key group, all the fields are updated with the values provided in the request. You cannot update some fields independent of others. To update a key group:
|
|
| UpdateOriginRequestPolicy |
Show DescriptionUpdates an origin request policy configuration. When you update an origin request policy configuration, all the fields are updated with the values provided in the request. You cannot update some fields independent of others. To update an origin request policy configuration:
|
|
| UpdatePublicKey |
Show DescriptionUpdate public key information. Note that the only value you can change is the comment. |
|
| UpdateRealtimeLogConfig |
Show DescriptionUpdates a real-time log configuration. When you update a real-time log configuration, all the parameters are updated with the values provided in the request. You cannot update some parameters independent of others. To update a real-time log configuration:
Name or ARN.
|
|
| UpdateResponseHeadersPolicy |
Show DescriptionUpdates a response headers policy. When you update a response headers policy, the entire policy is replaced. You cannot update some policy fields independent of others. To update a response headers policy configuration:
|
Cloudhsm Events
| Service | Event Name | Description |
|---|---|---|
| cloudhsm | AddTagsToResource |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Adds or overwrites one or more tags for the specified AWS CloudHSM resource. Each tag consists of a key and a value. Tag keys must be unique to each resource. |
| CreateHapg |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Creates a high-availability partition group. A high-availability partition group is a group of partitions that spans multiple physical HSMs. |
|
| CreateHsm |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Creates an uninitialized HSM instance. There is an upfront fee charged for each HSM instance that you create with theCreateHsm operation. If you accidentally provision an HSM and want to request a refund, delete the instance using the DeleteHsm operation, go to the AWS Support Center, create a new case, and select Account and Billing Support. RUNNING. |
|
| CreateLunaClient |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Creates an HSM client. |
|
| DeleteHapg |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Deletes a high-availability partition group. |
|
| DeleteHsm |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Deletes an HSM. After completion, this operation cannot be undone and your key material cannot be recovered. |
|
| DeleteLunaClient |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Deletes a client. |
|
| DescribeHapg |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Retrieves information about a high-availability partition group. |
|
| DescribeHsm |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Retrieves information about an HSM. You can identify the HSM by its ARN or its serial number. |
|
| DescribeLunaClient |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Retrieves information about an HSM client. |
|
| GetConfig |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Gets the configuration files necessary to connect to all high availability partition groups the client is associated with. |
|
| ListAvailableZones |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Lists the Availability Zones that have available AWS CloudHSM capacity. |
|
| ListHapgs |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Lists the high-availability partition groups for the account. This operation supports pagination with the use of theNextToken member. If more results are available, the NextToken member of the response contains a token that you pass in the next call to ListHapgs to retrieve the next set of items.
|
|
| ListHsms |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Retrieves the identifiers of all of the HSMs provisioned for the current customer. This operation supports pagination with the use of theNextToken member. If more results are available, the NextToken member of the response contains a token that you pass in the next call to ListHsms to retrieve the next set of items.
|
|
| ListLunaClients |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Lists all of the clients. This operation supports pagination with the use of theNextToken member. If more results are available, the NextToken member of the response contains a token that you pass in the next call to ListLunaClients to retrieve the next set of items.
|
|
| ListTagsForResource |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Returns a list of all tags for the specified AWS CloudHSM resource. |
|
| ModifyHapg |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Modifies an existing high-availability partition group. |
|
| ModifyHsm |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Modifies an HSM. |
|
| ModifyLunaClient |
Show DescriptionThis is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference. For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference. Modifies the certificate used by the client. This action can potentially start a workflow to install the new certificate on the client's HSMs. |
Cloudhsmv2 Events
| Service | Event Name | Description |
|---|---|---|
| cloudhsmv2 | CopyBackupToRegion |
Show DescriptionCopy an AWS CloudHSM cluster backup to a different region. |
| CreateCluster |
Show DescriptionCreates a new AWS CloudHSM cluster. |
|
| CreateHsm |
Show DescriptionCreates a new hardware security module (HSM) in the specified AWS CloudHSM cluster. |
|
| DeleteBackup |
Show DescriptionDeletes a specified AWS CloudHSM backup. A backup can be restored up to 7 days after the DeleteBackup request is made. For more information on restoring a backup, see RestoreBackup. |
|
| DeleteCluster |
Show DescriptionDeletes the specified AWS CloudHSM cluster. Before you can delete a cluster, you must delete all HSMs in the cluster. To see if the cluster contains any HSMs, use DescribeClusters. To delete an HSM, use DeleteHsm. |
|
| DeleteHsm |
Show DescriptionDeletes the specified HSM. To specify an HSM, you can use its identifier (ID), the IP address of the HSM's elastic network interface (ENI), or the ID of the HSM's ENI. You need to specify only one of these values. To find these values, use DescribeClusters. |
|
| DescribeBackups |
Show DescriptionGets information about backups of AWS CloudHSM clusters. This is a paginated operation, which means that each response might contain only a subset of all the backups. When the response contains only a subset of backups, it includes aNextToken value. Use this value in a subsequent DescribeBackups request to get more backups. When you receive a response with no NextToken (or an empty or null value), that means there are no more backups to get.
|
|
| DescribeClusters |
Show DescriptionGets information about AWS CloudHSM clusters. This is a paginated operation, which means that each response might contain only a subset of all the clusters. When the response contains only a subset of clusters, it includes aNextToken value. Use this value in a subsequent DescribeClusters request to get more clusters. When you receive a response with no NextToken (or an empty or null value), that means there are no more clusters to get.
|
|
| InitializeCluster |
Show DescriptionClaims an AWS CloudHSM cluster by submitting the cluster certificate issued by your issuing certificate authority (CA) and the CA's root certificate. Before you can claim a cluster, you must sign the cluster's certificate signing request (CSR) with your issuing CA. To get the cluster's CSR, use DescribeClusters. |
|
| ListTags |
Show DescriptionGets a list of tags for the specified AWS CloudHSM cluster. This is a paginated operation, which means that each response might contain only a subset of all the tags. When the response contains only a subset of tags, it includes aNextToken value. Use this value in a subsequent ListTags request to get more tags. When you receive a response with no NextToken (or an empty or null value), that means there are no more tags to get.
|
|
| ModifyBackupAttributes |
Show DescriptionModifies attributes for AWS CloudHSM backup. |
|
| ModifyCluster |
Show DescriptionModifies AWS CloudHSM cluster. |
|
| RestoreBackup |
Show DescriptionRestores a specified AWS CloudHSM backup that is in thePENDING_DELETION state. For mor information on deleting a backup, see DeleteBackup.
|
|
| TagResource |
Show DescriptionAdds or overwrites one or more tags for the specified AWS CloudHSM cluster. |
Cloudsearch Events
| Service | Event Name | Description |
|---|---|---|
| cloudsearch | BuildSuggesters |
Show DescriptionIndexes the search suggestions. For more information, see Configuring Suggesters in the Amazon CloudSearch Developer Guide. |
| CreateDomain |
Show DescriptionCreates a new search domain. For more information, see Creating a Search Domain in the Amazon CloudSearch Developer Guide. |
|
| DefineAnalysisScheme |
Show DescriptionConfigures an analysis scheme that can be applied to atext or text-array field to define language-specific text processing options. For more information, see Configuring Analysis Schemes in the Amazon CloudSearch Developer Guide.
|
|
| DefineExpression |
Show DescriptionConfigures anExpression for the search domain. Used to create new expressions and modify existing ones. If the expression exists, the new configuration replaces the old one. For more information, see Configuring Expressions in the Amazon CloudSearch Developer Guide.
|
|
| DefineIndexField |
Show DescriptionConfigures anIndexField for the search domain. Used to create new fields and modify existing ones. You must specify the name of the domain you are configuring and an index field configuration. The index field configuration specifies a unique name, the index field type, and the options you want to configure for the field. The options you can specify depend on the IndexFieldType. If the field exists, the new configuration replaces the old one. For more information, see Configuring Index Fields in the Amazon CloudSearch Developer Guide.
|
|
| DefineSuggester |
Show DescriptionConfigures a suggester for a domain. A suggester enables you to display possible matches before users finish typing their queries. When you configure a suggester, you must specify the name of the text field you want to search for possible matches and a unique name for the suggester. For more information, see Getting Search Suggestions in the Amazon CloudSearch Developer Guide. |
|
| DeleteAnalysisScheme |
Show DescriptionDeletes an analysis scheme. For more information, see Configuring Analysis Schemes in the Amazon CloudSearch Developer Guide. |
|
| DeleteDomain |
Show DescriptionPermanently deletes a search domain and all of its data. Once a domain has been deleted, it cannot be recovered. For more information, see Deleting a Search Domain in the Amazon CloudSearch Developer Guide. |
|
| DeleteExpression |
Show DescriptionRemoves anExpression from the search domain. For more information, see Configuring Expressions in the Amazon CloudSearch Developer Guide.
|
|
| DeleteIndexField |
Show DescriptionRemoves anIndexField from the search domain. For more information, see Configuring Index Fields in the Amazon CloudSearch Developer Guide.
|
|
| DeleteSuggester |
Show DescriptionDeletes a suggester. For more information, see Getting Search Suggestions in the Amazon CloudSearch Developer Guide. |
|
| DescribeAnalysisSchemes |
Show DescriptionGets the analysis schemes configured for a domain. An analysis scheme defines language-specific text processing options for atext field. Can be limited to specific analysis schemes by name. By default, shows all analysis schemes and includes any pending changes to the configuration. Set the Deployed option to true to show the active configuration and exclude pending changes. For more information, see Configuring Analysis Schemes in the Amazon CloudSearch Developer Guide.
|
|
| DescribeAvailabilityOptions |
Show DescriptionGets the availability options configured for a domain. By default, shows the configuration with any pending changes. Set theDeployed option to true to show the active configuration and exclude pending changes. For more information, see Configuring Availability Options in the Amazon CloudSearch Developer Guide.
|
|
| DescribeDomainEndpointOptions |
Show DescriptionReturns the domain's endpoint options, specifically whether all requests to the domain must arrive over HTTPS. For more information, see Configuring Domain Endpoint Options in the Amazon CloudSearch Developer Guide. |
|
| DescribeDomains |
Show DescriptionGets information about the search domains owned by this account. Can be limited to specific domains. Shows all domains by default. To get the number of searchable documents in a domain, use the console or submit amatchall request to your domain's search endpoint: q=matchall&q.parser=structured&size=0. For more information, see Getting Information about a Search Domain in the Amazon CloudSearch Developer Guide.
|
|
| DescribeExpressions |
Show DescriptionGets the expressions configured for the search domain. Can be limited to specific expressions by name. By default, shows all expressions and includes any pending changes to the configuration. Set theDeployed option to true to show the active configuration and exclude pending changes. For more information, see Configuring Expressions in the Amazon CloudSearch Developer Guide.
|
|
| DescribeIndexFields |
Show DescriptionGets information about the index fields configured for the search domain. Can be limited to specific fields by name. By default, shows all fields and includes any pending changes to the configuration. Set theDeployed option to true to show the active configuration and exclude pending changes. For more information, see Getting Domain Information in the Amazon CloudSearch Developer Guide.
|
|
| DescribeScalingParameters |
Show DescriptionGets the scaling parameters configured for a domain. A domain's scaling parameters specify the desired search instance type and replication count. For more information, see Configuring Scaling Options in the Amazon CloudSearch Developer Guide. |
|
| DescribeServiceAccessPolicies |
Show DescriptionGets information about the access policies that control access to the domain's document and search endpoints. By default, shows the configuration with any pending changes. Set theDeployed option to true to show the active configuration and exclude pending changes. For more information, see Configuring Access for a Search Domain in the Amazon CloudSearch Developer Guide.
|
|
| DescribeSuggesters |
Show DescriptionGets the suggesters configured for a domain. A suggester enables you to display possible matches before users finish typing their queries. Can be limited to specific suggesters by name. By default, shows all suggesters and includes any pending changes to the configuration. Set theDeployed option to true to show the active configuration and exclude pending changes. For more information, see Getting Search Suggestions in the Amazon CloudSearch Developer Guide.
|
|
| IndexDocuments |
Show DescriptionTells the search domain to start indexing its documents using the latest indexing options. This operation must be invoked to activate options whose OptionStatus isRequiresIndexDocuments.
|
|
| ListDomainNames |
Show DescriptionLists all search domains owned by an account. |
|
| UpdateAvailabilityOptions |
Show DescriptionConfigures the availability options for a domain. Enabling the Multi-AZ option expands an Amazon CloudSearch domain to an additional Availability Zone in the same Region to increase fault tolerance in the event of a service disruption. Changes to the Multi-AZ option can take about half an hour to become active. For more information, see Configuring Availability Options in the Amazon CloudSearch Developer Guide. |
|
| UpdateDomainEndpointOptions |
Show DescriptionUpdates the domain's endpoint options, specifically whether all requests to the domain must arrive over HTTPS. For more information, see Configuring Domain Endpoint Options in the Amazon CloudSearch Developer Guide. |
|
| UpdateScalingParameters |
Show DescriptionConfigures scaling parameters for a domain. A domain's scaling parameters specify the desired search instance type and replication count. Amazon CloudSearch will still automatically scale your domain based on the volume of data and traffic, but not below the desired instance type and replication count. If the Multi-AZ option is enabled, these values control the resources used per Availability Zone. For more information, see Configuring Scaling Options in the Amazon CloudSearch Developer Guide. |
Cloudsearchdomain Events
| Service | Event Name | Description |
|---|---|---|
| cloudsearchdomain | Search |
Show DescriptionRetrieves a list of documents that match the specified search criteria. How you specify the search criteria depends on which query parser you use. Amazon CloudSearch supports four query parsers:
Search requests is domain-specific. You submit search requests to a domain's search endpoint. To get the search endpoint for your domain, use the Amazon CloudSearch configuration service DescribeDomains action. A domain's endpoints are also displayed on the domain dashboard in the Amazon CloudSearch console.
|
| Suggest |
Show DescriptionRetrieves autocomplete suggestions for a partial query string. You can use suggestions enable you to display likely matches before users finish typing. In Amazon CloudSearch, suggestions are based on the contents of a particular text field. When you request suggestions, Amazon CloudSearch finds all of the documents whose values in the suggester field start with the specified query string. The beginning of the field must match the query string to be considered a match. For more information about configuring suggesters and retrieving suggestions, see Getting Suggestions in the Amazon CloudSearch Developer Guide. The endpoint for submittingSuggest requests is domain-specific. You submit suggest requests to a domain's search endpoint. To get the search endpoint for your domain, use the Amazon CloudSearch configuration service DescribeDomains action. A domain's endpoints are also displayed on the domain dashboard in the Amazon CloudSearch console.
|
Cloudwatch Events
| Service | Event Name | Description |
|---|---|---|
| cloudwatch | DeleteAlarms | |
| DeleteAnomalyDetector |
Show DescriptionDeletes the specified anomaly detection model from your account. |
|
| DeleteDashboards |
Show DescriptionDeletes all dashboards that you specify. You can specify up to 100 dashboards to delete. If there is an error during this call, no dashboards are deleted. |
|
| DeleteInsightRules |
Show DescriptionPermanently deletes the specified Contributor Insights rules. If you create a rule, delete it, and then re-create it with the same name, historical data from the first time the rule was created might not be available. |
|
| DeleteMetricStream |
Show DescriptionPermanently deletes the metric stream that you specify. |
|
| DescribeAlarmHistory |
Show DescriptionRetrieves the history for the specified alarm. You can filter the results by date range or item type. If an alarm name is not specified, the histories for either all metric alarms or all composite alarms are returned. CloudWatch retains the history of an alarm even if you delete the alarm. |
|
| DescribeAlarms |
Show DescriptionRetrieves the specified alarms. You can filter the results by specifying a prefix for the alarm name, the alarm state, or a prefix for any action. |
|
| DescribeAlarmsForMetric |
Show DescriptionRetrieves the alarms for the specified metric. To filter the results, specify a statistic, period, or unit. This operation retrieves only standard alarms that are based on the specified metric. It does not return alarms based on math expressions that use the specified metric, or composite alarms that use the specified metric. |
|
| DescribeAnomalyDetectors |
Show DescriptionLists the anomaly detection models that you have created in your account. You can list all models in your account or filter the results to only the models that are related to a certain namespace, metric name, or metric dimension. |
|
| DescribeInsightRules |
Show DescriptionReturns a list of all the Contributor Insights rules in your account. For more information about Contributor Insights, see Using Contributor Insights to Analyze High-Cardinality Data. |
|
| DisableAlarmActions | ||
| DisableInsightRules |
Show DescriptionDisables the specified Contributor Insights rules. When rules are disabled, they do not analyze log groups and do not incur costs. |
|
| EnableAlarmActions | ||
| EnableInsightRules |
Show DescriptionEnables the specified Contributor Insights rules. When rules are enabled, they immediately begin analyzing log data. |
|
| GetDashboard |
Show DescriptionDisplays the details of the dashboard that you specify. To copy an existing dashboard, useGetDashboard, and then use the data returned within DashboardBody as the template for the new dashboard when you call PutDashboard to create the copy.
|
|
| GetInsightRuleReport |
Show DescriptionThis operation returns the time series data collected by a Contributor Insights rule. The data includes the identity and number of contributors to the log group. You can also optionally return one or more statistics about each data point in the time series. These statistics can include the following:
|
|
| GetMetricData |
Show DescriptionYou can use theGetMetricData API to retrieve as many as 500 different metrics in a single request, with a total of as many as 100,800 data points. You can also optionally perform math expressions on the values of the returned statistics, to create new time series that represent new insights into your data. For example, using Lambda metrics, you could divide the Errors metric by the Invocations metric to get an error rate time series. For more information about metric math expressions, see Metric Math Syntax and Functions in the Amazon CloudWatch User Guide. Calls to the GetMetricData API have a different pricing structure than calls to GetMetricStatistics. For more information about pricing, see Amazon CloudWatch Pricing. Amazon CloudWatch retains metric data as follows:
Unit in your request, all data that was collected with any unit is returned, along with the corresponding units that were specified when the data was reported to CloudWatch. If you specify a unit, the operation returns only data that was collected with that unit specified. If you specify a unit that does not match the data collected, the results of the operation are null. CloudWatch does not perform unit conversions.
|
|
| GetMetricStatistics |
Show DescriptionGets statistics for the specified metric. The maximum number of data points returned from a single call is 1,440. If you request more than 1,440 data points, CloudWatch returns an error. To reduce the number of data points, you can narrow the specified time range and make multiple requests across adjacent time ranges, or you can increase the specified period. Data points are not returned in chronological order. CloudWatch aggregates data points based on the length of the period that you specify. For example, if you request statistics with a one-hour period, CloudWatch aggregates all data points with time stamps that fall within each one-hour period. Therefore, the number of values aggregated by CloudWatch is larger than the number of data points returned. CloudWatch needs raw data points to calculate percentile statistics. If you publish data using a statistic set instead, you can only retrieve percentile statistics for this data if one of the following conditions is true:
|
|
| GetMetricStream |
Show DescriptionReturns information about the metric stream that you specify. |
|
| GetMetricWidgetImage |
Show DescriptionYou can use theGetMetricWidgetImage API to retrieve a snapshot graph of one or more Amazon CloudWatch metrics as a bitmap image. You can then embed this image into your services and products, such as wiki pages, reports, and documents. You could also retrieve images regularly, such as every minute, and create your own custom live dashboard. The graph you retrieve can include all CloudWatch metric graph features, including metric math and horizontal and vertical annotations. There is a limit of 20 transactions per second for this API. Each GetMetricWidgetImage action has the following limits:
|
|
| ListDashboards |
Show DescriptionReturns a list of the dashboards for your account. If you includeDashboardNamePrefix, only those dashboards with names starting with the prefix are listed. Otherwise, all dashboards in your account are listed. ListDashboards returns up to 1000 results on one page. If there are more than 1000 dashboards, you can call ListDashboards again and include the value you received for NextToken in the first call, to receive the next 1000 results.
|
|
| ListMetricStreams |
Show DescriptionReturns a list of metric streams in this account. |
|
| ListMetrics |
Show DescriptionList the specified metrics. You can use the returned metrics with GetMetricData or GetMetricStatistics to obtain statistical data. Up to 500 results are returned for any one call. To retrieve additional results, use the returned token with subsequent calls. After you create a metric, allow up to 15 minutes before the metric appears. You can see statistics about the metric sooner by using GetMetricData or GetMetricStatistics.ListMetrics doesn't return information about metrics if those metrics haven't reported data in the past two weeks. To retrieve those metrics, use GetMetricData or GetMetricStatistics.
|
|
| ListTagsForResource |
Show DescriptionDisplays the tags associated with a CloudWatch resource. Currently, alarms and Contributor Insights rules support tagging. |
|
| PutAnomalyDetector |
Show DescriptionCreates an anomaly detection model for a CloudWatch metric. You can use the model to display a band of expected normal values when the metric is graphed. For more information, see CloudWatch Anomaly Detection. |
|
| PutCompositeAlarm | ||
| PutDashboard |
Show DescriptionCreates a dashboard if it does not already exist, or updates an existing dashboard. If you update a dashboard, the entire contents are replaced with what you specify here. All dashboards in your account are global, not region-specific. A simple way to create a dashboard usingPutDashboard is to copy an existing dashboard. To copy an existing dashboard using the console, you can load the dashboard and then use the View/edit source command in the Actions menu to display the JSON block for that dashboard. Another way to copy a dashboard is to use GetDashboard, and then use the data returned within DashboardBody as the template for the new dashboard when you call PutDashboard. When you create a dashboard with PutDashboard, a good practice is to add a text widget at the top of the dashboard with a message that the dashboard was created by script and should not be changed in the console. This message could also point console users to the location of the DashboardBody script or the CloudFormation template used to create the dashboard.
|
|
| PutInsightRule |
Show DescriptionCreates a Contributor Insights rule. Rules evaluate log events in a CloudWatch Logs log group, enabling you to find contributor data for the log events in that log group. For more information, see Using Contributor Insights to Analyze High-Cardinality Data. If you create a rule, delete it, and then re-create it with the same name, historical data from the first time the rule was created might not be available. |
|
| PutMetricAlarm | ||
| PutMetricData | ||
| PutMetricStream |
Show DescriptionCreates or updates a metric stream. Metric streams can automatically stream CloudWatch metrics to Amazon Web Services destinations including Amazon S3 and to many third-party solutions. For more information, see Using Metric Streams. To create a metric stream, you must be logged on to an account that has theiam:PassRole permission and either the CloudWatchFullAccess policy or the cloudwatch:PutMetricStream permission. When you create or update a metric stream, you choose one of the following:
PutMetricStream to create a new metric stream, the stream is created in the running state. If you use it to update an existing stream, the state of the stream is not changed.
|
|
| SetAlarmState | ||
| StartMetricStreams |
Show DescriptionStarts the streaming of metrics for one or more of your metric streams. |
|
| StopMetricStreams |
Show DescriptionStops the streaming of metrics for one or more of your metric streams. |
|
| TagResource |
Show DescriptionAssigns one or more tags (key-value pairs) to the specified CloudWatch resource. Currently, the only CloudWatch resources that can be tagged are alarms and Contributor Insights rules. Tags can help you organize and categorize your resources. You can also use them to scope user permissions by granting a user permission to access or change only resources with certain tag values. Tags don't have any semantic meaning to Amazon Web Services and are interpreted strictly as strings of characters. You can use theTagResource action with an alarm that already has tags. If you specify a new tag key for the alarm, this tag is appended to the list of tags associated with the alarm. If you specify a tag key that is already associated with the alarm, the new tag value that you specify replaces the previous value for that tag. You can associate as many as 50 tags with a CloudWatch resource.
|
Codeartifact Events
| Service | Event Name | Description |
|---|---|---|
| codeartifact | AssociateExternalConnection |
Show DescriptionAdds an existing external connection to a repository. One external connection is allowed per repository. |
| CopyPackageVersions |
Show DescriptionCopies package versions from one repository to another repository in the same domain.versions or versionRevisions. You cannot specify both. |
|
| CreateDomain |
Show DescriptionCreates a domain. CodeArtifact domains make it easier to manage multiple repositories across an organization. You can use a domain to apply permissions across many repositories owned by different AWS accounts. An asset is stored only once in a domain, even if it's in multiple repositories. Although you can have multiple domains, we recommend a single production domain that contains all published artifacts so that your development teams can find and share packages. You can use a second pre-production domain to test changes to the production domain configuration. |
|
| CreateRepository |
Show DescriptionCreates a repository. |
|
| DeleteDomain |
Show DescriptionDeletes a domain. You cannot delete a domain that contains repositories. If you want to delete a domain with repositories, first delete its repositories. |
|
| DeleteDomainPermissionsPolicy |
Show DescriptionDeletes the resource policy set on a domain. |
|
| DeletePackageVersions |
Show DescriptionDeletes one or more versions of a package. A deleted package version cannot be restored in your repository. If you want to remove a package version from your repository and be able to restore it later, set its status toArchived. Archived packages cannot be downloaded from a repository and don't show up with list package APIs (for example, ListackageVersions), but you can restore them using UpdatePackageVersionsStatus.
|
|
| DeleteRepository |
Show DescriptionDeletes a repository. |
|
| DeleteRepositoryPermissionsPolicy |
Show DescriptionDeletes the resource policy that is set on a repository. After a resource policy is deleted, the permissions allowed and denied by the deleted policy are removed. The effect of deleting a resource policy might not be immediate.DeleteRepositoryPermissionsPolicy with caution. After a policy is deleted, AWS users, roles, and accounts lose permissions to perform the repository actions granted by the deleted policy. |
|
| DescribeDomain |
Show DescriptionReturns a DomainDescription object that contains information about the requested domain. |
|
| DescribePackageVersion |
Show DescriptionReturns a PackageVersionDescription object that contains information about the requested package version. |
|
| DescribeRepository |
Show DescriptionReturns aRepositoryDescription object that contains detailed information about the requested repository.
|
|
| DisassociateExternalConnection |
Show DescriptionRemoves an existing external connection from a repository. |
|
| DisposePackageVersions |
Show DescriptionDeletes the assets in package versions and sets the package versions' status toDisposed. A disposed package version cannot be restored in your repository because its assets are deleted. To view all disposed package versions in a repository, use ListPackageVersions and set the status parameter to Disposed. To view information about a disposed package version, use DescribePackageVersion.
|
|
| GetAuthorizationToken |
Show DescriptionGenerates a temporary authorization token for accessing repositories in the domain. This API requires thecodeartifact:GetAuthorizationToken and sts:GetServiceBearerToken permissions. For more information about authorization tokens, see AWS CodeArtifact authentication and tokens. login command. You can call login periodically to refresh the token. When you create an authorization token with the GetAuthorizationToken API, you can set a custom authorization period, up to a maximum of 12 hours, with the durationSeconds parameter. The authorization period begins after login or GetAuthorizationToken is called. If login or GetAuthorizationToken is called while assuming a role, the token lifetime is independent of the maximum session duration of the role. For example, if you call sts assume-role and specify a session duration of 15 minutes, then generate a CodeArtifact authorization token, the token will be valid for the full authorization period even though this is longer than the 15-minute session duration. See Using IAM Roles for more information on controlling session duration. |
|
| GetDomainPermissionsPolicy |
Show DescriptionReturns the resource policy attached to the specified domain. |
|
| GetPackageVersionAsset |
Show DescriptionReturns an asset (or file) that is in a package. For example, for a Maven package version, useGetPackageVersionAsset to download a JAR file, a POM file, or any other assets in the package version.
|
|
| GetPackageVersionReadme |
Show DescriptionGets the readme file or descriptive text for a package version. For packages that do not contain a readme file, CodeArtifact extracts a description from a metadata file. For example, from the<description> element in the pom.xml file of a Maven package. The returned text might contain formatting. For example, it might contain formatting for Markdown or reStructuredText.
|
|
| GetRepositoryEndpoint |
Show DescriptionReturns the endpoint of a repository for a specific package format. A repository has one endpoint for each package format:
|
|
| GetRepositoryPermissionsPolicy |
Show DescriptionReturns the resource policy that is set on a repository. |
|
| ListDomains |
Show DescriptionReturns a list of DomainSummary objects for all domains owned by the AWS account that makes this call. Each returnedDomainSummary object contains information about a domain.
|
|
| ListPackageVersionAssets |
Show DescriptionReturns a list of AssetSummary objects for assets in a package version. |
|
| ListPackageVersionDependencies |
Show DescriptionReturns the direct dependencies for a package version. The dependencies are returned as PackageDependency objects. CodeArtifact extracts the dependencies for a package version from the metadata file for the package format (for example, thepackage.json file for npm packages and the pom.xml file for Maven). Any package version dependencies that are not listed in the configuration file are not returned.
|
|
| ListPackageVersions |
Show DescriptionReturns a list of PackageVersionSummary objects for package versions in a repository that match the request parameters. |
|
| ListPackages |
Show DescriptionReturns a list of PackageSummary objects for packages in a repository that match the request parameters. |
|
| ListRepositories |
Show DescriptionReturns a list of RepositorySummary objects. EachRepositorySummary contains information about a repository in the specified AWS account and that matches the input parameters.
|
|
| ListRepositoriesInDomain |
Show DescriptionReturns a list of RepositorySummary objects. EachRepositorySummary contains information about a repository in the specified domain and that matches the input parameters.
|
|
| ListTagsForResource |
Show DescriptionGets information about AWS tags for a specified Amazon Resource Name (ARN) in AWS CodeArtifact. |
|
| PutDomainPermissionsPolicy |
Show DescriptionSets a resource policy on a domain that specifies permissions to access it. When you callPutDomainPermissionsPolicy, the resource policy on the domain is ignored when evaluting permissions. This ensures that the owner of a domain cannot lock themselves out of the domain, which would prevent them from being able to update the resource policy.
|
|
| PutRepositoryPermissionsPolicy |
Show DescriptionSets the resource policy on a repository that specifies permissions to access it. When you callPutRepositoryPermissionsPolicy, the resource policy on the repository is ignored when evaluting permissions. This ensures that the owner of a repository cannot lock themselves out of the repository, which would prevent them from being able to update the resource policy.
|
|
| TagResource |
Show DescriptionAdds or updates tags for a resource in AWS CodeArtifact. |
|
| UntagResource |
Show DescriptionRemoves tags from a resource in AWS CodeArtifact. |
|
| UpdatePackageVersionsStatus |
Show DescriptionUpdates the status of one or more versions of a package. |
Codebuild Events
| Service | Event Name | Description |
|---|---|---|
| codebuild | BatchDeleteBuilds |
Show DescriptionDeletes one or more builds. |
| BatchGetBuildBatches |
Show DescriptionRetrieves information about one or more batch builds. |
|
| BatchGetBuilds |
Show DescriptionGets information about one or more builds. |
|
| BatchGetProjects |
Show DescriptionGets information about one or more build projects. |
|
| BatchGetReportGroups |
Show DescriptionReturns an array of report groups. |
|
| BatchGetReports |
Show DescriptionReturns an array of reports. |
|
| CreateProject |
Show DescriptionCreates a build project. |
|
| CreateReportGroup |
Show DescriptionCreates a report group. A report group contains a collection of reports. |
|
| CreateWebhook |
Show DescriptionFor an existing CodeBuild build project that has its source code stored in a GitHub or Bitbucket repository, enables CodeBuild to start rebuilding the source code every time a code change is pushed to the repository. |
|
| DeleteBuildBatch |
Show DescriptionDeletes a batch build. |
|
| DeleteProject |
Show DescriptionDeletes a build project. When you delete a project, its builds are not deleted. |
|
| DeleteReport |
Show DescriptionDeletes a report. |
|
| DeleteReportGroup |
Show DescriptionDeletes a report group. Before you delete a report group, you must delete its reports. |
|
| DeleteResourcePolicy |
Show DescriptionDeletes a resource policy that is identified by its resource ARN. |
|
| DeleteSourceCredentials |
Show DescriptionDeletes a set of GitHub, GitHub Enterprise, or Bitbucket source credentials. |
|
| DeleteWebhook |
Show DescriptionFor an existing CodeBuild build project that has its source code stored in a GitHub or Bitbucket repository, stops CodeBuild from rebuilding the source code every time a code change is pushed to the repository. |
|
| DescribeCodeCoverages |
Show DescriptionRetrieves one or more code coverage reports. |
|
| DescribeTestCases |
Show DescriptionReturns a list of details about test cases for a report. |
|
| GetReportGroupTrend |
Show DescriptionAnalyzes and accumulates test report values for the specified test reports. |
|
| GetResourcePolicy |
Show DescriptionGets a resource policy that is identified by its resource ARN. |
|
| ImportSourceCredentials |
Show DescriptionImports the source repository credentials for an CodeBuild project that has its source code stored in a GitHub, GitHub Enterprise, or Bitbucket repository. |
|
| InvalidateProjectCache |
Show DescriptionResets the cache for a project. |
|
| ListBuildBatches |
Show DescriptionRetrieves the identifiers of your build batches in the current region. |
|
| ListBuildBatchesForProject |
Show DescriptionRetrieves the identifiers of the build batches for a specific project. |
|
| ListBuilds |
Show DescriptionGets a list of build IDs, with each build ID representing a single build. |
|
| ListBuildsForProject |
Show DescriptionGets a list of build identifiers for the specified build project, with each build identifier representing a single build. |
|
| ListCuratedEnvironmentImages |
Show DescriptionGets information about Docker images that are managed by CodeBuild. |
|
| ListProjects |
Show DescriptionGets a list of build project names, with each build project name representing a single build project. |
|
| ListReportGroups |
Show DescriptionGets a list ARNs for the report groups in the current Amazon Web Services account. |
|
| ListReports |
Show DescriptionReturns a list of ARNs for the reports in the current Amazon Web Services account. |
|
| ListReportsForReportGroup |
Show DescriptionReturns a list of ARNs for the reports that belong to aReportGroup.
|
|
| ListSharedProjects |
Show DescriptionGets a list of projects that are shared with other Amazon Web Services accounts or users. |
|
| ListSharedReportGroups |
Show DescriptionGets a list of report groups that are shared with other Amazon Web Services accounts or users. |
|
| ListSourceCredentials |
Show DescriptionReturns a list ofSourceCredentialsInfo objects.
|
|
| PutResourcePolicy |
Show DescriptionStores a resource policy for the ARN of aProject or ReportGroup object.
|
|
| RetryBuild |
Show DescriptionRestarts a build. |
|
| RetryBuildBatch |
Show DescriptionRestarts a failed batch build. Only batch builds that have failed can be retried. |
|
| StartBuild |
Show DescriptionStarts running a build. |
|
| StartBuildBatch |
Show DescriptionStarts a batch build for a project. |
|
| StopBuild |
Show DescriptionAttempts to stop running a build. |
|
| StopBuildBatch |
Show DescriptionStops a running batch build. |
|
| UpdateProject |
Show DescriptionChanges the settings of a build project. |
|
| UpdateProjectVisibility |
Show DescriptionChanges the public visibility for a project. The project's build results, logs, and artifacts are available to the general public. For more information, see Public build projects in the CodeBuild User Guide.
|
|
| UpdateReportGroup |
Show DescriptionUpdates a report group. |
Codecommit Events
| Service | Event Name | Description |
|---|---|---|
| codecommit | AssociateApprovalRuleTemplateWithRepository | |
| BatchAssociateApprovalRuleTemplateWithRepositories |
Show DescriptionCreates an association between an approval rule template and one or more specified repositories. |
|
| BatchDescribeMergeConflicts |
Show DescriptionReturns information about one or more merge conflicts in the attempted merge of two commit specifiers using the squash or three-way merge strategy. |
|
| BatchDisassociateApprovalRuleTemplateFromRepositories |
Show DescriptionRemoves the association between an approval rule template and one or more specified repositories. |
|
| BatchGetCommits |
Show DescriptionReturns information about the contents of one or more commits in a repository. |
|
| BatchGetRepositories |
Show DescriptionReturns information about one or more repositories. |
|
| CreateApprovalRuleTemplate |
Show DescriptionCreates a template for approval rules that can then be associated with one or more repositories in your AWS account. When you associate a template with a repository, AWS CodeCommit creates an approval rule that matches the conditions of the template for all pull requests that meet the conditions of the template. For more information, see AssociateApprovalRuleTemplateWithRepository. |
|
| CreateBranch | ||
| CreateCommit |
Show DescriptionCreates a commit for a repository on the tip of a specified branch. |
|
| CreatePullRequest |
Show DescriptionCreates a pull request in the specified repository. |
|
| CreatePullRequestApprovalRule |
Show DescriptionCreates an approval rule for a pull request. |
|
| CreateRepository |
Show DescriptionCreates a new, empty repository. |
|
| CreateUnreferencedMergeCommit |
Show DescriptionCreates an unreferenced commit that represents the result of merging two branches using a specified merge strategy. This can help you determine the outcome of a potential merge. This API cannot be used with the fast-forward merge strategy because that strategy does not create a merge commit. |
|
| DeleteApprovalRuleTemplate |
Show DescriptionDeletes a specified approval rule template. Deleting a template does not remove approval rules on pull requests already created with the template. |
|
| DeleteBranch |
Show DescriptionDeletes a branch from a repository, unless that branch is the default branch for the repository. |
|
| DeleteCommentContent |
Show DescriptionDeletes the content of a comment made on a change, file, or commit in a repository. |
|
| DeleteFile |
Show DescriptionDeletes a specified file from a specified branch. A commit is created on the branch that contains the revision. The file still exists in the commits earlier to the commit that contains the deletion. |
|
| DeletePullRequestApprovalRule |
Show DescriptionDeletes an approval rule from a specified pull request. Approval rules can be deleted from a pull request only if the pull request is open, and if the approval rule was created specifically for a pull request and not generated from an approval rule template associated with the repository where the pull request was created. You cannot delete an approval rule from a merged or closed pull request. |
|
| DeleteRepository |
Show DescriptionDeletes a repository. If a specified repository was already deleted, a null repository ID is returned. |
|
| DescribeMergeConflicts |
Show DescriptionReturns information about one or more merge conflicts in the attempted merge of two commit specifiers using the squash or three-way merge strategy. If the merge option for the attempted merge is specified as FAST_FORWARD_MERGE, an exception is thrown. |
|
| DescribePullRequestEvents |
Show DescriptionReturns information about one or more pull request events. |
|
| DisassociateApprovalRuleTemplateFromRepository | ||
| EvaluatePullRequestApprovalRules |
Show DescriptionEvaluates whether a pull request has met all the conditions specified in its associated approval rules. |
|
| GetApprovalRuleTemplate |
Show DescriptionReturns information about a specified approval rule template. |
|
| GetBlob |
Show DescriptionReturns the base-64 encoded content of an individual blob in a repository. |
|
| GetBranch |
Show DescriptionReturns information about a repository branch, including its name and the last commit ID. |
|
| GetComment |
Show DescriptionReturns the content of a comment made on a change, file, or commit in a repository. |
|
| GetCommentReactions |
Show DescriptionReturns information about reactions to a specified comment ID. Reactions from users who have been deleted will not be included in the count. |
|
| GetCommentsForComparedCommit |
Show DescriptionReturns information about comments made on the comparison between two commits. |
|
| GetCommentsForPullRequest |
Show DescriptionReturns comments made on a pull request. |
|
| GetCommit |
Show DescriptionReturns information about a commit, including commit message and committer information. |
|
| GetDifferences |
Show DescriptionReturns information about the differences in a valid commit specifier (such as a branch, tag, HEAD, commit ID, or other fully qualified reference). Results can be limited to a specified path. |
|
| GetFile |
Show DescriptionReturns the base-64 encoded contents of a specified file and its metadata. |
|
| GetFolder |
Show DescriptionReturns the contents of a specified folder in a repository. |
|
| GetMergeCommit |
Show DescriptionReturns information about a specified merge commit. |
|
| GetMergeConflicts |
Show DescriptionReturns information about merge conflicts between the before and after commit IDs for a pull request in a repository. |
|
| GetMergeOptions |
Show DescriptionReturns information about the merge options available for merging two specified branches. For details about why a merge option is not available, use GetMergeConflicts or DescribeMergeConflicts. |
|
| GetPullRequest |
Show DescriptionGets information about a pull request in a specified repository. |
|
| GetPullRequestApprovalStates |
Show DescriptionGets information about the approval states for a specified pull request. Approval states only apply to pull requests that have one or more approval rules applied to them. |
|
| GetPullRequestOverrideState |
Show DescriptionReturns information about whether approval rules have been set aside (overridden) for a pull request, and if so, the Amazon Resource Name (ARN) of the user or identity that overrode the rules and their requirements for the pull request. |
|
| GetRepository |
Show DescriptionReturns information about a repository. |
|
| GetRepositoryTriggers |
Show DescriptionGets information about triggers configured for a repository. |
|
| ListApprovalRuleTemplates |
Show DescriptionLists all approval rule templates in the specified AWS Region in your AWS account. If an AWS Region is not specified, the AWS Region where you are signed in is used. |
|
| ListAssociatedApprovalRuleTemplatesForRepository |
Show DescriptionLists all approval rule templates that are associated with a specified repository. |
|
| ListBranches |
Show DescriptionGets information about one or more branches in a repository. |
|
| ListPullRequests |
Show DescriptionReturns a list of pull requests for a specified repository. The return list can be refined by pull request status or pull request author ARN. |
|
| ListRepositories |
Show DescriptionGets information about one or more repositories. |
|
| ListRepositoriesForApprovalRuleTemplate |
Show DescriptionLists all repositories associated with the specified approval rule template. |
|
| ListTagsForResource |
Show DescriptionGets information about AWS tags for a specified Amazon Resource Name (ARN) in AWS CodeCommit. For a list of valid resources in AWS CodeCommit, see CodeCommit Resources and Operations in the AWS CodeCommit User Guide. |
|
| MergeBranchesByFastForward |
Show DescriptionMerges two branches using the fast-forward merge strategy. |
|
| MergeBranchesBySquash |
Show DescriptionMerges two branches using the squash merge strategy. |
|
| MergeBranchesByThreeWay |
Show DescriptionMerges two specified branches using the three-way merge strategy. |
|
| MergePullRequestByFastForward |
Show DescriptionAttempts to merge the source commit of a pull request into the specified destination branch for that pull request at the specified commit using the fast-forward merge strategy. If the merge is successful, it closes the pull request. |
|
| MergePullRequestBySquash |
Show DescriptionAttempts to merge the source commit of a pull request into the specified destination branch for that pull request at the specified commit using the squash merge strategy. If the merge is successful, it closes the pull request. |
|
| MergePullRequestByThreeWay |
Show DescriptionAttempts to merge the source commit of a pull request into the specified destination branch for that pull request at the specified commit using the three-way merge strategy. If the merge is successful, it closes the pull request. |
|
| OverridePullRequestApprovalRules | ||
| PostCommentForComparedCommit |
Show DescriptionPosts a comment on the comparison between two commits. |
|
| PostCommentForPullRequest |
Show DescriptionPosts a comment on a pull request. |
|
| PostCommentReply |
Show DescriptionPosts a comment in reply to an existing comment on a comparison between commits or a pull request. |
|
| PutCommentReaction | ||
| PutFile |
Show DescriptionAdds or updates a file in a branch in an AWS CodeCommit repository, and generates a commit for the addition in the specified branch. |
|
| PutRepositoryTriggers |
Show DescriptionReplaces all triggers for a repository. Used to create or delete triggers. |
|
| TagResource | ||
| TestRepositoryTriggers |
Show DescriptionTests the functionality of repository triggers by sending information to the trigger target. If real data is available in the repository, the test sends data from the last commit. If no data is available, sample data is generated. |
|
| UntagResource | ||
| UpdateApprovalRuleTemplateContent |
Show DescriptionUpdates the content of an approval rule template. You can change the number of required approvals, the membership of the approval rule, and whether an approval pool is defined. |
|
| UpdateApprovalRuleTemplateDescription |
Show DescriptionUpdates the description for a specified approval rule template. |
|
| UpdateApprovalRuleTemplateName |
Show DescriptionUpdates the name of a specified approval rule template. |
|
| UpdateComment |
Show DescriptionReplaces the contents of a comment. |
|
| UpdateDefaultBranch | ||
| UpdatePullRequestApprovalRuleContent |
Show DescriptionUpdates the structure of an approval rule created specifically for a pull request. For example, you can change the number of required approvers and the approval pool for approvers. |
|
| UpdatePullRequestApprovalState | ||
| UpdatePullRequestDescription |
Show DescriptionReplaces the contents of the description of a pull request. |
|
| UpdatePullRequestStatus |
Show DescriptionUpdates the status of a pull request. |
|
| UpdatePullRequestTitle |
Show DescriptionReplaces the title of a pull request. |
|
| UpdateRepositoryDescription |
Codedeploy Events
| Service | Event Name | Description |
|---|---|---|
| codedeploy | AddTagsToOnPremisesInstances | |
| BatchGetApplicationRevisions |
Show DescriptionGets information about one or more application revisions. The maximum number of application revisions that can be returned is 25. |
|
| BatchGetApplications |
Show DescriptionGets information about one or more applications. The maximum number of applications that can be returned is 100. |
|
| BatchGetDeploymentGroups |
Show DescriptionGets information about one or more deployment groups. |
|
| BatchGetDeploymentInstances |
Show DescriptionBatchGetDeploymentTargets instead. BatchGetDeploymentTargets works with all compute platforms. The maximum number of instances that can be returned is 25.
|
|
| BatchGetDeploymentTargets |
Show DescriptionReturns an array of one or more targets associated with a deployment. This method works with all compute types and should be used instead of the deprecatedBatchGetDeploymentInstances. The maximum number of targets that can be returned is 25. The type of targets returned depends on the deployment's compute platform or deployment method:
|
|
| BatchGetDeployments |
Show DescriptionGets information about one or more deployments. The maximum number of deployments that can be returned is 25. |
|
| BatchGetOnPremisesInstances |
Show DescriptionGets information about one or more on-premises instances. The maximum number of on-premises instances that can be returned is 25. |
|
| ContinueDeployment | ||
| CreateApplication |
Show DescriptionCreates an application. |
|
| CreateDeployment |
Show DescriptionDeploys an application revision through the specified deployment group. |
|
| CreateDeploymentConfig |
Show DescriptionCreates a deployment configuration. |
|
| CreateDeploymentGroup |
Show DescriptionCreates a deployment group to which application revisions are deployed. |
|
| DeleteApplication | ||
| DeleteDeploymentConfig | ||
| DeleteDeploymentGroup |
Show DescriptionDeletes a deployment group. |
|
| DeleteGitHubAccountToken |
Show DescriptionDeletes a GitHub account connection. |
|
| DeleteResourcesByExternalId |
Show DescriptionDeletes resources linked to an external ID. |
|
| DeregisterOnPremisesInstance | ||
| GetApplication |
Show DescriptionGets information about an application. |
|
| GetApplicationRevision |
Show DescriptionGets information about an application revision. |
|
| GetDeployment |
Show DescriptionGets information about a deployment.content property of the appSpecContent object in the returned revision is always null. Use GetApplicationRevision and the sha256 property of the returned appSpecContent object to get the content of the deployment’s AppSpec file. |
|
| GetDeploymentConfig |
Show DescriptionGets information about a deployment configuration. |
|
| GetDeploymentGroup |
Show DescriptionGets information about a deployment group. |
|
| GetDeploymentInstance |
Show DescriptionGets information about an instance as part of a deployment. |
|
| GetDeploymentTarget |
Show DescriptionReturns information about a deployment target. |
|
| GetOnPremisesInstance |
Show DescriptionGets information about an on-premises instance. |
|
| ListApplicationRevisions |
Show DescriptionLists information about revisions for an application. |
|
| ListApplications |
Show DescriptionLists the applications registered with the IAM user or AWS account. |
|
| ListDeploymentConfigs |
Show DescriptionLists the deployment configurations with the IAM user or AWS account. |
|
| ListDeploymentGroups |
Show DescriptionLists the deployment groups for an application registered with the IAM user or AWS account. |
|
| ListDeploymentInstances |
Show DescriptionBatchGetDeploymentTargets should be used instead because it works with all compute types. ListDeploymentInstances throws an exception if it is used with a compute platform other than EC2/On-premises or AWS Lambda. |
|
| ListDeploymentTargets |
Show DescriptionReturns an array of target IDs that are associated a deployment. |
|
| ListDeployments |
Show DescriptionLists the deployments in a deployment group for an application registered with the IAM user or AWS account. |
|
| ListGitHubAccountTokenNames |
Show DescriptionLists the names of stored connections to GitHub accounts. |
|
| ListOnPremisesInstances |
Show DescriptionGets a list of names for one or more on-premises instances. Unless otherwise specified, both registered and deregistered on-premises instance names are listed. To list only registered or deregistered on-premises instance names, use the registration status parameter. |
|
| ListTagsForResource |
Show DescriptionReturns a list of tags for the resource identified by a specified Amazon Resource Name (ARN). Tags are used to organize and categorize your CodeDeploy resources. |
|
| PutLifecycleEventHookExecutionStatus |
Show DescriptionSets the result of a Lambda validation function. The function validates lifecycle hooks during a deployment that uses the AWS Lambda or Amazon ECS compute platform. For AWS Lambda deployments, the available lifecycle hooks areBeforeAllowTraffic and AfterAllowTraffic. For Amazon ECS deployments, the available lifecycle hooks are BeforeInstall, AfterInstall, AfterAllowTestTraffic, BeforeAllowTraffic, and AfterAllowTraffic. Lambda validation functions return Succeeded or Failed. For more information, see AppSpec 'hooks' Section for an AWS Lambda Deployment and AppSpec 'hooks' Section for an Amazon ECS Deployment.
|
|
| RegisterApplicationRevision | ||
| RegisterOnPremisesInstance | ||
| RemoveTagsFromOnPremisesInstances | ||
| SkipWaitTimeForInstanceTermination | ||
| StopDeployment |
Show DescriptionAttempts to stop an ongoing deployment. |
|
| TagResource |
Show DescriptionAssociates the list of tags in the inputTags parameter with the resource identified by the ResourceArn input parameter.
|
|
| UntagResource |
Show DescriptionDisassociates a resource from a list of tags. The resource is identified by theResourceArn input parameter. The tags are identified by the list of keys in the TagKeys input parameter.
|
|
| UpdateApplication |
Codeguru-reviewer Events
| Service | Event Name | Description |
|---|---|---|
| codeguru-reviewer | AssociateRepository |
Show DescriptionUse to associate an Amazon Web Services CodeCommit repository or a repostory managed by Amazon Web Services CodeStar Connections with Amazon CodeGuru Reviewer. When you associate a repository, CodeGuru Reviewer reviews source code changes in the repository's pull requests and provides automatic recommendations. You can view recommendations using the CodeGuru Reviewer console. For more information, see Recommendations in Amazon CodeGuru Reviewer in the Amazon CodeGuru Reviewer User Guide. If you associate a CodeCommit or S3 repository, it must be in the same Amazon Web Services Region and Amazon Web Services account where its CodeGuru Reviewer code reviews are configured. Bitbucket and GitHub Enterprise Server repositories are managed by Amazon Web Services CodeStar Connections to connect to CodeGuru Reviewer. For more information, see Associate a repository in the Amazon CodeGuru Reviewer User Guide. |
| CreateCodeReview |
Show DescriptionUse to create a code review with aCodeReviewType of RepositoryAnalysis. This type of code review analyzes all code under a specified branch in an associated repository. PullRequest code reviews are automatically triggered by a pull request.
|
|
| DescribeCodeReview |
Show DescriptionReturns the metadata associated with the code review along with its status. |
|
| DescribeRecommendationFeedback |
Show DescriptionDescribes the customer feedback for a CodeGuru Reviewer recommendation. |
|
| DescribeRepositoryAssociation |
Show DescriptionReturns aRepositoryAssociation object that contains information about the requested repository association.
|
|
| DisassociateRepository |
Show DescriptionRemoves the association between Amazon CodeGuru Reviewer and a repository. |
|
| ListCodeReviews |
Show DescriptionLists all the code reviews that the customer has created in the past 90 days. |
|
| ListRecommendationFeedback |
Show DescriptionReturns a list ofRecommendationFeedbackSummary objects that contain customer recommendation feedback for all CodeGuru Reviewer users.
|
|
| ListRecommendations |
Show DescriptionReturns the list of all recommendations for a completed code review. |
|
| ListRepositoryAssociations |
Show DescriptionReturns a list ofRepositoryAssociationSummary objects that contain summary information about a repository association. You can filter the returned list by ProviderType , Name , State , and Owner .
|
|
| ListTagsForResource |
Show DescriptionReturns the list of tags associated with an associated repository resource. |
|
| PutRecommendationFeedback |
Show DescriptionStores customer feedback for a CodeGuru Reviewer recommendation. When this API is called again with different reactions the previous feedback is overwritten. |
|
| TagResource |
Show DescriptionAdds one or more tags to an associated repository. |
Codeguruprofiler Events
| Service | Event Name | Description |
|---|---|---|
| codeguruprofiler | AddNotificationChannels |
Show DescriptionAdd up to 2 anomaly notifications channels for a profiling group. |
| BatchGetFrameMetricData |
Show DescriptionReturns the time series of values for a requested list of frame metrics from a time period. |
|
| ConfigureAgent |
Show DescriptionUsed by profiler agents to report their current state and to receive remote configuration updates. For example,ConfigureAgent can be used to tell an agent whether to profile or not and for how long to return profiling data.
|
|
| CreateProfilingGroup |
Show DescriptionCreates a profiling group. |
|
| DeleteProfilingGroup |
Show DescriptionDeletes a profiling group. |
|
| DescribeProfilingGroup |
Show DescriptionReturns aProfilingGroupDescription object that contains information about the requested profiling group.
|
|
| GetFindingsReportAccountSummary |
Show DescriptionReturns a list ofFindingsReportSummary objects that contain analysis results for all profiling groups in your AWS account.
|
|
| GetNotificationConfiguration |
Show DescriptionGet the current configuration for anomaly notifications for a profiling group. |
|
| GetPolicy |
Show DescriptionReturns the JSON-formatted resource-based policy on a profiling group. |
|
| GetProfile |
Show DescriptionGets the aggregated profile of a profiling group for a specified time range. Amazon CodeGuru Profiler collects posted agent profiles for a profiling group into aggregated profiles. |
|
| GetRecommendations |
Show DescriptionReturns a list ofRecommendation objects that contain recommendations for a profiling group for a given time period. A list of Anomaly objects that contains details about anomalies detected in the profiling group for the same time period is also returned.
|
|
| ListFindingsReports |
Show DescriptionList the available reports for a given profiling group and time range. |
|
| ListProfileTimes |
Show DescriptionLists the start times of the available aggregated profiles of a profiling group for an aggregation period within the specified time range. |
|
| ListProfilingGroups |
Show DescriptionReturns a list of profiling groups. The profiling groups are returned asProfilingGroupDescription objects.
|
|
| ListTagsForResource |
Show DescriptionReturns a list of the tags that are assigned to a specified resource. |
|
| PostAgentProfile |
Show DescriptionSubmits profiling data to an aggregated profile of a profiling group. To get an aggregated profile that is created with this profiling data, useGetProfile .
|
|
| PutPermission |
Show DescriptionAdds permissions to a profiling group's resource-based policy that are provided using an action group. If a profiling group doesn't have a resource-based policy, one is created for it using the permissions in the action group and the roles and users in theprincipals parameter. |
|
| RemoveNotificationChannel |
Show DescriptionRemove one anomaly notifications channel for a profiling group. |
|
| RemovePermission |
Show DescriptionRemoves permissions from a profiling group's resource-based policy that are provided using an action group. The one supported action group that can be removed isagentPermission which grants ConfigureAgent and PostAgent permissions. For more information, see Resource-based policies in CodeGuru Profiler in the Amazon CodeGuru Profiler User Guide, ConfigureAgent , and PostAgentProfile .
|
|
| SubmitFeedback |
Show DescriptionSends feedback to CodeGuru Profiler about whether the anomaly detected by the analysis is useful or not. |
|
| TagResource |
Show DescriptionUse to assign one or more tags to a resource. |
|
| UntagResource |
Show DescriptionUse to remove one or more tags from a resource. |
Codepipeline Events
| Service | Event Name | Description |
|---|---|---|
| codepipeline | AcknowledgeJob |
Show DescriptionReturns information about a specified job and whether that job has been received by the job worker. Used for custom actions only. |
| AcknowledgeThirdPartyJob |
Show DescriptionConfirms a job worker has received the specified job. Used for partner actions only. |
|
| CreateCustomActionType |
Show DescriptionCreates a new custom action that can be used in all pipelines associated with the AWS account. Only used for custom actions. |
|
| CreatePipeline |
Show DescriptionCreates a pipeline.artifactStore or artifactStores in your pipeline, but you cannot use both. If you create a cross-region action in your pipeline, you must use artifactStores. |
|
| DeleteCustomActionType | ||
| DeletePipeline | ||
| DeleteWebhook |
Show DescriptionDeletes a previously created webhook by name. Deleting the webhook stops AWS CodePipeline from starting a pipeline every time an external event occurs. The API returns successfully when trying to delete a webhook that is already deleted. If a deleted webhook is re-created by calling PutWebhook with the same name, it will have a different URL. |
|
| DeregisterWebhookWithThirdParty |
Show DescriptionRemoves the connection between the webhook that was created by CodePipeline and the external tool with events to be detected. Currently supported only for webhooks that target an action type of GitHub. |
|
| DisableStageTransition | ||
| EnableStageTransition | ||
| GetActionType |
Show DescriptionReturns information about an action type created for an external provider, where the action is to be used by customers of the external provider. The action can be created with any supported integration model. |
|
| GetJobDetails |
Show DescriptionReturns information about a job. Used for custom actions only. |
|
| GetPipeline |
Show DescriptionReturns the metadata, structure, stages, and actions of a pipeline. Can be used to return the entire structure of a pipeline in JSON format, which can then be modified and used to update the pipeline structure with UpdatePipeline. |
|
| GetPipelineExecution |
Show DescriptionReturns information about an execution of a pipeline, including details about artifacts, the pipeline execution ID, and the name, version, and status of the pipeline. |
|
| GetPipelineState |
Show DescriptionReturns information about the state of a pipeline, including the stages and actions.revisionId and revisionUrl fields indicate the source revision information, such as the commit ID, for the current state. |
|
| GetThirdPartyJobDetails |
Show DescriptionRequests the details of a job for a third party action. Used for partner actions only. |
|
| ListActionExecutions |
Show DescriptionLists the action executions that have occurred in a pipeline. |
|
| ListActionTypes |
Show DescriptionGets a summary of all AWS CodePipeline action types associated with your account. |
|
| ListPipelineExecutions |
Show DescriptionGets a summary of the most recent executions for a pipeline. |
|
| ListPipelines |
Show DescriptionGets a summary of all of the pipelines associated with your account. |
|
| ListTagsForResource |
Show DescriptionGets the set of key-value pairs (metadata) that are used to manage the resource. |
|
| ListWebhooks |
Show DescriptionGets a listing of all the webhooks in this AWS Region for this account. The output lists all webhooks and includes the webhook URL and ARN and the configuration for each webhook. |
|
| PollForJobs |
Show DescriptionReturns information about any jobs for AWS CodePipeline to act on.PollForJobs is valid only for action types with "Custom" in the owner field. If the action type contains "AWS" or "ThirdParty" in the owner field, the PollForJobs action returns an error. |
|
| PollForThirdPartyJobs |
Show DescriptionDetermines whether there are any third party jobs for a job worker to act on. Used for partner actions only. |
|
| PutActionRevision |
Show DescriptionProvides information to AWS CodePipeline about new revisions to a source. |
|
| PutApprovalResult |
Show DescriptionProvides the response to a manual approval request to AWS CodePipeline. Valid responses include Approved and Rejected. |
|
| PutJobFailureResult | ||
| PutJobSuccessResult | ||
| PutThirdPartyJobFailureResult | ||
| PutThirdPartyJobSuccessResult | ||
| PutWebhook |
Show DescriptionDefines a webhook and returns a unique webhook URL generated by CodePipeline. This URL can be supplied to third party source hosting providers to call every time there's a code change. When CodePipeline receives a POST request on this URL, the pipeline defined in the webhook is started as long as the POST request satisfied the authentication and filtering requirements supplied when defining the webhook. RegisterWebhookWithThirdParty and DeregisterWebhookWithThirdParty APIs can be used to automatically configure supported third parties to call the generated webhook URL. |
|
| RegisterWebhookWithThirdParty |
Show DescriptionConfigures a connection between the webhook that was created and the external tool with events to be detected. |
|
| RetryStageExecution |
Show DescriptionResumes the pipeline execution by retrying the last failed actions in a stage. You can retry a stage immediately if any of the actions in the stage fail. When you retry, all actions that are still in progress continue working, and failed actions are triggered again. |
|
| StartPipelineExecution |
Show DescriptionStarts the specified pipeline. Specifically, it begins processing the latest commit to the source location specified as part of the pipeline. |
|
| StopPipelineExecution |
Show DescriptionStops the specified pipeline execution. You choose to either stop the pipeline execution by completing in-progress actions without starting subsequent actions, or by abandoning in-progress actions. While completing or abandoning in-progress actions, the pipeline execution is in aStopping state. After all in-progress actions are completed or abandoned, the pipeline execution is in a Stopped state.
|
|
| TagResource |
Show DescriptionAdds to or modifies the tags of the given resource. Tags are metadata that can be used to manage a resource. |
|
| UntagResource |
Show DescriptionRemoves tags from an AWS resource. |
|
| UpdateActionType |
Codestar-connections Events
| Service | Event Name | Description |
|---|---|---|
| codestar-connections | CreateConnection |
Show DescriptionCreates a connection that can then be given to other AWS services like CodePipeline so that it can access third-party code repositories. The connection is in pending status until the third-party connection handshake is completed from the console. |
| CreateHost |
Show DescriptionCreates a resource that represents the infrastructure where a third-party provider is installed. The host is used when you create connections to an installed third-party provider type, such as GitHub Enterprise Server. You create one host for all connections to that provider. |
|
| DeleteConnection |
Show DescriptionThe connection to be deleted. |
|
| DeleteHost |
Show DescriptionThe host to be deleted. Before you delete a host, all connections associated to the host must be deleted. |
|
| GetConnection |
Show DescriptionReturns the connection ARN and details such as status, owner, and provider type. |
|
| GetHost |
Show DescriptionReturns the host ARN and details such as status, provider type, endpoint, and, if applicable, the VPC configuration. |
|
| ListConnections |
Show DescriptionLists the connections associated with your account. |
|
| ListHosts |
Show DescriptionLists the hosts associated with your account. |
|
| ListTagsForResource |
Show DescriptionGets the set of key-value pairs (metadata) that are used to manage the resource. |
|
| TagResource |
Show DescriptionAdds to or modifies the tags of the given resource. Tags are metadata that can be used to manage a resource. |
|
| UntagResource |
Show DescriptionRemoves tags from an AWS resource. |
Codestar-notifications Events
| Service | Event Name | Description |
|---|---|---|
| codestar-notifications | CreateNotificationRule |
Show DescriptionCreates a notification rule for a resource. The rule specifies the events you want notifications about and the targets (such as SNS topics) where you want to receive them. |
| DeleteNotificationRule |
Show DescriptionDeletes a notification rule for a resource. |
|
| DeleteTarget |
Show DescriptionDeletes a specified target for notifications. |
|
| DescribeNotificationRule |
Show DescriptionReturns information about a specified notification rule. |
|
| ListEventTypes |
Show DescriptionReturns information about the event types available for configuring notifications. |
|
| ListNotificationRules |
Show DescriptionReturns a list of the notification rules for an AWS account. |
|
| ListTagsForResource |
Show DescriptionReturns a list of the tags associated with a notification rule. |
|
| ListTargets |
Show DescriptionReturns a list of the notification rule targets for an AWS account. |
|
| Subscribe |
Show DescriptionCreates an association between a notification rule and an SNS topic so that the associated target can receive notifications when the events described in the rule are triggered. |
|
| TagResource |
Show DescriptionAssociates a set of provided tags with a notification rule. |
|
| Unsubscribe |
Show DescriptionRemoves an association between a notification rule and an Amazon SNS topic so that subscribers to that topic stop receiving notifications when the events described in the rule are triggered. |
|
| UntagResource |
Show DescriptionRemoves the association between one or more provided tags and a notification rule. |
Codestar Events
| Service | Event Name | Description |
|---|---|---|
| codestar | AssociateTeamMember |
Show DescriptionAdds an IAM user to the team for an AWS CodeStar project. |
| CreateProject |
Show DescriptionCreates a project, including project resources. This action creates a project based on a submitted project request. A set of source code files and a toolchain template file can be included with the project request. If these are not provided, an empty project is created. |
|
| CreateUserProfile |
Show DescriptionCreates a profile for a user that includes user preferences, such as the display name and email address assocciated with the user, in AWS CodeStar. The user profile is not project-specific. Information in the user profile is displayed wherever the user's information appears to other users in AWS CodeStar. |
|
| DeleteProject |
Show DescriptionDeletes a project, including project resources. Does not delete users associated with the project, but does delete the IAM roles that allowed access to the project. |
|
| DeleteUserProfile |
Show DescriptionDeletes a user profile in AWS CodeStar, including all personal preference data associated with that profile, such as display name and email address. It does not delete the history of that user, for example the history of commits made by that user. |
|
| DescribeProject |
Show DescriptionDescribes a project and its resources. |
|
| DescribeUserProfile |
Show DescriptionDescribes a user in AWS CodeStar and the user attributes across all projects. |
|
| DisassociateTeamMember |
Show DescriptionRemoves a user from a project. Removing a user from a project also removes the IAM policies from that user that allowed access to the project and its resources. Disassociating a team member does not remove that user's profile from AWS CodeStar. It does not remove the user from IAM. |
|
| ListProjects |
Show DescriptionLists all projects in AWS CodeStar associated with your AWS account. |
|
| ListResources |
Show DescriptionLists resources associated with a project in AWS CodeStar. |
|
| ListTagsForProject |
Show DescriptionGets the tags for a project. |
|
| ListTeamMembers |
Show DescriptionLists all team members associated with a project. |
|
| ListUserProfiles |
Show DescriptionLists all the user profiles configured for your AWS account in AWS CodeStar. |
|
| TagProject |
Show DescriptionAdds tags to a project. |
|
| UntagProject |
Show DescriptionRemoves tags from a project. |
|
| UpdateProject |
Show DescriptionUpdates a project in AWS CodeStar. |
|
| UpdateTeamMember |
Show DescriptionUpdates a team member's attributes in an AWS CodeStar project. For example, you can change a team member's role in the project, or change whether they have remote access to project resources. |
Cognito-identity Events
| Service | Event Name | Description |
|---|---|---|
| cognito-identity | CreateIdentityPool |
Show DescriptionCreates a new identity pool. The identity pool is a store of user identity information that is specific to your AWS account. The keys forSupportedLoginProviders are as follows:
|
| DeleteIdentities |
Show DescriptionDeletes identities from an identity pool. You can specify a list of 1-60 identities that you want to delete. You must use AWS Developer credentials to call this API. |
|
| DeleteIdentityPool | ||
| DescribeIdentity |
Show DescriptionReturns metadata related to the given identity, including when the identity was created and any associated linked logins. You must use AWS Developer credentials to call this API. |
|
| DescribeIdentityPool |
Show DescriptionGets details about a particular identity pool, including the pool name, ID description, creation date, and current number of users. You must use AWS Developer credentials to call this API. |
|
| GetCredentialsForIdentity |
Show DescriptionReturns credentials for the provided identity ID. Any provided logins will be validated against supported login providers. If the token is for cognito-identity.amazonaws.com, it will be passed through to AWS Security Token Service with the appropriate role for the token. This is a public API. You do not need any credentials to call this API. |
|
| GetId |
Show DescriptionGenerates (or retrieves) a Cognito ID. Supplying multiple logins will create an implicit linked account. This is a public API. You do not need any credentials to call this API. |
|
| GetIdentityPoolRoles |
Show DescriptionGets the roles for an identity pool. You must use AWS Developer credentials to call this API. |
|
| GetOpenIdToken |
Show DescriptionGets an OpenID token, using a known Cognito ID. This known Cognito ID is returned by GetId. You can optionally add additional logins for the identity. Supplying multiple logins creates an implicit link. The OpenID token is valid for 10 minutes. This is a public API. You do not need any credentials to call this API. |
|
| GetOpenIdTokenForDeveloperIdentity |
Show DescriptionRegisters (or retrieves) a CognitoIdentityId and an OpenID Connect token for a user authenticated by your backend authentication process. Supplying multiple logins will create an implicit linked account. You can only specify one developer provider as part of the Logins map, which is linked to the identity pool. The developer provider is the "domain" by which Cognito will refer to your users. You can use GetOpenIdTokenForDeveloperIdentity to create a new identity and to link new logins (that is, user credentials issued by a public provider or developer provider) to an existing identity. When you want to create a new identity, the IdentityId should be null. When you want to associate a new login with an existing authenticated/unauthenticated identity, you can do so by providing the existing IdentityId. This API will create the identity in the specified IdentityPoolId. You must use AWS Developer credentials to call this API.
|
|
| GetPrincipalTagAttributeMap |
Show DescriptionUseGetPrincipalTagAttributeMap to list all mappings between PrincipalTags and user attributes.
|
|
| ListIdentities |
Show DescriptionLists the identities in an identity pool. You must use AWS Developer credentials to call this API. |
|
| ListIdentityPools |
Show DescriptionLists all of the Cognito identity pools registered for your account. You must use AWS Developer credentials to call this API. |
|
| ListTagsForResource |
Show DescriptionLists the tags that are assigned to an Amazon Cognito identity pool. A tag is a label that you can apply to identity pools to categorize and manage them in different ways, such as by purpose, owner, environment, or other criteria. You can use this action up to 10 times per second, per account. |
|
| LookupDeveloperIdentity |
Show DescriptionRetrieves theIdentityID associated with a DeveloperUserIdentifier or the list of DeveloperUserIdentifier values associated with an IdentityId for an existing identity. Either IdentityID or DeveloperUserIdentifier must not be null. If you supply only one of these values, the other value will be searched in the database and returned as a part of the response. If you supply both, DeveloperUserIdentifier will be matched against IdentityID. If the values are verified against the database, the response returns both values and is the same as the request. Otherwise a ResourceConflictException is thrown. LookupDeveloperIdentity is intended for low-throughput control plane operations: for example, to enable customer service to locate an identity ID by username. If you are using it for higher-volume operations such as user authentication, your requests are likely to be throttled. GetOpenIdTokenForDeveloperIdentity is a better option for higher-volume operations for user authentication. You must use AWS Developer credentials to call this API.
|
|
| MergeDeveloperIdentities |
Show DescriptionMerges two users having differentIdentityIds, existing in the same identity pool, and identified by the same developer provider. You can use this action to request that discrete users be merged and identified as a single user in the Cognito environment. Cognito associates the given source user (SourceUserIdentifier) with the IdentityId of the DestinationUserIdentifier. Only developer-authenticated users can be merged. If the users to be merged are associated with the same public provider, but as two different users, an exception will be thrown. The number of linked logins is limited to 20. So, the number of linked logins for the source user, SourceUserIdentifier, and the destination user, DestinationUserIdentifier, together should not be larger than 20. Otherwise, an exception will be thrown. You must use AWS Developer credentials to call this API.
|
|
| SetIdentityPoolRoles | ||
| SetPrincipalTagAttributeMap |
Show DescriptionYou can use this operation to use default (username and clientID) attribute or custom attribute mappings. |
|
| TagResource |
Show DescriptionAssigns a set of tags to the specified Amazon Cognito identity pool. A tag is a label that you can use to categorize and manage identity pools in different ways, such as by purpose, owner, environment, or other criteria. Each tag consists of a key and value, both of which you define. A key is a general category for more specific values. For example, if you have two versions of an identity pool, one for testing and another for production, you might assign anEnvironment tag key to both identity pools. The value of this key might be Test for one identity pool and Production for the other. Tags are useful for cost tracking and access control. You can activate your tags so that they appear on the Billing and Cost Management console, where you can track the costs associated with your identity pools. In an IAM policy, you can constrain permissions for identity pools based on specific tags or tag values. You can use this action up to 5 times per second, per account. An identity pool can have as many as 50 tags.
|
|
| UnlinkDeveloperIdentity | ||
| UnlinkIdentity | ||
| UntagResource |
Show DescriptionRemoves the specified tags from the specified Amazon Cognito identity pool. You can use this action up to 5 times per second, per account |
Cognito-sync Events
| Service | Event Name | Description |
|---|---|---|
| cognito-sync | BulkPublish |
Show DescriptionInitiates a bulk publish of all existing datasets for an Identity Pool to the configured stream. Customers are limited to one successful bulk publish per 24 hours. Bulk publish is an asynchronous request, customers can see the status of the request via the GetBulkPublishDetails operation.This API can only be called with developer credentials. You cannot call this API with the temporary user credentials provided by Cognito Identity. |
| DeleteDataset |
Show DescriptionDeletes the specific dataset. The dataset will be deleted permanently, and the action can't be undone. Datasets that this dataset was merged with will no longer report the merge. Any subsequent operation on this dataset will result in a ResourceNotFoundException. This API can be called with temporary user credentials provided by Cognito Identity or with developer credentials. |
|
| DescribeDataset |
Show DescriptionGets meta data about a dataset by identity and dataset name. With Amazon Cognito Sync, each identity has access only to its own data. Thus, the credentials used to make this API call need to have access to the identity data. This API can be called with temporary user credentials provided by Cognito Identity or with developer credentials. You should use Cognito Identity credentials to make this API call. |
|
| DescribeIdentityPoolUsage |
Show DescriptionGets usage details (for example, data storage) about a particular identity pool. This API can only be called with developer credentials. You cannot call this API with the temporary user credentials provided by Cognito Identity. |
|
| DescribeIdentityUsage |
Show DescriptionGets usage information for an identity, including number of datasets and data usage. This API can be called with temporary user credentials provided by Cognito Identity or with developer credentials. |
|
| GetBulkPublishDetails |
Show DescriptionGet the status of the last BulkPublish operation for an identity pool.This API can only be called with developer credentials. You cannot call this API with the temporary user credentials provided by Cognito Identity. |
|
| GetCognitoEvents |
Show DescriptionGets the events and the corresponding Lambda functions associated with an identity pool.This API can only be called with developer credentials. You cannot call this API with the temporary user credentials provided by Cognito Identity. |
|
| GetIdentityPoolConfiguration |
Show DescriptionGets the configuration settings of an identity pool.This API can only be called with developer credentials. You cannot call this API with the temporary user credentials provided by Cognito Identity. |
|
| ListDatasets |
Show DescriptionLists datasets for an identity. With Amazon Cognito Sync, each identity has access only to its own data. Thus, the credentials used to make this API call need to have access to the identity data. ListDatasets can be called with temporary user credentials provided by Cognito Identity or with developer credentials. You should use the Cognito Identity credentials to make this API call. |
|
| ListIdentityPoolUsage |
Show DescriptionGets a list of identity pools registered with Cognito. ListIdentityPoolUsage can only be called with developer credentials. You cannot make this API call with the temporary user credentials provided by Cognito Identity. |
|
| ListRecords |
Show DescriptionGets paginated records, optionally changed after a particular sync count for a dataset and identity. With Amazon Cognito Sync, each identity has access only to its own data. Thus, the credentials used to make this API call need to have access to the identity data. ListRecords can be called with temporary user credentials provided by Cognito Identity or with developer credentials. You should use Cognito Identity credentials to make this API call. |
|
| RegisterDevice |
Show DescriptionRegisters a device to receive push sync notifications.This API can only be called with temporary credentials provided by Cognito Identity. You cannot call this API with developer credentials. |
|
| SetCognitoEvents | ||
| SetIdentityPoolConfiguration |
Show DescriptionSets the necessary configuration for push sync.This API can only be called with developer credentials. You cannot call this API with the temporary user credentials provided by Cognito Identity. |
|
| SubscribeToDataset |
Show DescriptionSubscribes to receive notifications when a dataset is modified by another device.This API can only be called with temporary credentials provided by Cognito Identity. You cannot call this API with developer credentials. |
|
| UnsubscribeFromDataset |
Show DescriptionUnsubscribes from receiving notifications when a dataset is modified by another device.This API can only be called with temporary credentials provided by Cognito Identity. You cannot call this API with developer credentials. |
Comprehendmedical Events
| Service | Event Name | Description |
|---|---|---|
| comprehendmedical | DescribeEntitiesDetectionV2Job |
Show DescriptionGets the properties associated with a medical entities detection job. Use this operation to get the status of a detection job. |
| DescribeICD10CMInferenceJob |
Show DescriptionGets the properties associated with an InferICD10CM job. Use this operation to get the status of an inference job. |
|
| DescribePHIDetectionJob |
Show DescriptionGets the properties associated with a protected health information (PHI) detection job. Use this operation to get the status of a detection job. |
|
| DescribeRxNormInferenceJob |
Show DescriptionGets the properties associated with an InferRxNorm job. Use this operation to get the status of an inference job. |
|
| DetectEntities |
Show DescriptionTheDetectEntities operation is deprecated. You should use the DetectEntitiesV2 operation instead. Inspects the clinical text for a variety of medical entities and returns specific information about them such as entity category, location, and confidence score on that information .
|
|
| DetectEntitiesV2 |
Show DescriptionInspects the clinical text for a variety of medical entities and returns specific information about them such as entity category, location, and confidence score on that information. Amazon Comprehend Medical only detects medical entities in English language texts. TheDetectEntitiesV2 operation replaces the DetectEntities operation. This new action uses a different model for determining the entities in your medical text and changes the way that some entities are returned in the output. You should use the DetectEntitiesV2 operation in all new applications. The DetectEntitiesV2 operation returns the Acuity and Direction entities as attributes instead of types.
|
|
| DetectPHI |
Show DescriptionInspects the clinical text for protected health information (PHI) entities and returns the entity category, location, and confidence score for each entity. Amazon Comprehend Medical only detects entities in English language texts. |
|
| InferICD10CM |
Show DescriptionInferICD10CM detects medical conditions as entities listed in a patient record and links those entities to normalized concept identifiers in the ICD-10-CM knowledge base from the Centers for Disease Control. Amazon Comprehend Medical only detects medical entities in English language texts. |
|
| InferRxNorm |
Show DescriptionInferRxNorm detects medications as entities listed in a patient record and links to the normalized concept identifiers in the RxNorm database from the National Library of Medicine. Amazon Comprehend Medical only detects medical entities in English language texts. |
|
| ListEntitiesDetectionV2Jobs |
Show DescriptionGets a list of medical entity detection jobs that you have submitted. |
|
| ListICD10CMInferenceJobs |
Show DescriptionGets a list of InferICD10CM jobs that you have submitted. |
|
| ListPHIDetectionJobs |
Show DescriptionGets a list of protected health information (PHI) detection jobs that you have submitted. |
|
| ListRxNormInferenceJobs |
Show DescriptionGets a list of InferRxNorm jobs that you have submitted. |
|
| StartEntitiesDetectionV2Job |
Show DescriptionStarts an asynchronous medical entity detection job for a collection of documents. Use theDescribeEntitiesDetectionV2Job operation to track the status of a job.
|
|
| StartICD10CMInferenceJob |
Show DescriptionStarts an asynchronous job to detect medical conditions and link them to the ICD-10-CM ontology. Use theDescribeICD10CMInferenceJob operation to track the status of a job.
|
|
| StartPHIDetectionJob |
Show DescriptionStarts an asynchronous job to detect protected health information (PHI). Use theDescribePHIDetectionJob operation to track the status of a job.
|
|
| StartRxNormInferenceJob |
Show DescriptionStarts an asynchronous job to detect medication entities and link them to the RxNorm ontology. Use theDescribeRxNormInferenceJob operation to track the status of a job.
|
|
| StopEntitiesDetectionV2Job |
Show DescriptionStops a medical entities detection job in progress. |
|
| StopICD10CMInferenceJob |
Show DescriptionStops an InferICD10CM inference job in progress. |
|
| StopPHIDetectionJob |
Show DescriptionStops a protected health information (PHI) detection job in progress. |
Compute-optimizer Events
| Service | Event Name | Description |
|---|---|---|
| compute-optimizer | DescribeRecommendationExportJobs |
Show DescriptionDescribes recommendation export jobs created in the last seven days. Use the ExportAutoScalingGroupRecommendations or ExportEC2InstanceRecommendations actions to request an export of your recommendations. Then use the DescribeRecommendationExportJobs action to view your export jobs. |
| ExportAutoScalingGroupRecommendations |
Show DescriptionExports optimization recommendations for Auto Scaling groups. Recommendations are exported in a comma-separated values (.csv) file, and its metadata in a JavaScript Object Notation (JSON) (.json) file, to an existing Amazon Simple Storage Service (Amazon S3) bucket that you specify. For more information, see Exporting Recommendations in the Compute Optimizer User Guide. You can have only one Auto Scaling group export job in progress per Amazon Web Services Region. |
|
| ExportEBSVolumeRecommendations |
Show DescriptionExports optimization recommendations for Amazon EBS volumes. Recommendations are exported in a comma-separated values (.csv) file, and its metadata in a JavaScript Object Notation (JSON) (.json) file, to an existing Amazon Simple Storage Service (Amazon S3) bucket that you specify. For more information, see Exporting Recommendations in the Compute Optimizer User Guide. You can have only one Amazon EBS volume export job in progress per Amazon Web Services Region. |
|
| ExportEC2InstanceRecommendations |
Show DescriptionExports optimization recommendations for Amazon EC2 instances. Recommendations are exported in a comma-separated values (.csv) file, and its metadata in a JavaScript Object Notation (JSON) (.json) file, to an existing Amazon Simple Storage Service (Amazon S3) bucket that you specify. For more information, see Exporting Recommendations in the Compute Optimizer User Guide. You can have only one Amazon EC2 instance export job in progress per Amazon Web Services Region. |
|
| ExportLambdaFunctionRecommendations |
Show DescriptionExports optimization recommendations for Lambda functions. Recommendations are exported in a comma-separated values (.csv) file, and its metadata in a JavaScript Object Notation (JSON) (.json) file, to an existing Amazon Simple Storage Service (Amazon S3) bucket that you specify. For more information, see Exporting Recommendations in the Compute Optimizer User Guide. You can have only one Lambda function export job in progress per Amazon Web Services Region. |
|
| GetAutoScalingGroupRecommendations |
Show DescriptionReturns Auto Scaling group recommendations. Compute Optimizer generates recommendations for Amazon EC2 Auto Scaling groups that meet a specific set of requirements. For more information, see the Supported resources and requirements in the Compute Optimizer User Guide. |
|
| GetEBSVolumeRecommendations |
Show DescriptionReturns Amazon Elastic Block Store (Amazon EBS) volume recommendations. Compute Optimizer generates recommendations for Amazon EBS volumes that meet a specific set of requirements. For more information, see the Supported resources and requirements in the Compute Optimizer User Guide. |
|
| GetEC2InstanceRecommendations |
Show DescriptionReturns Amazon EC2 instance recommendations. Compute Optimizer generates recommendations for Amazon Elastic Compute Cloud (Amazon EC2) instances that meet a specific set of requirements. For more information, see the Supported resources and requirements in the Compute Optimizer User Guide. |
|
| GetEC2RecommendationProjectedMetrics |
Show DescriptionReturns the projected utilization metrics of Amazon EC2 instance recommendations.Cpu and Memory metrics are the only projected utilization metrics returned when you run this action. Additionally, the Memory metric is returned only for resources that have the unified CloudWatch agent installed on them. For more information, see Enabling Memory Utilization with the CloudWatch Agent. |
|
| GetEnrollmentStatus |
Show DescriptionReturns the enrollment (opt in) status of an account to the Compute Optimizer service. If the account is the management account of an organization, this action also confirms the enrollment status of member accounts of the organization. Use the GetEnrollmentStatusesForOrganization action to get detailed information about the enrollment status of member accounts of an organization. |
|
| GetEnrollmentStatusesForOrganization |
Show DescriptionReturns the Compute Optimizer enrollment (opt-in) status of organization member accounts, if your account is an organization management account. To get the enrollment status of standalone accounts, use the GetEnrollmentStatus action. |
|
| GetLambdaFunctionRecommendations |
Show DescriptionReturns Lambda function recommendations. Compute Optimizer generates recommendations for functions that meet a specific set of requirements. For more information, see the Supported resources and requirements in the Compute Optimizer User Guide. |
|
| GetRecommendationSummaries |
Show DescriptionReturns the optimization findings for an account. It returns the number of:
|
Connect-contact-lens Events
| Service | Event Name | Description |
|---|---|---|
| connect-contact-lens | ListRealtimeContactAnalysisSegments |
Show DescriptionProvides a list of analysis segments for a real-time analysis session. |
Connect Events
| Service | Event Name | Description |
|---|---|---|
| connect | AssociateApprovedOrigin | |
| AssociateBot | ||
| AssociateInstanceStorageConfig |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Associates a storage resource type for the first time. You can only associate one type of storage configuration in a single call. This means, for example, that you can't define an instance with multiple S3 buckets for storing chat transcripts. This API does not create a resource that doesn't exist. It only associates it to the instance. Ensure that the resource being specified in the storage configuration, like an S3 bucket, exists when being used for association. |
|
| AssociateLambdaFunction | ||
| AssociateLexBot | ||
| AssociateQueueQuickConnects | ||
| AssociateRoutingProfileQueues | ||
| AssociateSecurityKey |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Associates a security key to the instance. |
|
| CreateAgentStatus |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Creates an agent status for the specified Amazon Connect instance. |
|
| CreateContactFlow |
Show DescriptionCreates a contact flow for the specified Amazon Connect instance. You can also create and update contact flows using the Amazon Connect Flow language. |
|
| CreateHoursOfOperation |
Show DescriptionCreates hours of operation. |
|
| CreateInstance |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Initiates an Amazon Connect instance with all the supported channels enabled. It does not attach any storage, such as Amazon Simple Storage Service (Amazon S3) or Amazon Kinesis. It also does not allow for any configurations on features, such as Contact Lens for Amazon Connect. Amazon Connect enforces a limit on the total number of instances that you can create or delete in 30 days. If you exceed this limit, you will get an error message indicating there has been an excessive number of attempts at creating or deleting instances. You must wait 30 days before you can restart creating and deleting instances in your account. |
|
| CreateIntegrationAssociation |
Show DescriptionCreates an Amazon Web Services resource association with an Amazon Connect instance. |
|
| CreateQueue |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Creates a new queue for the specified Amazon Connect instance. |
|
| CreateQuickConnect |
Show DescriptionCreates a quick connect for the specified Amazon Connect instance. |
|
| CreateRoutingProfile |
Show DescriptionCreates a new routing profile. |
|
| CreateSecurityProfile |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Creates a security profile. |
|
| CreateUseCase |
Show DescriptionCreates a use case for an integration association. |
|
| CreateUser |
Show DescriptionCreates a user account for the specified Amazon Connect instance. For information about how to create user accounts using the Amazon Connect console, see Add Users in the Amazon Connect Administrator Guide. |
|
| CreateUserHierarchyGroup |
Show DescriptionCreates a new user hierarchy group. |
|
| DeleteHoursOfOperation | ||
| DeleteInstance | ||
| DeleteIntegrationAssociation | ||
| DeleteQuickConnect | ||
| DeleteSecurityProfile | ||
| DeleteUseCase | ||
| DeleteUser | ||
| DeleteUserHierarchyGroup | ||
| DescribeAgentStatus |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Describes an agent status. |
|
| DescribeContactFlow |
Show DescriptionDescribes the specified contact flow. You can also create and update contact flows using the Amazon Connect Flow language. |
|
| DescribeHoursOfOperation |
Show DescriptionDescribes the hours of operation. |
|
| DescribeInstance |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Returns the current state of the specified instance identifier. It tracks the instance while it is being created and returns an error status, if applicable. If an instance is not created successfully, the instance status reason field returns details relevant to the reason. The instance in a failed state is returned only for 24 hours after the CreateInstance API was invoked. |
|
| DescribeInstanceAttribute |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Describes the specified instance attribute. |
|
| DescribeInstanceStorageConfig |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Retrieves the current storage configurations for the specified resource type, association ID, and instance ID. |
|
| DescribeQueue |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Describes the specified queue. |
|
| DescribeQuickConnect |
Show DescriptionDescribes the quick connect. |
|
| DescribeRoutingProfile |
Show DescriptionDescribes the specified routing profile. |
|
| DescribeSecurityProfile |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Gets basic information about the security profle. |
|
| DescribeUser |
Show DescriptionDescribes the specified user account. You can find the instance ID in the console (it’s the final part of the ARN). The console does not display the user IDs. Instead, list the users and note the IDs provided in the output. |
|
| DescribeUserHierarchyGroup |
Show DescriptionDescribes the specified hierarchy group. |
|
| DescribeUserHierarchyStructure |
Show DescriptionDescribes the hierarchy structure of the specified Amazon Connect instance. |
|
| DisassociateApprovedOrigin | ||
| DisassociateBot | ||
| DisassociateInstanceStorageConfig | ||
| DisassociateLambdaFunction | ||
| DisassociateLexBot | ||
| DisassociateQueueQuickConnects | ||
| DisassociateRoutingProfileQueues | ||
| DisassociateSecurityKey | ||
| GetContactAttributes |
Show DescriptionRetrieves the contact attributes for the specified contact. |
|
| GetCurrentMetricData |
Show DescriptionGets the real-time metric data from the specified Amazon Connect instance. For a description of each metric, see Real-time Metrics Definitions in the Amazon Connect Administrator Guide. |
|
| GetFederationToken |
Show DescriptionRetrieves a token for federation.Provided identity: Principal: .... User: .... cannot be used for federation with Amazon Connect |
|
| GetMetricData |
Show DescriptionGets historical metric data from the specified Amazon Connect instance. For a description of each historical metric, see Historical Metrics Definitions in the Amazon Connect Administrator Guide. |
|
| ListAgentStatuses |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Lists agent statuses. |
|
| ListApprovedOrigins |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Returns a paginated list of all approved origins associated with the instance. |
|
| ListBots |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. For the specified version of Amazon Lex, returns a paginated list of all the Amazon Lex bots currently associated with the instance. |
|
| ListContactFlows |
Show DescriptionProvides information about the contact flows for the specified Amazon Connect instance. You can also create and update contact flows using the Amazon Connect Flow language. For more information about contact flows, see Contact Flows in the Amazon Connect Administrator Guide. |
|
| ListHoursOfOperations |
Show DescriptionProvides information about the hours of operation for the specified Amazon Connect instance. For more information about hours of operation, see Set the Hours of Operation for a Queue in the Amazon Connect Administrator Guide. |
|
| ListInstanceAttributes |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Returns a paginated list of all attribute types for the given instance. |
|
| ListInstanceStorageConfigs |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Returns a paginated list of storage configs for the identified instance and resource type. |
|
| ListInstances |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Return a list of instances which are in active state, creation-in-progress state, and failed state. Instances that aren't successfully created (they are in a failed state) are returned only for 24 hours after the CreateInstance API was invoked. |
|
| ListIntegrationAssociations |
Show DescriptionProvides summary information about the Amazon Web Services resource associations for the specified Amazon Connect instance. |
|
| ListLambdaFunctions |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Returns a paginated list of all Lambda functions that display in the dropdown options in the relevant contact flow blocks. |
|
| ListLexBots |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Returns a paginated list of all the Amazon Lex bots currently associated with the instance. |
|
| ListPhoneNumbers |
Show DescriptionProvides information about the phone numbers for the specified Amazon Connect instance. For more information about phone numbers, see Set Up Phone Numbers for Your Contact Center in the Amazon Connect Administrator Guide. |
|
| ListPrompts |
Show DescriptionProvides information about the prompts for the specified Amazon Connect instance. |
|
| ListQueueQuickConnects |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Lists the quick connects associated with a queue. |
|
| ListQueues |
Show DescriptionProvides information about the queues for the specified Amazon Connect instance. If you do not specify aQueueTypes parameter, both standard and agent queues are returned. This might cause an unexpected truncation of results if you have more than 1000 agents and you limit the number of results of the API call in code. For more information about queues, see Queues: Standard and Agent in the Amazon Connect Administrator Guide.
|
|
| ListQuickConnects |
Show DescriptionProvides information about the quick connects for the specified Amazon Connect instance. |
|
| ListRoutingProfileQueues |
Show DescriptionLists the queues associated with a routing profile. |
|
| ListRoutingProfiles |
Show DescriptionProvides summary information about the routing profiles for the specified Amazon Connect instance. For more information about routing profiles, see Routing Profiles and Create a Routing Profile in the Amazon Connect Administrator Guide. |
|
| ListSecurityKeys |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Returns a paginated list of all security keys associated with the instance. |
|
| ListSecurityProfilePermissions |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Lists the permissions granted to a security profile. |
|
| ListSecurityProfiles |
Show DescriptionThis API is in preview release for Amazon Connect and is subject to change. Provides summary information about the security profiles for the specified Amazon Connect instance. For more information about security profiles, see Security Profiles in the Amazon Connect Administrator Guide. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified resource. For sample policies that use tags, see Amazon Connect Identity-Based Policy Examples in the Amazon Connect Administrator Guide. |
|
| ListUseCases |
Show DescriptionLists the use cases for the integration association. |
|
| ListUserHierarchyGroups |
Show DescriptionProvides summary information about the hierarchy groups for the specified Amazon Connect instance. For more information about agent hierarchies, see Set Up Agent Hierarchies in the Amazon Connect Administrator Guide. |
|
| ListUsers |
Show DescriptionProvides summary information about the users for the specified Amazon Connect instance. |
|
| ResumeContactRecording |
Show DescriptionWhen a contact is being recorded, and the recording has been suspended using SuspendContactRecording, this API resumes recording the call. Only voice recordings are supported at this time. |
|
| StartChatContact |
Show DescriptionInitiates a contact flow to start a new chat for the customer. Response of this API provides a token required to obtain credentials from the CreateParticipantConnection API in the Amazon Connect Participant Service. When a new chat contact is successfully created, clients must subscribe to the participant’s connection for the created chat within 5 minutes. This is achieved by invoking CreateParticipantConnection with WEBSOCKET and CONNECTION_CREDENTIALS. A 429 error occurs in two situations:
|
|
| StartContactRecording |
Show DescriptionStarts recording the contact when the agent joins the call. StartContactRecording is a one-time action. For example, if you use StopContactRecording to stop recording an ongoing call, you can't use StartContactRecording to restart it. For scenarios where the recording has started and you want to suspend and resume it, such as when collecting sensitive information (for example, a credit card number), use SuspendContactRecording and ResumeContactRecording. You can use this API to override the recording behavior configured in the Set recording behavior block. Only voice recordings are supported at this time. |
|
| StartContactStreaming |
Show DescriptionInitiates real-time message streaming for a new chat contact. For more information about message streaming, see Enable real-time chat message streaming in the Amazon Connect Administrator Guide. |
|
| StartOutboundVoiceContact |
Show DescriptionPlaces an outbound call to a contact, and then initiates the contact flow. It performs the actions in the contact flow that's specified (inContactFlowId). Agents do not initiate the outbound API, which means that they do not dial the contact. If the contact flow places an outbound call to a contact, and then puts the contact in queue, the call is then routed to the agent, like any other inbound case. There is a 60-second dialing timeout for this operation. If the call is not connected after 60 seconds, it fails. TrafficType = CAMPAIGN, you must submit a service quota increase request. For more information, see Amazon Connect Service Quotas in the Amazon Connect Administrator Guide. |
|
| StartTaskContact |
Show DescriptionInitiates a contact flow to start a new task. |
|
| StopContact |
Show DescriptionEnds the specified contact. |
|
| StopContactRecording |
Show DescriptionStops recording a call when a contact is being recorded. StopContactRecording is a one-time action. If you use StopContactRecording to stop recording an ongoing call, you can't use StartContactRecording to restart it. For scenarios where the recording has started and you want to suspend it for sensitive information (for example, to collect a credit card number), and then restart it, use SuspendContactRecording and ResumeContactRecording. Only voice recordings are supported at this time. |
|
| StopContactStreaming |
Show DescriptionEnds message streaming on a specified contact. To restart message streaming on that contact, call the StartContactStreaming API. |
|
| SuspendContactRecording |
Show DescriptionWhen a contact is being recorded, this API suspends recording the call. For example, you might suspend the call recording while collecting sensitive information, such as a credit card number. Then use ResumeContactRecording to restart recording. The period of time that the recording is suspended is filled with silence in the final recording. Only voice recordings are supported at this time. |
|
| TagResource | ||
| UntagResource | ||
| UpdateAgentStatus | ||
| UpdateContactAttributes |
Show DescriptionCreates or updates user-defined contact attributes associated with the specified contact. You can create or update user-defined attributes for both ongoing and completed contacts. For example, while the call is active, you can update the customer's name or the reason the customer called. You can add notes about steps that the agent took during the call that display to the next agent that takes the call. You can also update attributes for a contact using data from your CRM application and save the data with the contact in Amazon Connect. You could also flag calls for additional analysis, such as legal review or to identify abusive callers. Contact attributes are available in Amazon Connect for 24 months, and are then deleted. For information about CTR retention and the maximum size of the CTR attributes section, see Feature specifications in the Amazon Connect Administrator Guide. Important: You cannot use the operation to update attributes for contacts that occurred prior to the release of the API, which was September 12, 2018. You can update attributes only for contacts that started after the release of the API. If you attempt to update attributes for a contact that occurred prior to the release of the API, a 400 error is returned. This applies also to queued callbacks that were initiated prior to the release of the API but are still active in your instance. |
|
| UpdateContactFlowContent | ||
| UpdateContactFlowName | ||
| UpdateHoursOfOperation | ||
| UpdateInstanceAttribute | ||
| UpdateInstanceStorageConfig | ||
| UpdateQueueHoursOfOperation | ||
| UpdateQueueMaxContacts | ||
| UpdateQueueName | ||
| UpdateQueueOutboundCallerConfig | ||
| UpdateQueueStatus | ||
| UpdateQuickConnectConfig | ||
| UpdateQuickConnectName | ||
| UpdateRoutingProfileConcurrency | ||
| UpdateRoutingProfileDefaultOutboundQueue | ||
| UpdateRoutingProfileName | ||
| UpdateRoutingProfileQueues | ||
| UpdateSecurityProfile | ||
| UpdateUserHierarchy | ||
| UpdateUserHierarchyGroupName | ||
| UpdateUserHierarchyStructure | ||
| UpdateUserIdentityInfo | ||
| UpdateUserPhoneConfig | ||
| UpdateUserRoutingProfile |
Connectparticipant Events
| Service | Event Name | Description |
|---|---|---|
| connectparticipant | CompleteAttachmentUpload |
Show DescriptionAllows you to confirm that the attachment has been uploaded using the pre-signed URL provided in StartAttachmentUpload API. The Amazon Connect Participant Service APIs do not use Signature Version 4 authentication. |
| CreateParticipantConnection |
Show DescriptionCreates the participant's connection. Note that ParticipantToken is used for invoking this API instead of ConnectionToken. The participant token is valid for the lifetime of the participant – until they are part of a contact. The response URL forWEBSOCKET Type has a connect expiry timeout of 100s. Clients must manually connect to the returned websocket URL and subscribe to the desired topic. For chat, you need to publish the following on the established websocket connection: {"topic":"aws/subscribe","content":{"topics":["aws/chat"]}} Upon websocket URL expiry, as specified in the response ConnectionExpiry parameter, clients need to call this API again to obtain a new websocket URL and perform the same steps as before. Message streaming support: This API can also be used together with the StartContactStreaming API to create a participant connection for chat contacts that are not using a websocket. For more information about message streaming, Enable real-time chat message streaming in the Amazon Connect Administrator Guide. Feature specifications: For information about feature specifications, such as the allowed number of open websocket connections per participant, see Feature specifications in the Amazon Connect Administrator Guide. |
|
| DisconnectParticipant |
Show DescriptionDisconnects a participant. Note that ConnectionToken is used for invoking this API instead of ParticipantToken. The Amazon Connect Participant Service APIs do not use Signature Version 4 authentication. |
|
| GetAttachment |
Show DescriptionProvides a pre-signed URL for download of a completed attachment. This is an asynchronous API for use with active contacts. The Amazon Connect Participant Service APIs do not use Signature Version 4 authentication. |
|
| GetTranscript |
Show DescriptionRetrieves a transcript of the session, including details about any attachments. Note that ConnectionToken is used for invoking this API instead of ParticipantToken. The Amazon Connect Participant Service APIs do not use Signature Version 4 authentication. |
|
| SendEvent |
Show DescriptionSends an event. Note that ConnectionToken is used for invoking this API instead of ParticipantToken. The Amazon Connect Participant Service APIs do not use Signature Version 4 authentication. |
|
| SendMessage |
Show DescriptionSends a message. Note that ConnectionToken is used for invoking this API instead of ParticipantToken. The Amazon Connect Participant Service APIs do not use Signature Version 4 authentication. |
Cur Events
| Service | Event Name | Description |
|---|---|---|
| cur | DeleteReportDefinition |
Show DescriptionDeletes the specified report. |
| DescribeReportDefinitions |
Show DescriptionLists the AWS Cost and Usage reports available to this account. |
|
| ModifyReportDefinition |
Show DescriptionAllows you to programatically update your report preferences. |
Databrew Events
| Service | Event Name | Description |
|---|---|---|
| databrew | BatchDeleteRecipeVersion |
Show DescriptionDeletes one or more versions of a recipe at a time. The entire request will be rejected if:
LATEST_WORKING version will only be deleted if the recipe has no other versions. If you try to delete LATEST_WORKING while other versions exist (or if they can't be deleted), then LATEST_WORKING will be listed as partial failure in the response.
|
| CreateDataset |
Show DescriptionCreates a new DataBrew dataset. |
|
| CreateProfileJob |
Show DescriptionCreates a new job to analyze a dataset and create its data profile. |
|
| CreateProject |
Show DescriptionCreates a new DataBrew project. |
|
| CreateRecipe |
Show DescriptionCreates a new DataBrew recipe. |
|
| CreateRecipeJob |
Show DescriptionCreates a new job to transform input data, using steps defined in an existing Glue DataBrew recipe |
|
| CreateSchedule |
Show DescriptionCreates a new schedule for one or more DataBrew jobs. Jobs can be run at a specific date and time, or at regular intervals. |
|
| DeleteDataset |
Show DescriptionDeletes a dataset from DataBrew. |
|
| DeleteJob |
Show DescriptionDeletes the specified DataBrew job. |
|
| DeleteProject |
Show DescriptionDeletes an existing DataBrew project. |
|
| DeleteRecipeVersion |
Show DescriptionDeletes a single version of a DataBrew recipe. |
|
| DeleteSchedule |
Show DescriptionDeletes the specified DataBrew schedule. |
|
| DescribeDataset |
Show DescriptionReturns the definition of a specific DataBrew dataset. |
|
| DescribeJob |
Show DescriptionReturns the definition of a specific DataBrew job. |
|
| DescribeJobRun |
Show DescriptionRepresents one run of a DataBrew job. |
|
| DescribeProject |
Show DescriptionReturns the definition of a specific DataBrew project. |
|
| DescribeRecipe |
Show DescriptionReturns the definition of a specific DataBrew recipe corresponding to a particular version. |
|
| DescribeSchedule |
Show DescriptionReturns the definition of a specific DataBrew schedule. |
|
| ListDatasets |
Show DescriptionLists all of the DataBrew datasets. |
|
| ListJobRuns |
Show DescriptionLists all of the previous runs of a particular DataBrew job. |
|
| ListJobs |
Show DescriptionLists all of the DataBrew jobs that are defined. |
|
| ListProjects |
Show DescriptionLists all of the DataBrew projects that are defined. |
|
| ListRecipeVersions |
Show DescriptionLists the versions of a particular DataBrew recipe, except forLATEST_WORKING.
|
|
| ListRecipes |
Show DescriptionLists all of the DataBrew recipes that are defined. |
|
| ListSchedules |
Show DescriptionLists the DataBrew schedules that are defined. |
|
| ListTagsForResource |
Show DescriptionLists all the tags for a DataBrew resource. |
|
| PublishRecipe |
Show DescriptionPublishes a new version of a DataBrew recipe. |
|
| SendProjectSessionAction |
Show DescriptionPerforms a recipe step within an interactive DataBrew session that's currently open. |
|
| StartJobRun |
Show DescriptionRuns a DataBrew job. |
|
| StartProjectSession |
Show DescriptionCreates an interactive session, enabling you to manipulate data in a DataBrew project. |
|
| StopJobRun |
Show DescriptionStops a particular run of a job. |
|
| TagResource |
Show DescriptionAdds metadata tags to a DataBrew resource, such as a dataset, project, recipe, job, or schedule. |
|
| UntagResource |
Show DescriptionRemoves metadata tags from a DataBrew resource. |
|
| UpdateDataset |
Show DescriptionModifies the definition of an existing DataBrew dataset. |
|
| UpdateProfileJob |
Show DescriptionModifies the definition of an existing profile job. |
|
| UpdateProject |
Show DescriptionModifies the definition of an existing DataBrew project. |
|
| UpdateRecipe |
Show DescriptionModifies the definition of theLATEST_WORKING version of a DataBrew recipe.
|
|
| UpdateRecipeJob |
Show DescriptionModifies the definition of an existing DataBrew recipe job. |
Dataexchange Events
| Service | Event Name | Description |
|---|---|---|
| dataexchange | CancelJob | |
| CreateDataSet |
Show DescriptionThis operation creates a data set. |
|
| CreateEventAction |
Show DescriptionThis operation creates an event action. |
|
| CreateJob |
Show DescriptionThis operation creates a job. |
|
| CreateRevision |
Show DescriptionThis operation creates a revision for a data set. |
|
| DeleteAsset | ||
| DeleteDataSet | ||
| DeleteEventAction | ||
| DeleteRevision | ||
| GetAsset |
Show DescriptionThis operation returns information about an asset. |
|
| GetDataSet |
Show DescriptionThis operation returns information about a data set. |
|
| GetEventAction |
Show DescriptionThis operation retrieves information about an event action. |
|
| GetJob |
Show DescriptionThis operation returns information about a job. |
|
| GetRevision |
Show DescriptionThis operation returns information about a revision. |
|
| ListDataSetRevisions |
Show DescriptionThis operation lists a data set's revisions sorted by CreatedAt in descending order. |
|
| ListDataSets |
Show DescriptionThis operation lists your data sets. When listing by origin OWNED, results are sorted by CreatedAt in descending order. When listing by origin ENTITLED, there is no order and the maxResults parameter is ignored. |
|
| ListEventActions |
Show DescriptionThis operation lists your event actions. |
|
| ListJobs |
Show DescriptionThis operation lists your jobs sorted by CreatedAt in descending order. |
|
| ListRevisionAssets |
Show DescriptionThis operation lists a revision's assets sorted alphabetically in descending order. |
|
| ListTagsForResource |
Show DescriptionThis operation lists the tags on the resource. |
|
| StartJob |
Show DescriptionThis operation starts a job. |
|
| TagResource | ||
| UntagResource | ||
| UpdateAsset |
Show DescriptionThis operation updates an asset. |
|
| UpdateDataSet |
Show DescriptionThis operation updates a data set. |
|
| UpdateEventAction |
Show DescriptionThis operation updates the event action. |
Datapipeline Events
| Service | Event Name | Description |
|---|---|---|
| datapipeline | ActivatePipeline |
Show DescriptionValidates the specified pipeline and starts processing pipeline tasks. If the pipeline does not pass validation, activation fails. If you need to pause the pipeline to investigate an issue with a component, such as a data source or script, call DeactivatePipeline. To activate a finished pipeline, modify the end date for the pipeline and then activate it. |
| AddTags |
Show DescriptionAdds or modifies tags for the specified pipeline. |
|
| CreatePipeline |
Show DescriptionCreates a new, empty pipeline. Use PutPipelineDefinition to populate the pipeline. |
|
| DeactivatePipeline |
Show DescriptionDeactivates the specified running pipeline. The pipeline is set to theDEACTIVATING state until the deactivation process completes. To resume a deactivated pipeline, use ActivatePipeline. By default, the pipeline resumes from the last completed execution. Optionally, you can specify the date and time to resume the pipeline.
|
|
| DeletePipeline | ||
| DescribeObjects |
Show DescriptionGets the object definitions for a set of objects associated with the pipeline. Object definitions are composed of a set of fields that define the properties of the object. |
|
| DescribePipelines |
Show DescriptionRetrieves metadata about one or more pipelines. The information retrieved includes the name of the pipeline, the pipeline identifier, its current state, and the user account that owns the pipeline. Using account credentials, you can retrieve metadata about pipelines that you or your IAM users have created. If you are using an IAM user account, you can retrieve metadata about only those pipelines for which you have read permissions. To retrieve the full pipeline definition instead of metadata about the pipeline, call GetPipelineDefinition. |
|
| EvaluateExpression |
Show DescriptionTask runners callEvaluateExpression to evaluate a string in the context of the specified object. For example, a task runner can evaluate SQL queries stored in Amazon S3.
|
|
| GetPipelineDefinition |
Show DescriptionGets the definition of the specified pipeline. You can callGetPipelineDefinition to retrieve the pipeline definition that you provided using PutPipelineDefinition.
|
|
| ListPipelines |
Show DescriptionLists the pipeline identifiers for all active pipelines that you have permission to access. |
|
| PollForTask |
Show DescriptionTask runners callPollForTask to receive a task to perform from AWS Data Pipeline. The task runner specifies which tasks it can perform by setting a value for the workerGroup parameter. The task returned can come from any of the pipelines that match the workerGroup value passed in by the task runner and that was launched using the IAM user credentials specified by the task runner. If tasks are ready in the work queue, PollForTask returns a response immediately. If no tasks are available in the queue, PollForTask uses long-polling and holds on to a poll connection for up to a 90 seconds, during which time the first newly scheduled task is handed to the task runner. To accomodate this, set the socket timeout in your task runner to 90 seconds. The task runner should not call PollForTask again on the same workerGroup until it receives a response, and this can take up to 90 seconds.
|
|
| PutPipelineDefinition |
Show DescriptionAdds tasks, schedules, and preconditions to the specified pipeline. You can usePutPipelineDefinition to populate a new pipeline. PutPipelineDefinition also validates the configuration as it adds it to the pipeline. Changes to the pipeline are saved unless one of the following three validation errors exists in the pipeline.
PutPipelineDefinition action and returned by the GetPipelineDefinition action.
|
|
| QueryObjects |
Show DescriptionQueries the specified pipeline for the names of objects that match the specified set of conditions. |
|
| RemoveTags |
Show DescriptionRemoves existing tags from the specified pipeline. |
|
| ReportTaskProgress |
Show DescriptionTask runners callReportTaskProgress when assigned a task to acknowledge that it has the task. If the web service does not receive this acknowledgement within 2 minutes, it assigns the task in a subsequent PollForTask call. After this initial acknowledgement, the task runner only needs to report progress every 15 minutes to maintain its ownership of the task. You can change this reporting time from 15 minutes by specifying a reportProgressTimeout field in your pipeline. If a task runner does not report its status after 5 minutes, AWS Data Pipeline assumes that the task runner is unable to process the task and reassigns the task in a subsequent response to PollForTask. Task runners should call ReportTaskProgress every 60 seconds.
|
|
| ReportTaskRunnerHeartbeat |
Show DescriptionTask runners callReportTaskRunnerHeartbeat every 15 minutes to indicate that they are operational. If the AWS Data Pipeline Task Runner is launched on a resource managed by AWS Data Pipeline, the web service can use this call to detect when the task runner application has failed and restart a new instance.
|
|
| SetStatus | ||
| SetTaskStatus |
Show DescriptionTask runners callSetTaskStatus to notify AWS Data Pipeline that a task is completed and provide information about the final status. A task runner makes this call regardless of whether the task was sucessful. A task runner does not need to call SetTaskStatus for tasks that are canceled by the web service during a call to ReportTaskProgress.
|
Datasync Events
| Service | Event Name | Description |
|---|---|---|
| datasync | CancelTaskExecution |
Show DescriptionCancels execution of a task. When you cancel a task execution, the transfer of some files is abruptly interrupted. The contents of files that are transferred to the destination might be incomplete or inconsistent with the source files. However, if you start a new task execution on the same task and you allow the task execution to complete, file content on the destination is complete and consistent. This applies to other unexpected failures that interrupt a task execution. In all of these cases, DataSync successfully complete the transfer when you start the next task execution. |
| CreateAgent |
Show DescriptionActivates an DataSync agent that you have deployed on your host. The activation process associates your agent with your account. In the activation process, you specify information such as the Amazon Web Services Region that you want to activate the agent in. You activate the agent in the Amazon Web Services Region where your target locations (in Amazon S3 or Amazon EFS) reside. Your tasks are created in this Amazon Web Services Region. You can activate the agent in a VPC (virtual private cloud) or provide the agent access to a VPC endpoint so you can run tasks without going over the public internet. You can use an agent for more than one location. If a task uses multiple agents, all of them need to have status AVAILABLE for the task to run. If you use multiple agents for a source location, the status of all the agents must be AVAILABLE for the task to run. Agents are automatically updated by Amazon Web Services on a regular basis, using a mechanism that ensures minimal interruption to your tasks. |
|
| CreateLocationEfs |
Show DescriptionCreates an endpoint for an Amazon EFS file system. |
|
| CreateLocationFsxWindows |
Show DescriptionCreates an endpoint for an Amazon FSx for Windows File Server file system. |
|
| CreateLocationHdfs |
Show DescriptionCreates an endpoint for a Hadoop Distributed File System (HDFS). |
|
| CreateLocationNfs |
Show DescriptionDefines a file system on a Network File System (NFS) server that can be read from or written to. |
|
| CreateLocationObjectStorage |
Show DescriptionCreates an endpoint for a self-managed object storage bucket. For more information about self-managed object storage locations, see Creating a location for object storage. |
|
| CreateLocationS3 |
Show DescriptionCreates an endpoint for an Amazon S3 bucket. For more information, see Create an Amazon S3 location in the DataSync User Guide. |
|
| CreateLocationSmb |
Show DescriptionDefines a file system on a Server Message Block (SMB) server that can be read from or written to. |
|
| CreateTask |
Show DescriptionCreates a task. A task includes a source location and a destination location, and a configuration that specifies how data is transferred. A task always transfers data from the source location to the destination location. The configuration specifies options such as task scheduling, bandwidth limits, etc. A task is the complete definition of a data transfer. When you create a task that transfers data between Amazon Web Services services in different Amazon Web Services Regions, one of the two locations that you specify must reside in the Region where DataSync is being used. The other location must be specified in a different Region. You can transfer data between commercial Amazon Web Services Regions except for China, or between Amazon Web Services GovCloud (US) Regions. |
|
| DeleteAgent |
Show DescriptionDeletes an agent. To specify which agent to delete, use the Amazon Resource Name (ARN) of the agent in your request. The operation disassociates the agent from your Amazon Web Services account. However, it doesn't delete the agent virtual machine (VM) from your on-premises environment. |
|
| DeleteLocation |
Show DescriptionDeletes the configuration of a location used by DataSync. |
|
| DeleteTask |
Show DescriptionDeletes a task. |
|
| DescribeAgent |
Show DescriptionReturns metadata such as the name, the network interfaces, and the status (that is, whether the agent is running or not) for an agent. To specify which agent to describe, use the Amazon Resource Name (ARN) of the agent in your request. |
|
| DescribeLocationEfs |
Show DescriptionReturns metadata, such as the path information about an Amazon EFS location. |
|
| DescribeLocationFsxWindows |
Show DescriptionReturns metadata, such as the path information about an Amazon FSx for Windows File Server location. |
|
| DescribeLocationHdfs |
Show DescriptionReturns metadata, such as the authentication information about the Hadoop Distributed File System (HDFS) location. |
|
| DescribeLocationNfs |
Show DescriptionReturns metadata, such as the path information, about an NFS location. |
|
| DescribeLocationObjectStorage |
Show DescriptionReturns metadata about a self-managed object storage server location. For more information about self-managed object storage locations, see Creating a location for object storage. |
|
| DescribeLocationS3 |
Show DescriptionReturns metadata, such as bucket name, about an Amazon S3 bucket location. |
|
| DescribeLocationSmb |
Show DescriptionReturns metadata, such as the path and user information about an SMB location. |
|
| DescribeTask |
Show DescriptionReturns metadata about a task. |
|
| DescribeTaskExecution |
Show DescriptionReturns detailed metadata about a task that is being executed. |
|
| ListAgents |
Show DescriptionReturns a list of agents owned by an Amazon Web Services account in the Amazon Web Services Region specified in the request. The returned list is ordered by agent Amazon Resource Name (ARN). By default, this operation returns a maximum of 100 agents. This operation supports pagination that enables you to optionally reduce the number of agents returned in a response. If you have more agents than are returned in a response (that is, the response returns only a truncated list of your agents), the response contains a marker that you can specify in your next request to fetch the next page of agents. |
|
| ListLocations |
Show DescriptionReturns a list of source and destination locations. If you have more locations than are returned in a response (that is, the response returns only a truncated list of your agents), the response contains a token that you can specify in your next request to fetch the next page of locations. |
|
| ListTagsForResource |
Show DescriptionReturns all the tags associated with a specified resource. |
|
| ListTaskExecutions |
Show DescriptionReturns a list of executed tasks. |
|
| ListTasks |
Show DescriptionReturns a list of all the tasks. |
|
| StartTaskExecution |
Show DescriptionStarts a specific invocation of a task. ATaskExecution value represents an individual run of a task. Each task can have at most one TaskExecution at a time. TaskExecution has the following transition phases: INITIALIZING
|
|
| TagResource |
Show DescriptionApplies a key-value pair to an Amazon Web Services resource. |
|
| UntagResource |
Show DescriptionRemoves a tag from an Amazon Web Services resource. |
|
| UpdateAgent |
Show DescriptionUpdates the name of an agent. |
|
| UpdateLocationHdfs |
Show DescriptionUpdates some parameters of a previously created location for a Hadoop Distributed File System cluster. |
|
| UpdateLocationNfs |
Show DescriptionUpdates some of the parameters of a previously created location for Network File System (NFS) access. For information about creating an NFS location, see Creating a location for NFS. |
|
| UpdateLocationObjectStorage |
Show DescriptionUpdates some of the parameters of a previously created location for self-managed object storage server access. For information about creating a self-managed object storage location, see Creating a location for object storage. |
|
| UpdateLocationSmb |
Show DescriptionUpdates some of the parameters of a previously created location for Server Message Block (SMB) file system access. For information about creating an SMB location, see Creating a location for SMB. |
|
| UpdateTask |
Show DescriptionUpdates the metadata associated with a task. |
Detective Events
| Service | Event Name | Description |
|---|---|---|
| detective | AcceptInvitation | |
| CreateGraph |
Show DescriptionCreates a new behavior graph for the calling account, and sets that account as the administrator account. This operation is called by the account that is enabling Detective. Before you try to enable Detective, make sure that your account has been enrolled in Amazon GuardDuty for at least 48 hours. If you do not meet this requirement, you cannot enable Detective. If you do meet the GuardDuty prerequisite, then when you make the request to enable Detective, it checks whether your data volume is within the Detective quota. If it exceeds the quota, then you cannot enable Detective. The operation also enables Detective for the calling account in the currently selected Region. It returns the ARN of the new behavior graph.CreateGraph triggers a process to create the corresponding data tables for the new behavior graph. An account can only be the administrator account for one behavior graph within a Region. If the same account calls CreateGraph with the same administrator account, it always returns the same behavior graph ARN. It does not create a new behavior graph.
|
|
| CreateMembers |
Show DescriptionSends a request to invite the specified AWS accounts to be member accounts in the behavior graph. This operation can only be called by the administrator account for a behavior graph.CreateMembers verifies the accounts and then invites the verified accounts. The administrator can optionally specify to not send invitation emails to the member accounts. This would be used when the administrator manages their member accounts centrally. The request provides the behavior graph ARN and the list of accounts to invite. The response separates the requested accounts into two lists:
|
|
| DeleteGraph | ||
| DeleteMembers |
Show DescriptionDeletes one or more member accounts from the administrator account's behavior graph. This operation can only be called by a Detective administrator account. That account cannot useDeleteMembers to delete their own account from the behavior graph. To disable a behavior graph, the administrator account uses the DeleteGraph API method.
|
|
| DisassociateMembership | ||
| GetMembers |
Show DescriptionReturns the membership details for specified member accounts for a behavior graph. |
|
| ListGraphs |
Show DescriptionReturns the list of behavior graphs that the calling account is an administrator account of. This operation can only be called by an administrator account. Because an account can currently only be the administrator of one behavior graph within a Region, the results always contain a single behavior graph. |
|
| ListInvitations |
Show DescriptionRetrieves the list of open and accepted behavior graph invitations for the member account. This operation can only be called by a member account. Open invitations are invitations that the member account has not responded to. The results do not include behavior graphs for which the member account declined the invitation. The results also do not include behavior graphs that the member account resigned from or was removed from. |
|
| ListMembers |
Show DescriptionRetrieves the list of member accounts for a behavior graph. Does not return member accounts that were removed from the behavior graph. |
|
| ListTagsForResource |
Show DescriptionReturns the tag values that are assigned to a behavior graph. |
|
| RejectInvitation | ||
| StartMonitoringMember | ||
| TagResource |
Show DescriptionApplies tag values to a behavior graph. |
Devicefarm Events
| Service | Event Name | Description |
|---|---|---|
| devicefarm | CreateDevicePool |
Show DescriptionCreates a device pool. |
| CreateInstanceProfile |
Show DescriptionCreates a profile that can be applied to one or more private fleet device instances. |
|
| CreateNetworkProfile |
Show DescriptionCreates a network profile. |
|
| CreateProject |
Show DescriptionCreates a project. |
|
| CreateRemoteAccessSession |
Show DescriptionSpecifies and starts a remote access session. |
|
| CreateTestGridProject |
Show DescriptionCreates a Selenium testing project. Projects are used to track TestGridSession instances. |
|
| CreateTestGridUrl |
Show DescriptionCreates a signed, short-term URL that can be passed to a SeleniumRemoteWebDriver constructor.
|
|
| CreateUpload |
Show DescriptionUploads an app or test scripts. |
|
| CreateVPCEConfiguration |
Show DescriptionCreates a configuration record in Device Farm for your Amazon Virtual Private Cloud (VPC) endpoint. |
|
| DeleteDevicePool |
Show DescriptionDeletes a device pool given the pool ARN. Does not allow deletion of curated pools owned by the system. |
|
| DeleteInstanceProfile |
Show DescriptionDeletes a profile that can be applied to one or more private device instances. |
|
| DeleteNetworkProfile |
Show DescriptionDeletes a network profile. |
|
| DeleteProject |
Show DescriptionDeletes an AWS Device Farm project, given the project ARN. Deleting this resource does not stop an in-progress run. |
|
| DeleteRemoteAccessSession |
Show DescriptionDeletes a completed remote access session and its results. |
|
| DeleteRun |
Show DescriptionDeletes the run, given the run ARN. Deleting this resource does not stop an in-progress run. |
|
| DeleteTestGridProject |
Show DescriptionDeletes a Selenium testing project and all content generated under it. |
|
| DeleteUpload |
Show DescriptionDeletes an upload given the upload ARN. |
|
| DeleteVPCEConfiguration |
Show DescriptionDeletes a configuration for your Amazon Virtual Private Cloud (VPC) endpoint. |
|
| GetAccountSettings |
Show DescriptionReturns the number of unmetered iOS or unmetered Android devices that have been purchased by the account. |
|
| GetDevice |
Show DescriptionGets information about a unique device type. |
|
| GetDeviceInstance |
Show DescriptionReturns information about a device instance that belongs to a private device fleet. |
|
| GetDevicePool |
Show DescriptionGets information about a device pool. |
|
| GetDevicePoolCompatibility |
Show DescriptionGets information about compatibility with a device pool. |
|
| GetInstanceProfile |
Show DescriptionReturns information about the specified instance profile. |
|
| GetJob |
Show DescriptionGets information about a job. |
|
| GetNetworkProfile |
Show DescriptionReturns information about a network profile. |
|
| GetOfferingStatus |
Show DescriptionGets the current status and future status of all offerings purchased by an AWS account. The response indicates how many offerings are currently available and the offerings that will be available in the next period. The API returns aNotEligible error if the user is not permitted to invoke the operation. If you must be able to invoke this operation, contact aws-devicefarm-support@amazon.com.
|
|
| GetProject |
Show DescriptionGets information about a project. |
|
| GetRemoteAccessSession |
Show DescriptionReturns a link to a currently running remote access session. |
|
| GetRun |
Show DescriptionGets information about a run. |
|
| GetSuite |
Show DescriptionGets information about a suite. |
|
| GetTest |
Show DescriptionGets information about a test. |
|
| GetTestGridProject |
Show DescriptionRetrieves information about a Selenium testing project. |
|
| GetTestGridSession |
Show DescriptionA session is an instance of a browser created through aRemoteWebDriver with the URL from CreateTestGridUrlResult$url. You can use the following to look up sessions:
|
|
| GetUpload |
Show DescriptionGets information about an upload. |
|
| GetVPCEConfiguration |
Show DescriptionReturns information about the configuration settings for your Amazon Virtual Private Cloud (VPC) endpoint. |
|
| InstallToRemoteAccessSession |
Show DescriptionInstalls an application to the device in a remote access session. For Android applications, the file must be in .apk format. For iOS applications, the file must be in .ipa format. |
|
| ListArtifacts |
Show DescriptionGets information about artifacts. |
|
| ListDeviceInstances |
Show DescriptionReturns information about the private device instances associated with one or more AWS accounts. |
|
| ListDevicePools |
Show DescriptionGets information about device pools. |
|
| ListDevices |
Show DescriptionGets information about unique device types. |
|
| ListInstanceProfiles |
Show DescriptionReturns information about all the instance profiles in an AWS account. |
|
| ListJobs |
Show DescriptionGets information about jobs for a given test run. |
|
| ListNetworkProfiles |
Show DescriptionReturns the list of available network profiles. |
|
| ListOfferingPromotions |
Show DescriptionReturns a list of offering promotions. Each offering promotion record contains the ID and description of the promotion. The API returns aNotEligible error if the caller is not permitted to invoke the operation. Contact aws-devicefarm-support@amazon.com if you must be able to invoke this operation.
|
|
| ListOfferingTransactions |
Show DescriptionReturns a list of all historical purchases, renewals, and system renewal transactions for an AWS account. The list is paginated and ordered by a descending timestamp (most recent transactions are first). The API returns aNotEligible error if the user is not permitted to invoke the operation. If you must be able to invoke this operation, contact aws-devicefarm-support@amazon.com.
|
|
| ListOfferings |
Show DescriptionReturns a list of products or offerings that the user can manage through the API. Each offering record indicates the recurring price per unit and the frequency for that offering. The API returns aNotEligible error if the user is not permitted to invoke the operation. If you must be able to invoke this operation, contact aws-devicefarm-support@amazon.com.
|
|
| ListProjects |
Show DescriptionGets information about projects. |
|
| ListRemoteAccessSessions |
Show DescriptionReturns a list of all currently running remote access sessions. |
|
| ListRuns |
Show DescriptionGets information about runs, given an AWS Device Farm project ARN. |
|
| ListSamples |
Show DescriptionGets information about samples, given an AWS Device Farm job ARN. |
|
| ListSuites |
Show DescriptionGets information about test suites for a given job. |
|
| ListTagsForResource |
Show DescriptionList the tags for an AWS Device Farm resource. |
|
| ListTestGridProjects |
Show DescriptionGets a list of all Selenium testing projects in your account. |
|
| ListTestGridSessionActions |
Show DescriptionReturns a list of the actions taken in a TestGridSession. |
|
| ListTestGridSessionArtifacts |
Show DescriptionRetrieves a list of artifacts created during the session. |
|
| ListTestGridSessions |
Show DescriptionRetrieves a list of sessions for a TestGridProject. |
|
| ListTests |
Show DescriptionGets information about tests in a given test suite. |
|
| ListUniqueProblems |
Show DescriptionGets information about unique problems, such as exceptions or crashes. Unique problems are defined as a single instance of an error across a run, job, or suite. For example, if a call in your application consistently raises an exception (OutOfBoundsException in MyActivity.java:386), ListUniqueProblems returns a single entry instead of many individual entries for that exception.
|
|
| ListUploads |
Show DescriptionGets information about uploads, given an AWS Device Farm project ARN. |
|
| ListVPCEConfigurations |
Show DescriptionReturns information about all Amazon Virtual Private Cloud (VPC) endpoint configurations in the AWS account. |
|
| PurchaseOffering |
Show DescriptionImmediately purchases offerings for an AWS account. Offerings renew with the latest total purchased quantity for an offering, unless the renewal was overridden. The API returns aNotEligible error if the user is not permitted to invoke the operation. If you must be able to invoke this operation, contact aws-devicefarm-support@amazon.com.
|
|
| RenewOffering |
Show DescriptionExplicitly sets the quantity of devices to renew for an offering, starting from theeffectiveDate of the next period. The API returns a NotEligible error if the user is not permitted to invoke the operation. If you must be able to invoke this operation, contact aws-devicefarm-support@amazon.com.
|
|
| ScheduleRun |
Show DescriptionSchedules a run. |
|
| StopJob |
Show DescriptionInitiates a stop request for the current job. AWS Device Farm immediately stops the job on the device where tests have not started. You are not billed for this device. On the device where tests have started, setup suite and teardown suite tests run to completion on the device. You are billed for setup, teardown, and any tests that were in progress or already completed. |
|
| StopRemoteAccessSession |
Show DescriptionEnds a specified remote access session. |
|
| StopRun |
Show DescriptionInitiates a stop request for the current test run. AWS Device Farm immediately stops the run on devices where tests have not started. You are not billed for these devices. On devices where tests have started executing, setup suite and teardown suite tests run to completion on those devices. You are billed for setup, teardown, and any tests that were in progress or already completed. |
|
| TagResource |
Show DescriptionAssociates the specified tags to a resource with the specifiedresourceArn. If existing tags on a resource are not specified in the request parameters, they are not changed. When a resource is deleted, the tags associated with that resource are also deleted.
|
|
| UntagResource |
Show DescriptionDeletes the specified tags from a resource. |
|
| UpdateDeviceInstance |
Show DescriptionUpdates information about a private device instance. |
|
| UpdateDevicePool |
Show DescriptionModifies the name, description, and rules in a device pool given the attributes and the pool ARN. Rule updates are all-or-nothing, meaning they can only be updated as a whole (or not at all). |
|
| UpdateInstanceProfile |
Show DescriptionUpdates information about an existing private device instance profile. |
|
| UpdateNetworkProfile |
Show DescriptionUpdates the network profile. |
|
| UpdateProject |
Show DescriptionModifies the specified project name, given the project ARN and a new name. |
|
| UpdateTestGridProject |
Show DescriptionChange details of a project. |
|
| UpdateUpload |
Show DescriptionUpdates an uploaded test spec. |
Devops-guru Events
| Service | Event Name | Description |
|---|---|---|
| devops-guru | AddNotificationChannel |
Show DescriptionAdds a notification channel to DevOps Guru. A notification channel is used to notify you about important DevOps Guru events, such as when an insight is generated. If you use an Amazon SNS topic in another account, you must attach a policy to it that grants DevOps Guru permission to it notifications. DevOps Guru adds the required policy on your behalf to send notifications using Amazon SNS in your account. For more information, see Permissions for cross account Amazon SNS topics. If you use an Amazon SNS topic that is encrypted by an AWS Key Management Service customer-managed key (CMK), then you must add permissions to the CMK. For more information, see Permissions for AWS KMS–encrypted Amazon SNS topics. |
| DescribeAccountHealth |
Show DescriptionReturns the number of open reactive insights, the number of open proactive insights, and the number of metrics analyzed in your AWS account. Use these numbers to gauge the health of operations in your AWS account. |
|
| DescribeAccountOverview |
Show DescriptionFor the time range passed in, returns the number of open reactive insight that were created, the number of open proactive insights that were created, and the Mean Time to Recover (MTTR) for all closed reactive insights. |
|
| DescribeAnomaly |
Show DescriptionReturns details about an anomaly that you specify using its ID. |
|
| DescribeFeedback |
Show DescriptionReturns the most recent feedback submitted in the current AWS account and Region. |
|
| DescribeInsight |
Show DescriptionReturns details about an insight that you specify using its ID. |
|
| DescribeResourceCollectionHealth |
Show DescriptionReturns the number of open proactive insights, open reactive insights, and the Mean Time to Recover (MTTR) for all closed insights in resource collections in your account. You specify the type of AWS resources collection. The one type of AWS resource collection supported is AWS CloudFormation stacks. DevOps Guru can be configured to analyze only the AWS resources that are defined in the stacks. You can specify up to 500 AWS CloudFormation stacks. |
|
| DescribeServiceIntegration |
Show DescriptionReturns the integration status of services that are integrated with DevOps Guru. The one service that can be integrated with DevOps Guru is AWS Systems Manager, which can be used to create an OpsItem for each generated insight. |
|
| GetCostEstimation |
Show DescriptionReturns an estimate of the monthly cost for DevOps Guru to analyze your AWS resources. For more information, see Estimate your Amazon DevOps Guru costs and Amazon DevOps Guru pricing. |
|
| GetResourceCollection |
Show DescriptionReturns lists AWS resources that are of the specified resource collection type. The one type of AWS resource collection supported is AWS CloudFormation stacks. DevOps Guru can be configured to analyze only the AWS resources that are defined in the stacks. You can specify up to 500 AWS CloudFormation stacks. |
|
| ListAnomaliesForInsight |
Show DescriptionReturns a list of the anomalies that belong to an insight that you specify using its ID. |
|
| ListEvents |
Show DescriptionReturns a list of the events emitted by the resources that are evaluated by DevOps Guru. You can use filters to specify which events are returned. |
|
| ListInsights |
Show DescriptionReturns a list of insights in your AWS account. You can specify which insights are returned by their start time and status (ONGOING, CLOSED, or ANY).
|
|
| ListNotificationChannels |
Show DescriptionReturns a list of notification channels configured for DevOps Guru. Each notification channel is used to notify you when DevOps Guru generates an insight that contains information about how to improve your operations. The one supported notification channel is Amazon Simple Notification Service (Amazon SNS). |
|
| ListRecommendations |
Show DescriptionReturns a list of a specified insight's recommendations. Each recommendation includes a list of related metrics and a list of related events. |
|
| PutFeedback |
Show DescriptionCollects customer feedback about the specified insight. |
|
| RemoveNotificationChannel |
Show DescriptionRemoves a notification channel from DevOps Guru. A notification channel is used to notify you when DevOps Guru generates an insight that contains information about how to improve your operations. |
|
| SearchInsights |
Show DescriptionReturns a list of insights in your AWS account. You can specify which insights are returned by their start time, one or more statuses (ONGOING, CLOSED, and CLOSED), one or more severities (LOW, MEDIUM, and HIGH), and type (REACTIVE or PROACTIVE). Use the Filters parameter to specify status and severity search parameters. Use the Type parameter to specify REACTIVE or PROACTIVE in your search.
|
|
| StartCostEstimation |
Show DescriptionStarts the creation of an estimate of the monthly cost to analyze your AWS resources. |
|
| UpdateResourceCollection |
Show DescriptionUpdates the collection of resources that DevOps Guru analyzes. The one type of AWS resource collection supported is AWS CloudFormation stacks. DevOps Guru can be configured to analyze only the AWS resources that are defined in the stacks. You can specify up to 500 AWS CloudFormation stacks. This method also creates the IAM role required for you to use DevOps Guru. |
Directconnect Events
| Service | Event Name | Description |
|---|---|---|
| directconnect | AcceptDirectConnectGatewayAssociationProposal |
Show DescriptionAccepts a proposal request to attach a virtual private gateway or transit gateway to a Direct Connect gateway. |
| AllocateConnectionOnInterconnect |
Show DescriptionDeprecated. Use AllocateHostedConnection instead. Creates a hosted connection on an interconnect. Allocates a VLAN number and a specified amount of bandwidth for use by a hosted connection on the specified interconnect. |
|
| AllocateHostedConnection |
Show DescriptionCreates a hosted connection on the specified interconnect or a link aggregation group (LAG) of interconnects. Allocates a VLAN number and a specified amount of capacity (bandwidth) for use by a hosted connection on the specified interconnect or LAG of interconnects. Amazon Web Services polices the hosted connection for the specified capacity and the Direct Connect Partner must also police the hosted connection for the specified capacity. |
|
| AllocatePrivateVirtualInterface |
Show DescriptionProvisions a private virtual interface to be owned by the specified Amazon Web Services account. Virtual interfaces created using this action must be confirmed by the owner using ConfirmPrivateVirtualInterface. Until then, the virtual interface is in theConfirming state and is not available to handle traffic.
|
|
| AllocatePublicVirtualInterface |
Show DescriptionProvisions a public virtual interface to be owned by the specified Amazon Web Services account. The owner of a connection calls this function to provision a public virtual interface to be owned by the specified Amazon Web Services account. Virtual interfaces created using this function must be confirmed by the owner using ConfirmPublicVirtualInterface. Until this step has been completed, the virtual interface is in theconfirming state and is not available to handle traffic. When creating an IPv6 public virtual interface, omit the Amazon address and customer address. IPv6 addresses are automatically assigned from the Amazon pool of IPv6 addresses; you cannot specify custom IPv6 addresses.
|
|
| AllocateTransitVirtualInterface |
Show DescriptionProvisions a transit virtual interface to be owned by the specified Amazon Web Services account. Use this type of interface to connect a transit gateway to your Direct Connect gateway. The owner of a connection provisions a transit virtual interface to be owned by the specified Amazon Web Services account. After you create a transit virtual interface, it must be confirmed by the owner using ConfirmTransitVirtualInterface. Until this step has been completed, the transit virtual interface is in therequested state and is not available to handle traffic.
|
|
| AssociateConnectionWithLag |
Show DescriptionAssociates an existing connection with a link aggregation group (LAG). The connection is interrupted and re-established as a member of the LAG (connectivity to Amazon Web Services is interrupted). The connection must be hosted on the same Direct Connect endpoint as the LAG, and its bandwidth must match the bandwidth for the LAG. You can re-associate a connection that's currently associated with a different LAG; however, if removing the connection would cause the original LAG to fall below its setting for minimum number of operational connections, the request fails. Any virtual interfaces that are directly associated with the connection are automatically re-associated with the LAG. If the connection was originally associated with a different LAG, the virtual interfaces remain associated with the original LAG. For interconnects, any hosted connections are automatically re-associated with the LAG. If the interconnect was originally associated with a different LAG, the hosted connections remain associated with the original LAG. |
|
| AssociateHostedConnection |
Show DescriptionAssociates a hosted connection and its virtual interfaces with a link aggregation group (LAG) or interconnect. If the target interconnect or LAG has an existing hosted connection with a conflicting VLAN number or IP address, the operation fails. This action temporarily interrupts the hosted connection's connectivity to Amazon Web Services as it is being migrated. |
|
| AssociateMacSecKey |
Show DescriptionAssociates a MAC Security (MACsec) Connection Key Name (CKN)/ Connectivity Association Key (CAK) pair with an Direct Connect dedicated connection. You must supply either thesecretARN, or the CKN/CAK (ckn and cak) pair in the request. For information about MAC Security (MACsec) key considerations, see MACsec pre-shared CKN/CAK key considerations in the Direct Connect User Guide.
|
|
| AssociateVirtualInterface |
Show DescriptionAssociates a virtual interface with a specified link aggregation group (LAG) or connection. Connectivity to Amazon Web Services is temporarily interrupted as the virtual interface is being migrated. If the target connection or LAG has an associated virtual interface with a conflicting VLAN number or a conflicting IP address, the operation fails. Virtual interfaces associated with a hosted connection cannot be associated with a LAG; hosted connections must be migrated along with their virtual interfaces using AssociateHostedConnection. To reassociate a virtual interface to a new connection or LAG, the requester must own either the virtual interface itself or the connection to which the virtual interface is currently associated. Additionally, the requester must own the connection or LAG for the association. |
|
| ConfirmConnection |
Show DescriptionConfirms the creation of the specified hosted connection on an interconnect. Upon creation, the hosted connection is initially in theOrdering state, and remains in this state until the owner confirms creation of the hosted connection.
|
|
| ConfirmCustomerAgreement |
Show DescriptionThe confirmation of the terms of agreement when creating the connection/link aggregation group (LAG). |
|
| ConfirmPrivateVirtualInterface |
Show DescriptionAccepts ownership of a private virtual interface created by another Amazon Web Services account. After the virtual interface owner makes this call, the virtual interface is created and attached to the specified virtual private gateway or Direct Connect gateway, and is made available to handle traffic. |
|
| ConfirmPublicVirtualInterface |
Show DescriptionAccepts ownership of a public virtual interface created by another Amazon Web Services account. After the virtual interface owner makes this call, the specified virtual interface is created and made available to handle traffic. |
|
| ConfirmTransitVirtualInterface |
Show DescriptionAccepts ownership of a transit virtual interface created by another Amazon Web Services account. After the owner of the transit virtual interface makes this call, the specified transit virtual interface is created and made available to handle traffic. |
|
| CreateBGPPeer |
Show DescriptionCreates a BGP peer on the specified virtual interface. You must create a BGP peer for the corresponding address family (IPv4/IPv6) in order to access Amazon Web Services resources that also use that address family. If logical redundancy is not supported by the connection, interconnect, or LAG, the BGP peer cannot be in the same address family as an existing BGP peer on the virtual interface. When creating a IPv6 BGP peer, omit the Amazon address and customer address. IPv6 addresses are automatically assigned from the Amazon pool of IPv6 addresses; you cannot specify custom IPv6 addresses. For a public virtual interface, the Autonomous System Number (ASN) must be private or already on the allow list for the virtual interface. |
|
| CreateConnection |
Show DescriptionCreates a connection between a customer network and a specific Direct Connect location. A connection links your internal network to an Direct Connect location over a standard Ethernet fiber-optic cable. One end of the cable is connected to your router, the other to an Direct Connect router. To find the locations for your Region, use DescribeLocations. You can automatically add the new connection to a link aggregation group (LAG) by specifying a LAG ID in the request. This ensures that the new connection is allocated on the same Direct Connect endpoint that hosts the specified LAG. If there are no available ports on the endpoint, the request fails and no connection is created. |
|
| CreateDirectConnectGateway |
Show DescriptionCreates a Direct Connect gateway, which is an intermediate object that enables you to connect a set of virtual interfaces and virtual private gateways. A Direct Connect gateway is global and visible in any Amazon Web Services Region after it is created. The virtual interfaces and virtual private gateways that are connected through a Direct Connect gateway can be in different Amazon Web Services Regions. This enables you to connect to a VPC in any Region, regardless of the Region in which the virtual interfaces are located, and pass traffic between them. |
|
| CreateDirectConnectGatewayAssociation |
Show DescriptionCreates an association between a Direct Connect gateway and a virtual private gateway. The virtual private gateway must be attached to a VPC and must not be associated with another Direct Connect gateway. |
|
| CreateDirectConnectGatewayAssociationProposal |
Show DescriptionCreates a proposal to associate the specified virtual private gateway or transit gateway with the specified Direct Connect gateway. You can associate a Direct Connect gateway and virtual private gateway or transit gateway that is owned by any Amazon Web Services account. |
|
| CreateInterconnect |
Show DescriptionCreates an interconnect between an Direct Connect Partner's network and a specific Direct Connect location. An interconnect is a connection that is capable of hosting other connections. The Direct Connect Partner can use an interconnect to provide Direct Connect hosted connections to customers through their own network services. Like a standard connection, an interconnect links the partner's network to an Direct Connect location over a standard Ethernet fiber-optic cable. One end is connected to the partner's router, the other to an Direct Connect router. You can automatically add the new interconnect to a link aggregation group (LAG) by specifying a LAG ID in the request. This ensures that the new interconnect is allocated on the same Direct Connect endpoint that hosts the specified LAG. If there are no available ports on the endpoint, the request fails and no interconnect is created. For each end customer, the Direct Connect Partner provisions a connection on their interconnect by calling AllocateHostedConnection. The end customer can then connect to Amazon Web Services resources by creating a virtual interface on their connection, using the VLAN assigned to them by the Direct Connect Partner. |
|
| CreateLag |
Show DescriptionCreates a link aggregation group (LAG) with the specified number of bundled physical dedicated connections between the customer network and a specific Direct Connect location. A LAG is a logical interface that uses the Link Aggregation Control Protocol (LACP) to aggregate multiple interfaces, enabling you to treat them as a single interface. All connections in a LAG must use the same bandwidth (either 1Gbps or 10Gbps) and must terminate at the same Direct Connect endpoint. You can have up to 10 dedicated connections per LAG. Regardless of this limit, if you request more connections for the LAG than Direct Connect can allocate on a single endpoint, no LAG is created. You can specify an existing physical dedicated connection or interconnect to include in the LAG (which counts towards the total number of connections). Doing so interrupts the current physical dedicated connection, and re-establishes them as a member of the LAG. The LAG will be created on the same Direct Connect endpoint to which the dedicated connection terminates. Any virtual interfaces associated with the dedicated connection are automatically disassociated and re-associated with the LAG. The connection ID does not change. If the Amazon Web Services account used to create a LAG is a registered Direct Connect Partner, the LAG is automatically enabled to host sub-connections. For a LAG owned by a partner, any associated virtual interfaces cannot be directly configured. |
|
| CreatePrivateVirtualInterface |
Show DescriptionCreates a private virtual interface. A virtual interface is the VLAN that transports Direct Connect traffic. A private virtual interface can be connected to either a Direct Connect gateway or a Virtual Private Gateway (VGW). Connecting the private virtual interface to a Direct Connect gateway enables the possibility for connecting to multiple VPCs, including VPCs in different Amazon Web Services Regions. Connecting the private virtual interface to a VGW only provides access to a single VPC within the same Region. Setting the MTU of a virtual interface to 9001 (jumbo frames) can cause an update to the underlying physical connection if it wasn't updated to support jumbo frames. Updating the connection disrupts network connectivity for all virtual interfaces associated with the connection for up to 30 seconds. To check whether your connection supports jumbo frames, call DescribeConnections. To check whether your virtual interface supports jumbo frames, call DescribeVirtualInterfaces. |
|
| CreatePublicVirtualInterface |
Show DescriptionCreates a public virtual interface. A virtual interface is the VLAN that transports Direct Connect traffic. A public virtual interface supports sending traffic to public services of Amazon Web Services such as Amazon S3. When creating an IPv6 public virtual interface (addressFamily is ipv6), leave the customer and amazon address fields blank to use auto-assigned IPv6 space. Custom IPv6 addresses are not supported.
|
|
| CreateTransitVirtualInterface |
Show DescriptionCreates a transit virtual interface. A transit virtual interface should be used to access one or more transit gateways associated with Direct Connect gateways. A transit virtual interface enables the connection of multiple VPCs attached to a transit gateway to a Direct Connect gateway. |
|
| DeleteBGPPeer |
Show DescriptionDeletes the specified BGP peer on the specified virtual interface with the specified customer address and ASN. You cannot delete the last BGP peer from a virtual interface. |
|
| DeleteConnection |
Show DescriptionDeletes the specified connection. Deleting a connection only stops the Direct Connect port hour and data transfer charges. If you are partnering with any third parties to connect with the Direct Connect location, you must cancel your service with them separately. |
|
| DeleteDirectConnectGateway |
Show DescriptionDeletes the specified Direct Connect gateway. You must first delete all virtual interfaces that are attached to the Direct Connect gateway and disassociate all virtual private gateways associated with the Direct Connect gateway. |
|
| DeleteDirectConnectGatewayAssociation |
Show DescriptionDeletes the association between the specified Direct Connect gateway and virtual private gateway. We recommend that you specify theassociationID to delete the association. Alternatively, if you own virtual gateway and a Direct Connect gateway association, you can specify the virtualGatewayId and directConnectGatewayId to delete an association.
|
|
| DeleteDirectConnectGatewayAssociationProposal |
Show DescriptionDeletes the association proposal request between the specified Direct Connect gateway and virtual private gateway or transit gateway. |
|
| DeleteInterconnect |
Show DescriptionDeletes the specified interconnect. |
|
| DeleteLag |
Show DescriptionDeletes the specified link aggregation group (LAG). You cannot delete a LAG if it has active virtual interfaces or hosted connections. |
|
| DeleteVirtualInterface |
Show DescriptionDeletes a virtual interface. |
|
| DescribeConnectionLoa |
Show DescriptionDeprecated. Use DescribeLoa instead. Gets the LOA-CFA for a connection. The Letter of Authorization - Connecting Facility Assignment (LOA-CFA) is a document that your APN partner or service provider uses when establishing your cross connect to Amazon Web Services at the colocation facility. For more information, see Requesting Cross Connects at Direct Connect Locations in the Direct Connect User Guide. |
|
| DescribeConnections |
Show DescriptionDisplays the specified connection or all connections in this Region. |
|
| DescribeConnectionsOnInterconnect |
Show DescriptionDeprecated. Use DescribeHostedConnections instead. Lists the connections that have been provisioned on the specified interconnect. |
|
| DescribeCustomerMetadata |
Show DescriptionGet and view a list of customer agreements, along with their signed status and whether the customer is an NNIPartner, NNIPartnerV2, or a nonPartner. |
|
| DescribeDirectConnectGatewayAssociationProposals |
Show DescriptionDescribes one or more association proposals for connection between a virtual private gateway or transit gateway and a Direct Connect gateway. |
|
| DescribeDirectConnectGatewayAssociations |
Show DescriptionLists the associations between your Direct Connect gateways and virtual private gateways and transit gateways. You must specify one of the following:
|
|
| DescribeDirectConnectGatewayAttachments |
Show DescriptionLists the attachments between your Direct Connect gateways and virtual interfaces. You must specify a Direct Connect gateway, a virtual interface, or both. If you specify a Direct Connect gateway, the response contains all virtual interfaces attached to the Direct Connect gateway. If you specify a virtual interface, the response contains all Direct Connect gateways attached to the virtual interface. If you specify both, the response contains the attachment between the Direct Connect gateway and the virtual interface. |
|
| DescribeDirectConnectGateways |
Show DescriptionLists all your Direct Connect gateways or only the specified Direct Connect gateway. Deleted Direct Connect gateways are not returned. |
|
| DescribeHostedConnections |
Show DescriptionLists the hosted connections that have been provisioned on the specified interconnect or link aggregation group (LAG). |
|
| DescribeInterconnectLoa |
Show DescriptionDeprecated. Use DescribeLoa instead. Gets the LOA-CFA for the specified interconnect. The Letter of Authorization - Connecting Facility Assignment (LOA-CFA) is a document that is used when establishing your cross connect to Amazon Web Services at the colocation facility. For more information, see Requesting Cross Connects at Direct Connect Locations in the Direct Connect User Guide. |
|
| DescribeInterconnects |
Show DescriptionLists the interconnects owned by the Amazon Web Services account or only the specified interconnect. |
|
| DescribeLags |
Show DescriptionDescribes all your link aggregation groups (LAG) or the specified LAG. |
|
| DescribeLoa |
Show DescriptionGets the LOA-CFA for a connection, interconnect, or link aggregation group (LAG). The Letter of Authorization - Connecting Facility Assignment (LOA-CFA) is a document that is used when establishing your cross connect to Amazon Web Services at the colocation facility. For more information, see Requesting Cross Connects at Direct Connect Locations in the Direct Connect User Guide. |
|
| DescribeLocations |
Show DescriptionLists the Direct Connect locations in the current Amazon Web Services Region. These are the locations that can be selected when calling CreateConnection or CreateInterconnect. |
|
| DescribeRouterConfiguration |
Show DescriptionDetails about the router. |
|
| DescribeTags |
Show DescriptionDescribes the tags associated with the specified Direct Connect resources. |
|
| DescribeVirtualGateways |
Show DescriptionLists the virtual private gateways owned by the Amazon Web Services account. You can create one or more Direct Connect private virtual interfaces linked to a virtual private gateway. |
|
| DescribeVirtualInterfaces |
Show DescriptionDisplays all virtual interfaces for an Amazon Web Services account. Virtual interfaces deleted fewer than 15 minutes before you make the request are also returned. If you specify a connection ID, only the virtual interfaces associated with the connection are returned. If you specify a virtual interface ID, then only a single virtual interface is returned. A virtual interface (VLAN) transmits the traffic between the Direct Connect location and the customer network. |
|
| DisassociateConnectionFromLag |
Show DescriptionDisassociates a connection from a link aggregation group (LAG). The connection is interrupted and re-established as a standalone connection (the connection is not deleted; to delete the connection, use the DeleteConnection request). If the LAG has associated virtual interfaces or hosted connections, they remain associated with the LAG. A disassociated connection owned by an Direct Connect Partner is automatically converted to an interconnect. If disassociating the connection would cause the LAG to fall below its setting for minimum number of operational connections, the request fails, except when it's the last member of the LAG. If all connections are disassociated, the LAG continues to exist as an empty LAG with no physical connections. |
|
| DisassociateMacSecKey |
Show DescriptionRemoves the association between a MAC Security (MACsec) security key and an Direct Connect dedicated connection. |
|
| ListVirtualInterfaceTestHistory |
Show DescriptionLists the virtual interface failover test history. |
|
| StartBgpFailoverTest |
Show DescriptionStarts the virtual interface failover test that verifies your configuration meets your resiliency requirements by placing the BGP peering session in the DOWN state. You can then send traffic to verify that there are no outages. You can run the test on public, private, transit, and hosted virtual interfaces. You can use ListVirtualInterfaceTestHistory to view the virtual interface test history. If you need to stop the test before the test interval completes, use StopBgpFailoverTest. |
|
| StopBgpFailoverTest |
Show DescriptionStops the virtual interface failover test. |
|
| TagResource |
Show DescriptionAdds the specified tags to the specified Direct Connect resource. Each resource can have a maximum of 50 tags. Each tag consists of a key and an optional value. If a tag with the same key is already associated with the resource, this action updates its value. |
|
| UntagResource |
Show DescriptionRemoves one or more tags from the specified Direct Connect resource. |
|
| UpdateConnection |
Show DescriptionUpdates the Direct Connect dedicated connection configuration. You can update the following parameters for a connection:
|
|
| UpdateDirectConnectGateway |
Show DescriptionUpdates the name of a current Direct Connect gateway. |
|
| UpdateDirectConnectGatewayAssociation |
Show DescriptionUpdates the specified attributes of the Direct Connect gateway association. Add or remove prefixes from the association. |
|
| UpdateLag |
Show DescriptionUpdates the attributes of the specified link aggregation group (LAG). You can update the following LAG attributes:
|
Discovery Events
| Service | Event Name | Description |
|---|---|---|
| discovery | AssociateConfigurationItemsToApplication |
Show DescriptionAssociates one or more configuration items with an application. |
| BatchDeleteImportData |
Show DescriptionDeletes one or more import tasks, each identified by their import ID. Each import task has a number of records that can identify servers or applications. AWS Application Discovery Service has built-in matching logic that will identify when discovered servers match existing entries that you've previously discovered, the information for the already-existing discovered server is updated. When you delete an import task that contains records that were used to match, the information in those matched records that comes from the deleted records will also be deleted. |
|
| CreateApplication |
Show DescriptionCreates an application with the given name and description. |
|
| CreateTags |
Show DescriptionCreates one or more tags for configuration items. Tags are metadata that help you categorize IT assets. This API accepts a list of multiple configuration items. |
|
| DeleteApplications |
Show DescriptionDeletes a list of applications and their associations with configuration items. |
|
| DeleteTags |
Show DescriptionDeletes the association between configuration items and one or more tags. This API accepts a list of multiple configuration items. |
|
| DescribeAgents |
Show DescriptionLists agents or connectors as specified by ID or other filters. All agents/connectors associated with your user account can be listed if you callDescribeAgents as is without passing any parameters.
|
|
| DescribeConfigurations |
Show DescriptionRetrieves attributes for a list of configuration item IDs.
|
|
| DescribeContinuousExports |
Show DescriptionLists exports as specified by ID. All continuous exports associated with your user account can be listed if you callDescribeContinuousExports as is without passing any parameters.
|
|
| DescribeExportConfigurations | ||
| DescribeExportTasks |
Show DescriptionRetrieve status of one or more export tasks. You can retrieve the status of up to 100 export tasks. |
|
| DescribeImportTasks |
Show DescriptionReturns an array of import tasks for your account, including status information, times, IDs, the Amazon S3 Object URL for the import file, and more. |
|
| DescribeTags |
Show DescriptionRetrieves a list of configuration items that have tags as specified by the key-value pairs, name and value, passed to the optional parameterfilters. There are three valid tag filter names:
DescribeTags as is without passing any parameters.
|
|
| DisassociateConfigurationItemsFromApplication |
Show DescriptionDisassociates one or more configuration items from an application. |
|
| ExportConfigurations |
Show DescriptionDeprecated. UseStartExportTask instead. Exports all discovered configuration data to an Amazon S3 bucket or an application that enables you to view and evaluate the data. Data includes tags and tag associations, processes, connections, servers, and system performance. This API returns an export ID that you can query using the DescribeExportConfigurations API. The system imposes a limit of two configuration exports in six hours.
|
|
| GetDiscoverySummary |
Show DescriptionRetrieves a short summary of discovered assets. This API operation takes no request parameters and is called as is at the command prompt as shown in the example. |
|
| ListConfigurations |
Show DescriptionRetrieves a list of configuration items as specified by the value passed to the required parameterconfigurationType. Optional filtering may be applied to refine search results.
|
|
| ListServerNeighbors |
Show DescriptionRetrieves a list of servers that are one network hop away from a specified server. |
|
| StartContinuousExport |
Show DescriptionStart the continuous flow of agent's discovered data into Amazon Athena. |
|
| StartDataCollectionByAgentIds |
Show DescriptionInstructs the specified agents or connectors to start collecting data. |
|
| StartExportTask |
Show DescriptionBegins the export of discovered data to an S3 bucket. If you specifyagentIds in a filter, the task exports up to 72 hours of detailed data collected by the identified Application Discovery Agent, including network, process, and performance details. A time range for exported agent data may be set by using startTime and endTime. Export of detailed agent data is limited to five concurrently running exports. If you do not include an agentIds filter, summary data is exported that includes both AWS Agentless Discovery Connector data and summary data from AWS Discovery Agents. Export of summary data is limited to two exports per day.
|
|
| StartImportTask |
Show DescriptionStarts an import task, which allows you to import details of your on-premises environment directly into AWS Migration Hub without having to use the Application Discovery Service (ADS) tools such as the Discovery Connector or Discovery Agent. This gives you the option to perform migration assessment and planning directly from your imported data, including the ability to group your devices as applications and track their migration status. To start an import request, do this:
|
|
| StopContinuousExport |
Show DescriptionStop the continuous flow of agent's discovered data into Amazon Athena. |
|
| StopDataCollectionByAgentIds |
Show DescriptionInstructs the specified agents or connectors to stop collecting data. |
Dlm Events
| Service | Event Name | Description |
|---|---|---|
| dlm | CreateLifecyclePolicy |
Show DescriptionCreates a policy to manage the lifecycle of the specified Amazon Web Services resources. You can create up to 100 lifecycle policies. |
| DeleteLifecyclePolicy |
Show DescriptionDeletes the specified lifecycle policy and halts the automated operations that the policy specified. |
|
| GetLifecyclePolicies |
Show DescriptionGets summary information about all or the specified data lifecycle policies. To get complete information about a policy, use GetLifecyclePolicy. |
|
| GetLifecyclePolicy |
Show DescriptionGets detailed information about the specified lifecycle policy. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified resource. |
|
| TagResource |
Show DescriptionAdds the specified tags to the specified resource. |
|
| UntagResource |
Show DescriptionRemoves the specified tags from the specified resource. |
Docdb Events
| Service | Event Name | Description |
|---|---|---|
| docdb | AddSourceIdentifierToSubscription |
Show DescriptionAdds a source identifier to an existing event notification subscription. |
| AddTagsToResource | ||
| ApplyPendingMaintenanceAction |
Show DescriptionApplies a pending maintenance action to a resource (for example, to an Amazon DocumentDB instance). |
|
| CopyDBClusterParameterGroup |
Show DescriptionCopies the specified cluster parameter group. |
|
| CopyDBClusterSnapshot |
Show DescriptionCopies a snapshot of a cluster. To copy a cluster snapshot from a shared manual cluster snapshot,SourceDBClusterSnapshotIdentifier must be the Amazon Resource Name (ARN) of the shared cluster snapshot. You can only copy a shared DB cluster snapshot, whether encrypted or not, in the same Region. To cancel the copy operation after it is in progress, delete the target cluster snapshot identified by TargetDBClusterSnapshotIdentifier while that cluster snapshot is in the copying status.
|
|
| CreateDBCluster |
Show DescriptionCreates a new Amazon DocumentDB cluster. |
|
| CreateDBClusterParameterGroup |
Show DescriptionCreates a new cluster parameter group. Parameters in a cluster parameter group apply to all of the instances in a cluster. A cluster parameter group is initially created with the default parameters for the database engine used by instances in the cluster. In Amazon DocumentDB, you cannot make modifications directly to thedefault.docdb3.6 cluster parameter group. If your Amazon DocumentDB cluster is using the default cluster parameter group and you want to modify a value in it, you must first create a new parameter group or copy an existing parameter group, modify it, and then apply the modified parameter group to your cluster. For the new cluster parameter group and associated settings to take effect, you must then reboot the instances in the cluster without failover. For more information, see Modifying Amazon DocumentDB Cluster Parameter Groups.
|
|
| CreateDBClusterSnapshot |
Show DescriptionCreates a snapshot of a cluster. |
|
| CreateDBInstance |
Show DescriptionCreates a new instance. |
|
| CreateDBSubnetGroup |
Show DescriptionCreates a new subnet group. subnet groups must contain at least one subnet in at least two Availability Zones in the Region. |
|
| CreateEventSubscription |
Show DescriptionCreates an Amazon DocumentDB event notification subscription. This action requires a topic Amazon Resource Name (ARN) created by using the Amazon DocumentDB console, the Amazon SNS console, or the Amazon SNS API. To obtain an ARN with Amazon SNS, you must create a topic in Amazon SNS and subscribe to the topic. The ARN is displayed in the Amazon SNS console. You can specify the type of source (SourceType) that you want to be notified of. You can also provide a list of Amazon DocumentDB sources (SourceIds) that trigger the events, and you can provide a list of event categories (EventCategories) for events that you want to be notified of. For example, you can specify SourceType = db-instance, SourceIds = mydbinstance1, mydbinstance2 and EventCategories = Availability, Backup. If you specify both the SourceType and SourceIds (such as SourceType = db-instance and SourceIdentifier = myDBInstance1), you are notified of all the db-instance events for the specified source. If you specify a SourceType but do not specify a SourceIdentifier, you receive notice of the events for that source type for all your Amazon DocumentDB sources. If you do not specify either the SourceType or the SourceIdentifier, you are notified of events generated from all Amazon DocumentDB sources belonging to your customer account.
|
|
| CreateGlobalCluster |
Show DescriptionCreates an Amazon DocumentDB global cluster that can span multiple multiple Regions. The global cluster contains one primary cluster with read-write capability, and up-to give read-only secondary clusters. Global clusters uses storage-based fast replication across regions with latencies less than one second, using dedicated infrastructure with no impact to your workload’s performance. You can create a global cluster that is initially empty, and then add a primary and a secondary to it. Or you can specify an existing cluster during the create operation, and this cluster becomes the primary of the global cluster. |
|
| DeleteDBCluster |
Show DescriptionDeletes a previously provisioned cluster. When you delete a cluster, all automated backups for that cluster are deleted and can't be recovered. Manual DB cluster snapshots of the specified cluster are not deleted. |
|
| DeleteDBClusterParameterGroup | ||
| DeleteDBClusterSnapshot |
Show DescriptionDeletes a cluster snapshot. If the snapshot is being copied, the copy operation is terminated.available state to be deleted. |
|
| DeleteDBInstance |
Show DescriptionDeletes a previously provisioned instance. |
|
| DeleteDBSubnetGroup | ||
| DeleteEventSubscription |
Show DescriptionDeletes an Amazon DocumentDB event notification subscription. |
|
| DeleteGlobalCluster |
Show DescriptionDeletes a global cluster. The primary and secondary clusters must already be detached or deleted before attempting to delete a global cluster. |
|
| DescribeCertificates |
Show DescriptionReturns a list of certificate authority (CA) certificates provided by Amazon DocumentDB for this account. |
|
| DescribeDBClusterParameterGroups |
Show DescriptionReturns a list ofDBClusterParameterGroup descriptions. If a DBClusterParameterGroupName parameter is specified, the list contains only the description of the specified cluster parameter group.
|
|
| DescribeDBClusterParameters |
Show DescriptionReturns the detailed parameter list for a particular cluster parameter group. |
|
| DescribeDBClusterSnapshotAttributes |
Show DescriptionReturns a list of cluster snapshot attribute names and values for a manual DB cluster snapshot. When you share snapshots with other accounts,DescribeDBClusterSnapshotAttributes returns the restore attribute and a list of IDs for the accounts that are authorized to copy or restore the manual cluster snapshot. If all is included in the list of values for the restore attribute, then the manual cluster snapshot is public and can be copied or restored by all accounts.
|
|
| DescribeDBClusterSnapshots |
Show DescriptionReturns information about cluster snapshots. This API operation supports pagination. |
|
| DescribeDBClusters |
Show DescriptionReturns information about provisioned Amazon DocumentDB clusters. This API operation supports pagination. For certain management features such as cluster and instance lifecycle management, Amazon DocumentDB leverages operational technology that is shared with Amazon RDS and Amazon Neptune. Use thefilterName=engine,Values=docdb filter parameter to return only Amazon DocumentDB clusters.
|
|
| DescribeDBEngineVersions |
Show DescriptionReturns a list of the available engines. |
|
| DescribeDBInstances |
Show DescriptionReturns information about provisioned Amazon DocumentDB instances. This API supports pagination. |
|
| DescribeDBSubnetGroups |
Show DescriptionReturns a list ofDBSubnetGroup descriptions. If a DBSubnetGroupName is specified, the list will contain only the descriptions of the specified DBSubnetGroup.
|
|
| DescribeEngineDefaultClusterParameters |
Show DescriptionReturns the default engine and system parameter information for the cluster database engine. |
|
| DescribeEventCategories |
Show DescriptionDisplays a list of categories for all event source types, or, if specified, for a specified source type. |
|
| DescribeEventSubscriptions |
Show DescriptionLists all the subscription descriptions for a customer account. The description for a subscription includesSubscriptionName, SNSTopicARN, CustomerID, SourceType, SourceID, CreationTime, and Status. If you specify a SubscriptionName, lists the description for that subscription.
|
|
| DescribeEvents |
Show DescriptionReturns events related to instances, security groups, snapshots, and DB parameter groups for the past 14 days. You can obtain events specific to a particular DB instance, security group, snapshot, or parameter group by providing the name as a parameter. By default, the events of the past hour are returned. |
|
| DescribeGlobalClusters |
Show DescriptionReturns information about Amazon DocumentDB global clusters. This API supports pagination. |
|
| DescribeOrderableDBInstanceOptions |
Show DescriptionReturns a list of orderable instance options for the specified engine. |
|
| DescribePendingMaintenanceActions |
Show DescriptionReturns a list of resources (for example, instances) that have at least one pending maintenance action. |
|
| FailoverDBCluster |
Show DescriptionForces a failover for a cluster. A failover for a cluster promotes one of the Amazon DocumentDB replicas (read-only instances) in the cluster to be the primary instance (the cluster writer). If the primary instance fails, Amazon DocumentDB automatically fails over to an Amazon DocumentDB replica, if one exists. You can force a failover when you want to simulate a failure of a primary instance for testing. |
|
| ListTagsForResource |
Show DescriptionLists all tags on an Amazon DocumentDB resource. |
|
| ModifyDBCluster |
Show DescriptionModifies a setting for an Amazon DocumentDB cluster. You can change one or more database configuration parameters by specifying these parameters and the new values in the request. |
|
| ModifyDBClusterParameterGroup |
Show DescriptionModifies the parameters of a cluster parameter group. To modify more than one parameter, submit a list of the following:ParameterName, ParameterValue, and ApplyMethod. A maximum of 20 parameters can be modified in a single request. character_set_database parameter. |
|
| ModifyDBClusterSnapshotAttribute |
Show DescriptionAdds an attribute and values to, or removes an attribute and values from, a manual cluster snapshot. To share a manual cluster snapshot with other accounts, specifyrestore as the AttributeName, and use the ValuesToAdd parameter to add a list of IDs of the accounts that are authorized to restore the manual cluster snapshot. Use the value all to make the manual cluster snapshot public, which means that it can be copied or restored by all accounts. Do not add the all value for any manual cluster snapshots that contain private information that you don't want available to all accounts. If a manual cluster snapshot is encrypted, it can be shared, but only by specifying a list of authorized account IDs for the ValuesToAdd parameter. You can't use all as a value for that parameter in this case.
|
|
| ModifyDBInstance |
Show DescriptionModifies settings for an instance. You can change one or more database configuration parameters by specifying these parameters and the new values in the request. |
|
| ModifyDBSubnetGroup |
Show DescriptionModifies an existing subnet group. subnet groups must contain at least one subnet in at least two Availability Zones in the Region. |
|
| ModifyEventSubscription |
Show DescriptionModifies an existing Amazon DocumentDB event notification subscription. |
|
| ModifyGlobalCluster |
Show DescriptionModify a setting for an Amazon DocumentDB global cluster. You can change one or more configuration parameters (for example: deletion protection), or the global cluster identifier by specifying these parameters and the new values in the request. |
|
| RebootDBInstance |
Show DescriptionYou might need to reboot your instance, usually for maintenance reasons. For example, if you make certain changes, or if you change the cluster parameter group that is associated with the instance, you must reboot the instance for the changes to take effect. Rebooting an instance restarts the database engine service. Rebooting an instance results in a momentary outage, during which the instance status is set to rebooting. |
|
| RemoveFromGlobalCluster |
Show DescriptionDetaches an Amazon DocumentDB secondary cluster from a global cluster. The cluster becomes a standalone cluster with read-write capability instead of being read-only and receiving data from a primary in a different region. |
|
| RemoveSourceIdentifierFromSubscription |
Show DescriptionRemoves a source identifier from an existing Amazon DocumentDB event notification subscription. |
|
| RemoveTagsFromResource | ||
| ResetDBClusterParameterGroup |
Show DescriptionModifies the parameters of a cluster parameter group to the default value. To reset specific parameters, submit a list of the following:ParameterName and ApplyMethod. To reset the entire cluster parameter group, specify the DBClusterParameterGroupName and ResetAllParameters parameters. When you reset the entire group, dynamic parameters are updated immediately and static parameters are set to pending-reboot to take effect on the next DB instance reboot.
|
|
| RestoreDBClusterFromSnapshot |
Show DescriptionCreates a new cluster from a snapshot or cluster snapshot. If a snapshot is specified, the target cluster is created from the source DB snapshot with a default configuration and default security group. If a cluster snapshot is specified, the target cluster is created from the source cluster restore point with the same configuration as the original source DB cluster, except that the new cluster is created with the default security group. |
|
| RestoreDBClusterToPointInTime |
Show DescriptionRestores a cluster to an arbitrary point in time. Users can restore to any point in time beforeLatestRestorableTime for up to BackupRetentionPeriod days. The target cluster is created from the source cluster with the same configuration as the original cluster, except that the new cluster is created with the default security group.
|
|
| StartDBCluster |
Show DescriptionRestarts the stopped cluster that is specified byDBClusterIdentifier. For more information, see Stopping and Starting an Amazon DocumentDB Cluster.
|
Ds Events
| Service | Event Name | Description |
|---|---|---|
| ds | AcceptSharedDirectory |
Show DescriptionAccepts a directory sharing request that was sent from the directory owner account. |
| AddIpRoutes |
Show DescriptionIf the DNS server for your self-managed domain uses a publicly addressable IP address, you must add a CIDR address block to correctly route traffic to and from your Microsoft AD on Amazon Web Services. AddIpRoutes adds this address block. You can also use AddIpRoutes to facilitate routing traffic that uses public IP ranges from your Microsoft AD on Amazon Web Services to a peer VPC. Before you call AddIpRoutes, ensure that all of the required permissions have been explicitly granted through a policy. For details about what permissions are required to run the AddIpRoutes operation, see Directory Service API Permissions: Actions, Resources, and Conditions Reference. |
|
| AddRegion |
Show DescriptionAdds two domain controllers in the specified Region for the specified directory. |
|
| AddTagsToResource |
Show DescriptionAdds or overwrites one or more tags for the specified directory. Each directory can have a maximum of 50 tags. Each tag consists of a key and optional value. Tag keys must be unique to each resource. |
|
| CancelSchemaExtension |
Show DescriptionCancels an in-progress schema extension to a Microsoft AD directory. Once a schema extension has started replicating to all domain controllers, the task can no longer be canceled. A schema extension can be canceled during any of the following states;Initializing, CreatingSnapshot, and UpdatingSchema.
|
|
| ConnectDirectory |
Show DescriptionCreates an AD Connector to connect to a self-managed directory. Before you callConnectDirectory, ensure that all of the required permissions have been explicitly granted through a policy. For details about what permissions are required to run the ConnectDirectory operation, see Directory Service API Permissions: Actions, Resources, and Conditions Reference.
|
|
| CreateAlias |
Show DescriptionCreates an alias for a directory and assigns the alias to the directory. The alias is used to construct the access URL for the directory, such ashttp://<alias>.awsapps.com. |
|
| CreateComputer |
Show DescriptionCreates an Active Directory computer object in the specified directory. |
|
| CreateConditionalForwarder |
Show DescriptionCreates a conditional forwarder associated with your Amazon Web Services directory. Conditional forwarders are required in order to set up a trust relationship with another domain. The conditional forwarder points to the trusted domain. |
|
| CreateDirectory |
Show DescriptionCreates a Simple AD directory. For more information, see Simple Active Directory in the Directory Service Admin Guide. Before you callCreateDirectory, ensure that all of the required permissions have been explicitly granted through a policy. For details about what permissions are required to run the CreateDirectory operation, see Directory Service API Permissions: Actions, Resources, and Conditions Reference.
|
|
| CreateLogSubscription |
Show DescriptionCreates a subscription to forward real-time Directory Service domain controller security logs to the specified Amazon CloudWatch log group in your Amazon Web Services account. |
|
| CreateMicrosoftAD |
Show DescriptionCreates a Microsoft AD directory in the Amazon Web Services Cloud. For more information, see Managed Microsoft AD in the Directory Service Admin Guide. Before you call CreateMicrosoftAD, ensure that all of the required permissions have been explicitly granted through a policy. For details about what permissions are required to run the CreateMicrosoftAD operation, see Directory Service API Permissions: Actions, Resources, and Conditions Reference. |
|
| CreateSnapshot |
Show DescriptionCreates a snapshot of a Simple AD or Microsoft AD directory in the Amazon Web Services cloud. |
|
| CreateTrust |
Show DescriptionDirectory Service for Microsoft Active Directory allows you to configure trust relationships. For example, you can establish a trust between your Managed Microsoft AD directory, and your existing self-managed Microsoft Active Directory. This would allow you to provide users and groups access to resources in either domain, with a single set of credentials. This action initiates the creation of the Amazon Web Services side of a trust relationship between an Managed Microsoft AD directory and an external domain. You can create either a forest trust or an external trust. |
|
| DeleteConditionalForwarder |
Show DescriptionDeletes a conditional forwarder that has been set up for your Amazon Web Services directory. |
|
| DeleteDirectory |
Show DescriptionDeletes an Directory Service directory. Before you callDeleteDirectory, ensure that all of the required permissions have been explicitly granted through a policy. For details about what permissions are required to run the DeleteDirectory operation, see Directory Service API Permissions: Actions, Resources, and Conditions Reference.
|
|
| DeleteLogSubscription |
Show DescriptionDeletes the specified log subscription. |
|
| DeleteSnapshot |
Show DescriptionDeletes a directory snapshot. |
|
| DeleteTrust |
Show DescriptionDeletes an existing trust relationship between your Managed Microsoft AD directory and an external domain. |
|
| DeregisterCertificate |
Show DescriptionDeletes from the system the certificate that was registered for secure LDAP or client certificate authentication. |
|
| DeregisterEventTopic |
Show DescriptionRemoves the specified directory as a publisher to the specified Amazon SNS topic. |
|
| DescribeCertificate |
Show DescriptionDisplays information about the certificate registered for secure LDAP or client certificate authentication. |
|
| DescribeClientAuthenticationSettings |
Show DescriptionRetrieves information about the type of client authentication for the specified directory, if the type is specified. If no type is specified, information about all client authentication types that are supported for the specified directory is retrieved. Currently, onlySmartCard is supported.
|
|
| DescribeConditionalForwarders |
Show DescriptionObtains information about the conditional forwarders for this account. If no input parameters are provided for RemoteDomainNames, this request describes all conditional forwarders for the specified directory ID. |
|
| DescribeDirectories |
Show DescriptionObtains information about the directories that belong to this account. You can retrieve information about specific directories by passing the directory identifiers in theDirectoryIds parameter. Otherwise, all directories that belong to the current account are returned. This operation supports pagination with the use of the NextToken request and response parameters. If more results are available, the DescribeDirectoriesResult.NextToken member contains a token that you pass in the next call to DescribeDirectories to retrieve the next set of items. You can also specify a maximum number of return results with the Limit parameter.
|
|
| DescribeDomainControllers |
Show DescriptionProvides information about any domain controllers in your directory. |
|
| DescribeEventTopics |
Show DescriptionObtains information about which Amazon SNS topics receive status messages from the specified directory. If no input parameters are provided, such as DirectoryId or TopicName, this request describes all of the associations in the account. |
|
| DescribeLDAPSSettings |
Show DescriptionDescribes the status of LDAP security for the specified directory. |
|
| DescribeRegions |
Show DescriptionProvides information about the Regions that are configured for multi-Region replication. |
|
| DescribeSharedDirectories |
Show DescriptionReturns the shared directories in your account. |
|
| DescribeSnapshots |
Show DescriptionObtains information about the directory snapshots that belong to this account. This operation supports pagination with the use of the NextToken request and response parameters. If more results are available, the DescribeSnapshots.NextToken member contains a token that you pass in the next call to DescribeSnapshots to retrieve the next set of items. You can also specify a maximum number of return results with the Limit parameter. |
|
| DescribeTrusts |
Show DescriptionObtains information about the trust relationships for this account. If no input parameters are provided, such as DirectoryId or TrustIds, this request describes all the trust relationships belonging to the account. |
|
| DisableClientAuthentication |
Show DescriptionDisables alternative client authentication methods for the specified directory. |
|
| DisableLDAPS |
Show DescriptionDeactivates LDAP secure calls for the specified directory. |
|
| DisableRadius |
Show DescriptionDisables multi-factor authentication (MFA) with the Remote Authentication Dial In User Service (RADIUS) server for an AD Connector or Microsoft AD directory. |
|
| DisableSso |
Show DescriptionDisables single-sign on for a directory. |
|
| EnableClientAuthentication |
Show DescriptionEnables alternative client authentication methods for the specified directory. |
|
| EnableLDAPS |
Show DescriptionActivates the switch for the specific directory to always use LDAP secure calls. |
|
| EnableRadius |
Show DescriptionEnables multi-factor authentication (MFA) with the Remote Authentication Dial In User Service (RADIUS) server for an AD Connector or Microsoft AD directory. |
|
| EnableSso |
Show DescriptionEnables single sign-on for a directory. Single sign-on allows users in your directory to access certain Amazon Web Services services from a computer joined to the directory without having to enter their credentials separately. |
|
| GetDirectoryLimits |
Show DescriptionObtains directory limit information for the current Region. |
|
| GetSnapshotLimits |
Show DescriptionObtains the manual snapshot limits for a directory. |
|
| ListCertificates |
Show DescriptionFor the specified directory, lists all the certificates registered for a secure LDAP or client certificate authentication. |
|
| ListIpRoutes |
Show DescriptionLists the address blocks that you have added to a directory. |
|
| ListLogSubscriptions |
Show DescriptionLists the active log subscriptions for the Amazon Web Services account. |
|
| ListSchemaExtensions |
Show DescriptionLists all schema extensions applied to a Microsoft AD Directory. |
|
| ListTagsForResource |
Show DescriptionLists all tags on a directory. |
|
| RegisterCertificate |
Show DescriptionRegisters a certificate for a secure LDAP or client certificate authentication. |
|
| RegisterEventTopic |
Show DescriptionAssociates a directory with an Amazon SNS topic. This establishes the directory as a publisher to the specified Amazon SNS topic. You can then receive email or text (SMS) messages when the status of your directory changes. You get notified if your directory goes from an Active status to an Impaired or Inoperable status. You also receive a notification when the directory returns to an Active status. |
|
| RejectSharedDirectory |
Show DescriptionRejects a directory sharing request that was sent from the directory owner account. |
|
| RemoveIpRoutes |
Show DescriptionRemoves IP address blocks from a directory. |
|
| RemoveRegion |
Show DescriptionStops all replication and removes the domain controllers from the specified Region. You cannot remove the primary Region with this operation. Instead, use theDeleteDirectory API.
|
|
| RemoveTagsFromResource |
Show DescriptionRemoves tags from a directory. |
|
| ResetUserPassword |
Show DescriptionResets the password for any user in your Managed Microsoft AD or Simple AD directory. You can reset the password for any user in your directory with the following exceptions:
|
|
| RestoreFromSnapshot |
Show DescriptionRestores a directory using an existing directory snapshot. When you restore a directory from a snapshot, any changes made to the directory after the snapshot date are overwritten. This action returns as soon as the restore operation is initiated. You can monitor the progress of the restore operation by calling the DescribeDirectories operation with the directory identifier. When the DirectoryDescription.Stage value changes toActive, the restore operation is complete.
|
|
| ShareDirectory |
Show DescriptionShares a specified directory (DirectoryId) in your Amazon Web Services account (directory owner) with another Amazon Web Services account (directory consumer). With this operation you can use your directory from any Amazon Web Services account and from any Amazon VPC within an Amazon Web Services Region. When you share your Managed Microsoft AD directory, Directory Service creates a shared directory in the directory consumer account. This shared directory contains the metadata to provide access to the directory within the directory owner account. The shared directory is visible in all VPCs in the directory consumer account. The ShareMethod parameter determines whether the specified directory can be shared between Amazon Web Services accounts inside the same Amazon Web Services organization (ORGANIZATIONS). It also determines whether you can share the directory with any other Amazon Web Services account either inside or outside of the organization (HANDSHAKE). The ShareNotes parameter is only used when HANDSHAKE is called, which sends a directory sharing request to the directory consumer.
|
|
| StartSchemaExtension |
Show DescriptionApplies a schema extension to a Microsoft AD directory. |
|
| UnshareDirectory |
Show DescriptionStops the directory sharing between the directory owner and consumer accounts. |
|
| UpdateConditionalForwarder |
Show DescriptionUpdates a conditional forwarder that has been set up for your Amazon Web Services directory. |
|
| UpdateNumberOfDomainControllers |
Show DescriptionAdds or removes domain controllers to or from the directory. Based on the difference between current value and new value (provided through this API call), domain controllers will be added or removed. It may take up to 45 minutes for any new domain controllers to become fully active once the requested number of domain controllers is updated. During this time, you cannot make another update request. |
|
| UpdateRadius |
Show DescriptionUpdates the Remote Authentication Dial In User Service (RADIUS) server information for an AD Connector or Microsoft AD directory. |
|
| UpdateTrust |
Show DescriptionUpdates the trust that has been set up between your Managed Microsoft AD directory and an self-managed Active Directory. |
Dynamodb Events
| Service | Event Name | Description |
|---|---|---|
| dynamodb | BatchExecuteStatement |
Show DescriptionThis operation allows you to perform batch reads and writes on data stored in DynamoDB, using PartiQL. |
| BatchGetItem |
Show DescriptionTheBatchGetItem operation returns the attributes of one or more items from one or more tables. You identify requested items by primary key. A single operation can retrieve up to 16 MB of data, which can contain as many as 100 items. BatchGetItem returns a partial result if the response size limit is exceeded, the table's provisioned throughput is exceeded, or an internal processing failure occurs. If a partial result is returned, the operation returns a value for UnprocessedKeys. You can use this value to retry the operation starting with the next item to get. BatchGetItem returns a ValidationException with the message "Too many items requested for the BatchGetItem call." UnprocessedKeys value so you can get the next page of results. If desired, your application can include its own logic to assemble the pages of results into one dataset. If none of the items can be processed due to insufficient provisioned throughput on all of the tables in the request, then BatchGetItem returns a ProvisionedThroughputExceededException. If at least one of the items is successfully processed, then BatchGetItem completes successfully, while returning the keys of the unread items in UnprocessedKeys. BatchGetItem performs eventually consistent reads on every table in the request. If you want strongly consistent reads instead, you can set ConsistentRead to true for any or all tables. In order to minimize response latency, BatchGetItem retrieves items in parallel. When designing your application, keep in mind that DynamoDB does not return items in any particular order. To help parse the response by item, include the primary key values for the items in your request in the ProjectionExpression parameter. If a requested item does not exist, it is not returned in the result. Requests for nonexistent items consume the minimum read capacity units according to the type of read. For more information, see Working with Tables in the Amazon DynamoDB Developer Guide.
|
|
| BatchWriteItem |
Show DescriptionTheBatchWriteItem operation puts or deletes multiple items in one or more tables. A single call to BatchWriteItem can write up to 16 MB of data, which can comprise as many as 25 put or delete requests. Individual items to be written can be as large as 400 KB. BatchWriteItem cannot update items. To update items, use the UpdateItem action. PutItem and DeleteItem operations specified in BatchWriteItem are atomic; however BatchWriteItem as a whole is not. If any requested operations fail because the table's provisioned throughput is exceeded or an internal processing failure occurs, the failed operations are returned in the UnprocessedItems response parameter. You can investigate and optionally resend the requests. Typically, you would call BatchWriteItem in a loop. Each iteration would check for unprocessed items and submit a new BatchWriteItem request with those unprocessed items until all items have been processed. If none of the items can be processed due to insufficient provisioned throughput on all of the tables in the request, then BatchWriteItem returns a ProvisionedThroughputExceededException. BatchWriteItem, you can efficiently write or delete large amounts of data, such as from Amazon EMR, or copy data from another database into DynamoDB. In order to improve performance with these large-scale operations, BatchWriteItem does not behave in the same way as individual PutItem and DeleteItem calls would. For example, you cannot specify conditions on individual put and delete requests, and BatchWriteItem does not return deleted items in the response. If you use a programming language that supports concurrency, you can use threads to write items in parallel. Your application must include the necessary logic to manage the threads. With languages that don't support threading, you must update or delete the specified items one at a time. In both situations, BatchWriteItem performs the specified put and delete operations in parallel, giving you the power of the thread pool approach without having to introduce complexity into your application. Parallel processing reduces latency, but each specified put and delete request consumes the same number of write capacity units whether it is processed in parallel or not. Delete operations on nonexistent items consume one write capacity unit. If one or more of the following is true, DynamoDB rejects the entire batch write operation:
|
|
| CreateBackup |
Show DescriptionCreates a backup for an existing table. Each time you create an on-demand backup, the entire table data is backed up. There is no limit to the number of on-demand backups that can be taken. When you create an on-demand backup, a time marker of the request is cataloged, and the backup is created asynchronously, by applying all changes until the time of the request to the last full table snapshot. Backup requests are processed instantaneously and become available for restore within minutes. You can callCreateBackup at a maximum rate of 50 times per second. All backups in DynamoDB work without consuming any provisioned throughput on the table. If you submit a backup request on 2018-12-14 at 14:25:00, the backup is guaranteed to contain all data committed to the table up to 14:24:00, and data committed after 14:26:00 will not be. The backup might contain data modifications made between 14:24:00 and 14:26:00. On-demand backup does not support causal consistency. Along with data, the following are also included on the backups:
|
|
| CreateGlobalTable |
Show DescriptionCreates a global table from an existing table. A global table creates a replication relationship between two or more DynamoDB tables with the same table name in the provided Regions.
|
|
| CreateTable |
Show DescriptionTheCreateTable operation adds a new table to your account. In an AWS account, table names must be unique within each Region. That is, you can have two tables with same name if you create the tables in different Regions. CreateTable is an asynchronous operation. Upon receiving a CreateTable request, DynamoDB immediately returns a response with a TableStatus of CREATING. After the table is created, DynamoDB sets the TableStatus to ACTIVE. You can perform read and write operations only on an ACTIVE table. You can optionally define secondary indexes on the new table, as part of the CreateTable operation. If you want to create multiple tables with secondary indexes on them, you must create the tables sequentially. Only one table with secondary indexes can be in the CREATING state at any given time. You can use the DescribeTable action to check the table status.
|
|
| DeleteBackup |
Show DescriptionDeletes an existing backup of a table. You can callDeleteBackup at a maximum rate of 10 times per second.
|
|
| DeleteItem |
Show DescriptionDeletes a single item in a table by primary key. You can perform a conditional delete operation that deletes the item if it exists, or if it has an expected attribute value. In addition to deleting an item, you can also return the item's attribute values in the same operation, using theReturnValues parameter. Unless you specify conditions, the DeleteItem is an idempotent operation; running it multiple times on the same item or attribute does not result in an error response. Conditional deletes are useful for deleting items only if specific conditions are met. If those conditions are met, DynamoDB performs the delete. Otherwise, the item is not deleted.
|
|
| DeleteTable |
Show DescriptionTheDeleteTable operation deletes a table and all of its items. After a DeleteTable request, the specified table is in the DELETING state until DynamoDB completes the deletion. If the table is in the ACTIVE state, you can delete it. If a table is in CREATING or UPDATING states, then DynamoDB returns a ResourceInUseException. If the specified table does not exist, DynamoDB returns a ResourceNotFoundException. If table is already in the DELETING state, no error is returned. GetItem and PutItem, on a table in the DELETING state until the table deletion is complete. DISABLED state, and the stream is automatically deleted after 24 hours. Use the DescribeTable action to check the status of the table.
|
|
| DescribeBackup |
Show DescriptionDescribes an existing backup of a table. You can callDescribeBackup at a maximum rate of 10 times per second.
|
|
| DescribeContinuousBackups |
Show DescriptionChecks the status of continuous backups and point in time recovery on the specified table. Continuous backups areENABLED on all tables at table creation. If point in time recovery is enabled, PointInTimeRecoveryStatus will be set to ENABLED. After continuous backups and point in time recovery are enabled, you can restore to any point in time within EarliestRestorableDateTime and LatestRestorableDateTime. LatestRestorableDateTime is typically 5 minutes before the current time. You can restore your table to any point in time during the last 35 days. You can call DescribeContinuousBackups at a maximum rate of 10 times per second.
|
|
| DescribeContributorInsights |
Show DescriptionReturns information about contributor insights, for a given table or global secondary index. |
|
| DescribeEndpoints |
Show DescriptionReturns the regional endpoint information. |
|
| DescribeExport |
Show DescriptionDescribes an existing table export. |
|
| DescribeGlobalTable |
Show DescriptionReturns information about the specified global table. |
|
| DescribeGlobalTableSettings |
Show DescriptionDescribes Region-specific settings for a global table. |
|
| DescribeKinesisStreamingDestination |
Show DescriptionReturns information about the status of Kinesis streaming. |
|
| DescribeLimits |
Show DescriptionReturns the current provisioned-capacity quotas for your AWS account in a Region, both for the Region as a whole and for any one DynamoDB table that you create there. When you establish an AWS account, the account has initial quotas on the maximum read capacity units and write capacity units that you can provision across all of your DynamoDB tables in a given Region. Also, there are per-table quotas that apply when you create a table there. For more information, see Service, Account, and Table Quotas page in the Amazon DynamoDB Developer Guide. Although you can increase these quotas by filing a case at AWS Support Center, obtaining the increase is not instantaneous. TheDescribeLimits action lets you write code to compare the capacity you are currently using to those quotas imposed by your account so that you have enough time to apply for an increase before you hit a quota. For example, you could use one of the AWS SDKs to do the following:
DescribeLimits should only be called periodically. You can expect throttling errors if you call it more than once in a minute. DescribeLimits Request element has no content.
|
|
| DescribeTable |
Show DescriptionReturns information about the table, including the current status of the table, when it was created, the primary key schema, and any indexes on the table.DescribeTable request immediately after a CreateTable request, DynamoDB might return a ResourceNotFoundException. This is because DescribeTable uses an eventually consistent query, and the metadata for your table might not be available at that moment. Wait for a few seconds, and then try the DescribeTable request again. |
|
| DescribeTableReplicaAutoScaling |
Show DescriptionDescribes auto scaling settings across replicas of the global table at once. |
|
| DescribeTimeToLive |
Show DescriptionGives a description of the Time to Live (TTL) status on the specified table. |
|
| DisableKinesisStreamingDestination |
Show DescriptionStops replication from the DynamoDB table to the Kinesis data stream. This is done without deleting either of the resources. |
|
| EnableKinesisStreamingDestination |
Show DescriptionStarts table data replication to the specified Kinesis data stream at a timestamp chosen during the enable workflow. If this operation doesn't return results immediately, use DescribeKinesisStreamingDestination to check if streaming to the Kinesis data stream is ACTIVE. |
|
| ExecuteStatement |
Show DescriptionThis operation allows you to perform reads and singleton writes on data stored in DynamoDB, using PartiQL. |
|
| ExecuteTransaction |
Show DescriptionThis operation allows you to perform transactional reads or writes on data stored in DynamoDB, using PartiQL. |
|
| ExportTableToPointInTime |
Show DescriptionExports table data to an S3 bucket. The table must have point in time recovery enabled, and you can export data from any time within the point in time recovery window. |
|
| GetItem |
Show DescriptionTheGetItem operation returns a set of attributes for the item with the given primary key. If there is no matching item, GetItem does not return any data and there will be no Item element in the response. GetItem provides an eventually consistent read by default. If your application requires a strongly consistent read, set ConsistentRead to true. Although a strongly consistent read might take more time than an eventually consistent read, it always returns the last updated value.
|
|
| ListBackups |
Show DescriptionList backups associated with an AWS account. To list backups for a given table, specifyTableName. ListBackups returns a paginated list of results with at most 1 MB worth of items in a page. You can also specify a maximum number of entries to be returned in a page. In the request, start time is inclusive, but end time is exclusive. Note that these boundaries are for the time at which the original backup was requested. You can call ListBackups a maximum of five times per second.
|
|
| ListContributorInsights |
Show DescriptionReturns a list of ContributorInsightsSummary for a table and all its global secondary indexes. |
|
| ListExports |
Show DescriptionLists completed exports within the past 90 days. |
|
| ListGlobalTables |
Show DescriptionLists all global tables that have a replica in the specified Region. |
|
| ListTables |
Show DescriptionReturns an array of table names associated with the current account and endpoint. The output fromListTables is paginated, with each page returning a maximum of 100 table names.
|
|
| ListTagsOfResource |
Show DescriptionList all tags on an Amazon DynamoDB resource. You can call ListTagsOfResource up to 10 times per second, per account. For an overview on tagging DynamoDB resources, see Tagging for DynamoDB in the Amazon DynamoDB Developer Guide. |
|
| PutItem |
Show DescriptionCreates a new item, or replaces an old item with a new item. If an item that has the same primary key as the new item already exists in the specified table, the new item completely replaces the existing item. You can perform a conditional put operation (add a new item if one with the specified primary key doesn't exist), or replace an existing item if it has certain attribute values. You can return the item's attribute values in the same operation, using theReturnValues parameter. PutItem API. For information on how to call the PutItem API using the AWS SDK in specific languages, see the following:
ValidationException exception. attribute_not_exists function with the name of the attribute being used as the partition key for the table. Since every record must contain that attribute, the attribute_not_exists function will only succeed if no matching item exists. PutItem, see Working with Items in the Amazon DynamoDB Developer Guide.
|
|
| Query |
Show DescriptionTheQuery operation finds items based on primary key values. You can query any table or secondary index that has a composite primary key (a partition key and a sort key). Use the KeyConditionExpression parameter to provide a specific value for the partition key. The Query operation will return all of the items from the table or index with that partition key value. You can optionally narrow the scope of the Query operation by specifying a sort key value and a comparison operator in KeyConditionExpression. To further refine the Query results, you can optionally provide a FilterExpression. A FilterExpression determines which items within the results should be returned to you. All of the other results are discarded. A Query operation always returns a result set. If no matching items are found, the result set will be empty. Queries that do not return results consume the minimum number of read capacity units for that type of read operation. FilterExpression. Query results are always sorted by the sort key value. If the data type of the sort key is Number, the results are returned in numeric order; otherwise, the results are returned in order of UTF-8 bytes. By default, the sort order is ascending. To reverse the order, set the ScanIndexForward parameter to false. A single Query operation will read up to the maximum number of items set (if using the Limit parameter) or a maximum of 1 MB of data and then apply any filtering to the results using FilterExpression. If LastEvaluatedKey is present in the response, you will need to paginate the result set. For more information, see Paginating the Results in the Amazon DynamoDB Developer Guide. FilterExpression is applied after a Query finishes, but before the results are returned. A FilterExpression cannot contain partition key or sort key attributes. You need to specify those attributes in the KeyConditionExpression. Query operation can return an empty result set and a LastEvaluatedKey if all the items read for the page of results are filtered out. ConsistentRead parameter to true and obtain a strongly consistent result. Global secondary indexes support eventually consistent reads only, so do not specify ConsistentRead when querying a global secondary index.
|
|
| RestoreTableFromBackup |
Show DescriptionCreates a new table from an existing backup. Any number of users can execute up to 4 concurrent restores (any type of restore) in a given account. You can callRestoreTableFromBackup at a maximum rate of 10 times per second. You must manually set up the following on the restored table:
|
|
| RestoreTableToPointInTime |
Show DescriptionRestores the specified table to the specified point in time withinEarliestRestorableDateTime and LatestRestorableDateTime. You can restore your table to any point in time during the last 35 days. Any number of users can execute up to 4 concurrent restores (any type of restore) in a given account. When you restore using point in time recovery, DynamoDB restores your table data to the state based on the selected date and time (day:hour:minute:second) to a new table. Along with data, the following are also included on the new restored table using point in time recovery:
|
|
| Scan |
Show DescriptionTheScan operation returns one or more items and item attributes by accessing every item in a table or a secondary index. To have DynamoDB return fewer items, you can provide a FilterExpression operation. If the total number of scanned items exceeds the maximum dataset size limit of 1 MB, the scan stops and results are returned to the user as a LastEvaluatedKey value to continue the scan in a subsequent operation. The results also include the number of items exceeding the limit. A scan can result in no table data meeting the filter criteria. A single Scan operation reads up to the maximum number of items set (if using the Limit parameter) or a maximum of 1 MB of data and then apply any filtering to the results using FilterExpression. If LastEvaluatedKey is present in the response, you need to paginate the result set. For more information, see Paginating the Results in the Amazon DynamoDB Developer Guide. Scan operations proceed sequentially; however, for faster performance on a large table or secondary index, applications can request a parallel Scan operation by providing the Segment and TotalSegments parameters. For more information, see Parallel Scan in the Amazon DynamoDB Developer Guide. Scan uses eventually consistent reads when accessing the data in a table; therefore, the result set might not include the changes to data in the table immediately before the operation began. If you need a consistent copy of the data, as of the time that the Scan begins, you can set the ConsistentRead parameter to true.
|
|
| TagResource | ||
| TransactGetItems |
Show DescriptionTransactGetItems is a synchronous operation that atomically retrieves multiple items from one or more tables (but not from indexes) in a single account and Region. A TransactGetItems call can contain up to 25 TransactGetItem objects, each of which contains a Get structure that specifies an item to retrieve from a table in the account and Region. A call to TransactGetItems cannot retrieve items from tables in more than one AWS account or Region. The aggregate size of the items in the transaction cannot exceed 4 MB. DynamoDB rejects the entire TransactGetItems request if any of the following is true:
|
|
| TransactWriteItems |
Show DescriptionTransactWriteItems is a synchronous write operation that groups up to 25 action requests. These actions can target items in different tables, but not in different AWS accounts or Regions, and no two actions can target the same item. For example, you cannot both ConditionCheck and Update the same item. The aggregate size of the items in the transaction cannot exceed 4 MB. The actions are completed atomically so that either all of them succeed, or all of them fail. They are defined by the following objects:
TransactWriteItems request if any of the following is true:
|
|
| UntagResource | ||
| UpdateContinuousBackups |
Show DescriptionUpdateContinuousBackups enables or disables point in time recovery for the specified table. A successful UpdateContinuousBackups call returns the current ContinuousBackupsDescription. Continuous backups are ENABLED on all tables at table creation. If point in time recovery is enabled, PointInTimeRecoveryStatus will be set to ENABLED. Once continuous backups and point in time recovery are enabled, you can restore to any point in time within EarliestRestorableDateTime and LatestRestorableDateTime. LatestRestorableDateTime is typically 5 minutes before the current time. You can restore your table to any point in time during the last 35 days.
|
|
| UpdateContributorInsights |
Show DescriptionUpdates the status for contributor insights for a specific table or index. |
|
| UpdateGlobalTable |
Show DescriptionAdds or removes replicas in the specified global table. The global table must already exist to be able to use this operation. Any replica to be added must be empty, have the same name as the global table, have the same key schema, have DynamoDB Streams enabled, and have the same provisioned and maximum write capacity units.UpdateGlobalTable to add replicas and remove replicas in a single request, for simplicity we recommend that you issue separate requests for adding or removing replicas.
|
|
| UpdateGlobalTableSettings |
Show DescriptionUpdates settings for a global table. |
|
| UpdateItem |
Show DescriptionEdits an existing item's attributes, or adds a new item to the table if it does not already exist. You can put, delete, or add attribute values. You can also perform a conditional update on an existing item (insert a new attribute name-value pair if it doesn't exist, or replace an existing name-value pair if it has certain expected attribute values). You can also return the item's attribute values in the sameUpdateItem operation using the ReturnValues parameter.
|
|
| UpdateTable |
Show DescriptionModifies the provisioned throughput settings, global secondary indexes, or DynamoDB Streams settings for a given table. You can only perform one of the following operations at once:
UpdateTable is an asynchronous operation; while it is executing, the table status changes from ACTIVE to UPDATING. While it is UPDATING, you cannot issue another UpdateTable request. When the table returns to the ACTIVE state, the UpdateTable operation is complete.
|
|
| UpdateTableReplicaAutoScaling |
Show DescriptionUpdates auto scaling settings on your global tables at once. |
Dynamodbstreams Events
| Service | Event Name | Description |
|---|---|---|
| dynamodbstreams | DescribeStream |
Show DescriptionReturns information about a stream, including the current status of the stream, its Amazon Resource Name (ARN), the composition of its shards, and its corresponding DynamoDB table.DescribeStream at a maximum rate of 10 times per second. SequenceNumberRange associated with it. If the SequenceNumberRange has a StartingSequenceNumber but no EndingSequenceNumber, then the shard is still open (able to receive more stream records). If both StartingSequenceNumber and EndingSequenceNumber are present, then that shard is closed and can no longer receive more data.
|
| GetRecords |
Show DescriptionRetrieves the stream records from a given shard. Specify a shard iterator using theShardIterator parameter. The shard iterator specifies the position in the shard from which you want to start reading stream records sequentially. If there are no stream records available in the portion of the shard that the iterator points to, GetRecords returns an empty list. Note that it might take multiple calls to get to a portion of the shard that contains stream records. GetRecords can retrieve a maximum of 1 MB of data or 1000 stream records, whichever comes first. |
|
| GetShardIterator |
Show DescriptionReturns a shard iterator. A shard iterator provides information about how to retrieve the stream records from within a shard. Use the shard iterator in a subsequentGetRecords request to read the stream records from the shard. |
Ebs Events
| Service | Event Name | Description |
|---|---|---|
| ebs | CompleteSnapshot |
Show DescriptionSeals and completes the snapshot after all of the required blocks of data have been written to it. Completing the snapshot changes the status tocompleted. You cannot write new blocks to a snapshot after it has been completed.
|
| GetSnapshotBlock |
Show DescriptionReturns the data in a block in an Amazon Elastic Block Store snapshot. |
|
| ListChangedBlocks |
Show DescriptionReturns information about the blocks that are different between two Amazon Elastic Block Store snapshots of the same volume/snapshot lineage. |
|
| ListSnapshotBlocks |
Show DescriptionReturns information about the blocks in an Amazon Elastic Block Store snapshot. |
|
| PutSnapshotBlock |
Show DescriptionWrites a block of data to a snapshot. If the specified block contains data, the existing data is overwritten. The target snapshot must be in thepending state. Data written to a snapshot must be aligned with 512-KiB sectors.
|
Ec2-instance-connect Events
| Service | Event Name | Description |
|---|---|---|
| ec2-instance-connect | SendSSHPublicKey |
Show DescriptionPushes an SSH public key to the specified EC2 instance for use by the specified user. The key remains for 60 seconds. For more information, see Connect to your Linux instance using EC2 Instance Connect in the Amazon EC2 User Guide. |
Ecr-public Events
| Service | Event Name | Description |
|---|---|---|
| ecr-public | BatchCheckLayerAvailability |
Show DescriptionChecks the availability of one or more image layers within a repository in a public registry. When an image is pushed to a repository, each image layer is checked to verify if it has been uploaded before. If it has been uploaded, then the image layer is skipped.docker CLI to pull, tag, and push images. |
| BatchDeleteImage |
Show DescriptionDeletes a list of specified images within a repository in a public registry. Images are specified with either animageTag or imageDigest. You can remove a tag from an image by specifying the image's tag in your request. When you remove the last tag from an image, the image is deleted from your repository. You can completely delete an image (and all of its tags) by specifying the image's digest in your request.
|
|
| CompleteLayerUpload |
Show DescriptionInforms Amazon ECR that the image layer upload has completed for a specified public registry, repository name, and upload ID. You can optionally provide asha256 digest of the image layer for data validation purposes. When an image is pushed, the CompleteLayerUpload API is called once per each new image layer to verify that the upload has completed. docker CLI to pull, tag, and push images. |
|
| CreateRepository |
Show DescriptionCreates a repository in a public registry. For more information, see Amazon ECR repositories in the Amazon Elastic Container Registry User Guide. |
|
| DeleteRepository |
Show DescriptionDeletes a repository in a public registry. If the repository contains images, you must either delete all images in the repository or use theforce option which deletes all images on your behalf before deleting the repository.
|
|
| DeleteRepositoryPolicy |
Show DescriptionDeletes the repository policy associated with the specified repository. |
|
| DescribeImageTags |
Show DescriptionReturns the image tag details for a repository in a public registry. |
|
| DescribeImages |
Show DescriptionReturns metadata about the images in a repository in a public registry.docker images command shows the uncompressed image size, so it may return a larger image size than the image sizes returned by DescribeImages. |
|
| DescribeRegistries |
Show DescriptionReturns details for a public registry. |
|
| DescribeRepositories |
Show DescriptionDescribes repositories in a public registry. |
|
| GetAuthorizationToken |
Show DescriptionRetrieves an authorization token. An authorization token represents your IAM authentication credentials and can be used to access any Amazon ECR registry that your IAM principal has access to. The authorization token is valid for 12 hours. This API requires theecr-public:GetAuthorizationToken and sts:GetServiceBearerToken permissions.
|
|
| GetRegistryCatalogData |
Show DescriptionRetrieves catalog metadata for a public registry. |
|
| GetRepositoryCatalogData |
Show DescriptionRetrieve catalog metadata for a repository in a public registry. This metadata is displayed publicly in the Amazon ECR Public Gallery. |
|
| GetRepositoryPolicy |
Show DescriptionRetrieves the repository policy for the specified repository. |
|
| InitiateLayerUpload |
Show DescriptionNotifies Amazon ECR that you intend to upload an image layer. When an image is pushed, the InitiateLayerUpload API is called once per image layer that has not already been uploaded. Whether or not an image layer has been uploaded is determined by the BatchCheckLayerAvailability API action.docker CLI to pull, tag, and push images. |
|
| ListTagsForResource |
Show DescriptionList the tags for an Amazon ECR Public resource. |
|
| PutImage |
Show DescriptionCreates or updates the image manifest and tags associated with an image. When an image is pushed and all new image layers have been uploaded, the PutImage API is called once to create or update the image manifest and the tags associated with the image.docker CLI to pull, tag, and push images. |
|
| PutRegistryCatalogData |
Show DescriptionCreate or updates the catalog data for a public registry. |
|
| PutRepositoryCatalogData |
Show DescriptionCreates or updates the catalog data for a repository in a public registry. |
|
| SetRepositoryPolicy |
Show DescriptionApplies a repository policy to the specified public repository to control access permissions. For more information, see Amazon ECR Repository Policies in the Amazon Elastic Container Registry User Guide. |
|
| TagResource |
Show DescriptionAssociates the specified tags to a resource with the specifiedresourceArn. If existing tags on a resource are not specified in the request parameters, they are not changed. When a resource is deleted, the tags associated with that resource are deleted as well.
|
|
| UntagResource |
Show DescriptionDeletes specified tags from a resource. |
Ecr Events
| Service | Event Name | Description |
|---|---|---|
| ecr | BatchCheckLayerAvailability |
Show DescriptionChecks the availability of one or more image layers in a repository. When an image is pushed to a repository, each image layer is checked to verify if it has been uploaded before. If it has been uploaded, then the image layer is skipped.docker CLI to pull, tag, and push images. |
| BatchDeleteImage |
Show DescriptionDeletes a list of specified images within a repository. Images are specified with either animageTag or imageDigest. You can remove a tag from an image by specifying the image's tag in your request. When you remove the last tag from an image, the image is deleted from your repository. You can completely delete an image (and all of its tags) by specifying the image's digest in your request.
|
|
| BatchGetImage |
Show DescriptionGets detailed information for an image. Images are specified with either animageTag or imageDigest. When an image is pulled, the BatchGetImage API is called once to retrieve the image manifest.
|
|
| CompleteLayerUpload |
Show DescriptionInforms Amazon ECR that the image layer upload has completed for a specified registry, repository name, and upload ID. You can optionally provide asha256 digest of the image layer for data validation purposes. When an image is pushed, the CompleteLayerUpload API is called once per each new image layer to verify that the upload has completed. docker CLI to pull, tag, and push images. |
|
| CreateRepository |
Show DescriptionCreates a repository. For more information, see Amazon ECR repositories in the Amazon Elastic Container Registry User Guide. |
|
| DeleteLifecyclePolicy |
Show DescriptionDeletes the lifecycle policy associated with the specified repository. |
|
| DeleteRegistryPolicy |
Show DescriptionDeletes the registry permissions policy. |
|
| DeleteRepository |
Show DescriptionDeletes a repository. If the repository contains images, you must either delete all images in the repository or use theforce option to delete the repository.
|
|
| DeleteRepositoryPolicy |
Show DescriptionDeletes the repository policy associated with the specified repository. |
|
| DescribeImageReplicationStatus |
Show DescriptionReturns the replication status for a specified image. |
|
| DescribeImageScanFindings |
Show DescriptionReturns the scan findings for the specified image. |
|
| DescribeImages |
Show DescriptionReturns metadata about the images in a repository.docker images command shows the uncompressed image size, so it may return a larger image size than the image sizes returned by DescribeImages. |
|
| DescribeRegistry |
Show DescriptionDescribes the settings for a registry. The replication configuration for a repository can be created or updated with the PutReplicationConfiguration API action. |
|
| DescribeRepositories |
Show DescriptionDescribes image repositories in a registry. |
|
| GetAuthorizationToken |
Show DescriptionRetrieves an authorization token. An authorization token represents your IAM authentication credentials and can be used to access any Amazon ECR registry that your IAM principal has access to. The authorization token is valid for 12 hours. TheauthorizationToken returned is a base64 encoded string that can be decoded and used in a docker login command to authenticate to a registry. The CLI offers an get-login-password command that simplifies the login process. For more information, see Registry authentication in the Amazon Elastic Container Registry User Guide.
|
|
| GetDownloadUrlForLayer |
Show DescriptionRetrieves the pre-signed Amazon S3 download URL corresponding to an image layer. You can only get URLs for image layers that are referenced in an image. When an image is pulled, the GetDownloadUrlForLayer API is called once per image layer that is not already cached.docker CLI to pull, tag, and push images. |
|
| GetLifecyclePolicy |
Show DescriptionRetrieves the lifecycle policy for the specified repository. |
|
| GetLifecyclePolicyPreview |
Show DescriptionRetrieves the results of the lifecycle policy preview request for the specified repository. |
|
| GetRegistryPolicy |
Show DescriptionRetrieves the permissions policy for a registry. |
|
| GetRepositoryPolicy |
Show DescriptionRetrieves the repository policy for the specified repository. |
|
| InitiateLayerUpload |
Show DescriptionNotifies Amazon ECR that you intend to upload an image layer. When an image is pushed, the InitiateLayerUpload API is called once per image layer that has not already been uploaded. Whether or not an image layer has been uploaded is determined by the BatchCheckLayerAvailability API action.docker CLI to pull, tag, and push images. |
|
| ListImages |
Show DescriptionLists all the image IDs for the specified repository. You can filter images based on whether or not they are tagged by using thetagStatus filter and specifying either TAGGED, UNTAGGED or ANY. For example, you can filter your results to return only UNTAGGED images and then pipe that result to a BatchDeleteImage operation to delete them. Or, you can filter your results to return only TAGGED images to list all of the tags in your repository.
|
|
| ListTagsForResource |
Show DescriptionList the tags for an Amazon ECR resource. |
|
| PutImage |
Show DescriptionCreates or updates the image manifest and tags associated with an image. When an image is pushed and all new image layers have been uploaded, the PutImage API is called once to create or update the image manifest and the tags associated with the image.docker CLI to pull, tag, and push images. |
|
| PutImageScanningConfiguration |
Show DescriptionUpdates the image scanning configuration for the specified repository. |
|
| PutImageTagMutability |
Show DescriptionUpdates the image tag mutability settings for the specified repository. For more information, see Image tag mutability in the Amazon Elastic Container Registry User Guide. |
|
| PutLifecyclePolicy |
Show DescriptionCreates or updates the lifecycle policy for the specified repository. For more information, see Lifecycle policy template. |
|
| PutRegistryPolicy |
Show DescriptionCreates or updates the permissions policy for your registry. A registry policy is used to specify permissions for another Amazon Web Services account and is used when configuring cross-account replication. For more information, see Registry permissions in the Amazon Elastic Container Registry User Guide. |
|
| PutReplicationConfiguration |
Show DescriptionCreates or updates the replication configuration for a registry. The existing replication configuration for a repository can be retrieved with the DescribeRegistry API action. The first time the PutReplicationConfiguration API is called, a service-linked IAM role is created in your account for the replication process. For more information, see Using service-linked roles for Amazon ECR in the Amazon Elastic Container Registry User Guide. |
|
| SetRepositoryPolicy |
Show DescriptionApplies a repository policy to the specified repository to control access permissions. For more information, see Amazon ECR Repository policies in the Amazon Elastic Container Registry User Guide. |
|
| StartImageScan |
Show DescriptionStarts an image vulnerability scan. An image scan can only be started once per 24 hours on an individual image. This limit includes if an image was scanned on initial push. For more information, see Image scanning in the Amazon Elastic Container Registry User Guide. |
|
| StartLifecyclePolicyPreview |
Show DescriptionStarts a preview of a lifecycle policy for the specified repository. This allows you to see the results before associating the lifecycle policy with the repository. |
|
| TagResource |
Show DescriptionAdds specified tags to a resource with the specified ARN. Existing tags on a resource are not changed if they are not specified in the request parameters. |
|
| UntagResource |
Show DescriptionDeletes specified tags from a resource. |
Ecs Events
| Service | Event Name | Description |
|---|---|---|
| ecs | CreateCapacityProvider |
Show DescriptionCreates a new capacity provider. Capacity providers are associated with an Amazon ECS cluster and are used in capacity provider strategies to facilitate cluster auto scaling. Only capacity providers using an Auto Scaling group can be created. Amazon ECS tasks on Fargate use theFARGATE and FARGATE_SPOT capacity providers which are already created and available to all accounts in Regions supported by Fargate.
|
| CreateCluster |
Show DescriptionCreates a new Amazon ECS cluster. By default, your account receives adefault cluster when you launch your first container instance. However, you can create your own cluster with a unique name with the CreateCluster action. |
|
| CreateService |
Show DescriptionRuns and maintains a desired number of tasks from a specified task definition. If the number of tasks running in a service drops below thedesiredCount, Amazon ECS runs another copy of the task in the specified cluster. To update an existing service, see the UpdateService action. In addition to maintaining the desired count of tasks in your service, you can optionally run your service behind one or more load balancers. The load balancers distribute traffic across the tasks that are associated with the service. For more information, see Service Load Balancing in the Amazon Elastic Container Service Developer Guide. Tasks for services that do not use a load balancer are considered healthy if they're in the RUNNING state. Tasks for services that do use a load balancer are considered healthy if they're in the RUNNING state and the container instance that they're hosted on is reported as healthy by the load balancer. There are two service scheduler strategies available:
minimumHealthyPercent is 100%. The default value for a daemon service for minimumHealthyPercent is 0%. If a service is using the ECS deployment controller, the minimum healthy percent represents a lower limit on the number of tasks in a service that must remain in the RUNNING state during a deployment, as a percentage of the desired number of tasks (rounded up to the nearest integer), and while any container instances are in the DRAINING state if the service contains tasks using the EC2 launch type. This parameter enables you to deploy without using additional cluster capacity. For example, if your service has a desired number of four tasks and a minimum healthy percent of 50%, the scheduler might stop two existing tasks to free up cluster capacity before starting two new tasks. Tasks for services that do not use a load balancer are considered healthy if they're in the RUNNING state. Tasks for services that do use a load balancer are considered healthy if they're in the RUNNING state and they're reported as healthy by the load balancer. The default value for minimum healthy percent is 100%. If a service is using the ECS deployment controller, the maximum percent parameter represents an upper limit on the number of tasks in a service that are allowed in the RUNNING or PENDING state during a deployment, as a percentage of the desired number of tasks (rounded down to the nearest integer), and while any container instances are in the DRAINING state if the service contains tasks using the EC2 launch type. This parameter enables you to define the deployment batch size. For example, if your service has a desired number of four tasks and a maximum percent value of 200%, the scheduler may start four new tasks before stopping the four older tasks (provided that the cluster resources required to do this are available). The default value for maximum percent is 200%. If a service is using either the CODE_DEPLOY or EXTERNAL deployment controller types and tasks that use the EC2 launch type, the minimum healthy percent and maximum percent values are used only to define the lower and upper limit on the number of the tasks in the service that remain in the RUNNING state while the container instances are in the DRAINING state. If the tasks in the service use the Fargate launch type, the minimum healthy percent and maximum percent values aren't used, although they're currently visible when describing your service. When creating a service that uses the EXTERNAL deployment controller, you can specify only parameters that aren't controlled at the task set level. The only required parameter is the service name. You control your services using the CreateTaskSet operation. For more information, see Amazon ECS Deployment Types in the Amazon Elastic Container Service Developer Guide. When the service scheduler launches new tasks, it determines task placement in your cluster using the following logic:
|
|
| CreateTaskSet |
Show DescriptionCreate a task set in the specified cluster and service. This is used when a service uses theEXTERNAL deployment controller type. For more information, see Amazon ECS Deployment Types in the Amazon Elastic Container Service Developer Guide.
|
|
| DeleteAccountSetting |
Show DescriptionDisables an account setting for a specified IAM user, IAM role, or the root user for an account. |
|
| DeleteAttributes |
Show DescriptionDeletes one or more custom attributes from an Amazon ECS resource. |
|
| DeleteCapacityProvider |
Show DescriptionDeletes the specified capacity provider.FARGATE and FARGATE_SPOT capacity providers are reserved and cannot be deleted. You can disassociate them from a cluster using either the PutClusterCapacityProviders API or by deleting the cluster. forceNewDeployment option can be used to ensure that any tasks using the Amazon EC2 instance capacity provided by the capacity provider are transitioned to use the capacity from the remaining capacity providers. Only capacity providers that are not associated with a cluster can be deleted. To remove a capacity provider from a cluster, you can either use PutClusterCapacityProviders or delete the cluster.
|
|
| DeleteCluster |
Show DescriptionDeletes the specified cluster. The cluster will transition to theINACTIVE state. Clusters with an INACTIVE status may remain discoverable in your account for a period of time. However, this behavior is subject to change in the future, so you should not rely on INACTIVE clusters persisting. You must deregister all container instances from this cluster before you may delete it. You can list the container instances in a cluster with ListContainerInstances and deregister them with DeregisterContainerInstance.
|
|
| DeleteService |
Show DescriptionDeletes a specified service within a cluster. You can delete a service if you have no running tasks in it and the desired task count is zero. If the service is actively maintaining tasks, you cannot delete it, and you must update the service to a desired task count of zero. For more information, see UpdateService.ACTIVE to DRAINING, and the service is no longer visible in the console or in the ListServices API operation. After all tasks have transitioned to either STOPPING or STOPPED status, the service status moves from DRAINING to INACTIVE. Services in the DRAINING or INACTIVE status can still be viewed with the DescribeServices API operation. However, in the future, INACTIVE services may be cleaned up and purged from Amazon ECS record keeping, and DescribeServices calls on those services return a ServiceNotFoundException error. ACTIVE or DRAINING status, you receive an error. |
|
| DeleteTaskSet |
Show DescriptionDeletes a specified task set within a service. This is used when a service uses theEXTERNAL deployment controller type. For more information, see Amazon ECS Deployment Types in the Amazon Elastic Container Service Developer Guide.
|
|
| DeregisterContainerInstance |
Show DescriptionDeregisters an Amazon ECS container instance from the specified cluster. This instance is no longer available to run tasks. If you intend to use the container instance for some other purpose after deregistration, you should stop all of the tasks running on the container instance before deregistration. That prevents any orphaned tasks from consuming resources. Deregistering a container instance removes the instance from a cluster, but it does not terminate the EC2 instance. If you are finished using the instance, be sure to terminate it in the Amazon EC2 console to stop billing. |
|
| DeregisterTaskDefinition |
Show DescriptionDeregisters the specified task definition by family and revision. Upon deregistration, the task definition is marked asINACTIVE. Existing tasks and services that reference an INACTIVE task definition continue to run without disruption. Existing services that reference an INACTIVE task definition can still scale up or down by modifying the service's desired count. You cannot use an INACTIVE task definition to run new tasks or create new services, and you cannot update an existing service to reference an INACTIVE task definition. However, there may be up to a 10-minute window following deregistration where these restrictions have not yet taken effect. INACTIVE task definitions remain discoverable in your account indefinitely. However, this behavior is subject to change in the future, so you should not rely on INACTIVE task definitions persisting beyond the lifecycle of any associated tasks and services. |
|
| DescribeCapacityProviders |
Show DescriptionDescribes one or more of your capacity providers. |
|
| DescribeClusters |
Show DescriptionDescribes one or more of your clusters. |
|
| DescribeContainerInstances |
Show DescriptionDescribes one or more container instances. Returns metadata about each container instance requested. |
|
| DescribeServices |
Show DescriptionDescribes the specified services running in your cluster. |
|
| DescribeTaskDefinition |
Show DescriptionDescribes a task definition. You can specify afamily and revision to find information about a specific task definition, or you can simply specify the family to find the latest ACTIVE revision in that family. INACTIVE task definitions while an active task or service references them. |
|
| DescribeTaskSets |
Show DescriptionDescribes the task sets in the specified cluster and service. This is used when a service uses theEXTERNAL deployment controller type. For more information, see Amazon ECS Deployment Types in the Amazon Elastic Container Service Developer Guide.
|
|
| DescribeTasks |
Show DescriptionDescribes a specified task or tasks. |
|
| DiscoverPollEndpoint |
Show Description |
|
| ExecuteCommand |
Show DescriptionRuns a command remotely on a container within a task. |
|
| ListAccountSettings |
Show DescriptionLists the account settings for a specified principal. |
|
| ListAttributes |
Show DescriptionLists the attributes for Amazon ECS resources within a specified target type and cluster. When you specify a target type and cluster,ListAttributes returns a list of attribute objects, one for each attribute on each resource. You can filter the list of results to a single attribute name to only return results that have that name. You can also filter the results by attribute name and value, for example, to see which container instances in a cluster are running a Linux AMI (ecs.os-type=linux).
|
|
| ListClusters |
Show DescriptionReturns a list of existing clusters. |
|
| ListContainerInstances |
Show DescriptionReturns a list of container instances in a specified cluster. You can filter the results of aListContainerInstances operation with cluster query language statements inside the filter parameter. For more information, see Cluster Query Language in the Amazon Elastic Container Service Developer Guide.
|
|
| ListServices |
Show DescriptionReturns a list of services. You can filter the results by cluster, launch type, and scheduling strategy. |
|
| ListTagsForResource |
Show DescriptionList the tags for an Amazon ECS resource. |
|
| ListTaskDefinitionFamilies |
Show DescriptionReturns a list of task definition families that are registered to your account (which may include task definition families that no longer have anyACTIVE task definition revisions). You can filter out task definition families that do not contain any ACTIVE task definition revisions by setting the status parameter to ACTIVE. You can also filter the results with the familyPrefix parameter.
|
|
| ListTaskDefinitions |
Show DescriptionReturns a list of task definitions that are registered to your account. You can filter the results by family name with thefamilyPrefix parameter or by status with the status parameter.
|
|
| ListTasks |
Show DescriptionReturns a list of tasks. You can filter the results by cluster, task definition family, container instance, launch type, what IAM principal started the task, or by the desired status of the task. Recently stopped tasks might appear in the returned results. Currently, stopped tasks appear in the returned results for at least one hour. |
|
| PutAccountSetting |
Show DescriptionModifies an account setting. Account settings are set on a per-Region basis. If you change the account setting for the root user, the default settings for all of the IAM users and roles for which no individual account setting has been specified are reset. For more information, see Account Settings in the Amazon Elastic Container Service Developer Guide. WhenserviceLongArnFormat, taskLongArnFormat, or containerInstanceLongArnFormat are specified, the Amazon Resource Name (ARN) and resource ID format of the resource type for a specified IAM user, IAM role, or the root user for an account is affected. The opt-in and opt-out account setting must be set for each Amazon ECS resource separately. The ARN and resource ID format of a resource will be defined by the opt-in status of the IAM user or role that created the resource. You must enable this setting to use Amazon ECS features such as resource tagging. When awsvpcTrunking is specified, the elastic network interface (ENI) limit for any new container instances that support the feature is changed. If awsvpcTrunking is enabled, any new container instances that support the feature are launched have the increased ENI limits available to them. For more information, see Elastic Network Interface Trunking in the Amazon Elastic Container Service Developer Guide. When containerInsights is specified, the default setting indicating whether CloudWatch Container Insights is enabled for your clusters is changed. If containerInsights is enabled, any new clusters that are created will have Container Insights enabled unless you disable it during cluster creation. For more information, see CloudWatch Container Insights in the Amazon Elastic Container Service Developer Guide.
|
|
| PutAccountSettingDefault |
Show DescriptionModifies an account setting for all IAM users on an account for whom no individual account setting has been specified. Account settings are set on a per-Region basis. |
|
| PutAttributes |
Show DescriptionCreate or update an attribute on an Amazon ECS resource. If the attribute does not exist, it is created. If the attribute exists, its value is replaced with the specified value. To delete an attribute, use DeleteAttributes. For more information, see Attributes in the Amazon Elastic Container Service Developer Guide. |
|
| PutClusterCapacityProviders |
Show DescriptionModifies the available capacity providers and the default capacity provider strategy for a cluster. You must specify both the available capacity providers and a default capacity provider strategy for the cluster. If the specified cluster has existing capacity providers associated with it, you must specify all existing capacity providers in addition to any new ones you want to add. Any existing capacity providers associated with a cluster that are omitted from a PutClusterCapacityProviders API call will be disassociated with the cluster. You can only disassociate an existing capacity provider from a cluster if it's not being used by any existing tasks. When creating a service or running a task on a cluster, if no capacity provider or launch type is specified, then the cluster's default capacity provider strategy is used. It is recommended to define a default capacity provider strategy for your cluster, however you may specify an empty array ([]) to bypass defining a default strategy.
|
|
| RegisterContainerInstance |
Show Description |
|
| RegisterTaskDefinition |
Show DescriptionRegisters a new task definition from the suppliedfamily and containerDefinitions. Optionally, you can add data volumes to your containers with the volumes parameter. For more information about task definition parameters and defaults, see Amazon ECS Task Definitions in the Amazon Elastic Container Service Developer Guide. You can specify an IAM role for your task with the taskRoleArn parameter. When you specify an IAM role for a task, its containers can then use the latest versions of the CLI or SDKs to make API requests to the Amazon Web Services services that are specified in the IAM policy associated with the role. For more information, see IAM Roles for Tasks in the Amazon Elastic Container Service Developer Guide. You can specify a Docker networking mode for the containers in your task definition with the networkMode parameter. The available network modes correspond to those described in Network settings in the Docker run reference. If you specify the awsvpc network mode, the task is allocated an elastic network interface, and you must specify a NetworkConfiguration when you create a service or run a task with the task definition. For more information, see Task Networking in the Amazon Elastic Container Service Developer Guide.
|
|
| RunTask |
Show DescriptionStarts a new task using the specified task definition. You can allow Amazon ECS to place tasks for you, or you can customize how Amazon ECS places tasks using placement constraints and placement strategies. For more information, see Scheduling Tasks in the Amazon Elastic Container Service Developer Guide. Alternatively, you can use StartTask to use your own scheduler or place tasks manually on specific container instances. The Amazon ECS API follows an eventual consistency model, due to the distributed nature of the system supporting the API. This means that the result of an API command you run that affects your Amazon ECS resources might not be immediately visible to all subsequent commands you run. Keep this in mind when you carry out an API command that immediately follows a previous API command. To manage eventual consistency, you can do the following:
|
|
| StartTask |
Show DescriptionStarts a new task from the specified task definition on the specified container instance or instances. Alternatively, you can use RunTask to place tasks for you. For more information, see Scheduling Tasks in the Amazon Elastic Container Service Developer Guide. |
|
| StopTask |
Show DescriptionStops a running task. Any tags associated with the task will be deleted. When StopTask is called on a task, the equivalent ofdocker stop is issued to the containers running in the task. This results in a SIGTERM value and a default 30-second timeout, after which the SIGKILL value is sent and the containers are forcibly stopped. If the container handles the SIGTERM value gracefully and exits within 30 seconds from receiving it, no SIGKILL value is sent. ECS_CONTAINER_STOP_TIMEOUT variable. For more information, see Amazon ECS Container Agent Configuration in the Amazon Elastic Container Service Developer Guide. |
|
| SubmitAttachmentStateChanges |
Show Description |
|
| SubmitContainerStateChange |
Show Description |
|
| SubmitTaskStateChange |
Show Description |
|
| TagResource |
Show DescriptionAssociates the specified tags to a resource with the specifiedresourceArn. If existing tags on a resource are not specified in the request parameters, they are not changed. When a resource is deleted, the tags associated with that resource are deleted as well.
|
|
| UntagResource |
Show DescriptionDeletes specified tags from a resource. |
|
| UpdateCapacityProvider |
Show DescriptionModifies the parameters for a capacity provider. |
|
| UpdateCluster |
Show DescriptionUpdates the cluster. |
|
| UpdateClusterSettings |
Show DescriptionModifies the settings to use for a cluster. |
|
| UpdateContainerAgent |
Show DescriptionUpdates the Amazon ECS container agent on a specified container instance. Updating the Amazon ECS container agent does not interrupt running tasks or services on the container instance. The process for updating the agent differs depending on whether your container instance was launched with the Amazon ECS-optimized AMI or another operating system.UpdateContainerAgent API isn't supported for container instances using the Amazon ECS-optimized Amazon Linux 2 (arm64) AMI. To update the container agent, you can update the ecs-init package which will update the agent. For more information, see Updating the Amazon ECS container agent in the Amazon Elastic Container Service Developer Guide. UpdateContainerAgent API requires an Amazon ECS-optimized AMI or Amazon Linux AMI with the ecs-init service installed and running. For help updating the Amazon ECS container agent on other operating systems, see Manually updating the Amazon ECS container agent in the Amazon Elastic Container Service Developer Guide.
|
|
| UpdateContainerInstancesState |
Show DescriptionModifies the status of an Amazon ECS container instance. Once a container instance has reached anACTIVE state, you can change the status of a container instance to DRAINING to manually remove an instance from a cluster, for example to perform system updates, update the Docker daemon, or scale down the cluster size. DRAINING until it has reached an ACTIVE status. If the instance is in any other status, an error will be received. DRAINING, Amazon ECS prevents new tasks from being scheduled for placement on the container instance and replacement service tasks are started on other container instances in the cluster if the resources are available. Service tasks on the container instance that are in the PENDING state are stopped immediately. Service tasks on the container instance that are in the RUNNING state are stopped and replaced according to the service's deployment configuration parameters, minimumHealthyPercent and maximumPercent. You can change the deployment configuration of your service using UpdateService.
PENDING or RUNNING tasks that do not belong to a service are not affected. You must wait for them to finish or stop them manually. A container instance has completed draining when it has no more RUNNING tasks. You can verify this using ListTasks. When a container instance has been drained, you can set a container instance to ACTIVE status and once it has reached that status the Amazon ECS scheduler can begin scheduling tasks on the instance again.
|
|
| UpdateService |
Show DescriptionECS) deployment controller, the desired count, deployment configuration, network configuration, task placement constraints and strategies, or task definition used can be updated. For services using the blue/green (CODE_DEPLOY) deployment controller, only the desired count, deployment configuration, task placement constraints and strategies, and health check grace period can be updated using this API. If the network configuration, platform version, or task definition need to be updated, a new CodeDeploy deployment should be created. For more information, see CreateDeployment in the CodeDeploy API Reference. For services using an external deployment controller, you can update only the desired count, task placement constraints and strategies, and health check grace period using this API. If the launch type, load balancer, network configuration, platform version, or task definition need to be updated, you should create a new task set. For more information, see CreateTaskSet. You can add to or subtract from the number of instantiations of a task definition in a service by specifying the cluster that the service is running in and a new desiredCount parameter. If you have updated the Docker image of your application, you can create a new task definition with that image and deploy it to your service. The service scheduler uses the minimum healthy percent and maximum percent parameters (in the service's deployment configuration) to determine the deployment strategy. my_image:latest), you do not need to create a new revision of your task definition. You can update the service using the forceNewDeployment option. The new tasks launched by the deployment pull the current image/tag combination from your repository when they start. minimumHealthyPercent and maximumPercent, to determine the deployment strategy.
docker stop is issued to the containers running in the task. This results in a SIGTERM and a 30-second timeout, after which SIGKILL is sent and the containers are forcibly stopped. If the container handles the SIGTERM gracefully and exits within 30 seconds from receiving it, no SIGKILL is sent. When the service scheduler launches new tasks, it determines task placement in your cluster with the following logic:
|
|
| UpdateServicePrimaryTaskSet |
Show DescriptionModifies which task set in a service is the primary task set. Any parameters that are updated on the primary task set in a service will transition to the service. This is used when a service uses theEXTERNAL deployment controller type. For more information, see Amazon ECS Deployment Types in the Amazon Elastic Container Service Developer Guide.
|
Eks Events
| Service | Event Name | Description |
|---|---|---|
| eks | AssociateEncryptionConfig |
Show DescriptionAssociate encryption configuration to an existing cluster. You can use this API to enable encryption on existing clusters which do not have encryption already enabled. This allows you to implement a defense-in-depth security strategy without migrating applications to new Amazon EKS clusters. |
| AssociateIdentityProviderConfig |
Show DescriptionAssociate an identity provider configuration to a cluster. If you want to authenticate identities using an identity provider, you can create an identity provider configuration and associate it to your cluster. After configuring authentication to your cluster you can create Kubernetesroles and clusterroles to assign permissions to the roles, and then bind the roles to the identities using Kubernetes rolebindings and clusterrolebindings. For more information see Using RBAC Authorization in the Kubernetes documentation.
|
|
| CreateAddon |
Show DescriptionCreates an Amazon EKS add-on. Amazon EKS add-ons help to automate the provisioning and lifecycle management of common operational software for Amazon EKS clusters. Amazon EKS add-ons can only be used with Amazon EKS clusters running version 1.18 with platform versioneks.3 or later because add-ons rely on the Server-side Apply Kubernetes feature, which is only available in Kubernetes 1.18 and later.
|
|
| CreateCluster |
Show DescriptionCreates an Amazon EKS control plane. The Amazon EKS control plane consists of control plane instances that run the Kubernetes software, such asetcd and the API server. The control plane runs in an account managed by Amazon Web Services, and the Kubernetes API is exposed via the Amazon EKS API server endpoint. Each Amazon EKS cluster control plane is single-tenant and unique and runs on its own set of Amazon EC2 instances. The cluster control plane is provisioned across multiple Availability Zones and fronted by an Elastic Load Balancing Network Load Balancer. Amazon EKS also provisions elastic network interfaces in your VPC subnets to provide connectivity from the control plane instances to the nodes (for example, to support kubectl exec, logs, and proxy data flows). Amazon EKS nodes run in your Amazon Web Services account and connect to your cluster's control plane via the Kubernetes API server endpoint and a certificate file that is created for your cluster. Cluster creation typically takes several minutes. After you create an Amazon EKS cluster, you must configure your Kubernetes tooling to communicate with the API server and launch nodes into your cluster. For more information, see Managing Cluster Authentication and Launching Amazon EKS nodes in the Amazon EKS User Guide.
|
|
| CreateFargateProfile |
Show DescriptionCreates an Fargate profile for your Amazon EKS cluster. You must have at least one Fargate profile in a cluster to be able to run pods on Fargate. The Fargate profile allows an administrator to declare which pods run on Fargate and specify which pods run on which Fargate profile. This declaration is done through the profile’s selectors. Each profile can have up to five selectors that contain a namespace and labels. A namespace is required for every selector. The label field consists of multiple optional key-value pairs. Pods that match the selectors are scheduled on Fargate. If a to-be-scheduled pod matches any of the selectors in the Fargate profile, then that pod is run on Fargate. When you create a Fargate profile, you must specify a pod execution role to use with the pods that are scheduled with the profile. This role is added to the cluster's Kubernetes Role Based Access Control (RBAC) for authorization so that thekubelet that is running on the Fargate infrastructure can register with your Amazon EKS cluster so that it can appear in your cluster as a node. The pod execution role also provides IAM permissions to the Fargate infrastructure to allow read access to Amazon ECR image repositories. For more information, see Pod Execution Role in the Amazon EKS User Guide. Fargate profiles are immutable. However, you can create a new updated profile to replace an existing profile and then delete the original after the updated profile has finished creating. If any Fargate profiles in a cluster are in the DELETING status, you must wait for that Fargate profile to finish deleting before you can create any other profiles in that cluster. For more information, see Fargate Profile in the Amazon EKS User Guide.
|
|
| CreateNodegroup |
Show DescriptionCreates a managed node group for an Amazon EKS cluster. You can only create a node group for your cluster that is equal to the current Kubernetes version for the cluster. All node groups are created with the latest AMI release version for the respective minor Kubernetes version of the cluster, unless you deploy a custom AMI using a launch template. For more information about using launch templates, see Launch template support. An Amazon EKS managed node group is an Amazon EC2 Auto Scaling group and associated Amazon EC2 instances that are managed by Amazon Web Services for an Amazon EKS cluster. Each node group uses a version of the Amazon EKS optimized Amazon Linux 2 AMI. For more information, see Managed Node Groups in the Amazon EKS User Guide. |
|
| DeleteAddon |
Show DescriptionDelete an Amazon EKS add-on. When you remove the add-on, it will also be deleted from the cluster. You can always manually start an add-on on the cluster using the Kubernetes API. |
|
| DeleteCluster |
Show DescriptionDeletes the Amazon EKS cluster control plane. If you have active services in your cluster that are associated with a load balancer, you must delete those services before deleting the cluster so that the load balancers are deleted properly. Otherwise, you can have orphaned resources in your VPC that prevent you from being able to delete the VPC. For more information, see Deleting a Cluster in the Amazon EKS User Guide. If you have managed node groups or Fargate profiles attached to the cluster, you must delete them first. For more information, see DeleteNodegroup and DeleteFargateProfile. |
|
| DeleteFargateProfile |
Show DescriptionDeletes an Fargate profile. When you delete a Fargate profile, any pods running on Fargate that were created with the profile are deleted. If those pods match another Fargate profile, then they are scheduled on Fargate with that profile. If they no longer match any Fargate profiles, then they are not scheduled on Fargate and they may remain in a pending state. Only one Fargate profile in a cluster can be in theDELETING status at a time. You must wait for a Fargate profile to finish deleting before you can delete any other profiles in that cluster.
|
|
| DeleteNodegroup |
Show DescriptionDeletes an Amazon EKS node group for a cluster. |
|
| DeregisterCluster |
Show DescriptionDeregisters a connected cluster to remove it from the Amazon EKS control plane. |
|
| DescribeAddon |
Show DescriptionDescribes an Amazon EKS add-on. |
|
| DescribeAddonVersions |
Show DescriptionDescribes the Kubernetes versions that the add-on can be used with. |
|
| DescribeCluster |
Show DescriptionReturns descriptive information about an Amazon EKS cluster. The API server endpoint and certificate authority data returned by this operation are required forkubelet and kubectl to communicate with your Kubernetes API server. For more information, see Create a kubeconfig for Amazon EKS. ACTIVE state. |
|
| DescribeFargateProfile |
Show DescriptionReturns descriptive information about an Fargate profile. |
|
| DescribeIdentityProviderConfig |
Show DescriptionReturns descriptive information about an identity provider configuration. |
|
| DescribeNodegroup |
Show DescriptionReturns descriptive information about an Amazon EKS node group. |
|
| DescribeUpdate |
Show DescriptionReturns descriptive information about an update against your Amazon EKS cluster or associated managed node group. When the status of the update isSucceeded, the update is complete. If an update fails, the status is Failed, and an error detail explains the reason for the failure.
|
|
| DisassociateIdentityProviderConfig |
Show DescriptionDisassociates an identity provider configuration from a cluster. If you disassociate an identity provider from your cluster, users included in the provider can no longer access the cluster. However, you can still access the cluster with Amazon Web Services IAM users. |
|
| ListAddons |
Show DescriptionLists the available add-ons. |
|
| ListClusters |
Show DescriptionLists the Amazon EKS clusters in your Amazon Web Services account in the specified Region. |
|
| ListFargateProfiles |
Show DescriptionLists the Fargate profiles associated with the specified cluster in your Amazon Web Services account in the specified Region. |
|
| ListIdentityProviderConfigs |
Show DescriptionA list of identity provider configurations. |
|
| ListNodegroups |
Show DescriptionLists the Amazon EKS managed node groups associated with the specified cluster in your Amazon Web Services account in the specified Region. Self-managed node groups are not listed. |
|
| ListTagsForResource |
Show DescriptionList the tags for an Amazon EKS resource. |
|
| ListUpdates |
Show DescriptionLists the updates associated with an Amazon EKS cluster or managed node group in your Amazon Web Services account, in the specified Region. |
|
| RegisterCluster |
Show DescriptionConnects a Kubernetes cluster to the Amazon EKS control plane. Any Kubernetes cluster can be connected to the Amazon EKS control plane to view current information about the cluster and its nodes. Cluster connection requires two steps. First, send a RegisterClusterRequest to add it to the Amazon EKS control plane. Second, a Manifest containing the activationID and activationCode must be applied to the Kubernetes cluster through it's native provider to provide visibility. After the Manifest is updated and applied, then the connected cluster is visible to the Amazon EKS control plane. If the Manifest is not applied within a set amount of time, then the connected cluster will no longer be visible and must be deregistered. See DeregisterCluster.
|
|
| TagResource |
Show DescriptionAssociates the specified tags to a resource with the specifiedresourceArn. If existing tags on a resource are not specified in the request parameters, they are not changed. When a resource is deleted, the tags associated with that resource are deleted as well. Tags that you create for Amazon EKS resources do not propagate to any other resources associated with the cluster. For example, if you tag a cluster with this operation, that tag does not automatically propagate to the subnets and nodes associated with the cluster.
|
|
| UntagResource |
Show DescriptionDeletes specified tags from a resource. |
|
| UpdateAddon |
Show DescriptionUpdates an Amazon EKS add-on. |
|
| UpdateClusterConfig |
Show DescriptionUpdates an Amazon EKS cluster configuration. Your cluster continues to function during the update. The response output includes an update ID that you can use to track the status of your cluster update with the DescribeUpdate API operation. You can use this API operation to enable or disable exporting the Kubernetes control plane logs for your cluster to CloudWatch Logs. By default, cluster control plane logs aren't exported to CloudWatch Logs. For more information, see Amazon EKS Cluster Control Plane Logs in the Amazon EKS User Guide .UPDATING (this status transition is eventually consistent). When the update is complete (either Failed or Successful), the cluster status moves to Active.
|
|
| UpdateClusterVersion |
Show DescriptionUpdates an Amazon EKS cluster to the specified Kubernetes version. Your cluster continues to function during the update. The response output includes an update ID that you can use to track the status of your cluster update with the DescribeUpdate API operation. Cluster updates are asynchronous, and they should finish within a few minutes. During an update, the cluster status moves toUPDATING (this status transition is eventually consistent). When the update is complete (either Failed or Successful), the cluster status moves to Active. If your cluster has managed node groups attached to it, all of your node groups’ Kubernetes versions must match the cluster’s Kubernetes version in order to update the cluster to a new Kubernetes version.
|
|
| UpdateNodegroupConfig |
Show DescriptionUpdates an Amazon EKS managed node group configuration. Your node group continues to function during the update. The response output includes an update ID that you can use to track the status of your node group update with the DescribeUpdate API operation. Currently you can update the Kubernetes labels for a node group or the scaling configuration. |
Elastic-inference Events
| Service | Event Name | Description |
|---|---|---|
| elastic-inference | DescribeAcceleratorOfferings |
Show DescriptionDescribes the locations in which a given accelerator type or set of types is present in a given region. |
| DescribeAcceleratorTypes |
Show DescriptionDescribes the accelerator types available in a given region, as well as their characteristics, such as memory and throughput. |
|
| DescribeAccelerators |
Show DescriptionDescribes information over a provided set of accelerators belonging to an account. |
|
| ListTagsForResource |
Show DescriptionReturns all tags of an Elastic Inference Accelerator. |
|
| TagResource |
Show DescriptionAdds the specified tags to an Elastic Inference Accelerator. |
Elasticbeanstalk Events
| Service | Event Name | Description |
|---|---|---|
| elasticbeanstalk | AbortEnvironmentUpdate | |
| ApplyEnvironmentManagedAction |
Show DescriptionApplies a scheduled managed action immediately. A managed action can be applied only if its status isScheduled. Get the status and action ID of a managed action with DescribeEnvironmentManagedActions.
|
|
| AssociateEnvironmentOperationsRole | ||
| CheckDNSAvailability |
Show DescriptionChecks if the specified CNAME is available. |
|
| ComposeEnvironments |
Show DescriptionCreate or update a group of environments that each run a separate component of a single application. Takes a list of version labels that specify application source bundles for each of the environments to create or update. The name of each environment and other required information must be included in the source bundles in an environment manifest namedenv.yaml. See Compose Environments for details.
|
|
| CreateApplication |
Show DescriptionCreates an application that has one configuration template nameddefault and no application versions.
|
|
| CreateApplicationVersion |
Show DescriptionCreates an application version for the specified application. You can create an application version from a source bundle in Amazon S3, a commit in AWS CodeCommit, or the output of an AWS CodeBuild build as follows: Specify a commit in an AWS CodeCommit repository withSourceBuildInformation. Specify a build in an AWS CodeBuild with SourceBuildInformation and BuildConfiguration. Specify a source bundle in S3 with SourceBundle Omit both SourceBuildInformation and SourceBundle to use the default sample application. |
|
| CreateConfigurationTemplate |
Show DescriptionCreates an AWS Elastic Beanstalk configuration template, associated with a specific Elastic Beanstalk application. You define application configuration settings in a configuration template. You can then use the configuration template to deploy different versions of the application with the same configuration settings. Templates aren't associated with any environment. TheEnvironmentName response element is always null. Related Topics
|
|
| CreateEnvironment |
Show DescriptionLaunches an AWS Elastic Beanstalk environment for the specified application using the specified configuration. |
|
| CreatePlatformVersion |
Show DescriptionCreate a new version of your custom platform. |
|
| CreateStorageLocation |
Show DescriptionCreates a bucket in Amazon S3 to store application versions, logs, and other files used by Elastic Beanstalk environments. The Elastic Beanstalk console and EB CLI call this API the first time you create an environment in a region. If the storage location already exists,CreateStorageLocation still returns the bucket name but does not create a new bucket.
|
|
| DeleteApplication | ||
| DeleteApplicationVersion | ||
| DeleteConfigurationTemplate | ||
| DeleteEnvironmentConfiguration | ||
| DeletePlatformVersion |
Show DescriptionDeletes the specified version of a custom platform. |
|
| DescribeAccountAttributes |
Show DescriptionReturns attributes related to AWS Elastic Beanstalk that are associated with the calling AWS account. The result currently has one set of attributes—resource quotas. |
|
| DescribeApplicationVersions |
Show DescriptionRetrieve a list of application versions. |
|
| DescribeApplications |
Show DescriptionReturns the descriptions of existing applications. |
|
| DescribeConfigurationOptions |
Show DescriptionDescribes the configuration options that are used in a particular configuration template or environment, or that a specified solution stack defines. The description includes the values the options, their default values, and an indication of the required action on a running environment if an option value is changed. |
|
| DescribeConfigurationSettings |
Show DescriptionReturns a description of the settings for the specified configuration set, that is, either a configuration template or the configuration set associated with a running environment. When describing the settings for the configuration set associated with a running environment, it is possible to receive two sets of setting descriptions. One is the deployed configuration set, and the other is a draft configuration of an environment that is either in the process of deployment or that failed to deploy. Related Topics |
|
| DescribeEnvironmentHealth |
Show DescriptionReturns information about the overall health of the specified environment. The DescribeEnvironmentHealth operation is only available with AWS Elastic Beanstalk Enhanced Health. |
|
| DescribeEnvironmentManagedActionHistory |
Show DescriptionLists an environment's completed and failed managed actions. |
|
| DescribeEnvironmentManagedActions |
Show DescriptionLists an environment's upcoming and in-progress managed actions. |
|
| DescribeEnvironmentResources |
Show DescriptionReturns AWS resources for this environment. |
|
| DescribeEnvironments |
Show DescriptionReturns descriptions for existing environments. |
|
| DescribeEvents |
Show DescriptionReturns list of event descriptions matching criteria up to the last 6 weeks.NextToken. |
|
| DescribeInstancesHealth |
Show DescriptionRetrieves detailed information about the health of instances in your AWS Elastic Beanstalk. This operation requires enhanced health reporting. |
|
| DescribePlatformVersion |
Show DescriptionDescribes a platform version. Provides full details. Compare to ListPlatformVersions, which provides summary information about a list of platform versions. For definitions of platform version and other platform-related terms, see AWS Elastic Beanstalk Platforms Glossary. |
|
| DisassociateEnvironmentOperationsRole | ||
| ListAvailableSolutionStacks |
Show DescriptionReturns a list of the available solution stack names, with the public version first and then in reverse chronological order. |
|
| ListPlatformBranches |
Show DescriptionLists the platform branches available for your account in an AWS Region. Provides summary information about each platform branch. For definitions of platform branch and other platform-related terms, see AWS Elastic Beanstalk Platforms Glossary. |
|
| ListPlatformVersions |
Show DescriptionLists the platform versions available for your account in an AWS Region. Provides summary information about each platform version. Compare to DescribePlatformVersion, which provides full details about a single platform version. For definitions of platform version and other platform-related terms, see AWS Elastic Beanstalk Platforms Glossary. |
|
| ListTagsForResource |
Show DescriptionReturn the tags applied to an AWS Elastic Beanstalk resource. The response contains a list of tag key-value pairs. Elastic Beanstalk supports tagging of all of its resources. For details about resource tagging, see Tagging Application Resources. |
|
| RebuildEnvironment | ||
| RequestEnvironmentInfo | ||
| RestartAppServer | ||
| RetrieveEnvironmentInfo |
Show DescriptionRetrieves the compiled information from a RequestEnvironmentInfo request. Related Topics |
|
| SwapEnvironmentCNAMEs | ||
| TerminateEnvironment |
Show DescriptionTerminates the specified environment. |
|
| UpdateApplication |
Show DescriptionUpdates the specified application to have the specified properties.description) is not provided, the value remains unchanged. To clear these properties, specify an empty string. |
|
| UpdateApplicationResourceLifecycle |
Show DescriptionModifies lifecycle settings for an application. |
|
| UpdateApplicationVersion |
Show DescriptionUpdates the specified application version to have the specified properties.description) is not provided, the value remains unchanged. To clear properties, specify an empty string. |
|
| UpdateConfigurationTemplate |
Show DescriptionUpdates the specified configuration template to have the specified properties or configuration option values.ApplicationName) is not provided, its value remains unchanged. To clear such properties, specify an empty string. |
|
| UpdateEnvironment |
Show DescriptionUpdates the environment description, deploys a new application version, updates the configuration settings to an entirely new configuration template, or updates select configuration option values in the running environment. Attempting to update both the release and configuration is not allowed and AWS Elastic Beanstalk returns anInvalidParameterCombination error. When updating the configuration settings to a new template or individual settings, a draft configuration is created and DescribeConfigurationSettings for this environment returns two setting descriptions with different DeploymentStatus values.
|
|
| UpdateTagsForResource |
Elastictranscoder Events
| Service | Event Name | Description |
|---|---|---|
| elastictranscoder | CancelJob |
Show DescriptionThe CancelJob operation cancels an unfinished job.Submitted. To prevent a pipeline from starting to process a job while you're getting the job identifier, use UpdatePipelineStatus to temporarily pause the pipeline. |
| CreateJob |
Show DescriptionWhen you create a job, Elastic Transcoder returns JSON data that includes the values that you specified plus information about the job that is created. If you have specified more than one output for your jobs (for example, one output for the Kindle Fire and another output for the Apple iPhone 4s), you currently must use the Elastic Transcoder API to list the jobs (as opposed to the AWS Console). |
|
| CreatePipeline |
Show DescriptionThe CreatePipeline operation creates a pipeline with settings that you specify. |
|
| CreatePreset |
Show DescriptionThe CreatePreset operation creates a preset with settings that you specify.ValidationException) and does not create the preset. If the settings are valid for Elastic Transcoder but aren't strictly compliant with the H.264 standard, Elastic Transcoder creates the preset and returns a warning message in the response. This helps you determine whether your settings comply with the H.264 standard while giving you greater flexibility with respect to the video that Elastic Transcoder produces. |
|
| DeletePipeline |
Show DescriptionThe DeletePipeline operation removes a pipeline. You can only delete a pipeline that has never been used or that is not currently in use (doesn't contain any active jobs). If the pipeline is currently in use,DeletePipeline returns an error.
|
|
| DeletePreset |
Show DescriptionThe DeletePreset operation removes a preset that you've added in an AWS region. |
|
| ListJobsByPipeline |
Show DescriptionThe ListJobsByPipeline operation gets a list of the jobs currently in a pipeline. Elastic Transcoder returns all of the jobs currently in the specified pipeline. The response body contains one element for each job that satisfies the search criteria. |
|
| ListJobsByStatus |
Show DescriptionThe ListJobsByStatus operation gets a list of jobs that have a specified status. The response body contains one element for each job that satisfies the search criteria. |
|
| ListPipelines |
Show DescriptionThe ListPipelines operation gets a list of the pipelines associated with the current AWS account. |
|
| ListPresets |
Show DescriptionThe ListPresets operation gets a list of the default presets included with Elastic Transcoder and the presets that you've added in an AWS region. |
|
| ReadJob |
Show DescriptionThe ReadJob operation returns detailed information about a job. |
|
| ReadPipeline |
Show DescriptionThe ReadPipeline operation gets detailed information about a pipeline. |
|
| ReadPreset |
Show DescriptionThe ReadPreset operation gets detailed information about a preset. |
|
| TestRole |
Show DescriptionThe TestRole operation tests the IAM role used to create the pipeline. TheTestRole action lets you determine whether the IAM role you are using has sufficient permissions to let Elastic Transcoder perform tasks associated with the transcoding process. The action attempts to assume the specified IAM role, checks read access to the input and output buckets, and tries to send a test notification to Amazon SNS topics that you specify.
|
|
| UpdatePipeline |
Show DescriptionUse theUpdatePipeline operation to update settings for a pipeline. |
|
| UpdatePipelineNotifications |
Show DescriptionWith the UpdatePipelineNotifications operation, you can update Amazon Simple Notification Service (Amazon SNS) notifications for a pipeline. When you update notifications for a pipeline, Elastic Transcoder returns the values that you specified in the request. |
Elb Events
| Service | Event Name | Description |
|---|---|---|
| elb | AddTags |
Show DescriptionAdds the specified tags to the specified load balancer. Each load balancer can have a maximum of 10 tags. Each tag consists of a key and an optional value. If a tag with the same key is already associated with the load balancer,AddTags updates its value. For more information, see Tag Your Classic Load Balancer in the Classic Load Balancers Guide.
|
| ApplySecurityGroupsToLoadBalancer |
Show DescriptionAssociates one or more security groups with your load balancer in a virtual private cloud (VPC). The specified security groups override the previously associated security groups. For more information, see Security Groups for Load Balancers in a VPC in the Classic Load Balancers Guide. |
|
| AttachLoadBalancerToSubnets |
Show DescriptionAdds one or more subnets to the set of configured subnets for the specified load balancer. The load balancer evenly distributes requests across all registered subnets. For more information, see Add or Remove Subnets for Your Load Balancer in a VPC in the Classic Load Balancers Guide. |
|
| ConfigureHealthCheck |
Show DescriptionSpecifies the health check settings to use when evaluating the health state of your EC2 instances. For more information, see Configure Health Checks for Your Load Balancer in the Classic Load Balancers Guide. |
|
| CreateAppCookieStickinessPolicy |
Show DescriptionGenerates a stickiness policy with sticky session lifetimes that follow that of an application-generated cookie. This policy can be associated only with HTTP/HTTPS listeners. This policy is similar to the policy created by CreateLBCookieStickinessPolicy, except that the lifetime of the special Elastic Load Balancing cookie,AWSELB, follows the lifetime of the application-generated cookie specified in the policy configuration. The load balancer only inserts a new stickiness cookie when the application response includes a new application cookie. If the application cookie is explicitly removed or expires, the session stops being sticky until a new application cookie is issued. For more information, see Application-Controlled Session Stickiness in the Classic Load Balancers Guide.
|
|
| CreateLBCookieStickinessPolicy |
Show DescriptionGenerates a stickiness policy with sticky session lifetimes controlled by the lifetime of the browser (user-agent) or a specified expiration period. This policy can be associated only with HTTP/HTTPS listeners. When a load balancer implements this policy, the load balancer uses a special cookie to track the instance for each request. When the load balancer receives a request, it first checks to see if this cookie is present in the request. If so, the load balancer sends the request to the application server specified in the cookie. If not, the load balancer sends the request to a server that is chosen based on the existing load-balancing algorithm. A cookie is inserted into the response for binding subsequent requests from the same user to that server. The validity of the cookie is based on the cookie expiration time, which is specified in the policy configuration. For more information, see Duration-Based Session Stickiness in the Classic Load Balancers Guide. |
|
| CreateLoadBalancer |
Show DescriptionCreates a Classic Load Balancer. You can add listeners, security groups, subnets, and tags when you create your load balancer, or you can add them later using CreateLoadBalancerListeners, ApplySecurityGroupsToLoadBalancer, AttachLoadBalancerToSubnets, and AddTags. To describe your current load balancers, see DescribeLoadBalancers. When you are finished with a load balancer, you can delete it using DeleteLoadBalancer. You can create up to 20 load balancers per region per account. You can request an increase for the number of load balancers for your account. For more information, see Limits for Your Classic Load Balancer in the Classic Load Balancers Guide. |
|
| CreateLoadBalancerListeners |
Show DescriptionCreates one or more listeners for the specified load balancer. If a listener with the specified port does not already exist, it is created; otherwise, the properties of the new listener must match the properties of the existing listener. For more information, see Listeners for Your Classic Load Balancer in the Classic Load Balancers Guide. |
|
| CreateLoadBalancerPolicy |
Show DescriptionCreates a policy with the specified attributes for the specified load balancer. Policies are settings that are saved for your load balancer and that can be applied to the listener or the application server, depending on the policy type. |
|
| DeleteLoadBalancer |
Show DescriptionDeletes the specified load balancer. If you are attempting to recreate a load balancer, you must reconfigure all settings. The DNS name associated with a deleted load balancer are no longer usable. The name and associated DNS record of the deleted load balancer no longer exist and traffic sent to any of its IP addresses is no longer delivered to your instances. If the load balancer does not exist or has already been deleted, the call toDeleteLoadBalancer still succeeds.
|
|
| DeleteLoadBalancerListeners |
Show DescriptionDeletes the specified listeners from the specified load balancer. |
|
| DeleteLoadBalancerPolicy |
Show DescriptionDeletes the specified policy from the specified load balancer. This policy must not be enabled for any listeners. |
|
| DeregisterInstancesFromLoadBalancer |
Show DescriptionDeregisters the specified instances from the specified load balancer. After the instance is deregistered, it no longer receives traffic from the load balancer. You can use DescribeLoadBalancers to verify that the instance is deregistered from the load balancer. For more information, see Register or De-Register EC2 Instances in the Classic Load Balancers Guide. |
|
| DescribeAccountLimits |
Show DescriptionDescribes the current Elastic Load Balancing resource limits for your AWS account. For more information, see Limits for Your Classic Load Balancer in the Classic Load Balancers Guide. |
|
| DescribeInstanceHealth |
Show DescriptionDescribes the state of the specified instances with respect to the specified load balancer. If no instances are specified, the call describes the state of all instances that are currently registered with the load balancer. If instances are specified, their state is returned even if they are no longer registered with the load balancer. The state of terminated instances is not returned. |
|
| DescribeLoadBalancerAttributes |
Show DescriptionDescribes the attributes for the specified load balancer. |
|
| DescribeLoadBalancerPolicies |
Show DescriptionDescribes the specified policies. If you specify a load balancer name, the action returns the descriptions of all policies created for the load balancer. If you specify a policy name associated with your load balancer, the action returns the description of that policy. If you don't specify a load balancer name, the action returns descriptions of the specified sample policies, or descriptions of all sample policies. The names of the sample policies have theELBSample- prefix.
|
|
| DescribeLoadBalancerPolicyTypes |
Show DescriptionDescribes the specified load balancer policy types or all load balancer policy types. The description of each type indicates how it can be used. For example, some policies can be used only with layer 7 listeners, some policies can be used only with layer 4 listeners, and some policies can be used only with your EC2 instances. You can use CreateLoadBalancerPolicy to create a policy configuration for any of these policy types. Then, depending on the policy type, use either SetLoadBalancerPoliciesOfListener or SetLoadBalancerPoliciesForBackendServer to set the policy. |
|
| DescribeLoadBalancers |
Show DescriptionDescribes the specified the load balancers. If no load balancers are specified, the call describes all of your load balancers. |
|
| DescribeTags |
Show DescriptionDescribes the tags associated with the specified load balancers. |
|
| DetachLoadBalancerFromSubnets |
Show DescriptionRemoves the specified subnets from the set of configured subnets for the load balancer. After a subnet is removed, all EC2 instances registered with the load balancer in the removed subnet go into theOutOfService state. Then, the load balancer balances the traffic among the remaining routable subnets.
|
|
| DisableAvailabilityZonesForLoadBalancer |
Show DescriptionRemoves the specified Availability Zones from the set of Availability Zones for the specified load balancer in EC2-Classic or a default VPC. For load balancers in a non-default VPC, use DetachLoadBalancerFromSubnets. There must be at least one Availability Zone registered with a load balancer at all times. After an Availability Zone is removed, all instances registered with the load balancer that are in the removed Availability Zone go into theOutOfService state. Then, the load balancer attempts to equally balance the traffic among its remaining Availability Zones. For more information, see Add or Remove Availability Zones in the Classic Load Balancers Guide.
|
|
| EnableAvailabilityZonesForLoadBalancer |
Show DescriptionAdds the specified Availability Zones to the set of Availability Zones for the specified load balancer in EC2-Classic or a default VPC. For load balancers in a non-default VPC, use AttachLoadBalancerToSubnets. The load balancer evenly distributes requests across all its registered Availability Zones that contain instances. For more information, see Add or Remove Availability Zones in the Classic Load Balancers Guide. |
|
| ModifyLoadBalancerAttributes |
Show DescriptionModifies the attributes of the specified load balancer. You can modify the load balancer attributes, such asAccessLogs, ConnectionDraining, and CrossZoneLoadBalancing by either enabling or disabling them. Or, you can modify the load balancer attribute ConnectionSettings by specifying an idle connection timeout value for your load balancer. For more information, see the following in the Classic Load Balancers Guide:
|
|
| RegisterInstancesWithLoadBalancer |
Show DescriptionAdds the specified instances to the specified load balancer. The instance must be a running instance in the same network as the load balancer (EC2-Classic or the same VPC). If you have EC2-Classic instances and a load balancer in a VPC with ClassicLink enabled, you can link the EC2-Classic instances to that VPC and then register the linked EC2-Classic instances with the load balancer in the VPC. Note thatRegisterInstanceWithLoadBalancer completes when the request has been registered. Instance registration takes a little time to complete. To check the state of the registered instances, use DescribeLoadBalancers or DescribeInstanceHealth. After the instance is registered, it starts receiving traffic and requests from the load balancer. Any instance that is not in one of the Availability Zones registered for the load balancer is moved to the OutOfService state. If an Availability Zone is added to the load balancer later, any instances registered with the load balancer move to the InService state. To deregister instances from a load balancer, use DeregisterInstancesFromLoadBalancer. For more information, see Register or De-Register EC2 Instances in the Classic Load Balancers Guide.
|
|
| RemoveTags |
Show DescriptionRemoves one or more tags from the specified load balancer. |
|
| SetLoadBalancerListenerSSLCertificate |
Show DescriptionSets the certificate that terminates the specified listener's SSL connections. The specified certificate replaces any prior certificate that was used on the same load balancer and port. For more information about updating your SSL certificate, see Replace the SSL Certificate for Your Load Balancer in the Classic Load Balancers Guide. |
|
| SetLoadBalancerPoliciesForBackendServer |
Show DescriptionReplaces the set of policies associated with the specified port on which the EC2 instance is listening with a new set of policies. At this time, only the back-end server authentication policy type can be applied to the instance ports; this policy type is composed of multiple public key policies. Each time you useSetLoadBalancerPoliciesForBackendServer to enable the policies, use the PolicyNames parameter to list the policies that you want to enable. You can use DescribeLoadBalancers or DescribeLoadBalancerPolicies to verify that the policy is associated with the EC2 instance. For more information about enabling back-end instance authentication, see Configure Back-end Instance Authentication in the Classic Load Balancers Guide. For more information about Proxy Protocol, see Configure Proxy Protocol Support in the Classic Load Balancers Guide.
|
Elbv2 Events
| Service | Event Name | Description |
|---|---|---|
| elbv2 | AddListenerCertificates |
Show DescriptionAdds the specified SSL server certificate to the certificate list for the specified HTTPS or TLS listener. If the certificate in already in the certificate list, the call is successful but the certificate is not added again. For more information, see HTTPS listeners in the Application Load Balancers Guide or TLS listeners in the Network Load Balancers Guide. |
| AddTags |
Show DescriptionAdds the specified tags to the specified Elastic Load Balancing resource. You can tag your Application Load Balancers, Network Load Balancers, Gateway Load Balancers, target groups, listeners, and rules. Each tag consists of a key and an optional value. If a resource already has a tag with the same key,AddTags updates its value.
|
|
| CreateListener |
Show DescriptionCreates a listener for the specified Application Load Balancer, Network Load Balancer, or Gateway Load Balancer. For more information, see the following: This operation is idempotent, which means that it completes at most one time. If you attempt to create multiple listeners with the same settings, each call succeeds. |
|
| CreateLoadBalancer |
Show DescriptionCreates an Application Load Balancer, Network Load Balancer, or Gateway Load Balancer. For more information, see the following: This operation is idempotent, which means that it completes at most one time. If you attempt to create multiple load balancers with the same settings, each call succeeds. |
|
| CreateRule |
Show DescriptionCreates a rule for the specified listener. The listener must be associated with an Application Load Balancer. Each rule consists of a priority, one or more actions, and one or more conditions. Rules are evaluated in priority order, from the lowest value to the highest value. When the conditions for a rule are met, its actions are performed. If the conditions for no rules are met, the actions for the default rule are performed. For more information, see Listener rules in the Application Load Balancers Guide. |
|
| CreateTargetGroup |
Show DescriptionCreates a target group. For more information, see the following: This operation is idempotent, which means that it completes at most one time. If you attempt to create multiple target groups with the same settings, each call succeeds. |
|
| DeleteListener |
Show DescriptionDeletes the specified listener. Alternatively, your listener is deleted when you delete the load balancer to which it is attached. |
|
| DeleteLoadBalancer |
Show DescriptionDeletes the specified Application Load Balancer, Network Load Balancer, or Gateway Load Balancer. Deleting a load balancer also deletes its listeners. You can't delete a load balancer if deletion protection is enabled. If the load balancer does not exist or has already been deleted, the call succeeds. Deleting a load balancer does not affect its registered targets. For example, your EC2 instances continue to run and are still registered to their target groups. If you no longer need these EC2 instances, you can stop or terminate them. |
|
| DeleteRule |
Show DescriptionDeletes the specified rule. You can't delete the default rule. |
|
| DeleteTargetGroup |
Show DescriptionDeletes the specified target group. You can delete a target group if it is not referenced by any actions. Deleting a target group also deletes any associated health checks. Deleting a target group does not affect its registered targets. For example, any EC2 instances continue to run until you stop or terminate them. |
|
| DeregisterTargets |
Show DescriptionDeregisters the specified targets from the specified target group. After the targets are deregistered, they no longer receive traffic from the load balancer. |
|
| DescribeAccountLimits |
Show DescriptionDescribes the current Elastic Load Balancing resource limits for your Amazon Web Services account. For more information, see the following: |
|
| DescribeListenerCertificates |
Show DescriptionDescribes the default certificate and the certificate list for the specified HTTPS or TLS listener. If the default certificate is also in the certificate list, it appears twice in the results (once withIsDefault set to true and once with IsDefault set to false). For more information, see SSL certificates in the Application Load Balancers Guide or Server certificates in the Network Load Balancers Guide.
|
|
| DescribeListeners |
Show DescriptionDescribes the specified listeners or the listeners for the specified Application Load Balancer, Network Load Balancer, or Gateway Load Balancer. You must specify either a load balancer or one or more listeners. |
|
| DescribeLoadBalancerAttributes |
Show DescriptionDescribes the attributes for the specified Application Load Balancer, Network Load Balancer, or Gateway Load Balancer. For more information, see the following:
|
|
| DescribeLoadBalancers |
Show DescriptionDescribes the specified load balancers or all of your load balancers. |
|
| DescribeRules |
Show DescriptionDescribes the specified rules or the rules for the specified listener. You must specify either a listener or one or more rules. |
|
| DescribeSSLPolicies |
Show DescriptionDescribes the specified policies or all policies used for SSL negotiation. For more information, see Security policies in the Application Load Balancers Guide or Security policies in the Network Load Balancers Guide. |
|
| DescribeTags |
Show DescriptionDescribes the tags for the specified Elastic Load Balancing resources. You can describe the tags for one or more Application Load Balancers, Network Load Balancers, Gateway Load Balancers, target groups, listeners, or rules. |
|
| DescribeTargetGroupAttributes |
Show DescriptionDescribes the attributes for the specified target group. For more information, see the following:
|
|
| DescribeTargetGroups |
Show DescriptionDescribes the specified target groups or all of your target groups. By default, all target groups are described. Alternatively, you can specify one of the following to filter the results: the ARN of the load balancer, the names of one or more target groups, or the ARNs of one or more target groups. |
|
| DescribeTargetHealth |
Show DescriptionDescribes the health of the specified targets or all of your targets. |
|
| ModifyListener |
Show DescriptionReplaces the specified properties of the specified listener. Any properties that you do not specify remain unchanged. Changing the protocol from HTTPS to HTTP, or from TLS to TCP, removes the security policy and default certificate properties. If you change the protocol from HTTP to HTTPS, or from TCP to TLS, you must add the security policy and default certificate properties. To add an item to a list, remove an item from a list, or update an item in a list, you must provide the entire list. For example, to add an action, specify a list with the current actions plus the new action. |
|
| ModifyLoadBalancerAttributes |
Show DescriptionModifies the specified attributes of the specified Application Load Balancer, Network Load Balancer, or Gateway Load Balancer. If any of the specified attributes can't be modified as requested, the call fails. Any existing attributes that you do not modify retain their current values. |
|
| ModifyRule |
Show DescriptionReplaces the specified properties of the specified rule. Any properties that you do not specify are unchanged. To add an item to a list, remove an item from a list, or update an item in a list, you must provide the entire list. For example, to add an action, specify a list with the current actions plus the new action. |
|
| ModifyTargetGroup |
Show DescriptionModifies the health checks used when evaluating the health state of the targets in the specified target group. |
|
| ModifyTargetGroupAttributes |
Show DescriptionModifies the specified attributes of the specified target group. |
|
| RegisterTargets |
Show DescriptionRegisters the specified targets with the specified target group. If the target is an EC2 instance, it must be in therunning state when you register it. By default, the load balancer routes requests to registered targets using the protocol and port for the target group. Alternatively, you can override the port for a target when you register it. You can register each EC2 instance or IP address with the same target group multiple times using different ports. With a Network Load Balancer, you cannot register instances by instance ID if they have the following instance types: C1, CC1, CC2, CG1, CG2, CR1, CS1, G1, G2, HI1, HS1, M1, M2, M3, and T1. You can register instances of these types by IP address.
|
|
| RemoveListenerCertificates |
Show DescriptionRemoves the specified certificate from the certificate list for the specified HTTPS or TLS listener. |
|
| RemoveTags |
Show DescriptionRemoves the specified tags from the specified Elastic Load Balancing resources. You can remove the tags for one or more Application Load Balancers, Network Load Balancers, Gateway Load Balancers, target groups, listeners, or rules. |
|
| SetIpAddressType |
Show DescriptionSets the type of IP addresses used by the subnets of the specified Application Load Balancer or Network Load Balancer. |
|
| SetRulePriorities |
Show DescriptionSets the priorities of the specified rules. You can reorder the rules as long as there are no priority conflicts in the new order. Any existing rules that you do not specify retain their current priority. |
|
| SetSecurityGroups |
Show DescriptionAssociates the specified security groups with the specified Application Load Balancer. The specified security groups override the previously associated security groups. You can't specify a security group for a Network Load Balancer or Gateway Load Balancer. |
Emr-containers Events
| Service | Event Name | Description |
|---|---|---|
| emr-containers | CancelJobRun |
Show DescriptionCancels a job run. A job run is a unit of work, such as a Spark jar, PySpark script, or SparkSQL query, that you submit to Amazon EMR on EKS. |
| CreateManagedEndpoint |
Show DescriptionCreates a managed endpoint. A managed endpoint is a gateway that connects EMR Studio to Amazon EMR on EKS so that EMR Studio can communicate with your virtual cluster. |
|
| CreateVirtualCluster |
Show DescriptionCreates a virtual cluster. Virtual cluster is a managed entity on Amazon EMR on EKS. You can create, describe, list and delete virtual clusters. They do not consume any additional resource in your system. A single virtual cluster maps to a single Kubernetes namespace. Given this relationship, you can model virtual clusters the same way you model Kubernetes namespaces to meet your requirements. |
|
| DeleteManagedEndpoint |
Show DescriptionDeletes a managed endpoint. A managed endpoint is a gateway that connects EMR Studio to Amazon EMR on EKS so that EMR Studio can communicate with your virtual cluster. |
|
| DeleteVirtualCluster |
Show DescriptionDeletes a virtual cluster. Virtual cluster is a managed entity on Amazon EMR on EKS. You can create, describe, list and delete virtual clusters. They do not consume any additional resource in your system. A single virtual cluster maps to a single Kubernetes namespace. Given this relationship, you can model virtual clusters the same way you model Kubernetes namespaces to meet your requirements. |
|
| DescribeJobRun |
Show DescriptionDisplays detailed information about a job run. A job run is a unit of work, such as a Spark jar, PySpark script, or SparkSQL query, that you submit to Amazon EMR on EKS. |
|
| DescribeManagedEndpoint |
Show DescriptionDisplays detailed information about a managed endpoint. A managed endpoint is a gateway that connects EMR Studio to Amazon EMR on EKS so that EMR Studio can communicate with your virtual cluster. |
|
| DescribeVirtualCluster |
Show DescriptionDisplays detailed information about a specified virtual cluster. Virtual cluster is a managed entity on Amazon EMR on EKS. You can create, describe, list and delete virtual clusters. They do not consume any additional resource in your system. A single virtual cluster maps to a single Kubernetes namespace. Given this relationship, you can model virtual clusters the same way you model Kubernetes namespaces to meet your requirements. |
|
| ListJobRuns |
Show DescriptionLists job runs based on a set of parameters. A job run is a unit of work, such as a Spark jar, PySpark script, or SparkSQL query, that you submit to Amazon EMR on EKS. |
|
| ListManagedEndpoints |
Show DescriptionLists managed endpoints based on a set of parameters. A managed endpoint is a gateway that connects EMR Studio to Amazon EMR on EKS so that EMR Studio can communicate with your virtual cluster. |
|
| ListTagsForResource |
Show DescriptionLists the tags assigned to the resources. |
|
| ListVirtualClusters |
Show DescriptionLists information about the specified virtual cluster. Virtual cluster is a managed entity on Amazon EMR on EKS. You can create, describe, list and delete virtual clusters. They do not consume any additional resource in your system. A single virtual cluster maps to a single Kubernetes namespace. Given this relationship, you can model virtual clusters the same way you model Kubernetes namespaces to meet your requirements. |
|
| StartJobRun |
Show DescriptionStarts a job run. A job run is a unit of work, such as a Spark jar, PySpark script, or SparkSQL query, that you submit to Amazon EMR on EKS. |
|
| TagResource |
Show DescriptionAssigns tags to resources. A tag is a label that you assign to an AWS resource. Each tag consists of a key and an optional value, both of which you define. Tags enable you to categorize your AWS resources by attributes such as purpose, owner, or environment. When you have many resources of the same type, you can quickly identify a specific resource based on the tags you've assigned to it. For example, you can define a set of tags for your Amazon EMR on EKS clusters to help you track each cluster's owner and stack level. We recommend that you devise a consistent set of tag keys for each resource type. You can then search and filter the resources based on the tags that you add. |
Emr Events
| Service | Event Name | Description |
|---|---|---|
| emr | AddInstanceFleet |
Show DescriptionAdds an instance fleet to a running cluster. |
| AddInstanceGroups |
Show DescriptionAdds one or more instance groups to a running cluster. |
|
| AddJobFlowSteps |
Show DescriptionAddJobFlowSteps adds new steps to a running cluster. A maximum of 256 steps are allowed in each job flow. If your cluster is long-running (such as a Hive data warehouse) or complex, you may require more than 256 steps to process your data. You can bypass the 256-step limitation in various ways, including using SSH to connect to the master node and submitting queries directly to the software running on the master node, such as Hive and Hadoop. For more information on how to do this, see Add More than 256 Steps to a Cluster in the Amazon EMR Management Guide. A step specifies the location of a JAR file stored either on the master node of the cluster or in Amazon S3. Each step is performed by the main function of the main class of the JAR file. The main class can be specified either in the manifest of the JAR or by using the MainFunction parameter of the step. Amazon EMR executes each step in the order listed. For a step to be considered complete, the main function must exit with a zero exit code and all Hadoop jobs started while the step was running must have completed and run successfully. You can only add steps to a cluster that is in one of the following states: STARTING, BOOTSTRAPPING, RUNNING, or WAITING. |
|
| AddTags |
Show DescriptionAdds tags to an Amazon EMR resource, such as a cluster or an Amazon EMR Studio. Tags make it easier to associate resources in various ways, such as grouping clusters to track your Amazon EMR resource allocation costs. For more information, see Tag Clusters. |
|
| CancelSteps |
Show DescriptionCancels a pending step or steps in a running cluster. Available only in Amazon EMR versions 4.8.0 and later, excluding version 5.0.0. A maximum of 256 steps are allowed in each CancelSteps request. CancelSteps is idempotent but asynchronous; it does not guarantee that a step will be canceled, even if the request is successfully submitted. When you use Amazon EMR versions 5.28.0 and later, you can cancel steps that are in aPENDING or RUNNING state. In earlier versions of Amazon EMR, you can only cancel steps that are in a PENDING state.
|
|
| CreateSecurityConfiguration |
Show DescriptionCreates a security configuration, which is stored in the service and can be specified when a cluster is created. |
|
| CreateStudio |
Show DescriptionCreates a new Amazon EMR Studio. |
|
| CreateStudioSessionMapping | ||
| DeleteSecurityConfiguration |
Show DescriptionDeletes a security configuration. |
|
| DeleteStudio | ||
| DeleteStudioSessionMapping | ||
| DescribeCluster |
Show DescriptionProvides cluster-level details including status, hardware and software configuration, VPC settings, and so on. |
|
| DescribeJobFlows |
Show DescriptionThis API is no longer supported and will eventually be removed. We recommend you use ListClusters, DescribeCluster, ListSteps, ListInstanceGroups and ListBootstrapActions instead. DescribeJobFlows returns a list of job flows that match all of the supplied parameters. The parameters can include a list of job flow IDs, job flow states, and restrictions on job flow creation date and time. Regardless of supplied parameters, only job flows created within the last two months are returned. If no parameters are supplied, then job flows matching either of the following criteria are returned:
|
|
| DescribeNotebookExecution |
Show DescriptionProvides details of a notebook execution. |
|
| DescribeReleaseLabel |
Show DescriptionProvides EMR release label details, such as releases available the region where the API request is run, and the available applications for a specific EMR release label. Can also list EMR release versions that support a specified version of Spark. |
|
| DescribeSecurityConfiguration |
Show DescriptionProvides the details of a security configuration by returning the configuration JSON. |
|
| DescribeStep |
Show DescriptionProvides more detail about the cluster step. |
|
| DescribeStudio |
Show DescriptionReturns details for the specified Amazon EMR Studio including ID, Name, VPC, Studio access URL, and so on. |
|
| GetAutoTerminationPolicy |
Show DescriptionReturns the auto-termination policy for an Amazon EMR cluster. |
|
| GetBlockPublicAccessConfiguration |
Show DescriptionReturns the Amazon EMR block public access configuration for your Amazon Web Services account in the current Region. For more information see Configure Block Public Access for Amazon EMR in the Amazon EMR Management Guide. |
|
| GetManagedScalingPolicy |
Show DescriptionFetches the attached managed scaling policy for an Amazon EMR cluster. |
|
| GetStudioSessionMapping |
Show DescriptionFetches mapping details for the specified Amazon EMR Studio and identity (user or group). |
|
| ListBootstrapActions |
Show DescriptionProvides information about the bootstrap actions associated with a cluster. |
|
| ListClusters |
Show DescriptionProvides the status of all clusters visible to this Amazon Web Services account. Allows you to filter the list of clusters based on certain criteria; for example, filtering by cluster creation date and time or by status. This call returns a maximum of 50 clusters in unsorted order per call, but returns a marker to track the paging of the cluster list across multiple ListClusters calls. |
|
| ListInstanceFleets |
Show DescriptionLists all available details about the instance fleets in a cluster. |
|
| ListInstanceGroups |
Show DescriptionProvides all available details about the instance groups in a cluster. |
|
| ListInstances |
Show DescriptionProvides information for all active EC2 instances and EC2 instances terminated in the last 30 days, up to a maximum of 2,000. EC2 instances in any of the following states are considered active: AWAITING_FULFILLMENT, PROVISIONING, BOOTSTRAPPING, RUNNING. |
|
| ListNotebookExecutions |
Show DescriptionProvides summaries of all notebook executions. You can filter the list based on multiple criteria such as status, time range, and editor id. Returns a maximum of 50 notebook executions and a marker to track the paging of a longer notebook execution list across multipleListNotebookExecution calls.
|
|
| ListReleaseLabels |
Show DescriptionRetrieves release labels of EMR services in the region where the API is called. |
|
| ListSecurityConfigurations |
Show DescriptionLists all the security configurations visible to this account, providing their creation dates and times, and their names. This call returns a maximum of 50 clusters per call, but returns a marker to track the paging of the cluster list across multiple ListSecurityConfigurations calls. |
|
| ListSteps |
Show DescriptionProvides a list of steps for the cluster in reverse order unless you specifystepIds with the request or filter by StepStates. You can specify a maximum of 10 stepIDs. The CLI automatically paginates results to return a list greater than 50 steps. To return more than 50 steps using the CLI, specify a Marker, which is a pagination token that indicates the next set of steps to retrieve.
|
|
| ListStudioSessionMappings |
Show DescriptionReturns a list of all user or group session mappings for the Amazon EMR Studio specified byStudioId.
|
|
| ListStudios |
Show DescriptionReturns a list of all Amazon EMR Studios associated with the Amazon Web Services account. The list includes details such as ID, Studio Access URL, and creation time for each Studio. |
|
| ModifyCluster |
Show DescriptionModifies the number of steps that can be executed concurrently for the cluster specified using ClusterID. |
|
| ModifyInstanceFleet | ||
| ModifyInstanceGroups | ||
| PutAutoScalingPolicy |
Show DescriptionCreates or updates an automatic scaling policy for a core instance group or task instance group in an Amazon EMR cluster. The automatic scaling policy defines how an instance group dynamically adds and terminates EC2 instances in response to the value of a CloudWatch metric. |
|
| PutAutoTerminationPolicy |
Show DescriptionCreates or updates an auto-termination policy for an Amazon EMR cluster. An auto-termination policy defines the amount of idle time in seconds after which a cluster automatically terminates. For alternative cluster termination options, see Control cluster termination. |
|
| PutBlockPublicAccessConfiguration |
Show DescriptionCreates or updates an Amazon EMR block public access configuration for your Amazon Web Services account in the current Region. For more information see Configure Block Public Access for Amazon EMR in the Amazon EMR Management Guide. |
|
| PutManagedScalingPolicy |
Show DescriptionCreates or updates a managed scaling policy for an Amazon EMR cluster. The managed scaling policy defines the limits for resources, such as EC2 instances that can be added or terminated from a cluster. The policy only applies to the core and task nodes. The master node cannot be scaled after initial configuration. |
|
| RemoveAutoScalingPolicy |
Show DescriptionRemoves an automatic scaling policy from a specified instance group within an EMR cluster. |
|
| RemoveAutoTerminationPolicy |
Show DescriptionRemoves an auto-termination policy from an Amazon EMR cluster. |
|
| RemoveManagedScalingPolicy |
Show DescriptionRemoves a managed scaling policy from a specified EMR cluster. |
|
| RemoveTags |
Show DescriptionRemoves tags from an Amazon EMR resource, such as a cluster or Amazon EMR Studio. Tags make it easier to associate resources in various ways, such as grouping clusters to track your Amazon EMR resource allocation costs. For more information, see Tag Clusters. The following example removes the stack tag with value Prod from a cluster: |
|
| RunJobFlow |
Show DescriptionRunJobFlow creates and starts running a new cluster (job flow). The cluster runs the steps specified. After the steps complete, the cluster stops and the HDFS partition is lost. To prevent loss of data, configure the last step of the job flow to store results in Amazon S3. If the JobFlowInstancesConfigKeepJobFlowAliveWhenNoSteps parameter is set to TRUE, the cluster transitions to the WAITING state rather than shutting down after the steps have completed. For additional protection, you can set the JobFlowInstancesConfig TerminationProtected parameter to TRUE to lock the cluster and prevent it from being terminated by API call, user intervention, or in the event of a job flow error. A maximum of 256 steps are allowed in each job flow. If your cluster is long-running (such as a Hive data warehouse) or complex, you may require more than 256 steps to process your data. You can bypass the 256-step limitation in various ways, including using the SSH shell to connect to the master node and submitting queries directly to the software running on the master node, such as Hive and Hadoop. For more information on how to do this, see Add More than 256 Steps to a Cluster in the Amazon EMR Management Guide. For long running clusters, we recommend that you periodically store your results. |
|
| SetTerminationProtection | ||
| SetVisibleToAllUsers | ||
| StartNotebookExecution |
Show DescriptionStarts a notebook execution. |
|
| StopNotebookExecution | ||
| TerminateJobFlows | ||
| UpdateStudio |
Es Events
| Service | Event Name | Description |
|---|---|---|
| es | AcceptInboundCrossClusterSearchConnection |
Show DescriptionAllows the destination domain owner to accept an inbound cross-cluster search connection request. |
| AddTags | ||
| AssociatePackage |
Show DescriptionAssociates a package with an Amazon ES domain. |
|
| CancelElasticsearchServiceSoftwareUpdate |
Show DescriptionCancels a scheduled service software update for an Amazon ES domain. You can only perform this operation before theAutomatedUpdateDate and when the UpdateStatus is in the PENDING_UPDATE state.
|
|
| CreateElasticsearchDomain |
Show DescriptionCreates a new Elasticsearch domain. For more information, see Creating Elasticsearch Domains in the Amazon Elasticsearch Service Developer Guide. |
|
| CreateOutboundCrossClusterSearchConnection |
Show DescriptionCreates a new cross-cluster search connection from a source domain to a destination domain. |
|
| CreatePackage |
Show DescriptionCreate a package for use with Amazon ES domains. |
|
| DeleteElasticsearchDomain |
Show DescriptionPermanently deletes the specified Elasticsearch domain and all of its data. Once a domain is deleted, it cannot be recovered. |
|
| DeleteElasticsearchServiceRole | ||
| DeleteInboundCrossClusterSearchConnection |
Show DescriptionAllows the destination domain owner to delete an existing inbound cross-cluster search connection. |
|
| DeleteOutboundCrossClusterSearchConnection |
Show DescriptionAllows the source domain owner to delete an existing outbound cross-cluster search connection. |
|
| DeletePackage |
Show DescriptionDelete the package. |
|
| DescribeDomainAutoTunes |
Show DescriptionProvides scheduled Auto-Tune action details for the Elasticsearch domain, such as Auto-Tune action type, description, severity, and scheduled date. |
|
| DescribeElasticsearchDomain |
Show DescriptionReturns domain configuration information about the specified Elasticsearch domain, including the domain ID, domain endpoint, and domain ARN. |
|
| DescribeElasticsearchDomainConfig |
Show DescriptionProvides cluster configuration information about the specified Elasticsearch domain, such as the state, creation date, update version, and update date for cluster options. |
|
| DescribeElasticsearchDomains |
Show DescriptionReturns domain configuration information about the specified Elasticsearch domains, including the domain ID, domain endpoint, and domain ARN. |
|
| DescribeElasticsearchInstanceTypeLimits |
Show DescriptionDescribe Elasticsearch Limits for a given InstanceType and ElasticsearchVersion. When modifying existing Domain, specify the DomainName to know what Limits are supported for modifying.
|
|
| DescribeInboundCrossClusterSearchConnections |
Show DescriptionLists all the inbound cross-cluster search connections for a destination domain. |
|
| DescribeOutboundCrossClusterSearchConnections |
Show DescriptionLists all the outbound cross-cluster search connections for a source domain. |
|
| DescribePackages |
Show DescriptionDescribes all packages available to Amazon ES. Includes options for filtering, limiting the number of results, and pagination. |
|
| DescribeReservedElasticsearchInstanceOfferings |
Show DescriptionLists available reserved Elasticsearch instance offerings. |
|
| DescribeReservedElasticsearchInstances |
Show DescriptionReturns information about reserved Elasticsearch instances for this account. |
|
| DissociatePackage |
Show DescriptionDissociates a package from the Amazon ES domain. |
|
| GetCompatibleElasticsearchVersions |
Show DescriptionReturns a list of upgrade compatible Elastisearch versions. You can optionally pass a DomainName to get all upgrade compatible Elasticsearch versions for that specific domain.
|
|
| GetPackageVersionHistory |
Show DescriptionReturns a list of versions of the package, along with their creation time and commit message. |
|
| GetUpgradeHistory |
Show DescriptionRetrieves the complete history of the last 10 upgrades that were performed on the domain. |
|
| GetUpgradeStatus |
Show DescriptionRetrieves the latest status of the last upgrade or upgrade eligibility check that was performed on the domain. |
|
| ListDomainNames |
Show DescriptionReturns the name of all Elasticsearch domains owned by the current user's account. |
|
| ListDomainsForPackage |
Show DescriptionLists all Amazon ES domains associated with the package. |
|
| ListElasticsearchInstanceTypes |
Show DescriptionList all Elasticsearch instance types that are supported for given ElasticsearchVersion |
|
| ListElasticsearchVersions |
Show DescriptionList all supported Elasticsearch versions |
|
| ListPackagesForDomain |
Show DescriptionLists all packages associated with the Amazon ES domain. |
|
| ListTags |
Show DescriptionReturns all tags for the given Elasticsearch domain. |
|
| PurchaseReservedElasticsearchInstanceOffering |
Show DescriptionAllows you to purchase reserved Elasticsearch instances. |
|
| RejectInboundCrossClusterSearchConnection |
Show DescriptionAllows the destination domain owner to reject an inbound cross-cluster search connection request. |
|
| RemoveTags | ||
| StartElasticsearchServiceSoftwareUpdate |
Show DescriptionSchedules a service software update for an Amazon ES domain. |
|
| UpdateElasticsearchDomainConfig |
Show DescriptionModifies the cluster configuration of the specified Elasticsearch domain, setting as setting the instance type and the number of instances. |
|
| UpdatePackage |
Show DescriptionUpdates a package for use with Amazon ES domains. |
Events Events
| Service | Event Name | Description |
|---|---|---|
| events | ActivateEventSource | |
| CancelReplay |
Show DescriptionCancels the specified replay. |
|
| CreateApiDestination |
Show DescriptionCreates an API destination, which is an HTTP invocation endpoint configured as a target for events. |
|
| CreateArchive |
Show DescriptionCreates an archive of events with the specified settings. When you create an archive, incoming events might not immediately start being sent to the archive. Allow a short period of time for changes to take effect. If you do not specify a pattern to filter events sent to the archive, all events are sent to the archive except replayed events. Replayed events are not sent to an archive. |
|
| CreateConnection |
Show DescriptionCreates a connection. A connection defines the authorization type and credentials to use for authorization with an API destination HTTP endpoint. |
|
| CreateEventBus |
Show DescriptionCreates a new event bus within your account. This can be a custom event bus which you can use to receive events from your custom applications and services, or it can be a partner event bus which can be matched to a partner event source. |
|
| CreatePartnerEventSource |
Show DescriptionCalled by an SaaS partner to create a partner event source. This operation is not used by Amazon Web Services customers. Each partner event source can be used by one Amazon Web Services account to create a matching partner event bus in that Amazon Web Services account. A SaaS partner must create one partner event source for each Amazon Web Services account that wants to receive those event types. A partner event source creates events based on resources within the SaaS partner's service or application. An Amazon Web Services account that creates a partner event bus that matches the partner event source can use that event bus to receive events from the partner, and then process them using Amazon Web Services Events rules and targets. Partner event source names follow this format: partner_name/event_namespace/event_name partner_name is determined during partner registration and identifies the partner to Amazon Web Services customers. event_namespace is determined by the partner and is a way for the partner to categorize their events. event_name is determined by the partner, and should uniquely identify an event-generating resource within the partner system. The combination of event_namespace and event_name should help Amazon Web Services customers decide whether to create an event bus to receive these events.
|
|
| DeactivateEventSource | ||
| DeauthorizeConnection |
Show DescriptionRemoves all authorization parameters from the connection. This lets you remove the secret from the connection so you can reuse it without having to create a new connection. |
|
| DeleteApiDestination |
Show DescriptionDeletes the specified API destination. |
|
| DeleteArchive |
Show DescriptionDeletes the specified archive. |
|
| DeleteConnection |
Show DescriptionDeletes a connection. |
|
| DeleteEventBus | ||
| DeletePartnerEventSource | ||
| DeleteRule | ||
| DescribeApiDestination |
Show DescriptionRetrieves details about an API destination. |
|
| DescribeArchive |
Show DescriptionRetrieves details about an archive. |
|
| DescribeConnection |
Show DescriptionRetrieves details about a connection. |
|
| DescribeEventBus |
Show DescriptionDisplays details about an event bus in your account. This can include the external Amazon Web Services accounts that are permitted to write events to your default event bus, and the associated policy. For custom event buses and partner event buses, it displays the name, ARN, policy, state, and creation time. To enable your account to receive events from other accounts on its default event bus, use PutPermission. For more information about partner event buses, see CreateEventBus. |
|
| DescribeEventSource |
Show DescriptionThis operation lists details about a partner event source that is shared with your account. |
|
| DescribePartnerEventSource |
Show DescriptionAn SaaS partner can use this operation to list details about a partner event source that they have created. Amazon Web Services customers do not use this operation. Instead, Amazon Web Services customers can use DescribeEventSource to see details about a partner event source that is shared with them. |
|
| DescribeReplay |
Show DescriptionRetrieves details about a replay. UseDescribeReplay to determine the progress of a running replay. A replay processes events to replay based on the time in the event, and replays them using 1 minute intervals. If you use StartReplay and specify an EventStartTime and an EventEndTime that covers a 20 minute time range, the events are replayed from the first minute of that 20 minute range first. Then the events from the second minute are replayed. You can use DescribeReplay to determine the progress of a replay. The value returned for EventLastReplayedTime indicates the time within the specified time range associated with the last event replayed.
|
|
| DescribeRule |
Show DescriptionDescribes the specified rule. DescribeRule does not list the targets of a rule. To see the targets associated with a rule, use ListTargetsByRule. |
|
| DisableRule | ||
| EnableRule | ||
| ListApiDestinations |
Show DescriptionRetrieves a list of API destination in the account in the current Region. |
|
| ListArchives |
Show DescriptionLists your archives. You can either list all the archives or you can provide a prefix to match to the archive names. Filter parameters are exclusive. |
|
| ListConnections |
Show DescriptionRetrieves a list of connections from the account. |
|
| ListEventBuses |
Show DescriptionLists all the event buses in your account, including the default event bus, custom event buses, and partner event buses. |
|
| ListEventSources |
Show DescriptionYou can use this to see all the partner event sources that have been shared with your Amazon Web Services account. For more information about partner event sources, see CreateEventBus. |
|
| ListPartnerEventSourceAccounts |
Show DescriptionAn SaaS partner can use this operation to display the Amazon Web Services account ID that a particular partner event source name is associated with. This operation is not used by Amazon Web Services customers. |
|
| ListPartnerEventSources |
Show DescriptionAn SaaS partner can use this operation to list all the partner event source names that they have created. This operation is not used by Amazon Web Services customers. |
|
| ListReplays |
Show DescriptionLists your replays. You can either list all the replays or you can provide a prefix to match to the replay names. Filter parameters are exclusive. |
|
| ListRuleNamesByTarget |
Show DescriptionLists the rules for the specified target. You can see which of the rules in Amazon EventBridge can invoke a specific target in your account. |
|
| ListRules |
Show DescriptionLists your Amazon EventBridge rules. You can either list all the rules or you can provide a prefix to match to the rule names. ListRules does not list the targets of a rule. To see the targets associated with a rule, use ListTargetsByRule. |
|
| ListTagsForResource |
Show DescriptionDisplays the tags associated with an EventBridge resource. In EventBridge, rules and event buses can be tagged. |
|
| ListTargetsByRule |
Show DescriptionLists the targets assigned to the specified rule. |
|
| PutEvents |
Show DescriptionSends custom events to Amazon EventBridge so that they can be matched to rules. |
|
| PutPartnerEvents |
Show DescriptionThis is used by SaaS partners to write events to a customer's partner event bus. Amazon Web Services customers do not use this operation. |
|
| PutPermission | ||
| PutRule |
Show DescriptionCreates or updates the specified rule. Rules are enabled by default, or based on value of the state. You can disable a rule using DisableRule. A single rule watches for events from a single event bus. Events generated by Amazon Web Services services go to your account's default event bus. Events generated by SaaS partner services or applications go to the matching partner event bus. If you have custom applications or services, you can specify whether their events go to your default event bus or a custom event bus that you have created. For more information, see CreateEventBus. If you are updating an existing rule, the rule is replaced with what you specify in thisPutRule command. If you omit arguments in PutRule, the old values for those arguments are not kept. Instead, they are replaced with null values. When you create or update a rule, incoming events might not immediately start matching to new or updated rules. Allow a short period of time for changes to take effect. A rule must contain at least an EventPattern or ScheduleExpression. Rules with EventPatterns are triggered when a matching event is observed. Rules with ScheduleExpressions self-trigger based on the given schedule. A rule can have both an EventPattern and a ScheduleExpression, in which case the rule triggers on matching events as well as on a schedule. When you initially create a rule, you can optionally assign one or more tags to the rule. Tags can help you organize and categorize your resources. You can also use them to scope user permissions, by granting a user permission to access or change only rules with certain tag values. To use the PutRule operation and assign tags, you must have both the events:PutRule and events:TagResource permissions. If you are updating an existing rule, any tags you specify in the PutRule operation are ignored. To update the tags of an existing rule, use TagResource and UntagResource. Most services in Amazon Web Services treat : or / as the same character in Amazon Resource Names (ARNs). However, EventBridge uses an exact match in event patterns and rules. Be sure to use the correct ARN characters when creating event patterns so that they match the ARN syntax in the event you want to match. In EventBridge, it is possible to create rules that lead to infinite loops, where a rule is fired repeatedly. For example, a rule might detect that ACLs have changed on an S3 bucket, and trigger software to change them to the desired state. If the rule is not written carefully, the subsequent change to the ACLs fires the rule again, creating an infinite loop. To prevent this, write the rules so that the triggered actions do not re-fire the same rule. For example, your rule could fire only if ACLs are found to be in a bad state, instead of after any change. An infinite loop can quickly cause higher than expected charges. We recommend that you use budgeting, which alerts you when charges exceed your specified limit. For more information, see Managing Your Costs with Budgets.
|
|
| PutTargets |
Show DescriptionAdds the specified targets to the specified rule, or updates the targets if they are already associated with the rule. Targets are the resources that are invoked when a rule is triggered. You can configure the following as targets for Events:
EC2 CreateSnapshot API call, EC2 RebootInstances API call, EC2 StopInstances API call, and EC2 TerminateInstances API call. For some target types, PutTargets provides target-specific parameters. If the target is a Kinesis data stream, you can optionally specify which shard the event goes to by using the KinesisParameters argument. To invoke a command on multiple EC2 instances with one rule, you can use the RunCommandParameters field. To be able to make API calls against the resources that you own, Amazon EventBridge needs the appropriate permissions. For Lambda and Amazon SNS resources, EventBridge relies on resource-based policies. For EC2 instances, Kinesis Data Streams, Step Functions state machines and API Gateway REST APIs, EventBridge relies on IAM roles that you specify in the RoleARN argument in PutTargets. For more information, see Authentication and Access Control in the Amazon EventBridge User Guide. If another Amazon Web Services account is in the same region and has granted you permission (using PutPermission), you can send events to that account. Set that account's event bus as a target of the rules in your account. To send the matched events to the other account, specify that account's event bus as the Arn value when you run PutTargets. If your account sends events to another account, your account is charged for each sent event. Each event sent to another account is charged as a custom event. The account receiving the event is not charged. For more information, see Amazon EventBridge Pricing. Input, InputPath, and InputTransformer are not available with PutTarget if the target is an event bus of a different Amazon Web Services account. RoleArn with proper permissions in the Target structure. For more information, see Sending and Receiving Events Between Amazon Web Services Accounts in the Amazon EventBridge User Guide. For more information about enabling cross-account events, see PutPermission. Input, InputPath, and InputTransformer are mutually exclusive and optional parameters of a target. When a rule is triggered due to a matched event:
InputPath or InputTransformer, you must use JSON dot notation, not bracket notation. When you add targets to a rule and the associated rule triggers soon after, new or updated targets might not be immediately invoked. Allow a short period of time for changes to take effect. This action can partially fail if too many requests are made at the same time. If that happens, FailedEntryCount is non-zero in the response and each entry in FailedEntries provides the ID of the failed target and the error code.
|
|
| RemovePermission | ||
| RemoveTargets |
Show DescriptionRemoves the specified targets from the specified rule. When the rule is triggered, those targets are no longer be invoked. When you remove a target, when the associated rule triggers, removed targets might continue to be invoked. Allow a short period of time for changes to take effect. This action can partially fail if too many requests are made at the same time. If that happens,FailedEntryCount is non-zero in the response and each entry in FailedEntries provides the ID of the failed target and the error code.
|
|
| StartReplay |
Show DescriptionStarts the specified replay. Events are not necessarily replayed in the exact same order that they were added to the archive. A replay processes events to replay based on the time in the event, and replays them using 1 minute intervals. If you specify anEventStartTime and an EventEndTime that covers a 20 minute time range, the events are replayed from the first minute of that 20 minute range first. Then the events from the second minute are replayed. You can use DescribeReplay to determine the progress of a replay. The value returned for EventLastReplayedTime indicates the time within the specified time range associated with the last event replayed.
|
|
| TagResource |
Show DescriptionAssigns one or more tags (key-value pairs) to the specified EventBridge resource. Tags can help you organize and categorize your resources. You can also use them to scope user permissions by granting a user permission to access or change only resources with certain tag values. In EventBridge, rules and event buses can be tagged. Tags don't have any semantic meaning to Amazon Web Services and are interpreted strictly as strings of characters. You can use theTagResource action with a resource that already has tags. If you specify a new tag key, this tag is appended to the list of tags associated with the resource. If you specify a tag key that is already associated with the resource, the new tag value that you specify replaces the previous value for that tag. You can associate as many as 50 tags with a resource.
|
|
| TestEventPattern |
Show DescriptionTests whether the specified event pattern matches the provided event. Most services in Amazon Web Services treat : or / as the same character in Amazon Resource Names (ARNs). However, EventBridge uses an exact match in event patterns and rules. Be sure to use the correct ARN characters when creating event patterns so that they match the ARN syntax in the event you want to match. |
|
| UntagResource |
Show DescriptionRemoves one or more tags from the specified EventBridge resource. In Amazon EventBridge (CloudWatch Events), rules and event buses can be tagged. |
|
| UpdateApiDestination |
Show DescriptionUpdates an API destination. |
|
| UpdateArchive |
Show DescriptionUpdates the specified archive. |
Finspace-data Events
| Service | Event Name | Description |
|---|---|---|
| finspace-data | CreateChangeset |
Show DescriptionCreates a new changeset in a FinSpace dataset. |
| GetProgrammaticAccessCredentials |
Show DescriptionRequest programmatic credentials to use with Habanero SDK. |
Finspace Events
| Service | Event Name | Description |
|---|---|---|
| finspace | CreateEnvironment |
Show DescriptionCreate a new FinSpace environment. |
| DeleteEnvironment |
Show DescriptionDelete an FinSpace environment. |
|
| GetEnvironment |
Show DescriptionReturns the FinSpace environment object. |
|
| ListEnvironments |
Show DescriptionA list of all of your FinSpace environments. |
|
| ListTagsForResource |
Show DescriptionA list of all tags for a resource. |
|
| TagResource |
Show DescriptionAdds metadata tags to a FinSpace resource. |
|
| UntagResource |
Show DescriptionRemoves metadata tags from a FinSpace resource. |
Firehose Events
| Service | Event Name | Description |
|---|---|---|
| firehose | CreateDeliveryStream |
Show DescriptionCreates a Kinesis Data Firehose delivery stream. By default, you can create up to 50 delivery streams per AWS Region. This is an asynchronous operation that immediately returns. The initial status of the delivery stream isCREATING. After the delivery stream is created, its status is ACTIVE and it now accepts data. If the delivery stream creation fails, the status transitions to CREATING_FAILED. Attempts to send data to a delivery stream that is not in the ACTIVE state cause an exception. To check the state of a delivery stream, use DescribeDeliveryStream. If the status of a delivery stream is CREATING_FAILED, this status doesn't change, and you can't invoke CreateDeliveryStream again on it. However, you can invoke the DeleteDeliveryStream operation to delete it. A Kinesis Data Firehose delivery stream can be configured to receive records directly from providers using PutRecord or PutRecordBatch, or it can be configured to use an existing Kinesis stream as its source. To specify a Kinesis data stream as input, set the DeliveryStreamType parameter to KinesisStreamAsSource, and provide the Kinesis stream Amazon Resource Name (ARN) and role ARN in the KinesisStreamSourceConfiguration parameter. To create a delivery stream with server-side encryption (SSE) enabled, include DeliveryStreamEncryptionConfigurationInput in your request. This is optional. You can also invoke StartDeliveryStreamEncryption to turn on SSE for an existing delivery stream that doesn't have SSE enabled. A delivery stream is configured with a single destination: Amazon S3, Amazon ES, Amazon Redshift, or Splunk. You must specify only one of the following destination configuration parameters: ExtendedS3DestinationConfiguration, S3DestinationConfiguration, ElasticsearchDestinationConfiguration, RedshiftDestinationConfiguration, or SplunkDestinationConfiguration. When you specify S3DestinationConfiguration, you can also provide the following optional values: BufferingHints, EncryptionConfiguration, and CompressionFormat. By default, if no BufferingHints value is provided, Kinesis Data Firehose buffers data up to 5 MB or for 5 minutes, whichever condition is satisfied first. BufferingHints is a hint, so there are some cases where the service cannot adhere to these conditions strictly. For example, record boundaries might be such that the size is a little over or under the configured buffering size. By default, no encryption is performed. We strongly recommend that you enable encryption to ensure secure data storage in Amazon S3. A few notes about Amazon Redshift as a destination:
|
| DeleteDeliveryStream |
Show DescriptionDeletes a delivery stream and its data. To check the state of a delivery stream, use DescribeDeliveryStream. You can delete a delivery stream only if it is in one of the following states:ACTIVE, DELETING, CREATING_FAILED, or DELETING_FAILED. You can't delete a delivery stream that is in the CREATING state. While the deletion request is in process, the delivery stream is in the DELETING state. While the delivery stream is in the DELETING state, the service might continue to accept records, but it doesn't make any guarantees with respect to delivering the data. Therefore, as a best practice, first stop any applications that are sending records before you delete a delivery stream.
|
|
| DescribeDeliveryStream |
Show DescriptionDescribes the specified delivery stream and its status. For example, after your delivery stream is created, callDescribeDeliveryStream to see whether the delivery stream is ACTIVE and therefore ready for data to be sent to it. If the status of a delivery stream is CREATING_FAILED, this status doesn't change, and you can't invoke CreateDeliveryStream again on it. However, you can invoke the DeleteDeliveryStream operation to delete it. If the status is DELETING_FAILED, you can force deletion by invoking DeleteDeliveryStream again but with DeleteDeliveryStreamInput$AllowForceDelete set to true.
|
|
| ListDeliveryStreams |
Show DescriptionLists your delivery streams in alphabetical order of their names. The number of delivery streams might be too large to return using a single call toListDeliveryStreams. You can limit the number of delivery streams returned, using the Limit parameter. To determine whether there are more delivery streams to list, check the value of HasMoreDeliveryStreams in the output. If there are more delivery streams to list, you can request them by calling this operation again and setting the ExclusiveStartDeliveryStreamName parameter to the name of the last delivery stream returned in the last call.
|
|
| ListTagsForDeliveryStream |
Show DescriptionLists the tags for the specified delivery stream. This operation has a limit of five transactions per second per account. |
|
| PutRecord |
Show DescriptionWrites a single data record into an Amazon Kinesis Data Firehose delivery stream. To write multiple data records into a delivery stream, use PutRecordBatch. Applications using these operations are referred to as producers. By default, each delivery stream can take in up to 2,000 transactions per second, 5,000 records per second, or 5 MB per second. If you use PutRecord and PutRecordBatch, the limits are an aggregate across these two operations for each delivery stream. For more information about limits and how to request an increase, see Amazon Kinesis Data Firehose Limits. You must specify the name of the delivery stream and the data record when using PutRecord. The data record consists of a data blob that can be up to 1,000 KiB in size, and any kind of data. For example, it can be a segment from a log file, geographic location data, website clickstream data, and so on. Kinesis Data Firehose buffers records before delivering them to the destination. To disambiguate the data blobs at the destination, a common solution is to use delimiters in the data, such as a newline (\n) or some other character unique within the data. This allows the consumer application to parse individual data items when reading the data from the destination. The PutRecord operation returns a RecordId, which is a unique string assigned to each record. Producer applications can use this ID for purposes such as auditability and investigation. If the PutRecord operation throws a ServiceUnavailableException, back off and retry. If the exception persists, it is possible that the throughput limits have been exceeded for the delivery stream. Data records sent to Kinesis Data Firehose are stored for 24 hours from the time they are added to a delivery stream as it tries to send the records to the destination. If the destination is unreachable for more than 24 hours, the data is no longer available. |
|
| PutRecordBatch |
Show DescriptionWrites multiple data records into a delivery stream in a single call, which can achieve higher throughput per producer than when writing single records. To write single data records into a delivery stream, use PutRecord. Applications using these operations are referred to as producers. For information about service quota, see Amazon Kinesis Data Firehose Quota. Each PutRecordBatch request supports up to 500 records. Each record in the request can be as large as 1,000 KB (before base64 encoding), up to a limit of 4 MB for the entire request. These limits cannot be changed. You must specify the name of the delivery stream and the data record when using PutRecord. The data record consists of a data blob that can be up to 1,000 KB in size, and any kind of data. For example, it could be a segment from a log file, geographic location data, website clickstream data, and so on. Kinesis Data Firehose buffers records before delivering them to the destination. To disambiguate the data blobs at the destination, a common solution is to use delimiters in the data, such as a newline (\n) or some other character unique within the data. This allows the consumer application to parse individual data items when reading the data from the destination. The PutRecordBatch response includes a count of failed records, FailedPutCount, and an array of responses, RequestResponses. Even if the PutRecordBatch call succeeds, the value of FailedPutCount may be greater than 0, indicating that there are records for which the operation didn't succeed. Each entry in the RequestResponses array provides additional information about the processed record. It directly correlates with a record in the request array using the same ordering, from the top to the bottom. The response array always includes the same number of records as the request array. RequestResponses includes both successfully and unsuccessfully processed records. Kinesis Data Firehose tries to process all records in each PutRecordBatch request. A single record failure does not stop the processing of subsequent records. A successfully processed record includes a RecordId value, which is unique for the record. An unsuccessfully processed record includes ErrorCode and ErrorMessage values. ErrorCode reflects the type of error, and is one of the following values: ServiceUnavailableException or InternalFailure. ErrorMessage provides more detailed information about the error. If there is an internal server error or a timeout, the write might have completed or it might have failed. If FailedPutCount is greater than 0, retry the request, resending only those records that might have failed processing. This minimizes the possible duplicate records and also reduces the total bytes sent (and corresponding charges). We recommend that you handle any duplicates at the destination. If PutRecordBatch throws ServiceUnavailableException, back off and retry. If the exception persists, it is possible that the throughput limits have been exceeded for the delivery stream. Data records sent to Kinesis Data Firehose are stored for 24 hours from the time they are added to a delivery stream as it attempts to send the records to the destination. If the destination is unreachable for more than 24 hours, the data is no longer available. |
|
| StartDeliveryStreamEncryption |
Show DescriptionEnables server-side encryption (SSE) for the delivery stream. This operation is asynchronous. It returns immediately. When you invoke it, Kinesis Data Firehose first sets the encryption status of the stream toENABLING, and then to ENABLED. The encryption status of a delivery stream is the Status property in DeliveryStreamEncryptionConfiguration. If the operation fails, the encryption status changes to ENABLING_FAILED. You can continue to read and write data to your delivery stream while the encryption status is ENABLING, but the data is not encrypted. It can take up to 5 seconds after the encryption status changes to ENABLED before all records written to the delivery stream are encrypted. To find out whether a record or a batch of records was encrypted, check the response elements PutRecordOutput$Encrypted and PutRecordBatchOutput$Encrypted, respectively. To check the encryption status of a delivery stream, use DescribeDeliveryStream. Even if encryption is currently enabled for a delivery stream, you can still invoke this operation on it to change the ARN of the CMK or both its type and ARN. If you invoke this method to change the CMK, and the old CMK is of type CUSTOMER_MANAGED_CMK, Kinesis Data Firehose schedules the grant it had on the old CMK for retirement. If the new CMK is of type CUSTOMER_MANAGED_CMK, Kinesis Data Firehose creates a grant that enables it to use the new CMK to encrypt and decrypt data and to manage the grant. If a delivery stream already has encryption enabled and then you invoke this operation to change the ARN of the CMK or both its type and ARN and you get ENABLING_FAILED, this only means that the attempt to change the CMK failed. In this case, encryption remains enabled with the old CMK. If the encryption status of your delivery stream is ENABLING_FAILED, you can invoke this operation again with a valid CMK. The CMK must be enabled and the key policy mustn't explicitly deny the permission for Kinesis Data Firehose to invoke KMS encrypt and decrypt operations. You can enable SSE for a delivery stream only if it's a delivery stream that uses DirectPut as its source. The StartDeliveryStreamEncryption and StopDeliveryStreamEncryption operations have a combined limit of 25 calls per delivery stream per 24 hours. For example, you reach the limit if you call StartDeliveryStreamEncryption 13 times and StopDeliveryStreamEncryption 12 times for the same delivery stream in a 24-hour period.
|
|
| StopDeliveryStreamEncryption |
Show DescriptionDisables server-side encryption (SSE) for the delivery stream. This operation is asynchronous. It returns immediately. When you invoke it, Kinesis Data Firehose first sets the encryption status of the stream toDISABLING, and then to DISABLED. You can continue to read and write data to your stream while its status is DISABLING. It can take up to 5 seconds after the encryption status changes to DISABLED before all records written to the delivery stream are no longer subject to encryption. To find out whether a record or a batch of records was encrypted, check the response elements PutRecordOutput$Encrypted and PutRecordBatchOutput$Encrypted, respectively. To check the encryption state of a delivery stream, use DescribeDeliveryStream. If SSE is enabled using a customer managed CMK and then you invoke StopDeliveryStreamEncryption, Kinesis Data Firehose schedules the related KMS grant for retirement and then retires it after it ensures that it is finished delivering records to the destination. The StartDeliveryStreamEncryption and StopDeliveryStreamEncryption operations have a combined limit of 25 calls per delivery stream per 24 hours. For example, you reach the limit if you call StartDeliveryStreamEncryption 13 times and StopDeliveryStreamEncryption 12 times for the same delivery stream in a 24-hour period.
|
|
| TagDeliveryStream |
Show DescriptionAdds or updates tags for the specified delivery stream. A tag is a key-value pair that you can define and assign to AWS resources. If you specify a tag that already exists, the tag value is replaced with the value that you specify in the request. Tags are metadata. For example, you can add friendly names and descriptions or other types of information that can help you distinguish the delivery stream. For more information about tags, see Using Cost Allocation Tags in the AWS Billing and Cost Management User Guide. Each delivery stream can have up to 50 tags. This operation has a limit of five transactions per second per account. |
|
| UntagDeliveryStream |
Show DescriptionRemoves tags from the specified delivery stream. Removed tags are deleted, and you can't recover them after this operation successfully completes. If you specify a tag that doesn't exist, the operation ignores it. This operation has a limit of five transactions per second per account. |
Fis Events
| Service | Event Name | Description |
|---|---|---|
| fis | CreateExperimentTemplate |
Show DescriptionCreates an experiment template. To create a template, specify the following information:
|
| DeleteExperimentTemplate |
Show DescriptionDeletes the specified experiment template. |
|
| GetAction |
Show DescriptionGets information about the specified AWS FIS action. |
|
| GetExperiment |
Show DescriptionGets information about the specified experiment. |
|
| GetExperimentTemplate |
Show DescriptionGets information about the specified experiment template. |
|
| ListActions |
Show DescriptionLists the available AWS FIS actions. |
|
| ListExperimentTemplates |
Show DescriptionLists your experiment templates. |
|
| ListExperiments |
Show DescriptionLists your experiments. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified resource. |
|
| StartExperiment |
Show DescriptionStarts running an experiment from the specified experiment template. |
|
| StopExperiment |
Show DescriptionStops the specified experiment. |
|
| TagResource |
Show DescriptionApplies the specified tags to the specified resource. |
|
| UntagResource |
Show DescriptionRemoves the specified tags from the specified resource. |
Forecast Events
| Service | Event Name | Description |
|---|---|---|
| forecast | CreateDataset |
Show DescriptionCreates an Amazon Forecast dataset. The information about the dataset that you provide helps Forecast understand how to consume the data for model training. This includes the following:
Status of a dataset must be ACTIVE before you can import training data. Use the DescribeDataset operation to get the status. |
| CreateDatasetGroup |
Show DescriptionCreates a dataset group, which holds a collection of related datasets. You can add datasets to the dataset group when you create the dataset group, or later by using the UpdateDatasetGroup operation. After creating a dataset group and adding datasets, you use the dataset group when you create a predictor. For more information, see howitworks-datasets-groups. To get a list of all your datasets groups, use the ListDatasetGroups operation.Status of a dataset group must be ACTIVE before you can use the dataset group to create a predictor. To get the status, use the DescribeDatasetGroup operation. |
|
| CreateDatasetImportJob |
Show DescriptionImports your training data to an Amazon Forecast dataset. You provide the location of your training data in an Amazon Simple Storage Service (Amazon S3) bucket and the Amazon Resource Name (ARN) of the dataset that you want to import the data to. You must specify a DataSource object that includes an AWS Identity and Access Management (IAM) role that Amazon Forecast can assume to access the data, as Amazon Forecast makes a copy of your data and processes it in an internal AWS system. For more information, see aws-forecast-iam-roles. The training data must be in CSV format. The delimiter must be a comma (,). You can specify the path to a specific CSV file, the S3 bucket, or to a folder in the S3 bucket. For the latter two cases, Amazon Forecast imports all files up to the limit of 10,000 files. Because dataset imports are not aggregated, your most recent dataset import is the one that is used when training a predictor or generating a forecast. Make sure that your most recent dataset import contains all of the data you want to model off of, and not just the new data collected since the previous import. To get a list of all your dataset import jobs, filtered by specified criteria, use the ListDatasetImportJobs operation. |
|
| CreateForecast |
Show DescriptionCreates a forecast for each item in theTARGET_TIME_SERIES dataset that was used to train the predictor. This is known as inference. To retrieve the forecast for a single item at low latency, use the operation. To export the complete forecast into your Amazon Simple Storage Service (Amazon S3) bucket, use the CreateForecastExportJob operation. The range of the forecast is determined by the ForecastHorizon value, which you specify in the CreatePredictor request. When you query a forecast, you can request a specific date range within the forecast. To get a list of all your forecasts, use the ListForecasts operation. Status of the forecast must be ACTIVE before you can query or export the forecast. Use the DescribeForecast operation to get the status. |
|
| CreateForecastExportJob |
Show DescriptionExports a forecast created by the CreateForecast operation to your Amazon Simple Storage Service (Amazon S3) bucket. The forecast file name will match the following conventions: <ForecastExportJobName>_<ExportTimestamp>_<PartNumber> where the <ExportTimestamp> component is in Java SimpleDateFormat (yyyy-MM-ddTHH-mm-ssZ). You must specify a DataDestination object that includes an AWS Identity and Access Management (IAM) role that Amazon Forecast can assume to access the Amazon S3 bucket. For more information, see aws-forecast-iam-roles. For more information, see howitworks-forecast. To get a list of all your forecast export jobs, use the ListForecastExportJobs operation.Status of the forecast export job must be ACTIVE before you can access the forecast in your Amazon S3 bucket. To get the status, use the DescribeForecastExportJob operation. |
|
| CreatePredictor |
Show DescriptionCreates an Amazon Forecast predictor. In the request, provide a dataset group and either specify an algorithm or let Amazon Forecast choose an algorithm for you using AutoML. If you specify an algorithm, you also can override algorithm-specific hyperparameters. Amazon Forecast uses the algorithm to train a predictor using the latest version of the datasets in the specified dataset group. You can then generate a forecast using the CreateForecast operation. To see the evaluation metrics, use the GetAccuracyMetrics operation. You can specify a featurization configuration to fill and aggregate the data fields in theTARGET_TIME_SERIES dataset to improve model training. For more information, see FeaturizationConfig. For RELATED_TIME_SERIES datasets, CreatePredictor verifies that the DataFrequency specified when the dataset was created matches the ForecastFrequency. TARGET_TIME_SERIES datasets don't have this restriction. Amazon Forecast also verifies the delimiter and timestamp format. For more information, see howitworks-datasets-groups. By default, predictors are trained and evaluated at the 0.1 (P10), 0.5 (P50), and 0.9 (P90) quantiles. You can choose custom forecast types to train and evaluate your predictor by setting the ForecastTypes. AutoML If you want Amazon Forecast to evaluate each algorithm and choose the one that minimizes the objective function, set PerformAutoML to true. The objective function is defined as the mean of the weighted losses over the forecast types. By default, these are the p10, p50, and p90 quantile losses. For more information, see EvaluationResult. When AutoML is enabled, the following properties are disallowed:
Status of the predictor must be ACTIVE, signifying that training has completed. To get the status, use the DescribePredictor operation. |
|
| CreatePredictorBacktestExportJob |
Show DescriptionExports backtest forecasts and accuracy metrics generated by the CreatePredictor operation. Two folders containing CSV files are exported to your specified S3 bucket. The export file names will match the following conventions:<ExportJobName>_<ExportTimestamp>_<PartNumber>.csv The <ExportTimestamp> component is in Java SimpleDate format (yyyy-MM-ddTHH-mm-ssZ). You must specify a DataDestination object that includes an Amazon S3 bucket and an AWS Identity and Access Management (IAM) role that Amazon Forecast can assume to access the Amazon S3 bucket. For more information, see aws-forecast-iam-roles. Status of the export job must be ACTIVE before you can access the export in your Amazon S3 bucket. To get the status, use the DescribePredictorBacktestExportJob operation. |
|
| DeleteDataset | ||
| DeleteDatasetGroup | ||
| DeleteDatasetImportJob | ||
| DeleteForecast | ||
| DeleteForecastExportJob | ||
| DeletePredictor | ||
| DeletePredictorBacktestExportJob | ||
| DeleteResourceTree | ||
| DescribeDataset |
Show DescriptionDescribes an Amazon Forecast dataset created using the CreateDataset operation. In addition to listing the parameters specified in theCreateDataset request, this operation includes the following dataset properties:
|
|
| DescribeDatasetGroup |
Show DescriptionDescribes a dataset group created using the CreateDatasetGroup operation. In addition to listing the parameters provided in theCreateDatasetGroup request, this operation includes the following properties:
|
|
| DescribeDatasetImportJob |
Show DescriptionDescribes a dataset import job created using the CreateDatasetImportJob operation. In addition to listing the parameters provided in theCreateDatasetImportJob request, this operation includes the following properties:
|
|
| DescribeForecast |
Show DescriptionDescribes a forecast created using the CreateForecast operation. In addition to listing the properties provided in theCreateForecast request, this operation lists the following properties:
|
|
| DescribeForecastExportJob |
Show DescriptionDescribes a forecast export job created using the CreateForecastExportJob operation. In addition to listing the properties provided by the user in theCreateForecastExportJob request, this operation lists the following properties:
|
|
| DescribePredictor |
Show DescriptionDescribes a predictor created using the CreatePredictor operation. In addition to listing the properties provided in theCreatePredictor request, this operation lists the following properties:
|
|
| DescribePredictorBacktestExportJob |
Show DescriptionDescribes a predictor backtest export job created using the CreatePredictorBacktestExportJob operation. In addition to listing the properties provided by the user in theCreatePredictorBacktestExportJob request, this operation lists the following properties:
|
|
| GetAccuracyMetrics |
Show DescriptionProvides metrics on the accuracy of the models that were trained by the CreatePredictor operation. Use metrics to see how well the model performed and to decide whether to use the predictor to generate a forecast. For more information, see Predictor Metrics. This operation generates metrics for each backtest window that was evaluated. The number of backtest windows (NumberOfBacktestWindows) is specified using the EvaluationParameters object, which is optionally included in the CreatePredictor request. If NumberOfBacktestWindows isn't specified, the number defaults to one. The parameters of the filling method determine which items contribute to the metrics. If you want all items to contribute, specify zero. If you want only those items that have complete data in the range being evaluated to contribute, specify nan. For more information, see FeaturizationMethod. Status of the predictor must be ACTIVE, signifying that training has completed. To get the status, use the DescribePredictor operation. |
|
| ListDatasetGroups |
Show DescriptionReturns a list of dataset groups created using the CreateDatasetGroup operation. For each dataset group, this operation returns a summary of its properties, including its Amazon Resource Name (ARN). You can retrieve the complete set of properties by using the dataset group ARN with the DescribeDatasetGroup operation. |
|
| ListDatasetImportJobs |
Show DescriptionReturns a list of dataset import jobs created using the CreateDatasetImportJob operation. For each import job, this operation returns a summary of its properties, including its Amazon Resource Name (ARN). You can retrieve the complete set of properties by using the ARN with the DescribeDatasetImportJob operation. You can filter the list by providing an array of Filter objects. |
|
| ListDatasets |
Show DescriptionReturns a list of datasets created using the CreateDataset operation. For each dataset, a summary of its properties, including its Amazon Resource Name (ARN), is returned. To retrieve the complete set of properties, use the ARN with the DescribeDataset operation. |
|
| ListForecastExportJobs |
Show DescriptionReturns a list of forecast export jobs created using the CreateForecastExportJob operation. For each forecast export job, this operation returns a summary of its properties, including its Amazon Resource Name (ARN). To retrieve the complete set of properties, use the ARN with the DescribeForecastExportJob operation. You can filter the list using an array of Filter objects. |
|
| ListForecasts |
Show DescriptionReturns a list of forecasts created using the CreateForecast operation. For each forecast, this operation returns a summary of its properties, including its Amazon Resource Name (ARN). To retrieve the complete set of properties, specify the ARN with the DescribeForecast operation. You can filter the list using an array of Filter objects. |
|
| ListPredictorBacktestExportJobs |
Show DescriptionReturns a list of predictor backtest export jobs created using the CreatePredictorBacktestExportJob operation. This operation returns a summary for each backtest export job. You can filter the list using an array of Filter objects. To retrieve the complete set of properties for a particular backtest export job, use the ARN with the DescribePredictorBacktestExportJob operation. |
|
| ListPredictors |
Show DescriptionReturns a list of predictors created using the CreatePredictor operation. For each predictor, this operation returns a summary of its properties, including its Amazon Resource Name (ARN). You can retrieve the complete set of properties by using the ARN with the DescribePredictor operation. You can filter the list using an array of Filter objects. |
|
| ListTagsForResource |
Show DescriptionLists the tags for an Amazon Forecast resource. |
|
| StopResource | ||
| TagResource |
Show DescriptionAssociates the specified tags to a resource with the specifiedresourceArn. If existing tags on a resource are not specified in the request parameters, they are not changed. When a resource is deleted, the tags associated with that resource are also deleted.
|
|
| UntagResource |
Show DescriptionDeletes the specified tags from a resource. |
Forecastquery Events
| Service | Event Name | Description |
|---|---|---|
| forecastquery | QueryForecast |
Show DescriptionRetrieves a forecast for a single item, filtered by the supplied criteria. The criteria is a key-value pair. The key is eitheritem_id (or the equivalent non-timestamp, non-target field) from the TARGET_TIME_SERIES dataset, or one of the forecast dimensions specified as part of the FeaturizationConfig object. By default, QueryForecast returns the complete date range for the filtered forecast. You can request a specific date range. To get the full forecast, use the CreateForecastExportJob operation. |
Gamelift Events
| Service | Event Name | Description |
|---|---|---|
| gamelift | AcceptMatch |
Show DescriptionRegisters a player's acceptance or rejection of a proposed FlexMatch match. A matchmaking configuration may require player acceptance; if so, then matches built with that configuration cannot be completed unless all players accept the proposed match within a specified time limit. When FlexMatch builds a match, all the matchmaking tickets involved in the proposed match are placed into statusREQUIRES_ACCEPTANCE. This is a trigger for your game to get acceptance from all players in the ticket. Acceptances are only valid for tickets when they are in this status; all other acceptances result in an error. To register acceptance, specify the ticket ID, a response, and one or more players. Once all players have registered acceptance, the matchmaking tickets advance to status PLACING, where a new game session is created for the match. If any player rejects the match, or if acceptances are not received before a specified timeout, the proposed match is dropped. The matchmaking tickets are then handled in one of two ways: For tickets where one or more players rejected the match, the ticket status is returned to SEARCHING to find a new match. For tickets where one or more players failed to respond, the ticket status is set to CANCELLED, and processing is terminated. A new matchmaking request for these players can be submitted as needed. Learn more Add FlexMatch to a game client FlexMatch events (reference) Related actions StartMatchmaking
|
| ClaimGameServer |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Locates an available game server and temporarily reserves it to host gameplay and players. This operation is called from a game client or client service (such as a matchmaker) to request hosting resources for a new game session. In response, GameLift FleetIQ locates an available game server, places it inCLAIMED status for 60 seconds, and returns connection information that players can use to connect to the game server. To claim a game server, identify a game server group. You can also specify a game server ID, although this approach bypasses GameLift FleetIQ placement optimization. Optionally, include game data to pass to the game server at the start of a game session, such as a game map or player information. When a game server is successfully claimed, connection information is returned. A claimed game server's utilization status remains AVAILABLE while the claim status is set to CLAIMED for up to 60 seconds. This time period gives the game server time to update its status to UTILIZED (using UpdateGameServer) once players join. If the game server's status is not updated within 60 seconds, the game server reverts to unclaimed status and is available to be claimed by another request. The claim time period is a fixed value and is not configurable. If you try to claim a specific game server, this request will fail in the following cases:
DRAINING status. To avoid this, first check the instance status by calling DescribeGameServerInstances. |
|
| CreateAlias |
Show DescriptionCreates an alias for a fleet. In most situations, you can use an alias ID in place of a fleet ID. An alias provides a level of abstraction for a fleet that is useful when redirecting player traffic from one fleet to another, such as when updating your game build. Amazon GameLift supports two types of routing strategies for aliases: simple and terminal. A simple alias points to an active fleet. A terminal alias is used to display messaging or link to a URL instead of routing players to an active fleet. For example, you might use a terminal alias when a game version is no longer supported and you want to direct players to an upgrade site. To create a fleet alias, specify an alias name, routing strategy, and optional description. Each simple alias can point to only one fleet, but a fleet can have multiple aliases. If successful, a new alias record is returned, including an alias ID and an ARN. You can reassign an alias to another fleet by callingUpdateAlias. Related actions CreateAlias
|
|
| CreateBuild |
Show DescriptionCreates a new Amazon GameLift build resource for your game server binary files. Game server binaries must be combined into a zip file for use with Amazon GameLift.CreateBuild operation can used in the following scenarios:
INITIALIZED status. A build must be in READY status before you can create fleets with it. Learn more Uploading Your Game Create a Build with Files in Amazon S3 Related actions CreateBuild
|
|
| CreateFleet |
Show DescriptionCreates a fleet of Amazon Elastic Compute Cloud (Amazon EC2) instances to host your custom game server or Realtime Servers. Use this operation to configure the computing resources for your fleet and provide instructions for running game servers on each instance. Most GameLift fleets can deploy instances to multiple locations, including the home Region (where the fleet is created) and an optional set of remote locations. Fleets that are created in the following AWS Regions support multiple locations: us-east-1 (N. Virginia), us-west-2 (Oregon), eu-central-1 (Frankfurt), eu-west-1 (Ireland), ap-southeast-2 (Sydney), ap-northeast-1 (Tokyo), and ap-northeast-2 (Seoul). Fleets that are created in other GameLift Regions can deploy instances in the fleet's home Region only. All fleet instances use the same configuration regardless of location; however, you can adjust capacity settings and turn auto-scaling on/off for each location. To create a fleet, choose the hardware for your instances, specify a game server build or Realtime script to deploy, and provide a runtime configuration to direct GameLift how to start and run game servers on each instance in the fleet. Set permissions for inbound traffic to your game servers, and enable optional features as needed. When creating a multi-location fleet, provide a list of additional remote locations. If successful, this operation creates a new Fleet resource and places it inNEW status, which prompts GameLift to initiate the fleet creation workflow. You can track fleet creation by checking fleet status using DescribeFleetAttributes and DescribeFleetLocationAttributes/, or by monitoring fleet creation events using DescribeFleetEvents. As soon as the fleet status changes to ACTIVE, you can enable automatic scaling for the fleet with PutScalingPolicy and set capacity for the home Region with UpdateFleetCapacity. When the status of each remote location reaches ACTIVE, you can set capacity by location using UpdateFleetCapacity. Learn more Setting up fleets Debug fleet creation issues Multi-location fleets Related actions CreateFleet
|
|
| CreateFleetLocations |
Show DescriptionAdds remote locations to a fleet and begins populating the new locations with EC2 instances. The new instances conform to the fleet's instance type, auto-scaling, and other configuration settings.NEW. GameLift initiates the process of starting an instance in each added location. You can track the status of each new location by monitoring location creation events using DescribeFleetEvents. Alternatively, you can poll location status by calling DescribeFleetLocationAttributes. After a location status becomes ACTIVE, you can adjust the location's capacity as needed with UpdateFleetCapacity. Learn more Setting up fleets Multi-location fleets Related actions CreateFleetLocations
|
|
| CreateGameServerGroup |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Creates a GameLift FleetIQ game server group for managing game hosting on a collection of Amazon EC2 instances for game hosting. This operation creates the game server group, creates an Auto Scaling group in your AWS account, and establishes a link between the two groups. You can view the status of your game server groups in the GameLift console. Game server group metrics and events are emitted to Amazon CloudWatch. Before creating a new game server group, you must have the following:
|
|
| CreateGameSession |
Show DescriptionCreates a multiplayer game session for players in a specific fleet location. This operation prompts an available server process to start a game session and retrieves connection information for the new game session. As an alternative, consider using the GameLift game session placement feature with with StartGameSessionPlacement, which uses FleetIQ algorithms and queues to optimize the placement process. When creating a game session, you specify exactly where you want to place it and provide a set of game session configuration settings. The fleet must be inACTIVE status before a game session can be created in it. This operation can be used in the following ways:
GameSession object is returned containing the game session configuration and status. When the status is ACTIVE, game session connection information is provided and player sessions can be created for the game session. By default, newly created game sessions are open to new players. You can restrict new player access by using UpdateGameSession to change the game session's player session creation policy. Game session logs are retained for all active game sessions for 14 days. To access the logs, call GetGameSessionLogUrl to download the log files. Available in GameLift Local. Learn more Start a game session Related actions CreateGameSession
|
|
| CreateGameSessionQueue |
Show DescriptionCreates a placement queue that processes requests for new game sessions. A queue uses FleetIQ algorithms to determine the best placement locations and find an available game server there, then prompts the game server process to start a new game session. A game session queue is configured with a set of destinations (GameLift fleets or aliases), which determine the locations where the queue can place new game sessions. These destinations can span multiple fleet types (Spot and On-Demand), instance types, and AWS Regions. If the queue includes multi-location fleets, the queue is able to place game sessions in all of a fleet's remote locations. You can opt to filter out individual locations if needed. The queue configuration also determines how FleetIQ selects the best available placement for a new game session. Before searching for an available game server, FleetIQ first prioritizes the queue's destinations and locations, with the best placement locations on top. You can set up the queue to use the FleetIQ default prioritization or provide an alternate set of priorities. To create a new queue, provide a name, timeout value, and a list of destinations. Optionally, specify a sort configuration and/or a filter, and define a set of latency cap policies. You can also include the ARN for an Amazon Simple Notification Service (SNS) topic to receive notifications of game session placement activity. Notifications using SNS or CloudWatch events is the preferred way to track placement activity. If successful, a newGameSessionQueue object is returned with an assigned queue ARN. New game session requests, which are submitted to the queue with StartGameSessionPlacement or StartMatchmaking, reference a queue's name or ARN. Learn more Design a game session queue Create a game session queue Related actions CreateGameSessionQueue
|
|
| CreateMatchmakingConfiguration |
Show DescriptionDefines a new matchmaking configuration for use with FlexMatch. Whether your are using FlexMatch with GameLift hosting or as a standalone matchmaking service, the matchmaking configuration sets out rules for matching players and forming teams. If you're also using GameLift hosting, it defines how to start game sessions for each match. Your matchmaking system can use multiple configurations to handle different game scenarios. All matchmaking requests (StartMatchmaking or StartMatchBackfill) identify the matchmaking configuration to use and provide player attributes consistent with that configuration. To create a matchmaking configuration, you must provide the following: configuration name and FlexMatch mode (with or without GameLift hosting); a rule set that specifies how to evaluate players and find acceptable matches; whether player acceptance is required; and the maximum time allowed for a matchmaking attempt. When using FlexMatch with GameLift hosting, you also need to identify the game session queue to use when starting a game session for the match. In addition, you must set up an Amazon Simple Notification Service (SNS) topic to receive matchmaking notifications. Provide the topic ARN in the matchmaking configuration. An alternative method, continuously polling ticket status with DescribeMatchmaking, is only suitable for games in development with low matchmaking usage. Learn more Design a FlexMatch matchmaker Set up FlexMatch event notification Related actions CreateMatchmakingConfiguration |
|
| CreateMatchmakingRuleSet |
Show DescriptionCreates a new rule set for FlexMatch matchmaking. A rule set describes the type of match to create, such as the number and size of teams. It also sets the parameters for acceptable player matches, such as minimum skill level or character type. A rule set is used by a MatchmakingConfiguration. To create a matchmaking rule set, provide unique rule set name and the rule set body in JSON format. Rule sets must be defined in the same Region as the matchmaking configuration they are used with. Since matchmaking rule sets cannot be edited, it is a good idea to check the rule set syntax using ValidateMatchmakingRuleSet before creating a new rule set. Learn more Related actions CreateMatchmakingConfiguration |
|
| CreatePlayerSession |
Show DescriptionReserves an open player slot in a game session for a player. New player sessions can be created in any game session with an open slot that is inACTIVE status and has a player creation policy of ACCEPT_ALL. You can add a group of players to a game session with CreatePlayerSessions. To create a player session, specify a game session ID, player ID, and optionally a set of player data. If successful, a slot is reserved in the game session for the player and a new PlayerSession object is returned with a player session ID. The player references the player session ID when sending a connection request to the game session, and the game server can use it to validate the player reservation with the GameLift service. Player sessions cannot be updated. Available in Amazon GameLift Local. Related actions CreatePlayerSession
|
|
| CreatePlayerSessions |
Show DescriptionReserves open slots in a game session for a group of players. New player sessions can be created in any game session with an open slot that is inACTIVE status and has a player creation policy of ACCEPT_ALL. To add a single player to a game session, use CreatePlayerSession. To create player sessions, specify a game session ID and a list of player IDs. Optionally, provide a set of player data for each player ID. If successful, a slot is reserved in the game session for each player, and new PlayerSession objects are returned with player session IDs. Each player references their player session ID when sending a connection request to the game session, and the game server can use it to validate the player reservation with the GameLift service. Player sessions cannot be updated. Available in Amazon GameLift Local. Related actions CreatePlayerSession
|
|
| CreateScript |
Show DescriptionCreates a new script record for your Realtime Servers script. Realtime scripts are JavaScript that provide configuration settings and optional custom game logic for your game. The script is deployed when you create a Realtime Servers fleet to host your game sessions. Script logic is executed during an active game session. To create a new script record, specify a script name and provide the script file(s). The script files and all dependencies must be zipped into a single file. You can pull the zip file from either of these locations:
|
|
| CreateVpcPeeringAuthorization |
Show DescriptionRequests authorization to create or delete a peer connection between the VPC for your Amazon GameLift fleet and a virtual private cloud (VPC) in your AWS account. VPC peering enables the game servers on your fleet to communicate directly with other AWS resources. Once you've received authorization, call CreateVpcPeeringConnection to establish the peering connection. For more information, see VPC Peering with Amazon GameLift Fleets. You can peer with VPCs that are owned by any AWS account you have access to, including the account that you use to manage your Amazon GameLift fleets. You cannot peer with VPCs that are in different Regions. To request authorization to create a connection, call this operation from the AWS account with the VPC that you want to peer to your Amazon GameLift fleet. For example, to enable your game servers to retrieve data from a DynamoDB table, use the account that manages that DynamoDB resource. Identify the following values: (1) The ID of the VPC that you want to peer with, and (2) the ID of the AWS account that you use to manage Amazon GameLift. If successful, VPC peering is authorized for the specified VPC. To request authorization to delete a connection, call this operation from the AWS account with the VPC that is peered with your Amazon GameLift fleet. Identify the following values: (1) VPC ID that you want to delete the peering connection for, and (2) ID of the AWS account that you use to manage Amazon GameLift. The authorization remains valid for 24 hours unless it is canceled by a call to DeleteVpcPeeringAuthorization. You must create or delete the peering connection while the authorization is valid. Related actions CreateVpcPeeringAuthorization |
|
| CreateVpcPeeringConnection |
Show DescriptionEstablishes a VPC peering connection between a virtual private cloud (VPC) in an AWS account with the VPC for your Amazon GameLift fleet. VPC peering enables the game servers on your fleet to communicate directly with other AWS resources. You can peer with VPCs in any AWS account that you have access to, including the account that you use to manage your Amazon GameLift fleets. You cannot peer with VPCs that are in different Regions. For more information, see VPC Peering with Amazon GameLift Fleets. Before calling this operation to establish the peering connection, you first need to call CreateVpcPeeringAuthorization and identify the VPC you want to peer with. Once the authorization for the specified VPC is issued, you have 24 hours to establish the connection. These two operations handle all tasks necessary to peer the two VPCs, including acceptance, updating routing tables, etc. To establish the connection, call this operation from the AWS account that is used to manage the Amazon GameLift fleets. Identify the following values: (1) The ID of the fleet you want to be enable a VPC peering connection for; (2) The AWS account with the VPC that you want to peer with; and (3) The ID of the VPC you want to peer with. This operation is asynchronous. If successful, a VpcPeeringConnection request is created. You can use continuous polling to track the request's status using DescribeVpcPeeringConnections, or by monitoring fleet events for success or failure using DescribeFleetEvents. Related actions CreateVpcPeeringAuthorization |
|
| DeleteAlias | ||
| DeleteBuild | ||
| DeleteFleet | ||
| DeleteFleetLocations |
Show DescriptionRemoves locations from a multi-location fleet. When deleting a location, all game server process and all instances that are still active in the location are shut down. To delete fleet locations, identify the fleet ID and provide a list of the locations to be deleted. If successful, GameLift sets the location status toDELETING, and begins to shut down existing server processes and terminate instances in each location being deleted. When completed, the location status changes to TERMINATED. Learn more Setting up GameLift fleets Related actions CreateFleetLocations
|
|
| DeleteGameServerGroup |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Terminates a game server group and permanently deletes the game server group record. You have several options for how these resources are impacted when deleting the game server group. Depending on the type of delete operation selected, this operation might affect these resources:
ACTIVE or ERROR status. If the delete request is successful, a series of operations are kicked off. The game server group status is changed to DELETE_SCHEDULED, which prevents new game servers from being registered and stops automatic scaling activity. Once all game servers in the game server group are deregistered, GameLift FleetIQ can begin deleting resources. If any of the delete operations fail, the game server group is placed in ERROR status. GameLift FleetIQ emits delete events to Amazon CloudWatch. Learn more GameLift FleetIQ Guide Related actions CreateGameServerGroup
|
|
| DeleteGameSessionQueue |
Show DescriptionDeletes a game session queue. Once a queue is successfully deleted, unfulfilled StartGameSessionPlacement requests that reference the queue will fail. To delete a queue, specify the queue name. Learn more Using Multi-Region Queues Related actions CreateGameSessionQueue |
|
| DeleteMatchmakingConfiguration |
Show DescriptionPermanently removes a FlexMatch matchmaking configuration. To delete, specify the configuration name. A matchmaking configuration cannot be deleted if it is being used in any active matchmaking tickets. Related actions CreateMatchmakingConfiguration |
|
| DeleteMatchmakingRuleSet |
Show DescriptionDeletes an existing matchmaking rule set. To delete the rule set, provide the rule set name. Rule sets cannot be deleted if they are currently being used by a matchmaking configuration. Learn more Related actions CreateMatchmakingConfiguration |
|
| DeleteScalingPolicy | ||
| DeleteScript | ||
| DeleteVpcPeeringAuthorization |
Show DescriptionCancels a pending VPC peering authorization for the specified VPC. If you need to delete an existing VPC peering connection, call DeleteVpcPeeringConnection. Related actions CreateVpcPeeringAuthorization |
|
| DeleteVpcPeeringConnection |
Show DescriptionRemoves a VPC peering connection. To delete the connection, you must have a valid authorization for the VPC peering connection that you want to delete. You can check for an authorization by calling DescribeVpcPeeringAuthorizations or request a new one using CreateVpcPeeringAuthorization. Once a valid authorization exists, call this operation from the AWS account that is used to manage the Amazon GameLift fleets. Identify the connection to delete by the connection ID and fleet ID. If successful, the connection is removed. Related actions CreateVpcPeeringAuthorization |
|
| DeregisterGameServer | ||
| DescribeAlias |
Show DescriptionRetrieves properties for an alias. This operation returns all alias metadata and settings. To get an alias's target fleet ID only, useResolveAlias. To get alias properties, specify the alias ID. If successful, the requested alias record is returned. Related actions CreateAlias
|
|
| DescribeBuild |
Show DescriptionRetrieves properties for a custom game build. To request a build resource, specify a build ID. If successful, an object containing the build properties is returned. Learn more Upload a Custom Server Build Related actions CreateBuild |
|
| DescribeEC2InstanceLimits |
Show DescriptionThe GameLift service limits and current utilization for an AWS Region or location. Instance limits control the number of instances, per instance type, per location, that your AWS account can use. Learn more at Amazon EC2 Instance Types. The information returned includes the maximum number of instances allowed and your account's current usage across all fleets. This information can affect your ability to scale your GameLift fleets. You can request a limit increase for your account by using the Service limits page in the GameLift console. Instance limits differ based on whether the instances are deployed in a fleet's home Region or in a remote location. For remote locations, limits also differ based on the combination of home Region and remote location. All requests must specify an AWS Region (either explicitly or as your default settings). To get the limit for a remote location, you must also specify the location. For example, the following requests all return different results:
EC2InstanceLimits object is returned with limits and usage data for each requested instance type. Learn more Setting up GameLift fleets Related actions CreateFleet
|
|
| DescribeFleetAttributes |
Show DescriptionRetrieves core fleet-wide properties, including the computing hardware and deployment configuration for all instances in the fleet. This operation can be used in the following ways:
FleetAttributes object is returned for each fleet requested, unless the fleet identifier is not found. |
|
| DescribeFleetCapacity |
Show DescriptionRetrieves the resource capacity settings for one or more fleets. The data returned includes the current fleet capacity (number of EC2 instances), and settings that can control how capacity scaling. For fleets with remote locations, this operation retrieves data for the fleet's home Region only. See DescribeFleetLocationCapacity to get capacity settings for a fleet's remote locations. This operation can be used in the following ways:
Location property, which is set to the fleet's home Region. When a list of fleet IDs is provided, attribute objects are returned only for fleets that currently exist. |
|
| DescribeFleetEvents |
Show DescriptionRetrieves entries from a fleet's event log. Fleet events are initiated by changes in status, such as during fleet creation and termination, changes in capacity, etc. If a fleet has multiple locations, events are also initiated by changes to status and capacity in remote locations. You can specify a time range to limit the result set. Use the pagination parameters to retrieve results as a set of sequential pages. If successful, a collection of event log entries matching the request are returned. Learn more Setting up GameLift fleets Related actions ListFleets |
|
| DescribeFleetLocationAttributes |
Show DescriptionRetrieves information on a fleet's remote locations, including life-cycle status and any suspended fleet activity. This operation can be used in the following ways:
LocationAttributes object is returned for each requested location. If the fleet does not have a requested location, no information is returned. This operation does not return the home Region. To get information on a fleet's home Region, call DescribeFleetAttributes. Learn more Setting up GameLift fleets Related actions CreateFleetLocations
|
|
| DescribeFleetLocationCapacity |
Show DescriptionRetrieves the resource capacity settings for a fleet location. The data returned includes the current capacity (number of EC2 instances) and some scaling settings for the requested fleet location. Use this operation to retrieve capacity information for a fleet's remote location or home Region (you can also retrieve home Region capacity by callingDescribeFleetCapacity). To retrieve capacity data, identify a fleet and location. If successful, a FleetCapacity object is returned for the requested fleet location. Learn more Setting up GameLift fleets GameLift metrics for fleets Related actions CreateFleetLocations
|
|
| DescribeFleetLocationUtilization |
Show DescriptionRetrieves current usage data for a fleet location. Utilization data provides a snapshot of current game hosting activity at the requested location. Use this operation to retrieve utilization information for a fleet's remote location or home Region (you can also retrieve home Region utilization by callingDescribeFleetUtilization). To retrieve utilization data, identify a fleet and location. If successful, a FleetUtilization object is returned for the requested fleet location. Learn more Setting up GameLift fleets GameLift metrics for fleets Related actions CreateFleetLocations
|
|
| DescribeFleetPortSettings |
Show DescriptionRetrieves a fleet's inbound connection permissions. Connection permissions specify the range of IP addresses and port settings that incoming traffic can use to access server processes in the fleet. Game sessions that are running on instances in the fleet must use connections that fall in this range. This operation can be used in the following ways:
|
|
| DescribeFleetUtilization |
Show DescriptionRetrieves utilization statistics for one or more fleets. Utilization data provides a snapshot of how the fleet's hosting resources are currently being used. For fleets with remote locations, this operation retrieves data for the fleet's home Region only. See DescribeFleetLocationUtilization to get utilization statistics for a fleet's remote locations. This operation can be used in the following ways:
Location property, which is set to the fleet's home Region. |
|
| DescribeGameServer |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Retrieves information for a registered game server. Information includes game server status, health check info, and the instance that the game server is running on. To retrieve game server information, specify the game server ID. If successful, the requested game server object is returned. Learn more GameLift FleetIQ Guide Related actions RegisterGameServer |
|
| DescribeGameServerGroup |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Retrieves information on a game server group. This operation returns only properties related to GameLift FleetIQ. To view or update properties for the corresponding Auto Scaling group, such as launch template, auto scaling policies, and maximum/minimum group size, access the Auto Scaling group directly. To get attributes for a game server group, provide a group name or ARN value. If successful, a GameServerGroup object is returned. Learn more GameLift FleetIQ Guide Related actions CreateGameServerGroup |
|
| DescribeGameServerInstances |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Retrieves status information about the Amazon EC2 instances associated with a GameLift FleetIQ game server group. Use this operation to detect when instances are active or not available to host new game servers. If you are looking for instance configuration information, call DescribeGameServerGroup or access the corresponding Auto Scaling group properties. To request status for all instances in the game server group, provide a game server group ID only. To request status for specific instances, provide the game server group ID and one or more instance IDs. Use the pagination parameters to retrieve results in sequential segments. If successful, a collection ofGameServerInstance objects is returned. This operation is not designed to be called with every game server claim request; this practice can cause you to exceed your API limit, which results in errors. Instead, as a best practice, cache the results and refresh your cache no more than once every 10 seconds. Learn more GameLift FleetIQ Guide Related actions CreateGameServerGroup
|
|
| DescribeGameSessionDetails |
Show DescriptionRetrieves additional game session properties, including the game session protection policy in force, a set of one or more game sessions in a specific fleet location. You can optionally filter the results by current game session status. Alternatively, use SearchGameSessions to request a set of active game sessions that are filtered by certain criteria. To retrieve all game session properties, use DescribeGameSessions. This operation can be used in the following ways:
GameSessionDetail object is returned for each game session that matches the request. Learn more Find a game session Related actions CreateGameSession
|
|
| DescribeGameSessionPlacement |
Show DescriptionRetrieves information, including current status, about a game session placement request. To get game session placement details, specify the placement ID. If successful, a GameSessionPlacement object is returned. Related actions CreateGameSession |
|
| DescribeGameSessionQueues |
Show DescriptionRetrieves the properties for one or more game session queues. When requesting multiple queues, use the pagination parameters to retrieve results as a set of sequential pages. If successful, a GameSessionQueue object is returned for each requested queue. When specifying a list of queues, objects are returned only for queues that currently exist in the Region. Learn more View Your Queues Related actions CreateGameSessionQueue |
|
| DescribeGameSessions |
Show DescriptionRetrieves a set of one or more game sessions in a specific fleet location. You can optionally filter the results by current game session status. Alternatively, use SearchGameSessions to request a set of active game sessions that are filtered by certain criteria. To retrieve the protection policy for game sessions, use DescribeGameSessionDetails. This operation can be used in the following ways:
GameSession object is returned for each game session that matches the request. Available in GameLift Local. Learn more Find a game session Related actions CreateGameSession
|
|
| DescribeInstances |
Show DescriptionRetrieves information about a fleet's instances, including instance IDs, connection data, and status. This operation can be used in the following ways:
Instance object is returned for each requested instance. Instances are not returned in any particular order. Learn more Remotely Access Fleet Instances Debug Fleet Issues Related actions DescribeInstances
|
|
| DescribeMatchmaking |
Show DescriptionRetrieves one or more matchmaking tickets. Use this operation to retrieve ticket information, including--after a successful match is made--connection information for the resulting new game session. To request matchmaking tickets, provide a list of up to 10 ticket IDs. If the request is successful, a ticket object is returned for each requested ID that currently exists. This operation is not designed to be continually called to track matchmaking ticket status. This practice can cause you to exceed your API limit, which results in errors. Instead, as a best practice, set up an Amazon Simple Notification Service (SNS) to receive notifications, and provide the topic ARN in the matchmaking configuration. Continuously poling ticket status with DescribeMatchmaking should only be used for games in development with low matchmaking usage. Learn more Add FlexMatch to a game client Set Up FlexMatch event notification Related actions StartMatchmaking |
|
| DescribeMatchmakingConfigurations |
Show DescriptionRetrieves the details of FlexMatch matchmaking configurations. This operation offers the following options: (1) retrieve all matchmaking configurations, (2) retrieve configurations for a specified list, or (3) retrieve all configurations that use a specified rule set name. When requesting multiple items, use the pagination parameters to retrieve results as a set of sequential pages. If successful, a configuration is returned for each requested name. When specifying a list of names, only configurations that currently exist are returned. Learn more Setting up FlexMatch matchmakers Related actions CreateMatchmakingConfiguration |
|
| DescribeMatchmakingRuleSets |
Show DescriptionRetrieves the details for FlexMatch matchmaking rule sets. You can request all existing rule sets for the Region, or provide a list of one or more rule set names. When requesting multiple items, use the pagination parameters to retrieve results as a set of sequential pages. If successful, a rule set is returned for each requested name. Learn more Related actions CreateMatchmakingConfiguration |
|
| DescribePlayerSessions |
Show DescriptionRetrieves properties for one or more player sessions. This action can be used in the following ways:
PlayerSession object is returned for each session that matches the request. Available in Amazon GameLift Local. Related actions CreatePlayerSession
|
|
| DescribeRuntimeConfiguration |
Show DescriptionRetrieves a fleet's runtime configuration settings. The runtime configuration tells GameLift which server processes to run (and how) on each instance in the fleet. To get the runtime configuration that is currently in forces for a fleet, provide the fleet ID. If successful, a RuntimeConfiguration object is returned for the requested fleet. If the requested fleet has been deleted, the result set is empty. Learn more Setting up GameLift fleets Running multiple processes on a fleet Related actions ListFleets |
|
| DescribeScalingPolicies |
Show DescriptionRetrieves all scaling policies applied to a fleet. To get a fleet's scaling policies, specify the fleet ID. You can filter this request by policy status, such as to retrieve only active scaling policies. Use the pagination parameters to retrieve results as a set of sequential pages. If successful, set of ScalingPolicy objects is returned for the fleet. A fleet may have all of its scaling policies suspended (StopFleetActions). This operation does not affect the status of the scaling policies, which remains ACTIVE. To see whether a fleet's scaling policies are in force or suspended, call DescribeFleetAttributes and check the stopped actions. Related actions DescribeFleetCapacity |
|
| DescribeScript |
Show DescriptionRetrieves properties for a Realtime script. To request a script record, specify the script ID. If successful, an object containing the script properties is returned. Learn more Amazon GameLift Realtime Servers Related actions CreateScript |
|
| DescribeVpcPeeringAuthorizations |
Show DescriptionRetrieves valid VPC peering authorizations that are pending for the AWS account. This operation returns all VPC peering authorizations and requests for peering. This includes those initiated and received by this account. Related actions CreateVpcPeeringAuthorization |
|
| DescribeVpcPeeringConnections |
Show DescriptionRetrieves information on VPC peering connections. Use this operation to get peering information for all fleets or for one specific fleet ID. To retrieve connection information, call this operation from the AWS account that is used to manage the Amazon GameLift fleets. Specify a fleet ID or leave the parameter empty to retrieve all connection records. If successful, the retrieved information includes both active and pending connections. Active connections identify the IpV4 CIDR block that the VPC uses to connect. Related actions CreateVpcPeeringAuthorization |
|
| GetGameSessionLogUrl |
Show DescriptionRetrieves the location of stored game session logs for a specified game session. When a game session is terminated, GameLift automatically stores the logs in Amazon S3 and retains them for 14 days. Use this URL to download the logs. |
|
| GetInstanceAccess |
Show DescriptionRequests remote access to a fleet instance. Remote access is useful for debugging, gathering benchmarking data, or observing activity in real time. To remotely access an instance, you need credentials that match the operating system of the instance. For a Windows instance, GameLift returns a user name and password as strings for use with a Windows Remote Desktop client. For a Linux instance, GameLift returns a user name and RSA private key, also as strings, for use with an SSH client. The private key must be saved in the proper format to a.pem file before using. If you're making this request using the AWS CLI, saving the secret can be handled as part of the GetInstanceAccess request, as shown in one of the examples for this operation. To request access to a specific instance, specify the IDs of both the instance and the fleet it belongs to. You can retrieve a fleet's instance IDs by calling DescribeInstances. If successful, an InstanceAccess object is returned that contains the instance's IP address and a set of credentials. Learn more Remotely Access Fleet Instances Debug Fleet Issues Related actions DescribeInstances
|
|
| ListAliases |
Show DescriptionRetrieves all aliases for this AWS account. You can filter the result set by alias name and/or routing strategy type. Use the pagination parameters to retrieve results in sequential pages. |
|
| ListBuilds |
Show DescriptionRetrieves build resources for all builds associated with the AWS account in use. You can limit results to builds that are in a specific status by using theStatus parameter. Use the pagination parameters to retrieve results in a set of sequential pages. |
|
| ListFleets |
Show DescriptionRetrieves a collection of fleet resources in an AWS Region. You can call this operation to get fleets in a previously selected default Region (see https://docs.aws.amazon.com/credref/latest/refdocs/setting-global-region.htmlor specify a Region in your request. You can filter the result set to find only those fleets that are deployed with a specific build or script. For fleets that have multiple locations, this operation retrieves fleets based on their home Region only. This operation can be used in the following ways:
|
|
| ListGameServerGroups |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Retrieves information on all game servers groups that exist in the current AWS account for the selected Region. Use the pagination parameters to retrieve results in a set of sequential segments. Learn more GameLift FleetIQ Guide Related actions CreateGameServerGroup |
|
| ListGameServers |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Retrieves information on all game servers that are currently active in a specified game server group. You can opt to sort the list by game server age. Use the pagination parameters to retrieve results in a set of sequential segments. Learn more GameLift FleetIQ Guide Related actions RegisterGameServer |
|
| ListScripts |
Show DescriptionRetrieves script records for all Realtime scripts that are associated with the AWS account in use. Learn more Amazon GameLift Realtime Servers Related actions CreateScript |
|
| ListTagsForResource |
Show DescriptionRetrieves all tags that are assigned to a GameLift resource. Resource tags are used to organize AWS resources for a range of purposes. This operation handles the permissions necessary to manage tags for the following GameLift resource types:
|
|
| PutScalingPolicy |
Show DescriptionCreates or updates a scaling policy for a fleet. Scaling policies are used to automatically scale a fleet's hosting capacity to meet player demand. An active scaling policy instructs Amazon GameLift to track a fleet metric and automatically change the fleet's capacity when a certain threshold is reached. There are two types of scaling policies: target-based and rule-based. Use a target-based policy to quickly and efficiently manage fleet scaling; this option is the most commonly used. Use rule-based policies when you need to exert fine-grained control over auto-scaling. Fleets can have multiple scaling policies of each type in force at the same time; you can have one target-based policy, one or multiple rule-based scaling policies, or both. We recommend caution, however, because multiple auto-scaling policies can have unintended consequences. You can temporarily suspend all scaling policies for a fleet by calling StopFleetActions with the fleet action AUTO_SCALING. To resume scaling policies, call StartFleetActions with the same fleet action. To stop just one scaling policy--or to permanently remove it, you must delete the policy with DeleteScalingPolicy. Learn more about how to work with auto-scaling in Set Up Fleet Automatic Scaling. Target-based policy A target-based policy tracks a single metric: PercentAvailableGameSessions. This metric tells us how much of a fleet's hosting capacity is ready to host game sessions but is not currently in use. This is the fleet's buffer; it measures the additional player demand that the fleet could handle at current capacity. With a target-based policy, you set your ideal buffer size and leave it to Amazon GameLift to take whatever action is needed to maintain that target. For example, you might choose to maintain a 10% buffer for a fleet that has the capacity to host 100 simultaneous game sessions. This policy tells Amazon GameLift to take action whenever the fleet's available capacity falls below or rises above 10 game sessions. Amazon GameLift will start new instances or stop unused instances in order to return to the 10% buffer. To create or update a target-based policy, specify a fleet ID and name, and set the policy type to "TargetBased". Specify the metric to track (PercentAvailableGameSessions) and reference a TargetConfiguration object with your desired buffer value. Exclude all other parameters. On a successful request, the policy name is returned. The scaling policy is automatically in force as soon as it's successfully created. If the fleet's auto-scaling actions are temporarily suspended, the new policy will be in force once the fleet actions are restarted. Rule-based policy A rule-based policy tracks specified fleet metric, sets a threshold value, and specifies the type of action to initiate when triggered. With a rule-based policy, you can select from several available fleet metrics. Each policy specifies whether to scale up or scale down (and by how much), so you need one policy for each type of action. For example, a policy may make the following statement: "If the percentage of idle instances is greater than 20% for more than 15 minutes, then reduce the fleet capacity by 10%." A policy's rule statement has the following structure: If[MetricName] is [ComparisonOperator] [Threshold] for [EvaluationPeriods] minutes, then [ScalingAdjustmentType] to/by [ScalingAdjustment]. To implement the example, the rule statement would look like this: If [PercentIdleInstances] is [GreaterThanThreshold] [20] for [15] minutes, then [PercentChangeInCapacity] to/by [10]. To create or update a scaling policy, specify a unique combination of name and fleet ID, and set the policy type to "RuleBased". Specify the parameter values for a policy rule statement. On a successful request, the policy name is returned. Scaling policies are automatically in force as soon as they're successfully created. If the fleet's auto-scaling actions are temporarily suspended, the new policy will be in force once the fleet actions are restarted. Related actions DescribeFleetCapacity
|
|
| RegisterGameServer |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Creates a new game server resource and notifies GameLift FleetIQ that the game server is ready to host gameplay and players. This operation is called by a game server process that is running on an instance in a game server group. Registering game servers enables GameLift FleetIQ to track available game servers and enables game clients and services to claim a game server for a new game session. To register a game server, identify the game server group and instance where the game server is running, and provide a unique identifier for the game server. You can also include connection and game server data. When a game client or service requests a game server by calling ClaimGameServer, this information is returned in the response. Once a game server is successfully registered, it is put in statusAVAILABLE. A request to register a game server may fail if the instance it is running on is in the process of shutting down as part of instance balancing or scale-down activity. Learn more GameLift FleetIQ Guide Related actions RegisterGameServer
|
|
| RequestUploadCredentials |
Show DescriptionRetrieves a fresh set of credentials for use when uploading a new set of game build files to Amazon GameLift's Amazon S3. This is done as part of the build creation process; see CreateBuild. To request new credentials, specify the build ID as returned with an initialCreateBuild request. If successful, a new set of credentials are returned, along with the S3 storage location associated with the build ID. Learn more Create a Build with Files in S3 Related actions CreateBuild
|
|
| ResolveAlias |
Show DescriptionRetrieves the fleet ID that an alias is currently pointing to. Related actions CreateAlias |
|
| ResumeGameServerGroup |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Reinstates activity on a game server group after it has been suspended. A game server group might be suspended by theSuspendGameServerGroup operation, or it might be suspended involuntarily due to a configuration problem. In the second case, you can manually resume activity on the group once the configuration problem has been resolved. Refer to the game server group status and status reason for more information on why group activity is suspended. To resume activity, specify a game server group ARN and the type of activity to be resumed. If successful, a GameServerGroup object is returned showing that the resumed activity is no longer listed inSuspendedActions. Learn more GameLift FleetIQ Guide Related actions CreateGameServerGroup
|
|
| SearchGameSessions |
Show DescriptionRetrieves all active game sessions that match a set of search criteria and sorts them into a specified order. When searching for game sessions, you specify exactly where you want to search and provide a search filter expression, a sort expression, or both. A search request can search only one fleet, but it can search all of a fleet's locations. This operation can be used in the following ways:
GameSession object is returned for each game session that matches the request. Search finds game sessions that are in ACTIVE status only. To retrieve information on game sessions in other statuses, use DescribeGameSessions. You can search or sort by the following game session attributes:
playerSessionCount and hasAvailablePlayerSessions change quickly as players join sessions and others drop out. Results should be considered a snapshot in time. Be sure to refresh search results often, and handle sessions that fill up before a player can join. |
|
| StartFleetActions |
Show DescriptionResumes certain types of activity on fleet instances that were suspended with StopFleetActions. For multi-location fleets, fleet actions are managed separately for each location. Currently, this operation is used to restart a fleet's auto-scaling activity. This operation can be used in the following ways:
|
|
| StartGameSessionPlacement |
Show DescriptionPlaces a request for a new game session in a queue (see CreateGameSessionQueue). When processing a placement request, Amazon GameLift searches for available resources on the queue's destinations, scanning each until it finds resources or the placement request times out. A game session placement request can also request player sessions. When a new game session is successfully created, Amazon GameLift creates a player session for each player included in the request. When placing a game session, by default Amazon GameLift tries each fleet in the order they are listed in the queue configuration. Ideally, a queue's destinations are listed in preference order. Alternatively, when requesting a game session with players, you can also provide latency data for each player in relevant Regions. Latency data indicates the performance lag a player experiences when connected to a fleet in the Region. Amazon GameLift uses latency data to reorder the list of destinations to place the game session in a Region with minimal lag. If latency data is provided for multiple players, Amazon GameLift calculates each Region's average lag for all players and reorders to get the best game play across all players. To place a new game session request, specify the following:
FULFILLED, a new game session has been created and a game session ARN and Region are referenced. If the placement request times out, you can resubmit the request or retry it with a different queue. Related actions CreateGameSession
|
|
| StartMatchBackfill |
Show DescriptionFinds new players to fill open slots in currently running game sessions. The backfill match process is essentially identical to the process of forming new matches. Backfill requests use the same matchmaker that was used to make the original match, and they provide matchmaking data for all players currently in the game session. FlexMatch uses this information to select new players so that backfilled match continues to meet the original match requirements. When using FlexMatch with GameLift managed hosting, you can request a backfill match from a client service by calling this operation with a GameSession identifier. You also have the option of making backfill requests directly from your game server. In response to a request, FlexMatch creates player sessions for the new players, updates theGameSession resource, and sends updated matchmaking data to the game server. You can request a backfill match at any point after a game session is started. Each game session can have only one active backfill request at a time; a subsequent request automatically replaces the earlier request. When using FlexMatch as a standalone component, request a backfill match by calling this operation without a game session identifier. As with newly formed matches, matchmaking results are returned in a matchmaking event so that your game can update the game session that is being backfilled. To request a backfill match, specify a unique ticket ID, the original matchmaking configuration, and matchmaking data for all current players in the game session being backfilled. Optionally, specify the GameSession ARN. If successful, a match backfill ticket is created and returned with status set to QUEUED. Track the status of backfill tickets using the same method for tracking tickets for new matches. Learn more Backfill existing games with FlexMatch Matchmaking events (reference) How GameLift FlexMatch works Related actions StartMatchmaking
|
|
| StartMatchmaking |
Show DescriptionUses FlexMatch to create a game match for a group of players based on custom matchmaking rules. With games that use GameLift managed hosting, this operation also triggers GameLift to find hosting resources and start a new game session for the new match. Each matchmaking request includes information on one or more players and specifies the FlexMatch matchmaker to use. When a request is for multiple players, FlexMatch attempts to build a match that includes all players in the request, placing them in the same team and finding additional players as needed to fill the match. To start matchmaking, provide a unique ticket ID, specify a matchmaking configuration, and include the players to be matched. You must also include any player attributes that are required by the matchmaking configuration's rule set. If successful, a matchmaking ticket is returned with status set toQUEUED. Track matchmaking events to respond as needed and acquire game session connection information for successfully completed matches. Ticket status updates are tracked using event notification through Amazon Simple Notification Service (SNS), which is defined in the matchmaking configuration. Learn more Add FlexMatch to a game client Set Up FlexMatch event notification How GameLift FlexMatch works Related actions StartMatchmaking
|
|
| StopFleetActions |
Show DescriptionSuspends certain types of activity in a fleet location. Currently, this operation is used to stop auto-scaling activity. For multi-location fleets, fleet actions are managed separately for each location. Stopping fleet actions has several potential purposes. It allows you to temporarily stop auto-scaling activity but retain your scaling policies for use in the future. For multi-location fleets, you can set up fleet-wide auto-scaling, and then opt out of it for certain locations. This operation can be used in the following ways:
|
|
| StopGameSessionPlacement |
Show DescriptionCancels a game session placement that is inPENDING status. To stop a placement, provide the placement ID values. If successful, the placement is moved to CANCELLED status. Related actions CreateGameSession
|
|
| StopMatchmaking |
Show DescriptionCancels a matchmaking ticket or match backfill ticket that is currently being processed. To stop the matchmaking operation, specify the ticket ID. If successful, work on the ticket is stopped, and the ticket status is changed toCANCELLED. This call is also used to turn off automatic backfill for an individual game session. This is for game sessions that are created with a matchmaking configuration that has automatic backfill enabled. The ticket ID is included in the MatchmakerData of an updated game session object, which is provided to the game server. |
|
| SuspendGameServerGroup |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Temporarily stops activity on a game server group without terminating instances or the game server group. You can restart activity by calling ResumeGameServerGroup. You can suspend the following activity:
SuspendedActions. Learn more GameLift FleetIQ Guide Related actions CreateGameServerGroup
|
|
| TagResource |
Show DescriptionAssigns a tag to a GameLift resource. AWS resource tags provide an additional management tool set. You can use tags to organize resources, create IAM permissions policies to manage access to groups of resources, customize AWS cost breakdowns, etc. This operation handles the permissions necessary to manage tags for the following GameLift resource types:
|
|
| UntagResource |
Show DescriptionRemoves a tag that is assigned to a GameLift resource. Resource tags are used to organize AWS resources for a range of purposes. This operation handles the permissions necessary to manage tags for the following GameLift resource types:
|
|
| UpdateAlias |
Show DescriptionUpdates properties for an alias. To update properties, specify the alias ID to be updated and provide the information to be changed. To reassign an alias to another fleet, provide an updated routing strategy. If successful, the updated alias record is returned. Related actions CreateAlias |
|
| UpdateBuild |
Show DescriptionUpdates metadata in a build resource, including the build name and version. To update the metadata, specify the build ID to update and provide the new values. If successful, a build object containing the updated metadata is returned. Learn more Upload a Custom Server Build Related actions CreateBuild |
|
| UpdateFleetAttributes |
Show DescriptionUpdates a fleet's mutable attributes, including game session protection and resource creation limits. To update fleet attributes, specify the fleet ID and the property values that you want to change. If successful, an updatedFleetAttributes object is returned. Learn more Setting up GameLift fleets Related actions CreateFleetLocations
|
|
| UpdateFleetCapacity |
Show DescriptionUpdates capacity settings for a fleet. For fleets with multiple locations, use this operation to manage capacity settings in each location individually. Fleet capacity determines the number of game sessions and players that can be hosted based on the fleet configuration. Use this operation to set the following fleet capacity properties:
LimitExceeded exception occurs. Learn more Scaling fleet capacity Related actions CreateFleetLocations
|
|
| UpdateFleetPortSettings |
Show DescriptionUpdates permissions that allow inbound traffic to connect to game sessions that are being hosted on instances in the fleet. To update settings, specify the fleet ID to be updated and specify the changes to be made. List the permissions you want to add inInboundPermissionAuthorizations, and permissions you want to remove in InboundPermissionRevocations. Permissions to be removed must match existing fleet permissions. If successful, the fleet ID for the updated fleet is returned. For fleets with remote locations, port setting updates can take time to propagate across all locations. You can check the status of updates in each location by calling DescribeFleetPortSettings with a location name. Learn more Setting up GameLift fleets Related actions CreateFleetLocations
|
|
| UpdateGameServer |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Updates information about a registered game server to help GameLift FleetIQ to track game server availability. This operation is called by a game server process that is running on an instance in a game server group. Use this operation to update the following types of game server information. You can make all three types of updates in the same request:
|
|
| UpdateGameServerGroup |
Show DescriptionThis operation is used with the GameLift FleetIQ solution and game server groups. Updates GameLift FleetIQ-specific properties for a game server group. Many Auto Scaling group properties are updated on the Auto Scaling group directly, including the launch template, Auto Scaling policies, and maximum/minimum/desired instance counts. To update the game server group, specify the game server group ID and provide the updated values. Before applying the updates, the new values are validated to ensure that GameLift FleetIQ can continue to perform instance balancing activity. If successful, a GameServerGroup object is returned. Learn more GameLift FleetIQ Guide Related actions CreateGameServerGroup |
|
| UpdateGameSession |
Show DescriptionUpdates the mutable properties of a game session. To update a game session, specify the game session ID and the values you want to change. If successful, the updatedGameSession object is returned. Related actions CreateGameSession
|
|
| UpdateGameSessionQueue |
Show DescriptionUpdates the configuration of a game session queue, which determines how the queue processes new game session requests. To update settings, specify the queue name to be updated and provide the new settings. When updating destinations, provide a complete list of destinations. Learn more Using Multi-Region Queues Related actions CreateGameSessionQueue |
|
| UpdateMatchmakingConfiguration |
Show DescriptionUpdates settings for a FlexMatch matchmaking configuration. These changes affect all matches and game sessions that are created after the update. To update settings, specify the configuration name to be updated and provide the new settings. Learn more Design a FlexMatch matchmaker Related actions CreateMatchmakingConfiguration |
|
| UpdateRuntimeConfiguration |
Show DescriptionUpdates the current runtime configuration for the specified fleet, which tells GameLift how to launch server processes on all instances in the fleet. You can update a fleet's runtime configuration at any time after the fleet is created; it does not need to be inACTIVE status. To update runtime configuration, specify the fleet ID and provide a RuntimeConfiguration with an updated set of server process configurations. If successful, the fleet's runtime configuration settings are updated. Each instance in the fleet regularly checks for and retrieves updated runtime configurations. Instances immediately begin complying with the new configuration by launching new server processes or not replacing existing processes when they shut down. Updating a fleet's runtime configuration never affects existing server processes. Learn more Setting up GameLift fleets Related actions CreateFleetLocations
|
|
| UpdateScript |
Show DescriptionUpdates Realtime script metadata and content. To update script metadata, specify the script ID and provide updated name and/or version values. To update script content, provide an updated zip file by pointing to either a local file or an Amazon S3 bucket location. You can use either method regardless of how the original script was uploaded. Use the Version parameter to track updates to the script. If the call is successful, the updated metadata is stored in the script record and a revised script is uploaded to the Amazon GameLift service. Once the script is updated and acquired by a fleet instance, the new version is used for all new game sessions. Learn more Amazon GameLift Realtime Servers Related actions CreateScript |
Glacier Events
| Service | Event Name | Description |
|---|---|---|
| glacier | AbortMultipartUpload | |
| AbortVaultLock | ||
| AddTagsToVault | ||
| CompleteMultipartUpload |
Show DescriptionYou call this operation to inform Amazon S3 Glacier (Glacier) that all the archive parts have been uploaded and that Glacier can now assemble the archive from the uploaded parts. After assembling and saving the archive to the vault, Glacier returns the URI path of the newly created archive resource. Using the URI path, you can then access the archive. After you upload an archive, you should save the archive ID returned to retrieve the archive at a later point. You can also get the vault inventory to obtain a list of archive IDs in a vault. For more information, see InitiateJob. In the request, you must include the computed SHA256 tree hash of the entire archive you have uploaded. For information about computing a SHA256 tree hash, see Computing Checksums. On the server side, Glacier also constructs the SHA256 tree hash of the assembled archive. If the values match, Glacier saves the archive to the vault; otherwise, it returns an error, and the operation fails. The ListParts operation returns a list of parts uploaded for a specific multipart upload. It includes checksum information for each uploaded part that can be used to debug a bad checksum issue. Additionally, Glacier also checks for any missing content ranges when assembling the archive, if missing content ranges are found, Glacier returns an error and the operation fails. Complete Multipart Upload is an idempotent operation. After your first successful complete multipart upload, if you call the operation again within a short period, the operation will succeed and return the same archive ID. This is useful in the event you experience a network issue that causes an aborted connection or receive a 500 server error, in which case you can repeat your Complete Multipart Upload request and get the same archive ID without creating duplicate archives. Note, however, that after the multipart upload completes, you cannot call the List Parts operation and the multipart upload will not appear in List Multipart Uploads response, even if idempotent complete is possible. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and underlying REST API, see Uploading Large Archives in Parts (Multipart Upload) and Complete Multipart Upload in the Amazon Glacier Developer Guide. |
|
| CompleteVaultLock | ||
| CreateVault |
Show DescriptionThis operation creates a new vault with the specified name. The name of the vault must be unique within a region for an AWS account. You can create up to 1,000 vaults per account. If you need to create more vaults, contact Amazon S3 Glacier. You must use the following guidelines when naming a vault.
|
|
| DeleteArchive | ||
| DeleteVault | ||
| DeleteVaultAccessPolicy | ||
| DeleteVaultNotifications | ||
| DescribeJob |
Show DescriptionThis operation returns information about a job you previously initiated, including the job initiation date, the user who initiated the job, the job status code/message and the Amazon SNS topic to notify after Amazon S3 Glacier (Glacier) completes the job. For more information about initiating a job, see InitiateJob. |
|
| DescribeVault |
Show DescriptionThis operation returns information about a vault, including the vault's Amazon Resource Name (ARN), the date the vault was created, the number of archives it contains, and the total size of all the archives in the vault. The number of archives and their total size are as of the last inventory generation. This means that if you add or remove an archive from a vault, and then immediately use Describe Vault, the change in contents will not be immediately reflected. If you want to retrieve the latest inventory of the vault, use InitiateJob. Amazon S3 Glacier generates vault inventories approximately daily. For more information, see Downloading a Vault Inventory in Amazon S3 Glacier. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and underlying REST API, see Retrieving Vault Metadata in Amazon S3 Glacier and Describe Vault in the Amazon Glacier Developer Guide. |
|
| GetDataRetrievalPolicy |
Show DescriptionThis operation returns the current data retrieval policy for the account and region specified in the GET request. For more information about data retrieval policies, see Amazon Glacier Data Retrieval Policies. |
|
| GetJobOutput |
Show DescriptionThis operation downloads the output of the job you initiated using InitiateJob. Depending on the job type you specified when you initiated the job, the output will be either the content of an archive or a vault inventory. You can download all the job output or download a portion of the output by specifying a byte range. In the case of an archive retrieval job, depending on the byte range you specify, Amazon S3 Glacier (Glacier) returns the checksum for the portion of the data. You can compute the checksum on the client and verify that the values match to ensure the portion you downloaded is the correct data. A job ID will not expire for at least 24 hours after Glacier completes the job. That a byte range. For both archive and inventory retrieval jobs, you should verify the downloaded size against the size returned in the headers from the Get Job Output response. For archive retrieval jobs, you should also verify that the size is what you expected. If you download a portion of the output, the expected size is based on the range of bytes you specified. For example, if you specify a range ofbytes=0-1048575, you should verify your download size is 1,048,576 bytes. If you download an entire archive, the expected size is the size of the archive when you uploaded it to Amazon S3 Glacier The expected size is also returned in the headers from the Get Job Output response. In the case of an archive retrieval job, depending on the byte range you specify, Glacier returns the checksum for the portion of the data. To ensure the portion you downloaded is the correct data, compute the checksum on the client, verify that the values match, and verify that the size is what you expected. A job ID does not expire for at least 24 hours after Glacier completes the job. That is, you can download the job output within the 24 hours period after Amazon Glacier completes the job. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and the underlying REST API, see Downloading a Vault Inventory, Downloading an Archive, and Get Job Output
|
|
| GetVaultAccessPolicy |
Show DescriptionThis operation retrieves theaccess-policy subresource set on the vault; for more information on setting this subresource, see Set Vault Access Policy (PUT access-policy). If there is no access policy set on the vault, the operation returns a 404 Not found error. For more information about vault access policies, see Amazon Glacier Access Control with Vault Access Policies.
|
|
| GetVaultLock |
Show DescriptionThis operation retrieves the following attributes from thelock-policy subresource set on the specified vault:
InProgress state by calling InitiateVaultLock. A vault lock is put into the Locked state by calling CompleteVaultLock. You can abort the vault locking process by calling AbortVaultLock. For more information about the vault locking process, Amazon Glacier Vault Lock. If there is no vault lock policy set on the vault, the operation returns a 404 Not found error. For more information about vault lock policies, Amazon Glacier Access Control with Vault Lock Policies.
|
|
| GetVaultNotifications |
Show DescriptionThis operation retrieves thenotification-configuration subresource of the specified vault. For information about setting a notification configuration on a vault, see SetVaultNotifications. If a notification configuration for a vault is not set, the operation returns a 404 Not Found error. For more information about vault notifications, see Configuring Vault Notifications in Amazon S3 Glacier. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and underlying REST API, see Configuring Vault Notifications in Amazon S3 Glacier and Get Vault Notification Configuration in the Amazon Glacier Developer Guide.
|
|
| InitiateJob |
Show DescriptionThis operation initiates a job of the specified type, which can be a select, an archival retrieval, or a vault retrieval. For more information about using this operation, see the documentation for the underlying REST API Initiate a Job. |
|
| InitiateMultipartUpload |
Show DescriptionThis operation initiates a multipart upload. Amazon S3 Glacier creates a multipart upload resource and returns its ID in the response. The multipart upload ID is used in subsequent requests to upload parts of an archive (see UploadMultipartPart). When you initiate a multipart upload, you specify the part size in number of bytes. The part size must be a megabyte (1024 KB) multiplied by a power of 2-for example, 1048576 (1 MB), 2097152 (2 MB), 4194304 (4 MB), 8388608 (8 MB), and so on. The minimum allowable part size is 1 MB, and the maximum is 4 GB. Every part you upload to this resource (see UploadMultipartPart), except the last one, must have the same size. The last one can be the same size or smaller. For example, suppose you want to upload a 16.2 MB file. If you initiate the multipart upload with a part size of 4 MB, you will upload four parts of 4 MB each and one part of 0.2 MB. |
|
| InitiateVaultLock |
Show DescriptionThis operation initiates the vault locking process by doing the following:
InProgress state. After the 24 hour window ends, the lock ID expires, the vault automatically exits the InProgress state, and the vault lock policy is removed from the vault. You call CompleteVaultLock to complete the vault locking process by setting the state of the vault lock to Locked. After a vault lock is in the Locked state, you cannot initiate a new vault lock for the vault. You can abort the vault locking process by calling AbortVaultLock. You can get the state of the vault lock by calling GetVaultLock. For more information about the vault locking process, Amazon Glacier Vault Lock. If this operation is called when the vault lock is in the InProgress state, the operation returns an AccessDeniedException error. When the vault lock is in the InProgress state you must call AbortVaultLock before you can initiate a new vault lock policy.
|
|
| ListJobs |
Show DescriptionThis operation lists jobs for a vault, including jobs that are in-progress and jobs that have recently finished. The List Job operation returns a list of these jobs sorted by job initiation time.Marker field. If there are no more jobs to list, the Marker field is set to null. If there are more jobs to list, the Marker field is set to a non-null value, which you can use to continue the pagination of the list. To return a list of jobs that begins at a specific job, set the marker request parameter to the Marker value for that job that you obtained from a previous List Jobs request. You can set a maximum limit for the number of jobs returned in the response by specifying the limit parameter in the request. The default limit is 50. The number of jobs returned might be fewer than the limit, but the number of returned jobs never exceeds the limit. Additionally, you can filter the jobs list returned by specifying the optional statuscode parameter or completed parameter, or both. Using the statuscode parameter, you can specify to return only jobs that match either the InProgress, Succeeded, or Failed status. Using the completed parameter, you can specify to return only jobs that were completed (true) or jobs that were not completed (false). For more information about using this operation, see the documentation for the underlying REST API List Jobs.
|
|
| ListMultipartUploads |
Show DescriptionThis operation lists in-progress multipart uploads for the specified vault. An in-progress multipart upload is a multipart upload that has been initiated by an InitiateMultipartUpload request, but has not yet been completed or aborted. The list returned in the List Multipart Upload response has no guaranteed order. The List Multipart Uploads operation supports pagination. By default, this operation returns up to 50 multipart uploads in the response. You should always check the response for amarker at which to continue the list; if there are no more items the marker is null. To return a list of multipart uploads that begins at a specific upload, set the marker request parameter to the value you obtained from a previous List Multipart Upload request. You can also limit the number of uploads returned in the response by specifying the limit parameter in the request. Note the difference between this operation and listing parts (ListParts). The List Multipart Uploads operation lists all multipart uploads for a vault and does not require a multipart upload ID. The List Parts operation requires a multipart upload ID since parts are associated with a single upload. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and the underlying REST API, see Working with Archives in Amazon S3 Glacier and List Multipart Uploads in the Amazon Glacier Developer Guide.
|
|
| ListParts |
Show DescriptionThis operation lists the parts of an archive that have been uploaded in a specific multipart upload. You can make this request at any time during an in-progress multipart upload before you complete the upload (see CompleteMultipartUpload. List Parts returns an error for completed uploads. The list returned in the List Parts response is sorted by part range. The List Parts operation supports pagination. By default, this operation returns up to 50 uploaded parts in the response. You should always check the response for amarker at which to continue the list; if there are no more items the marker is null. To return a list of parts that begins at a specific part, set the marker request parameter to the value you obtained from a previous List Parts request. You can also limit the number of parts returned in the response by specifying the limit parameter in the request. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and the underlying REST API, see Working with Archives in Amazon S3 Glacier and List Parts in the Amazon Glacier Developer Guide.
|
|
| ListProvisionedCapacity |
Show DescriptionThis operation lists the provisioned capacity units for the specified AWS account. |
|
| ListTagsForVault |
Show DescriptionThis operation lists all the tags attached to a vault. The operation returns an empty map if there are no tags. For more information about tags, see Tagging Amazon S3 Glacier Resources. |
|
| ListVaults |
Show DescriptionThis operation lists all vaults owned by the calling user's account. The list returned in the response is ASCII-sorted by vault name. By default, this operation returns up to 10 items. If there are more vaults to list, the responsemarker field contains the vault Amazon Resource Name (ARN) at which to continue the list with a new List Vaults request; otherwise, the marker field is null. To return a list of vaults that begins at a specific vault, set the marker request parameter to the vault ARN you obtained from a previous List Vaults request. You can also limit the number of vaults returned in the response by specifying the limit parameter in the request. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and underlying REST API, see Retrieving Vault Metadata in Amazon S3 Glacier and List Vaults in the Amazon Glacier Developer Guide.
|
|
| PurchaseProvisionedCapacity |
Show DescriptionThis operation purchases a provisioned capacity unit for an AWS account. |
|
| RemoveTagsFromVault | ||
| SetDataRetrievalPolicy | ||
| SetVaultAccessPolicy | ||
| SetVaultNotifications | ||
| UploadArchive |
Show DescriptionThis operation adds an archive to a vault. This is a synchronous operation, and for a successful upload, your data is durably persisted. Amazon S3 Glacier returns the archive ID in thex-amz-archive-id header of the response. You must use the archive ID to access your data in Amazon S3 Glacier. After you upload an archive, you should save the archive ID returned so that you can retrieve or delete the archive later. Besides saving the archive ID, you can also index it and give it a friendly name to allow for better searching. You can also use the optional archive description field to specify how the archive is referred to in an external index of archives, such as you might create in Amazon DynamoDB. You can also get the vault inventory to obtain a list of archive IDs in a vault. For more information, see InitiateJob. You must provide a SHA256 tree hash of the data you are uploading. For information about computing a SHA256 tree hash, see Computing Checksums. You can optionally specify an archive description of up to 1,024 printable ASCII characters. You can get the archive description when you either retrieve the archive or get the vault inventory. For more information, see InitiateJob. Amazon Glacier does not interpret the description in any way. An archive description does not need to be unique. You cannot use the description to retrieve or sort the archive list. Archives are immutable. After you upload an archive, you cannot edit the archive or its description. An AWS account has full permission to perform all operations (actions). However, AWS Identity and Access Management (IAM) users don't have any permissions by default. You must grant them explicit permission to perform specific actions. For more information, see Access Control Using AWS Identity and Access Management (IAM). For conceptual information and underlying REST API, see Uploading an Archive in Amazon Glacier and Upload Archive in the Amazon Glacier Developer Guide.
|
Globalaccelerator Events
| Service | Event Name | Description |
|---|---|---|
| globalaccelerator | AddCustomRoutingEndpoints |
Show DescriptionAssociate a virtual private cloud (VPC) subnet endpoint with your custom routing accelerator. The listener port range must be large enough to support the number of IP addresses that can be specified in your subnet. The number of ports required is: subnet size times the number of ports per destination EC2 instances. For example, a subnet defined as /24 requires a listener port range of at least 255 ports. Note: You must have enough remaining listener ports available to map to the subnet ports, or the call will fail with a LimitExceededException. By default, all destinations in a subnet in a custom routing accelerator cannot receive traffic. To enable all destinations to receive traffic, or to specify individual port mappings that can receive traffic, see the AllowCustomRoutingTraffic operation. |
| AdvertiseByoipCidr |
Show DescriptionAdvertises an IPv4 address range that is provisioned for use with your AWS resources through bring your own IP addresses (BYOIP). It can take a few minutes before traffic to the specified addresses starts routing to AWS because of propagation delays. To stop advertising the BYOIP address range, use WithdrawByoipCidr. For more information, see Bring Your Own IP Addresses (BYOIP) in the AWS Global Accelerator Developer Guide. |
|
| AllowCustomRoutingTraffic | ||
| CreateAccelerator |
Show DescriptionCreate an accelerator. An accelerator includes one or more listeners that process inbound connections and direct traffic to one or more endpoint groups, each of which includes endpoints, such as Network Load Balancers. |
|
| CreateCustomRoutingAccelerator |
Show DescriptionCreate a custom routing accelerator. A custom routing accelerator directs traffic to one of possibly thousands of Amazon EC2 instance destinations running in a single or multiple virtual private clouds (VPC) subnet endpoints. Be aware that, by default, all destination EC2 instances in a VPC subnet endpoint cannot receive traffic. To enable all destinations to receive traffic, or to specify individual port mappings that can receive traffic, see the AllowCustomRoutingTraffic operation. |
|
| CreateCustomRoutingEndpointGroup |
Show DescriptionCreate an endpoint group for the specified listener for a custom routing accelerator. An endpoint group is a collection of endpoints in one AWS Region. |
|
| CreateCustomRoutingListener |
Show DescriptionCreate a listener to process inbound connections from clients to a custom routing accelerator. Connections arrive to assigned static IP addresses on the port range that you specify. |
|
| CreateEndpointGroup |
Show DescriptionCreate an endpoint group for the specified listener. An endpoint group is a collection of endpoints in one AWS Region. A resource must be valid and active when you add it as an endpoint. |
|
| CreateListener |
Show DescriptionCreate a listener to process inbound connections from clients to an accelerator. Connections arrive to assigned static IP addresses on a port, port range, or list of port ranges that you specify. |
|
| DeleteAccelerator | ||
| DeleteCustomRoutingAccelerator | ||
| DeleteCustomRoutingEndpointGroup | ||
| DeleteCustomRoutingListener | ||
| DeleteEndpointGroup | ||
| DeleteListener | ||
| DenyCustomRoutingTraffic | ||
| DeprovisionByoipCidr |
Show DescriptionReleases the specified address range that you provisioned to use with your AWS resources through bring your own IP addresses (BYOIP) and deletes the corresponding address pool. Before you can release an address range, you must stop advertising it by using WithdrawByoipCidr and you must not have any accelerators that are using static IP addresses allocated from its address range. For more information, see Bring Your Own IP Addresses (BYOIP) in the AWS Global Accelerator Developer Guide. |
|
| DescribeAccelerator |
Show DescriptionDescribe an accelerator. |
|
| DescribeAcceleratorAttributes |
Show DescriptionDescribe the attributes of an accelerator. |
|
| DescribeCustomRoutingAccelerator |
Show DescriptionDescribe a custom routing accelerator. |
|
| DescribeCustomRoutingAcceleratorAttributes |
Show DescriptionDescribe the attributes of a custom routing accelerator. |
|
| DescribeCustomRoutingEndpointGroup |
Show DescriptionDescribe an endpoint group for a custom routing accelerator. |
|
| DescribeCustomRoutingListener |
Show DescriptionThe description of a listener for a custom routing accelerator. |
|
| DescribeEndpointGroup |
Show DescriptionDescribe an endpoint group. |
|
| DescribeListener |
Show DescriptionDescribe a listener. |
|
| ListAccelerators |
Show DescriptionList the accelerators for an AWS account. |
|
| ListByoipCidrs |
Show DescriptionLists the IP address ranges that were specified in calls to ProvisionByoipCidr, including the current state and a history of state changes. |
|
| ListCustomRoutingAccelerators |
Show DescriptionList the custom routing accelerators for an AWS account. |
|
| ListCustomRoutingEndpointGroups |
Show DescriptionList the endpoint groups that are associated with a listener for a custom routing accelerator. |
|
| ListCustomRoutingListeners |
Show DescriptionList the listeners for a custom routing accelerator. |
|
| ListCustomRoutingPortMappings |
Show DescriptionProvides a complete mapping from the public accelerator IP address and port to destination EC2 instance IP addresses and ports in the virtual public cloud (VPC) subnet endpoint for a custom routing accelerator. For each subnet endpoint that you add, Global Accelerator creates a new static port mapping for the accelerator. The port mappings don't change after Global Accelerator generates them, so you can retrieve and cache the full mapping on your servers. If you remove a subnet from your accelerator, Global Accelerator removes (reclaims) the port mappings. If you add a subnet to your accelerator, Global Accelerator creates new port mappings (the existing ones don't change). If you add or remove EC2 instances in your subnet, the port mappings don't change, because the mappings are created when you add the subnet to Global Accelerator. The mappings also include a flag for each destination denoting which destination IP addresses and ports are allowed or denied traffic. |
|
| ListCustomRoutingPortMappingsByDestination |
Show DescriptionList the port mappings for a specific EC2 instance (destination) in a VPC subnet endpoint. The response is the mappings for one destination IP address. This is useful when your subnet endpoint has mappings that span multiple custom routing accelerators in your account, or for scenarios where you only want to list the port mappings for a specific destination instance. |
|
| ListEndpointGroups |
Show DescriptionList the endpoint groups that are associated with a listener. |
|
| ListListeners |
Show DescriptionList the listeners for an accelerator. |
|
| ListTagsForResource |
Show DescriptionList all tags for an accelerator. For more information, see Tagging in AWS Global Accelerator in the AWS Global Accelerator Developer Guide. |
|
| ProvisionByoipCidr |
Show DescriptionProvisions an IP address range to use with your AWS resources through bring your own IP addresses (BYOIP) and creates a corresponding address pool. After the address range is provisioned, it is ready to be advertised using AdvertiseByoipCidr. For more information, see Bring Your Own IP Addresses (BYOIP) in the AWS Global Accelerator Developer Guide. |
|
| RemoveCustomRoutingEndpoints | ||
| TagResource |
Show DescriptionAdd tags to an accelerator resource. For more information, see Tagging in AWS Global Accelerator in the AWS Global Accelerator Developer Guide. |
|
| UntagResource |
Show DescriptionRemove tags from a Global Accelerator resource. When you specify a tag key, the action removes both that key and its associated value. The operation succeeds even if you attempt to remove tags from an accelerator that was already removed. For more information, see Tagging in AWS Global Accelerator in the AWS Global Accelerator Developer Guide. |
|
| UpdateAccelerator |
Show DescriptionUpdate an accelerator. |
|
| UpdateAcceleratorAttributes |
Show DescriptionUpdate the attributes for an accelerator. |
|
| UpdateCustomRoutingAccelerator |
Show DescriptionUpdate a custom routing accelerator. |
|
| UpdateCustomRoutingAcceleratorAttributes |
Show DescriptionUpdate the attributes for a custom routing accelerator. |
|
| UpdateCustomRoutingListener |
Show DescriptionUpdate a listener for a custom routing accelerator. |
|
| UpdateEndpointGroup |
Show DescriptionUpdate an endpoint group. A resource must be valid and active when you add it as an endpoint. |
|
| UpdateListener |
Show DescriptionUpdate a listener. |
Grafana Events
| Service | Event Name | Description |
|---|---|---|
| grafana | AssociateLicense |
Show DescriptionAssigns a Grafana Enterprise license to a workspace. Upgrading to Grafana Enterprise incurs additional fees. For more information, see Upgrade a workspace to Grafana Enterprise. |
| CreateWorkspace |
Show DescriptionCreates a workspace. In a workspace, you can create Grafana dashboards and visualizations to analyze your metrics, logs, and traces. You don't have to build, package, or deploy any hardware to run the Grafana server. Don't useCreateWorkspace to modify an existing workspace. Instead, use UpdateWorkspace.
|
|
| DeleteWorkspace |
Show DescriptionDeletes an Amazon Managed Grafana workspace. |
|
| DescribeWorkspace |
Show DescriptionDisplays information about one Amazon Managed Grafana workspace. |
|
| DescribeWorkspaceAuthentication |
Show DescriptionDisplays information about the authentication methods used in one Amazon Managed Grafana workspace. |
|
| DisassociateLicense |
Show DescriptionRemoves the Grafana Enterprise license from a workspace. |
|
| ListPermissions |
Show DescriptionLists the users and groups who have the GrafanaAdmin and Editor roles in this workspace. If you use this operation without specifying userId or groupId, the operation returns the roles of all users and groups. If you specify a userId or a groupId, only the roles for that user or group are returned. If you do this, you can specify only one userId or one groupId.
|
|
| ListWorkspaces |
Show DescriptionReturns a list of Amazon Managed Grafana workspaces in the account, with some information about each workspace. For more complete information about one workspace, use DescribeWorkspace. |
|
| UpdatePermissions |
Show DescriptionUpdates which users in a workspace have the GrafanaAdmin or Editor roles.
|
|
| UpdateWorkspace |
Show DescriptionModifies an existing Amazon Managed Grafana workspace. If you use this operation and omit any optional parameters, the existing values of those parameters are not changed. To modify the user authentication methods that the workspace uses, such as SAML or Amazon Web Services SSO, use UpdateWorkspaceAuthentication. To modify which users in the workspace have theAdmin and Editor Grafana roles, use UpdatePermissions.
|
Greengrass Events
| Service | Event Name | Description |
|---|---|---|
| greengrass | AssociateRoleToGroup |
Show DescriptionAssociates a role with a group. Your Greengrass core will use the role to access AWS cloud services. The role's permissions should allow Greengrass core Lambda functions to perform actions against the cloud. |
| AssociateServiceRoleToAccount |
Show DescriptionAssociates a role with your account. AWS IoT Greengrass will use the role to access your Lambda functions and AWS IoT resources. This is necessary for deployments to succeed. The role must have at least minimum permissions in the policy ''AWSGreengrassResourceAccessRolePolicy''. |
|
| CreateConnectorDefinition |
Show DescriptionCreates a connector definition. You may provide the initial version of the connector definition now or use ''CreateConnectorDefinitionVersion'' at a later time. |
|
| CreateConnectorDefinitionVersion |
Show DescriptionCreates a version of a connector definition which has already been defined. |
|
| CreateCoreDefinition |
Show DescriptionCreates a core definition. You may provide the initial version of the core definition now or use ''CreateCoreDefinitionVersion'' at a later time. Greengrass groups must each contain exactly one Greengrass core. |
|
| CreateCoreDefinitionVersion |
Show DescriptionCreates a version of a core definition that has already been defined. Greengrass groups must each contain exactly one Greengrass core. |
|
| CreateDeployment |
Show DescriptionCreates a deployment. ''CreateDeployment'' requests are idempotent with respect to the ''X-Amzn-Client-Token'' token and the request parameters. |
|
| CreateDeviceDefinition |
Show DescriptionCreates a device definition. You may provide the initial version of the device definition now or use ''CreateDeviceDefinitionVersion'' at a later time. |
|
| CreateDeviceDefinitionVersion |
Show DescriptionCreates a version of a device definition that has already been defined. |
|
| CreateFunctionDefinition |
Show DescriptionCreates a Lambda function definition which contains a list of Lambda functions and their configurations to be used in a group. You can create an initial version of the definition by providing a list of Lambda functions and their configurations now, or use ''CreateFunctionDefinitionVersion'' later. |
|
| CreateFunctionDefinitionVersion |
Show DescriptionCreates a version of a Lambda function definition that has already been defined. |
|
| CreateGroup |
Show DescriptionCreates a group. You may provide the initial version of the group or use ''CreateGroupVersion'' at a later time. Tip: You can use the ''gg_group_setup'' package (https://github.com/awslabs/aws-greengrass-group-setup) as a library or command-line application to create and deploy Greengrass groups. |
|
| CreateGroupCertificateAuthority |
Show DescriptionCreates a CA for the group. If a CA already exists, it will rotate the existing CA. |
|
| CreateGroupVersion |
Show DescriptionCreates a version of a group which has already been defined. |
|
| CreateLoggerDefinition |
Show DescriptionCreates a logger definition. You may provide the initial version of the logger definition now or use ''CreateLoggerDefinitionVersion'' at a later time. |
|
| CreateLoggerDefinitionVersion |
Show DescriptionCreates a version of a logger definition that has already been defined. |
|
| CreateResourceDefinition |
Show DescriptionCreates a resource definition which contains a list of resources to be used in a group. You can create an initial version of the definition by providing a list of resources now, or use ''CreateResourceDefinitionVersion'' later. |
|
| CreateResourceDefinitionVersion |
Show DescriptionCreates a version of a resource definition that has already been defined. |
|
| CreateSoftwareUpdateJob |
Show DescriptionCreates a software update for a core or group of cores (specified as an IoT thing group.) Use this to update the OTA Agent as well as the Greengrass core software. It makes use of the IoT Jobs feature which provides additional commands to manage a Greengrass core software update job. |
|
| CreateSubscriptionDefinition |
Show DescriptionCreates a subscription definition. You may provide the initial version of the subscription definition now or use ''CreateSubscriptionDefinitionVersion'' at a later time. |
|
| CreateSubscriptionDefinitionVersion |
Show DescriptionCreates a version of a subscription definition which has already been defined. |
|
| DeleteConnectorDefinition |
Show DescriptionDeletes a connector definition. |
|
| DeleteCoreDefinition |
Show DescriptionDeletes a core definition. |
|
| DeleteDeviceDefinition |
Show DescriptionDeletes a device definition. |
|
| DeleteFunctionDefinition |
Show DescriptionDeletes a Lambda function definition. |
|
| DeleteGroup |
Show DescriptionDeletes a group. |
|
| DeleteLoggerDefinition |
Show DescriptionDeletes a logger definition. |
|
| DeleteResourceDefinition |
Show DescriptionDeletes a resource definition. |
|
| DeleteSubscriptionDefinition |
Show DescriptionDeletes a subscription definition. |
|
| DisassociateRoleFromGroup |
Show DescriptionDisassociates the role from a group. |
|
| DisassociateServiceRoleFromAccount |
Show DescriptionDisassociates the service role from your account. Without a service role, deployments will not work. |
|
| GetAssociatedRole |
Show DescriptionRetrieves the role associated with a particular group. |
|
| GetBulkDeploymentStatus |
Show DescriptionReturns the status of a bulk deployment. |
|
| GetConnectivityInfo |
Show DescriptionRetrieves the connectivity information for a core. |
|
| GetConnectorDefinition |
Show DescriptionRetrieves information about a connector definition. |
|
| GetConnectorDefinitionVersion |
Show DescriptionRetrieves information about a connector definition version, including the connectors that the version contains. Connectors are prebuilt modules that interact with local infrastructure, device protocols, AWS, and other cloud services. |
|
| GetCoreDefinition |
Show DescriptionRetrieves information about a core definition version. |
|
| GetCoreDefinitionVersion |
Show DescriptionRetrieves information about a core definition version. |
|
| GetDeploymentStatus |
Show DescriptionReturns the status of a deployment. |
|
| GetDeviceDefinition |
Show DescriptionRetrieves information about a device definition. |
|
| GetDeviceDefinitionVersion |
Show DescriptionRetrieves information about a device definition version. |
|
| GetFunctionDefinition |
Show DescriptionRetrieves information about a Lambda function definition, including its creation time and latest version. |
|
| GetFunctionDefinitionVersion |
Show DescriptionRetrieves information about a Lambda function definition version, including which Lambda functions are included in the version and their configurations. |
|
| GetGroup |
Show DescriptionRetrieves information about a group. |
|
| GetGroupCertificateAuthority |
Show DescriptionRetreives the CA associated with a group. Returns the public key of the CA. |
|
| GetGroupCertificateConfiguration |
Show DescriptionRetrieves the current configuration for the CA used by the group. |
|
| GetGroupVersion |
Show DescriptionRetrieves information about a group version. |
|
| GetLoggerDefinition |
Show DescriptionRetrieves information about a logger definition. |
|
| GetLoggerDefinitionVersion |
Show DescriptionRetrieves information about a logger definition version. |
|
| GetResourceDefinition |
Show DescriptionRetrieves information about a resource definition, including its creation time and latest version. |
|
| GetResourceDefinitionVersion |
Show DescriptionRetrieves information about a resource definition version, including which resources are included in the version. |
|
| GetServiceRoleForAccount |
Show DescriptionRetrieves the service role that is attached to your account. |
|
| GetSubscriptionDefinition |
Show DescriptionRetrieves information about a subscription definition. |
|
| GetSubscriptionDefinitionVersion |
Show DescriptionRetrieves information about a subscription definition version. |
|
| GetThingRuntimeConfiguration |
Show DescriptionGet the runtime configuration of a thing. |
|
| ListBulkDeploymentDetailedReports |
Show DescriptionGets a paginated list of the deployments that have been started in a bulk deployment operation, and their current deployment status. |
|
| ListBulkDeployments |
Show DescriptionReturns a list of bulk deployments. |
|
| ListConnectorDefinitionVersions |
Show DescriptionLists the versions of a connector definition, which are containers for connectors. Connectors run on the Greengrass core and contain built-in integration with local infrastructure, device protocols, AWS, and other cloud services. |
|
| ListConnectorDefinitions |
Show DescriptionRetrieves a list of connector definitions. |
|
| ListCoreDefinitionVersions |
Show DescriptionLists the versions of a core definition. |
|
| ListCoreDefinitions |
Show DescriptionRetrieves a list of core definitions. |
|
| ListDeployments |
Show DescriptionReturns a history of deployments for the group. |
|
| ListDeviceDefinitionVersions |
Show DescriptionLists the versions of a device definition. |
|
| ListDeviceDefinitions |
Show DescriptionRetrieves a list of device definitions. |
|
| ListFunctionDefinitionVersions |
Show DescriptionLists the versions of a Lambda function definition. |
|
| ListFunctionDefinitions |
Show DescriptionRetrieves a list of Lambda function definitions. |
|
| ListGroupCertificateAuthorities |
Show DescriptionRetrieves the current CAs for a group. |
|
| ListGroupVersions |
Show DescriptionLists the versions of a group. |
|
| ListGroups |
Show DescriptionRetrieves a list of groups. |
|
| ListLoggerDefinitionVersions |
Show DescriptionLists the versions of a logger definition. |
|
| ListLoggerDefinitions |
Show DescriptionRetrieves a list of logger definitions. |
|
| ListResourceDefinitionVersions |
Show DescriptionLists the versions of a resource definition. |
|
| ListResourceDefinitions |
Show DescriptionRetrieves a list of resource definitions. |
|
| ListSubscriptionDefinitionVersions |
Show DescriptionLists the versions of a subscription definition. |
|
| ListSubscriptionDefinitions |
Show DescriptionRetrieves a list of subscription definitions. |
|
| ListTagsForResource |
Show DescriptionRetrieves a list of resource tags for a resource arn. |
|
| ResetDeployments |
Show DescriptionResets a group's deployments. |
|
| StartBulkDeployment |
Show DescriptionDeploys multiple groups in one operation. This action starts the bulk deployment of a specified set of group versions. Each group version deployment will be triggered with an adaptive rate that has a fixed upper limit. We recommend that you include an ''X-Amzn-Client-Token'' token in every ''StartBulkDeployment'' request. These requests are idempotent with respect to the token and the request parameters. |
|
| StopBulkDeployment |
Show DescriptionStops the execution of a bulk deployment. This action returns a status of ''Stopping'' until the deployment is stopped. You cannot start a new bulk deployment while a previous deployment is in the ''Stopping'' state. This action doesn't rollback completed deployments or cancel pending deployments. |
|
| TagResource | ||
| UntagResource | ||
| UpdateConnectivityInfo |
Show DescriptionUpdates the connectivity information for the core. Any devices that belong to the group which has this core will receive this information in order to find the location of the core and connect to it. |
|
| UpdateConnectorDefinition |
Show DescriptionUpdates a connector definition. |
|
| UpdateCoreDefinition |
Show DescriptionUpdates a core definition. |
|
| UpdateDeviceDefinition |
Show DescriptionUpdates a device definition. |
|
| UpdateFunctionDefinition |
Show DescriptionUpdates a Lambda function definition. |
|
| UpdateGroup |
Show DescriptionUpdates a group. |
|
| UpdateGroupCertificateConfiguration |
Show DescriptionUpdates the Certificate expiry time for a group. |
|
| UpdateLoggerDefinition |
Show DescriptionUpdates a logger definition. |
|
| UpdateResourceDefinition |
Show DescriptionUpdates a resource definition. |
|
| UpdateSubscriptionDefinition |
Show DescriptionUpdates a subscription definition. |
Greengrassv2 Events
| Service | Event Name | Description |
|---|---|---|
| greengrassv2 | BatchAssociateClientDeviceWithCoreDevice |
Show DescriptionAssociate a list of client devices with a core device. Use this API operation to specify which client devices can discover a core device through cloud discovery. With cloud discovery, client devices connect to IoT Greengrass to retrieve associated core devices' connectivity information and certificates. For more information, see Configure cloud discovery in the IoT Greengrass V2 Developer Guide. |
| BatchDisassociateClientDeviceFromCoreDevice |
Show DescriptionDisassociate a list of client devices from a core device. After you disassociate a client device from a core device, the client device won't be able to use cloud discovery to retrieve the core device's connectivity information and certificates. |
|
| CancelDeployment |
Show DescriptionCancels a deployment. This operation cancels the deployment for devices that haven't yet received it. If a device already received the deployment, this operation doesn't change anything for that device. |
|
| CreateComponentVersion |
Show DescriptionCreates a component. Components are software that run on Greengrass core devices. After you develop and test a component on your core device, you can use this operation to upload your component to IoT Greengrass. Then, you can deploy the component to other core devices. You can use this operation to do the following:
|
|
| CreateDeployment |
Show DescriptionCreates a continuous deployment for a target, which is a Greengrass core device or group of core devices. When you add a new core device to a group of core devices that has a deployment, IoT Greengrass deploys that group's deployment to the new device. You can define one deployment for each target. When you create a new deployment for a target that has an existing deployment, you replace the previous deployment. IoT Greengrass applies the new deployment to the target devices. Every deployment has a revision number that indicates how many deployment revisions you define for a target. Use this operation to create a new revision of an existing deployment. This operation returns the revision number of the new deployment when you create it. For more information, see the Create deployments in the IoT Greengrass V2 Developer Guide. |
|
| DeleteComponent | ||
| DeleteCoreDevice | ||
| DescribeComponent |
Show DescriptionRetrieves metadata for a version of a component. |
|
| GetComponent |
Show DescriptionGets the recipe for a version of a component. Core devices can call this operation to identify the artifacts and requirements to install a component. |
|
| GetComponentVersionArtifact |
Show DescriptionGets the pre-signed URL to download a public component artifact. Core devices call this operation to identify the URL that they can use to download an artifact to install. |
|
| GetCoreDevice |
Show DescriptionRetrieves metadata for a Greengrass core device. |
|
| GetDeployment |
Show DescriptionGets a deployment. Deployments define the components that run on Greengrass core devices. |
|
| ListClientDevicesAssociatedWithCoreDevice |
Show DescriptionRetrieves a paginated list of client devices that are associated with a core device. |
|
| ListComponentVersions |
Show DescriptionRetrieves a paginated list of all versions for a component. Greater versions are listed first. |
|
| ListComponents |
Show DescriptionRetrieves a paginated list of component summaries. This list includes components that you have permission to view. |
|
| ListCoreDevices |
Show DescriptionRetrieves a paginated list of Greengrass core devices. |
|
| ListDeployments |
Show DescriptionRetrieves a paginated list of deployments. |
|
| ListEffectiveDeployments |
Show DescriptionRetrieves a paginated list of deployment jobs that IoT Greengrass sends to Greengrass core devices. |
|
| ListInstalledComponents |
Show DescriptionRetrieves a paginated list of the components that a Greengrass core device runs. |
|
| ListTagsForResource |
Show DescriptionRetrieves the list of tags for an IoT Greengrass resource. |
|
| ResolveComponentCandidates |
Show DescriptionRetrieves a list of components that meet the component, version, and platform requirements of a deployment. Greengrass core devices call this operation when they receive a deployment to identify the components to install. This operation identifies components that meet all dependency requirements for a deployment. If the requirements conflict, then this operation returns an error and the deployment fails. For example, this occurs if componentA requires version >2.0.0 and component B requires version <2.0.0 of a component dependency. When you specify the component candidates to resolve, IoT Greengrass compares each component's digest from the core device with the component's digest in the Amazon Web Services Cloud. If the digests don't match, then IoT Greengrass specifies to use the version from the Amazon Web Services Cloud. |
|
| TagResource |
Show DescriptionAdds tags to an IoT Greengrass resource. If a tag already exists for the resource, this operation updates the tag's value. |
Guardduty Events
| Service | Event Name | Description |
|---|---|---|
| guardduty | AcceptInvitation |
Show DescriptionAccepts the invitation to be monitored by a GuardDuty administrator account. |
| ArchiveFindings |
Show DescriptionArchives GuardDuty findings that are specified by the list of finding IDs. |
|
| CreateDetector |
Show DescriptionCreates a single Amazon GuardDuty detector. A detector is a resource that represents the GuardDuty service. To start using GuardDuty, you must create a detector in each Region where you enable the service. You can have only one detector per account per Region. All data sources are enabled in a new detector by default. |
|
| CreateFilter |
Show DescriptionCreates a filter using the specified finding criteria. |
|
| CreateIPSet |
Show DescriptionCreates a new IPSet, which is called a trusted IP list in the console user interface. An IPSet is a list of IP addresses that are trusted for secure communication with AWS infrastructure and applications. GuardDuty doesn't generate findings for IP addresses that are included in IPSets. Only users from the administrator account can use this operation. |
|
| CreateMembers |
Show DescriptionCreates member accounts of the current AWS account by specifying a list of AWS account IDs. This step is a prerequisite for managing the associated member accounts either by invitation or through an organization. When usingCreate Members as an organizations delegated administrator this action will enable GuardDuty in the added member accounts, with the exception of the organization delegated administrator account, which must enable GuardDuty prior to being added as a member. If you are adding accounts by invitation use this action after GuardDuty has been enabled in potential member accounts and before using Invite Members .
|
|
| CreatePublishingDestination |
Show DescriptionCreates a publishing destination to export findings to. The resource to export findings to must exist before you use this operation. |
|
| CreateSampleFindings |
Show DescriptionGenerates example findings of types specified by the list of finding types. If 'NULL' is specified forfindingTypes, the API generates example findings of all supported finding types.
|
|
| CreateThreatIntelSet |
Show DescriptionCreates a new ThreatIntelSet. ThreatIntelSets consist of known malicious IP addresses. GuardDuty generates findings based on ThreatIntelSets. Only users of the administrator account can use this operation. |
|
| DeclineInvitations |
Show DescriptionDeclines invitations sent to the current member account by AWS accounts specified by their account IDs. |
|
| DeleteDetector |
Show DescriptionDeletes an Amazon GuardDuty detector that is specified by the detector ID. |
|
| DeleteFilter |
Show DescriptionDeletes the filter specified by the filter name. |
|
| DeleteIPSet |
Show DescriptionDeletes the IPSet specified by theipSetId. IPSets are called trusted IP lists in the console user interface.
|
|
| DeleteInvitations |
Show DescriptionDeletes invitations sent to the current member account by AWS accounts specified by their account IDs. |
|
| DeleteMembers |
Show DescriptionDeletes GuardDuty member accounts (to the current GuardDuty administrator account) specified by the account IDs. |
|
| DeletePublishingDestination |
Show DescriptionDeletes the publishing definition with the specifieddestinationId.
|
|
| DeleteThreatIntelSet |
Show DescriptionDeletes the ThreatIntelSet specified by the ThreatIntelSet ID. |
|
| DescribeOrganizationConfiguration |
Show DescriptionReturns information about the account selected as the delegated administrator for GuardDuty. |
|
| DescribePublishingDestination |
Show DescriptionReturns information about the publishing destination specified by the provideddestinationId.
|
|
| DisableOrganizationAdminAccount |
Show DescriptionDisables an AWS account within the Organization as the GuardDuty delegated administrator. |
|
| DisassociateFromMasterAccount |
Show DescriptionDisassociates the current GuardDuty member account from its administrator account. |
|
| DisassociateMembers |
Show DescriptionDisassociates GuardDuty member accounts (to the current GuardDuty administrator account) specified by the account IDs. |
|
| EnableOrganizationAdminAccount |
Show DescriptionEnables an AWS account within the organization as the GuardDuty delegated administrator. |
|
| GetDetector |
Show DescriptionRetrieves an Amazon GuardDuty detector specified by the detectorId. |
|
| GetFilter |
Show DescriptionReturns the details of the filter specified by the filter name. |
|
| GetFindings |
Show DescriptionDescribes Amazon GuardDuty findings specified by finding IDs. |
|
| GetFindingsStatistics |
Show DescriptionLists Amazon GuardDuty findings statistics for the specified detector ID. |
|
| GetIPSet |
Show DescriptionRetrieves the IPSet specified by theipSetId.
|
|
| GetInvitationsCount |
Show DescriptionReturns the count of all GuardDuty membership invitations that were sent to the current member account except the currently accepted invitation. |
|
| GetMasterAccount |
Show DescriptionProvides the details for the GuardDuty administrator account associated with the current GuardDuty member account. |
|
| GetMemberDetectors |
Show DescriptionDescribes which data sources are enabled for the member account's detector. |
|
| GetMembers |
Show DescriptionRetrieves GuardDuty member accounts (of the current GuardDuty administrator account) specified by the account IDs. |
|
| GetThreatIntelSet |
Show DescriptionRetrieves the ThreatIntelSet that is specified by the ThreatIntelSet ID. |
|
| GetUsageStatistics |
Show DescriptionLists Amazon GuardDuty usage statistics over the last 30 days for the specified detector ID. For newly enabled detectors or data sources the cost returned will include only the usage so far under 30 days, this may differ from the cost metrics in the console, which projects usage over 30 days to provide a monthly cost estimate. For more information see Understanding How Usage Costs are Calculated. |
|
| InviteMembers |
Show DescriptionInvites other AWS accounts (created as members of the current AWS account by CreateMembers) to enable GuardDuty, and allow the current AWS account to view and manage these accounts' findings on their behalf as the GuardDuty administrator account. |
|
| ListDetectors |
Show DescriptionLists detectorIds of all the existing Amazon GuardDuty detector resources. |
|
| ListFilters |
Show DescriptionReturns a paginated list of the current filters. |
|
| ListFindings |
Show DescriptionLists Amazon GuardDuty findings for the specified detector ID. |
|
| ListIPSets |
Show DescriptionLists the IPSets of the GuardDuty service specified by the detector ID. If you use this operation from a member account, the IPSets returned are the IPSets from the associated administrator account. |
|
| ListInvitations |
Show DescriptionLists all GuardDuty membership invitations that were sent to the current AWS account. |
|
| ListMembers |
Show DescriptionLists details about all member accounts for the current GuardDuty administrator account. |
|
| ListOrganizationAdminAccounts |
Show DescriptionLists the accounts configured as GuardDuty delegated administrators. |
|
| ListPublishingDestinations |
Show DescriptionReturns a list of publishing destinations associated with the specifieddectectorId.
|
|
| ListTagsForResource |
Show DescriptionLists tags for a resource. Tagging is currently supported for detectors, finding filters, IP sets, and threat intel sets, with a limit of 50 tags per resource. When invoked, this operation returns all assigned tags for a given resource. |
|
| ListThreatIntelSets |
Show DescriptionLists the ThreatIntelSets of the GuardDuty service specified by the detector ID. If you use this operation from a member account, the ThreatIntelSets associated with the administrator account are returned. |
|
| StartMonitoringMembers |
Show DescriptionTurns on GuardDuty monitoring of the specified member accounts. Use this operation to restart monitoring of accounts that you stopped monitoring with theStopMonitoringMembers operation.
|
|
| StopMonitoringMembers |
Show DescriptionStops GuardDuty monitoring for the specified member accounts. Use theStartMonitoringMembers operation to restart monitoring for those accounts.
|
|
| TagResource |
Show DescriptionAdds tags to a resource. |
|
| UnarchiveFindings |
Show DescriptionUnarchives GuardDuty findings specified by thefindingIds.
|
|
| UntagResource |
Show DescriptionRemoves tags from a resource. |
|
| UpdateDetector |
Show DescriptionUpdates the Amazon GuardDuty detector specified by the detectorId. |
|
| UpdateFilter |
Show DescriptionUpdates the filter specified by the filter name. |
|
| UpdateFindingsFeedback |
Show DescriptionMarks the specified GuardDuty findings as useful or not useful. |
|
| UpdateIPSet |
Show DescriptionUpdates the IPSet specified by the IPSet ID. |
|
| UpdateMemberDetectors |
Show DescriptionContains information on member accounts to be updated. |
|
| UpdateOrganizationConfiguration |
Show DescriptionUpdates the delegated administrator account with the values provided. |
|
| UpdatePublishingDestination |
Show DescriptionUpdates information about the publishing destination specified by thedestinationId.
|
Health Events
| Service | Event Name | Description |
|---|---|---|
| health | DescribeAffectedAccountsForOrganization |
Show DescriptionReturns a list of accounts in the organization from AWS Organizations that are affected by the provided event. For more information about the different types of AWS Health events, see Event. Before you can call this operation, you must first enable AWS Health to work with AWS Organizations. To do this, call the EnableHealthServiceAccessForOrganization operation from your organization's management account.nextToken parameter in the next request to return more results. |
| DescribeAffectedEntities |
Show DescriptionReturns a list of entities that have been affected by the specified events, based on the specified filter criteria. Entities can refer to individual customer resources, groups of customer resources, or any other construct, depending on the AWS service. Events that have impact beyond that of the affected entities, or where the extent of impact is unknown, include at least one entity indicating this. At least one event ARN is required. Results are sorted by thelastUpdatedTime of the entity, starting with the most recent.
|
|
| DescribeAffectedEntitiesForOrganization |
Show DescriptionReturns a list of entities that have been affected by one or more events for one or more accounts in your organization in AWS Organizations, based on the filter criteria. Entities can refer to individual customer resources, groups of customer resources, or any other construct, depending on the AWS service. At least one event Amazon Resource Name (ARN) and account ID are required. Results are sorted by thelastUpdatedTime of the entity, starting with the most recent. Before you can call this operation, you must first enable AWS Health to work with AWS Organizations. To do this, call the EnableHealthServiceAccessForOrganization operation from your organization's management account.
|
|
| DescribeEntityAggregates |
Show DescriptionReturns the number of entities that are affected by each of the specified events. If no events are specified, the counts of all affected entities are returned. |
|
| DescribeEventAggregates |
Show DescriptionReturns the number of events of each event type (issue, scheduled change, and account notification). If no filter is specified, the counts of all events in each category are returned.nextToken parameter in the next request to return more results. |
|
| DescribeEventDetails |
Show DescriptionReturns detailed information about one or more specified events. Information includes standard event data (AWS Region, service, and so on, as returned by DescribeEvents), a detailed event description, and possible additional metadata that depends upon the nature of the event. Affected entities are not included. To retrieve the entities, use the DescribeAffectedEntities operation. If a specified event can't be retrieved, an error message is returned for that event. |
|
| DescribeEventDetailsForOrganization |
Show DescriptionReturns detailed information about one or more specified events for one or more AWS accounts in your organization. This information includes standard event data (such as the AWS Region and service), an event description, and (depending on the event) possible metadata. This operation doesn't return affected entities, such as the resources related to the event. To return affected entities, use the DescribeAffectedEntitiesForOrganization operation.DescribeEventDetailsForOrganization operation, specify the organizationEventDetailFilters object in the request. Depending on the AWS Health event type, note the following differences:
|
|
| DescribeEventTypes |
Show DescriptionReturns the event types that meet the specified filter criteria. You can use this API operation to find information about the AWS Health event, such as the category, AWS service, and event code. The metadata for each event appears in the EventType object. If you don't specify a filter criteria, the API operation returns all event types, in no particular order.nextToken parameter in the next request to return more results. |
|
| DescribeEvents |
Show DescriptionReturns information about events that meet the specified filter criteria. Events are returned in a summary form and do not include the detailed description, any additional metadata that depends on the event type, or any affected resources. To retrieve that information, use the DescribeEventDetails and DescribeAffectedEntities operations. If no filter criteria are specified, all events are returned. Results are sorted bylastModifiedTime, starting with the most recent event.
|
|
| DescribeEventsForOrganization |
Show DescriptionReturns information about events across your organization in AWS Organizations. You can use thefilters parameter to specify the events that you want to return. Events are returned in a summary form and don't include the affected accounts, detailed description, any additional metadata that depends on the event type, or any affected resources. To retrieve that information, use the following operations:
filter, the DescribeEventsForOrganizations returns all events across your organization. Results are sorted by lastModifiedTime, starting with the most recent event. For more information about the different types of AWS Health events, see Event. Before you can call this operation, you must first enable AWS Health to work with AWS Organizations. To do this, call the EnableHealthServiceAccessForOrganization operation from your organization's management account. nextToken parameter in the next request to return more results. |
|
| DescribeHealthServiceStatusForOrganization |
Show DescriptionThis operation provides status information on enabling or disabling AWS Health to work with your organization. To call this operation, you must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization's management account. |
|
| DisableHealthServiceAccessForOrganization |
Healthlake Events
| Service | Event Name | Description |
|---|---|---|
| healthlake | CreateFHIRDatastore |
Show DescriptionCreates a Data Store that can ingest and export FHIR formatted data. |
| DeleteFHIRDatastore |
Show DescriptionDeletes a Data Store. |
|
| DescribeFHIRDatastore |
Show DescriptionGets the properties associated with the FHIR Data Store, including the Data Store ID, Data Store ARN, Data Store name, Data Store status, created at, Data Store type version, and Data Store endpoint. |
|
| DescribeFHIRExportJob |
Show DescriptionDisplays the properties of a FHIR export job, including the ID, ARN, name, and the status of the job. |
|
| DescribeFHIRImportJob |
Show DescriptionDisplays the properties of a FHIR import job, including the ID, ARN, name, and the status of the job. |
|
| ListFHIRDatastores |
Show DescriptionLists all FHIR Data Stores that are in the user’s account, regardless of Data Store status. |
|
| ListFHIRExportJobs |
Show DescriptionLists all FHIR export jobs associated with an account and their statuses. |
|
| ListFHIRImportJobs |
Show DescriptionLists all FHIR import jobs associated with an account and their statuses. |
|
| ListTagsForResource |
Show DescriptionReturns a list of all existing tags associated with a Data Store. |
|
| StartFHIRExportJob |
Show DescriptionBegins a FHIR export job. |
|
| StartFHIRImportJob |
Show DescriptionBegins a FHIR Import job. |
|
| TagResource |
Show DescriptionAdds a user specifed key and value tag to a Data Store. |
Honeycode Events
| Service | Event Name | Description |
|---|---|---|
| honeycode | BatchCreateTableRows |
Show DescriptionThe BatchCreateTableRows API allows you to create one or more rows at the end of a table in a workbook. The API allows you to specify the values to set in some or all of the columns in the new rows. If a column is not explicitly set in a specific row, then the column level formula specified in the table will be applied to the new row. If there is no column level formula but the last row of the table has a formula, then that formula will be copied down to the new row. If there is no column level formula and no formula in the last row of the table, then that column will be left blank for the new rows. |
| BatchDeleteTableRows |
Show DescriptionThe BatchDeleteTableRows API allows you to delete one or more rows from a table in a workbook. You need to specify the ids of the rows that you want to delete from the table. |
|
| BatchUpdateTableRows |
Show DescriptionThe BatchUpdateTableRows API allows you to update one or more rows in a table in a workbook. You can specify the values to set in some or all of the columns in the table for the specified rows. If a column is not explicitly specified in a particular row, then that column will not be updated for that row. To clear out the data in a specific cell, you need to set the value as an empty string (""). |
|
| BatchUpsertTableRows |
Show DescriptionThe BatchUpsertTableRows API allows you to upsert one or more rows in a table. The upsert operation takes a filter expression as input and evaluates it to find matching rows on the destination table. If matching rows are found, it will update the cells in the matching rows to new values specified in the request. If no matching rows are found, a new row is added at the end of the table and the cells in that row are set to the new values specified in the request. You can specify the values to set in some or all of the columns in the table for the matching or newly appended rows. If a column is not explicitly specified for a particular row, then that column will not be updated for that row. To clear out the data in a specific cell, you need to set the value as an empty string (""). |
|
| DescribeTableDataImportJob |
Show DescriptionThe DescribeTableDataImportJob API allows you to retrieve the status and details of a table data import job. |
|
| GetScreenData |
Show DescriptionThe GetScreenData API allows retrieval of data from a screen in a Honeycode app. The API allows setting local variables in the screen to filter, sort or otherwise affect what will be displayed on the screen. |
|
| InvokeScreenAutomation |
Show DescriptionThe InvokeScreenAutomation API allows invoking an action defined in a screen in a Honeycode app. The API allows setting local variables, which can then be used in the automation being invoked. This allows automating the Honeycode app interactions to write, update or delete data in the workbook. |
|
| ListTableColumns |
Show DescriptionThe ListTableColumns API allows you to retrieve a list of all the columns in a table in a workbook. |
|
| ListTableRows |
Show DescriptionThe ListTableRows API allows you to retrieve a list of all the rows in a table in a workbook. |
|
| ListTables |
Show DescriptionThe ListTables API allows you to retrieve a list of all the tables in a workbook. |
|
| QueryTableRows |
Show DescriptionThe QueryTableRows API allows you to use a filter formula to query for specific rows in a table. |
Iam Events
| Service | Event Name | Description |
|---|---|---|
| iam | AddClientIDToOpenIDConnectProvider | |
| AddRoleToInstanceProfile | ||
| AddUserToGroup | ||
| AttachGroupPolicy | ||
| AttachRolePolicy | ||
| AttachUserPolicy | ||
| ChangePassword | ||
| CreateAccessKey |
Show DescriptionCreates a new Amazon Web Services secret access key and corresponding Amazon Web Services access key ID for the specified user. The default status for new keys isActive. If you do not specify a user name, IAM determines the user name implicitly based on the Amazon Web Services access key ID signing the request. This operation works for access keys under the Amazon Web Services account. Consequently, you can use this operation to manage Amazon Web Services account root user credentials. This is true even if the Amazon Web Services account has no associated users. For information about quotas on the number of keys you can create, see IAM and STS quotas in the IAM User Guide. |
|
| CreateAccountAlias | ||
| CreateGroup |
Show DescriptionCreates a new group. For information about the number of groups you can create, see IAM and STS quotas in the IAM User Guide. |
|
| CreateInstanceProfile |
Show DescriptionCreates a new instance profile. For information about instance profiles, see Using roles for applications on Amazon EC2 in the IAM User Guide, and Instance profiles in the Amazon EC2 User Guide. For information about the number of instance profiles you can create, see IAM object quotas in the IAM User Guide. |
|
| CreateLoginProfile |
Show DescriptionCreates a password for the specified IAM user. A password allows an IAM user to access Amazon Web Services services through the Amazon Web Services Management Console. You can use the CLI, the Amazon Web Services API, or the Users page in the IAM console to create a password for any IAM user. Use ChangePassword to update your own existing password in the My Security Credentials page in the Amazon Web Services Management Console. For more information about managing passwords, see Managing passwords in the IAM User Guide. |
|
| CreateOpenIDConnectProvider |
Show DescriptionCreates an IAM entity to describe an identity provider (IdP) that supports OpenID Connect (OIDC). The OIDC provider that you create with this operation can be used as a principal in a role's trust policy. Such a policy establishes a trust relationship between Amazon Web Services and the OIDC provider. If you are using an OIDC identity provider from Google, Facebook, or Amazon Cognito, you don't need to create a separate IAM identity provider. These OIDC identity providers are already built-in to Amazon Web Services and are available for your use. Instead, you can move directly to creating new roles using your identity provider. To learn more, see Creating a role for web identity or OpenID connect federation in the IAM User Guide. When you create the IAM OIDC provider, you specify the following:
|
|
| CreatePolicy |
Show DescriptionCreates a new managed policy for your Amazon Web Services account. This operation creates a policy version with a version identifier ofv1 and sets v1 as the policy's default version. For more information about policy versions, see Versioning for managed policies in the IAM User Guide. As a best practice, you can validate your IAM policies. To learn more, see Validating IAM policies in the IAM User Guide. For more information about managed policies in general, see Managed policies and inline policies in the IAM User Guide.
|
|
| CreatePolicyVersion |
Show DescriptionCreates a new version of the specified managed policy. To update a managed policy, you create a new policy version. A managed policy can have up to five versions. If the policy has five versions, you must delete an existing version using DeletePolicyVersion before you create a new version. Optionally, you can set the new version as the policy's default version. The default version is the version that is in effect for the IAM users, groups, and roles to which the policy is attached. For more information about managed policy versions, see Versioning for managed policies in the IAM User Guide. |
|
| CreateRole |
Show DescriptionCreates a new role for your Amazon Web Services account. For more information about roles, see IAM roles. For information about quotas for role names and the number of roles you can create, see IAM and STS quotas in the IAM User Guide. |
|
| CreateSAMLProvider |
Show DescriptionCreates an IAM resource that describes an identity provider (IdP) that supports SAML 2.0. The SAML provider resource that you create with this operation can be used as a principal in an IAM role's trust policy. Such a policy can enable federated users who sign in using the SAML IdP to assume the role. You can create an IAM role that supports Web-based single sign-on (SSO) to the Amazon Web Services Management Console or one that supports API access to Amazon Web Services. When you create the SAML provider resource, you upload a SAML metadata document that you get from your IdP. That document includes the issuer's name, expiration information, and keys that can be used to validate the SAML authentication response (assertions) that the IdP sends. You must generate the metadata document using the identity management software that is used as your organization's IdP. |
|
| CreateServiceLinkedRole |
Show DescriptionCreates an IAM role that is linked to a specific Amazon Web Services service. The service controls the attached policies and when the role can be deleted. This helps ensure that the service is not broken by an unexpectedly changed or deleted role, which could put your Amazon Web Services resources into an unknown state. Allowing the service to control the role helps improve service stability and proper cleanup when a service and its role are no longer needed. For more information, see Using service-linked roles in the IAM User Guide. To attach a policy to this service-linked role, you must make the request using the Amazon Web Services service that depends on this role. |
|
| CreateServiceSpecificCredential |
Show DescriptionGenerates a set of credentials consisting of a user name and password that can be used to access the service specified in the request. These credentials are generated by IAM, and can be used only for the specified service. You can have a maximum of two sets of service-specific credentials for each supported service per user. You can create service-specific credentials for CodeCommit and Amazon Keyspaces (for Apache Cassandra). You can reset the password to a new service-generated value by calling ResetServiceSpecificCredential. For more information about service-specific credentials, see Using IAM with CodeCommit: Git credentials, SSH keys, and Amazon Web Services access keys in the IAM User Guide. |
|
| CreateUser |
Show DescriptionCreates a new IAM user for your Amazon Web Services account. For information about quotas for the number of IAM users you can create, see IAM and STS quotas in the IAM User Guide. |
|
| CreateVirtualMFADevice |
Show DescriptionCreates a new virtual MFA device for the Amazon Web Services account. After creating the virtual MFA, use EnableMFADevice to attach the MFA device to an IAM user. For more information about creating and working with virtual MFA devices, see Using a virtual MFA device in the IAM User Guide. For information about the maximum number of MFA devices you can create, see IAM and STS quotas in the IAM User Guide. |
|
| DeactivateMFADevice | ||
| DeleteAccessKey | ||
| DeleteAccountAlias | ||
| DeleteAccountPasswordPolicy | ||
| DeleteGroup | ||
| DeleteGroupPolicy | ||
| DeleteInstanceProfile | ||
| DeleteLoginProfile | ||
| DeleteOpenIDConnectProvider | ||
| DeletePolicy | ||
| DeletePolicyVersion | ||
| DeleteRole | ||
| DeleteRolePermissionsBoundary | ||
| DeleteRolePolicy | ||
| DeleteSAMLProvider | ||
| DeleteSSHPublicKey | ||
| DeleteServerCertificate | ||
| DeleteServiceLinkedRole |
Show DescriptionSubmits a service-linked role deletion request and returns aDeletionTaskId, which you can use to check the status of the deletion. Before you call this operation, confirm that the role has no active sessions and that any resources used by the role in the linked service are deleted. If you call this operation more than once for the same service-linked role and an earlier deletion task is not complete, then the DeletionTaskId of the earlier request is returned. If you submit a deletion request for a service-linked role whose linked service is still accessing a resource, then the deletion task fails. If it fails, the GetServiceLinkedRoleDeletionStatus operation returns the reason for the failure, usually including the resources that must be deleted. To delete the service-linked role, you must first remove those resources from the linked service and then submit the deletion request again. Resources are specific to the service that is linked to the role. For more information about removing resources from a service, see the Amazon Web Services documentation for your service. For more information about service-linked roles, see Roles terms and concepts: Amazon Web Services service-linked role in the IAM User Guide.
|
|
| DeleteServiceSpecificCredential | ||
| DeleteSigningCertificate | ||
| DeleteUser | ||
| DeleteUserPermissionsBoundary | ||
| DeleteUserPolicy | ||
| DeleteVirtualMFADevice | ||
| DetachGroupPolicy | ||
| DetachRolePolicy | ||
| DetachUserPolicy | ||
| EnableMFADevice | ||
| GenerateCredentialReport |
Show DescriptionGenerates a credential report for the Amazon Web Services account. For more information about the credential report, see Getting credential reports in the IAM User Guide. |
|
| GenerateOrganizationsAccessReport |
Show DescriptionGenerates a report for service last accessed data for Organizations. You can generate a report for any entities (organization root, organizational unit, or account) or policies in your organization. To call this operation, you must be signed in using your Organizations management account credentials. You can use your long-term IAM user or root user credentials, or temporary credentials from assuming an IAM role. SCPs must be enabled for your organization root. You must have the required IAM and Organizations permissions. For more information, see Refining permissions using service last accessed data in the IAM User Guide. You can generate a service last accessed data report for entities by specifying only the entity's path. This data includes a list of services that are allowed by any service control policies (SCPs) that apply to the entity. You can generate a service last accessed data report for a policy by specifying an entity's path and an optional Organizations policy ID. This data includes a list of services that are allowed by the specified SCP. For each service in both report types, the data includes the most recent account activity that the policy allows to account principals in the entity or the entity's children. For important information about the data, reporting period, permissions required, troubleshooting, and supported Regions see Reducing permissions using service last accessed data in the IAM User Guide.JobId. Use this parameter in the GetOrganizationsAccessReport operation to check the status of the report generation. To check the status of this request, use the JobId parameter in the GetOrganizationsAccessReport operation and test the JobStatus response parameter. When the job is complete, you can retrieve the report. To generate a service last accessed data report for entities, specify an entity path without specifying the optional Organizations policy ID. The type of entity that you specify determines the data returned in the report.
|
|
| GenerateServiceLastAccessedDetails |
Show DescriptionGenerates a report that includes details about when an IAM resource (user, group, role, or policy) was last used in an attempt to access Amazon Web Services services. Recent activity usually appears within four hours. IAM reports activity for the last 365 days, or less if your Region began supporting this feature within the last year. For more information, see Regions where data is tracked.GenerateServiceLastAccessedDetails operation returns a JobId. Use this parameter in the following operations to retrieve the following details from your report:
GenerateServiceLastAccessedDetails request, use the JobId parameter in the same operations and test the JobStatus response parameter. For additional information about the permissions policies that allow an identity (user, group, or role) to access specific services, use the ListPoliciesGrantingServiceAccess operation. |
|
| GetAccessKeyLastUsed |
Show DescriptionRetrieves information about when the specified access key was last used. The information includes the date and time of last use, along with the Amazon Web Services service and Region that were specified in the last request made with that key. |
|
| GetAccountAuthorizationDetails |
Show DescriptionRetrieves information about all IAM users, groups, roles, and policies in your Amazon Web Services account, including their relationships to one another. Use this operation to obtain a snapshot of the configuration of IAM permissions (users, groups, roles, and policies) in your account.decode method of the java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs provide similar functionality. Filter parameter. You can paginate the results using the MaxItems and Marker parameters.
|
|
| GetAccountPasswordPolicy |
Show DescriptionRetrieves the password policy for the Amazon Web Services account. This tells you the complexity requirements and mandatory rotation periods for the IAM user passwords in your account. For more information about using a password policy, see Managing an IAM password policy. |
|
| GetAccountSummary |
Show DescriptionRetrieves information about IAM entity usage and IAM quotas in the Amazon Web Services account. For information about IAM quotas, see IAM and STS quotas in the IAM User Guide. |
|
| GetContextKeysForCustomPolicy |
Show DescriptionGets a list of all of the context keys referenced in the input policies. The policies are supplied as a list of one or more strings. To get the context keys from policies associated with an IAM user, group, or role, use GetContextKeysForPrincipalPolicy. Context keys are variables maintained by Amazon Web Services and its services that provide details about the context of an API query request. Context keys can be evaluated by testing against a value specified in an IAM policy. UseGetContextKeysForCustomPolicy to understand what key names and values you must supply when you call SimulateCustomPolicy. Note that all parameters are shown in unencoded form here for clarity but must be URL encoded to be included as a part of a real HTML request.
|
|
| GetContextKeysForPrincipalPolicy |
Show DescriptionGets a list of all of the context keys referenced in all the IAM policies that are attached to the specified IAM entity. The entity can be an IAM user, group, or role. If you specify a user, then the request also includes all of the policies attached to groups that the user is a member of. You can optionally include a list of one or more additional policies, specified as strings. If you want to include only a list of policies by string, use GetContextKeysForCustomPolicy instead. Note: This operation discloses information about the permissions granted to other users. If you do not want users to see other user's permissions, then consider allowing them to use GetContextKeysForCustomPolicy instead. Context keys are variables maintained by Amazon Web Services and its services that provide details about the context of an API query request. Context keys can be evaluated by testing against a value in an IAM policy. Use GetContextKeysForPrincipalPolicy to understand what key names and values you must supply when you call SimulatePrincipalPolicy. |
|
| GetCredentialReport |
Show DescriptionRetrieves a credential report for the Amazon Web Services account. For more information about the credential report, see Getting credential reports in the IAM User Guide. |
|
| GetGroup |
Show DescriptionReturns a list of IAM users that are in the specified IAM group. You can paginate the results using theMaxItems and Marker parameters.
|
|
| GetGroupPolicy |
Show DescriptionRetrieves the specified inline policy document that is embedded in the specified IAM group.decode method of the java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs provide similar functionality. |
|
| GetInstanceProfile |
Show DescriptionRetrieves information about the specified instance profile, including the instance profile's path, GUID, ARN, and role. For more information about instance profiles, see About instance profiles in the IAM User Guide. |
|
| GetLoginProfile |
Show DescriptionRetrieves the user name for the specified IAM user. A login profile is created when you create a password for the user to access the Amazon Web Services Management Console. If the user does not exist or does not have a password, the operation returns a 404 (NoSuchEntity) error. If you create an IAM user with access to the console, the CreateDate reflects the date you created the initial password for the user. If you create an IAM user with programmatic access, and then later add a password for the user to access the Amazon Web Services Management Console, the CreateDate reflects the initial password creation date. A user with programmatic access does not have a login profile unless you create a password for the user to access the Amazon Web Services Management Console.
|
|
| GetOpenIDConnectProvider |
Show DescriptionReturns information about the specified OpenID Connect (OIDC) provider resource object in IAM. |
|
| GetOrganizationsAccessReport |
Show DescriptionRetrieves the service last accessed data report for Organizations that was previously generated using the GenerateOrganizationsAccessReport operation. This operation retrieves the status of your report job and the report contents. Depending on the parameters that you passed when you generated the report, the data returned could include different information. For details, see GenerateOrganizationsAccessReport. To call this operation, you must be signed in to the management account in your organization. SCPs must be enabled for your organization root. You must have permissions to perform this operation. For more information, see Refining permissions using service last accessed data in the IAM User Guide. For each service that principals in an account (root users, IAM users, or IAM roles) could access using SCPs, the operation returns details about the most recent access attempt. If there was no attempt, the service is listed without details about the most recent attempt to access the service. If the operation fails, it returns the reason that it failed. By default, the list is sorted by service namespace.
|
|
| GetPolicy |
Show DescriptionRetrieves information about the specified managed policy, including the policy's default version and the total number of IAM users, groups, and roles to which the policy is attached. To retrieve the list of the specific users, groups, and roles that the policy is attached to, use ListEntitiesForPolicy. This operation returns metadata about the policy. To retrieve the actual policy document for a specific version of the policy, use GetPolicyVersion. This operation retrieves information about managed policies. To retrieve information about an inline policy that is embedded with an IAM user, group, or role, use GetUserPolicy, GetGroupPolicy, or GetRolePolicy. For more information about policies, see Managed policies and inline policies in the IAM User Guide. |
|
| GetPolicyVersion |
Show DescriptionRetrieves information about the specified version of the specified managed policy, including the policy document.decode method of the java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs provide similar functionality. |
|
| GetRole |
Show DescriptionRetrieves information about the specified role, including the role's path, GUID, ARN, and the role's trust policy that grants permission to assume the role. For more information about roles, see Working with roles.decode method of the java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs provide similar functionality. |
|
| GetRolePolicy |
Show DescriptionRetrieves the specified inline policy document that is embedded with the specified IAM role.decode method of the java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs provide similar functionality. |
|
| GetSAMLProvider |
Show DescriptionReturns the SAML provider metadocument that was uploaded when the IAM SAML provider resource object was created or updated. |
|
| GetSSHPublicKey |
Show DescriptionRetrieves the specified SSH public key, including metadata about the key. The SSH public key retrieved by this operation is used only for authenticating the associated IAM user to an CodeCommit repository. For more information about using SSH keys to authenticate to an CodeCommit repository, see Set up CodeCommit for SSH connections in the CodeCommit User Guide. |
|
| GetServerCertificate |
Show DescriptionRetrieves information about the specified server certificate stored in IAM. For more information about working with server certificates, see Working with server certificates in the IAM User Guide. This topic includes a list of Amazon Web Services services that can use the server certificates that you manage with IAM. |
|
| GetServiceLastAccessedDetails |
Show DescriptionRetrieves a service last accessed report that was created using theGenerateServiceLastAccessedDetails operation. You can use the JobId parameter in GetServiceLastAccessedDetails to retrieve the status of your report job. When the report is complete, you can retrieve the generated report. The report includes a list of Amazon Web Services services that the resource (user, group, role, or managed policy) can access. GetServiceLastAccessedDetails operation returns the reason that it failed. The GetServiceLastAccessedDetails operation returns a list of services. This list includes the number of entities that have attempted to access the service and the date and time of the last attempt. It also returns the ARN of the following entity, depending on the resource ARN that you used to generate the report:
ACTION_LEVEL granularity when you generated the report, this operation returns service and action last accessed data. This includes the most recent access attempt for each tracked action within a service. Otherwise, this operation returns only service data. For more information about service and action last accessed data, see Reducing permissions using service last accessed data in the IAM User Guide.
|
|
| GetServiceLastAccessedDetailsWithEntities |
Show DescriptionAfter you generate a group or policy report using theGenerateServiceLastAccessedDetails operation, you can use the JobId parameter in GetServiceLastAccessedDetailsWithEntities. This operation retrieves the status of your report job and a list of entities that could have used group or policy permissions to access the specified service.
GetServiceLastAccessedDetailsWithEntities operation returns the reason that it failed. By default, the list of associated entities is sorted by date, with the most recent access listed first.
|
|
| GetServiceLinkedRoleDeletionStatus |
Show DescriptionRetrieves the status of your service-linked role deletion. After you use DeleteServiceLinkedRole to submit a service-linked role for deletion, you can use theDeletionTaskId parameter in GetServiceLinkedRoleDeletionStatus to check the status of the deletion. If the deletion fails, this operation returns the reason that it failed, if that information is returned by the service.
|
|
| GetUser |
Show DescriptionRetrieves information about the specified IAM user, including the user's creation date, path, unique ID, and ARN. If you do not specify a user name, IAM determines the user name implicitly based on the Amazon Web Services access key ID used to sign the request to this operation. |
|
| GetUserPolicy |
Show DescriptionRetrieves the specified inline policy document that is embedded in the specified IAM user.decode method of the java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs provide similar functionality. |
|
| ListAccessKeys |
Show DescriptionReturns information about the access key IDs associated with the specified IAM user. If there is none, the operation returns an empty list. Although each user is limited to a small number of keys, you can still paginate the results using theMaxItems and Marker parameters. If the UserName field is not specified, the user name is determined implicitly based on the Amazon Web Services access key ID used to sign the request. This operation works for access keys under the Amazon Web Services account. Consequently, you can use this operation to manage Amazon Web Services account root user credentials even if the Amazon Web Services account has no associated users. |
|
| ListAccountAliases |
Show DescriptionLists the account alias associated with the Amazon Web Services account (Note: you can have only one). For information about using an Amazon Web Services account alias, see Using an alias for your Amazon Web Services account ID in the IAM User Guide. |
|
| ListAttachedGroupPolicies |
Show DescriptionLists all managed policies that are attached to the specified IAM group. An IAM group can also have inline policies embedded with it. To list the inline policies for a group, use ListGroupPolicies. For information about policies, see Managed policies and inline policies in the IAM User Guide. You can paginate the results using theMaxItems and Marker parameters. You can use the PathPrefix parameter to limit the list of policies to only those matching the specified path prefix. If there are no policies attached to the specified group (or none that match the specified path prefix), the operation returns an empty list.
|
|
| ListAttachedRolePolicies |
Show DescriptionLists all managed policies that are attached to the specified IAM role. An IAM role can also have inline policies embedded with it. To list the inline policies for a role, use ListRolePolicies. For information about policies, see Managed policies and inline policies in the IAM User Guide. You can paginate the results using theMaxItems and Marker parameters. You can use the PathPrefix parameter to limit the list of policies to only those matching the specified path prefix. If there are no policies attached to the specified role (or none that match the specified path prefix), the operation returns an empty list.
|
|
| ListAttachedUserPolicies |
Show DescriptionLists all managed policies that are attached to the specified IAM user. An IAM user can also have inline policies embedded with it. To list the inline policies for a user, use ListUserPolicies. For information about policies, see Managed policies and inline policies in the IAM User Guide. You can paginate the results using theMaxItems and Marker parameters. You can use the PathPrefix parameter to limit the list of policies to only those matching the specified path prefix. If there are no policies attached to the specified group (or none that match the specified path prefix), the operation returns an empty list.
|
|
| ListEntitiesForPolicy |
Show DescriptionLists all IAM users, groups, and roles that the specified managed policy is attached to. You can use the optionalEntityFilter parameter to limit the results to a particular type of entity (users, groups, or roles). For example, to list only the roles that are attached to the specified policy, set EntityFilter to Role. You can paginate the results using the MaxItems and Marker parameters.
|
|
| ListGroupPolicies |
Show DescriptionLists the names of the inline policies that are embedded in the specified IAM group. An IAM group can also have managed policies attached to it. To list the managed policies that are attached to a group, use ListAttachedGroupPolicies. For more information about policies, see Managed policies and inline policies in the IAM User Guide. You can paginate the results using theMaxItems and Marker parameters. If there are no inline policies embedded with the specified group, the operation returns an empty list.
|
|
| ListGroups |
Show DescriptionLists the IAM groups that have the specified path prefix. You can paginate the results using theMaxItems and Marker parameters.
|
|
| ListGroupsForUser |
Show DescriptionLists the IAM groups that the specified IAM user belongs to. You can paginate the results using theMaxItems and Marker parameters.
|
|
| ListInstanceProfileTags |
Show DescriptionLists the tags that are attached to the specified IAM instance profile. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListInstanceProfiles |
Show DescriptionLists the instance profiles that have the specified path prefix. If there are none, the operation returns an empty list. For more information about instance profiles, see About instance profiles.MaxItems and Marker parameters.
|
|
| ListInstanceProfilesForRole |
Show DescriptionLists the instance profiles that have the specified associated IAM role. If there are none, the operation returns an empty list. For more information about instance profiles, go to About instance profiles. You can paginate the results using theMaxItems and Marker parameters.
|
|
| ListMFADeviceTags |
Show DescriptionLists the tags that are attached to the specified IAM virtual multi-factor authentication (MFA) device. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListMFADevices |
Show DescriptionLists the MFA devices for an IAM user. If the request includes a IAM user name, then this operation lists all the MFA devices associated with the specified user. If you do not specify a user name, IAM determines the user name implicitly based on the Amazon Web Services access key ID signing the request for this operation. You can paginate the results using theMaxItems and Marker parameters.
|
|
| ListOpenIDConnectProviderTags |
Show DescriptionLists the tags that are attached to the specified OpenID Connect (OIDC)-compatible identity provider. The returned list of tags is sorted by tag key. For more information, see About web identity federation. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListOpenIDConnectProviders |
Show DescriptionLists information about the IAM OpenID Connect (OIDC) provider resource objects defined in the Amazon Web Services account. |
|
| ListPolicies |
Show DescriptionLists all the managed policies that are available in your Amazon Web Services account, including your own customer-defined managed policies and all Amazon Web Services managed policies. You can filter the list of policies that is returned using the optionalOnlyAttached, Scope, and PathPrefix parameters. For example, to list only the customer managed policies in your Amazon Web Services account, set Scope to Local. To list only Amazon Web Services managed policies, set Scope to AWS. You can paginate the results using the MaxItems and Marker parameters. For more information about managed policies, see Managed policies and inline policies in the IAM User Guide. |
|
| ListPoliciesGrantingServiceAccess |
Show DescriptionRetrieves a list of policies that the IAM identity (user, group, or role) can use to access each specified service.
|
|
| ListPolicyTags |
Show DescriptionLists the tags that are attached to the specified IAM customer managed policy. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListPolicyVersions |
Show DescriptionLists information about the versions of the specified managed policy, including the version that is currently set as the policy's default version. For more information about managed policies, see Managed policies and inline policies in the IAM User Guide. |
|
| ListRolePolicies |
Show DescriptionLists the names of the inline policies that are embedded in the specified IAM role. An IAM role can also have managed policies attached to it. To list the managed policies that are attached to a role, use ListAttachedRolePolicies. For more information about policies, see Managed policies and inline policies in the IAM User Guide. You can paginate the results using theMaxItems and Marker parameters. If there are no inline policies embedded with the specified role, the operation returns an empty list.
|
|
| ListRoleTags |
Show DescriptionLists the tags that are attached to the specified role. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListRoles |
Show DescriptionLists the IAM roles that have the specified path prefix. If there are none, the operation returns an empty list. For more information about roles, see Working with roles.MaxItems and Marker parameters.
|
|
| ListSAMLProviderTags |
Show DescriptionLists the tags that are attached to the specified Security Assertion Markup Language (SAML) identity provider. The returned list of tags is sorted by tag key. For more information, see About SAML 2.0-based federation. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListSAMLProviders |
Show DescriptionLists the SAML provider resource objects defined in IAM in the account. IAM resource-listing operations return a subset of the available attributes for the resource. For example, this operation does not return tags, even though they are an attribute of the returned object. To view all of the information for a SAML provider, see GetSAMLProvider. |
|
| ListSSHPublicKeys |
Show DescriptionReturns information about the SSH public keys associated with the specified IAM user. If none exists, the operation returns an empty list. The SSH public keys returned by this operation are used only for authenticating the IAM user to an CodeCommit repository. For more information about using SSH keys to authenticate to an CodeCommit repository, see Set up CodeCommit for SSH connections in the CodeCommit User Guide. Although each user is limited to a small number of keys, you can still paginate the results using theMaxItems and Marker parameters.
|
|
| ListServerCertificateTags |
Show DescriptionLists the tags that are attached to the specified IAM server certificate. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListServerCertificates |
Show DescriptionLists the server certificates stored in IAM that have the specified path prefix. If none exist, the operation returns an empty list. You can paginate the results using theMaxItems and Marker parameters. For more information about working with server certificates, see Working with server certificates in the IAM User Guide. This topic also includes a list of Amazon Web Services services that can use the server certificates that you manage with IAM. |
|
| ListServiceSpecificCredentials |
Show DescriptionReturns information about the service-specific credentials associated with the specified IAM user. If none exists, the operation returns an empty list. The service-specific credentials returned by this operation are used only for authenticating the IAM user to a specific service. For more information about using service-specific credentials to authenticate to an Amazon Web Services service, see Set up service-specific credentials in the CodeCommit User Guide. |
|
| ListSigningCertificates |
Show DescriptionReturns information about the signing certificates associated with the specified IAM user. If none exists, the operation returns an empty list. Although each user is limited to a small number of signing certificates, you can still paginate the results using theMaxItems and Marker parameters. If the UserName field is not specified, the user name is determined implicitly based on the Amazon Web Services access key ID used to sign the request for this operation. This operation works for access keys under the Amazon Web Services account. Consequently, you can use this operation to manage Amazon Web Services account root user credentials even if the Amazon Web Services account has no associated users.
|
|
| ListUserPolicies |
Show DescriptionLists the names of the inline policies embedded in the specified IAM user. An IAM user can also have managed policies attached to it. To list the managed policies that are attached to a user, use ListAttachedUserPolicies. For more information about policies, see Managed policies and inline policies in the IAM User Guide. You can paginate the results using theMaxItems and Marker parameters. If there are no inline policies embedded with the specified user, the operation returns an empty list.
|
|
| ListUserTags |
Show DescriptionLists the tags that are attached to the specified IAM user. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide. |
|
| ListUsers |
Show DescriptionLists the IAM users that have the specified path prefix. If no path prefix is specified, the operation returns all users in the Amazon Web Services account. If there are none, the operation returns an empty list.MaxItems and Marker parameters.
|
|
| ListVirtualMFADevices |
Show DescriptionLists the virtual MFA devices defined in the Amazon Web Services account by assignment status. If you do not specify an assignment status, the operation returns a list of all virtual MFA devices. Assignment status can beAssigned, Unassigned, or Any. MaxItems and Marker parameters.
|
|
| PutGroupPolicy | ||
| PutRolePermissionsBoundary | ||
| PutRolePolicy | ||
| PutUserPermissionsBoundary | ||
| PutUserPolicy | ||
| RemoveClientIDFromOpenIDConnectProvider | ||
| RemoveRoleFromInstanceProfile | ||
| RemoveUserFromGroup | ||
| ResetServiceSpecificCredential |
Show DescriptionResets the password for a service-specific credential. The new password is Amazon Web Services generated and cryptographically strong. It cannot be configured by the user. Resetting the password immediately invalidates the previous password associated with this user. |
|
| ResyncMFADevice | ||
| SetDefaultPolicyVersion | ||
| SetSecurityTokenServicePreferences | ||
| SimulateCustomPolicy |
Show DescriptionSimulate how a set of IAM policies and optionally a resource-based policy works with a list of API operations and Amazon Web Services resources to determine the policies' effective permissions. The policies are provided as strings. The simulation does not perform the API operations; it only checks the authorization to determine if the simulated policies allow or deny the operations. You can simulate resources that don't exist in your account. If you want to simulate existing policies that are attached to an IAM user, group, or role, use SimulatePrincipalPolicy instead. Context keys are variables that are maintained by Amazon Web Services and its services and which provide details about the context of an API query request. You can use theCondition element of an IAM policy to evaluate context keys. To get the list of context keys that the policies require for correct simulation, use GetContextKeysForCustomPolicy. If the output is long, you can use MaxItems and Marker parameters to paginate the results. For more information about using the policy simulator, see Testing IAM policies with the IAM policy simulator in the IAM User Guide.
|
|
| SimulatePrincipalPolicy |
Show DescriptionSimulate how a set of IAM policies attached to an IAM entity works with a list of API operations and Amazon Web Services resources to determine the policies' effective permissions. The entity can be an IAM user, group, or role. If you specify a user, then the simulation also includes all of the policies that are attached to groups that the user belongs to. You can simulate resources that don't exist in your account. You can optionally include a list of one or more additional policies specified as strings to include in the simulation. If you want to simulate only policies specified as strings, use SimulateCustomPolicy instead. You can also optionally include one resource-based policy to be evaluated with each of the resources included in the simulation. The simulation does not perform the API operations; it only checks the authorization to determine if the simulated policies allow or deny the operations. Note: This operation discloses information about the permissions granted to other users. If you do not want users to see other user's permissions, then consider allowing them to use SimulateCustomPolicy instead. Context keys are variables maintained by Amazon Web Services and its services that provide details about the context of an API query request. You can use theCondition element of an IAM policy to evaluate context keys. To get the list of context keys that the policies require for correct simulation, use GetContextKeysForPrincipalPolicy. If the output is long, you can use the MaxItems and Marker parameters to paginate the results. For more information about using the policy simulator, see Testing IAM policies with the IAM policy simulator in the IAM User Guide.
|
|
| TagInstanceProfile | ||
| TagMFADevice | ||
| TagOpenIDConnectProvider | ||
| TagPolicy | ||
| TagRole | ||
| TagSAMLProvider | ||
| TagServerCertificate | ||
| TagUser | ||
| UntagInstanceProfile | ||
| UntagMFADevice | ||
| UntagOpenIDConnectProvider | ||
| UntagPolicy | ||
| UntagRole | ||
| UntagSAMLProvider | ||
| UntagServerCertificate | ||
| UntagUser | ||
| UpdateAccessKey | ||
| UpdateAccountPasswordPolicy | ||
| UpdateAssumeRolePolicy | ||
| UpdateGroup | ||
| UpdateLoginProfile | ||
| UpdateOpenIDConnectProviderThumbprint | ||
| UpdateRole |
Show DescriptionUpdates the description or maximum session duration setting of a role. |
|
| UpdateRoleDescription |
Show DescriptionUse UpdateRole instead. Modifies only the description of a role. This operation performs the same function as theDescription parameter in the UpdateRole operation.
|
|
| UpdateSAMLProvider |
Show DescriptionUpdates the metadata document for an existing SAML provider resource object. |
|
| UpdateSSHPublicKey | ||
| UpdateServerCertificate | ||
| UpdateServiceSpecificCredential | ||
| UpdateSigningCertificate | ||
| UpdateUser | ||
| UploadSSHPublicKey |
Show DescriptionUploads an SSH public key and associates it with the specified IAM user. The SSH public key uploaded by this operation can be used only for authenticating the associated IAM user to an CodeCommit repository. For more information about using SSH keys to authenticate to an CodeCommit repository, see Set up CodeCommit for SSH connections in the CodeCommit User Guide. |
|
| UploadServerCertificate |
Show DescriptionUploads a server certificate entity for the Amazon Web Services account. The server certificate entity includes a public key certificate, a private key, and an optional certificate chain, which should all be PEM-encoded. We recommend that you use Certificate Manager to provision, manage, and deploy your server certificates. With ACM you can request a certificate, deploy it to Amazon Web Services resources, and let ACM handle certificate renewals for you. Certificates provided by ACM are free. For more information about using ACM, see the Certificate Manager User Guide. For more information about working with server certificates, see Working with server certificates in the IAM User Guide. This topic includes a list of Amazon Web Services services that can use the server certificates that you manage with IAM. For information about the number of server certificates you can upload, see IAM and STS quotas in the IAM User Guide.UploadServerCertificate. For information about setting up signatures and authorization through the API, see Signing Amazon Web Services API requests in the Amazon Web Services General Reference. For general information about using the Query API with IAM, see Calling the API by making HTTP query requests in the IAM User Guide. |
Identitystore Events
| Service | Event Name | Description |
|---|---|---|
| identitystore | DescribeGroup |
Show DescriptionRetrieves the group metadata and attributes fromGroupId in an identity store.
|
| DescribeUser |
Show DescriptionRetrieves the user metadata and attributes fromUserId in an identity store.
|
|
| ListGroups |
Show DescriptionLists the attribute name and value of the group that you specified in the search. We only supportDisplayName as a valid filter attribute path currently, and filter is required. This API returns minimum attributes, including GroupId and group DisplayName in the response.
|
Imagebuilder Events
| Service | Event Name | Description |
|---|---|---|
| imagebuilder | CancelImageCreation |
Show DescriptionCancelImageCreation cancels the creation of Image. This operation can only be used on images in a non-terminal state. |
| CreateComponent |
Show DescriptionCreates a new component that can be used to build, validate, test, and assess your image. |
|
| CreateContainerRecipe |
Show DescriptionCreates a new container recipe. Container recipes define how images are configured, tested, and assessed. |
|
| CreateDistributionConfiguration |
Show DescriptionCreates a new distribution configuration. Distribution configurations define and configure the outputs of your pipeline. |
|
| CreateImage |
Show DescriptionCreates a new image. This request will create a new image along with all of the configured output resources defined in the distribution configuration. You must specify exactly one recipe for your image, using either a ContainerRecipeArn or an ImageRecipeArn. |
|
| CreateImagePipeline |
Show DescriptionCreates a new image pipeline. Image pipelines enable you to automate the creation and distribution of images. |
|
| CreateImageRecipe |
Show DescriptionCreates a new image recipe. Image recipes define how images are configured, tested, and assessed. |
|
| CreateInfrastructureConfiguration |
Show DescriptionCreates a new infrastructure configuration. An infrastructure configuration defines the environment in which your image will be built and tested. |
|
| DeleteComponent |
Show DescriptionDeletes a component build version. |
|
| DeleteContainerRecipe |
Show DescriptionDeletes a container recipe. |
|
| DeleteDistributionConfiguration |
Show DescriptionDeletes a distribution configuration. |
|
| DeleteImage |
Show DescriptionDeletes an Image Builder image resource. This does not delete any EC2 AMIs or ECR container images that are created during the image build process. You must clean those up separately, using the appropriate Amazon EC2 or Amazon ECR console actions, or API or CLI commands.
|
|
| DeleteImagePipeline |
Show DescriptionDeletes an image pipeline. |
|
| DeleteImageRecipe |
Show DescriptionDeletes an image recipe. |
|
| DeleteInfrastructureConfiguration |
Show DescriptionDeletes an infrastructure configuration. |
|
| GetComponent |
Show DescriptionGets a component object. |
|
| GetComponentPolicy |
Show DescriptionGets a component policy. |
|
| GetContainerRecipe |
Show DescriptionRetrieves a container recipe. |
|
| GetContainerRecipePolicy |
Show DescriptionRetrieves the policy for a container recipe. |
|
| GetDistributionConfiguration |
Show DescriptionGets a distribution configuration. |
|
| GetImage |
Show DescriptionGets an image. |
|
| GetImagePipeline |
Show DescriptionGets an image pipeline. |
|
| GetImagePolicy |
Show DescriptionGets an image policy. |
|
| GetImageRecipe |
Show DescriptionGets an image recipe. |
|
| GetImageRecipePolicy |
Show DescriptionGets an image recipe policy. |
|
| GetInfrastructureConfiguration |
Show DescriptionGets an infrastructure configuration. |
|
| ImportComponent |
Show DescriptionImports a component and transforms its data into a component document. |
|
| ListComponentBuildVersions |
Show DescriptionReturns the list of component build versions for the specified semantic version. |
|
| ListComponents |
Show DescriptionReturns the list of component build versions for the specified semantic version. |
|
| ListContainerRecipes |
Show DescriptionReturns a list of container recipes. |
|
| ListDistributionConfigurations |
Show DescriptionReturns a list of distribution configurations. |
|
| ListImageBuildVersions |
Show DescriptionReturns a list of image build versions. |
|
| ListImagePackages |
Show DescriptionList the Packages that are associated with an Image Build Version, as determined by Amazon Web Services Systems Manager Inventory at build time. |
|
| ListImagePipelineImages |
Show DescriptionReturns a list of images created by the specified pipeline. |
|
| ListImagePipelines |
Show DescriptionReturns a list of image pipelines. |
|
| ListImageRecipes |
Show DescriptionReturns a list of image recipes. |
|
| ListImages |
Show DescriptionReturns the list of images that you have access to. |
|
| ListInfrastructureConfigurations |
Show DescriptionReturns a list of infrastructure configurations. |
|
| ListTagsForResource |
Show DescriptionReturns the list of tags for the specified resource. |
|
| PutComponentPolicy |
Show DescriptionApplies a policy to a component. We recommend that you call the RAM API CreateResourceShare to share resources. If you call the Image Builder APIPutComponentPolicy, you must also call the RAM API PromoteResourceShareCreatedFromPolicy in order for the resource to be visible to all principals with whom the resource is shared.
|
|
| PutContainerRecipePolicy |
Show DescriptionApplies a policy to a container image. We recommend that you call the RAM API CreateResourceShare (https://docs.aws.amazon.com/ram/latest/APIReference/API_CreateResourceShare.html) to share resources. If you call the Image Builder APIPutContainerImagePolicy, you must also call the RAM API PromoteResourceShareCreatedFromPolicy (https://docs.aws.amazon.com/ram/latest/APIReference/API_PromoteResourceShareCreatedFromPolicy.html) in order for the resource to be visible to all principals with whom the resource is shared.
|
|
| PutImagePolicy |
Show DescriptionApplies a policy to an image. We recommend that you call the RAM API CreateResourceShare to share resources. If you call the Image Builder APIPutImagePolicy, you must also call the RAM API PromoteResourceShareCreatedFromPolicy in order for the resource to be visible to all principals with whom the resource is shared.
|
|
| PutImageRecipePolicy |
Show DescriptionApplies a policy to an image recipe. We recommend that you call the RAM API CreateResourceShare to share resources. If you call the Image Builder APIPutImageRecipePolicy, you must also call the RAM API PromoteResourceShareCreatedFromPolicy in order for the resource to be visible to all principals with whom the resource is shared.
|
|
| StartImagePipelineExecution |
Show DescriptionManually triggers a pipeline to create an image. |
|
| TagResource |
Show DescriptionAdds a tag to a resource. |
|
| UntagResource |
Show DescriptionRemoves a tag from a resource. |
|
| UpdateDistributionConfiguration |
Show DescriptionUpdates a new distribution configuration. Distribution configurations define and configure the outputs of your pipeline. |
|
| UpdateImagePipeline |
Show DescriptionUpdates an image pipeline. Image pipelines enable you to automate the creation and distribution of images. |
Importexport Events
| Service | Event Name | Description |
|---|---|---|
| importexport | CancelJob |
Show DescriptionThis operation cancels a specified job. Only the job owner can cancel it. The operation fails if the job has already started or is complete. |
| CreateJob |
Show DescriptionThis operation initiates the process of scheduling an upload or download of your data. You include in the request a manifest that describes the data transfer specifics. The response to the request includes a job ID, which you can use in other operations, a signature that you use to identify your storage device, and the address where you should ship your storage device. |
|
| GetShippingLabel |
Show DescriptionThis operation generates a pre-paid UPS shipping label that you will use to ship your device to AWS for processing. |
|
| GetStatus |
Show DescriptionThis operation returns information about a job, including where the job is in the processing pipeline, the status of the results, and the signature value associated with the job. You can only return information about jobs you own. |
|
| ListJobs |
Show DescriptionThis operation returns the jobs associated with the requester. AWS Import/Export lists the jobs in reverse chronological order based on the date of creation. For example if Job Test1 was created 2009Dec30 and Test2 was created 2010Feb05, the ListJobs operation would return Test2 followed by Test1. |
Inspector Events
| Service | Event Name | Description |
|---|---|---|
| inspector | AddAttributesToFindings |
Show DescriptionAssigns attributes (key and value pairs) to the findings that are specified by the ARNs of the findings. |
| CreateAssessmentTarget |
Show DescriptionCreates a new assessment target using the ARN of the resource group that is generated by CreateResourceGroup. If resourceGroupArn is not specified, all EC2 instances in the current AWS account and region are included in the assessment target. If the service-linked role isn’t already registered, this action also creates and registers a service-linked role to grant Amazon Inspector access to AWS Services needed to perform security assessments. You can create up to 50 assessment targets per AWS account. You can run up to 500 concurrent agents per AWS account. For more information, see Amazon Inspector Assessment Targets. |
|
| CreateAssessmentTemplate |
Show DescriptionCreates an assessment template for the assessment target that is specified by the ARN of the assessment target. If the service-linked role isn’t already registered, this action also creates and registers a service-linked role to grant Amazon Inspector access to AWS Services needed to perform security assessments. |
|
| CreateExclusionsPreview |
Show DescriptionStarts the generation of an exclusions preview for the specified assessment template. The exclusions preview lists the potential exclusions (ExclusionPreview) that Inspector can detect before it runs the assessment. |
|
| CreateResourceGroup |
Show DescriptionCreates a resource group using the specified set of tags (key and value pairs) that are used to select the EC2 instances to be included in an Amazon Inspector assessment target. The created resource group is then used to create an Amazon Inspector assessment target. For more information, see CreateAssessmentTarget. |
|
| DeleteAssessmentRun | ||
| DeleteAssessmentTarget | ||
| DeleteAssessmentTemplate | ||
| DescribeAssessmentRuns |
Show DescriptionDescribes the assessment runs that are specified by the ARNs of the assessment runs. |
|
| DescribeAssessmentTargets |
Show DescriptionDescribes the assessment targets that are specified by the ARNs of the assessment targets. |
|
| DescribeAssessmentTemplates |
Show DescriptionDescribes the assessment templates that are specified by the ARNs of the assessment templates. |
|
| DescribeCrossAccountAccessRole |
Show DescriptionDescribes the IAM role that enables Amazon Inspector to access your AWS account. |
|
| DescribeExclusions |
Show DescriptionDescribes the exclusions that are specified by the exclusions' ARNs. |
|
| DescribeFindings |
Show DescriptionDescribes the findings that are specified by the ARNs of the findings. |
|
| DescribeResourceGroups |
Show DescriptionDescribes the resource groups that are specified by the ARNs of the resource groups. |
|
| DescribeRulesPackages |
Show DescriptionDescribes the rules packages that are specified by the ARNs of the rules packages. |
|
| GetAssessmentReport |
Show DescriptionProduces an assessment report that includes detailed and comprehensive results of a specified assessment run. |
|
| GetExclusionsPreview |
Show DescriptionRetrieves the exclusions preview (a list of ExclusionPreview objects) specified by the preview token. You can obtain the preview token by running the CreateExclusionsPreview API. |
|
| GetTelemetryMetadata |
Show DescriptionInformation about the data that is collected for the specified assessment run. |
|
| ListAssessmentRunAgents |
Show DescriptionLists the agents of the assessment runs that are specified by the ARNs of the assessment runs. |
|
| ListAssessmentRuns |
Show DescriptionLists the assessment runs that correspond to the assessment templates that are specified by the ARNs of the assessment templates. |
|
| ListAssessmentTargets |
Show DescriptionLists the ARNs of the assessment targets within this AWS account. For more information about assessment targets, see Amazon Inspector Assessment Targets. |
|
| ListAssessmentTemplates |
Show DescriptionLists the assessment templates that correspond to the assessment targets that are specified by the ARNs of the assessment targets. |
|
| ListEventSubscriptions |
Show DescriptionLists all the event subscriptions for the assessment template that is specified by the ARN of the assessment template. For more information, see SubscribeToEvent and UnsubscribeFromEvent. |
|
| ListExclusions |
Show DescriptionList exclusions that are generated by the assessment run. |
|
| ListFindings |
Show DescriptionLists findings that are generated by the assessment runs that are specified by the ARNs of the assessment runs. |
|
| ListRulesPackages |
Show DescriptionLists all available Amazon Inspector rules packages. |
|
| ListTagsForResource |
Show DescriptionLists all tags associated with an assessment template. |
|
| PreviewAgents |
Show DescriptionPreviews the agents installed on the EC2 instances that are part of the specified assessment target. |
|
| RegisterCrossAccountAccessRole | ||
| RemoveAttributesFromFindings |
Show DescriptionRemoves entire attributes (key and value pairs) from the findings that are specified by the ARNs of the findings where an attribute with the specified key exists. |
|
| SetTagsForResource | ||
| StartAssessmentRun |
Show DescriptionStarts the assessment run specified by the ARN of the assessment template. For this API to function properly, you must not exceed the limit of running up to 500 concurrent agents per AWS account. |
|
| StopAssessmentRun | ||
| SubscribeToEvent | ||
| UnsubscribeFromEvent |
Iot-data Events
| Service | Event Name | Description |
|---|---|---|
| iot-data | DeleteThingShadow |
Show DescriptionDeletes the shadow for the specified thing. Requires permission to access the DeleteThingShadow action. For more information, see DeleteThingShadow in the IoT Developer Guide. |
| GetRetainedMessage |
Show DescriptionGets the details of a single retained message for the specified topic. This action returns the message payload of the retained message, which can incur messaging costs. To list only the topic names of the retained messages, call ListRetainedMessages. Requires permission to access the GetRetainedMessage action. For more information about messaging costs, see IoT Core pricing - Messaging. |
|
| GetThingShadow |
Show DescriptionGets the shadow for the specified thing. Requires permission to access the GetThingShadow action. For more information, see GetThingShadow in the IoT Developer Guide. |
|
| ListNamedShadowsForThing |
Show DescriptionLists the shadows for the specified thing. Requires permission to access the ListNamedShadowsForThing action. |
|
| ListRetainedMessages |
Show DescriptionLists summary information about the retained messages stored for the account. This action returns only the topic names of the retained messages. It doesn't return any message payloads. Although this action doesn't return a message payload, it can still incur messaging costs. To get the message payload of a retained message, call GetRetainedMessage with the topic name of the retained message. Requires permission to access the ListRetainedMessages action. For more information about messaging costs, see IoT Core pricing - Messaging. |
|
| Publish |
Iot-jobs-data Events
| Service | Event Name | Description |
|---|---|---|
| iot-jobs-data | DescribeJobExecution |
Show DescriptionGets details of a job execution. |
| GetPendingJobExecutions |
Show DescriptionGets the list of all jobs for a thing that are not in a terminal status. |
|
| StartNextPendingJobExecution |
Show DescriptionGets and starts the next pending (status IN_PROGRESS or QUEUED) job execution for a thing. |
Iot Events
| Service | Event Name | Description |
|---|---|---|
| iot | AcceptCertificateTransfer | |
| AddThingToBillingGroup |
Show DescriptionAdds a thing to a billing group. Requires permission to access the AddThingToBillingGroup action. |
|
| AddThingToThingGroup |
Show DescriptionAdds a thing to a thing group. Requires permission to access the AddThingToThingGroup action. |
|
| AssociateTargetsWithJob |
Show DescriptionAssociates a group with a continuous job. The following criteria must be met:
|
|
| AttachPolicy | ||
| AttachPrincipalPolicy | ||
| AttachSecurityProfile |
Show DescriptionAssociates a Device Defender security profile with a thing group or this account. Each thing group or account can have up to five security profiles associated with it. Requires permission to access the AttachSecurityProfile action. |
|
| AttachThingPrincipal |
Show DescriptionAttaches the specified principal to the specified thing. A principal can be X.509 certificates, IAM users, groups, and roles, Amazon Cognito identities or federated identities. Requires permission to access the AttachThingPrincipal action. |
|
| CancelAuditMitigationActionsTask |
Show DescriptionCancels a mitigation action task that is in progress. If the task is not in progress, an InvalidRequestException occurs. Requires permission to access the CancelAuditMitigationActionsTask action. |
|
| CancelAuditTask |
Show DescriptionCancels an audit that is in progress. The audit can be either scheduled or on demand. If the audit isn't in progress, an "InvalidRequestException" occurs. Requires permission to access the CancelAuditTask action. |
|
| CancelCertificateTransfer | ||
| CancelDetectMitigationActionsTask |
Show DescriptionCancels a Device Defender ML Detect mitigation action. Requires permission to access the CancelDetectMitigationActionsTask action. |
|
| CancelJob |
Show DescriptionCancels a job. Requires permission to access the CancelJob action. |
|
| CancelJobExecution | ||
| ClearDefaultAuthorizer |
Show DescriptionClears the default authorizer. Requires permission to access the ClearDefaultAuthorizer action. |
|
| ConfirmTopicRuleDestination |
Show DescriptionConfirms a topic rule destination. When you create a rule requiring a destination, IoT sends a confirmation message to the endpoint or base address you specify. The message includes a token which you pass back when callingConfirmTopicRuleDestination to confirm that you own or have access to the endpoint. Requires permission to access the ConfirmTopicRuleDestination action.
|
|
| CreateAuditSuppression |
Show DescriptionCreates a Device Defender audit suppression. Requires permission to access the CreateAuditSuppression action. |
|
| CreateAuthorizer |
Show DescriptionCreates an authorizer. Requires permission to access the CreateAuthorizer action. |
|
| CreateBillingGroup |
Show DescriptionCreates a billing group. Requires permission to access the CreateBillingGroup action. |
|
| CreateCertificateFromCsr |
Show DescriptionCreates an X.509 certificate using the specified certificate signing request. Note: The CSR must include a public key that is either an RSA key with a length of at least 2048 bits or an ECC key from NIST P-256 or NIST P-384 curves. Note: Reusing the same certificate signing request (CSR) results in a distinct certificate. Requires permission to access the CreateCertificateFromCsr action. You can create multiple certificates in a batch by creating a directory, copying multiple .csr files into that directory, and then specifying that directory on the command line. The following commands show how to create a batch of certificates given a batch of CSRs. Assuming a set of CSRs are located inside of the directory my-csr-directory: On Linux and OS X, the command is: $ ls my-csr-directory/ |
|
| CreateCustomMetric |
Show DescriptionUse this API to define a Custom Metric published by your devices to Device Defender. Requires permission to access the CreateCustomMetric action. |
|
| CreateDimension |
Show DescriptionCreate a dimension that you can use to limit the scope of a metric used in a security profile for IoT Device Defender. For example, using aTOPIC_FILTER dimension, you can narrow down the scope of the metric only to MQTT topics whose name match the pattern specified in the dimension. Requires permission to access the CreateDimension action.
|
|
| CreateDomainConfiguration |
Show DescriptionCreates a domain configuration. Requires permission to access the CreateDomainConfiguration action. |
|
| CreateDynamicThingGroup |
Show DescriptionCreates a dynamic thing group. Requires permission to access the CreateDynamicThingGroup action. |
|
| CreateFleetMetric |
Show DescriptionCreates a fleet metric. Requires permission to access the CreateFleetMetric action. |
|
| CreateJob |
Show DescriptionCreates a job. Requires permission to access the CreateJob action. |
|
| CreateJobTemplate |
Show DescriptionCreates a job template. Requires permission to access the CreateJobTemplate action. |
|
| CreateKeysAndCertificate |
Show DescriptionCreates a 2048-bit RSA key pair and issues an X.509 certificate using the issued public key. You can also callCreateKeysAndCertificate over MQTT from a device, for more information, see Provisioning MQTT API. Note This is the only time IoT issues the private key for this certificate, so it is important to keep it in a secure location. Requires permission to access the CreateKeysAndCertificate action.
|
|
| CreateMitigationAction |
Show DescriptionDefines an action that can be applied to audit findings by using StartAuditMitigationActionsTask. Only certain types of mitigation actions can be applied to specific check names. For more information, see Mitigation actions. Each mitigation action can apply only one type of change. Requires permission to access the CreateMitigationAction action. |
|
| CreateOTAUpdate |
Show DescriptionCreates an IoT OTA update on a target group of things or groups. Requires permission to access the CreateOTAUpdate action. |
|
| CreatePolicy |
Show DescriptionCreates an IoT policy. The created policy is the default version for the policy. This operation creates a policy version with a version identifier of 1 and sets 1 as the policy's default version. Requires permission to access the CreatePolicy action. |
|
| CreatePolicyVersion |
Show DescriptionCreates a new version of the specified IoT policy. To update a policy, create a new policy version. A managed policy can have up to five versions. If the policy has five versions, you must use DeletePolicyVersion to delete an existing version before you create a new one. Optionally, you can set the new version as the policy's default version. The default version is the operative version (that is, the version that is in effect for the certificates to which the policy is attached). Requires permission to access the CreatePolicyVersion action. |
|
| CreateProvisioningClaim |
Show DescriptionCreates a provisioning claim. Requires permission to access the CreateProvisioningClaim action. |
|
| CreateProvisioningTemplate |
Show DescriptionCreates a fleet provisioning template. Requires permission to access the CreateProvisioningTemplate action. |
|
| CreateProvisioningTemplateVersion |
Show DescriptionCreates a new version of a fleet provisioning template. Requires permission to access the CreateProvisioningTemplateVersion action. |
|
| CreateRoleAlias |
Show DescriptionCreates a role alias. Requires permission to access the CreateRoleAlias action. |
|
| CreateScheduledAudit |
Show DescriptionCreates a scheduled audit that is run at a specified time interval. Requires permission to access the CreateScheduledAudit action. |
|
| CreateSecurityProfile |
Show DescriptionCreates a Device Defender security profile. Requires permission to access the CreateSecurityProfile action. |
|
| CreateStream |
Show DescriptionCreates a stream for delivering one or more large files in chunks over MQTT. A stream transports data bytes in chunks or blocks packaged as MQTT messages from a source like S3. You can have one or more files associated with a stream. Requires permission to access the CreateStream action. |
|
| CreateThing |
Show DescriptionCreates a thing record in the registry. If this call is made multiple times using the same thing name and configuration, the call will succeed. If this call is made with the same thing name but different configuration aResourceAlreadyExistsException is thrown. |
|
| CreateThingGroup |
Show DescriptionCreate a thing group. |
|
| CreateThingType |
Show DescriptionCreates a new thing type. Requires permission to access the CreateThingType action. |
|
| CreateTopicRule | ||
| CreateTopicRuleDestination |
Show DescriptionCreates a topic rule destination. The destination must be confirmed prior to use. Requires permission to access the CreateTopicRuleDestination action. |
|
| DeleteAccountAuditConfiguration |
Show DescriptionRestores the default settings for Device Defender audits for this account. Any configuration data you entered is deleted and all audit checks are reset to disabled. Requires permission to access the DeleteAccountAuditConfiguration action. |
|
| DeleteAuditSuppression |
Show DescriptionDeletes a Device Defender audit suppression. Requires permission to access the DeleteAuditSuppression action. |
|
| DeleteAuthorizer |
Show DescriptionDeletes an authorizer. Requires permission to access the DeleteAuthorizer action. |
|
| DeleteBillingGroup |
Show DescriptionDeletes the billing group. Requires permission to access the DeleteBillingGroup action. |
|
| DeleteCACertificate |
Show DescriptionDeletes a registered CA certificate. Requires permission to access the DeleteCACertificate action. |
|
| DeleteCertificate | ||
| DeleteCustomMetric |
Show DescriptionDeletes a Device Defender detect custom metric. Requires permission to access the DeleteCustomMetric action.metricName set to your custom metric name. |
|
| DeleteDimension |
Show DescriptionRemoves the specified dimension from your Amazon Web Services accounts. Requires permission to access the DeleteDimension action. |
|
| DeleteDomainConfiguration |
Show DescriptionDeletes the specified domain configuration. Requires permission to access the DeleteDomainConfiguration action. |
|
| DeleteDynamicThingGroup |
Show DescriptionDeletes a dynamic thing group. Requires permission to access the DeleteDynamicThingGroup action. |
|
| DeleteFleetMetric | ||
| DeleteJob | ||
| DeleteJobExecution | ||
| DeleteJobTemplate | ||
| DeleteMitigationAction |
Show DescriptionDeletes a defined mitigation action from your Amazon Web Services accounts. Requires permission to access the DeleteMitigationAction action. |
|
| DeleteOTAUpdate |
Show DescriptionDelete an OTA update. Requires permission to access the DeleteOTAUpdate action. |
|
| DeletePolicy | ||
| DeletePolicyVersion | ||
| DeleteProvisioningTemplate |
Show DescriptionDeletes a fleet provisioning template. Requires permission to access the DeleteProvisioningTemplate action. |
|
| DeleteProvisioningTemplateVersion |
Show DescriptionDeletes a fleet provisioning template version. Requires permission to access the DeleteProvisioningTemplateVersion action. |
|
| DeleteRegistrationCode |
Show DescriptionDeletes a CA certificate registration code. Requires permission to access the DeleteRegistrationCode action. |
|
| DeleteRoleAlias |
Show DescriptionDeletes a role alias Requires permission to access the DeleteRoleAlias action. |
|
| DeleteScheduledAudit |
Show DescriptionDeletes a scheduled audit. Requires permission to access the DeleteScheduledAudit action. |
|
| DeleteSecurityProfile |
Show DescriptionDeletes a Device Defender security profile. Requires permission to access the DeleteSecurityProfile action. |
|
| DeleteStream |
Show DescriptionDeletes a stream. Requires permission to access the DeleteStream action. |
|
| DeleteThing |
Show DescriptionDeletes the specified thing. Returns successfully with no error if the deletion is successful or you specify a thing that doesn't exist. Requires permission to access the DeleteThing action. |
|
| DeleteThingGroup |
Show DescriptionDeletes a thing group. Requires permission to access the DeleteThingGroup action. |
|
| DeleteThingType |
Show DescriptionDeletes the specified thing type. You cannot delete a thing type if it has things associated with it. To delete a thing type, first mark it as deprecated by calling DeprecateThingType, then remove any associated things by calling UpdateThing to change the thing type on any associated thing, and finally use DeleteThingType to delete the thing type. Requires permission to access the DeleteThingType action. |
|
| DeleteTopicRule | ||
| DeleteTopicRuleDestination |
Show DescriptionDeletes a topic rule destination. Requires permission to access the DeleteTopicRuleDestination action. |
|
| DeleteV2LoggingLevel | ||
| DeprecateThingType |
Show DescriptionDeprecates a thing type. You can not associate new things with deprecated thing type. Requires permission to access the DeprecateThingType action. |
|
| DescribeAccountAuditConfiguration |
Show DescriptionGets information about the Device Defender audit settings for this account. Settings include how audit notifications are sent and which audit checks are enabled or disabled. Requires permission to access the DescribeAccountAuditConfiguration action. |
|
| DescribeAuditFinding |
Show DescriptionGets information about a single audit finding. Properties include the reason for noncompliance, the severity of the issue, and the start time when the audit that returned the finding. Requires permission to access the DescribeAuditFinding action. |
|
| DescribeAuditMitigationActionsTask |
Show DescriptionGets information about an audit mitigation task that is used to apply mitigation actions to a set of audit findings. Properties include the actions being applied, the audit checks to which they're being applied, the task status, and aggregated task statistics. |
|
| DescribeAuditSuppression |
Show DescriptionGets information about a Device Defender audit suppression. |
|
| DescribeAuditTask |
Show DescriptionGets information about a Device Defender audit. Requires permission to access the DescribeAuditTask action. |
|
| DescribeAuthorizer |
Show DescriptionDescribes an authorizer. Requires permission to access the DescribeAuthorizer action. |
|
| DescribeBillingGroup |
Show DescriptionReturns information about a billing group. Requires permission to access the DescribeBillingGroup action. |
|
| DescribeCACertificate |
Show DescriptionDescribes a registered CA certificate. Requires permission to access the DescribeCACertificate action. |
|
| DescribeCertificate |
Show DescriptionGets information about the specified certificate. Requires permission to access the DescribeCertificate action. |
|
| DescribeCustomMetric |
Show DescriptionGets information about a Device Defender detect custom metric. Requires permission to access the DescribeCustomMetric action. |
|
| DescribeDefaultAuthorizer |
Show DescriptionDescribes the default authorizer. Requires permission to access the DescribeDefaultAuthorizer action. |
|
| DescribeDetectMitigationActionsTask |
Show DescriptionGets information about a Device Defender ML Detect mitigation action. Requires permission to access the DescribeDetectMitigationActionsTask action. |
|
| DescribeDimension |
Show DescriptionProvides details about a dimension that is defined in your Amazon Web Services accounts. Requires permission to access the DescribeDimension action. |
|
| DescribeDomainConfiguration |
Show DescriptionGets summary information about a domain configuration. Requires permission to access the DescribeDomainConfiguration action. |
|
| DescribeEndpoint |
Show DescriptionReturns a unique endpoint specific to the Amazon Web Services account making the call. Requires permission to access the DescribeEndpoint action. |
|
| DescribeEventConfigurations |
Show DescriptionDescribes event configurations. Requires permission to access the DescribeEventConfigurations action. |
|
| DescribeFleetMetric |
Show DescriptionGets information about the specified fleet metric. Requires permission to access the DescribeFleetMetric action. |
|
| DescribeIndex |
Show DescriptionDescribes a search index. Requires permission to access the DescribeIndex action. |
|
| DescribeJob |
Show DescriptionDescribes a job. Requires permission to access the DescribeJob action. |
|
| DescribeJobExecution |
Show DescriptionDescribes a job execution. Requires permission to access the DescribeJobExecution action. |
|
| DescribeJobTemplate |
Show DescriptionReturns information about a job template. |
|
| DescribeMitigationAction |
Show DescriptionGets information about a mitigation action. Requires permission to access the DescribeMitigationAction action. |
|
| DescribeProvisioningTemplate |
Show DescriptionReturns information about a fleet provisioning template. Requires permission to access the DescribeProvisioningTemplate action. |
|
| DescribeProvisioningTemplateVersion |
Show DescriptionReturns information about a fleet provisioning template version. Requires permission to access the DescribeProvisioningTemplateVersion action. |
|
| DescribeRoleAlias |
Show DescriptionDescribes a role alias. Requires permission to access the DescribeRoleAlias action. |
|
| DescribeScheduledAudit |
Show DescriptionGets information about a scheduled audit. Requires permission to access the DescribeScheduledAudit action. |
|
| DescribeSecurityProfile |
Show DescriptionGets information about a Device Defender security profile. Requires permission to access the DescribeSecurityProfile action. |
|
| DescribeStream |
Show DescriptionGets information about a stream. Requires permission to access the DescribeStream action. |
|
| DescribeThing |
Show DescriptionGets information about the specified thing. Requires permission to access the DescribeThing action. |
|
| DescribeThingGroup |
Show DescriptionDescribe a thing group. Requires permission to access the DescribeThingGroup action. |
|
| DescribeThingRegistrationTask |
Show DescriptionDescribes a bulk thing provisioning task. Requires permission to access the DescribeThingRegistrationTask action. |
|
| DescribeThingType |
Show DescriptionGets information about the specified thing type. Requires permission to access the DescribeThingType action. |
|
| DetachPolicy | ||
| DetachPrincipalPolicy | ||
| DetachSecurityProfile |
Show DescriptionDisassociates a Device Defender security profile from a thing group or from this account. Requires permission to access the DetachSecurityProfile action. |
|
| DetachThingPrincipal |
Show DescriptionDetaches the specified principal from the specified thing. A principal can be X.509 certificates, IAM users, groups, and roles, Amazon Cognito identities or federated identities. |
|
| DisableTopicRule | ||
| EnableTopicRule | ||
| GetBehaviorModelTrainingSummaries |
Show DescriptionReturns a Device Defender's ML Detect Security Profile training model's status. Requires permission to access the GetBehaviorModelTrainingSummaries action. |
|
| GetBucketsAggregation |
Show DescriptionAggregates on indexed data with search queries pertaining to particular fields. Requires permission to access the GetBucketsAggregation action. |
|
| GetCardinality |
Show DescriptionReturns the approximate count of unique values that match the query. Requires permission to access the GetCardinality action. |
|
| GetEffectivePolicies |
Show DescriptionGets a list of the policies that have an effect on the authorization behavior of the specified device when it connects to the IoT device gateway. Requires permission to access the GetEffectivePolicies action. |
|
| GetIndexingConfiguration |
Show DescriptionGets the indexing configuration. Requires permission to access the GetIndexingConfiguration action. |
|
| GetJobDocument |
Show DescriptionGets a job document. Requires permission to access the GetJobDocument action. |
|
| GetLoggingOptions |
Show DescriptionGets the logging options. NOTE: use of this command is not recommended. UseGetV2LoggingOptions instead. Requires permission to access the GetLoggingOptions action.
|
|
| GetOTAUpdate |
Show DescriptionGets an OTA update. Requires permission to access the GetOTAUpdate action. |
|
| GetPercentiles |
Show DescriptionGroups the aggregated values that match the query into percentile groupings. The default percentile groupings are: 1,5,25,50,75,95,99, although you can specify your own when you callGetPercentiles. This function returns a value for each percentile group specified (or the default percentile groupings). The percentile group "1" contains the aggregated field value that occurs in approximately one percent of the values that match the query. The percentile group "5" contains the aggregated field value that occurs in approximately five percent of the values that match the query, and so on. The result is an approximation, the more values that match the query, the more accurate the percentile values. Requires permission to access the GetPercentiles action.
|
|
| GetPolicy |
Show DescriptionGets information about the specified policy with the policy document of the default version. Requires permission to access the GetPolicy action. |
|
| GetPolicyVersion |
Show DescriptionGets information about the specified policy version. Requires permission to access the GetPolicyVersion action. |
|
| GetRegistrationCode |
Show DescriptionGets a registration code used to register a CA certificate with IoT. Requires permission to access the GetRegistrationCode action. |
|
| GetStatistics |
Show DescriptionReturns the count, average, sum, minimum, maximum, sum of squares, variance, and standard deviation for the specified aggregated field. If the aggregation field is of typeString, only the count statistic is returned. Requires permission to access the GetStatistics action.
|
|
| GetTopicRule |
Show DescriptionGets information about the rule. Requires permission to access the GetTopicRule action. |
|
| GetTopicRuleDestination |
Show DescriptionGets information about a topic rule destination. Requires permission to access the GetTopicRuleDestination action. |
|
| GetV2LoggingOptions |
Show DescriptionGets the fine grained logging options. Requires permission to access the GetV2LoggingOptions action. |
|
| ListActiveViolations |
Show DescriptionLists the active violations for a given Device Defender security profile. Requires permission to access the ListActiveViolations action. |
|
| ListAttachedPolicies |
Show DescriptionLists the policies attached to the specified thing group. Requires permission to access the ListAttachedPolicies action. |
|
| ListAuditFindings |
Show DescriptionLists the findings (results) of a Device Defender audit or of the audits performed during a specified time period. (Findings are retained for 90 days.) Requires permission to access the ListAuditFindings action. |
|
| ListAuditMitigationActionsExecutions |
Show DescriptionGets the status of audit mitigation action tasks that were executed. Requires permission to access the ListAuditMitigationActionsExecutions action. |
|
| ListAuditMitigationActionsTasks |
Show DescriptionGets a list of audit mitigation action tasks that match the specified filters. Requires permission to access the ListAuditMitigationActionsTasks action. |
|
| ListAuditSuppressions |
Show DescriptionLists your Device Defender audit listings. Requires permission to access the ListAuditSuppressions action. |
|
| ListAuditTasks |
Show DescriptionLists the Device Defender audits that have been performed during a given time period. Requires permission to access the ListAuditTasks action. |
|
| ListAuthorizers |
Show DescriptionLists the authorizers registered in your account. Requires permission to access the ListAuthorizers action. |
|
| ListBillingGroups |
Show DescriptionLists the billing groups you have created. Requires permission to access the ListBillingGroups action. |
|
| ListCACertificates |
Show DescriptionLists the CA certificates registered for your Amazon Web Services account. The results are paginated with a default page size of 25. You can use the returned marker to retrieve additional results. Requires permission to access the ListCACertificates action. |
|
| ListCertificates |
Show DescriptionLists the certificates registered in your Amazon Web Services account. The results are paginated with a default page size of 25. You can use the returned marker to retrieve additional results. Requires permission to access the ListCertificates action. |
|
| ListCertificatesByCA |
Show DescriptionList the device certificates signed by the specified CA certificate. Requires permission to access the ListCertificatesByCA action. |
|
| ListCustomMetrics |
Show DescriptionLists your Device Defender detect custom metrics. Requires permission to access the ListCustomMetrics action. |
|
| ListDetectMitigationActionsExecutions |
Show DescriptionLists mitigation actions executions for a Device Defender ML Detect Security Profile. Requires permission to access the ListDetectMitigationActionsExecutions action. |
|
| ListDetectMitigationActionsTasks |
Show DescriptionList of Device Defender ML Detect mitigation actions tasks. Requires permission to access the ListDetectMitigationActionsTasks action. |
|
| ListDimensions |
Show DescriptionList the set of dimensions that are defined for your Amazon Web Services accounts. Requires permission to access the ListDimensions action. |
|
| ListDomainConfigurations |
Show DescriptionGets a list of domain configurations for the user. This list is sorted alphabetically by domain configuration name. Requires permission to access the ListDomainConfigurations action. |
|
| ListFleetMetrics |
Show DescriptionLists all your fleet metrics. Requires permission to access the ListFleetMetrics action. |
|
| ListIndices |
Show DescriptionLists the search indices. Requires permission to access the ListIndices action. |
|
| ListJobExecutionsForJob |
Show DescriptionLists the job executions for a job. Requires permission to access the ListJobExecutionsForJob action. |
|
| ListJobExecutionsForThing |
Show DescriptionLists the job executions for the specified thing. Requires permission to access the ListJobExecutionsForThing action. |
|
| ListJobTemplates |
Show DescriptionReturns a list of job templates. Requires permission to access the ListJobTemplates action. |
|
| ListJobs |
Show DescriptionLists jobs. Requires permission to access the ListJobs action. |
|
| ListMitigationActions |
Show DescriptionGets a list of all mitigation actions that match the specified filter criteria. Requires permission to access the ListMitigationActions action. |
|
| ListOTAUpdates |
Show DescriptionLists OTA updates. Requires permission to access the ListOTAUpdates action. |
|
| ListOutgoingCertificates |
Show DescriptionLists certificates that are being transferred but not yet accepted. Requires permission to access the ListOutgoingCertificates action. |
|
| ListPolicies |
Show DescriptionLists your policies. Requires permission to access the ListPolicies action. |
|
| ListPolicyPrincipals |
Show DescriptionLists the principals associated with the specified policy. Note: This action is deprecated. Please use ListTargetsForPolicy instead. Requires permission to access the ListPolicyPrincipals action. |
|
| ListPolicyVersions |
Show DescriptionLists the versions of the specified policy and identifies the default version. Requires permission to access the ListPolicyVersions action. |
|
| ListPrincipalPolicies |
Show DescriptionLists the policies attached to the specified principal. If you use an Cognito identity, the ID must be in AmazonCognito Identity format. Note: This action is deprecated. Please use ListAttachedPolicies instead. Requires permission to access the ListPrincipalPolicies action. |
|
| ListPrincipalThings |
Show DescriptionLists the things associated with the specified principal. A principal can be X.509 certificates, IAM users, groups, and roles, Amazon Cognito identities or federated identities. Requires permission to access the ListPrincipalThings action. |
|
| ListProvisioningTemplateVersions |
Show DescriptionA list of fleet provisioning template versions. Requires permission to access the ListProvisioningTemplateVersions action. |
|
| ListProvisioningTemplates |
Show DescriptionLists the fleet provisioning templates in your Amazon Web Services account. Requires permission to access the ListProvisioningTemplates action. |
|
| ListRoleAliases |
Show DescriptionLists the role aliases registered in your account. Requires permission to access the ListRoleAliases action. |
|
| ListScheduledAudits |
Show DescriptionLists all of your scheduled audits. Requires permission to access the ListScheduledAudits action. |
|
| ListSecurityProfiles |
Show DescriptionLists the Device Defender security profiles you've created. You can filter security profiles by dimension or custom metric. Requires permission to access the ListSecurityProfiles action.dimensionName and metricName cannot be used in the same request. |
|
| ListSecurityProfilesForTarget |
Show DescriptionLists the Device Defender security profiles attached to a target (thing group). Requires permission to access the ListSecurityProfilesForTarget action. |
|
| ListStreams |
Show DescriptionLists all of the streams in your Amazon Web Services account. Requires permission to access the ListStreams action. |
|
| ListTagsForResource |
Show DescriptionLists the tags (metadata) you have assigned to the resource. Requires permission to access the ListTagsForResource action. |
|
| ListTargetsForPolicy |
Show DescriptionList targets for the specified policy. Requires permission to access the ListTargetsForPolicy action. |
|
| ListTargetsForSecurityProfile |
Show DescriptionLists the targets (thing groups) associated with a given Device Defender security profile. Requires permission to access the ListTargetsForSecurityProfile action. |
|
| ListThingGroups |
Show DescriptionList the thing groups in your account. Requires permission to access the ListThingGroups action. |
|
| ListThingGroupsForThing |
Show DescriptionList the thing groups to which the specified thing belongs. Requires permission to access the ListThingGroupsForThing action. |
|
| ListThingPrincipals |
Show DescriptionLists the principals associated with the specified thing. A principal can be X.509 certificates, IAM users, groups, and roles, Amazon Cognito identities or federated identities. Requires permission to access the ListThingPrincipals action. |
|
| ListThingRegistrationTaskReports |
Show DescriptionInformation about the thing registration tasks. |
|
| ListThingRegistrationTasks |
Show DescriptionList bulk thing provisioning tasks. Requires permission to access the ListThingRegistrationTasks action. |
|
| ListThingTypes |
Show DescriptionLists the existing thing types. Requires permission to access the ListThingTypes action. |
|
| ListThings |
Show DescriptionLists your things. Use the attributeName and attributeValue parameters to filter your things. For example, callingListThings with attributeName=Color and attributeValue=Red retrieves all things in the registry that contain an attribute Color with the value Red. Requires permission to access the ListThings action. Access denied error is returned. You will also not be charged if no attributes or pagination token was provided in request and no pagination token and no results were returned. |
|
| ListThingsInBillingGroup |
Show DescriptionLists the things you have added to the given billing group. Requires permission to access the ListThingsInBillingGroup action. |
|
| ListThingsInThingGroup |
Show DescriptionLists the things in the specified group. Requires permission to access the ListThingsInThingGroup action. |
|
| ListTopicRuleDestinations |
Show DescriptionLists all the topic rule destinations in your Amazon Web Services account. Requires permission to access the ListTopicRuleDestinations action. |
|
| ListTopicRules |
Show DescriptionLists the rules for the specific topic. Requires permission to access the ListTopicRules action. |
|
| ListV2LoggingLevels |
Show DescriptionLists logging levels. Requires permission to access the ListV2LoggingLevels action. |
|
| ListViolationEvents |
Show DescriptionLists the Device Defender security profile violations discovered during the given time period. You can use filters to limit the results to those alerts issued for a particular security profile, behavior, or thing (device). Requires permission to access the ListViolationEvents action. |
|
| PutVerificationStateOnViolation |
Show DescriptionSet a verification state and provide a description of that verification state on a violation (detect alarm). |
|
| RegisterCACertificate |
Show DescriptionRegisters a CA certificate with IoT. This CA certificate can then be used to sign device certificates, which can be then registered with IoT. You can register up to 10 CA certificates per Amazon Web Services account that have the same subject field. This enables you to have up to 10 certificate authorities sign your device certificates. If you have more than one CA certificate registered, make sure you pass the CA certificate when you register your device certificates with the RegisterCertificate action. Requires permission to access the RegisterCACertificate action. |
|
| RegisterCertificate |
Show DescriptionRegisters a device certificate with IoT. If you have more than one CA certificate that has the same subject field, you must specify the CA certificate that was used to sign the device certificate being registered. Requires permission to access the RegisterCertificate action. |
|
| RegisterCertificateWithoutCA |
Show DescriptionRegister a certificate that does not have a certificate authority (CA). |
|
| RegisterThing |
Show DescriptionProvisions a thing in the device registry. RegisterThing calls other IoT control plane APIs. These calls might exceed your account level IoT Throttling Limits and cause throttle errors. Please contact Amazon Web Services Customer Support to raise your throttling limits if necessary. Requires permission to access the RegisterThing action. |
|
| RejectCertificateTransfer | ||
| RemoveThingFromBillingGroup |
Show DescriptionRemoves the given thing from the billing group. Requires permission to access the RemoveThingFromBillingGroup action. |
|
| RemoveThingFromThingGroup |
Show DescriptionRemove the specified thing from the specified group. You must specify either athingGroupArn or a thingGroupName to identify the thing group and either a thingArn or a thingName to identify the thing to remove from the thing group. Requires permission to access the RemoveThingFromThingGroup action.
|
|
| ReplaceTopicRule | ||
| SearchIndex |
Show DescriptionThe query search index. Requires permission to access the SearchIndex action. |
|
| SetDefaultAuthorizer |
Show DescriptionSets the default authorizer. This will be used if a websocket connection is made without specifying an authorizer. Requires permission to access the SetDefaultAuthorizer action. |
|
| SetDefaultPolicyVersion | ||
| SetLoggingOptions | ||
| SetV2LoggingLevel | ||
| SetV2LoggingOptions | ||
| StartAuditMitigationActionsTask |
Show DescriptionStarts a task that applies a set of mitigation actions to the specified target. Requires permission to access the StartAuditMitigationActionsTask action. |
|
| StartDetectMitigationActionsTask |
Show DescriptionStarts a Device Defender ML Detect mitigation actions task. Requires permission to access the StartDetectMitigationActionsTask action. |
|
| StartOnDemandAuditTask |
Show DescriptionStarts an on-demand Device Defender audit. Requires permission to access the StartOnDemandAuditTask action. |
|
| StartThingRegistrationTask |
Show DescriptionCreates a bulk thing provisioning task. Requires permission to access the StartThingRegistrationTask action. |
|
| StopThingRegistrationTask |
Show DescriptionCancels a bulk thing provisioning task. Requires permission to access the StopThingRegistrationTask action. |
|
| TagResource |
Show DescriptionAdds to or modifies the tags of the given resource. Tags are metadata which can be used to manage a resource. Requires permission to access the TagResource action. |
|
| TestAuthorization |
Show DescriptionTests if a specified principal is authorized to perform an IoT action on a specified resource. Use this to test and debug the authorization behavior of devices that connect to the IoT device gateway. Requires permission to access the TestAuthorization action. |
|
| TestInvokeAuthorizer |
Show DescriptionTests a custom authorization behavior by invoking a specified custom authorizer. Use this to test and debug the custom authorization behavior of devices that connect to the IoT device gateway. Requires permission to access the TestInvokeAuthorizer action. |
|
| TransferCertificate |
Show DescriptionTransfers the specified certificate to the specified Amazon Web Services account. Requires permission to access the TransferCertificate action. You can cancel the transfer until it is acknowledged by the recipient. No notification is sent to the transfer destination's account. It is up to the caller to notify the transfer target. The certificate being transferred must not be in the ACTIVE state. You can use the UpdateCertificate action to deactivate it. The certificate must not have any policies attached to it. You can use the DetachPolicy action to detach them. |
|
| UntagResource |
Show DescriptionRemoves the given tags (metadata) from the resource. Requires permission to access the UntagResource action. |
|
| UpdateAccountAuditConfiguration |
Show DescriptionConfigures or reconfigures the Device Defender audit settings for this account. Settings include how audit notifications are sent and which audit checks are enabled or disabled. Requires permission to access the UpdateAccountAuditConfiguration action. |
|
| UpdateAuditSuppression |
Show DescriptionUpdates a Device Defender audit suppression. |
|
| UpdateAuthorizer |
Show DescriptionUpdates an authorizer. Requires permission to access the UpdateAuthorizer action. |
|
| UpdateBillingGroup |
Show DescriptionUpdates information about the billing group. Requires permission to access the UpdateBillingGroup action. |
|
| UpdateCACertificate | ||
| UpdateCertificate | ||
| UpdateCustomMetric |
Show DescriptionUpdates a Device Defender detect custom metric. Requires permission to access the UpdateCustomMetric action. |
|
| UpdateDimension |
Show DescriptionUpdates the definition for a dimension. You cannot change the type of a dimension after it is created (you can delete it and recreate it). Requires permission to access the UpdateDimension action. |
|
| UpdateDomainConfiguration |
Show DescriptionUpdates values stored in the domain configuration. Domain configurations for default endpoints can't be updated. Requires permission to access the UpdateDomainConfiguration action. |
|
| UpdateDynamicThingGroup |
Show DescriptionUpdates a dynamic thing group. Requires permission to access the UpdateDynamicThingGroup action. |
|
| UpdateEventConfigurations |
Show DescriptionUpdates the event configurations. Requires permission to access the UpdateEventConfigurations action. |
|
| UpdateFleetMetric | ||
| UpdateIndexingConfiguration |
Show DescriptionUpdates the search configuration. Requires permission to access the UpdateIndexingConfiguration action. |
|
| UpdateJob | ||
| UpdateMitigationAction |
Show DescriptionUpdates the definition for the specified mitigation action. Requires permission to access the UpdateMitigationAction action. |
|
| UpdateProvisioningTemplate |
Show DescriptionUpdates a fleet provisioning template. Requires permission to access the UpdateProvisioningTemplate action. |
|
| UpdateRoleAlias |
Show DescriptionUpdates a role alias. Requires permission to access the UpdateRoleAlias action. |
|
| UpdateScheduledAudit |
Show DescriptionUpdates a scheduled audit, including which checks are performed and how often the audit takes place. Requires permission to access the UpdateScheduledAudit action. |
|
| UpdateSecurityProfile |
Show DescriptionUpdates a Device Defender security profile. Requires permission to access the UpdateSecurityProfile action. |
|
| UpdateStream |
Show DescriptionUpdates an existing stream. The stream version will be incremented by one. Requires permission to access the UpdateStream action. |
|
| UpdateThing |
Show DescriptionUpdates the data for a thing. Requires permission to access the UpdateThing action. |
|
| UpdateThingGroup |
Show DescriptionUpdate a thing group. Requires permission to access the UpdateThingGroup action. |
|
| UpdateThingGroupsForThing |
Show DescriptionUpdates the groups to which the thing belongs. Requires permission to access the UpdateThingGroupsForThing action. |
|
| UpdateTopicRuleDestination |
Show DescriptionUpdates a topic rule destination. You use this to change the status, endpoint URL, or confirmation URL of the destination. Requires permission to access the UpdateTopicRuleDestination action. |
Iot1click-projects Events
| Service | Event Name | Description |
|---|---|---|
| iot1click-projects | AssociateDeviceWithPlacement |
Show DescriptionAssociates a physical device with a placement. |
| CreatePlacement |
Show DescriptionCreates an empty placement. |
|
| CreateProject |
Show DescriptionCreates an empty project with a placement template. A project contains zero or more placements that adhere to the placement template defined in the project. |
|
| DeletePlacement |
Show DescriptionDeletes a placement. To delete a placement, it must not have any devices associated with it. |
|
| DeleteProject |
Show DescriptionDeletes a project. To delete a project, it must not have any placements associated with it. |
|
| DescribePlacement |
Show DescriptionDescribes a placement in a project. |
|
| DescribeProject |
Show DescriptionReturns an object describing a project. |
|
| DisassociateDeviceFromPlacement |
Show DescriptionRemoves a physical device from a placement. |
|
| GetDevicesInPlacement |
Show DescriptionReturns an object enumerating the devices in a placement. |
|
| ListPlacements |
Show DescriptionLists the placement(s) of a project. |
|
| ListProjects |
Show DescriptionLists the AWS IoT 1-Click project(s) associated with your AWS account and region. |
|
| ListTagsForResource |
Show DescriptionLists the tags (metadata key/value pairs) which you have assigned to the resource. |
|
| TagResource |
Show DescriptionCreates or modifies tags for a resource. Tags are key/value pairs (metadata) that can be used to manage a resource. For more information, see AWS Tagging Strategies. |
|
| UntagResource |
Show DescriptionRemoves one or more tags (metadata key/value pairs) from a resource. |
|
| UpdatePlacement |
Show DescriptionUpdates a placement with the given attributes. To clear an attribute, pass an empty value (i.e., ""). |
Iotanalytics Events
| Service | Event Name | Description |
|---|---|---|
| iotanalytics | BatchPutMessage |
Show DescriptionSends messages to a channel. |
| CancelPipelineReprocessing |
Show DescriptionCancels the reprocessing of data through the pipeline. |
|
| CreateChannel |
Show DescriptionUsed to create a channel. A channel collects data from an MQTT topic and archives the raw, unprocessed messages before publishing the data to a pipeline. |
|
| CreateDataset |
Show DescriptionUsed to create a dataset. A dataset stores data retrieved from a data store by applying aqueryAction (a SQL query) or a containerAction (executing a containerized application). This operation creates the skeleton of a dataset. The dataset can be populated manually by calling CreateDatasetContent or automatically according to a trigger you specify.
|
|
| CreateDatasetContent |
Show DescriptionCreates the content of a dataset by applying aqueryAction (a SQL query) or a containerAction (executing a containerized application).
|
|
| CreateDatastore |
Show DescriptionCreates a data store, which is a repository for messages. |
|
| CreatePipeline |
Show DescriptionCreates a pipeline. A pipeline consumes messages from a channel and allows you to process the messages before storing them in a data store. You must specify both achannel and a datastore activity and, optionally, as many as 23 additional activities in the pipelineActivities array.
|
|
| DeleteChannel | ||
| DeleteDataset | ||
| DeleteDatasetContent | ||
| DeleteDatastore | ||
| DeletePipeline | ||
| DescribeChannel |
Show DescriptionRetrieves information about a channel. |
|
| DescribeDataset |
Show DescriptionRetrieves information about a dataset. |
|
| DescribeDatastore |
Show DescriptionRetrieves information about a data store. |
|
| DescribeLoggingOptions |
Show DescriptionRetrieves the current settings of the IoT Analytics logging options. |
|
| DescribePipeline |
Show DescriptionRetrieves information about a pipeline. |
|
| GetDatasetContent |
Show DescriptionRetrieves the contents of a dataset as presigned URIs. |
|
| ListChannels |
Show DescriptionRetrieves a list of channels. |
|
| ListDatasetContents |
Show DescriptionLists information about dataset contents that have been created. |
|
| ListDatasets |
Show DescriptionRetrieves information about datasets. |
|
| ListDatastores |
Show DescriptionRetrieves a list of data stores. |
|
| ListPipelines |
Show DescriptionRetrieves a list of pipelines. |
|
| ListTagsForResource |
Show DescriptionLists the tags (metadata) that you have assigned to the resource. |
|
| PutLoggingOptions | ||
| RunPipelineActivity |
Show DescriptionSimulates the results of running a pipeline activity on a message payload. |
|
| SampleChannelData |
Show DescriptionRetrieves a sample of messages from the specified channel ingested during the specified timeframe. Up to 10 messages can be retrieved. |
|
| StartPipelineReprocessing |
Show DescriptionStarts the reprocessing of raw message data through the pipeline. |
|
| TagResource |
Show DescriptionAdds to or modifies the tags of the given resource. Tags are metadata that can be used to manage a resource. |
|
| UntagResource |
Show DescriptionRemoves the given tags (metadata) from the resource. |
|
| UpdateChannel | ||
| UpdateDataset | ||
| UpdateDatastore |
Iotdeviceadvisor Events
| Service | Event Name | Description |
|---|---|---|
| iotdeviceadvisor | CreateSuiteDefinition |
Show DescriptionCreates a Device Advisor test suite. |
| DeleteSuiteDefinition |
Show DescriptionDeletes a Device Advisor test suite. |
|
| GetSuiteDefinition |
Show DescriptionGets information about a Device Advisor test suite. |
|
| GetSuiteRun |
Show DescriptionGets information about a Device Advisor test suite run. |
|
| GetSuiteRunReport |
Show DescriptionGets a report download link for a successful Device Advisor qualifying test suite run. |
|
| ListSuiteDefinitions |
Show DescriptionLists the Device Advisor test suites you have created. |
|
| ListSuiteRuns |
Show DescriptionLists the runs of the specified Device Advisor test suite. You can list all runs of the test suite, or the runs of a specific version of the test suite. |
|
| ListTagsForResource |
Show DescriptionLists the tags attached to an IoT Device Advisor resource. |
|
| StartSuiteRun |
Show DescriptionStarts a Device Advisor test suite run. |
|
| StopSuiteRun |
Show DescriptionStops a Device Advisor test suite run that is currently running. |
|
| TagResource |
Show DescriptionAdds to and modifies existing tags of an IoT Device Advisor resource. |
|
| UntagResource |
Show DescriptionRemoves tags from an IoT Device Advisor resource. |
Iotevents-data Events
| Service | Event Name | Description |
|---|---|---|
| iotevents-data | BatchAcknowledgeAlarm |
Show DescriptionAcknowledges one or more alarms. The alarms change to theACKNOWLEDGED state after you acknowledge them.
|
| BatchDisableAlarm |
Show DescriptionDisables one or more alarms. The alarms change to theDISABLED state after you disable them.
|
|
| BatchEnableAlarm |
Show DescriptionEnables one or more alarms. The alarms change to theNORMAL state after you enable them.
|
|
| BatchPutMessage |
Show DescriptionSends a set of messages to the AWS IoT Events system. Each message payload is transformed into the input you specify ("inputName") and ingested into any detectors that monitor that input. If multiple messages are sent, the order in which the messages are processed isn't guaranteed. To guarantee ordering, you must send messages one at a time and wait for a successful response.
|
|
| BatchResetAlarm |
Show DescriptionResets one or more alarms. The alarms return to theNORMAL state after you reset them.
|
|
| BatchSnoozeAlarm |
Show DescriptionChanges one or more alarms to the snooze mode. The alarms change to theSNOOZE_DISABLED state after you set them to the snooze mode.
|
|
| BatchUpdateDetector |
Show DescriptionUpdates the state, variable values, and timer settings of one or more detectors (instances) of a specified detector model. |
|
| DescribeAlarm |
Show DescriptionRetrieves information about an alarm. |
|
| DescribeDetector |
Show DescriptionReturns information about the specified detector (instance). |
|
| ListAlarms |
Show DescriptionLists one or more alarms. The operation returns only the metadata associated with each alarm. |
Iotevents Events
| Service | Event Name | Description |
|---|---|---|
| iotevents | CreateAlarmModel |
Show DescriptionCreates an alarm model to monitor an AWS IoT Events input attribute. You can use the alarm to get notified when the value is outside a specified range. For more information, see Create an alarm model in the AWS IoT Events Developer Guide. |
| CreateDetectorModel |
Show DescriptionCreates a detector model. |
|
| CreateInput |
Show DescriptionCreates an input. |
|
| DeleteAlarmModel |
Show DescriptionDeletes an alarm model. Any alarm instances that were created based on this alarm model are also deleted. This action can't be undone. |
|
| DeleteDetectorModel |
Show DescriptionDeletes a detector model. Any active instances of the detector model are also deleted. |
|
| DeleteInput |
Show DescriptionDeletes an input. |
|
| DescribeAlarmModel |
Show DescriptionRetrieves information about an alarm model. If you don't specify a value for thealarmModelVersion parameter, the latest version is returned.
|
|
| DescribeDetectorModel |
Show DescriptionDescribes a detector model. If theversion parameter is not specified, information about the latest version is returned.
|
|
| DescribeDetectorModelAnalysis |
Show DescriptionRetrieves runtime information about a detector model analysis. |
|
| DescribeInput |
Show DescriptionDescribes an input. |
|
| DescribeLoggingOptions |
Show DescriptionRetrieves the current settings of the AWS IoT Events logging options. |
|
| GetDetectorModelAnalysisResults |
Show DescriptionRetrieves one or more analysis results of the detector model. |
|
| ListAlarmModelVersions |
Show DescriptionLists all the versions of an alarm model. The operation returns only the metadata associated with each alarm model version. |
|
| ListAlarmModels |
Show DescriptionLists the alarm models that you created. The operation returns only the metadata associated with each alarm model. |
|
| ListDetectorModelVersions |
Show DescriptionLists all the versions of a detector model. Only the metadata associated with each detector model version is returned. |
|
| ListDetectorModels |
Show DescriptionLists the detector models you have created. Only the metadata associated with each detector model is returned. |
|
| ListInputRoutings |
Show DescriptionLists one or more input routings. |
|
| ListInputs |
Show DescriptionLists the inputs you have created. |
|
| ListTagsForResource |
Show DescriptionLists the tags (metadata) you have assigned to the resource. |
|
| PutLoggingOptions | ||
| StartDetectorModelAnalysis |
Show DescriptionPerforms an analysis of your detector model. For more information, see Troubleshooting a detector model in the AWS IoT Events Developer Guide. |
|
| TagResource |
Show DescriptionAdds to or modifies the tags of the given resource. Tags are metadata that can be used to manage a resource. |
|
| UntagResource |
Show DescriptionRemoves the given tags (metadata) from the resource. |
|
| UpdateAlarmModel |
Show DescriptionUpdates an alarm model. Any alarms that were created based on the previous version are deleted and then created again as new data arrives. |
|
| UpdateDetectorModel |
Show DescriptionUpdates a detector model. Detectors (instances) spawned by the previous version are deleted and then re-created as new inputs arrive. |
Iotfleethub Events
| Service | Event Name | Description |
|---|---|---|
| iotfleethub | CreateApplication |
Show DescriptionCreates a Fleet Hub for AWS IoT Device Management web application. |
| DeleteApplication |
Show DescriptionDeletes a Fleet Hub for AWS IoT Device Management web application. |
|
| DescribeApplication |
Show DescriptionGets information about a Fleet Hub for AWS IoT Device Management web application. |
|
| ListApplications |
Show DescriptionGets a list of Fleet Hub for AWS IoT Device Management web applications for the current account. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified resource. |
|
| TagResource |
Show DescriptionAdds to or modifies the tags of the specified resource. Tags are metadata which can be used to manage a resource. |
|
| UntagResource |
Show DescriptionRemoves the specified tags (metadata) from the resource. |
Iotsecuretunneling Events
| Service | Event Name | Description |
|---|---|---|
| iotsecuretunneling | CloseTunnel |
Show DescriptionCloses a tunnel identified by the unique tunnel id. When aCloseTunnel request is received, we close the WebSocket connections between the client and proxy server so no data can be transmitted.
|
| DescribeTunnel |
Show DescriptionGets information about a tunnel identified by the unique tunnel id. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified resource. |
|
| ListTunnels |
Show DescriptionList all tunnels for an AWS account. Tunnels are listed by creation time in descending order, newer tunnels will be listed before older tunnels. |
|
| OpenTunnel |
Show DescriptionCreates a new tunnel, and returns two client access tokens for clients to use to connect to the AWS IoT Secure Tunneling proxy server. |
|
| TagResource |
Show DescriptionA resource tag. |
Iotsitewise Events
| Service | Event Name | Description |
|---|---|---|
| iotsitewise | AssociateAssets | |
| BatchAssociateProjectAssets |
Show DescriptionAssociates a group (batch) of assets with an IoT SiteWise Monitor project. |
|
| BatchDisassociateProjectAssets |
Show DescriptionDisassociates a group (batch) of assets from an IoT SiteWise Monitor project. |
|
| BatchPutAssetPropertyValue |
Show DescriptionSends a list of asset property values to IoT SiteWise. Each value is a timestamp-quality-value (TQV) data point. For more information, see Ingesting data using the API in the IoT SiteWise User Guide. To identify an asset property, you must specify one of the following:
TimestampOutOfRangeException error. For each asset property, IoT SiteWise overwrites TQVs with duplicate timestamps unless the newer TQV has a different quality. For example, if you store a TQV {T1, GOOD, V1}, then storing {T1, GOOD, V2} replaces the existing TQV. BatchPutAssetPropertyValue entry individually. For more information, see BatchPutAssetPropertyValue authorization in the IoT SiteWise User Guide.
|
|
| CreateAccessPolicy |
Show DescriptionCreates an access policy that grants the specified identity (Amazon Web Services SSO user, Amazon Web Services SSO group, or IAM user) access to the specified IoT SiteWise Monitor portal or project resource. |
|
| CreateAsset |
Show DescriptionCreates an asset from an existing asset model. For more information, see Creating assets in the IoT SiteWise User Guide. |
|
| CreateAssetModel |
Show DescriptionCreates an asset model from specified property and hierarchy definitions. You create assets from asset models. With asset models, you can easily create assets of the same type that have standardized definitions. Each asset created from a model inherits the asset model's property and hierarchy definitions. For more information, see Defining asset models in the IoT SiteWise User Guide. |
|
| CreateDashboard |
Show DescriptionCreates a dashboard in an IoT SiteWise Monitor project. |
|
| CreateGateway |
Show DescriptionCreates a gateway, which is a virtual or edge device that delivers industrial data streams from local servers to IoT SiteWise. For more information, see Ingesting data using a gateway in the IoT SiteWise User Guide. |
|
| CreatePortal |
Show DescriptionCreates a portal, which can contain projects and dashboards. IoT SiteWise Monitor uses Amazon Web Services SSO or IAM to authenticate portal users and manage user permissions. |
|
| CreateProject |
Show DescriptionCreates a project in the specified portal. |
|
| DeleteAccessPolicy |
Show DescriptionDeletes an access policy that grants the specified identity access to the specified IoT SiteWise Monitor resource. You can use this operation to revoke access to an IoT SiteWise Monitor resource. |
|
| DeleteAsset |
Show DescriptionDeletes an asset. This action can't be undone. For more information, see Deleting assets and models in the IoT SiteWise User Guide. |
|
| DeleteAssetModel |
Show DescriptionDeletes an asset model. This action can't be undone. You must delete all assets created from an asset model before you can delete the model. Also, you can't delete an asset model if a parent asset model exists that contains a property formula expression that depends on the asset model that you want to delete. For more information, see Deleting assets and models in the IoT SiteWise User Guide. |
|
| DeleteDashboard |
Show DescriptionDeletes a dashboard from IoT SiteWise Monitor. |
|
| DeleteGateway | ||
| DeletePortal |
Show DescriptionDeletes a portal from IoT SiteWise Monitor. |
|
| DeleteProject |
Show DescriptionDeletes a project from IoT SiteWise Monitor. |
|
| DescribeAccessPolicy |
Show DescriptionDescribes an access policy, which specifies an identity's access to an IoT SiteWise Monitor portal or project. |
|
| DescribeAsset |
Show DescriptionRetrieves information about an asset. |
|
| DescribeAssetModel |
Show DescriptionRetrieves information about an asset model. |
|
| DescribeAssetProperty |
Show DescriptionRetrieves information about an asset property. |
|
| DescribeDashboard |
Show DescriptionRetrieves information about a dashboard. |
|
| DescribeDefaultEncryptionConfiguration |
Show DescriptionRetrieves information about the default encryption configuration for the Amazon Web Services account in the default or specified Region. For more information, see Key management in the IoT SiteWise User Guide. |
|
| DescribeGateway |
Show DescriptionRetrieves information about a gateway. |
|
| DescribeGatewayCapabilityConfiguration |
Show DescriptionRetrieves information about a gateway capability configuration. Each gateway capability defines data sources for a gateway. A capability configuration can contain multiple data source configurations. If you define OPC-UA sources for a gateway in the IoT SiteWise console, all of your OPC-UA sources are stored in one capability configuration. To list all capability configurations for a gateway, use DescribeGateway. |
|
| DescribeLoggingOptions |
Show DescriptionRetrieves the current IoT SiteWise logging options. |
|
| DescribePortal |
Show DescriptionRetrieves information about a portal. |
|
| DescribeProject |
Show DescriptionRetrieves information about a project. |
|
| DescribeStorageConfiguration |
Show DescriptionRetrieves information about the storage configuration for IoT SiteWise. |
|
| DisassociateAssets | ||
| GetAssetPropertyAggregates |
Show DescriptionGets aggregated values for an asset property. For more information, see Querying aggregates in the IoT SiteWise User Guide. To identify an asset property, you must specify one of the following:
|
|
| GetAssetPropertyValue |
Show DescriptionGets an asset property's current value. For more information, see Querying current values in the IoT SiteWise User Guide. To identify an asset property, you must specify one of the following:
|
|
| GetAssetPropertyValueHistory |
Show DescriptionGets the history of an asset property's values. For more information, see Querying historical values in the IoT SiteWise User Guide. To identify an asset property, you must specify one of the following:
|
|
| GetInterpolatedAssetPropertyValues |
Show DescriptionGet interpolated values for an asset property for a specified time interval, during a period of time. If your time series is missing data points during the specified time interval, you can use interpolation to estimate the missing data. For example, you can use this operation to return the interpolated temperature values for a wind turbine every 24 hours over a duration of 7 days. To identify an asset property, you must specify one of the following:
|
|
| ListAccessPolicies |
Show DescriptionRetrieves a paginated list of access policies for an identity (an Amazon Web Services SSO user, an Amazon Web Services SSO group, or an IAM user) or an IoT SiteWise Monitor resource (a portal or project). |
|
| ListAssetModels |
Show DescriptionRetrieves a paginated list of summaries of all asset models. |
|
| ListAssetRelationships |
Show DescriptionRetrieves a paginated list of asset relationships for an asset. You can use this operation to identify an asset's root asset and all associated assets between that asset and its root. |
|
| ListAssets |
Show DescriptionRetrieves a paginated list of asset summaries. You can use this operation to do the following:
|
|
| ListAssociatedAssets |
Show DescriptionRetrieves a paginated list of associated assets. You can use this operation to do the following:
|
|
| ListDashboards |
Show DescriptionRetrieves a paginated list of dashboards for an IoT SiteWise Monitor project. |
|
| ListGateways |
Show DescriptionRetrieves a paginated list of gateways. |
|
| ListPortals |
Show DescriptionRetrieves a paginated list of IoT SiteWise Monitor portals. |
|
| ListProjectAssets |
Show DescriptionRetrieves a paginated list of assets associated with an IoT SiteWise Monitor project. |
|
| ListProjects |
Show DescriptionRetrieves a paginated list of projects for an IoT SiteWise Monitor portal. |
|
| ListTagsForResource |
Show DescriptionRetrieves the list of tags for an IoT SiteWise resource. |
|
| PutDefaultEncryptionConfiguration |
Show DescriptionSets the default encryption configuration for the Amazon Web Services account. For more information, see Key management in the IoT SiteWise User Guide. |
|
| PutLoggingOptions |
Show DescriptionSets logging options for IoT SiteWise. |
|
| PutStorageConfiguration |
Show DescriptionConfigures storage settings for IoT SiteWise. |
|
| TagResource |
Show DescriptionAdds tags to an IoT SiteWise resource. If a tag already exists for the resource, this operation updates the tag's value. |
|
| UntagResource |
Show DescriptionRemoves a tag from an IoT SiteWise resource. |
|
| UpdateAccessPolicy |
Show DescriptionUpdates an existing access policy that specifies an identity's access to an IoT SiteWise Monitor portal or project resource. |
|
| UpdateAsset |
Show DescriptionUpdates an asset's name. For more information, see Updating assets and models in the IoT SiteWise User Guide. |
|
| UpdateAssetModel |
Show DescriptionUpdates an asset model and all of the assets that were created from the model. Each asset created from the model inherits the updated asset model's property and hierarchy definitions. For more information, see Updating assets and models in the IoT SiteWise User Guide. |
|
| UpdateAssetProperty | ||
| UpdateDashboard |
Show DescriptionUpdates an IoT SiteWise Monitor dashboard. |
|
| UpdateGateway | ||
| UpdateGatewayCapabilityConfiguration |
Show DescriptionUpdates a gateway capability configuration or defines a new capability configuration. Each gateway capability defines data sources for a gateway. A capability configuration can contain multiple data source configurations. If you define OPC-UA sources for a gateway in the IoT SiteWise console, all of your OPC-UA sources are stored in one capability configuration. To list all capability configurations for a gateway, use DescribeGateway. |
|
| UpdatePortal |
Show DescriptionUpdates an IoT SiteWise Monitor portal. |
Iotthingsgraph Events
| Service | Event Name | Description |
|---|---|---|
| iotthingsgraph | AssociateEntityToThing |
Show DescriptionAssociates a device with a concrete thing that is in the user's registry. A thing can be associated with only one device at a time. If you associate a thing with a new device id, its previous association will be removed. |
| CreateFlowTemplate |
Show DescriptionCreates a workflow template. Workflows can be created only in the user's namespace. (The public namespace contains only entities.) The workflow can contain only entities in the specified namespace. The workflow is validated against the entities in the latest version of the user's namespace unless another namespace version is specified in the request. |
|
| CreateSystemInstance |
Show DescriptionCreates a system instance. This action validates the system instance, prepares the deployment-related resources. For Greengrass deployments, it updates the Greengrass group that is specified by thegreengrassGroupName parameter. It also adds a file to the S3 bucket specified by the s3BucketName parameter. You need to call DeploySystemInstance after running this action. For Greengrass deployments, since this action modifies and adds resources to a Greengrass group and an S3 bucket on the caller's behalf, the calling identity must have write permissions to both the specified Greengrass group and S3 bucket. Otherwise, the call will fail with an authorization error. For cloud deployments, this action requires a flowActionsRoleArn value. This is an IAM role that has permissions to access AWS services, such as AWS Lambda and AWS IoT, that the flow uses when it executes. If the definition document doesn't specify a version of the user's namespace, the latest version will be used by default.
|
|
| CreateSystemTemplate |
Show DescriptionCreates a system. The system is validated against the entities in the latest version of the user's namespace unless another namespace version is specified in the request. |
|
| DeleteFlowTemplate |
Show DescriptionDeletes a workflow. Any new system or deployment that contains this workflow will fail to update or deploy. Existing deployments that contain the workflow will continue to run (since they use a snapshot of the workflow taken at the time of deployment). |
|
| DeleteNamespace |
Show DescriptionDeletes the specified namespace. This action deletes all of the entities in the namespace. Delete the systems and flows that use entities in the namespace before performing this action. |
|
| DeleteSystemInstance |
Show DescriptionDeletes a system instance. Only system instances that have never been deployed, or that have been undeployed can be deleted. Users can create a new system instance that has the same ID as a deleted system instance. |
|
| DeleteSystemTemplate |
Show DescriptionDeletes a system. New deployments can't contain the system after its deletion. Existing deployments that contain the system will continue to work because they use a snapshot of the system that is taken when it is deployed. |
|
| DeploySystemInstance |
Show DescriptionGreengrass and Cloud Deployments Deploys the system instance to the target specified inCreateSystemInstance. Greengrass Deployments If the system or any workflows and entities have been updated before this action is called, then the deployment will create a new Amazon Simple Storage Service resource file and then deploy it. Since this action creates a Greengrass deployment on the caller's behalf, the calling identity must have write permissions to the specified Greengrass group. Otherwise, the call will fail with an authorization error. For information about the artifacts that get added to your Greengrass core device when you use this API, see AWS IoT Things Graph and AWS IoT Greengrass.
|
|
| DeprecateFlowTemplate |
Show DescriptionDeprecates the specified workflow. This action marks the workflow for deletion. Deprecated flows can't be deployed, but existing deployments will continue to run. |
|
| DeprecateSystemTemplate |
Show DescriptionDeprecates the specified system. |
|
| DescribeNamespace |
Show DescriptionGets the latest version of the user's namespace and the public version that it is tracking. |
|
| DissociateEntityFromThing |
Show DescriptionDissociates a device entity from a concrete thing. The action takes only the type of the entity that you need to dissociate because only one entity of a particular type can be associated with a thing. |
|
| GetEntities |
Show DescriptionGets definitions of the specified entities. Uses the latest version of the user's namespace by default. This API returns the following TDM entities.
|
|
| GetFlowTemplate |
Show DescriptionGets the latest version of theDefinitionDocument and FlowTemplateSummary for the specified workflow.
|
|
| GetFlowTemplateRevisions |
Show DescriptionGets revisions of the specified workflow. Only the last 100 revisions are stored. If the workflow has been deprecated, this action will return revisions that occurred before the deprecation. This action won't work for workflows that have been deleted. |
|
| GetNamespaceDeletionStatus |
Show DescriptionGets the status of a namespace deletion task. |
|
| GetSystemInstance |
Show DescriptionGets a system instance. |
|
| GetSystemTemplate |
Show DescriptionGets a system. |
|
| GetSystemTemplateRevisions |
Show DescriptionGets revisions made to the specified system template. Only the previous 100 revisions are stored. If the system has been deprecated, this action will return the revisions that occurred before its deprecation. This action won't work with systems that have been deleted. |
|
| GetUploadStatus |
Show DescriptionGets the status of the specified upload. |
|
| ListFlowExecutionMessages |
Show DescriptionReturns a list of objects that contain information about events in a flow execution. |
|
| ListTagsForResource |
Show DescriptionLists all tags on an AWS IoT Things Graph resource. |
|
| SearchEntities |
Show DescriptionSearches for entities of the specified type. You can search for entities in your namespace and the public namespace that you're tracking. |
|
| SearchFlowExecutions |
Show DescriptionSearches for AWS IoT Things Graph workflow execution instances. |
|
| SearchFlowTemplates |
Show DescriptionSearches for summary information about workflows. |
|
| SearchSystemInstances |
Show DescriptionSearches for system instances in the user's account. |
|
| SearchSystemTemplates |
Show DescriptionSearches for summary information about systems in the user's account. You can filter by the ID of a workflow to return only systems that use the specified workflow. |
|
| SearchThings |
Show DescriptionSearches for things associated with the specified entity. You can search by both device and device model. For example, if two different devices, camera1 and camera2, implement the camera device model, the user can associate thing1 to camera1 and thing2 to camera2.SearchThings(camera2) will return only thing2, but SearchThings(camera) will return both thing1 and thing2. This action searches for exact matches and doesn't perform partial text matching.
|
|
| TagResource |
Show DescriptionCreates a tag for the specified resource. |
|
| UndeploySystemInstance |
Show DescriptionRemoves a system instance from its target (Cloud or Greengrass). |
|
| UntagResource |
Show DescriptionRemoves a tag from the specified resource. |
|
| UpdateFlowTemplate |
Show DescriptionUpdates the specified workflow. All deployed systems and system instances that use the workflow will see the changes in the flow when it is redeployed. If you don't want this behavior, copy the workflow (creating a new workflow with a different ID), and update the copy. The workflow can contain only entities in the specified namespace. |
|
| UpdateSystemTemplate |
Show DescriptionUpdates the specified system. You don't need to run this action after updating a workflow. Any deployment that uses the system will see the changes in the system when it is redeployed. |
Iotwireless Events
| Service | Event Name | Description |
|---|---|---|
| iotwireless | AssociateAwsAccountWithPartnerAccount |
Show DescriptionAssociates a partner account with your AWS account. |
| AssociateMulticastGroupWithFuotaTask |
Show DescriptionAssociate a multicast group with a FUOTA task. |
|
| AssociateWirelessDeviceWithFuotaTask |
Show DescriptionAssociate a wireless device with a FUOTA task. |
|
| AssociateWirelessDeviceWithMulticastGroup |
Show DescriptionAssociates a wireless device with a multicast group. |
|
| AssociateWirelessDeviceWithThing |
Show DescriptionAssociates a wireless device with a thing. |
|
| AssociateWirelessGatewayWithCertificate |
Show DescriptionAssociates a wireless gateway with a certificate. |
|
| AssociateWirelessGatewayWithThing |
Show DescriptionAssociates a wireless gateway with a thing. |
|
| CancelMulticastGroupSession |
Show DescriptionCancels an existing multicast group session. |
|
| CreateDestination |
Show DescriptionCreates a new destination that maps a device message to an AWS IoT rule. |
|
| CreateDeviceProfile |
Show DescriptionCreates a new device profile. |
|
| CreateFuotaTask |
Show DescriptionCreates a FUOTA task. |
|
| CreateMulticastGroup |
Show DescriptionCreates a multicast group. |
|
| CreateServiceProfile |
Show DescriptionCreates a new service profile. |
|
| CreateWirelessDevice |
Show DescriptionProvisions a wireless device. |
|
| CreateWirelessGateway |
Show DescriptionProvisions a wireless gateway. |
|
| CreateWirelessGatewayTask |
Show DescriptionCreates a task for a wireless gateway. |
|
| CreateWirelessGatewayTaskDefinition |
Show DescriptionCreates a gateway task definition. |
|
| DeleteDestination |
Show DescriptionDeletes a destination. |
|
| DeleteDeviceProfile |
Show DescriptionDeletes a device profile. |
|
| DeleteFuotaTask |
Show DescriptionDeletes a FUOTA task. |
|
| DeleteMulticastGroup |
Show DescriptionDeletes a multicast group if it is not in use by a fuota task. |
|
| DeleteServiceProfile |
Show DescriptionDeletes a service profile. |
|
| DeleteWirelessDevice |
Show DescriptionDeletes a wireless device. |
|
| DeleteWirelessGateway |
Show DescriptionDeletes a wireless gateway. |
|
| DeleteWirelessGatewayTask |
Show DescriptionDeletes a wireless gateway task. |
|
| DeleteWirelessGatewayTaskDefinition |
Show DescriptionDeletes a wireless gateway task definition. Deleting this task definition does not affect tasks that are currently in progress. |
|
| DisassociateAwsAccountFromPartnerAccount |
Show DescriptionDisassociates your AWS account from a partner account. IfPartnerAccountId and PartnerType are null, disassociates your AWS account from all partner accounts.
|
|
| DisassociateMulticastGroupFromFuotaTask |
Show DescriptionDisassociates a multicast group from a fuota task. |
|
| DisassociateWirelessDeviceFromFuotaTask |
Show DescriptionDisassociates a wireless device from a FUOTA task. |
|
| DisassociateWirelessDeviceFromMulticastGroup |
Show DescriptionDisassociates a wireless device from a multicast group. |
|
| DisassociateWirelessDeviceFromThing |
Show DescriptionDisassociates a wireless device from its currently associated thing. |
|
| DisassociateWirelessGatewayFromCertificate |
Show DescriptionDisassociates a wireless gateway from its currently associated certificate. |
|
| DisassociateWirelessGatewayFromThing |
Show DescriptionDisassociates a wireless gateway from its currently associated thing. |
|
| GetDestination |
Show DescriptionGets information about a destination. |
|
| GetDeviceProfile |
Show DescriptionGets information about a device profile. |
|
| GetFuotaTask |
Show DescriptionGets information about a FUOTA task. |
|
| GetLogLevelsByResourceTypes |
Show DescriptionReturns current default log levels or log levels by resource types. Based on resource types, log levels can be for wireless device log options or wireless gateway log options. |
|
| GetMulticastGroup |
Show DescriptionGets information about a multicast group. |
|
| GetMulticastGroupSession |
Show DescriptionGets information about a multicast group session. |
|
| GetPartnerAccount |
Show DescriptionGets information about a partner account. IfPartnerAccountId and PartnerType are null, returns all partner accounts.
|
|
| GetResourceEventConfiguration |
Show DescriptionGet the event configuration for a particular resource identifier. |
|
| GetResourceLogLevel |
Show DescriptionFetches the log-level override, if any, for a given resource-ID and resource-type. It can be used for a wireless device or a wireless gateway. |
|
| GetServiceEndpoint |
Show DescriptionGets the account-specific endpoint for Configuration and Update Server (CUPS) protocol or LoRaWAN Network Server (LNS) connections. |
|
| GetServiceProfile |
Show DescriptionGets information about a service profile. |
|
| GetWirelessDevice |
Show DescriptionGets information about a wireless device. |
|
| GetWirelessDeviceStatistics |
Show DescriptionGets operating information about a wireless device. |
|
| GetWirelessGateway |
Show DescriptionGets information about a wireless gateway. |
|
| GetWirelessGatewayCertificate |
Show DescriptionGets the ID of the certificate that is currently associated with a wireless gateway. |
|
| GetWirelessGatewayFirmwareInformation |
Show DescriptionGets the firmware version and other information about a wireless gateway. |
|
| GetWirelessGatewayStatistics |
Show DescriptionGets operating information about a wireless gateway. |
|
| GetWirelessGatewayTask |
Show DescriptionGets information about a wireless gateway task. |
|
| GetWirelessGatewayTaskDefinition |
Show DescriptionGets information about a wireless gateway task definition. |
|
| ListDestinations |
Show DescriptionLists the destinations registered to your AWS account. |
|
| ListDeviceProfiles |
Show DescriptionLists the device profiles registered to your AWS account. |
|
| ListFuotaTasks |
Show DescriptionLists the FUOTA tasks registered to your AWS account. |
|
| ListMulticastGroups |
Show DescriptionLists the multicast groups registered to your AWS account. |
|
| ListMulticastGroupsByFuotaTask |
Show DescriptionList all multicast groups associated with a fuota task. |
|
| ListPartnerAccounts |
Show DescriptionLists the partner accounts associated with your AWS account. |
|
| ListServiceProfiles |
Show DescriptionLists the service profiles registered to your AWS account. |
|
| ListTagsForResource |
Show DescriptionLists the tags (metadata) you have assigned to the resource. |
|
| ListWirelessDevices |
Show DescriptionLists the wireless devices registered to your AWS account. |
|
| ListWirelessGatewayTaskDefinitions |
Show DescriptionList the wireless gateway tasks definitions registered to your AWS account. |
|
| ListWirelessGateways |
Show DescriptionLists the wireless gateways registered to your AWS account. |
|
| PutResourceLogLevel |
Show DescriptionSets the log-level override for a resource-ID and resource-type. This option can be specified for a wireless gateway or a wireless device. A limit of 200 log level override can be set per account. |
|
| ResetAllResourceLogLevels |
Show DescriptionRemoves the log-level overrides for all resources; both wireless devices and wireless gateways. |
|
| ResetResourceLogLevel |
Show DescriptionRemoves the log-level override, if any, for a specific resource-ID and resource-type. It can be used for a wireless device or a wireless gateway. |
|
| SendDataToMulticastGroup |
Show DescriptionSends the specified data to a multicast group. |
|
| SendDataToWirelessDevice |
Show DescriptionSends a decrypted application data frame to a device. |
|
| StartBulkAssociateWirelessDeviceWithMulticastGroup |
Show DescriptionStarts a bulk association of all qualifying wireless devices with a multicast group. |
|
| StartBulkDisassociateWirelessDeviceFromMulticastGroup |
Show DescriptionStarts a bulk disassociatin of all qualifying wireless devices from a multicast group. |
|
| StartFuotaTask |
Show DescriptionStarts a FUOTA task. |
|
| StartMulticastGroupSession |
Show DescriptionStarts a multicast group session. |
|
| TagResource |
Show DescriptionAdds a tag to a resource. |
|
| TestWirelessDevice |
Show DescriptionSimulates a provisioned device by sending an uplink data payload ofHello.
|
|
| UntagResource |
Show DescriptionRemoves one or more tags from a resource. |
|
| UpdateDestination |
Show DescriptionUpdates properties of a destination. |
|
| UpdateFuotaTask |
Show DescriptionUpdates properties of a FUOTA task. |
|
| UpdateLogLevelsByResourceTypes |
Show DescriptionSet default log level, or log levels by resource types. This can be for wireless device log options or wireless gateways log options and is used to control the log messages that'll be displayed in CloudWatch. |
|
| UpdateMulticastGroup |
Show DescriptionUpdates properties of a multicast group session. |
|
| UpdatePartnerAccount |
Show DescriptionUpdates properties of a partner account. |
|
| UpdateResourceEventConfiguration |
Show DescriptionUpdate the event configuration for a particular resource identifier. |
|
| UpdateWirelessDevice |
Show DescriptionUpdates properties of a wireless device. |
Ivs Events
| Service | Event Name | Description |
|---|---|---|
| ivs | BatchGetChannel |
Show DescriptionPerforms GetChannel on multiple ARNs simultaneously. |
| BatchGetStreamKey |
Show DescriptionPerforms GetStreamKey on multiple ARNs simultaneously. |
|
| CreateChannel |
Show DescriptionCreates a new channel and an associated stream key to start streaming. |
|
| CreateRecordingConfiguration |
Show DescriptionCreates a new recording configuration, used to enable recording to Amazon S3. Known issue: In the us-east-1 region, if you use the Amazon Web Services CLI to create a recording configuration, it returns success even if the S3 bucket is in a different region. In this case, thestate of the recording configuration is CREATE_FAILED (instead of ACTIVE). (In other regions, the CLI correctly returns failure if the bucket is in a different region.) Workaround: Ensure that your S3 bucket is in the same region as the recording configuration. If you create a recording configuration in a different region as your S3 bucket, delete that recording configuration and create a new one with an S3 bucket from the correct region.
|
|
| CreateStreamKey |
Show DescriptionCreates a stream key, used to initiate a stream, for the specified channel ARN. Note that CreateChannel creates a stream key. If you subsequently use CreateStreamKey on the same channel, it will fail because a stream key already exists and there is a limit of 1 stream key per channel. To reset the stream key on a channel, use DeleteStreamKey and then CreateStreamKey. |
|
| DeleteChannel | ||
| DeletePlaybackKeyPair |
Show DescriptionDeletes a specified authorization key pair. This invalidates future viewer tokens generated using the key pair’sprivateKey. For more information, see Setting Up Private Channels in the Amazon IVS User Guide.
|
|
| DeleteRecordingConfiguration | ||
| DeleteStreamKey | ||
| GetChannel |
Show DescriptionGets the channel configuration for the specified channel ARN. See also BatchGetChannel. |
|
| GetPlaybackKeyPair |
Show DescriptionGets a specified playback authorization key pair and returns thearn and fingerprint. The privateKey held by the caller can be used to generate viewer authorization tokens, to grant viewers access to private channels. For more information, see Setting Up Private Channels in the Amazon IVS User Guide.
|
|
| GetRecordingConfiguration |
Show DescriptionGets the recording configuration for the specified ARN. |
|
| GetStream |
Show DescriptionGets information about the active (live) stream on a specified channel. |
|
| GetStreamKey |
Show DescriptionGets stream-key information for a specified ARN. |
|
| ImportPlaybackKeyPair |
Show DescriptionImports the public portion of a new key pair and returns itsarn and fingerprint. The privateKey can then be used to generate viewer authorization tokens, to grant viewers access to private channels. For more information, see Setting Up Private Channels in the Amazon IVS User Guide.
|
|
| ListChannels |
Show DescriptionGets summary information about all channels in your account, in the Amazon Web Services region where the API request is processed. This list can be filtered to match a specified name or recording-configuration ARN. Filters are mutually exclusive and cannot be used together. If you try to use both filters, you will get an error (409 ConflictException). |
|
| ListPlaybackKeyPairs |
Show DescriptionGets summary information about playback key pairs. For more information, see Setting Up Private Channels in the Amazon IVS User Guide. |
|
| ListRecordingConfigurations |
Show DescriptionGets summary information about all recording configurations in your account, in the Amazon Web Services region where the API request is processed. |
|
| ListStreamKeys |
Show DescriptionGets summary information about stream keys for the specified channel. |
|
| ListStreams |
Show DescriptionGets summary information about live streams in your account, in the Amazon Web Services region where the API request is processed. |
|
| ListTagsForResource |
Show DescriptionGets information about Amazon Web Services tags for the specified ARN. |
|
| PutMetadata | ||
| StopStream |
Show DescriptionDisconnects the incoming RTMPS stream for the specified channel. Can be used in conjunction with DeleteStreamKey to prevent further streaming to a channel.streamKey attached to the channel. |
|
| TagResource |
Show DescriptionAdds or updates tags for the Amazon Web Services resource with the specified ARN. |
|
| UntagResource |
Show DescriptionRemoves tags from the resource with the specified ARN. |
Kafka Events
| Service | Event Name | Description |
|---|---|---|
| kafka | BatchAssociateScramSecret | |
| CreateCluster | ||
| CreateConfiguration | ||
| DeleteCluster | ||
| DeleteConfiguration | ||
| DescribeCluster | ||
| DescribeClusterOperation | ||
| DescribeConfiguration | ||
| DescribeConfigurationRevision | ||
| BatchDisassociateScramSecret | ||
| GetBootstrapBrokers | ||
| GetCompatibleKafkaVersions | ||
| ListClusterOperations | ||
| ListClusters | ||
| ListConfigurationRevisions | ||
| ListConfigurations | ||
| ListKafkaVersions | ||
| ListNodes | ||
| ListScramSecrets | ||
| ListTagsForResource | ||
| RebootBroker |
Show DescriptionReboots brokers. |
|
| TagResource | ||
| UntagResource | ||
| UpdateBrokerCount | ||
| UpdateBrokerType | ||
| UpdateBrokerStorage | ||
| UpdateConfiguration | ||
| UpdateClusterConfiguration | ||
| UpdateClusterKafkaVersion | ||
| UpdateMonitoring |
Kafkaconnect Events
| Service | Event Name | Description |
|---|---|---|
| kafkaconnect | CreateConnector |
Show DescriptionCreates a connector using the specified properties. |
| CreateCustomPlugin |
Show DescriptionCreates a custom plugin using the specified properties. |
|
| CreateWorkerConfiguration |
Show DescriptionCreates a worker configuration using the specified properties. |
|
| DeleteConnector |
Show DescriptionDeletes the specified connector. |
|
| DescribeConnector |
Show DescriptionReturns summary information about the connector. |
|
| DescribeCustomPlugin |
Show DescriptionA summary description of the custom plugin. |
|
| DescribeWorkerConfiguration |
Show DescriptionReturns information about a worker configuration. |
|
| ListConnectors |
Show DescriptionReturns a list of all the connectors in this account and Region. The list is limited to connectors whose name starts with the specified prefix. The response also includes a description of each of the listed connectors. |
|
| ListCustomPlugins |
Show DescriptionReturns a list of all of the custom plugins in this account and Region. |
|
| ListWorkerConfigurations |
Show DescriptionReturns a list of all of the worker configurations in this account and Region. |
Kendra Events
| Service | Event Name | Description |
|---|---|---|
| kendra | BatchDeleteDocument |
Show DescriptionRemoves one or more documents from an index. The documents must have been added with theBatchPutDocument operation. The documents are deleted asynchronously. You can see the progress of the deletion by using Amazon Web Services CloudWatch. Any error messages related to the processing of the batch are sent to you CloudWatch log.
|
| BatchGetDocumentStatus |
Show DescriptionReturns the indexing status for one or more documents submitted with the BatchPutDocument operation. When you use theBatchPutDocument operation, documents are indexed asynchronously. You can use the BatchGetDocumentStatus operation to get the current status of a list of documents so that you can determine if they have been successfully indexed. You can also use the BatchGetDocumentStatus operation to check the status of the BatchDeleteDocument operation. When a document is deleted from the index, Amazon Kendra returns NOT_FOUND as the status.
|
|
| BatchPutDocument |
Show DescriptionAdds one or more documents to an index. TheBatchPutDocument operation enables you to ingest inline documents or a set of documents stored in an Amazon S3 bucket. Use this operation to ingest your text and unstructured text into an index, add custom attributes to the documents, and to attach an access control list to the documents added to the index. The documents are indexed asynchronously. You can see the progress of the batch using Amazon Web Services CloudWatch. Any error messages related to processing the batch are sent to your Amazon Web Services CloudWatch log.
|
|
| ClearQuerySuggestions | ||
| CreateDataSource |
Show DescriptionCreates a data source that you want to use with an Amazon Kendra index. You specify a name, data source connector type and description for your data source. You also specify configuration information for the data source connector.CreateDataSource is a synchronous operation. The operation returns 200 if the data source was successfully created. Otherwise, an exception is raised.
|
|
| CreateFaq |
Show DescriptionCreates an new set of frequently asked question (FAQ) questions and answers. |
|
| CreateIndex |
Show DescriptionCreates a new Amazon Kendra index. Index creation is an asynchronous operation. To determine if index creation has completed, check theStatus field returned from a call to DescribeIndex. The Status field is set to ACTIVE when the index is ready to use. Once the index is active you can index your documents using the BatchPutDocument operation or using one of the supported data sources.
|
|
| CreateQuerySuggestionsBlockList |
Show DescriptionCreates a block list to exlcude certain queries from suggestions. Any query that contains words or phrases specified in the block list is blocked or filtered out from being shown as a suggestion. You need to provide the file location of your block list text file in your S3 bucket. In your text file, enter each block word or phrase on a separate line. For information on the current quota limits for block lists, see Quotas for Amazon Kendra. |
|
| CreateThesaurus |
Show DescriptionCreates a thesaurus for an index. The thesaurus contains a list of synonyms in Solr format. |
|
| DeleteDataSource | ||
| DeleteFaq | ||
| DeleteIndex | ||
| DeletePrincipalMapping | ||
| DeleteQuerySuggestionsBlockList | ||
| DeleteThesaurus | ||
| DescribeDataSource |
Show DescriptionGets information about a Amazon Kendra data source. |
|
| DescribeFaq |
Show DescriptionGets information about an FAQ list. |
|
| DescribeIndex |
Show DescriptionDescribes an existing Amazon Kendra index |
|
| DescribePrincipalMapping |
Show DescriptionDescribes the processing ofPUT and DELETE actions for mapping users to their groups. This includes information on the status of actions currently processing or yet to be processed, when actions were last updated, when actions were received by Amazon Kendra, the latest action that should process and apply after other actions, and useful error messages if an action could not be processed.
|
|
| DescribeQuerySuggestionsBlockList |
Show DescriptionDescribes a block list used for query suggestions for an index. This is used to check the current settings that are applied to a block list. |
|
| DescribeQuerySuggestionsConfig |
Show DescriptionDescribes the settings of query suggestions for an index. This is used to check the current settings applied to query suggestions. |
|
| DescribeThesaurus |
Show DescriptionDescribes an existing Amazon Kendra thesaurus. |
|
| GetQuerySuggestions |
Show DescriptionFetches the queries that are suggested to your users. |
|
| ListDataSourceSyncJobs |
Show DescriptionGets statistics about synchronizing Amazon Kendra with a data source. |
|
| ListDataSources |
Show DescriptionLists the data sources that you have created. |
|
| ListFaqs |
Show DescriptionGets a list of FAQ lists associated with an index. |
|
| ListGroupsOlderThanOrderingId |
Show DescriptionProvides a list of groups that are mapped to users before a given ordering or timestamp identifier. |
|
| ListIndices |
Show DescriptionLists the Amazon Kendra indexes that you have created. |
|
| ListQuerySuggestionsBlockLists |
Show DescriptionLists the block lists used for query suggestions for an index. For information on the current quota limits for block lists, see Quotas for Amazon Kendra. |
|
| ListTagsForResource |
Show DescriptionGets a list of tags associated with a specified resource. Indexes, FAQs, and data sources can have tags associated with them. |
|
| ListThesauri |
Show DescriptionLists the Amazon Kendra thesauri associated with an index. |
|
| PutPrincipalMapping | ||
| Query |
Show DescriptionSearches an active index. Use this API to search your documents using query. TheQuery operation enables to do faceted search and to filter results based on document attributes. It also enables you to provide user context that Amazon Kendra uses to enforce document access control in the search results. Amazon Kendra searches your index for text content and question and answer (FAQ) content. By default the response contains three types of results.
QueryResultTypeConfig parameter. Each query returns the 100 most relevant results.
|
|
| StartDataSourceSyncJob |
Show DescriptionStarts a synchronization job for a data source. If a synchronization job is already in progress, Amazon Kendra returns aResourceInUseException exception.
|
|
| StopDataSourceSyncJob | ||
| SubmitFeedback | ||
| TagResource |
Show DescriptionAdds the specified tag to the specified index, FAQ, or data source resource. If the tag already exists, the existing value is replaced with the new value. |
|
| UntagResource |
Show DescriptionRemoves a tag from an index, FAQ, or a data source. |
|
| UpdateDataSource | ||
| UpdateIndex | ||
| UpdateQuerySuggestionsBlockList | ||
| UpdateQuerySuggestionsConfig |
Kinesis-video-media Events
| Service | Event Name | Description |
|---|---|---|
| kinesis-video-media | GetMedia |
Show DescriptionUse this API to retrieve media content from a Kinesis video stream. In the request, you identify the stream name or stream Amazon Resource Name (ARN), and the starting chunk. Kinesis Video Streams then returns a stream of chunks in order by fragment number.GetDataEndpoint API to get an endpoint. Then send the GetMedia requests to this endpoint using the --endpoint-url parameter. GetMedia API returns a stream of these chunks starting from the chunk that you specify in the request. The following limits apply when using the GetMedia API:
|
Kinesis-video-signaling Events
| Service | Event Name | Description |
|---|---|---|
| kinesis-video-signaling | GetIceServerConfig |
Show DescriptionGets the Interactive Connectivity Establishment (ICE) server configuration information, including URIs, username, and password which can be used to configure the WebRTC connection. The ICE component uses this configuration information to setup the WebRTC connection, including authenticating with the Traversal Using Relays around NAT (TURN) relay server. TURN is a protocol that is used to improve the connectivity of peer-to-peer applications. By providing a cloud-based relay service, TURN ensures that a connection can be established even when one or more peers are incapable of a direct peer-to-peer connection. For more information, see A REST API For Access To TURN Services. You can invoke this API to establish a fallback mechanism in case either of the peers is unable to establish a direct peer-to-peer connection over a signaling channel. You must specify either a signaling channel ARN or the client ID in order to invoke this API. |
Kinesis Events
| Service | Event Name | Description |
|---|---|---|
| kinesis | AddTagsToStream | |
| CreateStream | ||
| DecreaseStreamRetentionPeriod | ||
| DeleteStream | ||
| DeregisterStreamConsumer | ||
| DescribeLimits |
Show DescriptionDescribes the shard limits and usage for the account. If you update your account limits, the old limits might be returned for a few minutes. This operation has a limit of one transaction per second per account. |
|
| DescribeStream |
Show DescriptionDescribes the specified Kinesis data stream. The information returned includes the stream name, Amazon Resource Name (ARN), creation time, enhanced metric configuration, and shard map. The shard map is an array of shard objects. For each shard object, there is the hash key and sequence number ranges that the shard spans, and the IDs of any earlier shards that played in a role in creating the shard. Every record ingested in the stream is identified by a sequence number, which is assigned when the record is put into the stream. You can limit the number of shards returned by each call. For more information, see Retrieving Shards from a Stream in the Amazon Kinesis Data Streams Developer Guide. There are no guarantees about the chronological order shards returned. To process shards in chronological order, use the ID of the parent shard to track the lineage to the oldest shard. This operation has a limit of 10 transactions per second per account. |
|
| DescribeStreamConsumer |
Show DescriptionTo get the description of a registered consumer, provide the ARN of the consumer. Alternatively, you can provide the ARN of the data stream and the name you gave the consumer when you registered it. You may also provide all three parameters, as long as they don't conflict with each other. If you don't know the name or ARN of the consumer that you want to describe, you can use the ListStreamConsumers operation to get a list of the descriptions of all the consumers that are currently registered with a given data stream. This operation has a limit of 20 transactions per second per stream. |
|
| DescribeStreamSummary |
Show DescriptionProvides a summarized description of the specified Kinesis data stream without the shard list. The information returned includes the stream name, Amazon Resource Name (ARN), status, record retention period, approximate creation time, monitoring, encryption details, and open shard count. DescribeStreamSummary has a limit of 20 transactions per second per account. |
|
| DisableEnhancedMonitoring |
Show DescriptionDisables enhanced monitoring. |
|
| EnableEnhancedMonitoring |
Show DescriptionEnables enhanced Kinesis data stream monitoring for shard-level metrics. |
|
| GetRecords |
Show DescriptionGets data records from a Kinesis data stream's shard. Specify a shard iterator using theShardIterator parameter. The shard iterator specifies the position in the shard from which you want to start reading data records sequentially. If there are no records available in the portion of the shard that the iterator points to, GetRecords returns an empty list. It might take multiple calls to get to a portion of the shard that contains records. You can scale by provisioning multiple shards per stream while considering service limits (for more information, see Amazon Kinesis Data Streams Limits in the Amazon Kinesis Data Streams Developer Guide). Your application should have one thread per shard, each reading continuously from its stream. To read from a stream continually, call GetRecords in a loop. Use GetShardIterator to get the shard iterator to specify in the first GetRecords call. GetRecords returns a new shard iterator in NextShardIterator. Specify the shard iterator returned in NextShardIterator in subsequent calls to GetRecords. If the shard has been closed, the shard iterator can't return more data and GetRecords returns null in NextShardIterator. You can terminate the loop when the shard is closed, or when the shard iterator reaches the record with the sequence number or other attribute that marks it as the last record to process. Each data record can be up to 1 MiB in size, and each shard can read up to 2 MiB per second. You can ensure that your calls don't exceed the maximum supported size or throughput by using the Limit parameter to specify the maximum number of records that GetRecords can return. Consider your average record size when determining this limit. The maximum number of records that can be returned per call is 10,000. The size of the data returned by GetRecords varies depending on the utilization of the shard. The maximum size of data that GetRecords can return is 10 MiB. If a call returns this amount of data, subsequent calls made within the next 5 seconds throw ProvisionedThroughputExceededException. If there is insufficient provisioned throughput on the stream, subsequent calls made within the next 1 second throw ProvisionedThroughputExceededException. GetRecords doesn't return any data when it throws an exception. For this reason, we recommend that you wait 1 second between calls to GetRecords. However, it's possible that the application will get exceptions for longer than 1 second. To detect whether the application is falling behind in processing, you can use the MillisBehindLatest response attribute. You can also monitor the stream using CloudWatch metrics and other mechanisms (see Monitoring in the Amazon Kinesis Data Streams Developer Guide). Each Amazon Kinesis record includes a value, ApproximateArrivalTimestamp, that is set when a stream successfully receives and stores a record. This is commonly referred to as a server-side time stamp, whereas a client-side time stamp is set when a data producer creates or sends the record to a stream (a data producer is any data source putting data records into a stream, for example with PutRecords). The time stamp has millisecond precision. There are no guarantees about the time stamp accuracy, or that the time stamp is always increasing. For example, records in a shard or across a stream might have time stamps that are out of order. This operation has a limit of five transactions per second per shard.
|
|
| GetShardIterator |
Show DescriptionGets an Amazon Kinesis shard iterator. A shard iterator expires 5 minutes after it is returned to the requester. A shard iterator specifies the shard position from which to start reading data records sequentially. The position is specified using the sequence number of a data record in a shard. A sequence number is the identifier associated with every record ingested in the stream, and is assigned when a record is put into the stream. Each stream has one or more shards. You must specify the shard iterator type. For example, you can set theShardIteratorType parameter to read exactly from the position denoted by a specific sequence number by using the AT_SEQUENCE_NUMBER shard iterator type. Alternatively, the parameter can read right after the sequence number by using the AFTER_SEQUENCE_NUMBER shard iterator type, using sequence numbers returned by earlier calls to PutRecord, PutRecords, GetRecords, or DescribeStream. In the request, you can specify the shard iterator type AT_TIMESTAMP to read records from an arbitrary point in time, TRIM_HORIZON to cause ShardIterator to point to the last untrimmed record in the shard in the system (the oldest data record in the shard), or LATEST so that you always read the most recent data in the shard. When you read repeatedly from a stream, use a GetShardIterator request to get the first shard iterator for use in your first GetRecords request and for subsequent reads use the shard iterator returned by the GetRecords request in NextShardIterator. A new shard iterator is returned by every GetRecords request in NextShardIterator, which you use in the ShardIterator parameter of the next GetRecords request. If a GetShardIterator request is made too often, you receive a ProvisionedThroughputExceededException. For more information about throughput limits, see GetRecords, and Streams Limits in the Amazon Kinesis Data Streams Developer Guide. If the shard is closed, GetShardIterator returns a valid iterator for the last sequence number of the shard. A shard can be closed as a result of using SplitShard or MergeShards. GetShardIterator has a limit of five transactions per second per account per open shard.
|
|
| IncreaseStreamRetentionPeriod | ||
| ListShards |
Show DescriptionLists the shards in a stream and provides information about each shard. This operation has a limit of 100 transactions per second per data stream. |
|
| ListStreamConsumers |
Show DescriptionLists the consumers registered to receive data from a stream using enhanced fan-out, and provides information about each consumer. This operation has a limit of 5 transactions per second per stream. |
|
| ListStreams |
Show DescriptionLists your Kinesis data streams. The number of streams may be too large to return from a single call toListStreams. You can limit the number of returned streams using the Limit parameter. If you do not specify a value for the Limit parameter, Kinesis Data Streams uses the default limit, which is currently 10. You can detect if there are more streams available to list by using the HasMoreStreams flag from the returned output. If there are more streams available, you can request more streams by using the name of the last stream returned by the ListStreams request in the ExclusiveStartStreamName parameter in a subsequent request to ListStreams. The group of stream names returned by the subsequent request is then added to the list. You can continue this process until all the stream names have been collected in the list. ListStreams has a limit of five transactions per second per account.
|
|
| ListTagsForStream |
Show DescriptionLists the tags for the specified Kinesis data stream. This operation has a limit of five transactions per second per account. |
|
| MergeShards | ||
| PutRecord |
Show DescriptionWrites a single data record into an Amazon Kinesis data stream. CallPutRecord to send data into the stream for real-time ingestion and subsequent processing, one record at a time. Each shard can support writes up to 1,000 records per second, up to a maximum data write total of 1 MiB per second. You must specify the name of the stream that captures, stores, and transports the data; a partition key; and the data blob itself. The data blob can be any type of data; for example, a segment from a log file, geographic/location data, website clickstream data, and so on. The partition key is used by Kinesis Data Streams to distribute data across shards. Kinesis Data Streams segregates the data records that belong to a stream into multiple shards, using the partition key associated with each data record to determine the shard to which a given data record belongs. Partition keys are Unicode strings, with a maximum length limit of 256 characters for each key. An MD5 hash function is used to map partition keys to 128-bit integer values and to map associated data records to shards using the hash key ranges of the shards. You can override hashing the partition key to determine the shard by explicitly specifying a hash value using the ExplicitHashKey parameter. For more information, see Adding Data to a Stream in the Amazon Kinesis Data Streams Developer Guide. PutRecord returns the shard ID of where the data record was placed and the sequence number that was assigned to the data record. Sequence numbers increase over time and are specific to a shard within a stream, not across all shards within a stream. To guarantee strictly increasing ordering, write serially to a shard and use the SequenceNumberForOrdering parameter. For more information, see Adding Data to a Stream in the Amazon Kinesis Data Streams Developer Guide. PutRecord request cannot be processed because of insufficient provisioned throughput on the shard involved in the request, PutRecord throws ProvisionedThroughputExceededException. By default, data records are accessible for 24 hours from the time that they are added to a stream. You can use IncreaseStreamRetentionPeriod or DecreaseStreamRetentionPeriod to modify this retention period.
|
|
| PutRecords |
Show DescriptionWrites multiple data records into a Kinesis data stream in a single call (also referred to as aPutRecords request). Use this operation to send data into the stream for data ingestion and processing. Each PutRecords request can support up to 500 records. Each record in the request can be as large as 1 MiB, up to a limit of 5 MiB for the entire request, including partition keys. Each shard can support writes up to 1,000 records per second, up to a maximum data write total of 1 MiB per second. You must specify the name of the stream that captures, stores, and transports the data; and an array of request Records, with each record in the array requiring a partition key and data blob. The record size limit applies to the total size of the partition key and data blob. The data blob can be any type of data; for example, a segment from a log file, geographic/location data, website clickstream data, and so on. The partition key is used by Kinesis Data Streams as input to a hash function that maps the partition key and associated data to a specific shard. An MD5 hash function is used to map partition keys to 128-bit integer values and to map associated data records to shards. As a result of this hashing mechanism, all data records with the same partition key map to the same shard within the stream. For more information, see Adding Data to a Stream in the Amazon Kinesis Data Streams Developer Guide. Each record in the Records array may include an optional parameter, ExplicitHashKey, which overrides the partition key to shard mapping. This parameter allows a data producer to determine explicitly the shard where the record is stored. For more information, see Adding Multiple Records with PutRecords in the Amazon Kinesis Data Streams Developer Guide. The PutRecords response includes an array of response Records. Each record in the response array directly correlates with a record in the request array using natural ordering, from the top to the bottom of the request and response. The response Records array always includes the same number of records as the request array. The response Records array includes both successfully and unsuccessfully processed records. Kinesis Data Streams attempts to process all records in each PutRecords request. A single record failure does not stop the processing of subsequent records. As a result, PutRecords doesn't guarantee the ordering of records. If you need to read records in the same order they are written to the stream, use PutRecord instead of PutRecords, and write to the same shard. A successfully processed record includes ShardId and SequenceNumber values. The ShardId parameter identifies the shard in the stream where the record is stored. The SequenceNumber parameter is an identifier assigned to the put record, unique to all records in the stream. An unsuccessfully processed record includes ErrorCode and ErrorMessage values. ErrorCode reflects the type of error and can be one of the following values: ProvisionedThroughputExceededException or InternalFailure. ErrorMessage provides more detailed information about the ProvisionedThroughputExceededException exception including the account ID, stream name, and shard ID of the record that was throttled. For more information about partially successful responses, see Adding Multiple Records with PutRecords in the Amazon Kinesis Data Streams Developer Guide. |
|
| RegisterStreamConsumer |
Show DescriptionRegisters a consumer with a Kinesis data stream. When you use this operation, the consumer you register can then call SubscribeToShard to receive data from the stream using enhanced fan-out, at a rate of up to 2 MiB per second for every shard you subscribe to. This rate is unaffected by the total number of consumers that read from the same stream. You can register up to 20 consumers per stream. A given consumer can only be registered with one stream at a time. For an example of how to use this operations, see Enhanced Fan-Out Using the Kinesis Data Streams API. The use of this operation has a limit of five transactions per second per account. Also, only 5 consumers can be created simultaneously. In other words, you cannot have more than 5 consumers in aCREATING status at the same time. Registering a 6th consumer while there are 5 in a CREATING status results in a LimitExceededException.
|
|
| RemoveTagsFromStream | ||
| SplitShard | ||
| StartStreamEncryption | ||
| StopStreamEncryption | ||
| SubscribeToShard |
Show DescriptionThis operation establishes an HTTP/2 connection between the consumer you specify in theConsumerARN parameter and the shard you specify in the ShardId parameter. After the connection is successfully established, Kinesis Data Streams pushes records from the shard to the consumer over this connection. Before you call this operation, call RegisterStreamConsumer to register the consumer with Kinesis Data Streams. When the SubscribeToShard call succeeds, your consumer starts receiving events of type SubscribeToShardEvent over the HTTP/2 connection for up to 5 minutes, after which time you need to call SubscribeToShard again to renew the subscription if you want to continue to receive records. You can make one call to SubscribeToShard per second per registered consumer per shard. For example, if you have a 4000 shard stream and two registered stream consumers, you can make one SubscribeToShard request per second for each combination of shard and registered consumer, allowing you to subscribe both consumers to all 4000 shards in one second. If you call SubscribeToShard again with the same ConsumerARN and ShardId within 5 seconds of a successful call, you'll get a ResourceInUseException. If you call SubscribeToShard 5 seconds or more after a successful call, the first connection will expire and the second call will take over the subscription. For an example of how to use this operations, see Enhanced Fan-Out Using the Kinesis Data Streams API.
|
Kinesisanalytics Events
| Service | Event Name | Description |
|---|---|---|
| kinesisanalytics | AddApplicationCloudWatchLoggingOption |
Show Description |
| AddApplicationInput |
Show Descriptionkinesisanalytics:AddApplicationInput action.
|
|
| AddApplicationInputProcessingConfiguration |
Show Description |
|
| AddApplicationOutput |
Show Descriptionkinesisanalytics:AddApplicationOutput action.
|
|
| AddApplicationReferenceDataSource |
Show Descriptionkinesisanalytics:AddApplicationOutput action.
|
|
| CreateApplication |
Show Descriptionkinesisanalytics:CreateApplication action. For introductory exercises to create an Amazon Kinesis Analytics application, see Getting Started.
|
|
| DeleteApplication |
Show Descriptionkinesisanalytics:DeleteApplication action.
|
|
| DeleteApplicationCloudWatchLoggingOption |
Show Description |
|
| DeleteApplicationInputProcessingConfiguration |
Show Description |
|
| DeleteApplicationOutput |
Show Descriptionkinesisanalytics:DeleteApplicationOutput action.
|
|
| DeleteApplicationReferenceDataSource |
Show Descriptionkinesisanalytics.DeleteApplicationReferenceDataSource action.
|
|
| DescribeApplication |
Show Descriptionkinesisanalytics:DescribeApplication action. You can use DescribeApplication to get the current application versionId, which you need to call other operations such as Update.
|
|
| DiscoverInputSchema |
Show Descriptionkinesisanalytics:DiscoverInputSchema action.
|
|
| ListApplications |
Show DescriptionHasMoreApplications value as true, you can send another request by adding the ExclusiveStartApplicationName in the request body, and set the value of this to the last application name from the previous response. If you want detailed information about a specific application, use DescribeApplication. This operation requires permissions to perform the kinesisanalytics:ListApplications action.
|
|
| ListTagsForResource |
Show DescriptionRetrieves the list of key-value tags assigned to the application. For more information, see Using Tagging. |
|
| StartApplication |
Show DescriptionREADY for you to start an application. You can get the application status in the console or using the DescribeApplication operation. After you start the application, you can stop the application from processing the input by calling the StopApplication operation. This operation requires permissions to perform the kinesisanalytics:StartApplication action.
|
|
| StopApplication |
Show Descriptionkinesisanalytics:StopApplication action.
|
|
| TagResource |
Show DescriptionAdds one or more key-value tags to a Kinesis Analytics application. Note that the maximum number of application tags includes system tags. The maximum number of user-defined application tags is 50. For more information, see Using Tagging. |
|
| UntagResource |
Show DescriptionRemoves one or more tags from a Kinesis Analytics application. For more information, see Using Tagging. |
Kinesisanalyticsv2 Events
| Service | Event Name | Description |
|---|---|---|
| kinesisanalyticsv2 | AddApplicationCloudWatchLoggingOption |
Show DescriptionAdds an Amazon CloudWatch log stream to monitor application configuration errors. |
| AddApplicationInput |
Show DescriptionAdds a streaming source to your SQL-based Kinesis Data Analytics application. You can add a streaming source when you create an application, or you can use this operation to add a streaming source after you create an application. For more information, see CreateApplication. Any configuration update, including adding a streaming source using this operation, results in a new version of the application. You can use the DescribeApplication operation to find the current application version. |
|
| AddApplicationInputProcessingConfiguration |
Show DescriptionAdds an InputProcessingConfiguration to a SQL-based Kinesis Data Analytics application. An input processor pre-processes records on the input stream before the application's SQL code executes. Currently, the only input processor available is Amazon Lambda. |
|
| AddApplicationOutput |
Show DescriptionAdds an external destination to your SQL-based Kinesis Data Analytics application. If you want Kinesis Data Analytics to deliver data from an in-application stream within your application to an external destination (such as an Kinesis data stream, a Kinesis Data Firehose delivery stream, or an Amazon Lambda function), you add the relevant configuration to your application using this operation. You can configure one or more outputs for your application. Each output configuration maps an in-application stream and an external destination. You can use one of the output configurations to deliver data from your in-application error stream to an external destination so that you can analyze the errors. Any configuration update, including adding a streaming source using this operation, results in a new version of the application. You can use the DescribeApplication operation to find the current application version. |
|
| AddApplicationReferenceDataSource |
Show DescriptionAdds a reference data source to an existing SQL-based Kinesis Data Analytics application. Kinesis Data Analytics reads reference data (that is, an Amazon S3 object) and creates an in-application table within your application. In the request, you provide the source (S3 bucket name and object key name), name of the in-application table to create, and the necessary mapping information that describes how data in an Amazon S3 object maps to columns in the resulting in-application table. |
|
| AddApplicationVpcConfiguration |
Show DescriptionAdds a Virtual Private Cloud (VPC) configuration to the application. Applications can use VPCs to store and access resources securely. Note the following about VPC configurations for Kinesis Data Analytics applications:
|
|
| CreateApplication |
Show DescriptionCreates a Kinesis Data Analytics application. For information about creating a Kinesis Data Analytics application, see Creating an Application. |
|
| CreateApplicationPresignedUrl |
Show DescriptionCreates and returns a URL that you can use to connect to an application's extension. Currently, the only available extension is the Apache Flink dashboard. The IAM role or user used to call this API defines the permissions to access the extension. After the presigned URL is created, no additional permission is required to access this URL. IAM authorization policies for this API are also enforced for every HTTP request that attempts to connect to the extension. You control the amount of time that the URL will be valid using theSessionExpirationDurationInSeconds parameter. If you do not provide this parameter, the returned URL is valid for twelve hours. |
|
| CreateApplicationSnapshot |
Show DescriptionCreates a snapshot of the application's state data. |
|
| DeleteApplication |
Show DescriptionDeletes the specified application. Kinesis Data Analytics halts application execution and deletes the application. |
|
| DeleteApplicationCloudWatchLoggingOption |
Show DescriptionDeletes an Amazon CloudWatch log stream from an Kinesis Data Analytics application. |
|
| DeleteApplicationInputProcessingConfiguration |
Show DescriptionDeletes an InputProcessingConfiguration from an input. |
|
| DeleteApplicationOutput |
Show DescriptionDeletes the output destination configuration from your SQL-based Kinesis Data Analytics application's configuration. Kinesis Data Analytics will no longer write data from the corresponding in-application stream to the external output destination. |
|
| DeleteApplicationReferenceDataSource |
Show DescriptionDeletes a reference data source configuration from the specified SQL-based Kinesis Data Analytics application's configuration. If the application is running, Kinesis Data Analytics immediately removes the in-application table that you created using the AddApplicationReferenceDataSource operation. |
|
| DeleteApplicationSnapshot |
Show DescriptionDeletes a snapshot of application state. |
|
| DeleteApplicationVpcConfiguration |
Show DescriptionRemoves a VPC configuration from a Kinesis Data Analytics application. |
|
| DescribeApplication |
Show DescriptionReturns information about a specific Kinesis Data Analytics application. If you want to retrieve a list of all applications in your account, use the ListApplications operation. |
|
| DescribeApplicationSnapshot |
Show DescriptionReturns information about a snapshot of application state data. |
|
| DescribeApplicationVersion |
Show DescriptionProvides a detailed description of a specified version of the application. To see a list of all the versions of an application, invoke the ListApplicationVersions operation. |
|
| DiscoverInputSchema |
Show DescriptionInfers a schema for a SQL-based Kinesis Data Analytics application by evaluating sample records on the specified streaming source (Kinesis data stream or Kinesis Data Firehose delivery stream) or Amazon S3 object. In the response, the operation returns the inferred schema and also the sample records that the operation used to infer the schema. You can use the inferred schema when configuring a streaming source for your application. When you create an application using the Kinesis Data Analytics console, the console uses this operation to infer a schema and show it in the console user interface. |
|
| ListApplicationSnapshots |
Show DescriptionLists information about the current application snapshots. |
|
| ListApplicationVersions |
Show DescriptionLists all the versions for the specified application, including versions that were rolled back. The response also includes a summary of the configuration associated with each version. To get the complete description of a specific application version, invoke the DescribeApplicationVersion operation. |
|
| ListApplications |
Show DescriptionReturns a list of Kinesis Data Analytics applications in your account. For each application, the response includes the application name, Amazon Resource Name (ARN), and status. If you want detailed information about a specific application, use DescribeApplication. |
|
| ListTagsForResource |
Show DescriptionRetrieves the list of key-value tags assigned to the application. For more information, see Using Tagging. |
|
| RollbackApplication |
Show DescriptionReverts the application to the previous running version. You can roll back an application if you suspect it is stuck in a transient status. You can roll back an application only if it is in theUPDATING or AUTOSCALING status. When you rollback an application, it loads state data from the last successful snapshot. If the application has no snapshots, Kinesis Data Analytics rejects the rollback request. This action is not supported for Kinesis Data Analytics for SQL applications.
|
|
| StartApplication |
Show DescriptionStarts the specified Kinesis Data Analytics application. After creating an application, you must exclusively call this operation to start your application. |
|
| StopApplication |
Show DescriptionStops the application from processing data. You can stop an application only if it is in the running status, unless you set theForce parameter to true. You can use the DescribeApplication operation to find the application status. Kinesis Data Analytics takes a snapshot when the application is stopped, unless Force is set to true.
|
|
| TagResource |
Show DescriptionAdds one or more key-value tags to a Kinesis Data Analytics application. Note that the maximum number of application tags includes system tags. The maximum number of user-defined application tags is 50. For more information, see Using Tagging. |
|
| UntagResource |
Show DescriptionRemoves one or more tags from a Kinesis Data Analytics application. For more information, see Using Tagging. |
|
| UpdateApplication |
Show DescriptionUpdates an existing Kinesis Data Analytics application. Using this operation, you can update application code, input configuration, and output configuration. Kinesis Data Analytics updates theApplicationVersionId each time you update your application. RuntimeEnvironment of an existing application. If you need to update an application's RuntimeEnvironment, you must delete the application and create it again. |
Kinesisvideo Events
| Service | Event Name | Description |
|---|---|---|
| kinesisvideo | CreateSignalingChannel |
Show DescriptionCreates a signaling channel.CreateSignalingChannel is an asynchronous operation.
|
| CreateStream |
Show DescriptionCreates a new Kinesis video stream. When you create a new stream, Kinesis Video Streams assigns it a version number. When you change the stream's metadata, Kinesis Video Streams updates the version.CreateStream is an asynchronous operation. For information about how the service works, see How it Works. You must have permissions for the KinesisVideo:CreateStream action.
|
|
| DeleteSignalingChannel |
Show DescriptionDeletes a specified signaling channel.DeleteSignalingChannel is an asynchronous operation. If you don't specify the channel's current version, the most recent version is deleted.
|
|
| DeleteStream |
Show DescriptionDeletes a Kinesis video stream and the data contained in the stream. This method marks the stream for deletion, and makes the data in the stream inaccessible immediately. To ensure that you have the latest version of the stream before deleting it, you can specify the stream version. Kinesis Video Streams assigns a version to each stream. When you update a stream, Kinesis Video Streams assigns a new version number. To get the latest stream version, use theDescribeStream API. This operation requires permission for the KinesisVideo:DeleteStream action.
|
|
| DescribeSignalingChannel |
Show DescriptionReturns the most current information about the signaling channel. You must specify either the name or the Amazon Resource Name (ARN) of the channel that you want to describe. |
|
| DescribeStream |
Show DescriptionReturns the most current information about the specified stream. You must specify either theStreamName or the StreamARN.
|
|
| GetDataEndpoint |
Show DescriptionGets an endpoint for a specified stream for either reading or writing. Use this endpoint in your application to read from the specified stream (using theGetMedia or GetMediaForFragmentList operations) or write to it (using the PutMedia operation). StreamName or StreamARN.
|
|
| GetSignalingChannelEndpoint |
Show DescriptionProvides an endpoint for the specified signaling channel to send and receive messages. This API uses theSingleMasterChannelEndpointConfiguration input parameter, which consists of the Protocols and Role properties. Protocols is used to determine the communication mechanism. For example, if you specify WSS as the protocol, this API produces a secure websocket endpoint. If you specify HTTPS as the protocol, this API generates an HTTPS endpoint. Role determines the messaging permissions. A MASTER role results in this API generating an endpoint that a client can use to communicate with any of the viewers on the channel. A VIEWER role results in this API generating an endpoint that a client can use to communicate only with a MASTER.
|
|
| ListSignalingChannels |
Show DescriptionReturns an array ofChannelInfo objects. Each object describes a signaling channel. To retrieve only those channels that satisfy a specific condition, you can specify a ChannelNameCondition.
|
|
| ListStreams |
Show DescriptionReturns an array ofStreamInfo objects. Each object describes a stream. To retrieve only streams that satisfy a specific condition, you can specify a StreamNameCondition.
|
|
| ListTagsForResource |
Show DescriptionReturns a list of tags associated with the specified signaling channel. |
|
| ListTagsForStream |
Show DescriptionReturns a list of tags associated with the specified stream. In the request, you must specify either theStreamName or the StreamARN.
|
|
| TagResource |
Show DescriptionAdds one or more tags to a signaling channel. A tag is a key-value pair (the value is optional) that you can define and assign to AWS resources. If you specify a tag that already exists, the tag value is replaced with the value that you specify in the request. For more information, see Using Cost Allocation Tags in the AWS Billing and Cost Management User Guide. |
|
| TagStream |
Show DescriptionAdds one or more tags to a stream. A tag is a key-value pair (the value is optional) that you can define and assign to AWS resources. If you specify a tag that already exists, the tag value is replaced with the value that you specify in the request. For more information, see Using Cost Allocation Tags in the AWS Billing and Cost Management User Guide. You must provide either theStreamName or the StreamARN. This operation requires permission for the KinesisVideo:TagStream action. Kinesis video streams support up to 50 tags.
|
|
| UntagResource |
Show DescriptionRemoves one or more tags from a signaling channel. In the request, specify only a tag key or keys; don't specify the value. If you specify a tag key that does not exist, it's ignored. |
|
| UntagStream |
Show DescriptionRemoves one or more tags from a stream. In the request, specify only a tag key or keys; don't specify the value. If you specify a tag key that does not exist, it's ignored. In the request, you must provide theStreamName or StreamARN.
|
|
| UpdateDataRetention |
Show DescriptionIncreases or decreases the stream's data retention period by the value that you specify. To indicate whether you want to increase or decrease the data retention period, specify theOperation parameter in the request body. In the request, you must specify either the StreamName or the StreamARN. KinesisVideo:UpdateDataRetention action. Changing the data retention period affects the data in the stream as follows:
|
|
| UpdateSignalingChannel |
Show DescriptionUpdates the existing signaling channel. This is an asynchronous operation and takes time to complete. If theMessageTtlSeconds value is updated (either increased or reduced), it only applies to new messages sent via this channel after it's been updated. Existing messages are still expired as per the previous MessageTtlSeconds value.
|
Kms Events
| Service | Event Name | Description |
|---|---|---|
| kms | CancelKeyDeletion |
Show DescriptionCancels the deletion of a KMS key. When this operation succeeds, the key state of the KMS key isDisabled. To enable the KMS key, use EnableKey. For more information about scheduling and canceling deletion of a KMS key, see Deleting KMS keys in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:CancelKeyDeletion (key policy) Related operations: ScheduleKeyDeletion
|
| ConnectCustomKeyStore |
Show DescriptionConnects or reconnects a custom key store to its associated CloudHSM cluster. The custom key store must be connected before you can create KMS keys in the key store or use the KMS keys it contains. You can disconnect and reconnect a custom key store at any time. To connect a custom key store, its associated CloudHSM cluster must have at least one active HSM. To get the number of active HSMs in a cluster, use the DescribeClusters operation. To add HSMs to the cluster, use the CreateHsm operation. Also, thekmsuser crypto user (CU) must not be logged into the cluster. This prevents KMS from using this account to log in. The connection process can take an extended amount of time to complete; up to 20 minutes. This operation starts the connection process, but it does not wait for it to complete. When it succeeds, this operation quickly returns an HTTP 200 response and a JSON object with no properties. However, this response does not indicate that the custom key store is connected. To get the connection state of the custom key store, use the DescribeCustomKeyStores operation. During the connection process, KMS finds the CloudHSM cluster that is associated with the custom key store, creates the connection infrastructure, connects to the cluster, logs into the CloudHSM client as the kmsuser CU, and rotates its password. The ConnectCustomKeyStore operation might fail for various reasons. To find the reason, use the DescribeCustomKeyStores operation and see the ConnectionErrorCode in the response. For help interpreting the ConnectionErrorCode, see CustomKeyStoresListEntry. To fix the failure, use the DisconnectCustomKeyStore operation to disconnect the custom key store, correct the error, use the UpdateCustomKeyStore operation if necessary, and then use ConnectCustomKeyStore again. If you are having trouble connecting or disconnecting a custom key store, see Troubleshooting a Custom Key Store in the Key Management Service Developer Guide. Cross-account use: No. You cannot perform this operation on a custom key store in a different Amazon Web Services account. Required permissions: kms:ConnectCustomKeyStore (IAM policy) Related operations
|
|
| CreateAlias | ||
| CreateCustomKeyStore |
Show DescriptionCreates a custom key store that is associated with an CloudHSM cluster that you own and manage. This operation is part of the Custom Key Store feature feature in KMS, which combines the convenience and extensive integration of KMS with the isolation and control of a single-tenant key store. Before you create the custom key store, you must assemble the required elements, including an CloudHSM cluster that fulfills the requirements for a custom key store. For details about the required elements, see Assemble the Prerequisites in the Key Management Service Developer Guide. When the operation completes successfully, it returns the ID of the new custom key store. Before you can use your new custom key store, you need to use the ConnectCustomKeyStore operation to connect the new key store to its CloudHSM cluster. Even if you are not going to use your custom key store immediately, you might want to connect it to verify that all settings are correct and then disconnect it until you are ready to use it. For help with failures, see Troubleshooting a Custom Key Store in the Key Management Service Developer Guide. Cross-account use: No. You cannot perform this operation on a custom key store in a different Amazon Web Services account. Required permissions: kms:CreateCustomKeyStore (IAM policy). Related operations: |
|
| CreateGrant |
Show DescriptionAdds a grant to a KMS key. A grant is a policy instrument that allows Amazon Web Services principals to use KMS keys in cryptographic operations. It also can allow them to view a KMS key (DescribeKey) and create and manage grants. When authorizing access to a KMS key, grants are considered along with key policies and IAM policies. Grants are often used for temporary permissions because you can create one, use its permissions, and delete it without changing your key policies or IAM policies. For detailed information about grants, including grant terminology, see Using grants in the Key Management Service Developer Guide . For examples of working with grants in several programming languages, see Programming grants. TheCreateGrant operation returns a GrantToken and a GrantId.
KeyId parameter. Required permissions: kms:CreateGrant (key policy) Related operations:
|
|
| CreateKey |
Show DescriptionCreates a unique customer managed KMS key in your Amazon Web Services account and Region.CreateKey operation to create symmetric or asymmetric KMS keys.
Tags parameter, kms:TagResource (IAM policy). For examples and information about related permissions, see Allow a user to create KMS keys in the Key Management Service Developer Guide. Related operations:
|
|
| Decrypt |
Show DescriptionDecrypts ciphertext that was encrypted by a KMS key using any of the following operations:
KeyId parameter is optional. KMS can get this information from metadata that it adds to the symmetric ciphertext blob. This feature adds durability to your implementation by ensuring that authorized users can decrypt ciphertext decades after it was encrypted, even if they've lost track of the key ID. However, specifying the KMS key is always recommended as a best practice. When you use the KeyId parameter to specify a KMS key, KMS only uses the KMS key you specify. If the ciphertext was encrypted under a different KMS key, the Decrypt operation fails. This practice ensures that you use the KMS key that you intend. Whenever possible, use key policies to give users permission to call the Decrypt operation on a particular KMS key, instead of using IAM policies. Otherwise, you might create an IAM user policy that gives the user Decrypt permission on all KMS keys. This user could decrypt ciphertext that was encrypted by KMS keys in other accounts if the key policy for the cross-account KMS key permits it. If you must use an IAM policy for Decrypt permissions, limit the user to particular KMS keys or particular trusted accounts. For details, see Best practices for IAM policies in the Key Management Service Developer Guide. Applications in Amazon Web Services Nitro Enclaves can call this operation by using the Amazon Web Services Nitro Enclaves Development Kit. For information about the supporting parameters, see How Amazon Web Services Nitro Enclaves use KMS in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify the key ARN or alias ARN in the value of the KeyId parameter. Required permissions: kms:Decrypt (key policy) Related operations:
|
|
| DeleteAlias | ||
| DeleteCustomKeyStore |
Show DescriptionDeletes a custom key store. This operation does not delete the CloudHSM cluster that is associated with the custom key store, or affect any users or keys in the cluster. The custom key store that you delete cannot contain any KMS KMS keys. Before deleting the key store, verify that you will never need to use any of the KMS keys in the key store for any cryptographic operations. Then, use ScheduleKeyDeletion to delete the KMS keys from the key store. When the scheduled waiting period expires, theScheduleKeyDeletion operation deletes the KMS keys. Then it makes a best effort to delete the key material from the associated cluster. However, you might need to manually delete the orphaned key material from the cluster and its backups. After all KMS keys are deleted from KMS, use DisconnectCustomKeyStore to disconnect the key store from KMS. Then, you can delete the custom key store. Instead of deleting the custom key store, consider using DisconnectCustomKeyStore to disconnect it from KMS. While the key store is disconnected, you cannot create or use the KMS keys in the key store. But, you do not need to delete KMS keys and you can reconnect a disconnected custom key store at any time. If the operation succeeds, it returns a JSON object with no properties. This operation is part of the Custom Key Store feature feature in KMS, which combines the convenience and extensive integration of KMS with the isolation and control of a single-tenant key store. Cross-account use: No. You cannot perform this operation on a custom key store in a different Amazon Web Services account. Required permissions: kms:DeleteCustomKeyStore (IAM policy) Related operations:
|
|
| DeleteImportedKeyMaterial | ||
| DescribeCustomKeyStores |
Show DescriptionGets information about custom key stores in the account and Region. This operation is part of the Custom Key Store feature feature in KMS, which combines the convenience and extensive integration of KMS with the isolation and control of a single-tenant key store. By default, this operation returns information about all custom key stores in the account and Region. To get only information about a particular custom key store, use either theCustomKeyStoreName or CustomKeyStoreId parameter (but not both). To determine whether the custom key store is connected to its CloudHSM cluster, use the ConnectionState element in the response. If an attempt to connect the custom key store failed, the ConnectionState value is FAILED and the ConnectionErrorCode element in the response indicates the cause of the failure. For help interpreting the ConnectionErrorCode, see CustomKeyStoresListEntry. Custom key stores have a DISCONNECTED connection state if the key store has never been connected or you use the DisconnectCustomKeyStore operation to disconnect it. If your custom key store state is CONNECTED but you are having trouble using it, make sure that its associated CloudHSM cluster is active and contains the minimum number of HSMs required for the operation, if any. For help repairing your custom key store, see the Troubleshooting Custom Key Stores topic in the Key Management Service Developer Guide. Cross-account use: No. You cannot perform this operation on a custom key store in a different Amazon Web Services account. Required permissions: kms:DescribeCustomKeyStores (IAM policy) Related operations:
|
|
| DescribeKey |
Show DescriptionProvides detailed information about a KMS key. You can runDescribeKey on a customer managed key or an Amazon Web Services managed key. This detailed information includes the key ARN, creation date (and deletion date, if applicable), the key state, and the origin and expiration date (if any) of the key material. It includes fields, like KeySpec, that help you distinguish symmetric from asymmetric KMS keys. It also provides information that is particularly important to asymmetric keys, such as the key usage (encryption or signing) and the encryption algorithms or signing algorithms that the KMS key supports. For KMS keys in custom key stores, it includes information about the custom key store, such as the key store ID and the CloudHSM cluster ID. For multi-Region keys, it displays the primary key and all related replica keys. DescribeKey does not return the following information:
DescribeKey operation on a predefined Amazon Web Services alias, that is, an Amazon Web Services alias with no key ID, KMS creates an Amazon Web Services managed key. Then, it associates the alias with the new KMS key, and returns the KeyId and Arn of the new KMS key in the response. Cross-account use: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify the key ARN or alias ARN in the value of the KeyId parameter. Required permissions: kms:DescribeKey (key policy) Related operations:
|
|
| DisableKey | ||
| DisableKeyRotation | ||
| DisconnectCustomKeyStore |
Show DescriptionDisconnects the custom key store from its associated CloudHSM cluster. While a custom key store is disconnected, you can manage the custom key store and its KMS keys, but you cannot create or use KMS keys in the custom key store. You can reconnect the custom key store at any time. |
|
| EnableKey | ||
| EnableKeyRotation | ||
| Encrypt |
Show DescriptionEncrypts plaintext into ciphertext by using a KMS key. TheEncrypt operation has two primary use cases:
Encrypt operation to encrypt a data key. The GenerateDataKey and GenerateDataKeyPair operations return a plaintext data key and an encrypted copy of that data key. When you encrypt data, you must specify a symmetric or asymmetric KMS key to use in the encryption operation. The KMS key must have a KeyUsage value of ENCRYPT_DECRYPT. To find the KeyUsage of a KMS key, use the DescribeKey operation. If you use a symmetric KMS key, you can use an encryption context to add additional security to your encryption operation. If you specify an EncryptionContext when encrypting data, you must specify the same encryption context (a case-sensitive exact match) when decrypting the data. Otherwise, the request to decrypt fails with an InvalidCiphertextException. For more information, see Encryption Context in the Key Management Service Developer Guide. If you specify an asymmetric KMS key, you must also specify the encryption algorithm. The algorithm must be compatible with the KMS key type.
KeyId parameter. Required permissions: kms:Encrypt (key policy) Related operations:
|
|
| GenerateDataKey |
Show DescriptionGenerates a unique symmetric data key for client-side encryption. This operation returns a plaintext copy of the data key and a copy that is encrypted under a KMS key that you specify. You can use the plaintext key to encrypt your data outside of KMS and store the encrypted data key with the encrypted data.GenerateDataKey returns a unique data key for each request. The bytes in the plaintext key are not related to the caller or the KMS key. To generate a data key, specify the symmetric KMS key that will be used to encrypt the data key. You cannot use an asymmetric KMS key to generate data keys. To get the type of your KMS key, use the DescribeKey operation. You must also specify the length of the data key. Use either the KeySpec or NumberOfBytes parameters (but not both). For 128-bit and 256-bit data keys, use the KeySpec parameter. To get only an encrypted copy of the data key, use GenerateDataKeyWithoutPlaintext. To generate an asymmetric data key pair, use the GenerateDataKeyPair or GenerateDataKeyPairWithoutPlaintext operation. To get a cryptographically secure random byte string, use GenerateRandom. You can use the optional encryption context to add additional security to the encryption operation. If you specify an EncryptionContext, you must specify the same encryption context (a case-sensitive exact match) when decrypting the encrypted data key. Otherwise, the request to decrypt fails with an InvalidCiphertextException. For more information, see Encryption Context in the Key Management Service Developer Guide. Applications in Amazon Web Services Nitro Enclaves can call this operation by using the Amazon Web Services Nitro Enclaves Development Kit. For information about the supporting parameters, see How Amazon Web Services Nitro Enclaves use KMS in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. How to use your data key We recommend that you use the following pattern to encrypt data locally in your application. You can write your own code or use a client-side encryption library, such as the Amazon Web Services Encryption SDK, the Amazon DynamoDB Encryption Client, or Amazon S3 client-side encryption to do these tasks for you. To encrypt data outside of KMS:
KeyId parameter. Required permissions: kms:GenerateDataKey (key policy) Related operations:
|
|
| GenerateDataKeyPair |
Show DescriptionGenerates a unique asymmetric data key pair. TheGenerateDataKeyPair operation returns a plaintext public key, a plaintext private key, and a copy of the private key that is encrypted under the symmetric KMS key you specify. You can use the data key pair to perform asymmetric cryptography and implement digital signatures outside of KMS. You can use the public key that GenerateDataKeyPair returns to encrypt data or verify a signature outside of KMS. Then, store the encrypted private key with the data. When you are ready to decrypt data or sign a message, you can use the Decrypt operation to decrypt the encrypted private key. To generate a data key pair, you must specify a symmetric KMS key to encrypt the private key in a data key pair. You cannot use an asymmetric KMS key or a KMS key in a custom key store. To get the type and origin of your KMS key, use the DescribeKey operation. Use the KeyPairSpec parameter to choose an RSA or Elliptic Curve (ECC) data key pair. KMS recommends that your use ECC key pairs for signing, and use RSA key pairs for either encryption or signing, but not both. However, KMS cannot enforce any restrictions on the use of data key pairs outside of KMS. If you are using the data key pair to encrypt data, or for any operation where you don't immediately need a private key, consider using the GenerateDataKeyPairWithoutPlaintext operation. GenerateDataKeyPairWithoutPlaintext returns a plaintext public key and an encrypted private key, but omits the plaintext private key that you need only to decrypt ciphertext or sign a message. Later, when you need to decrypt the data or sign a message, use the Decrypt operation to decrypt the encrypted private key in the data key pair. GenerateDataKeyPair returns a unique data key pair for each request. The bytes in the keys are not related to the caller or the KMS key that is used to encrypt the private key. The public key is a DER-encoded X.509 SubjectPublicKeyInfo, as specified in RFC 5280. The private key is a DER-encoded PKCS8 PrivateKeyInfo, as specified in RFC 5958. You can use the optional encryption context to add additional security to the encryption operation. If you specify an EncryptionContext, you must specify the same encryption context (a case-sensitive exact match) when decrypting the encrypted data key. Otherwise, the request to decrypt fails with an InvalidCiphertextException. For more information, see Encryption Context in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify the key ARN or alias ARN in the value of the KeyId parameter. Required permissions: kms:GenerateDataKeyPair (key policy) Related operations:
|
|
| GenerateDataKeyPairWithoutPlaintext |
Show DescriptionGenerates a unique asymmetric data key pair. TheGenerateDataKeyPairWithoutPlaintext operation returns a plaintext public key and a copy of the private key that is encrypted under the symmetric KMS key you specify. Unlike GenerateDataKeyPair, this operation does not return a plaintext private key. You can use the public key that GenerateDataKeyPairWithoutPlaintext returns to encrypt data or verify a signature outside of KMS. Then, store the encrypted private key with the data. When you are ready to decrypt data or sign a message, you can use the Decrypt operation to decrypt the encrypted private key. To generate a data key pair, you must specify a symmetric KMS key to encrypt the private key in a data key pair. You cannot use an asymmetric KMS key or a KMS key in a custom key store. To get the type and origin of your KMS key, use the DescribeKey operation. Use the KeyPairSpec parameter to choose an RSA or Elliptic Curve (ECC) data key pair. KMS recommends that your use ECC key pairs for signing, and use RSA key pairs for either encryption or signing, but not both. However, KMS cannot enforce any restrictions on the use of data key pairs outside of KMS. GenerateDataKeyPairWithoutPlaintext returns a unique data key pair for each request. The bytes in the key are not related to the caller or KMS key that is used to encrypt the private key. The public key is a DER-encoded X.509 SubjectPublicKeyInfo, as specified in RFC 5280. You can use the optional encryption context to add additional security to the encryption operation. If you specify an EncryptionContext, you must specify the same encryption context (a case-sensitive exact match) when decrypting the encrypted data key. Otherwise, the request to decrypt fails with an InvalidCiphertextException. For more information, see Encryption Context in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify the key ARN or alias ARN in the value of the KeyId parameter. Required permissions: kms:GenerateDataKeyPairWithoutPlaintext (key policy) Related operations:
|
|
| GenerateDataKeyWithoutPlaintext |
Show DescriptionGenerates a unique symmetric data key. This operation returns a data key that is encrypted under a KMS key that you specify. To request an asymmetric data key pair, use the GenerateDataKeyPair or GenerateDataKeyPairWithoutPlaintext operations.GenerateDataKeyWithoutPlaintext is identical to the GenerateDataKey operation except that returns only the encrypted copy of the data key. This operation is useful for systems that need to encrypt data at some point, but not immediately. When you need to encrypt the data, you call the Decrypt operation on the encrypted copy of the key. It's also useful in distributed systems with different levels of trust. For example, you might store encrypted data in containers. One component of your system creates new containers and stores an encrypted data key with each container. Then, a different component puts the data into the containers. That component first decrypts the data key, uses the plaintext data key to encrypt data, puts the encrypted data into the container, and then destroys the plaintext data key. In this system, the component that creates the containers never sees the plaintext data key. GenerateDataKeyWithoutPlaintext returns a unique data key for each request. The bytes in the keys are not related to the caller or KMS key that is used to encrypt the private key. To generate a data key, you must specify the symmetric KMS key that is used to encrypt the data key. You cannot use an asymmetric KMS key to generate a data key. To get the type of your KMS key, use the DescribeKey operation. If the operation succeeds, you will find the encrypted copy of the data key in the CiphertextBlob field. You can use the optional encryption context to add additional security to the encryption operation. If you specify an EncryptionContext, you must specify the same encryption context (a case-sensitive exact match) when decrypting the encrypted data key. Otherwise, the request to decrypt fails with an InvalidCiphertextException. For more information, see Encryption Context in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify the key ARN or alias ARN in the value of the KeyId parameter. Required permissions: kms:GenerateDataKeyWithoutPlaintext (key policy) Related operations:
|
|
| GenerateRandom |
Show DescriptionReturns a random byte string that is cryptographically secure. By default, the random byte string is generated in KMS. To generate the byte string in the CloudHSM cluster that is associated with a custom key store, specify the custom key store ID. Applications in Amazon Web Services Nitro Enclaves can call this operation by using the Amazon Web Services Nitro Enclaves Development Kit. For information about the supporting parameters, see How Amazon Web Services Nitro Enclaves use KMS in the Key Management Service Developer Guide. For more information about entropy and random number generation, see Key Management Service Cryptographic Details. Required permissions: kms:GenerateRandom (IAM policy) |
|
| GetKeyPolicy |
Show DescriptionGets a key policy attached to the specified KMS key. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:GetKeyPolicy (key policy) Related operations: PutKeyPolicy |
|
| GetKeyRotationStatus |
Show DescriptionGets a Boolean value that indicates whether automatic rotation of the key material is enabled for the specified KMS key. You cannot enable automatic rotation of asymmetric KMS keys, KMS keys with imported key material, or KMS keys in a custom key store. To enable or disable automatic rotation of a set of related multi-Region keys, set the property on the primary key. The key rotation status for these KMS keys is alwaysfalse. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide.
KeyId parameter. Required permissions: kms:GetKeyRotationStatus (key policy) Related operations:
|
|
| GetParametersForImport |
Show DescriptionReturns the items you need to import key material into a symmetric, customer managed KMS key. For more information about importing key material into KMS, see Importing Key Material in the Key Management Service Developer Guide. This operation returns a public key and an import token. Use the public key to encrypt the symmetric key material. Store the import token to send with a subsequent ImportKeyMaterial request. You must specify the key ID of the symmetric KMS key into which you will import key material. This KMS key'sOrigin must be EXTERNAL. You must also specify the wrapping algorithm and type of wrapping key (public key) that you will use to encrypt the key material. You cannot perform this operation on an asymmetric KMS key or on any KMS key in a different Amazon Web Services account. To import key material, you must use the public key and import token from the same response. These items are valid for 24 hours. The expiration date and time appear in the GetParametersForImport response. You cannot use an expired token in an ImportKeyMaterial request. If your key and token expire, send another GetParametersForImport request. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:GetParametersForImport (key policy) Related operations:
|
|
| GetPublicKey |
Show DescriptionReturns the public key of an asymmetric KMS key. Unlike the private key of a asymmetric KMS key, which never leaves KMS unencrypted, callers withkms:GetPublicKey permission can download the public key of an asymmetric KMS key. You can share the public key to allow others to encrypt messages and verify signatures outside of KMS. For information about symmetric and asymmetric KMS keys, see Using Symmetric and Asymmetric KMS keys in the Key Management Service Developer Guide. You do not need to download the public key. Instead, you can use the public key within KMS by calling the Encrypt, ReEncrypt, or Verify operations with the identifier of an asymmetric KMS key. When you use the public key within KMS, you benefit from the authentication, authorization, and logging that are part of every KMS operation. You also reduce of risk of encrypting data that cannot be decrypted. These features are not effective outside of KMS. For details, see Special Considerations for Downloading Public Keys. To help you use the public key safely outside of KMS, GetPublicKey returns important information about the public key in the response, including:
KeyId parameter. Required permissions: kms:GetPublicKey (key policy) Related operations: CreateKey
|
|
| ImportKeyMaterial |
Show DescriptionImports key material into an existing symmetric KMS KMS key that was created without key material. After you successfully import key material into a KMS key, you can reimport the same key material into that KMS key, but you cannot import different key material. You cannot perform this operation on an asymmetric KMS key or on any KMS key in a different Amazon Web Services account. For more information about creating KMS keys with no key material and then importing key material, see Importing Key Material in the Key Management Service Developer Guide. Before using this operation, call GetParametersForImport. Its response includes a public key and an import token. Use the public key to encrypt the key material. Then, submit the import token from the sameGetParametersForImport response. When calling this operation, you must specify the following values:
PendingImport to Enabled, and you can use the KMS key. If this operation fails, use the exception to help determine the problem. If the error is related to the key material, the import token, or wrapping key, use GetParametersForImport to get a new public key and import token for the KMS key and repeat the import procedure. For help, see How To Import Key Material in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:ImportKeyMaterial (key policy) Related operations:
|
|
| ListAliases |
Show DescriptionGets a list of aliases in the caller's Amazon Web Services account and region. For more information about aliases, see CreateAlias. By default, theListAliases operation returns all aliases in the account and region. To get only the aliases associated with a particular KMS key, use the KeyId parameter. The ListAliases response can include aliases that you created and associated with your customer managed keys, and aliases that Amazon Web Services created and associated with Amazon Web Services managed keys in your account. You can recognize Amazon Web Services aliases because their names have the format aws/<service-name>, such as aws/dynamodb. The response might also include aliases that have no TargetKeyId field. These are predefined aliases that Amazon Web Services has created but has not yet associated with a KMS key. Aliases that Amazon Web Services creates in your account, including predefined aliases, do not count against your KMS aliases quota. Cross-account use: No. ListAliases does not return aliases in other Amazon Web Services accounts. Required permissions: kms:ListAliases (IAM policy) For details, see Controlling access to aliases in the Key Management Service Developer Guide. Related operations:
|
|
| ListGrants |
Show DescriptionGets a list of all grants for the specified KMS key. You must specify the KMS key in all requests. You can filter the grant list by grant ID or grantee principal. For detailed information about grants, including grant terminology, see Using grants in the Key Management Service Developer Guide . For examples of working with grants in several programming languages, see Programming grants.GranteePrincipal field in the ListGrants response usually contains the user or role designated as the grantee principal in the grant. However, when the grantee principal in the grant is an Amazon Web Services service, the GranteePrincipal field contains the service principal, which might represent several different grantee principals. KeyId parameter. Required permissions: kms:ListGrants (key policy) Related operations:
|
|
| ListKeyPolicies |
Show DescriptionGets the names of the key policies that are attached to a KMS key. This operation is designed to get policy names that you can use in a GetKeyPolicy operation. However, the only valid policy name isdefault. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:ListKeyPolicies (key policy) Related operations:
|
|
| ListKeys |
Show DescriptionGets a list of all KMS keys in the caller's Amazon Web Services account and Region. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:ListKeys (IAM policy) Related operations: |
|
| ListResourceTags |
Show DescriptionReturns all tags on the specified KMS key. For general information about tags, including the format and syntax, see Tagging Amazon Web Services resources in the Amazon Web Services General Reference. For information about using tags in KMS, see Tagging keys. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:ListResourceTags (key policy) Related operations: |
|
| ListRetirableGrants |
Show DescriptionReturns information about all grants in the Amazon Web Services account and Region that have the specified retiring principal. You can specify any principal in your Amazon Web Services account. The grants that are returned include grants for KMS keys in your Amazon Web Services account and other Amazon Web Services accounts. You might use this operation to determine which grants you may retire. To retire a grant, use the RetireGrant operation. For detailed information about grants, including grant terminology, see Using grants in the Key Management Service Developer Guide . For examples of working with grants in several programming languages, see Programming grants. Cross-account use: You must specify a principal in your Amazon Web Services account. However, this operation can return grants in any Amazon Web Services account. You do not needkms:ListRetirableGrants permission (or any other additional permission) in any Amazon Web Services account other than your own. Required permissions: kms:ListRetirableGrants (IAM policy) in your Amazon Web Services account. Related operations:
|
|
| PutKeyPolicy | ||
| ReEncrypt |
Show DescriptionDecrypts ciphertext and then reencrypts it entirely within KMS. You can use this operation to change the KMS key under which data is encrypted, such as when you manually rotate a KMS key or change the KMS key that protects a ciphertext. You can also use it to reencrypt ciphertext under the same KMS key, such as to change the encryption context of a ciphertext. TheReEncrypt operation can decrypt ciphertext that was encrypted by using an KMS KMS key in an KMS operation, such as Encrypt or GenerateDataKey. It can also decrypt ciphertext that was encrypted by using the public key of an asymmetric KMS key outside of KMS. However, it cannot decrypt ciphertext produced by other libraries, such as the Amazon Web Services Encryption SDK or Amazon S3 client-side encryption. These libraries return a ciphertext format that is incompatible with KMS. When you use the ReEncrypt operation, you need to provide information for the decrypt operation and the subsequent encrypt operation.
"kms:ReEncrypt*" permission in your key policy. This permission is automatically included in the key policy when you use the console to create a KMS key. But you must include it manually when you create a KMS key programmatically or when you use the PutKeyPolicy operation to set a key policy. Related operations:
|
|
| ReplicateKey |
Show DescriptionReplicates a multi-Region key into the specified Region. This operation creates a multi-Region replica key based on a multi-Region primary key in a different Region of the same Amazon Web Services partition. You can create multiple replicas of a primary key, but each must be in a different Region. To create a multi-Region primary key, use the CreateKey operation. This operation supports multi-Region keys, an KMS feature that lets you create multiple interoperable KMS keys in different Amazon Web Services Regions. Because these KMS keys have the same key ID, key material, and other metadata, you can use them interchangeably to encrypt data in one Amazon Web Services Region and decrypt it in a different Amazon Web Services Region without re-encrypting the data or making a cross-Region call. For more information about multi-Region keys, see Using multi-Region keys in the Key Management Service Developer Guide. A replica key is a fully-functional KMS key that can be used independently of its primary and peer replica keys. A primary key and its replica keys share properties that make them interoperable. They have the same key ID and key material. They also have the same key spec, key usage, key material origin, and automatic key rotation status. KMS automatically synchronizes these shared properties among related multi-Region keys. All other properties of a replica key can differ, including its key policy, tags, aliases, and key state. KMS pricing and quotas for KMS keys apply to each primary key and replica key. When this operation completes, the new replica key has a transient key state ofCreating. This key state changes to Enabled (or PendingImport) after a few seconds when the process of creating the new replica key is complete. While the key state is Creating, you can manage key, but you cannot yet use it in cryptographic operations. If you are creating and using the replica key programmatically, retry on KMSInvalidStateException or call DescribeKey to check its KeyState value before using it. For details about the Creating key state, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. The CloudTrail log of a ReplicateKey operation records a ReplicateKey operation in the primary key's Region and a CreateKey operation in the replica key's Region. If you replicate a multi-Region primary key with imported key material, the replica key is created with no key material. You must import the same key material that you imported into the primary key. For details, see Importing key material into multi-Region keys in the Key Management Service Developer Guide. To convert a replica key to a primary key, use the UpdatePrimaryRegion operation. ReplicateKey uses different default values for the KeyPolicy and Tags parameters than those used in the KMS console. For details, see the parameter descriptions.
|
|
| RetireGrant | ||
| RevokeGrant | ||
| ScheduleKeyDeletion |
Show DescriptionSchedules the deletion of a KMS key. By default, KMS applies a waiting period of 30 days, but you can specify a waiting period of 7-30 days. When this operation is successful, the key state of the KMS key changes toPendingDeletion and the key can't be used in any cryptographic operations. It remains in this state for the duration of the waiting period. Before the waiting period ends, you can use CancelKeyDeletion to cancel the deletion of the KMS key. After the waiting period ends, KMS deletes the KMS key, its key material, and all KMS data associated with it, including all aliases that refer to it. ScheduleKeyDeletion deletes the KMS key from KMS. Then KMS makes a best effort to delete the key material from the associated CloudHSM cluster. However, you might need to manually delete the orphaned key material from the cluster and its backups. You can schedule the deletion of a multi-Region primary key and its replica keys at any time. However, KMS will not delete a multi-Region primary key with existing replica keys. If you schedule the deletion of a primary key with replicas, its key state changes to PendingReplicaDeletion and it cannot be replicated or used in cryptographic operations. This status can continue indefinitely. When the last of its replicas keys is deleted (not just scheduled), the key state of the primary key changes to PendingDeletion and its waiting period (PendingWindowInDays) begins. For details, see Deleting multi-Region keys in the Key Management Service Developer Guide. For more information about scheduling a KMS key for deletion, see Deleting KMS keys in the Key Management Service Developer Guide. The KMS key that you use for this operation must be in a compatible key state. For details, see Key state: Effect on your KMS key in the Key Management Service Developer Guide. Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. Required permissions: kms:ScheduleKeyDeletion (key policy) Related operations
|
|
| Sign |
Show DescriptionCreates a digital signature for a message or message digest by using the private key in an asymmetric KMS key. To verify the signature, use the Verify operation, or use the public key in the same asymmetric KMS key outside of KMS. For information about symmetric and asymmetric KMS keys, see Using Symmetric and Asymmetric KMS keys in the Key Management Service Developer Guide. Digital signatures are generated and verified by using asymmetric key pair, such as an RSA or ECC pair that is represented by an asymmetric KMS key. The key owner (or an authorized user) uses their private key to sign a message. Anyone with the public key can verify that the message was signed with that particular private key and that the message hasn't changed since it was signed. To use theSign operation, provide the following information:
KeyId parameter. Required permissions: kms:Sign (key policy) Related operations: Verify
|
|
| TagResource | ||
| UntagResource | ||
| UpdateAlias | ||
| UpdateCustomKeyStore |
Show DescriptionChanges the properties of a custom key store. Use theCustomKeyStoreId parameter to identify the custom key store you want to edit. Use the remaining parameters to change the properties of the custom key store. You can only update a custom key store that is disconnected. To disconnect the custom key store, use DisconnectCustomKeyStore. To reconnect the custom key store after the update completes, use ConnectCustomKeyStore. To find the connection state of a custom key store, use the DescribeCustomKeyStores operation. The CustomKeyStoreId parameter is required in all commands. Use the other parameters of UpdateCustomKeyStore to edit your key store settings.
|
|
| UpdateKeyDescription | ||
| UpdatePrimaryRegion |
Lakeformation Events
| Service | Event Name | Description |
|---|---|---|
| lakeformation | AddLFTagsToResource |
Show DescriptionAttaches one or more tags to an existing resource. |
| BatchGrantPermissions |
Show DescriptionBatch operation to grant permissions to the principal. |
|
| BatchRevokePermissions |
Show DescriptionBatch operation to revoke permissions from the principal. |
|
| CreateLFTag |
Show DescriptionCreates a tag with the specified name and values. |
|
| DeleteLFTag |
Show DescriptionDeletes the specified tag key name. If the attribute key does not exist or the tag does not exist, then the operation will not do anything. If the attribute key exists, then the operation checks if any resources are tagged with this attribute key, if yes, the API throws a 400 Exception with the message "Delete not allowed" as the tag key is still attached with resources. You can consider untagging resources with this tag key. |
|
| DeregisterResource |
Show DescriptionDeregisters the resource as managed by the Data Catalog. When you deregister a path, Lake Formation removes the path from the inline policy attached to your service-linked role. |
|
| DescribeResource |
Show DescriptionRetrieves the current data access role for the given resource registered in AWS Lake Formation. |
|
| GetDataLakeSettings |
Show DescriptionRetrieves the list of the data lake administrators of a Lake Formation-managed data lake. |
|
| GetEffectivePermissionsForPath |
Show DescriptionReturns the Lake Formation permissions for a specified table or database resource located at a path in Amazon S3.GetEffectivePermissionsForPath will not return databases and tables if the catalog is encrypted.
|
|
| GetLFTag |
Show DescriptionReturns a tag definition. |
|
| GetResourceLFTags |
Show DescriptionReturns the tags applied to a resource. |
|
| GrantPermissions |
Show DescriptionGrants permissions to the principal to access metadata in the Data Catalog and data organized in underlying data storage such as Amazon S3. For information about permissions, see Security and Access Control to Metadata and Data. |
|
| ListLFTags |
Show DescriptionLists tags that the requester has permission to view. |
|
| ListPermissions |
Show DescriptionReturns a list of the principal permissions on the resource, filtered by the permissions of the caller. For example, if you are granted an ALTER permission, you are able to see only the principal permissions for ALTER. This operation returns only those permissions that have been explicitly granted. For information about permissions, see Security and Access Control to Metadata and Data. |
|
| ListResources |
Show DescriptionLists the resources registered to be managed by the Data Catalog. |
|
| PutDataLakeSettings |
Show DescriptionSets the list of data lake administrators who have admin privileges on all resources managed by Lake Formation. For more information on admin privileges, see Granting Lake Formation Permissions. This API replaces the current list of data lake admins with the new list being passed. To add an admin, fetch the current list and add the new admin to that list and pass that list in this API. |
|
| RegisterResource |
Show DescriptionRegisters the resource as managed by the Data Catalog. To add or update data, Lake Formation needs read/write access to the chosen Amazon S3 path. Choose a role that you know has permission to do this, or choose the AWSServiceRoleForLakeFormationDataAccess service-linked role. When you register the first Amazon S3 path, the service-linked role and a new inline policy are created on your behalf. Lake Formation adds the first path to the inline policy and attaches it to the service-linked role. When you register subsequent paths, Lake Formation adds the path to the existing policy. The following request registers a new location and gives AWS Lake Formation permission to use the service-linked role to access that location.ResourceArn = arn:aws:s3:::my-bucket UseServiceLinkedRole = true If UseServiceLinkedRole is not set to true, you must provide or set the RoleArn: arn:aws:iam::12345:role/my-data-access-role
|
|
| RemoveLFTagsFromResource |
Show DescriptionRemoves a tag from the resource. Only database, table, or tableWithColumns resource are allowed. To tag columns, use the column inclusion list intableWithColumns to specify column input.
|
|
| RevokePermissions |
Show DescriptionRevokes permissions to the principal to access metadata in the Data Catalog and data organized in underlying data storage such as Amazon S3. |
|
| SearchDatabasesByLFTags |
Show DescriptionThis operation allows a search onDATABASE resources by TagCondition. This operation is used by admins who want to grant user permissions on certain TagConditions. Before making a grant, the admin can use SearchDatabasesByTags to find all resources where the given TagConditions are valid to verify whether the returned resources can be shared.
|
|
| SearchTablesByLFTags |
Show DescriptionThis operation allows a search onTABLE resources by LFTags. This will be used by admins who want to grant user permissions on certain LFTags. Before making a grant, the admin can use SearchTablesByLFTags to find all resources where the given LFTags are valid to verify whether the returned resources can be shared.
|
|
| UpdateLFTag |
Show DescriptionUpdates the list of possible values for the specified tag key. If the tag does not exist, the operation throws an EntityNotFoundException. The values in the delete key values will be deleted from list of possible values. If any value in the delete key values is attached to a resource, then API errors out with a 400 Exception - "Update not allowed". Untag the attribute before deleting the tag key's value. |
Lambda Events
| Service | Event Name | Description |
|---|---|---|
| lambda | AddLayerVersionPermission |
Show DescriptionAdds permissions to the resource-based policy of a version of an Lambda layer. Use this action to grant layer usage permission to other accounts. You can grant permission to a single account, all accounts in an organization, or all Amazon Web Services accounts. To revoke permission, call RemoveLayerVersionPermission with the statement ID that you specified when you added it. |
| AddPermission |
Show DescriptionGrants an Amazon Web Services service or another account permission to use a function. You can apply the policy at the function level, or specify a qualifier to restrict access to a single version or alias. If you use a qualifier, the invoker must use the full Amazon Resource Name (ARN) of that version or alias to invoke the function. Note: Lambda does not support adding policies to version $LATEST. To grant permission to another account, specify the account ID as thePrincipal. For Amazon Web Services services, the principal is a domain-style identifier defined by the service, like s3.amazonaws.com or sns.amazonaws.com. For Amazon Web Services services, you can also specify the ARN of the associated resource as the SourceArn. If you grant permission to a service principal without specifying the source, other accounts could potentially configure resources in their account to invoke your Lambda function. This action adds a statement to a resource-based permissions policy for the function. For more information about function policies, see Lambda Function Policies.
|
|
| CreateAlias |
Show DescriptionCreates an alias for a Lambda function version. Use aliases to provide clients with a function identifier that you can update to invoke a different version. You can also map an alias to split invocation requests between two versions. Use theRoutingConfig parameter to specify a second version and the percentage of invocation requests that it receives.
|
|
| CreateCodeSigningConfig |
Show DescriptionCreates a code signing configuration. A code signing configuration defines a list of allowed signing profiles and defines the code-signing validation policy (action to be taken if deployment validation checks fail). |
|
| CreateEventSourceMapping |
Show DescriptionCreates a mapping between an event source and an Lambda function. Lambda reads items from the event source and triggers the function. For details about each event source type, see the following topics.
|
|
| CreateFunction |
Show DescriptionCreates a Lambda function. To create a function, you need a deployment package and an execution role. The deployment package is a .zip file archive or container image that contains your function code. The execution role grants the function permission to use Amazon Web Services services, such as Amazon CloudWatch Logs for log streaming and X-Ray for request tracing. You set the package type toImage if the deployment package is a container image. For a container image, the code property must include the URI of a container image in the Amazon ECR registry. You do not need to specify the handler and runtime properties. You set the package type to Zip if the deployment package is a .zip file archive. For a .zip file archive, the code property specifies the location of the .zip file. You must also specify the handler and runtime properties. The code in the deployment package must be compatible with the target instruction set architecture of the function (x86-64 or arm64). If you do not specify the architecture, the default value is x86-64. When you create a function, Lambda provisions an instance of the function and its supporting resources. If your function connects to a VPC, this process can take a minute or so. During this time, you can't invoke or modify the function. The State, StateReason, and StateReasonCode fields in the response from GetFunctionConfiguration indicate when the function is ready to invoke. For more information, see Function States. A function has an unpublished version, and can have published versions and aliases. The unpublished version changes when you update your function's code and configuration. A published version is a snapshot of your function code and configuration that can't be changed. An alias is a named resource that maps to a version, and can be changed to map to a different version. Use the Publish parameter to create version 1 of your function from its initial configuration. The other parameters let you configure version-specific and function-level settings. You can modify version-specific settings later with UpdateFunctionConfiguration. Function-level settings apply to both the unpublished and published versions of the function, and include tags (TagResource) and per-function concurrency limits (PutFunctionConcurrency). You can use code signing if your deployment package is a .zip file archive. To enable code signing for this function, specify the ARN of a code-signing configuration. When a user attempts to deploy a code package with UpdateFunctionCode, Lambda checks that the code package has a valid signature from a trusted publisher. The code-signing configuration includes set set of signing profiles, which define the trusted publishers for this function. If another account or an Amazon Web Services service invokes your function, use AddPermission to grant permission by creating a resource-based IAM policy. You can grant permissions at the function level, on a version, or on an alias. To invoke your function directly, use Invoke. To invoke your function in response to events in other Amazon Web Services services, create an event source mapping (CreateEventSourceMapping), or configure a function trigger in the other service. For more information, see Invoking Functions.
|
|
| DeleteAlias | ||
| DeleteCodeSigningConfig |
Show DescriptionDeletes the code signing configuration. You can delete the code signing configuration only if no function is using it. |
|
| DeleteEventSourceMapping |
Show DescriptionDeletes an event source mapping. You can get the identifier of a mapping from the output of ListEventSourceMappings. When you delete an event source mapping, it enters aDeleting state and might not be completely deleted for several seconds.
|
|
| DeleteFunction | ||
| DeleteFunctionCodeSigningConfig | ||
| DeleteFunctionConcurrency | ||
| DeleteFunctionEventInvokeConfig | ||
| DeleteLayerVersion | ||
| DeleteProvisionedConcurrencyConfig | ||
| GetAccountSettings |
Show DescriptionRetrieves details about your account's limits and usage in an Amazon Web Services Region. |
|
| GetAlias |
Show DescriptionReturns details about a Lambda function alias. |
|
| GetCodeSigningConfig |
Show DescriptionReturns information about the specified code signing configuration. |
|
| GetEventSourceMapping |
Show DescriptionReturns details about an event source mapping. You can get the identifier of a mapping from the output of ListEventSourceMappings. |
|
| GetFunction |
Show DescriptionReturns information about the function or function version, with a link to download the deployment package that's valid for 10 minutes. If you specify a function version, only details that are specific to that version are returned. |
|
| GetFunctionCodeSigningConfig |
Show DescriptionReturns the code signing configuration for the specified function. |
|
| GetFunctionConcurrency |
Show DescriptionReturns details about the reserved concurrency configuration for a function. To set a concurrency limit for a function, use PutFunctionConcurrency. |
|
| GetFunctionConfiguration |
Show DescriptionReturns the version-specific settings of a Lambda function or version. The output includes only options that can vary between versions of a function. To modify these settings, use UpdateFunctionConfiguration. To get all of a function's details, including function-level settings, use GetFunction. |
|
| GetFunctionEventInvokeConfig |
Show DescriptionRetrieves the configuration for asynchronous invocation for a function, version, or alias. To configure options for asynchronous invocation, use PutFunctionEventInvokeConfig. |
|
| GetLayerVersion |
Show DescriptionReturns information about a version of an Lambda layer, with a link to download the layer archive that's valid for 10 minutes. |
|
| GetLayerVersionByArn |
Show DescriptionReturns information about a version of an Lambda layer, with a link to download the layer archive that's valid for 10 minutes. |
|
| GetLayerVersionPolicy |
Show DescriptionReturns the permission policy for a version of an Lambda layer. For more information, see AddLayerVersionPermission. |
|
| GetPolicy |
Show DescriptionReturns the resource-based IAM policy for a function, version, or alias. |
|
| GetProvisionedConcurrencyConfig |
Show DescriptionRetrieves the provisioned concurrency configuration for a function's alias or version. |
|
| Invoke |
Show DescriptionInvokes a Lambda function. You can invoke a function synchronously (and wait for the response), or asynchronously. To invoke a function asynchronously, setInvocationType to Event. For synchronous invocation, details about the function response, including errors, are included in the response body and headers. For either invocation type, you can find more information in the execution log and trace. When an error occurs, your function may be invoked multiple times. Retry behavior varies by error type, client, event source, and invocation type. For example, if you invoke a function asynchronously and it returns an error, Lambda executes the function up to two more times. For more information, see Retry Behavior. For asynchronous invocation, Lambda adds events to a queue before sending them to your function. If your function does not have enough capacity to keep up with the queue, events may be lost. Occasionally, your function may receive the same event multiple times, even if no error occurs. To retain events that were not processed, configure your function with a dead-letter queue. The status code in the API response doesn't reflect function errors. Error codes are reserved for errors that prevent your function from executing, such as permissions errors, limit errors, or issues with your function's code and configuration. For example, Lambda returns TooManyRequestsException if executing the function would cause you to exceed a concurrency limit at either the account level (ConcurrentInvocationLimitExceeded) or function level (ReservedFunctionConcurrentInvocationLimitExceeded). For functions with a long timeout, your client might be disconnected during synchronous invocation while it waits for a response. Configure your HTTP client, SDK, firewall, proxy, or operating system to allow for long connections with timeout or keep-alive settings. This operation requires permission for the lambda:InvokeFunction action.
|
|
| InvokeAsync |
Show Description |
|
| ListAliases |
Show DescriptionReturns a list of aliases for a Lambda function. |
|
| ListCodeSigningConfigs |
Show DescriptionReturns a list of code signing configurations. A request returns up to 10,000 configurations per call. You can use theMaxItems parameter to return fewer configurations per call.
|
|
| ListEventSourceMappings |
Show DescriptionLists event source mappings. Specify anEventSourceArn to only show event source mappings for a single event source.
|
|
| ListFunctionEventInvokeConfigs |
Show DescriptionRetrieves a list of configurations for asynchronous invocation for a function. To configure options for asynchronous invocation, use PutFunctionEventInvokeConfig. |
|
| ListFunctions |
Show DescriptionReturns a list of Lambda functions, with the version-specific configuration of each. Lambda returns up to 50 functions per call. SetFunctionVersion to ALL to include all published versions of each function in addition to the unpublished version. ListFunctions action returns a subset of the FunctionConfiguration fields. To get the additional fields (State, StateReasonCode, StateReason, LastUpdateStatus, LastUpdateStatusReason, LastUpdateStatusReasonCode) for a function or version, use GetFunction. |
|
| ListFunctionsByCodeSigningConfig |
Show DescriptionList the functions that use the specified code signing configuration. You can use this method prior to deleting a code signing configuration, to verify that no functions are using it. |
|
| ListLayerVersions |
Show DescriptionLists the versions of an Lambda layer. Versions that have been deleted aren't listed. Specify a runtime identifier to list only versions that indicate that they're compatible with that runtime. Specify a compatible architecture to include only layer versions that are compatible with that architecture. |
|
| ListLayers |
Show DescriptionLists Lambda layers and shows information about the latest version of each. Specify a runtime identifier to list only layers that indicate that they're compatible with that runtime. Specify a compatible architecture to include only layers that are compatible with that instruction set architecture. |
|
| ListProvisionedConcurrencyConfigs |
Show DescriptionRetrieves a list of provisioned concurrency configurations for a function. |
|
| ListTags | ||
| ListVersionsByFunction |
Show DescriptionReturns a list of versions, with the version-specific configuration of each. Lambda returns up to 50 versions per call. |
|
| PublishLayerVersion |
Show DescriptionCreates an Lambda layer from a ZIP archive. Each time you callPublishLayerVersion with the same layer name, a new version is created. Add layers to your function with CreateFunction or UpdateFunctionConfiguration.
|
|
| PublishVersion |
Show DescriptionCreates a version from the current code and configuration of a function. Use versions to create a snapshot of your function code and configuration that doesn't change. Lambda doesn't publish a version if the function's configuration and code haven't changed since the last version. Use UpdateFunctionCode or UpdateFunctionConfiguration to update the function before publishing a version. Clients can invoke versions directly or with an alias. To create an alias, use CreateAlias. |
|
| PutFunctionCodeSigningConfig |
Show DescriptionUpdate the code signing configuration for the function. Changes to the code signing configuration take effect the next time a user tries to deploy a code package to the function. |
|
| PutFunctionConcurrency |
Show DescriptionSets the maximum number of simultaneous executions for a function, and reserves capacity for that concurrency level. Concurrency settings apply to the function as a whole, including all published versions and the unpublished version. Reserving concurrency both ensures that your function has capacity to process the specified number of events simultaneously, and prevents it from scaling beyond that level. Use GetFunction to see the current setting for a function. Use GetAccountSettings to see your Regional concurrency limit. You can reserve concurrency for as many functions as you like, as long as you leave at least 100 simultaneous executions unreserved for functions that aren't configured with a per-function limit. For more information, see Managing Concurrency. |
|
| PutFunctionEventInvokeConfig |
Show DescriptionConfigures options for asynchronous invocation on a function, version, or alias. If a configuration already exists for a function, version, or alias, this operation overwrites it. If you exclude any settings, they are removed. To set one option without affecting existing settings for other options, use UpdateFunctionEventInvokeConfig. By default, Lambda retries an asynchronous invocation twice if the function returns an error. It retains events in a queue for up to six hours. When an event fails all processing attempts or stays in the asynchronous invocation queue for too long, Lambda discards it. To retain discarded events, configure a dead-letter queue with UpdateFunctionConfiguration. To send an invocation record to a queue, topic, function, or event bus, specify a destination. You can configure separate destinations for successful invocations (on-success) and events that fail all processing attempts (on-failure). You can configure destinations in addition to or instead of a dead-letter queue. |
|
| PutProvisionedConcurrencyConfig |
Show DescriptionAdds a provisioned concurrency configuration to a function's alias or version. |
|
| RemoveLayerVersionPermission | ||
| RemovePermission | ||
| TagResource | ||
| UntagResource | ||
| UpdateAlias |
Show DescriptionUpdates the configuration of a Lambda function alias. |
|
| UpdateCodeSigningConfig |
Show DescriptionUpdate the code signing configuration. Changes to the code signing configuration take effect the next time a user tries to deploy a code package to the function. |
|
| UpdateEventSourceMapping |
Show DescriptionUpdates an event source mapping. You can change the function that Lambda invokes, or pause invocation and resume later from the same location. The following error handling options are only available for stream sources (DynamoDB and Kinesis):
|
|
| UpdateFunctionCode |
Show DescriptionUpdates a Lambda function's code. If code signing is enabled for the function, the code package must be signed by a trusted publisher. For more information, see Configuring code signing. The function's code is locked when you publish a version. You can't modify the code of a published version, only the unpublished version. |
|
| UpdateFunctionConfiguration |
Show DescriptionModify the version-specific settings of a Lambda function. When you update a function, Lambda provisions an instance of the function and its supporting resources. If your function connects to a VPC, this process can take a minute. During this time, you can't modify the function, but you can still invoke it. TheLastUpdateStatus, LastUpdateStatusReason, and LastUpdateStatusReasonCode fields in the response from GetFunctionConfiguration indicate when the update is complete and the function is processing events with the new configuration. For more information, see Function States. These settings can vary between versions of a function and are locked when you publish a version. You can't modify the configuration of a published version, only the unpublished version. To configure function concurrency, use PutFunctionConcurrency. To grant invoke permissions to an account or Amazon Web Services service, use AddPermission.
|
Lex-models Events
| Service | Event Name | Description |
|---|---|---|
| lex-models | CreateBotVersion |
Show DescriptionCreates a new version of the bot based on the$LATEST version. If the $LATEST version of this resource hasn't changed since you created the last version, Amazon Lex doesn't create a new version. It returns the last created version. $LATEST version of the bot. You can't update the numbered versions that you create with the CreateBotVersion operation. lex:CreateBotVersion action.
|
| CreateIntentVersion |
Show DescriptionCreates a new version of an intent based on the$LATEST version of the intent. If the $LATEST version of this intent hasn't changed since you last updated it, Amazon Lex doesn't create a new version. It returns the last version you created. $LATEST version of the intent. You can't update the numbered versions that you create with the CreateIntentVersion operation. lex:CreateIntentVersion action.
|
|
| CreateSlotTypeVersion |
Show DescriptionCreates a new version of a slot type based on the$LATEST version of the specified slot type. If the $LATEST version of this resource has not changed since the last version that you created, Amazon Lex doesn't create a new version. It returns the last version that you created. $LATEST version of a slot type. You can't update the numbered versions that you create with the CreateSlotTypeVersion operation. lex:CreateSlotTypeVersion action.
|
|
| DeleteBot | ||
| DeleteBotAlias | ||
| DeleteBotChannelAssociation | ||
| DeleteBotVersion | ||
| DeleteIntent | ||
| DeleteIntentVersion | ||
| DeleteSlotType | ||
| DeleteSlotTypeVersion | ||
| DeleteUtterances | ||
| GetBot |
Show DescriptionReturns metadata information for a specific bot. You must provide the bot name and the bot version or alias. This operation requires permissions for thelex:GetBot action.
|
|
| GetBotAlias |
Show DescriptionReturns information about an Amazon Lex bot alias. For more information about aliases, see versioning-aliases. This operation requires permissions for thelex:GetBotAlias action.
|
|
| GetBotAliases |
Show DescriptionReturns a list of aliases for a specified Amazon Lex bot. This operation requires permissions for thelex:GetBotAliases action.
|
|
| GetBotChannelAssociation |
Show DescriptionReturns information about the association between an Amazon Lex bot and a messaging platform. This operation requires permissions for thelex:GetBotChannelAssociation action.
|
|
| GetBotChannelAssociations |
Show DescriptionReturns a list of all of the channels associated with the specified bot. TheGetBotChannelAssociations operation requires permissions for the lex:GetBotChannelAssociations action.
|
|
| GetBotVersions |
Show DescriptionGets information about all of the versions of a bot. TheGetBotVersions operation returns a BotMetadata object for each version of a bot. For example, if a bot has three numbered versions, the GetBotVersions operation returns four BotMetadata objects in the response, one for each numbered version and one for the $LATEST version. The GetBotVersions operation always returns at least one version, the $LATEST version. This operation requires permissions for the lex:GetBotVersions action.
|
|
| GetBots |
Show DescriptionReturns bot information as follows:
lex:GetBots action.
|
|
| GetBuiltinIntent |
Show DescriptionReturns information about a built-in intent. This operation requires permission for thelex:GetBuiltinIntent action.
|
|
| GetBuiltinIntents |
Show DescriptionGets a list of built-in intents that meet the specified criteria. This operation requires permission for thelex:GetBuiltinIntents action.
|
|
| GetBuiltinSlotTypes |
Show DescriptionGets a list of built-in slot types that meet the specified criteria. For a list of built-in slot types, see Slot Type Reference in the Alexa Skills Kit. This operation requires permission for thelex:GetBuiltInSlotTypes action.
|
|
| GetExport |
Show DescriptionExports the contents of a Amazon Lex resource in a specified format. |
|
| GetImport |
Show DescriptionGets information about an import job started with theStartImport operation.
|
|
| GetIntent |
Show DescriptionReturns information about an intent. In addition to the intent name, you must specify the intent version. This operation requires permissions to perform thelex:GetIntent action.
|
|
| GetIntentVersions |
Show DescriptionGets information about all of the versions of an intent. TheGetIntentVersions operation returns an IntentMetadata object for each version of an intent. For example, if an intent has three numbered versions, the GetIntentVersions operation returns four IntentMetadata objects in the response, one for each numbered version and one for the $LATEST version. The GetIntentVersions operation always returns at least one version, the $LATEST version. This operation requires permissions for the lex:GetIntentVersions action.
|
|
| GetIntents |
Show DescriptionReturns intent information as follows:
lex:GetIntents action.
|
|
| GetMigration |
Show DescriptionProvides details about an ongoing or complete migration from an Amazon Lex V1 bot to an Amazon Lex V2 bot. Use this operation to view the migration alerts and warnings related to the migration. |
|
| GetMigrations |
Show DescriptionGets a list of migrations between Amazon Lex V1 and Amazon Lex V2. |
|
| GetSlotType |
Show DescriptionReturns information about a specific version of a slot type. In addition to specifying the slot type name, you must specify the slot type version. This operation requires permissions for thelex:GetSlotType action.
|
|
| GetSlotTypeVersions |
Show DescriptionGets information about all versions of a slot type. TheGetSlotTypeVersions operation returns a SlotTypeMetadata object for each version of a slot type. For example, if a slot type has three numbered versions, the GetSlotTypeVersions operation returns four SlotTypeMetadata objects in the response, one for each numbered version and one for the $LATEST version. The GetSlotTypeVersions operation always returns at least one version, the $LATEST version. This operation requires permissions for the lex:GetSlotTypeVersions action.
|
|
| GetSlotTypes |
Show DescriptionReturns slot type information as follows:
lex:GetSlotTypes action.
|
|
| GetUtterancesView |
Show DescriptionUse theGetUtterancesView operation to get information about the utterances that your users have made to your bot. You can use this list to tune the utterances that your bot responds to. For example, say that you have created a bot to order flowers. After your users have used your bot for a while, use the GetUtterancesView operation to see the requests that they have made and whether they have been successful. You might find that the utterance "I want flowers" is not being recognized. You could add this utterance to the OrderFlowers intent so that your bot recognizes that utterance. After you publish a new version of a bot, you can get information about the old version and the new so that you can compare the performance across the two versions. Utterance statistics are generated once a day. Data is available for the last 15 days. You can request information for up to 5 versions of your bot in each request. Amazon Lex returns the most frequent utterances received by the bot in the last 15 days. The response contains information about a maximum of 100 utterances for each version. If you set childDirected field to true when you created your bot, if you are using slot obfuscation with one or more slots, or if you opted out of participating in improving Amazon Lex, utterances are not available. This operation requires permissions for the lex:GetUtterancesView action.
|
|
| ListTagsForResource |
Show DescriptionGets a list of tags associated with the specified resource. Only bots, bot aliases, and bot channels can have tags associated with them. |
|
| PutBot |
Show DescriptionCreates an Amazon Lex conversational bot or replaces an existing bot. When you create or update a bot you are only required to specify a name, a locale, and whether the bot is directed toward children under age 13. You can use this to add intents later, or to remove intents from an existing bot. When you create a bot with the minimum information, the bot is created or updated but Amazon Lex returns theFAILED. You can build the bot after you add one or more intents. For more information about Amazon Lex bots, see how-it-works. If you specify the name of an existing bot, the fields in the request replace the existing values in the $LATEST version of the bot. Amazon Lex removes any fields that you don't provide values for in the request, except for the idleTTLInSeconds and privacySettings fields, which are set to their default values. If you don't specify values for required fields, Amazon Lex throws an exception. This operation requires permissions for the lex:PutBot action. For more information, see security-iam.
|
|
| PutBotAlias |
Show DescriptionCreates an alias for the specified version of the bot or replaces an alias for the specified bot. To change the version of the bot that the alias points to, replace the alias. For more information about aliases, see versioning-aliases. This operation requires permissions for thelex:PutBotAlias action.
|
|
| PutIntent |
Show DescriptionCreates an intent or replaces an existing intent. To define the interaction between the user and your bot, you use one or more intents. For a pizza ordering bot, for example, you would create anOrderPizza intent. To create an intent or replace an existing intent, you must provide the following:
$LATEST version of the intent with the values in the request. Amazon Lex removes fields that you don't provide in the request. If you don't specify the required fields, Amazon Lex throws an exception. When you update the $LATEST version of an intent, the status field of any bot that uses the $LATEST version of the intent is set to NOT_BUILT. For more information, see how-it-works. This operation requires permissions for the lex:PutIntent action.
|
|
| PutSlotType |
Show DescriptionCreates a custom slot type or replaces an existing custom slot type. To create a custom slot type, specify a name for the slot type and a set of enumeration values, which are the values that a slot of this type can assume. For more information, see how-it-works. If you specify the name of an existing slot type, the fields in the request replace the existing values in the$LATEST version of the slot type. Amazon Lex removes the fields that you don't provide in the request. If you don't specify required fields, Amazon Lex throws an exception. When you update the $LATEST version of a slot type, if a bot uses the $LATEST version of an intent that contains the slot type, the bot's status field is set to NOT_BUILT. This operation requires permissions for the lex:PutSlotType action.
|
|
| StartImport |
Show DescriptionStarts a job to import a resource to Amazon Lex. |
|
| StartMigration |
Show DescriptionStarts migrating a bot from Amazon Lex V1 to Amazon Lex V2. Migrate your bot when you want to take advantage of the new features of Amazon Lex V2. For more information, see Migrating a bot in the Amazon Lex developer guide. |
|
| TagResource |
Show DescriptionAdds the specified tags to the specified resource. If a tag key already exists, the existing value is replaced with the new value. |
Lex-runtime Events
| Service | Event Name | Description |
|---|---|---|
| lex-runtime | DeleteSession |
Show DescriptionRemoves session information for a specified bot, alias, and user ID. |
| GetSession |
Show DescriptionReturns session information for a specified bot, alias, and user ID. |
|
| PostContent |
Show DescriptionSends user input (text or speech) to Amazon Lex. Clients use this API to send text and audio requests to Amazon Lex at runtime. Amazon Lex interprets the user input using the machine learning model that it built for the bot. ThePostContent operation supports audio input at 8kHz and 16kHz. You can use 8kHz audio to achieve higher speech recognition accuracy in telephone audio applications. In response, Amazon Lex returns the next message to convey to the user. Consider the following example messages:
message, Amazon Lex provides additional context about the message in the response that you can use to enhance client behavior, such as displaying the appropriate client user interface. Consider the following examples:
sessionAttributes. For more information, see Managing Conversation Context.
|
|
| PostText |
Show DescriptionSends user input to Amazon Lex. Client applications can use this API to send requests to Amazon Lex at runtime. Amazon Lex then interprets the user input using the machine learning model it built for the bot. In response, Amazon Lex returns the nextmessage to convey to the user an optional responseCard to display. Consider the following example messages:
message, Amazon Lex provides additional context about the message in the response that you might use to enhance client behavior, for example, to display the appropriate client user interface. These are the slotToElicit, dialogState, intentName, and slots fields in the response. Consider the following examples:
sessionAttributes. For more information, see Managing Conversation Context.
|
Lexv2-models Events
| Service | Event Name | Description |
|---|---|---|
| lexv2-models | BuildBotLocale |
Show DescriptionBuilds a bot, its intents, and its slot types into a specific locale. A bot can be built into multiple locales. At runtime the locale is used to choose a specific build of the bot. |
| CreateBot |
Show DescriptionCreates an Amazon Lex conversational bot. |
|
| CreateBotAlias |
Show DescriptionCreates an alias for the specified version of a bot. Use an alias to enable you to change the version of a bot without updating applications that use the bot. For example, you can create an alias called "PROD" that your applications use to call the Amazon Lex bot. |
|
| CreateBotLocale |
Show DescriptionCreates a locale in the bot. The locale contains the intents and slot types that the bot uses in conversations with users in the specified language and locale. You must add a locale to a bot before you can add intents and slot types to the bot. |
|
| CreateBotVersion |
Show DescriptionCreates a new version of the bot based on theDRAFT version. If the DRAFT version of this resource hasn't changed since you created the last version, Amazon Lex doesn't create a new version, it returns the last created version. When you create the first version of a bot, Amazon Lex sets the version to 1. Subsequent versions increment by 1.
|
|
| CreateExport |
Show DescriptionCreates a zip archive containing the contents of a bot or a bot locale. The archive contains a directory structure that contains JSON files that define the bot. You can create an archive that contains the complete definition of a bot, or you can specify that the archive contain only the definition of a single bot locale. For more information about exporting bots, and about the structure of the export archive, see Importing and exporting bots |
|
| CreateIntent |
Show DescriptionCreates an intent. To define the interaction between the user and your bot, you define one or more intents. For example, for a pizza ordering bot you would create anOrderPizza intent. When you create an intent, you must provide a name. You can optionally provide the following:
|
|
| CreateResourcePolicy |
Show DescriptionCreates a new resource policy with the specified policy statements. |
|
| CreateResourcePolicyStatement |
Show DescriptionAdds a new resource policy statement to a bot or bot alias. If a resource policy exists, the statement is added to the current resource policy. If a policy doesn't exist, a new policy is created. You can't create a resource policy statement that allows cross-account access. |
|
| CreateSlot |
Show DescriptionCreates a slot in an intent. A slot is a variable needed to fulfill an intent. For example, anOrderPizza intent might need slots for size, crust, and number of pizzas. For each slot, you define one or more utterances that Amazon Lex uses to elicit a response from the user.
|
|
| CreateSlotType |
Show DescriptionCreates a custom slot type To create a custom slot type, specify a name for the slot type and a set of enumeration values, the values that a slot of this type can assume. |
|
| CreateUploadUrl |
Show DescriptionGets a pre-signed S3 write URL that you use to upload the zip archive when importing a bot or a bot locale. |
|
| DeleteBot |
Show DescriptionDeletes all versions of a bot, including theDraft version. To delete a specific version, use the DeleteBotVersion operation. When you delete a bot, all of the resources contained in the bot are also deleted. Deleting a bot removes all locales, intents, slot, and slot types defined for the bot. If a bot has an alias, the DeleteBot operation returns a ResourceInUseException exception. If you want to delete the bot and the alias, set the skipResourceInUseCheck parameter to true.
|
|
| DeleteBotAlias |
Show DescriptionDeletes the specified bot alias. |
|
| DeleteBotLocale |
Show DescriptionRemoves a locale from a bot. When you delete a locale, all intents, slots, and slot types defined for the locale are also deleted. |
|
| DeleteBotVersion |
Show DescriptionDeletes a specific version of a bot. To delete all version of a bot, use the DeleteBot operation. |
|
| DeleteExport |
Show DescriptionRemoves a previous export and the associated files stored in an S3 bucket. |
|
| DeleteImport |
Show DescriptionRemoves a previous import and the associated file stored in an S3 bucket. |
|
| DeleteIntent | ||
| DeleteResourcePolicy |
Show DescriptionRemoves an existing policy from a bot or bot alias. If the resource doesn't have a policy attached, Amazon Lex returns an exception. |
|
| DeleteResourcePolicyStatement |
Show DescriptionDeletes a policy statement from a resource policy. If you delete the last statement from a policy, the policy is deleted. If you specify a statement ID that doesn't exist in the policy, or if the bot or bot alias doesn't have a policy attached, Amazon Lex returns an exception. |
|
| DeleteSlot | ||
| DeleteSlotType | ||
| DeleteUtterances |
Show DescriptionDeletes stored utterances. Amazon Lex stores the utterances that users send to your bot. Utterances are stored for 15 days for use with the operation, and then stored indefinitely for use in improving the ability of your bot to respond to user input.. Use theDeleteUtterances operation to manually delete utterances for a specific session. When you use the DeleteUtterances operation, utterances stored for improving your bot's ability to respond to user input are deleted immediately. Utterances stored for use with the ListAggregatedUtterances operation are deleted after 15 days.
|
|
| DescribeBot |
Show DescriptionProvides metadata information about a bot. |
|
| DescribeBotAlias |
Show DescriptionGet information about a specific bot alias. |
|
| DescribeBotLocale |
Show DescriptionDescribes the settings that a bot has for a specific locale. |
|
| DescribeBotVersion |
Show DescriptionProvides metadata about a version of a bot. |
|
| DescribeExport |
Show DescriptionGets information about a specific export. |
|
| DescribeImport |
Show DescriptionGets information about a specific import. |
|
| DescribeIntent |
Show DescriptionReturns metadata about an intent. |
|
| DescribeResourcePolicy |
Show DescriptionGets the resource policy and policy revision for a bot or bot alias. |
|
| DescribeSlot |
Show DescriptionGets metadata information about a slot. |
|
| DescribeSlotType |
Show DescriptionGets metadata information about a slot type. |
|
| ListAggregatedUtterances |
Show DescriptionProvides a list of utterances that users have sent to the bot. Utterances are aggregated by the text of the utterance. For example, all instances where customers used the phrase "I want to order pizza" are aggregated into the same line in the response. You can see both detected utterances and missed utterances. A detected utterance is where the bot properly recognized the utterance and activated the associated intent. A missed utterance was not recognized by the bot and didn't activate an intent. Utterances can be aggregated for a bot alias or for a bot version, but not both at the same time. Utterances statistics are not generated under the following conditions:
|
|
| ListBotAliases |
Show DescriptionGets a list of aliases for the specified bot. |
|
| ListBotLocales |
Show DescriptionGets a list of locales for the specified bot. |
|
| ListBotVersions |
Show DescriptionGets information about all of the versions of a bot. TheListBotVersions operation returns a summary of each version of a bot. For example, if a bot has three numbered versions, the ListBotVersions operation returns for summaries, one for each numbered version and one for the DRAFT version. The ListBotVersions operation always returns at least one version, the DRAFT version.
|
|
| ListBots |
Show DescriptionGets a list of available bots. |
|
| ListBuiltInIntents |
Show DescriptionGets a list of built-in intents provided by Amazon Lex that you can use in your bot. To use a built-in intent as a the base for your own intent, include the built-in intent signature in theparentIntentSignature parameter when you call the CreateIntent operation. For more information, see CreateIntent.
|
|
| ListBuiltInSlotTypes |
Show DescriptionGets a list of built-in slot types that meet the specified criteria. |
|
| ListExports |
Show DescriptionLists the exports for a bot or bot locale. Exports are kept in the list for 7 days. |
|
| ListImports |
Show DescriptionLists the imports for a bot or bot locale. Imports are kept in the list for 7 days. |
|
| ListIntents |
Show DescriptionGet a list of intents that meet the specified criteria. |
|
| ListSlotTypes |
Show DescriptionGets a list of slot types that match the specified criteria. |
|
| ListSlots |
Show DescriptionGets a list of slots that match the specified criteria. |
|
| ListTagsForResource |
Show DescriptionGets a list of tags associated with a resource. Only bots, bot aliases, and bot channels can have tags associated with them. |
|
| StartImport |
Show DescriptionStarts importing a bot or bot locale from a zip archive that you uploaded to an S3 bucket. |
|
| TagResource |
Show DescriptionAdds the specified tags to the specified resource. If a tag key already exists, the existing value is replaced with the new value. |
|
| UntagResource |
Show DescriptionRemoves tags from a bot, bot alias, or bot channel. |
|
| UpdateBot |
Show DescriptionUpdates the configuration of an existing bot. |
|
| UpdateBotAlias |
Show DescriptionUpdates the configuration of an existing bot alias. |
|
| UpdateBotLocale |
Show DescriptionUpdates the settings that a bot has for a specific locale. |
|
| UpdateExport |
Show DescriptionUpdates the password used to protect an export zip archive. The password is not required. If you don't supply a password, Amazon Lex generates a zip file that is not protected by a password. This is the archive that is available at the pre-signed S3 URL provided by the operation. |
|
| UpdateIntent |
Show DescriptionUpdates the settings for an intent. |
|
| UpdateResourcePolicy |
Show DescriptionReplaces the existing resource policy for a bot or bot alias with a new one. If the policy doesn't exist, Amazon Lex returns an exception. |
|
| UpdateSlot |
Show DescriptionUpdates the settings for a slot. |
Lexv2-runtime Events
| Service | Event Name | Description |
|---|---|---|
| lexv2-runtime | DeleteSession |
Show DescriptionRemoves session information for a specified bot, alias, and user ID. You can use this operation to restart a conversation with a bot. When you remove a session, the entire history of the session is removed so that you can start again. You don't need to delete a session. Sessions have a time limit and will expire. Set the session time limit when you create the bot. The default is 5 minutes, but you can specify anything between 1 minute and 24 hours. If you specify a bot or alias ID that doesn't exist, you receive aBadRequestException. If the locale doesn't exist in the bot, or if the locale hasn't been enables for the alias, you receive a BadRequestException.
|
| GetSession |
Show DescriptionReturns session information for a specified bot, alias, and user. For example, you can use this operation to retrieve session information for a user that has left a long-running session in use. If the bot, alias, or session identifier doesn't exist, Amazon Lex V2 returns aBadRequestException. If the locale doesn't exist or is not enabled for the alias, you receive a BadRequestException.
|
|
| PutSession |
Show DescriptionCreates a new session or modifies an existing session with an Amazon Lex V2 bot. Use this operation to enable your application to set the state of the bot. |
|
| RecognizeText |
Show DescriptionSends user input to Amazon Lex V2. Client applications use this API to send requests to Amazon Lex V2 at runtime. Amazon Lex V2 then interprets the user input using the machine learning model that it build for the bot. In response, Amazon Lex V2 returns the next message to convey to the user and an optional response card to display. If the optional post-fulfillment response is specified, the messages are returned as follows. For more information, see PostFulfillmentStatusSpecification.
|
|
| RecognizeUtterance |
Show DescriptionSends user input to Amazon Lex V2. You can send text or speech. Clients use this API to send text and audio requests to Amazon Lex V2 at runtime. Amazon Lex V2 interprets the user input using the machine learning model built for the bot. The following request fields must be compressed with gzip and then base64 encoded before you send them to Amazon Lex V2.
|
License-manager Events
| Service | Event Name | Description |
|---|---|---|
| license-manager | AcceptGrant |
Show DescriptionAccepts the specified grant. |
| CheckInLicense |
Show DescriptionChecks in the specified license. Check in a license when it is no longer in use. |
|
| CheckoutBorrowLicense |
Show DescriptionChecks out the specified license for offline use. |
|
| CheckoutLicense |
Show DescriptionChecks out the specified license. |
|
| CreateGrant |
Show DescriptionCreates a grant for the specified license. A grant shares the use of license entitlements with specific Amazon Web Services accounts. |
|
| CreateGrantVersion |
Show DescriptionCreates a new version of the specified grant. |
|
| CreateLicense |
Show DescriptionCreates a license. |
|
| CreateLicenseConfiguration |
Show DescriptionCreates a license configuration. A license configuration is an abstraction of a customer license agreement that can be consumed and enforced by License Manager. Components include specifications for the license type (licensing by instance, socket, CPU, or vCPU), allowed tenancy (shared tenancy, Dedicated Instance, Dedicated Host, or all of these), license affinity to host (how long a license must be associated with a host), and the number of licenses purchased and used. |
|
| CreateLicenseConversionTaskForResource |
Show DescriptionCreates a new license conversion task. |
|
| CreateLicenseManagerReportGenerator |
Show DescriptionCreates a report generator. |
|
| CreateLicenseVersion |
Show DescriptionCreates a new version of the specified license. |
|
| CreateToken |
Show DescriptionCreates a long-lived token. A refresh token is a JWT token used to get an access token. With an access token, you can call AssumeRoleWithWebIdentity to get role credentials that you can use to call License Manager to manage the specified license. |
|
| DeleteGrant |
Show DescriptionDeletes the specified grant. |
|
| DeleteLicense |
Show DescriptionDeletes the specified license. |
|
| DeleteLicenseConfiguration |
Show DescriptionDeletes the specified license configuration. You cannot delete a license configuration that is in use. |
|
| DeleteLicenseManagerReportGenerator |
Show DescriptionDeletes the specified report generator. This action deletes the report generator, which stops it from generating future reports. The action cannot be reversed. It has no effect on the previous reports from this generator. |
|
| DeleteToken |
Show DescriptionDeletes the specified token. Must be called in the license home Region. |
|
| ExtendLicenseConsumption |
Show DescriptionExtends the expiration date for license consumption. |
|
| GetAccessToken |
Show DescriptionGets a temporary access token to use with AssumeRoleWithWebIdentity. Access tokens are valid for one hour. |
|
| GetGrant |
Show DescriptionGets detailed information about the specified grant. |
|
| GetLicense |
Show DescriptionGets detailed information about the specified license. |
|
| GetLicenseConfiguration |
Show DescriptionGets detailed information about the specified license configuration. |
|
| GetLicenseConversionTask |
Show DescriptionGets information about the specified license type conversion task. |
|
| GetLicenseManagerReportGenerator |
Show DescriptionGets information about the specified report generator. |
|
| GetLicenseUsage |
Show DescriptionGets detailed information about the usage of the specified license. |
|
| GetServiceSettings |
Show DescriptionGets the License Manager settings for the current Region. |
|
| ListAssociationsForLicenseConfiguration |
Show DescriptionLists the resource associations for the specified license configuration. Resource associations need not consume licenses from a license configuration. For example, an AMI or a stopped instance might not consume a license (depending on the license rules). |
|
| ListDistributedGrants |
Show DescriptionLists the grants distributed for the specified license. |
|
| ListFailuresForLicenseConfigurationOperations |
Show DescriptionLists the license configuration operations that failed. |
|
| ListLicenseConfigurations |
Show DescriptionLists the license configurations for your account. |
|
| ListLicenseConversionTasks |
Show DescriptionLists the license type conversion tasks for your account. |
|
| ListLicenseManagerReportGenerators |
Show DescriptionLists the report generators for your account. |
|
| ListLicenseSpecificationsForResource |
Show DescriptionDescribes the license configurations for the specified resource. |
|
| ListLicenseVersions |
Show DescriptionLists all versions of the specified license. |
|
| ListLicenses |
Show DescriptionLists the licenses for your account. |
|
| ListReceivedGrants |
Show DescriptionLists grants that are received but not accepted. |
|
| ListReceivedLicenses |
Show DescriptionLists received licenses. |
|
| ListResourceInventory |
Show DescriptionLists resources managed using Systems Manager inventory. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified license configuration. |
|
| ListTokens |
Show DescriptionLists your tokens. |
|
| ListUsageForLicenseConfiguration |
Show DescriptionLists all license usage records for a license configuration, displaying license consumption details by resource at a selected point in time. Use this action to audit the current license consumption for any license inventory and configuration. |
|
| RejectGrant |
Show DescriptionRejects the specified grant. |
|
| TagResource |
Show DescriptionAdds the specified tags to the specified license configuration. |
|
| UntagResource |
Show DescriptionRemoves the specified tags from the specified license configuration. |
|
| UpdateLicenseConfiguration |
Show DescriptionModifies the attributes of an existing license configuration. |
|
| UpdateLicenseManagerReportGenerator |
Show DescriptionUpdates a report generator. After you make changes to a report generator, it starts generating new reports within 60 minutes of being updated. |
|
| UpdateLicenseSpecificationsForResource |
Show DescriptionAdds or removes the specified license configurations for the specified Amazon Web Services resource. You can update the license specifications of AMIs, instances, and hosts. You cannot update the license specifications for launch templates and CloudFormation templates, as they send license configurations to the operation that creates the resource. |
Lightsail Events
| Service | Event Name | Description |
|---|---|---|
| lightsail | AllocateStaticIp |
Show DescriptionAllocates a static IP address. |
| AttachCertificateToDistribution |
Show DescriptionAttaches an SSL/TLS certificate to your Amazon Lightsail content delivery network (CDN) distribution. After the certificate is attached, your distribution accepts HTTPS traffic for all of the domains that are associated with the certificate. Use theCreateCertificate action to create a certificate that you can attach to your distribution. us-east-1 AWS Region can be attached to Lightsail distributions. Lightsail distributions are global resources that can reference an origin in any AWS Region, and distribute its content globally. However, all distributions are located in the us-east-1 Region. |
|
| AttachDisk |
Show DescriptionAttaches a block storage disk to a running or stopped Lightsail instance and exposes it to the instance with the specified disk name. Theattach disk operation supports tag-based access control via resource tags applied to the resource identified by disk name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| AttachInstancesToLoadBalancer |
Show DescriptionAttaches one or more Lightsail instances to a load balancer. After some time, the instances are attached to the load balancer and the health check status is available. Theattach instances to load balancer operation supports tag-based access control via resource tags applied to the resource identified by load balancer name. For more information, see the Lightsail Developer Guide.
|
|
| AttachLoadBalancerTlsCertificate |
Show DescriptionAttaches a Transport Layer Security (TLS) certificate to your load balancer. TLS is just an updated, more secure version of Secure Socket Layer (SSL). Once you create and validate your certificate, you can attach it to your load balancer. You can also use this API to rotate the certificates on your account. Use theAttachLoadBalancerTlsCertificate action with the non-attached certificate, and it will replace the existing one and become the attached certificate. The AttachLoadBalancerTlsCertificate operation supports tag-based access control via resource tags applied to the resource identified by load balancer name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| AttachStaticIp |
Show DescriptionAttaches a static IP address to a specific Amazon Lightsail instance. |
|
| CloseInstancePublicPorts |
Show DescriptionCloses ports for a specific Amazon Lightsail instance. TheCloseInstancePublicPorts action supports tag-based access control via resource tags applied to the resource identified by instanceName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CopySnapshot |
Show DescriptionCopies a manual snapshot of an instance or disk as another manual snapshot, or copies an automatic snapshot of an instance or disk as a manual snapshot. This operation can also be used to copy a manual or automatic snapshot of an instance or a disk from one AWS Region to another in Amazon Lightsail. When copying a manual snapshot, be sure to define thesource region, source snapshot name, and target snapshot name parameters. When copying an automatic snapshot, be sure to define the source region, source resource name, target snapshot name, and either the restore date or the use latest restorable auto snapshot parameters.
|
|
| CreateBucket |
Show DescriptionCreates an Amazon Lightsail bucket. A bucket is a cloud storage resource available in the Lightsail object storage service. Use buckets to store objects such as data and its descriptive metadata. For more information about buckets, see Buckets in Amazon Lightsail in the Amazon Lightsail Developer Guide. |
|
| CreateBucketAccessKey |
Show DescriptionCreates a new access key for the specified Amazon Lightsail bucket. Access keys consist of an access key ID and corresponding secret access key. Access keys grant full programmatic access to the specified bucket and its objects. You can have a maximum of two access keys per bucket. Use the GetBucketAccessKeys action to get a list of current access keys for a specific bucket. For more information about access keys, see Creating access keys for a bucket in Amazon Lightsail in the Amazon Lightsail Developer Guide.secretAccessKey value is returned only in response to the CreateBucketAccessKey action. You can get a secret access key only when you first create an access key; you cannot get the secret access key later. If you lose the secret access key, you must create a new access key. |
|
| CreateCertificate |
Show DescriptionCreates an SSL/TLS certificate for an Amazon Lightsail content delivery network (CDN) distribution and a container service. After the certificate is valid, use theAttachCertificateToDistribution action to use the certificate and its domains with your distribution. Or use the UpdateContainerService action to use the certificate and its domains with your container service. us-east-1 AWS Region can be attached to Lightsail distributions. Lightsail distributions are global resources that can reference an origin in any AWS Region, and distribute its content globally. However, all distributions are located in the us-east-1 Region. |
|
| CreateCloudFormationStack |
Show DescriptionCreates an AWS CloudFormation stack, which creates a new Amazon EC2 instance from an exported Amazon Lightsail snapshot. This operation results in a CloudFormation stack record that can be used to track the AWS CloudFormation stack created. Use theget cloud formation stack records operation to get a list of the CloudFormation stacks created. create cloud formation stack operation again with the same export snapshot record. |
|
| CreateContactMethod |
Show DescriptionCreates an email or SMS text message contact method. A contact method is used to send you notifications about your Amazon Lightsail resources. You can add one email address and one mobile phone number contact method in each AWS Region. However, SMS text messaging is not supported in some AWS Regions, and SMS text messages cannot be sent to some countries/regions. For more information, see Notifications in Amazon Lightsail. |
|
| CreateContainerService |
Show DescriptionCreates an Amazon Lightsail container service. A Lightsail container service is a compute resource to which you can deploy containers. For more information, see Container services in Amazon Lightsail in the Lightsail Dev Guide. |
|
| CreateContainerServiceDeployment |
Show DescriptionCreates a deployment for your Amazon Lightsail container service. A deployment specifies the containers that will be launched on the container service and their settings, such as the ports to open, the environment variables to apply, and the launch command to run. It also specifies the container that will serve as the public endpoint of the deployment and its settings, such as the HTTP or HTTPS port to use, and the health check configuration. You can deploy containers to your container service using container images from a public registry like Docker Hub, or from your local machine. For more information, see Creating container images for your Amazon Lightsail container services in the Amazon Lightsail Developer Guide. |
|
| CreateContainerServiceRegistryLogin |
Show DescriptionCreates a temporary set of log in credentials that you can use to log in to the Docker process on your local machine. After you're logged in, you can use the native Docker commands to push your local container images to the container image registry of your Amazon Lightsail account so that you can use them with your Lightsail container service. The log in credentials expire 12 hours after they are created, at which point you will need to create a new set of log in credentials.RegisterContainerImage action to register the pushed images to a specific Lightsail container service. |
|
| CreateDisk |
Show DescriptionCreates a block storage disk that can be attached to an Amazon Lightsail instance in the same Availability Zone (e.g.,us-east-2a). The create disk operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateDiskFromSnapshot |
Show DescriptionCreates a block storage disk from a manual or automatic snapshot of a disk. The resulting disk can be attached to an Amazon Lightsail instance in the same Availability Zone (e.g.,us-east-2a). The create disk from snapshot operation supports tag-based access control via request tags and resource tags applied to the resource identified by disk snapshot name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateDiskSnapshot |
Show DescriptionCreates a snapshot of a block storage disk. You can use snapshots for backups, to make copies of disks, and to save data before shutting down a Lightsail instance. You can take a snapshot of an attached disk that is in use; however, snapshots only capture data that has been written to your disk at the time the snapshot command is issued. This may exclude any data that has been cached by any applications or the operating system. If you can pause any file systems on the disk long enough to take a snapshot, your snapshot should be complete. Nevertheless, if you cannot pause all file writes to the disk, you should unmount the disk from within the Lightsail instance, issue the create disk snapshot command, and then remount the disk to ensure a consistent and complete snapshot. You may remount and use your disk while the snapshot status is pending. You can also use this operation to create a snapshot of an instance's system volume. You might want to do this, for example, to recover data from the system volume of a botched instance or to create a backup of the system volume like you would for a block storage disk. To create a snapshot of a system volume, just define theinstance name parameter when issuing the snapshot command, and a snapshot of the defined instance's system volume will be created. After the snapshot is available, you can create a block storage disk from the snapshot and attach it to a running instance to access the data on the disk. The create disk snapshot operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateDistribution |
Show DescriptionCreates an Amazon Lightsail content delivery network (CDN) distribution. A distribution is a globally distributed network of caching servers that improve the performance of your website or web application hosted on a Lightsail instance. For more information, see Content delivery networks in Amazon Lightsail. |
|
| CreateDomain |
Show DescriptionCreates a domain resource for the specified domain (e.g., example.com). Thecreate domain operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateDomainEntry |
Show DescriptionCreates one of the following domain name system (DNS) records in a domain DNS zone: Address (A), canonical name (CNAME), mail exchanger (MX), name server (NS), start of authority (SOA), service locator (SRV), or text (TXT). Thecreate domain entry operation supports tag-based access control via resource tags applied to the resource identified by domain name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateInstanceSnapshot |
Show DescriptionCreates a snapshot of a specific virtual private server, or instance. You can use a snapshot to create a new instance that is based on that snapshot. Thecreate instance snapshot operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateInstances |
Show DescriptionCreates one or more Amazon Lightsail instances. Thecreate instances operation supports tag-based access control via request tags. For more information, see the Lightsail Developer Guide.
|
|
| CreateInstancesFromSnapshot |
Show DescriptionCreates one or more new instances from a manual or automatic snapshot of an instance. Thecreate instances from snapshot operation supports tag-based access control via request tags and resource tags applied to the resource identified by instance snapshot name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateKeyPair |
Show DescriptionCreates an SSH key pair. Thecreate key pair operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateLoadBalancer |
Show DescriptionCreates a Lightsail load balancer. To learn more about deciding whether to load balance your application, see Configure your Lightsail instances for load balancing. You can create up to 5 load balancers per AWS Region in your account. When you create a load balancer, you can specify a unique name and port settings. To change additional load balancer settings, use theUpdateLoadBalancerAttribute operation. The create load balancer operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateLoadBalancerTlsCertificate |
Show DescriptionCreates an SSL/TLS certificate for an Amazon Lightsail load balancer. TLS is just an updated, more secure version of Secure Socket Layer (SSL). TheCreateLoadBalancerTlsCertificate operation supports tag-based access control via resource tags applied to the resource identified by load balancer name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateRelationalDatabase |
Show DescriptionCreates a new database in Amazon Lightsail. Thecreate relational database operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateRelationalDatabaseFromSnapshot |
Show DescriptionCreates a new database from an existing database snapshot in Amazon Lightsail. You can create a new database from a snapshot in if something goes wrong with your original database, or to change it to a different plan, such as a high availability or standard plan. Thecreate relational database from snapshot operation supports tag-based access control via request tags and resource tags applied to the resource identified by relationalDatabaseSnapshotName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| CreateRelationalDatabaseSnapshot |
Show DescriptionCreates a snapshot of your database in Amazon Lightsail. You can use snapshots for backups, to make copies of a database, and to save data before deleting a database. Thecreate relational database snapshot operation supports tag-based access control via request tags. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteAlarm |
Show DescriptionDeletes an alarm. An alarm is used to monitor a single metric for one of your resources. When a metric condition is met, the alarm can notify you by email, SMS text message, and a banner displayed on the Amazon Lightsail console. For more information, see Alarms in Amazon Lightsail. |
|
| DeleteAutoSnapshot |
Show DescriptionDeletes an automatic snapshot of an instance or disk. For more information, see the Amazon Lightsail Developer Guide. |
|
| DeleteBucket |
Show DescriptionDeletes a Amazon Lightsail bucket. |
|
| DeleteBucketAccessKey |
Show DescriptionDeletes an access key for the specified Amazon Lightsail bucket. We recommend that you delete an access key if the secret access key is compromised. For more information about access keys, see Creating access keys for a bucket in Amazon Lightsail in the Amazon Lightsail Developer Guide. |
|
| DeleteCertificate |
Show DescriptionDeletes an SSL/TLS certificate for your Amazon Lightsail content delivery network (CDN) distribution. Certificates that are currently attached to a distribution cannot be deleted. Use theDetachCertificateFromDistribution action to detach a certificate from a distribution.
|
|
| DeleteContactMethod |
Show DescriptionDeletes a contact method. A contact method is used to send you notifications about your Amazon Lightsail resources. You can add one email address and one mobile phone number contact method in each AWS Region. However, SMS text messaging is not supported in some AWS Regions, and SMS text messages cannot be sent to some countries/regions. For more information, see Notifications in Amazon Lightsail. |
|
| DeleteContainerImage |
Show DescriptionDeletes a container image that is registered to your Amazon Lightsail container service. |
|
| DeleteContainerService |
Show DescriptionDeletes your Amazon Lightsail container service. |
|
| DeleteDisk |
Show DescriptionDeletes the specified block storage disk. The disk must be in theavailable state (not attached to a Lightsail instance). deleting state for several minutes. delete disk operation supports tag-based access control via resource tags applied to the resource identified by disk name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteDiskSnapshot |
Show DescriptionDeletes the specified disk snapshot. When you make periodic snapshots of a disk, the snapshots are incremental, and only the blocks on the device that have changed since your last snapshot are saved in the new snapshot. When you delete a snapshot, only the data not needed for any other snapshot is removed. So regardless of which prior snapshots have been deleted, all active snapshots will have access to all the information needed to restore the disk. Thedelete disk snapshot operation supports tag-based access control via resource tags applied to the resource identified by disk snapshot name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteDistribution |
Show DescriptionDeletes your Amazon Lightsail content delivery network (CDN) distribution. |
|
| DeleteDomain |
Show DescriptionDeletes the specified domain recordset and all of its domain records. Thedelete domain operation supports tag-based access control via resource tags applied to the resource identified by domain name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteDomainEntry |
Show DescriptionDeletes a specific domain entry. Thedelete domain entry operation supports tag-based access control via resource tags applied to the resource identified by domain name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteInstance |
Show DescriptionDeletes an Amazon Lightsail instance. Thedelete instance operation supports tag-based access control via resource tags applied to the resource identified by instance name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteInstanceSnapshot |
Show DescriptionDeletes a specific snapshot of a virtual private server (or instance). Thedelete instance snapshot operation supports tag-based access control via resource tags applied to the resource identified by instance snapshot name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteKeyPair |
Show DescriptionDeletes a specific SSH key pair. Thedelete key pair operation supports tag-based access control via resource tags applied to the resource identified by key pair name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteKnownHostKeys |
Show DescriptionDeletes the known host key or certificate used by the Amazon Lightsail browser-based SSH or RDP clients to authenticate an instance. This operation enables the Lightsail browser-based SSH or RDP clients to connect to the instance after a host key mismatch. |
|
| DeleteLoadBalancer |
Show DescriptionDeletes a Lightsail load balancer and all its associated SSL/TLS certificates. Once the load balancer is deleted, you will need to create a new load balancer, create a new certificate, and verify domain ownership again. Thedelete load balancer operation supports tag-based access control via resource tags applied to the resource identified by load balancer name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteLoadBalancerTlsCertificate |
Show DescriptionDeletes an SSL/TLS certificate associated with a Lightsail load balancer. TheDeleteLoadBalancerTlsCertificate operation supports tag-based access control via resource tags applied to the resource identified by load balancer name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteRelationalDatabase |
Show DescriptionDeletes a database in Amazon Lightsail. Thedelete relational database operation supports tag-based access control via resource tags applied to the resource identified by relationalDatabaseName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DeleteRelationalDatabaseSnapshot |
Show DescriptionDeletes a database snapshot in Amazon Lightsail. Thedelete relational database snapshot operation supports tag-based access control via resource tags applied to the resource identified by relationalDatabaseName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DetachCertificateFromDistribution |
Show DescriptionDetaches an SSL/TLS certificate from your Amazon Lightsail content delivery network (CDN) distribution. After the certificate is detached, your distribution stops accepting traffic for all of the domains that are associated with the certificate. |
|
| DetachDisk |
Show DescriptionDetaches a stopped block storage disk from a Lightsail instance. Make sure to unmount any file systems on the device within your operating system before stopping the instance and detaching the disk. Thedetach disk operation supports tag-based access control via resource tags applied to the resource identified by disk name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DetachInstancesFromLoadBalancer |
Show DescriptionDetaches the specified instances from a Lightsail load balancer. This operation waits until the instances are no longer needed before they are detached from the load balancer. Thedetach instances from load balancer operation supports tag-based access control via resource tags applied to the resource identified by load balancer name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| DetachStaticIp |
Show DescriptionDetaches a static IP from the Amazon Lightsail instance to which it is attached. |
|
| DisableAddOn |
Show DescriptionDisables an add-on for an Amazon Lightsail resource. For more information, see the Amazon Lightsail Developer Guide. |
|
| DownloadDefaultKeyPair |
Show DescriptionDownloads the default SSH key pair from the user's account. |
|
| EnableAddOn |
Show DescriptionEnables or modifies an add-on for an Amazon Lightsail resource. For more information, see the Amazon Lightsail Developer Guide. |
|
| ExportSnapshot |
Show DescriptionExports an Amazon Lightsail instance or block storage disk snapshot to Amazon Elastic Compute Cloud (Amazon EC2). This operation results in an export snapshot record that can be used with thecreate cloud formation stack operation to create new Amazon EC2 instances. Exported instance snapshots appear in Amazon EC2 as Amazon Machine Images (AMIs), and the instance system disk appears as an Amazon Elastic Block Store (Amazon EBS) volume. Exported disk snapshots appear in Amazon EC2 as Amazon EBS volumes. Snapshots are exported to the same Amazon Web Services Region in Amazon EC2 as the source Lightsail snapshot. The export snapshot operation supports tag-based access control via resource tags applied to the resource identified by source snapshot name. For more information, see the Amazon Lightsail Developer Guide. get instance snapshots or get disk snapshots operations to get a list of snapshots that you can export to Amazon EC2. |
|
| GetActiveNames |
Show DescriptionReturns the names of all active (not deleted) resources. |
|
| GetAlarms |
Show DescriptionReturns information about the configured alarms. Specify an alarm name in your request to return information about a specific alarm, or specify a monitored resource name to return information about all alarms for a specific resource. An alarm is used to monitor a single metric for one of your resources. When a metric condition is met, the alarm can notify you by email, SMS text message, and a banner displayed on the Amazon Lightsail console. For more information, see Alarms in Amazon Lightsail. |
|
| GetAutoSnapshots |
Show DescriptionReturns the available automatic snapshots for an instance or disk. For more information, see the Amazon Lightsail Developer Guide. |
|
| GetBlueprints |
Show DescriptionReturns the list of available instance images, or blueprints. You can use a blueprint to create a new instance already running a specific operating system, as well as a preinstalled app or development stack. The software each instance is running depends on the blueprint image you choose. |
|
| GetBucketAccessKeys |
Show DescriptionReturns the existing access key IDs for the specified Amazon Lightsail bucket. |
|
| GetBucketBundles |
Show DescriptionReturns the bundles that you can apply to a Amazon Lightsail bucket. The bucket bundle specifies the monthly cost, storage quota, and data transfer quota for a bucket. Use the UpdateBucketBundle action to update the bundle for a bucket. |
|
| GetBucketMetricData |
Show DescriptionReturns the data points of a specific metric for an Amazon Lightsail bucket. Metrics report the utilization of a bucket. View and collect metric data regularly to monitor the number of objects stored in a bucket (including object versions) and the storage space used by those objects. |
|
| GetBuckets |
Show DescriptionReturns information about one or more Amazon Lightsail buckets. For more information about buckets, see Buckets in Amazon Lightsail in the Amazon Lightsail Developer Guide.. |
|
| GetBundles |
Show DescriptionReturns the list of bundles that are available for purchase. A bundle describes the specs for your virtual private server (or instance). |
|
| GetCertificates |
Show DescriptionReturns information about one or more Amazon Lightsail SSL/TLS certificates.includeCertificateDetails from your request. The response will include only the certificate Amazon Resource Name (ARN), certificate name, domain name, and tags. |
|
| GetCloudFormationStackRecords |
Show DescriptionReturns the CloudFormation stack record created as a result of thecreate cloud formation stack operation. An AWS CloudFormation stack is used to create a new Amazon EC2 instance from an exported Lightsail snapshot.
|
|
| GetContactMethods |
Show DescriptionReturns information about the configured contact methods. Specify a protocol in your request to return information about a specific contact method. A contact method is used to send you notifications about your Amazon Lightsail resources. You can add one email address and one mobile phone number contact method in each AWS Region. However, SMS text messaging is not supported in some AWS Regions, and SMS text messages cannot be sent to some countries/regions. For more information, see Notifications in Amazon Lightsail. |
|
| GetContainerAPIMetadata |
Show DescriptionReturns information about Amazon Lightsail containers, such as the current version of the Lightsail Control (lightsailctl) plugin. |
|
| GetContainerImages |
Show DescriptionReturns the container images that are registered to your Amazon Lightsail container service. |
|
| GetContainerLog |
Show DescriptionReturns the log events of a container of your Amazon Lightsail container service. If your container service has more than one node (i.e., a scale greater than 1), then the log events that are returned for the specified container are merged from all nodes on your container service. |
|
| GetContainerServiceDeployments |
Show DescriptionReturns the deployments for your Amazon Lightsail container service A deployment specifies the settings, such as the ports and launch command, of containers that are deployed to your container service. The deployments are ordered by version in ascending order. The newest version is listed at the top of the response. |
|
| GetContainerServiceMetricData |
Show DescriptionReturns the data points of a specific metric of your Amazon Lightsail container service. Metrics report the utilization of your resources. Monitor and collect metric data regularly to maintain the reliability, availability, and performance of your resources. |
|
| GetContainerServicePowers |
Show DescriptionReturns the list of powers that can be specified for your Amazon Lightsail container services. The power specifies the amount of memory, the number of vCPUs, and the base price of the container service. |
|
| GetContainerServices |
Show DescriptionReturns information about one or more of your Amazon Lightsail container services. |
|
| GetDisk |
Show DescriptionReturns information about a specific block storage disk. |
|
| GetDiskSnapshot |
Show DescriptionReturns information about a specific block storage disk snapshot. |
|
| GetDiskSnapshots |
Show DescriptionReturns information about all block storage disk snapshots in your AWS account and region. |
|
| GetDisks |
Show DescriptionReturns information about all block storage disks in your AWS account and region. |
|
| GetDistributionBundles |
Show DescriptionReturns the bundles that can be applied to your Amazon Lightsail content delivery network (CDN) distributions. A distribution bundle specifies the monthly network transfer quota and monthly cost of your dsitribution. |
|
| GetDistributionLatestCacheReset |
Show DescriptionReturns the timestamp and status of the last cache reset of a specific Amazon Lightsail content delivery network (CDN) distribution. |
|
| GetDistributionMetricData |
Show DescriptionReturns the data points of a specific metric for an Amazon Lightsail content delivery network (CDN) distribution. Metrics report the utilization of your resources, and the error counts generated by them. Monitor and collect metric data regularly to maintain the reliability, availability, and performance of your resources. |
|
| GetDistributions |
Show DescriptionReturns information about one or more of your Amazon Lightsail content delivery network (CDN) distributions. |
|
| GetDomain |
Show DescriptionReturns information about a specific domain recordset. |
|
| GetDomains |
Show DescriptionReturns a list of all domains in the user's account. |
|
| GetExportSnapshotRecords |
Show DescriptionReturns all export snapshot records created as a result of theexport snapshot operation. An export snapshot record can be used to create a new Amazon EC2 instance and its related resources with the CreateCloudFormationStack action.
|
|
| GetInstance |
Show DescriptionReturns information about a specific Amazon Lightsail instance, which is a virtual private server. |
|
| GetInstanceAccessDetails |
Show DescriptionReturns temporary SSH keys you can use to connect to a specific virtual private server, or instance. Theget instance access details operation supports tag-based access control via resource tags applied to the resource identified by instance name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| GetInstanceMetricData |
Show DescriptionReturns the data points for the specified Amazon Lightsail instance metric, given an instance name. Metrics report the utilization of your resources, and the error counts generated by them. Monitor and collect metric data regularly to maintain the reliability, availability, and performance of your resources. |
|
| GetInstancePortStates |
Show DescriptionReturns the firewall port states for a specific Amazon Lightsail instance, the IP addresses allowed to connect to the instance through the ports, and the protocol. |
|
| GetInstanceSnapshot |
Show DescriptionReturns information about a specific instance snapshot. |
|
| GetInstanceSnapshots |
Show DescriptionReturns all instance snapshots for the user's account. |
|
| GetInstanceState |
Show DescriptionReturns the state of a specific instance. Works on one instance at a time. |
|
| GetInstances |
Show DescriptionReturns information about all Amazon Lightsail virtual private servers, or instances. |
|
| GetKeyPair |
Show DescriptionReturns information about a specific key pair. |
|
| GetKeyPairs |
Show DescriptionReturns information about all key pairs in the user's account. |
|
| GetLoadBalancer |
Show DescriptionReturns information about the specified Lightsail load balancer. |
|
| GetLoadBalancerMetricData |
Show DescriptionReturns information about health metrics for your Lightsail load balancer. Metrics report the utilization of your resources, and the error counts generated by them. Monitor and collect metric data regularly to maintain the reliability, availability, and performance of your resources. |
|
| GetLoadBalancerTlsCertificates |
Show DescriptionReturns information about the TLS certificates that are associated with the specified Lightsail load balancer. TLS is just an updated, more secure version of Secure Socket Layer (SSL). You can have a maximum of 2 certificates associated with a Lightsail load balancer. One is active and the other is inactive. |
|
| GetLoadBalancers |
Show DescriptionReturns information about all load balancers in an account. |
|
| GetOperation |
Show DescriptionReturns information about a specific operation. Operations include events such as when you create an instance, allocate a static IP, attach a static IP, and so on. |
|
| GetOperations |
Show DescriptionReturns information about all operations. Results are returned from oldest to newest, up to a maximum of 200. Results can be paged by making each subsequent call toGetOperations use the maximum (last) statusChangedAt value from the previous request.
|
|
| GetOperationsForResource |
Show DescriptionGets operations for a specific resource (e.g., an instance or a static IP). |
|
| GetRegions |
Show DescriptionReturns a list of all valid regions for Amazon Lightsail. Use theinclude availability zones parameter to also return the Availability Zones in a region.
|
|
| GetRelationalDatabase |
Show DescriptionReturns information about a specific database in Amazon Lightsail. |
|
| GetRelationalDatabaseBlueprints |
Show DescriptionReturns a list of available database blueprints in Amazon Lightsail. A blueprint describes the major engine version of a database. You can use a blueprint ID to create a new database that runs a specific database engine. |
|
| GetRelationalDatabaseBundles |
Show DescriptionReturns the list of bundles that are available in Amazon Lightsail. A bundle describes the performance specifications for a database. You can use a bundle ID to create a new database with explicit performance specifications. |
|
| GetRelationalDatabaseEvents |
Show DescriptionReturns a list of events for a specific database in Amazon Lightsail. |
|
| GetRelationalDatabaseLogEvents |
Show DescriptionReturns a list of log events for a database in Amazon Lightsail. |
|
| GetRelationalDatabaseLogStreams |
Show DescriptionReturns a list of available log streams for a specific database in Amazon Lightsail. |
|
| GetRelationalDatabaseMasterUserPassword |
Show DescriptionReturns the current, previous, or pending versions of the master user password for a Lightsail database. TheGetRelationalDatabaseMasterUserPassword operation supports tag-based access control via resource tags applied to the resource identified by relationalDatabaseName.
|
|
| GetRelationalDatabaseMetricData |
Show DescriptionReturns the data points of the specified metric for a database in Amazon Lightsail. Metrics report the utilization of your resources, and the error counts generated by them. Monitor and collect metric data regularly to maintain the reliability, availability, and performance of your resources. |
|
| GetRelationalDatabaseParameters |
Show DescriptionReturns all of the runtime parameters offered by the underlying database software, or engine, for a specific database in Amazon Lightsail. In addition to the parameter names and values, this operation returns other information about each parameter. This information includes whether changes require a reboot, whether the parameter is modifiable, the allowed values, and the data types. |
|
| GetRelationalDatabaseSnapshot |
Show DescriptionReturns information about a specific database snapshot in Amazon Lightsail. |
|
| GetRelationalDatabaseSnapshots |
Show DescriptionReturns information about all of your database snapshots in Amazon Lightsail. |
|
| GetRelationalDatabases |
Show DescriptionReturns information about all of your databases in Amazon Lightsail. |
|
| GetStaticIp |
Show DescriptionReturns information about an Amazon Lightsail static IP. |
|
| GetStaticIps |
Show DescriptionReturns information about all static IPs in the user's account. |
|
| ImportKeyPair |
Show DescriptionImports a public SSH key from a specific key pair. |
|
| IsVpcPeered |
Show DescriptionReturns a Boolean value indicating whether your Lightsail VPC is peered. |
|
| OpenInstancePublicPorts |
Show DescriptionOpens ports for a specific Amazon Lightsail instance, and specifies the IP addresses allowed to connect to the instance through the ports, and the protocol. TheOpenInstancePublicPorts action supports tag-based access control via resource tags applied to the resource identified by instanceName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| PeerVpc |
Show DescriptionPeers the Lightsail VPC with the user's default VPC. |
|
| PutAlarm |
Show DescriptionCreates or updates an alarm, and associates it with the specified metric. An alarm is used to monitor a single metric for one of your resources. When a metric condition is met, the alarm can notify you by email, SMS text message, and a banner displayed on the Amazon Lightsail console. For more information, see Alarms in Amazon Lightsail. When this action creates an alarm, the alarm state is immediately set toINSUFFICIENT_DATA. The alarm is then evaluated and its state is set appropriately. Any actions associated with the new state are then executed. When you update an existing alarm, its state is left unchanged, but the update completely overwrites the previous configuration of the alarm. The alarm is then evaluated with the updated configuration.
|
|
| PutInstancePublicPorts |
Show DescriptionOpens ports for a specific Amazon Lightsail instance, and specifies the IP addresses allowed to connect to the instance through the ports, and the protocol. This action also closes all currently open ports that are not included in the request. Include all of the ports and the protocols you want to open in yourPutInstancePublicPortsrequest. Or use the OpenInstancePublicPorts action to open ports without closing currently open ports. The PutInstancePublicPorts action supports tag-based access control via resource tags applied to the resource identified by instanceName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| RebootInstance |
Show DescriptionRestarts a specific instance. Thereboot instance operation supports tag-based access control via resource tags applied to the resource identified by instance name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| RebootRelationalDatabase |
Show DescriptionRestarts a specific database in Amazon Lightsail. Thereboot relational database operation supports tag-based access control via resource tags applied to the resource identified by relationalDatabaseName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| RegisterContainerImage |
Show DescriptionRegisters a container image to your Amazon Lightsail container service. |
|
| ReleaseStaticIp |
Show DescriptionDeletes a specific static IP from your account. |
|
| ResetDistributionCache |
Show DescriptionDeletes currently cached content from your Amazon Lightsail content delivery network (CDN) distribution. After resetting the cache, the next time a content request is made, your distribution pulls, serves, and caches it from the origin. |
|
| SendContactMethodVerification |
Show DescriptionSends a verification request to an email contact method to ensure it's owned by the requester. SMS contact methods don't need to be verified. A contact method is used to send you notifications about your Amazon Lightsail resources. You can add one email address and one mobile phone number contact method in each AWS Region. However, SMS text messaging is not supported in some AWS Regions, and SMS text messages cannot be sent to some countries/regions. For more information, see Notifications in Amazon Lightsail. A verification request is sent to the contact method when you initially create it. Use this action to send another verification request if a previous verification request was deleted, or has expired. |
|
| SetIpAddressType |
Show DescriptionSets the IP address type for an Amazon Lightsail resource. Use this action to enable dual-stack for a resource, which enables IPv4 and IPv6 for the specified resource. Alternately, you can use this action to disable dual-stack, and enable IPv4 only. |
|
| SetResourceAccessForBucket |
Show DescriptionSets the Amazon Lightsail resources that can access the specified Lightsail bucket. Lightsail buckets currently support setting access for Lightsail instances in the same AWS Region. |
|
| StartInstance |
Show DescriptionStarts a specific Amazon Lightsail instance from a stopped state. To restart an instance, use thereboot instance operation. start instance operation supports tag-based access control via resource tags applied to the resource identified by instance name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| StartRelationalDatabase |
Show DescriptionStarts a specific database from a stopped state in Amazon Lightsail. To restart a database, use thereboot relational database operation. The start relational database operation supports tag-based access control via resource tags applied to the resource identified by relationalDatabaseName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| StopInstance |
Show DescriptionStops a specific Amazon Lightsail instance that is currently running.stop instance operation supports tag-based access control via resource tags applied to the resource identified by instance name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| StopRelationalDatabase |
Show DescriptionStops a specific database that is currently running in Amazon Lightsail. Thestop relational database operation supports tag-based access control via resource tags applied to the resource identified by relationalDatabaseName. For more information, see the Amazon Lightsail Developer Guide.
|
|
| TagResource |
Show DescriptionAdds one or more tags to the specified Amazon Lightsail resource. Each resource can have a maximum of 50 tags. Each tag consists of a key and an optional value. Tag keys must be unique per resource. For more information about tags, see the Amazon Lightsail Developer Guide. Thetag resource operation supports tag-based access control via request tags and resource tags applied to the resource identified by resource name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| TestAlarm |
Show DescriptionTests an alarm by displaying a banner on the Amazon Lightsail console. If a notification trigger is configured for the specified alarm, the test also sends a notification to the notification protocol (Email and/or SMS) configured for the alarm. An alarm is used to monitor a single metric for one of your resources. When a metric condition is met, the alarm can notify you by email, SMS text message, and a banner displayed on the Amazon Lightsail console. For more information, see Alarms in Amazon Lightsail.
|
|
| UnpeerVpc |
Show DescriptionUnpeers the Lightsail VPC from the user's default VPC. |
|
| UntagResource |
Show DescriptionDeletes the specified set of tag keys and their values from the specified Amazon Lightsail resource. Theuntag resource operation supports tag-based access control via request tags and resource tags applied to the resource identified by resource name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| UpdateBucket |
Show DescriptionUpdates an existing Amazon Lightsail bucket. Use this action to update the configuration of an existing bucket, such as versioning, public accessibility, and the AWS accounts that can access the bucket. |
|
| UpdateBucketBundle |
Show DescriptionUpdates the bundle, or storage plan, of an existing Amazon Lightsail bucket. A bucket bundle specifies the monthly cost, storage space, and data transfer quota for a bucket. You can update a bucket's bundle only one time within a monthly AWS billing cycle. To determine if you can update a bucket's bundle, use the GetBuckets action. TheableToUpdateBundle parameter in the response will indicate whether you can currently update a bucket's bundle. Update a bucket's bundle if it's consistently going over its storage space or data transfer quota, or if a bucket's usage is consistently in the lower range of its storage space or data transfer quota. Due to the unpredictable usage fluctuations that a bucket might experience, we strongly recommend that you update a bucket's bundle only as a long-term strategy, instead of as a short-term, monthly cost-cutting measure. Choose a bucket bundle that will provide the bucket with ample storage space and data transfer for a long time to come.
|
|
| UpdateContainerService |
Show DescriptionUpdates the configuration of your Amazon Lightsail container service, such as its power, scale, and public domain names. |
|
| UpdateDistribution |
Show DescriptionUpdates an existing Amazon Lightsail content delivery network (CDN) distribution. Use this action to update the configuration of your existing distribution. |
|
| UpdateDistributionBundle |
Show DescriptionUpdates the bundle of your Amazon Lightsail content delivery network (CDN) distribution. A distribution bundle specifies the monthly network transfer quota and monthly cost of your dsitribution. Update your distribution's bundle if your distribution is going over its monthly network transfer quota and is incurring an overage fee. You can update your distribution's bundle only one time within your monthly AWS billing cycle. To determine if you can update your distribution's bundle, use theGetDistributions action. The ableToUpdateBundle parameter in the result will indicate whether you can currently update your distribution's bundle.
|
|
| UpdateDomainEntry |
Show DescriptionUpdates a domain recordset after it is created. Theupdate domain entry operation supports tag-based access control via resource tags applied to the resource identified by domain name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| UpdateLoadBalancerAttribute |
Show DescriptionUpdates the specified attribute for a load balancer. You can only update one attribute at a time. Theupdate load balancer attribute operation supports tag-based access control via resource tags applied to the resource identified by load balancer name. For more information, see the Amazon Lightsail Developer Guide.
|
|
| UpdateRelationalDatabase |
Show DescriptionAllows the update of one or more attributes of a database in Amazon Lightsail. Updates are applied immediately, or in cases where the updates could result in an outage, are applied during the database's predefined maintenance window. Theupdate relational database operation supports tag-based access control via resource tags applied to the resource identified by relationalDatabaseName. For more information, see the Amazon Lightsail Developer Guide.
|
Logs Events
| Service | Event Name | Description |
|---|---|---|
| logs | AssociateKmsKey | |
| CancelExportTask | ||
| CreateExportTask |
Show DescriptionCreates an export task, which allows you to efficiently export data from a log group to an Amazon S3 bucket. When you perform aCreateExportTask operation, you must use credentials that have permission to write to the S3 bucket that you specify as the destination. This is an asynchronous call. If all the required information is provided, this operation initiates an export task and responds with the ID of the task. After the task has started, you can use DescribeExportTasks to get the status of the export task. Each account can only have one active (RUNNING or PENDING) export task at a time. To cancel an export task, use CancelExportTask. You can export logs from multiple log groups or multiple time ranges to the same S3 bucket. To separate out log data for each export task, you can specify a prefix to be used as the Amazon S3 key prefix for all exported objects. Exporting to S3 buckets that are encrypted with AES-256 is supported. Exporting to S3 buckets encrypted with SSE-KMS is not supported.
|
|
| CreateLogGroup | ||
| CreateLogStream | ||
| DeleteDestination | ||
| DeleteLogGroup | ||
| DeleteLogStream | ||
| DeleteMetricFilter | ||
| DeleteQueryDefinition |
Show DescriptionDeletes a saved CloudWatch Logs Insights query definition. A query definition contains details about a saved CloudWatch Logs Insights query. EachDeleteQueryDefinition operation can delete one query definition. You must have the logs:DeleteQueryDefinition permission to be able to perform this operation.
|
|
| DeleteResourcePolicy | ||
| DeleteRetentionPolicy | ||
| DeleteSubscriptionFilter | ||
| DescribeDestinations |
Show DescriptionLists all your destinations. The results are ASCII-sorted by destination name. |
|
| DescribeExportTasks |
Show DescriptionLists the specified export tasks. You can list all your export tasks or filter the results based on task ID or task status. |
|
| DescribeLogGroups |
Show DescriptionLists the specified log groups. You can list all your log groups or filter the results by prefix. The results are ASCII-sorted by log group name. CloudWatch Logs doesn’t support IAM policies that control access to theDescribeLogGroups action by using the aws:ResourceTag/key-name condition key. Other CloudWatch Logs actions do support the use of the aws:ResourceTag/key-name condition key to control access. For more information about using tags to control access, see Controlling access to Amazon Web Services resources using tags.
|
|
| DescribeLogStreams |
Show DescriptionLists the log streams for the specified log group. You can list all the log streams or filter the results by prefix. You can also control how the results are ordered. This operation has a limit of five transactions per second, after which transactions are throttled. |
|
| DescribeMetricFilters |
Show DescriptionLists the specified metric filters. You can list all of the metric filters or filter the results by log name, prefix, metric name, or metric namespace. The results are ASCII-sorted by filter name. |
|
| DescribeQueries |
Show DescriptionReturns a list of CloudWatch Logs Insights queries that are scheduled, executing, or have been executed recently in this account. You can request all queries or limit it to queries of a specific log group or queries with a certain status. |
|
| DescribeQueryDefinitions |
Show DescriptionThis operation returns a paginated list of your saved CloudWatch Logs Insights query definitions. You can use thequeryDefinitionNamePrefix parameter to limit the results to only the query definitions that have names that start with a certain string.
|
|
| DescribeResourcePolicies |
Show DescriptionLists the resource policies in this account. |
|
| DescribeSubscriptionFilters |
Show DescriptionLists the subscription filters for the specified log group. You can list all the subscription filters or filter the results by prefix. The results are ASCII-sorted by filter name. |
|
| DisassociateKmsKey | ||
| FilterLogEvents |
Show DescriptionLists log events from the specified log group. You can list all the log events or filter the results using a filter pattern, a time range, and the name of the log stream. By default, this operation returns as many log events as can fit in 1 MB (up to 10,000 log events) or all the events found within the time range that you specify. If the results include a token, then there are more log events available, and you can get additional results by specifying the token in a subsequent call. This operation can return empty results while there are more log events available through the token. The returned log events are sorted by event timestamp, the timestamp when the event was ingested by CloudWatch Logs, and the ID of thePutLogEvents request.
|
|
| GetLogEvents |
Show DescriptionLists log events from the specified log stream. You can list all of the log events or filter using a time range. By default, this operation returns as many log events as can fit in a response size of 1MB (up to 10,000 log events). You can get additional log events by specifying one of the tokens in a subsequent call. This operation can return empty results while there are more log events available through the token. |
|
| GetLogGroupFields |
Show DescriptionReturns a list of the fields that are included in log events in the specified log group, along with the percentage of log events that contain each field. The search is limited to a time period that you specify. In the results, fields that start with @ are fields generated by CloudWatch Logs. For example,@timestamp is the timestamp of each log event. For more information about the fields that are generated by CloudWatch logs, see Supported Logs and Discovered Fields. The response results are sorted by the frequency percentage, starting with the highest percentage.
|
|
| GetLogRecord |
Show DescriptionRetrieves all of the fields and values of a single log event. All fields are retrieved, even if the original query that produced thelogRecordPointer retrieved only a subset of fields. Fields are returned as field name/field value pairs. The full unparsed log event is returned within @message.
|
|
| GetQueryResults |
Show DescriptionReturns the results from the specified query. Only the fields requested in the query are returned, along with a@ptr field, which is the identifier for the log record. You can use the value of @ptr in a GetLogRecord operation to get the full log record. GetQueryResults does not start a query execution. To run a query, use StartQuery. If the value of the Status field in the output is Running, this operation returns only partial results. If you see a value of Scheduled or Running for the status, you can retry the operation later to see the final results.
|
|
| ListTagsLogGroup |
Show DescriptionLists the tags for the specified log group. |
|
| PutDestination |
Show DescriptionCreates or updates a destination. This operation is used only to create destinations for cross-account subscriptions. A destination encapsulates a physical resource (such as an Amazon Kinesis stream) and enables you to subscribe to a real-time stream of log events for a different account, ingested using PutLogEvents. Through an access policy, a destination controls what is written to it. By default,PutDestination does not set any access policy with the destination, which means a cross-account user cannot call PutSubscriptionFilter against this destination. To enable this, the destination owner must call PutDestinationPolicy after PutDestination. To perform a PutDestination operation, you must also have the iam:PassRole permission.
|
|
| PutDestinationPolicy | ||
| PutLogEvents |
Show DescriptionUploads a batch of log events to the specified log stream. You must include the sequence token obtained from the response of the previous call. An upload in a newly created log stream does not require a sequence token. You can also get the sequence token in theexpectedSequenceToken field from InvalidSequenceTokenException. If you call PutLogEvents twice within a narrow time period using the same value for sequenceToken, both calls might be successful or one might be rejected. The batch of events must satisfy the following constraints:
PutLogEvents returns "UnrecognizedClientException" the most likely cause is an invalid Amazon Web Services access key ID or secret key.
|
|
| PutMetricFilter | ||
| PutQueryDefinition |
Show DescriptionCreates or updates a query definition for CloudWatch Logs Insights. For more information, see Analyzing Log Data with CloudWatch Logs Insights. To update a query definition, specify itsqueryDefinitionId in your request. The values of name, queryString, and logGroupNames are changed to the values that you specify in your update operation. No current values are retained from the current query definition. For example, if you update a current query definition that includes log groups, and you don't specify the logGroupNames parameter in your update operation, the query definition changes to contain no log groups. You must have the logs:PutQueryDefinition permission to be able to perform this operation.
|
|
| PutResourcePolicy |
Show DescriptionCreates or updates a resource policy allowing other Amazon Web Services services to put log events to this account, such as Amazon Route 53. An account can have up to 10 resource policies per Amazon Web Services Region. |
|
| PutRetentionPolicy | ||
| PutSubscriptionFilter | ||
| StartQuery |
Show DescriptionSchedules a query of a log group using CloudWatch Logs Insights. You specify the log group and time range to query and the query string to use. For more information, see CloudWatch Logs Insights Query Syntax. Queries time out after 15 minutes of execution. If your queries are timing out, reduce the time range being searched or partition your query into a number of queries. |
|
| StopQuery |
Show DescriptionStops a CloudWatch Logs Insights query that is in progress. If the query has already ended, the operation returns an error indicating that the specified query is not running. |
|
| TagLogGroup | ||
| TestMetricFilter |
Show DescriptionTests the filter pattern of a metric filter against a sample of log event messages. You can use this operation to validate the correctness of a metric filter pattern. |
Lookoutequipment Events
| Service | Event Name | Description |
|---|---|---|
| lookoutequipment | CreateDataset |
Show DescriptionCreates a container for a collection of data being ingested for analysis. The dataset contains the metadata describing where the data is and what the data actually looks like. In other words, it contains the location of the data source, the data schema, and other information. A dataset also contains any tags associated with the ingested data. |
| CreateInferenceScheduler |
Show DescriptionCreates a scheduled inference. Scheduling an inference is setting up a continuous real-time inference plan to analyze new measurement data. When setting up the schedule, you provide an S3 bucket location for the input data, assign it a delimiter between separate entries in the data, set an offset delay if desired, and set the frequency of inferencing. You must also provide an S3 bucket location for the output data. |
|
| CreateModel |
Show DescriptionCreates an ML model for data inference. A machine-learning (ML) model is a mathematical model that finds patterns in your data. In Amazon Lookout for Equipment, the model learns the patterns of normal behavior and detects abnormal behavior that could be potential equipment failure (or maintenance events). The models are made by analyzing normal data and abnormalities in machine behavior that have already occurred. Your model is trained using a portion of the data from your dataset and uses that data to learn patterns of normal behavior and abnormal patterns that lead to equipment failure. Another portion of the data is used to evaluate the model's accuracy. |
|
| DeleteDataset | ||
| DeleteInferenceScheduler | ||
| DeleteModel | ||
| DescribeDataIngestionJob |
Show DescriptionProvides information on a specific data ingestion job such as creation time, dataset ARN, status, and so on. |
|
| DescribeDataset |
Show DescriptionProvides a JSON description of the data that is in each time series dataset, including names, column names, and data types. |
|
| DescribeInferenceScheduler |
Show DescriptionSpecifies information about the inference scheduler being used, including name, model, status, and associated metadata |
|
| DescribeModel |
Show DescriptionProvides a JSON containing the overall information about a specific ML model, including model name and ARN, dataset, training and evaluation information, status, and so on. |
|
| ListDataIngestionJobs |
Show DescriptionProvides a list of all data ingestion jobs, including dataset name and ARN, S3 location of the input data, status, and so on. |
|
| ListDatasets |
Show DescriptionLists all datasets currently available in your account, filtering on the dataset name. |
|
| ListInferenceExecutions |
Show DescriptionLists all inference executions that have been performed by the specified inference scheduler. |
|
| ListInferenceSchedulers |
Show DescriptionRetrieves a list of all inference schedulers currently available for your account. |
|
| ListModels |
Show DescriptionGenerates a list of all models in the account, including model name and ARN, dataset, and status. |
|
| ListTagsForResource |
Show DescriptionLists all the tags for a specified resource, including key and value. |
|
| StartDataIngestionJob |
Show DescriptionStarts a data ingestion job. Amazon Lookout for Equipment returns the job status. |
|
| StartInferenceScheduler |
Show DescriptionStarts an inference scheduler. |
|
| StopInferenceScheduler |
Show DescriptionStops an inference scheduler. |
|
| TagResource |
Show DescriptionAssociates a given tag to a resource in your account. A tag is a key-value pair which can be added to an Amazon Lookout for Equipment resource as metadata. Tags can be used for organizing your resources as well as helping you to search and filter by tag. Multiple tags can be added to a resource, either when you create it, or later. Up to 50 tags can be associated with each resource. |
|
| UntagResource |
Show DescriptionRemoves a specific tag from a given resource. The tag is specified by its key. |
Lookoutmetrics Events
| Service | Event Name | Description |
|---|---|---|
| lookoutmetrics | ActivateAnomalyDetector |
Show DescriptionActivates an anomaly detector. |
| BackTestAnomalyDetector |
Show DescriptionRuns a backtest for anomaly detection for the specified resource. |
|
| CreateAlert |
Show DescriptionCreates an alert for an anomaly detector. |
|
| CreateAnomalyDetector |
Show DescriptionCreates an anomaly detector. |
|
| CreateMetricSet |
Show DescriptionCreates a dataset. |
|
| DeleteAlert |
Show DescriptionDeletes an alert. |
|
| DeleteAnomalyDetector |
Show DescriptionDeletes a detector. Deleting an anomaly detector will delete all of its corresponding resources including any configured datasets and alerts. |
|
| DescribeAlert |
Show DescriptionDescribes an alert. Amazon Lookout for Metrics API actions are eventually consistent. If you do a read operation on a resource immediately after creating or modifying it, use retries to allow time for the write operation to complete. |
|
| DescribeAnomalyDetectionExecutions |
Show DescriptionReturns information about the status of the specified anomaly detection jobs. |
|
| DescribeAnomalyDetector |
Show DescriptionDescribes a detector. Amazon Lookout for Metrics API actions are eventually consistent. If you do a read operation on a resource immediately after creating or modifying it, use retries to allow time for the write operation to complete. |
|
| DescribeMetricSet |
Show DescriptionDescribes a dataset. Amazon Lookout for Metrics API actions are eventually consistent. If you do a read operation on a resource immediately after creating or modifying it, use retries to allow time for the write operation to complete. |
|
| GetAnomalyGroup |
Show DescriptionReturns details about a group of anomalous metrics. |
|
| GetFeedback |
Show DescriptionGet feedback for an anomaly group. |
|
| GetSampleData |
Show DescriptionReturns a selection of sample records from an Amazon S3 datasource. |
|
| ListAlerts |
Show DescriptionLists the alerts attached to a detector. Amazon Lookout for Metrics API actions are eventually consistent. If you do a read operation on a resource immediately after creating or modifying it, use retries to allow time for the write operation to complete. |
|
| ListAnomalyDetectors |
Show DescriptionLists the detectors in the current AWS Region. Amazon Lookout for Metrics API actions are eventually consistent. If you do a read operation on a resource immediately after creating or modifying it, use retries to allow time for the write operation to complete. |
|
| ListAnomalyGroupSummaries |
Show DescriptionReturns a list of anomaly groups. |
|
| ListAnomalyGroupTimeSeries |
Show DescriptionGets a list of anomalous metrics for a measure in an anomaly group. |
|
| ListMetricSets |
Show DescriptionLists the datasets in the current AWS Region. Amazon Lookout for Metrics API actions are eventually consistent. If you do a read operation on a resource immediately after creating or modifying it, use retries to allow time for the write operation to complete. |
|
| ListTagsForResource |
Show DescriptionGets a list of tags for a detector, dataset, or alert. |
|
| PutFeedback |
Show DescriptionAdd feedback for an anomalous metric. |
|
| TagResource |
Show DescriptionAdds tags to a detector, dataset, or alert. |
|
| UntagResource |
Show DescriptionRemoves tags from a detector, dataset, or alert. |
|
| UpdateAnomalyDetector |
Show DescriptionUpdates a detector. After activation, you can only change a detector's ingestion delay and description. |
Lookoutvision Events
| Service | Event Name | Description |
|---|---|---|
| lookoutvision | CreateDataset |
Show DescriptionCreates a new dataset in an Amazon Lookout for Vision project.CreateDataset can create a training or a test dataset from a valid dataset source (DatasetSource). If you want a single dataset project, specify train for the value of DatasetType. To have a project with separate training and test datasets, call CreateDataset twice. On the first call, specify train for the value of DatasetType. On the second call, specify test for the value of DatasetType. This operation requires permissions to perform the lookoutvision:CreateDataset operation.
|
| CreateModel |
Show DescriptionCreates a new version of a model within an an Amazon Lookout for Vision project.CreateModel is an asynchronous operation in which Amazon Lookout for Vision trains, tests, and evaluates a new version of a model. To get the current status, check the Status field returned in the response from DescribeModel. If the project has a single dataset, Amazon Lookout for Vision internally splits the dataset to create a training and a test dataset. If the project has a training and a test dataset, Lookout for Vision uses the respective datasets to train and test the model. After training completes, the evaluation metrics are stored at the location specified in OutputConfig. This operation requires permissions to perform the lookoutvision:CreateModel operation. If you want to tag your model, you also require permission to the lookoutvision:TagResource operation.
|
|
| CreateProject |
Show DescriptionCreates an empty Amazon Lookout for Vision project. After you create the project, add a dataset by calling CreateDataset. This operation requires permissions to perform thelookoutvision:CreateProject operation.
|
|
| DeleteDataset |
Show DescriptionDeletes an existing Amazon Lookout for Visiondataset. If your the project has a single dataset, you must create a new dataset before you can create a model. If you project has a training dataset and a test dataset consider the following.
lookoutvision:DeleteDataset operation.
|
|
| DeleteModel |
Show DescriptionDeletes an Amazon Lookout for Vision model. You can't delete a running model. To stop a running model, use the StopModel operation. It might take a few seconds to delete a model. To determine if a model has been deleted, call ListProjects and check if the version of the model (ModelVersion) is in the Models array. This operation requires permissions to perform the lookoutvision:DeleteModel operation.
|
|
| DeleteProject |
Show DescriptionDeletes an Amazon Lookout for Vision project. To delete a project, you must first delete each version of the model associated with the project. To delete a model use the DeleteModel operation. You also have to delete the dataset(s) associated with the model. For more information, see DeleteDataset. The images referenced by the training and test datasets aren't deleted. This operation requires permissions to perform thelookoutvision:DeleteProject operation.
|
|
| DescribeDataset |
Show DescriptionDescribe an Amazon Lookout for Vision dataset. This operation requires permissions to perform thelookoutvision:DescribeDataset operation.
|
|
| DescribeModel |
Show DescriptionDescribes a version of an Amazon Lookout for Vision model. This operation requires permissions to perform thelookoutvision:DescribeModel operation.
|
|
| DescribeProject |
Show DescriptionDescribes an Amazon Lookout for Vision project. This operation requires permissions to perform thelookoutvision:DescribeProject operation.
|
|
| DetectAnomalies |
Show DescriptionDetects anomalies in an image that you supply. The response fromDetectAnomalies includes a boolean prediction that the image contains one or more anomalies and a confidence value for the prediction. DetectAnomalies, you must first start your model with the StartModel operation. You are charged for the amount of time, in minutes, that a model runs and for the number of anomaly detection units that your model uses. If you are not using a model, use the StopModel operation to stop your model. lookoutvision:DetectAnomalies operation.
|
|
| ListDatasetEntries |
Show DescriptionLists the JSON Lines within a dataset. An Amazon Lookout for Vision JSON Line contains the anomaly information for a single image, including the image location and the assigned label. This operation requires permissions to perform thelookoutvision:ListDatasetEntries operation.
|
|
| ListModels |
Show DescriptionLists the versions of a model in an Amazon Lookout for Vision project. This operation requires permissions to perform thelookoutvision:ListModels operation.
|
|
| ListProjects |
Show DescriptionLists the Amazon Lookout for Vision projects in your AWS account. This operation requires permissions to perform thelookoutvision:ListProjects operation.
|
|
| ListTagsForResource |
Show DescriptionReturns a list of tags attached to the specified Amazon Lookout for Vision model. This operation requires permissions to perform thelookoutvision:ListTagsForResource operation.
|
|
| StartModel |
Show DescriptionStarts the running of the version of an Amazon Lookout for Vision model. Starting a model takes a while to complete. To check the current state of the model, use DescribeModel. A model is ready to use when its status isHOSTED. Once the model is running, you can detect custom labels in new images by calling DetectAnomalies. lookoutvision:StartModel operation.
|
|
| StopModel |
Show DescriptionStops the hosting of a running model. The operation might take a while to complete. To check the current status, call DescribeModel. After the model hosting stops, theStatus of the model is TRAINED. This operation requires permissions to perform the lookoutvision:StopModel operation.
|
|
| TagResource |
Show DescriptionAdds one or more key-value tags to an Amazon Lookout for Vision model. For more information, see Tagging a model in the Amazon Lookout for Vision Developer Guide. This operation requires permissions to perform thelookoutvision:TagResource operation.
|
|
| UntagResource |
Show DescriptionRemoves one or more tags from an Amazon Lookout for Vision model. For more information, see Tagging a model in the Amazon Lookout for Vision Developer Guide. This operation requires permissions to perform thelookoutvision:UntagResource operation.
|
Machinelearning Events
| Service | Event Name | Description |
|---|---|---|
| machinelearning | AddTags |
Show DescriptionAdds one or more tags to an object, up to a limit of 10. Each tag consists of a key and an optional value. If you add a tag using a key that is already associated with the ML object,AddTags updates the tag's value.
|
| CreateBatchPrediction |
Show DescriptionGenerates predictions for a group of observations. The observations to process exist in one or more data files referenced by aDataSource. This operation creates a new BatchPrediction, and uses an MLModel and the data files referenced by the DataSource as information sources. CreateBatchPrediction is an asynchronous operation. In response to CreateBatchPrediction, Amazon Machine Learning (Amazon ML) immediately returns and sets the BatchPrediction status to PENDING. After the BatchPrediction completes, Amazon ML sets the status to COMPLETED. You can poll for status updates by using the GetBatchPrediction operation and checking the Status parameter of the result. After the COMPLETED status appears, the results are available in the location specified by the OutputUri parameter.
|
|
| CreateDataSourceFromRDS |
Show DescriptionCreates aDataSource object from an Amazon Relational Database Service (Amazon RDS). A DataSource references data that can be used to perform CreateMLModel, CreateEvaluation, or CreateBatchPrediction operations. CreateDataSourceFromRDS is an asynchronous operation. In response to CreateDataSourceFromRDS, Amazon Machine Learning (Amazon ML) immediately returns and sets the DataSource status to PENDING. After the DataSource is created and ready for use, Amazon ML sets the Status parameter to COMPLETED. DataSource in the COMPLETED or PENDING state can be used only to perform >CreateMLModel>, CreateEvaluation, or CreateBatchPrediction operations. If Amazon ML cannot accept the input source, it sets the Status parameter to FAILED and includes an error message in the Message attribute of the GetDataSource operation response.
|
|
| CreateDataSourceFromRedshift |
Show DescriptionCreates aDataSource from a database hosted on an Amazon Redshift cluster. A DataSource references data that can be used to perform either CreateMLModel, CreateEvaluation, or CreateBatchPrediction operations. CreateDataSourceFromRedshift is an asynchronous operation. In response to CreateDataSourceFromRedshift, Amazon Machine Learning (Amazon ML) immediately returns and sets the DataSource status to PENDING. After the DataSource is created and ready for use, Amazon ML sets the Status parameter to COMPLETED. DataSource in COMPLETED or PENDING states can be used to perform only CreateMLModel, CreateEvaluation, or CreateBatchPrediction operations. If Amazon ML can't accept the input source, it sets the Status parameter to FAILED and includes an error message in the Message attribute of the GetDataSource operation response. The observations should be contained in the database hosted on an Amazon Redshift cluster and should be specified by a SelectSqlQuery query. Amazon ML executes an Unload command in Amazon Redshift to transfer the result set of the SelectSqlQuery query to S3StagingLocation. After the DataSource has been created, it's ready for use in evaluations and batch predictions. If you plan to use the DataSource to train an MLModel, the DataSource also requires a recipe. A recipe describes how each input variable will be used in training an MLModel. Will the variable be included or excluded from training? Will the variable be manipulated; for example, will it be combined with another variable or will it be split apart into word combinations? The recipe provides answers to these questions. You can't change an existing datasource, but you can copy and modify the settings from an existing Amazon Redshift datasource to create a new datasource. To do so, call GetDataSource for an existing datasource and copy the values to a CreateDataSource call. Change the settings that you want to change and make sure that all required fields have the appropriate values.
|
|
| CreateDataSourceFromS3 |
Show DescriptionCreates aDataSource object. A DataSource references data that can be used to perform CreateMLModel, CreateEvaluation, or CreateBatchPrediction operations. CreateDataSourceFromS3 is an asynchronous operation. In response to CreateDataSourceFromS3, Amazon Machine Learning (Amazon ML) immediately returns and sets the DataSource status to PENDING. After the DataSource has been created and is ready for use, Amazon ML sets the Status parameter to COMPLETED. DataSource in the COMPLETED or PENDING state can be used to perform only CreateMLModel, CreateEvaluation or CreateBatchPrediction operations. If Amazon ML can't accept the input source, it sets the Status parameter to FAILED and includes an error message in the Message attribute of the GetDataSource operation response. The observation data used in a DataSource should be ready to use; that is, it should have a consistent structure, and missing data values should be kept to a minimum. The observation data must reside in one or more .csv files in an Amazon Simple Storage Service (Amazon S3) location, along with a schema that describes the data items by name and type. The same schema must be used for all of the data files referenced by the DataSource. After the DataSource has been created, it's ready to use in evaluations and batch predictions. If you plan to use the DataSource to train an MLModel, the DataSource also needs a recipe. A recipe describes how each input variable will be used in training an MLModel. Will the variable be included or excluded from training? Will the variable be manipulated; for example, will it be combined with another variable or will it be split apart into word combinations? The recipe provides answers to these questions.
|
|
| CreateEvaluation |
Show DescriptionCreates a newEvaluation of an MLModel. An MLModel is evaluated on a set of observations associated to a DataSource. Like a DataSource for an MLModel, the DataSource for an Evaluation contains values for the Target Variable. The Evaluation compares the predicted result for each observation to the actual outcome and provides a summary so that you know how effective the MLModel functions on the test data. Evaluation generates a relevant performance metric, such as BinaryAUC, RegressionRMSE or MulticlassAvgFScore based on the corresponding MLModelType: BINARY, REGRESSION or MULTICLASS. CreateEvaluation is an asynchronous operation. In response to CreateEvaluation, Amazon Machine Learning (Amazon ML) immediately returns and sets the evaluation status to PENDING. After the Evaluation is created and ready for use, Amazon ML sets the status to COMPLETED. You can use the GetEvaluation operation to check progress of the evaluation during the creation operation.
|
|
| CreateMLModel |
Show DescriptionCreates a newMLModel using the DataSource and the recipe as information sources. An MLModel is nearly immutable. Users can update only the MLModelName and the ScoreThreshold in an MLModel without creating a new MLModel. CreateMLModel is an asynchronous operation. In response to CreateMLModel, Amazon Machine Learning (Amazon ML) immediately returns and sets the MLModel status to PENDING. After the MLModel has been created and ready is for use, Amazon ML sets the status to COMPLETED. You can use the GetMLModel operation to check the progress of the MLModel during the creation operation. CreateMLModel requires a DataSource with computed statistics, which can be created by setting ComputeStatistics to true in CreateDataSourceFromRDS, CreateDataSourceFromS3, or CreateDataSourceFromRedshift operations.
|
|
| CreateRealtimeEndpoint |
Show DescriptionCreates a real-time endpoint for theMLModel. The endpoint contains the URI of the MLModel; that is, the location to send real-time prediction requests for the specified MLModel.
|
|
| DeleteBatchPrediction |
Show DescriptionAssigns the DELETED status to aBatchPrediction, rendering it unusable. After using the DeleteBatchPrediction operation, you can use the GetBatchPrediction operation to verify that the status of the BatchPrediction changed to DELETED. Caution: The result of the DeleteBatchPrediction operation is irreversible.
|
|
| DeleteDataSource |
Show DescriptionAssigns the DELETED status to aDataSource, rendering it unusable. After using the DeleteDataSource operation, you can use the GetDataSource operation to verify that the status of the DataSource changed to DELETED. Caution: The results of the DeleteDataSource operation are irreversible.
|
|
| DeleteEvaluation |
Show DescriptionAssigns theDELETED status to an Evaluation, rendering it unusable. After invoking the DeleteEvaluation operation, you can use the GetEvaluation operation to verify that the status of the Evaluation changed to DELETED. Caution: The results of the DeleteEvaluation operation are irreversible.
|
|
| DeleteMLModel |
Show DescriptionAssigns theDELETED status to an MLModel, rendering it unusable. After using the DeleteMLModel operation, you can use the GetMLModel operation to verify that the status of the MLModel changed to DELETED. Caution: The result of the DeleteMLModel operation is irreversible.
|
|
| DeleteRealtimeEndpoint |
Show DescriptionDeletes a real time endpoint of anMLModel.
|
|
| DeleteTags |
Show DescriptionDeletes the specified tags associated with an ML object. After this operation is complete, you can't recover deleted tags. If you specify a tag that doesn't exist, Amazon ML ignores it. |
|
| DescribeBatchPredictions |
Show DescriptionReturns a list ofBatchPrediction operations that match the search criteria in the request.
|
|
| DescribeDataSources |
Show DescriptionReturns a list ofDataSource that match the search criteria in the request.
|
|
| DescribeEvaluations |
Show DescriptionReturns a list ofDescribeEvaluations that match the search criteria in the request.
|
|
| DescribeMLModels |
Show DescriptionReturns a list ofMLModel that match the search criteria in the request.
|
|
| DescribeTags |
Show DescriptionDescribes one or more of the tags for your Amazon ML object. |
|
| GetBatchPrediction |
Show DescriptionReturns aBatchPrediction that includes detailed metadata, status, and data file information for a Batch Prediction request.
|
|
| GetDataSource |
Show DescriptionReturns aDataSource that includes metadata and data file information, as well as the current status of the DataSource. GetDataSource provides results in normal or verbose format. The verbose format adds the schema description and the list of files pointed to by the DataSource to the normal format.
|
|
| GetEvaluation |
Show DescriptionReturns anEvaluation that includes metadata as well as the current status of the Evaluation.
|
|
| GetMLModel |
Show DescriptionReturns anMLModel that includes detailed metadata, data source information, and the current status of the MLModel. GetMLModel provides results in normal or verbose format.
|
|
| Predict |
Show DescriptionGenerates a prediction for the observation using the specifiedML Model. Note: Not all response parameters will be populated. Whether a response parameter is populated depends on the type of model requested.
|
|
| UpdateBatchPrediction |
Show DescriptionUpdates theBatchPredictionName of a BatchPrediction. You can use the GetBatchPrediction operation to view the contents of the updated data element.
|
|
| UpdateDataSource |
Show DescriptionUpdates theDataSourceName of a DataSource. You can use the GetDataSource operation to view the contents of the updated data element.
|
|
| UpdateEvaluation |
Show DescriptionUpdates theEvaluationName of an Evaluation. You can use the GetEvaluation operation to view the contents of the updated data element.
|
Macie Events
| Service | Event Name | Description |
|---|---|---|
| macie | AssociateMemberAccount | |
| AssociateS3Resources |
Show DescriptionAssociates specified S3 resources with Amazon Macie Classic for monitoring and data classification. If memberAccountId isn't specified, the action associates specified S3 resources with Macie Classic for the current Macie Classic administrator account. If memberAccountId is specified, the action associates specified S3 resources with Macie Classic for the specified member account. |
|
| DisassociateMemberAccount | ||
| DisassociateS3Resources |
Show DescriptionRemoves specified S3 resources from being monitored by Amazon Macie Classic. If memberAccountId isn't specified, the action removes specified S3 resources from Macie Classic for the current Macie Classic administrator account. If memberAccountId is specified, the action removes specified S3 resources from Macie Classic for the specified member account. |
|
| ListMemberAccounts |
Show DescriptionLists all Amazon Macie Classic member accounts for the current Macie Classic administrator account. |
|
| ListS3Resources |
Show DescriptionLists all the S3 resources associated with Amazon Macie Classic. If memberAccountId isn't specified, the action lists the S3 resources associated with Macie Classic for the current Macie Classic administrator account. If memberAccountId is specified, the action lists the S3 resources associated with Macie Classic for the specified member account. |
Macie2 Events
| Service | Event Name | Description |
|---|---|---|
| macie2 | AcceptInvitation |
Show DescriptionAccepts an Amazon Macie membership invitation that was received from a specific account. |
| BatchGetCustomDataIdentifiers |
Show DescriptionRetrieves information about one or more custom data identifiers. |
|
| CreateClassificationJob |
Show DescriptionCreates and defines the settings for a classification job. |
|
| CreateCustomDataIdentifier |
Show DescriptionCreates and defines the criteria and other settings for a custom data identifier. |
|
| CreateFindingsFilter |
Show DescriptionCreates and defines the criteria and other settings for a findings filter. |
|
| CreateInvitations |
Show DescriptionSends an Amazon Macie membership invitation to one or more accounts. |
|
| CreateMember |
Show DescriptionAssociates an account with an Amazon Macie administrator account. |
|
| CreateSampleFindings |
Show DescriptionCreates sample findings. |
|
| DeclineInvitations |
Show DescriptionDeclines Amazon Macie membership invitations that were received from specific accounts. |
|
| DeleteCustomDataIdentifier |
Show DescriptionSoft deletes a custom data identifier. |
|
| DeleteFindingsFilter |
Show DescriptionDeletes a findings filter. |
|
| DeleteInvitations |
Show DescriptionDeletes Amazon Macie membership invitations that were received from specific accounts. |
|
| DeleteMember |
Show DescriptionDeletes the association between an Amazon Macie administrator account and an account. |
|
| DescribeBuckets |
Show DescriptionRetrieves (queries) statistical data and other information about one or more S3 buckets that Amazon Macie monitors and analyzes. |
|
| DescribeClassificationJob |
Show DescriptionRetrieves the status and settings for a classification job. |
|
| DescribeOrganizationConfiguration |
Show DescriptionRetrieves the Amazon Macie configuration settings for an Amazon Web Services organization. |
|
| DisableMacie |
Show DescriptionDisables an Amazon Macie account and deletes Macie resources for the account. |
|
| DisableOrganizationAdminAccount |
Show DescriptionDisables an account as the delegated Amazon Macie administrator account for an Amazon Web Services organization. |
|
| DisassociateFromAdministratorAccount |
Show DescriptionDisassociates a member account from its Amazon Macie administrator account. |
|
| DisassociateFromMasterAccount |
Show Description(Deprecated) Disassociates a member account from its Amazon Macie administrator account. This operation has been replaced by the DisassociateFromAdministratorAccount</link> operation. |
|
| DisassociateMember |
Show DescriptionDisassociates an Amazon Macie administrator account from a member account. |
|
| EnableMacie |
Show DescriptionEnables Amazon Macie and specifies the configuration settings for a Macie account. |
|
| EnableOrganizationAdminAccount |
Show DescriptionDesignates an account as the delegated Amazon Macie administrator account for an Amazon Web Services organization. |
|
| GetAdministratorAccount |
Show DescriptionRetrieves information about the Amazon Macie administrator account for an account. |
|
| GetBucketStatistics |
Show DescriptionRetrieves (queries) aggregated statistical data for all the S3 buckets that Amazon Macie monitors and analyzes. |
|
| GetClassificationExportConfiguration |
Show DescriptionRetrieves the configuration settings for storing data classification results. |
|
| GetCustomDataIdentifier |
Show DescriptionRetrieves the criteria and other settings for a custom data identifier. |
|
| GetFindingStatistics |
Show DescriptionRetrieves (queries) aggregated statistical data about findings. |
|
| GetFindings |
Show DescriptionRetrieves the details of one or more findings. |
|
| GetFindingsFilter |
Show DescriptionRetrieves the criteria and other settings for a findings filter. |
|
| GetFindingsPublicationConfiguration |
Show DescriptionRetrieves the configuration settings for publishing findings to Security Hub. |
|
| GetInvitationsCount |
Show DescriptionRetrieves the count of Amazon Macie membership invitations that were received by an account. |
|
| GetMacieSession |
Show DescriptionRetrieves the current status and configuration settings for an Amazon Macie account. |
|
| GetMasterAccount |
Show Description(Deprecated) Retrieves information about the Amazon Macie administrator account for an account. This operation has been replaced by the GetAdministratorAccount</link> operation. |
|
| GetMember |
Show DescriptionRetrieves information about an account that's associated with an Amazon Macie administrator account. |
|
| GetUsageStatistics |
Show DescriptionRetrieves (queries) quotas and aggregated usage data for one or more accounts. |
|
| GetUsageTotals |
Show DescriptionRetrieves (queries) aggregated usage data for an account. |
|
| ListClassificationJobs |
Show DescriptionRetrieves a subset of information about one or more classification jobs. |
|
| ListCustomDataIdentifiers |
Show DescriptionRetrieves a subset of information about all the custom data identifiers for an account. |
|
| ListFindings |
Show DescriptionRetrieves a subset of information about one or more findings. |
|
| ListFindingsFilters |
Show DescriptionRetrieves a subset of information about all the findings filters for an account. |
|
| ListInvitations |
Show DescriptionRetrieves information about the Amazon Macie membership invitations that were received by an account. |
|
| ListManagedDataIdentifiers |
Show DescriptionRetrieves information about all the managed data identifiers that Amazon Macie currently provides. |
|
| ListMembers |
Show DescriptionRetrieves information about the accounts that are associated with an Amazon Macie administrator account. |
|
| ListOrganizationAdminAccounts |
Show DescriptionRetrieves information about the delegated Amazon Macie administrator account for an Amazon Web Services organization. |
|
| ListTagsForResource |
Show DescriptionRetrieves the tags (keys and values) that are associated with a classification job, custom data identifier, findings filter, or member account. |
|
| PutClassificationExportConfiguration |
Show DescriptionCreates or updates the configuration settings for storing data classification results. |
|
| PutFindingsPublicationConfiguration |
Show DescriptionUpdates the configuration settings for publishing findings to Security Hub. |
|
| SearchResources |
Show DescriptionRetrieves (queries) statistical data and other information about Amazon Web Services resources that Amazon Macie monitors and analyzes. |
|
| TagResource |
Show DescriptionAdds or updates one or more tags (keys and values) that are associated with a classification job, custom data identifier, findings filter, or member account. |
|
| TestCustomDataIdentifier |
Show DescriptionTests a custom data identifier. |
|
| UntagResource |
Show DescriptionRemoves one or more tags (keys and values) from a classification job, custom data identifier, findings filter, or member account. |
|
| UpdateClassificationJob |
Show DescriptionChanges the status of a classification job. |
|
| UpdateFindingsFilter |
Show DescriptionUpdates the criteria and other settings for a findings filter. |
|
| UpdateMacieSession |
Show DescriptionSuspends or re-enables an Amazon Macie account, or updates the configuration settings for a Macie account. |
|
| UpdateMemberSession |
Show DescriptionEnables an Amazon Macie administrator to suspend or re-enable Macie for a member account. |
Managedblockchain Events
| Service | Event Name | Description |
|---|---|---|
| managedblockchain | CreateMember |
Show DescriptionCreates a member within a Managed Blockchain network. Applies only to Hyperledger Fabric. |
| CreateNetwork |
Show DescriptionCreates a new blockchain network using Amazon Managed Blockchain. Applies only to Hyperledger Fabric. |
|
| CreateNode |
Show DescriptionCreates a node on the specified blockchain network. Applies to Hyperledger Fabric and Ethereum. |
|
| CreateProposal |
Show DescriptionCreates a proposal for a change to the network that other members of the network can vote on, for example, a proposal to add a new member to the network. Any member can create a proposal. Applies only to Hyperledger Fabric. |
|
| DeleteMember |
Show DescriptionDeletes a member. Deleting a member removes the member and all associated resources from the network.DeleteMember can only be called for a specified MemberId if the principal performing the action is associated with the AWS account that owns the member. In all other cases, the DeleteMember action is carried out as the result of an approved proposal to remove a member. If MemberId is the last member in a network specified by the last AWS account, the network is deleted also. Applies only to Hyperledger Fabric.
|
|
| DeleteNode |
Show DescriptionDeletes a node that your AWS account owns. All data on the node is lost and cannot be recovered. Applies to Hyperledger Fabric and Ethereum. |
|
| GetMember |
Show DescriptionReturns detailed information about a member. Applies only to Hyperledger Fabric. |
|
| GetNetwork |
Show DescriptionReturns detailed information about a network. Applies to Hyperledger Fabric and Ethereum. |
|
| GetNode |
Show DescriptionReturns detailed information about a node. Applies to Hyperledger Fabric and Ethereum. |
|
| GetProposal |
Show DescriptionReturns detailed information about a proposal. Applies only to Hyperledger Fabric. |
|
| ListInvitations |
Show DescriptionReturns a list of all invitations for the current AWS account. Applies only to Hyperledger Fabric. |
|
| ListMembers |
Show DescriptionReturns a list of the members in a network and properties of their configurations. Applies only to Hyperledger Fabric. |
|
| ListNetworks |
Show DescriptionReturns information about the networks in which the current AWS account participates. Applies to Hyperledger Fabric and Ethereum. |
|
| ListNodes |
Show DescriptionReturns information about the nodes within a network. Applies to Hyperledger Fabric and Ethereum. |
|
| ListProposalVotes |
Show DescriptionReturns the list of votes for a specified proposal, including the value of each vote and the unique identifier of the member that cast the vote. Applies only to Hyperledger Fabric. |
|
| ListProposals |
Show DescriptionReturns a list of proposals for the network. Applies only to Hyperledger Fabric. |
|
| ListTagsForResource |
Show DescriptionReturns a list of tags for the specified resource. Each tag consists of a key and optional value. For more information about tags, see Tagging Resources in the Amazon Managed Blockchain Ethereum Developer Guide, or Tagging Resources in the Amazon Managed Blockchain Hyperledger Fabric Developer Guide. |
|
| RejectInvitation |
Show DescriptionRejects an invitation to join a network. This action can be called by a principal in an AWS account that has received an invitation to create a member and join a network. Applies only to Hyperledger Fabric. |
|
| TagResource |
Show DescriptionAdds or overwrites the specified tags for the specified Amazon Managed Blockchain resource. Each tag consists of a key and optional value. When you specify a tag key that already exists, the tag value is overwritten with the new value. UseUntagResource to remove tag keys. A resource can have up to 50 tags. If you try to create more than 50 tags for a resource, your request fails and returns an error. For more information about tags, see Tagging Resources in the Amazon Managed Blockchain Ethereum Developer Guide, or Tagging Resources in the Amazon Managed Blockchain Hyperledger Fabric Developer Guide.
|
|
| UntagResource |
Show DescriptionRemoves the specified tags from the Amazon Managed Blockchain resource. For more information about tags, see Tagging Resources in the Amazon Managed Blockchain Ethereum Developer Guide, or Tagging Resources in the Amazon Managed Blockchain Hyperledger Fabric Developer Guide. |
|
| UpdateMember |
Show DescriptionUpdates a member configuration with new parameters. Applies only to Hyperledger Fabric. |
|
| UpdateNode |
Show DescriptionUpdates a node configuration with new parameters. Applies only to Hyperledger Fabric. |
Marketplace-catalog Events
| Service | Event Name | Description |
|---|---|---|
| marketplace-catalog | CancelChangeSet |
Show DescriptionUsed to cancel an open change request. Must be sent before the status of the request changes toAPPLYING, the final stage of completing your change request. You can describe a change during the 60-day request history retention period for API calls.
|
| DescribeChangeSet |
Show DescriptionProvides information about a given change set. |
|
| DescribeEntity |
Show DescriptionReturns the metadata and content of the entity. |
|
| ListChangeSets |
Show DescriptionReturns the list of change sets owned by the account being used to make the call. You can filter this list by providing any combination ofentityId, ChangeSetName, and status. If you provide more than one filter, the API operation applies a logical AND between the filters. You can describe a change during the 60-day request history retention period for API calls.
|
|
| ListEntities |
Show DescriptionProvides the list of entities of a given type. |
Marketplace-entitlement Events
| Service | Event Name | Description |
|---|---|---|
| marketplace-entitlement | GetEntitlements |
Show DescriptionGetEntitlements retrieves entitlement values for a given product. The results can be filtered based on customer identifier or product dimensions. |
Marketplacecommerceanalytics Events
| Service | Event Name | Description |
|---|---|---|
| marketplacecommerceanalytics | GenerateDataSet |
Show DescriptionGiven a data set type and data set publication date, asynchronously publishes the requested data set to the specified S3 bucket and notifies the specified SNS topic once the data is available. Returns a unique request identifier that can be used to correlate requests with notifications from the SNS topic. Data sets will be published in comma-separated values (CSV) format with the file name {data_set_type}_YYYY-MM-DD.csv. If a file with the same name already exists (e.g. if the same data set is requested twice), the original file will be overwritten by the new file. Requires a Role with an attached permissions policy providing Allow permissions for the following actions: s3:PutObject, s3:GetBucketLocation, sns:GetTopicAttributes, sns:Publish, iam:GetRolePolicy. |
Mediaconnect Events
| Service | Event Name | Description |
|---|---|---|
| mediaconnect | AddFlowMediaStreams |
Show DescriptionAdds media streams to an existing flow. After you add a media stream to a flow, you can associate it with a source and/or an output that uses the ST 2110 JPEG XS or CDI protocol. |
| AddFlowOutputs |
Show DescriptionAdds outputs to an existing flow. You can create up to 50 outputs per flow. |
|
| AddFlowSources |
Show DescriptionAdds Sources to flow |
|
| AddFlowVpcInterfaces |
Show DescriptionAdds VPC interfaces to flow |
|
| CreateFlow |
Show DescriptionCreates a new flow. The request must include one source. The request optionally can include outputs (up to 50) and entitlements (up to 50). |
|
| DeleteFlow |
Show DescriptionDeletes a flow. Before you can delete a flow, you must stop the flow. |
|
| DescribeFlow |
Show DescriptionDisplays the details of a flow. The response includes the flow ARN, name, and Availability Zone, as well as details about the source, outputs, and entitlements. |
|
| DescribeOffering |
Show DescriptionDisplays the details of an offering. The response includes the offering description, duration, outbound bandwidth, price, and Amazon Resource Name (ARN). |
|
| DescribeReservation |
Show DescriptionDisplays the details of a reservation. The response includes the reservation name, state, start date and time, and the details of the offering that make up the rest of the reservation (such as price, duration, and outbound bandwidth). |
|
| GrantFlowEntitlements |
Show DescriptionGrants entitlements to an existing flow. |
|
| ListEntitlements |
Show DescriptionDisplays a list of all entitlements that have been granted to this account. This request returns 20 results per page. |
|
| ListFlows |
Show DescriptionDisplays a list of flows that are associated with this account. This request returns a paginated result. |
|
| ListOfferings |
Show DescriptionDisplays a list of all offerings that are available to this account in the current AWS Region. If you have an active reservation (which means you've purchased an offering that has already started and hasn't expired yet), your account isn't eligible for other offerings. |
|
| ListReservations |
Show DescriptionDisplays a list of all reservations that have been purchased by this account in the current AWS Region. This list includes all reservations in all states (such as active and expired). |
|
| ListTagsForResource |
Show DescriptionList all tags on an AWS Elemental MediaConnect resource |
|
| PurchaseOffering |
Show DescriptionSubmits a request to purchase an offering. If you already have an active reservation, you can't purchase another offering. |
|
| RemoveFlowMediaStream |
Show DescriptionRemoves a media stream from a flow. This action is only available if the media stream is not associated with a source or output. |
|
| RemoveFlowOutput |
Show DescriptionRemoves an output from an existing flow. This request can be made only on an output that does not have an entitlement associated with it. If the output has an entitlement, you must revoke the entitlement instead. When an entitlement is revoked from a flow, the service automatically removes the associated output. |
|
| RemoveFlowSource |
Show DescriptionRemoves a source from an existing flow. This request can be made only if there is more than one source on the flow. |
|
| RemoveFlowVpcInterface |
Show DescriptionRemoves a VPC Interface from an existing flow. This request can be made only on a VPC interface that does not have a Source or Output associated with it. If the VPC interface is referenced by a Source or Output, you must first delete or update the Source or Output to no longer reference the VPC interface. |
|
| RevokeFlowEntitlement |
Show DescriptionRevokes an entitlement from a flow. Once an entitlement is revoked, the content becomes unavailable to the subscriber and the associated output is removed. |
|
| StartFlow |
Show DescriptionStarts a flow. |
|
| StopFlow |
Show DescriptionStops a flow. |
|
| TagResource | ||
| UntagResource | ||
| UpdateFlow |
Show DescriptionUpdates flow |
|
| UpdateFlowEntitlement |
Show DescriptionYou can change an entitlement's description, subscribers, and encryption. If you change the subscribers, the service will remove the outputs that are are used by the subscribers that are removed. |
|
| UpdateFlowMediaStream |
Show DescriptionUpdates an existing media stream. |
|
| UpdateFlowOutput |
Show DescriptionUpdates an existing flow output. |
Mediaconvert Events
| Service | Event Name | Description |
|---|---|---|
| mediaconvert | AssociateCertificate |
Show DescriptionAssociates an AWS Certificate Manager (ACM) Amazon Resource Name (ARN) with AWS Elemental MediaConvert. |
| CancelJob |
Show DescriptionPermanently cancel a job. Once you have canceled a job, you can't start it again. |
|
| CreateJob |
Show DescriptionCreate a new transcoding job. For information about jobs and job settings, see the User Guide at http://docs.aws.amazon.com/mediaconvert/latest/ug/what-is.html |
|
| CreateJobTemplate |
Show DescriptionCreate a new job template. For information about job templates see the User Guide at http://docs.aws.amazon.com/mediaconvert/latest/ug/what-is.html |
|
| CreatePreset |
Show DescriptionCreate a new preset. For information about job templates see the User Guide at http://docs.aws.amazon.com/mediaconvert/latest/ug/what-is.html |
|
| CreateQueue |
Show DescriptionCreate a new transcoding queue. For information about queues, see Working With Queues in the User Guide at https://docs.aws.amazon.com/mediaconvert/latest/ug/working-with-queues.html |
|
| DeleteJobTemplate |
Show DescriptionPermanently delete a job template you have created. |
|
| DeletePolicy |
Show DescriptionPermanently delete a policy that you created. |
|
| DeletePreset |
Show DescriptionPermanently delete a preset you have created. |
|
| DeleteQueue |
Show DescriptionPermanently delete a queue you have created. |
|
| DescribeEndpoints |
Show DescriptionSend an request with an empty body to the regional API endpoint to get your account API endpoint. |
|
| DisassociateCertificate |
Show DescriptionRemoves an association between the Amazon Resource Name (ARN) of an AWS Certificate Manager (ACM) certificate and an AWS Elemental MediaConvert resource. |
|
| GetJob |
Show DescriptionRetrieve the JSON for a specific completed transcoding job. |
|
| GetJobTemplate |
Show DescriptionRetrieve the JSON for a specific job template. |
|
| GetPolicy |
Show DescriptionRetrieve the JSON for your policy. |
|
| GetPreset |
Show DescriptionRetrieve the JSON for a specific preset. |
|
| GetQueue |
Show DescriptionRetrieve the JSON for a specific queue. |
|
| ListJobTemplates |
Show DescriptionRetrieve a JSON array of up to twenty of your job templates. This will return the templates themselves, not just a list of them. To retrieve the next twenty templates, use the nextToken string returned with the array |
|
| ListJobs |
Show DescriptionRetrieve a JSON array of up to twenty of your most recently created jobs. This array includes in-process, completed, and errored jobs. This will return the jobs themselves, not just a list of the jobs. To retrieve the twenty next most recent jobs, use the nextToken string returned with the array. |
|
| ListPresets |
Show DescriptionRetrieve a JSON array of up to twenty of your presets. This will return the presets themselves, not just a list of them. To retrieve the next twenty presets, use the nextToken string returned with the array. |
|
| ListQueues |
Show DescriptionRetrieve a JSON array of up to twenty of your queues. This will return the queues themselves, not just a list of them. To retrieve the next twenty queues, use the nextToken string returned with the array. |
|
| ListTagsForResource |
Show DescriptionRetrieve the tags for a MediaConvert resource. |
|
| PutPolicy |
Show DescriptionCreate or change your policy. For more information about policies, see the user guide at http://docs.aws.amazon.com/mediaconvert/latest/ug/what-is.html |
|
| TagResource |
Show DescriptionAdd tags to a MediaConvert queue, preset, or job template. For information about tagging, see the User Guide at https://docs.aws.amazon.com/mediaconvert/latest/ug/tagging-resources.html |
|
| UntagResource |
Show DescriptionRemove tags from a MediaConvert queue, preset, or job template. For information about tagging, see the User Guide at https://docs.aws.amazon.com/mediaconvert/latest/ug/tagging-resources.html |
|
| UpdateJobTemplate |
Show DescriptionModify one of your existing job templates. |
|
| UpdatePreset |
Show DescriptionModify one of your existing presets. |
Medialive Events
| Service | Event Name | Description |
|---|---|---|
| medialive | AcceptInputDeviceTransfer |
Show DescriptionAccept an incoming input device transfer. The ownership of the device will transfer to your AWS account. |
| BatchDelete |
Show DescriptionStarts delete of resources. |
|
| BatchStart |
Show DescriptionStarts existing resources |
|
| BatchStop |
Show DescriptionStops running resources |
|
| BatchUpdateSchedule |
Show DescriptionUpdate a channel schedule |
|
| CancelInputDeviceTransfer |
Show DescriptionCancel an input device transfer that you have requested. |
|
| ClaimDevice |
Show DescriptionSend a request to claim an AWS Elemental device that you have purchased from a third-party vendor. After the request succeeds, you will own the device. |
|
| CreateChannel |
Show DescriptionCreates a new channel |
|
| CreateInput |
Show DescriptionCreate an input |
|
| CreateInputSecurityGroup |
Show DescriptionCreates a Input Security Group |
|
| CreateMultiplex |
Show DescriptionCreate a new multiplex. |
|
| CreateMultiplexProgram |
Show DescriptionCreate a new program in the multiplex. |
|
| CreatePartnerInput |
Show DescriptionCreate a partner input |
|
| CreateTags | ||
| DeleteChannel |
Show DescriptionStarts deletion of channel. The associated outputs are also deleted. |
|
| DeleteInput |
Show DescriptionDeletes the input end point |
|
| DeleteInputSecurityGroup |
Show DescriptionDeletes an Input Security Group |
|
| DeleteMultiplex |
Show DescriptionDelete a multiplex. The multiplex must be idle. |
|
| DeleteMultiplexProgram |
Show DescriptionDelete a program from a multiplex. |
|
| DeleteReservation |
Show DescriptionDelete an expired reservation. |
|
| DeleteSchedule |
Show DescriptionDelete all schedule actions on a channel. |
|
| DeleteTags | ||
| DescribeChannel |
Show DescriptionGets details about a channel |
|
| DescribeInput |
Show DescriptionProduces details about an input |
|
| DescribeInputDevice |
Show DescriptionGets the details for the input device |
|
| DescribeInputDeviceThumbnail |
Show DescriptionGet the latest thumbnail data for the input device. |
|
| DescribeInputSecurityGroup |
Show DescriptionProduces a summary of an Input Security Group |
|
| DescribeMultiplex |
Show DescriptionGets details about a multiplex. |
|
| DescribeMultiplexProgram |
Show DescriptionGet the details for a program in a multiplex. |
|
| DescribeOffering |
Show DescriptionGet details for an offering. |
|
| DescribeReservation |
Show DescriptionGet details for a reservation. |
|
| DescribeSchedule |
Show DescriptionGet a channel schedule |
|
| ListChannels |
Show DescriptionProduces list of channels that have been created |
|
| ListInputDeviceTransfers |
Show DescriptionList input devices that are currently being transferred. List input devices that you are transferring from your AWS account or input devices that another AWS account is transferring to you. |
|
| ListInputDevices |
Show DescriptionList input devices |
|
| ListInputSecurityGroups |
Show DescriptionProduces a list of Input Security Groups for an account |
|
| ListInputs |
Show DescriptionProduces list of inputs that have been created |
|
| ListMultiplexPrograms |
Show DescriptionList the programs that currently exist for a specific multiplex. |
|
| ListMultiplexes |
Show DescriptionRetrieve a list of the existing multiplexes. |
|
| ListOfferings |
Show DescriptionList offerings available for purchase. |
|
| ListReservations |
Show DescriptionList purchased reservations. |
|
| ListTagsForResource |
Show DescriptionProduces list of tags that have been created for a resource |
|
| PurchaseOffering |
Show DescriptionPurchase an offering and create a reservation. |
|
| RejectInputDeviceTransfer |
Show DescriptionReject the transfer of the specified input device to your AWS account. |
|
| StartChannel |
Show DescriptionStarts an existing channel |
|
| StartMultiplex |
Show DescriptionStart (run) the multiplex. Starting the multiplex does not start the channels. You must explicitly start each channel. |
|
| StopChannel |
Show DescriptionStops a running channel |
|
| StopMultiplex |
Show DescriptionStops a running multiplex. If the multiplex isn't running, this action has no effect. |
|
| TransferInputDevice |
Show DescriptionStart an input device transfer to another AWS account. After you make the request, the other account must accept or reject the transfer. |
|
| UpdateChannel |
Show DescriptionUpdates a channel. |
|
| UpdateChannelClass |
Show DescriptionChanges the class of the channel. |
|
| UpdateInput |
Show DescriptionUpdates an input. |
|
| UpdateInputDevice |
Show DescriptionUpdates the parameters for the input device. |
|
| UpdateInputSecurityGroup |
Show DescriptionUpdate an Input Security Group's Whilelists. |
|
| UpdateMultiplex |
Show DescriptionUpdates a multiplex. |
|
| UpdateMultiplexProgram |
Show DescriptionUpdate a program in a multiplex. |
Mediapackage-vod Events
| Service | Event Name | Description |
|---|---|---|
| mediapackage-vod | ConfigureLogs |
Show DescriptionChanges the packaging group's properities to configure log subscription |
| CreateAsset |
Show DescriptionCreates a new MediaPackage VOD Asset resource. |
|
| CreatePackagingConfiguration |
Show DescriptionCreates a new MediaPackage VOD PackagingConfiguration resource. |
|
| CreatePackagingGroup |
Show DescriptionCreates a new MediaPackage VOD PackagingGroup resource. |
|
| DeleteAsset |
Show DescriptionDeletes an existing MediaPackage VOD Asset resource. |
|
| DeletePackagingConfiguration |
Show DescriptionDeletes a MediaPackage VOD PackagingConfiguration resource. |
|
| DeletePackagingGroup |
Show DescriptionDeletes a MediaPackage VOD PackagingGroup resource. |
|
| DescribeAsset |
Show DescriptionReturns a description of a MediaPackage VOD Asset resource. |
|
| DescribePackagingConfiguration |
Show DescriptionReturns a description of a MediaPackage VOD PackagingConfiguration resource. |
|
| DescribePackagingGroup |
Show DescriptionReturns a description of a MediaPackage VOD PackagingGroup resource. |
|
| ListAssets |
Show DescriptionReturns a collection of MediaPackage VOD Asset resources. |
|
| ListPackagingConfigurations |
Show DescriptionReturns a collection of MediaPackage VOD PackagingConfiguration resources. |
|
| ListPackagingGroups |
Show DescriptionReturns a collection of MediaPackage VOD PackagingGroup resources. |
|
| ListTagsForResource |
Show DescriptionReturns a list of the tags assigned to the specified resource. |
|
| TagResource | ||
| UntagResource |
Mediapackage Events
| Service | Event Name | Description |
|---|---|---|
| mediapackage | ConfigureLogs |
Show DescriptionChanges the Channel's properities to configure log subscription |
| CreateChannel |
Show DescriptionCreates a new Channel. |
|
| CreateHarvestJob |
Show DescriptionCreates a new HarvestJob record. |
|
| CreateOriginEndpoint |
Show DescriptionCreates a new OriginEndpoint record. |
|
| DeleteChannel |
Show DescriptionDeletes an existing Channel. |
|
| DeleteOriginEndpoint |
Show DescriptionDeletes an existing OriginEndpoint. |
|
| DescribeChannel |
Show DescriptionGets details about a Channel. |
|
| DescribeHarvestJob |
Show DescriptionGets details about an existing HarvestJob. |
|
| DescribeOriginEndpoint |
Show DescriptionGets details about an existing OriginEndpoint. |
|
| ListChannels |
Show DescriptionReturns a collection of Channels. |
|
| ListHarvestJobs |
Show DescriptionReturns a collection of HarvestJob records. |
|
| ListOriginEndpoints |
Show DescriptionReturns a collection of OriginEndpoint records. |
|
| ListTagsForResource |
Show DescriptionNone |
|
| RotateChannelCredentials |
Show DescriptionChanges the Channel's first IngestEndpoint's username and password. WARNING - This API is deprecated. Please use RotateIngestEndpointCredentials instead |
|
| RotateIngestEndpointCredentials |
Show DescriptionRotate the IngestEndpoint's username and password, as specified by the IngestEndpoint's id. |
|
| TagResource | ||
| UntagResource | ||
| UpdateChannel |
Show DescriptionUpdates an existing Channel. |
Mediastore Events
| Service | Event Name | Description |
|---|---|---|
| mediastore | CreateContainer |
Show DescriptionCreates a storage container to hold objects. A container is similar to a bucket in the Amazon S3 service. |
| DeleteContainer |
Show DescriptionDeletes the specified container. Before you make aDeleteContainer request, delete any objects in the container or in any folders in the container. You can delete only empty containers.
|
|
| DeleteContainerPolicy |
Show DescriptionDeletes the access policy that is associated with the specified container. |
|
| DeleteCorsPolicy |
Show DescriptionDeletes the cross-origin resource sharing (CORS) configuration information that is set for the container. To use this operation, you must have permission to perform theMediaStore:DeleteCorsPolicy action. The container owner has this permission by default and can grant this permission to others.
|
|
| DeleteLifecyclePolicy |
Show DescriptionRemoves an object lifecycle policy from a container. It takes up to 20 minutes for the change to take effect. |
|
| DeleteMetricPolicy |
Show DescriptionDeletes the metric policy that is associated with the specified container. If there is no metric policy associated with the container, MediaStore doesn't send metrics to CloudWatch. |
|
| DescribeContainer |
Show DescriptionRetrieves the properties of the requested container. This request is commonly used to retrieve the endpoint of a container. An endpoint is a value assigned by the service when a new container is created. A container's endpoint does not change after it has been assigned. TheDescribeContainer request returns a single Container object based on ContainerName. To return all Container objects that are associated with a specified AWS account, use ListContainers.
|
|
| GetContainerPolicy |
Show DescriptionRetrieves the access policy for the specified container. For information about the data that is included in an access policy, see the AWS Identity and Access Management User Guide. |
|
| GetCorsPolicy |
Show DescriptionReturns the cross-origin resource sharing (CORS) configuration information that is set for the container. To use this operation, you must have permission to perform theMediaStore:GetCorsPolicy action. By default, the container owner has this permission and can grant it to others.
|
|
| GetLifecyclePolicy |
Show DescriptionRetrieves the object lifecycle policy that is assigned to a container. |
|
| GetMetricPolicy |
Show DescriptionReturns the metric policy for the specified container. |
|
| ListContainers |
Show DescriptionLists the properties of all containers in AWS Elemental MediaStore. You can query to receive all the containers in one response. Or you can include theMaxResults parameter to receive a limited number of containers in each response. In this case, the response includes a token. To get the next set of containers, send the command again, this time with the NextToken parameter (with the returned token as its value). The next set of responses appears, with a token if there are still more containers to receive. See also DescribeContainer, which gets the properties of one container.
|
|
| ListTagsForResource |
Show DescriptionReturns a list of the tags assigned to the specified container. |
|
| PutContainerPolicy |
Show DescriptionCreates an access policy for the specified container to restrict the users and clients that can access it. For information about the data that is included in an access policy, see the AWS Identity and Access Management User Guide. For this release of the REST API, you can create only one policy for a container. If you enterPutContainerPolicy twice, the second command modifies the existing policy.
|
|
| PutCorsPolicy |
Show DescriptionSets the cross-origin resource sharing (CORS) configuration on a container so that the container can service cross-origin requests. For example, you might want to enable a request whose origin is http://www.example.com to access your AWS Elemental MediaStore container at my.example.container.com by using the browser's XMLHttpRequest capability. To enable CORS on a container, you attach a CORS policy to the container. In the CORS policy, you configure rules that identify origins and the HTTP methods that can be executed on your container. The policy can contain up to 398,000 characters. You can add up to 100 rules to a CORS policy. If more than one rule applies, the service uses the first applicable rule listed. To learn more about CORS, see Cross-Origin Resource Sharing (CORS) in AWS Elemental MediaStore. |
|
| PutLifecyclePolicy |
Show DescriptionWrites an object lifecycle policy to a container. If the container already has an object lifecycle policy, the service replaces the existing policy with the new policy. It takes up to 20 minutes for the change to take effect. For information about how to construct an object lifecycle policy, see Components of an Object Lifecycle Policy. |
|
| PutMetricPolicy |
Show DescriptionThe metric policy that you want to add to the container. A metric policy allows AWS Elemental MediaStore to send metrics to Amazon CloudWatch. It takes up to 20 minutes for the new policy to take effect. |
|
| StartAccessLogging |
Show DescriptionStarts access logging on the specified container. When you enable access logging on a container, MediaStore delivers access logs for objects stored in that container to Amazon CloudWatch Logs. |
|
| StopAccessLogging |
Show DescriptionStops access logging on the specified container. When you stop access logging on a container, MediaStore stops sending access logs to Amazon CloudWatch Logs. These access logs are not saved and are not retrievable. |
|
| TagResource |
Show DescriptionAdds tags to the specified AWS Elemental MediaStore container. Tags are key:value pairs that you can associate with AWS resources. For example, the tag key might be "customer" and the tag value might be "companyA." You can specify one or more tags to add to each container. You can add up to 50 tags to each container. For more information about tagging, including naming and usage conventions, see Tagging Resources in MediaStore. |
Mediatailor Events
| Service | Event Name | Description |
|---|---|---|
| mediatailor | ConfigureLogsForPlaybackConfiguration |
Show DescriptionConfigures Amazon CloudWatch log settings for a playback configuration. |
| CreateChannel |
Show DescriptionCreates a channel. |
|
| CreatePrefetchSchedule |
Show DescriptionCreates a new prefetch schedule for the specified playback configuration. |
|
| CreateProgram |
Show DescriptionCreates a program. |
|
| CreateSourceLocation |
Show DescriptionCreates a source location on a specific channel. |
|
| CreateVodSource |
Show DescriptionCreates name for a specific VOD source in a source location. |
|
| DeleteChannel |
Show DescriptionDeletes a channel. You must stop the channel before it can be deleted. |
|
| DeleteChannelPolicy |
Show DescriptionDeletes a channel's IAM policy. |
|
| DeletePlaybackConfiguration |
Show DescriptionDeletes the playback configuration for the specified name. |
|
| DeletePrefetchSchedule |
Show DescriptionDeletes a prefetch schedule for a specific playback configuration. If you call DeletePrefetchSchedule on an expired prefetch schedule, MediaTailor returns an HTTP 404 status code. |
|
| DeleteProgram |
Show DescriptionDeletes a specific program on a specific channel. |
|
| DeleteSourceLocation |
Show DescriptionDeletes a source location on a specific channel. |
|
| DeleteVodSource |
Show DescriptionDeletes a specific VOD source in a specific source location. |
|
| DescribeChannel |
Show DescriptionDescribes the properties of a specific channel. |
|
| DescribeProgram |
Show DescriptionRetrieves the properties of the requested program. |
|
| DescribeSourceLocation |
Show DescriptionRetrieves the properties of the requested source location. |
|
| DescribeVodSource |
Show DescriptionProvides details about a specific VOD source in a specific source location. |
|
| GetChannelPolicy |
Show DescriptionRetrieves information about a channel's IAM policy. |
|
| GetChannelSchedule |
Show DescriptionRetrieves information about your channel's schedule. |
|
| GetPlaybackConfiguration |
Show DescriptionReturns the playback configuration for the specified name. |
|
| GetPrefetchSchedule |
Show DescriptionReturns information about the prefetch schedule for a specific playback configuration. If you call GetPrefetchSchedule on an expired prefetch schedule, MediaTailor returns an HTTP 404 status code. |
|
| ListAlerts |
Show DescriptionReturns a list of alerts for the given resource. |
|
| ListChannels |
Show DescriptionRetrieves a list of channels that are associated with this account. |
|
| ListPlaybackConfigurations |
Show DescriptionReturns a list of the playback configurations defined in AWS Elemental MediaTailor. You can specify a maximum number of configurations to return at a time. The default maximum is 50. Results are returned in pagefuls. If MediaTailor has more configurations than the specified maximum, it provides parameters in the response that you can use to retrieve the next pageful. |
|
| ListPrefetchSchedules |
Show DescriptionCreates a new prefetch schedule. |
|
| ListSourceLocations |
Show DescriptionRetrieves a list of source locations. |
|
| ListTagsForResource |
Show DescriptionReturns a list of the tags assigned to the specified playback configuration resource. |
|
| ListVodSources |
Show DescriptionLists all the VOD sources in a source location. |
|
| PutChannelPolicy |
Show DescriptionCreates an IAM policy for the channel. |
|
| PutPlaybackConfiguration |
Show DescriptionAdds a new playback configuration to AWS Elemental MediaTailor. |
|
| StartChannel |
Show DescriptionStarts a specific channel. |
|
| StopChannel |
Show DescriptionStops a specific channel. |
|
| TagResource | ||
| UntagResource | ||
| UpdateChannel |
Show DescriptionUpdates an existing channel. |
|
| UpdateSourceLocation |
Show DescriptionUpdates a source location on a specific channel. |
Memorydb Events
| Service | Event Name | Description |
|---|---|---|
| memorydb | BatchUpdateCluster |
Show DescriptionApply the service update to a list of clusters supplied. For more information on service updates and applying them, see Applying the service updates. |
| CopySnapshot |
Show DescriptionMakes a copy of an existing snapshot. |
|
| CreateACL |
Show DescriptionCreates an Access Control List. For more information, see Authenticating users with Access Contol Lists (ACLs). |
|
| CreateCluster |
Show DescriptionCreates a cluster. All nodes in the cluster run the same protocol-compliant engine software. |
|
| CreateParameterGroup |
Show DescriptionCreates a new MemoryDB parameter group. A parameter group is a collection of parameters and their values that are applied to all of the nodes in any cluster. For more information, see Configuring engine parameters using parameter groups. |
|
| CreateSnapshot |
Show DescriptionCreates a copy of an entire cluster at a specific moment in time. |
|
| CreateSubnetGroup |
Show DescriptionCreates a subnet group. A subnet group is a collection of subnets (typically private) that you can designate for your clusters running in an Amazon Virtual Private Cloud (VPC) environment. When you create a cluster in an Amazon VPC, you must specify a subnet group. MemoryDB uses that subnet group to choose a subnet and IP addresses within that subnet to associate with your nodes. For more information, see Subnets and subnet groups. |
|
| CreateUser |
Show DescriptionCreates a MemoryDB user. For more information, see Authenticating users with Access Contol Lists (ACLs). |
|
| DeleteACL |
Show DescriptionDeletes an Access Control List. The ACL must first be disassociated from the cluster before it can be deleted. For more information, see Authenticating users with Access Contol Lists (ACLs). |
|
| DeleteCluster |
Show DescriptionDeletes a cluster. It also deletes all associated nodes and node endpoints |
|
| DeleteParameterGroup |
Show DescriptionDeletes the specified parameter group. You cannot delete a parameter group if it is associated with any clusters. You cannot delete the default parameter groups in your account. |
|
| DeleteSnapshot |
Show DescriptionDeletes an existing snapshot. When you receive a successful response from this operation, MemoryDB immediately begins deleting the snapshot; you cannot cancel or revert this operation. |
|
| DeleteSubnetGroup |
Show DescriptionDeletes a subnet group. You cannot delete a default subnet group or one that is associated with any clusters. |
|
| DeleteUser |
Show DescriptionDeletes a user. The user will be removed from all ACLs and in turn removed from all clusters. |
|
| DescribeACLs |
Show DescriptionReturns a list of ACLs |
|
| DescribeClusters |
Show DescriptionReturns information about all provisioned clusters if no cluster identifier is specified, or about a specific cluster if a cluster name is supplied. |
|
| DescribeEngineVersions |
Show DescriptionReturns a list of the available Redis engine versions. |
|
| DescribeEvents |
Show DescriptionReturns events related to clusters, security groups, and parameter groups. You can obtain events specific to a particular cluster, security group, or parameter group by providing the name as a parameter. By default, only the events occurring within the last hour are returned; however, you can retrieve up to 14 days' worth of events if necessary. |
|
| DescribeParameterGroups |
Show DescriptionReturns a list of parameter group descriptions. If a parameter group name is specified, the list contains only the descriptions for that group. |
|
| DescribeParameters |
Show DescriptionReturns the detailed parameter list for a particular parameter group. |
|
| DescribeServiceUpdates |
Show DescriptionReturns details of the service updates |
|
| DescribeSnapshots |
Show DescriptionReturns information about cluster snapshots. By default, DescribeSnapshots lists all of your snapshots; it can optionally describe a single snapshot, or just the snapshots associated with a particular cluster. |
|
| DescribeSubnetGroups |
Show DescriptionReturns a list of subnet group descriptions. If a subnet group name is specified, the list contains only the description of that group. |
|
| DescribeUsers |
Show DescriptionReturns a list of users. |
|
| FailoverShard |
Show DescriptionUsed to failover a shard |
|
| ListAllowedNodeTypeUpdates |
Show DescriptionLists all available node types that you can scale to from your cluster's current node type. When you use the UpdateCluster operation to scale your cluster, the value of the NodeType parameter must be one of the node types returned by this operation. |
|
| ListTags |
Show DescriptionLists all tags currently on a named resource. A tag is a key-value pair where the key and value are case-sensitive. You can use tags to categorize and track your MemoryDB resources. For more information, see Tagging your MemoryDB resources |
|
| ResetParameterGroup |
Show DescriptionModifies the parameters of a parameter group to the engine or system default value. You can reset specific parameters by submitting a list of parameter names. To reset the entire parameter group, specify the AllParameters and ParameterGroupName parameters. |
|
| TagResource |
Show DescriptionA tag is a key-value pair where the key and value are case-sensitive. You can use tags to categorize and track all your MemoryDB resources. When you add or remove tags on clusters, those actions will be replicated to all nodes in the cluster. For more information, see Resource-level permissions. For example, you can use cost-allocation tags to your MemoryDB resources, Amazon generates a cost allocation report as a comma-separated value (CSV) file with your usage and costs aggregated by your tags. You can apply tags that represent business categories (such as cost centers, application names, or owners) to organize your costs across multiple services. For more information, see Using Cost Allocation Tags. |
|
| UntagResource |
Show DescriptionUse this operation to remove tags on a resource |
|
| UpdateACL |
Show DescriptionChanges the list of users that belong to the Access Control List. |
|
| UpdateCluster |
Show DescriptionModifies the settings for a cluster. You can use this operation to change one or more cluster configuration settings by specifying the settings and the new values. |
|
| UpdateParameterGroup |
Show DescriptionUpdates the parameters of a parameter group. You can modify up to 20 parameters in a single request by submitting a list parameter name and value pairs. |
|
| UpdateSubnetGroup |
Show DescriptionUpdates a subnet group. For more information, see Updating a subnet group |
Mgn Events
| Service | Event Name | Description |
|---|---|---|
| mgn | ChangeServerLifeCycleState |
Show DescriptionAllows the user to set the SourceServer.LifeCycle.state property for specific Source Server IDs to one of the following: READY_FOR_TEST or READY_FOR_CUTOVER. This command only works if the Source Server is already launchable (dataReplicationInfo.lagDuration is not null.) |
| CreateReplicationConfigurationTemplate |
Show DescriptionCreates a new ReplicationConfigurationTemplate. |
|
| DeleteJob |
Show DescriptionDeletes a single Job by ID. |
|
| DeleteReplicationConfigurationTemplate |
Show DescriptionDeletes a single Replication Configuration Template by ID |
|
| DeleteSourceServer |
Show DescriptionDeletes a single source server by ID. |
|
| DescribeJobLogItems |
Show DescriptionRetrieves detailed Job log with paging. |
|
| DescribeJobs |
Show DescriptionReturns a list of Jobs. Use the JobsID and fromDate and toData filters to limit which jobs are returned. The response is sorted by creationDataTime - latest date first. Jobs are normaly created by the StartTest, StartCutover, and TerminateTargetInstances APIs. Jobs are also created by DiagnosticLaunch and TerminateDiagnosticInstances, which are APIs available only to *Support* and only used in response to relevant support tickets. |
|
| DescribeReplicationConfigurationTemplates |
Show DescriptionLists all ReplicationConfigurationTemplates, filtered by Source Server IDs. |
|
| DescribeSourceServers |
Show DescriptionRetrieves all SourceServers or multiple SourceServers by ID. |
|
| DisconnectFromService |
Show DescriptionDisconnects specific Source Servers from Application Migration Service. Data replication is stopped immediately. All AWS resources created by Application Migration Service for enabling the replication of these source servers will be terminated / deleted within 90 minutes. Launched Test or Cutover instances will NOT be terminated. If the agent on the source server has not been prevented from communciating with the Application Migration Service service, then it will receive a command to uninstall itself (within approximately 10 minutes). The following properties of the SourceServer will be changed immediately: dataReplicationInfo.dataReplicationState will be set to DISCONNECTED; The totalStorageBytes property for each of dataReplicationInfo.replicatedDisks will be set to zero; dataReplicationInfo.lagDuration and dataReplicationInfo.lagDurationwill be nullified. |
|
| FinalizeCutover |
Show DescriptionFinalizes the cutover immediately for specific Source Servers. All AWS resources created by Application Migration Service for enabling the replication of these source servers will be terminated / deleted within 90 minutes. Launched Test or Cutover instances will NOT be terminated. The AWS Replication Agent will receive a command to uninstall itself (within 10 minutes). The following properties of the SourceServer will be changed immediately: dataReplicationInfo.dataReplicationState will be to DISCONNECTED; The SourceServer.lifeCycle.state will be changed to CUTOVER; The totalStorageBytes property fo each of dataReplicationInfo.replicatedDisks will be set to zero; dataReplicationInfo.lagDuration and dataReplicationInfo.lagDurationwill be nullified. |
|
| GetLaunchConfiguration |
Show DescriptionLists all LaunchConfigurations available, filtered by Source Server IDs. |
|
| GetReplicationConfiguration |
Show DescriptionLists all ReplicationConfigurations, filtered by Source Server ID. |
|
| InitializeService |
Show DescriptionInitialize Application Migration Service. |
|
| ListTagsForResource |
Show DescriptionList all tags for your Application Migration Service resources. |
|
| MarkAsArchived |
Show DescriptionArchives specific Source Servers by setting the SourceServer.isArchived property to true for specified SourceServers by ID. This command only works for SourceServers with a lifecycle.state which equals DISCONNECTED or CUTOVER. |
|
| RetryDataReplication |
Show DescriptionCauses the data replication initiation sequence to begin immediately upon next Handshake for specified SourceServer IDs, regardless of when the previous initiation started. This command will not work if the SourceServer is not stalled or is in a DISCONNECTED or STOPPED state. |
|
| StartCutover |
Show DescriptionLaunches a Cutover Instance for specific Source Servers. This command starts a LAUNCH job whose initiatedBy property is StartCutover and changes the SourceServer.lifeCycle.state property to CUTTING_OVER. |
|
| StartTest |
Show DescriptionLauches a Test Instance for specific Source Servers. This command starts a LAUNCH job whose initiatedBy property is StartTest and changes the SourceServer.lifeCycle.state property to TESTING. |
|
| TagResource | ||
| TerminateTargetInstances |
Show DescriptionStarts a job that terminates specific launched EC2 Test and Cutover instances. This command will not work for any Source Server with a lifecycle.state of TESTING, CUTTING_OVER, or CUTOVER. |
|
| UntagResource | ||
| UpdateLaunchConfiguration |
Show DescriptionUpdates multiple LaunchConfigurations by Source Server ID. |
|
| UpdateReplicationConfiguration |
Show DescriptionAllows you to update multiple ReplicationConfigurations by Source Server ID. |
Migrationhub-config Events
| Service | Event Name | Description |
|---|---|---|
| migrationhub-config | CreateHomeRegionControl |
Show DescriptionThis API sets up the home region for the calling account only. |
| DescribeHomeRegionControls |
Show DescriptionThis API permits filtering on theControlId and HomeRegion fields.
|
Mobile Events
| Service | Event Name | Description |
|---|---|---|
| mobile | CreateProject |
Show DescriptionCreates an AWS Mobile Hub project. |
| DeleteProject |
Show DescriptionDelets a project in AWS Mobile Hub. |
|
| DescribeBundle |
Show DescriptionGet the bundle details for the requested bundle id. |
|
| DescribeProject |
Show DescriptionGets details about a project in AWS Mobile Hub. |
|
| ExportBundle |
Show DescriptionGenerates customized software development kit (SDK) and or tool packages used to integrate mobile web or mobile app clients with backend AWS resources. |
|
| ExportProject |
Show DescriptionExports project configuration to a snapshot which can be downloaded and shared. Note that mobile app push credentials are encrypted in exported projects, so they can only be shared successfully within the same AWS account. |
|
| ListBundles |
Show DescriptionList all available bundles. |
|
| ListProjects |
Show DescriptionLists projects in AWS Mobile Hub. |
Mq Events
| Service | Event Name | Description |
|---|---|---|
| mq | CreateBroker |
Show DescriptionCreates a broker. Note: This API is asynchronous. To create a broker, you must either use the AmazonMQFullAccess IAM policy or include the following EC2 permissions in your IAM policy.
|
| CreateConfiguration |
Show DescriptionCreates a new configuration for the specified configuration name. Amazon MQ uses the default configuration (the engine type and version). |
|
| CreateTags | ||
| CreateUser |
Show DescriptionCreates an ActiveMQ user. |
|
| DeleteBroker |
Show DescriptionDeletes a broker. Note: This API is asynchronous. |
|
| DeleteTags | ||
| DeleteUser |
Show DescriptionDeletes an ActiveMQ user. |
|
| DescribeBroker |
Show DescriptionReturns information about the specified broker. |
|
| DescribeBrokerEngineTypes |
Show DescriptionDescribe available engine types and versions. |
|
| DescribeBrokerInstanceOptions |
Show DescriptionDescribe available broker instance options. |
|
| DescribeConfiguration |
Show DescriptionReturns information about the specified configuration. |
|
| DescribeConfigurationRevision |
Show DescriptionReturns the specified configuration revision for the specified configuration. |
|
| DescribeUser |
Show DescriptionReturns information about an ActiveMQ user. |
|
| ListBrokers |
Show DescriptionReturns a list of all brokers. |
|
| ListConfigurationRevisions |
Show DescriptionReturns a list of all revisions for the specified configuration. |
|
| ListConfigurations |
Show DescriptionReturns a list of all configurations. |
|
| ListTags |
Show DescriptionLists tags for a resource. |
|
| ListUsers |
Show DescriptionReturns a list of all ActiveMQ users. |
|
| RebootBroker |
Show DescriptionReboots a broker. Note: This API is asynchronous. |
|
| UpdateBroker |
Show DescriptionAdds a pending configuration change to a broker. |
|
| UpdateConfiguration |
Show DescriptionUpdates the specified configuration. |
Mwaa Events
| Service | Event Name | Description |
|---|---|---|
| mwaa | CreateCliToken |
Show DescriptionCreate a CLI token to use Airflow CLI. |
| CreateEnvironment |
Show DescriptionCreates an Amazon Managed Workflows for Apache Airflow (MWAA) environment. |
|
| CreateWebLoginToken |
Show DescriptionCreate a JWT token to be used to login to Airflow Web UI with claims based Authentication. |
|
| DeleteEnvironment |
Show DescriptionDeletes an Amazon Managed Workflows for Apache Airflow (MWAA) environment. |
|
| GetEnvironment |
Show DescriptionRetrieves the details of an Amazon Managed Workflows for Apache Airflow (MWAA) environment. |
|
| ListEnvironments |
Show DescriptionLists the Amazon Managed Workflows for Apache Airflow (MWAA) environments. |
|
| ListTagsForResource |
Show DescriptionLists the key-value tag pairs associated to the Amazon Managed Workflows for Apache Airflow (MWAA) environment. For example,"Environment": "Staging".
|
|
| PublishMetrics |
Show DescriptionAn operation for publishing metrics from the customers to the Ops plane. |
|
| TagResource |
Show DescriptionAssociates key-value tag pairs to your Amazon Managed Workflows for Apache Airflow (MWAA) environment. |
|
| UntagResource |
Show DescriptionRemoves key-value tag pairs associated to your Amazon Managed Workflows for Apache Airflow (MWAA) environment. For example,"Environment": "Staging".
|
Neptune Events
| Service | Event Name | Description |
|---|---|---|
| neptune | AddRoleToDBCluster | |
| AddSourceIdentifierToSubscription |
Show DescriptionAdds a source identifier to an existing event notification subscription. |
|
| AddTagsToResource | ||
| ApplyPendingMaintenanceAction |
Show DescriptionApplies a pending maintenance action to a resource (for example, to a DB instance). |
|
| CopyDBClusterParameterGroup |
Show DescriptionCopies the specified DB cluster parameter group. |
|
| CopyDBClusterSnapshot |
Show DescriptionCopies a snapshot of a DB cluster. To copy a DB cluster snapshot from a shared manual DB cluster snapshot,SourceDBClusterSnapshotIdentifier must be the Amazon Resource Name (ARN) of the shared DB cluster snapshot.
|
|
| CopyDBParameterGroup |
Show DescriptionCopies the specified DB parameter group. |
|
| CreateDBCluster |
Show DescriptionCreates a new Amazon Neptune DB cluster. You can use theReplicationSourceIdentifier parameter to create the DB cluster as a Read Replica of another DB cluster or Amazon Neptune DB instance. Note that when you create a new cluster using CreateDBCluster directly, deletion protection is disabled by default (when you create a new production cluster in the console, deletion protection is enabled by default). You can only delete a DB cluster if its DeletionProtection field is set to false.
|
|
| CreateDBClusterEndpoint |
Show DescriptionCreates a new custom endpoint and associates it with an Amazon Neptune DB cluster. |
|
| CreateDBClusterParameterGroup |
Show DescriptionCreates a new DB cluster parameter group. Parameters in a DB cluster parameter group apply to all of the instances in a DB cluster. A DB cluster parameter group is initially created with the default parameters for the database engine used by instances in the DB cluster. To provide custom values for any of the parameters, you must modify the group after creating it using ModifyDBClusterParameterGroup. Once you've created a DB cluster parameter group, you need to associate it with your DB cluster using ModifyDBCluster. When you associate a new DB cluster parameter group with a running DB cluster, you need to reboot the DB instances in the DB cluster without failover for the new DB cluster parameter group and associated settings to take effect.character_set_database parameter. You can use the Parameter Groups option of the Amazon Neptune console or the DescribeDBClusterParameters command to verify that your DB cluster parameter group has been created or modified. |
|
| CreateDBClusterSnapshot |
Show DescriptionCreates a snapshot of a DB cluster. |
|
| CreateDBInstance |
Show DescriptionCreates a new DB instance. |
|
| CreateDBParameterGroup |
Show DescriptionCreates a new DB parameter group. A DB parameter group is initially created with the default parameters for the database engine used by the DB instance. To provide custom values for any of the parameters, you must modify the group after creating it using ModifyDBParameterGroup. Once you've created a DB parameter group, you need to associate it with your DB instance using ModifyDBInstance. When you associate a new DB parameter group with a running DB instance, you need to reboot the DB instance without failover for the new DB parameter group and associated settings to take effect.character_set_database parameter. You can use the Parameter Groups option of the Amazon Neptune console or the DescribeDBParameters command to verify that your DB parameter group has been created or modified. |
|
| CreateDBSubnetGroup |
Show DescriptionCreates a new DB subnet group. DB subnet groups must contain at least one subnet in at least two AZs in the Amazon Region. |
|
| CreateEventSubscription |
Show DescriptionCreates an event notification subscription. This action requires a topic ARN (Amazon Resource Name) created by either the Neptune console, the SNS console, or the SNS API. To obtain an ARN with SNS, you must create a topic in Amazon SNS and subscribe to the topic. The ARN is displayed in the SNS console. You can specify the type of source (SourceType) you want to be notified of, provide a list of Neptune sources (SourceIds) that triggers the events, and provide a list of event categories (EventCategories) for events you want to be notified of. For example, you can specify SourceType = db-instance, SourceIds = mydbinstance1, mydbinstance2 and EventCategories = Availability, Backup. If you specify both the SourceType and SourceIds, such as SourceType = db-instance and SourceIdentifier = myDBInstance1, you are notified of all the db-instance events for the specified source. If you specify a SourceType but do not specify a SourceIdentifier, you receive notice of the events for that source type for all your Neptune sources. If you do not specify either the SourceType nor the SourceIdentifier, you are notified of events generated from all Neptune sources belonging to your customer account. |
|
| DeleteDBCluster |
Show DescriptionThe DeleteDBCluster action deletes a previously provisioned DB cluster. When you delete a DB cluster, all automated backups for that DB cluster are deleted and can't be recovered. Manual DB cluster snapshots of the specified DB cluster are not deleted. Note that the DB Cluster cannot be deleted if deletion protection is enabled. To delete it, you must first set itsDeletionProtection field to False.
|
|
| DeleteDBClusterEndpoint |
Show DescriptionDeletes a custom endpoint and removes it from an Amazon Neptune DB cluster. |
|
| DeleteDBClusterParameterGroup | ||
| DeleteDBClusterSnapshot |
Show DescriptionDeletes a DB cluster snapshot. If the snapshot is being copied, the copy operation is terminated.available state to be deleted. |
|
| DeleteDBInstance |
Show DescriptionThe DeleteDBInstance action deletes a previously provisioned DB instance. When you delete a DB instance, all automated backups for that instance are deleted and can't be recovered. Manual DB snapshots of the DB instance to be deleted byDeleteDBInstance are not deleted. If you request a final DB snapshot the status of the Amazon Neptune DB instance is deleting until the DB snapshot is created. The API action DescribeDBInstance is used to monitor the status of this operation. The action can't be canceled or reverted once submitted. Note that when a DB instance is in a failure state and has a status of failed, incompatible-restore, or incompatible-network, you can only delete it when the SkipFinalSnapshot parameter is set to true. You can't delete a DB instance if it is the only instance in the DB cluster, or if it has deletion protection enabled.
|
|
| DeleteDBParameterGroup | ||
| DeleteDBSubnetGroup | ||
| DeleteEventSubscription |
Show DescriptionDeletes an event notification subscription. |
|
| DescribeDBClusterEndpoints |
Show DescriptionReturns information about endpoints for an Amazon Neptune DB cluster. |
|
| DescribeDBClusterParameterGroups |
Show DescriptionReturns a list ofDBClusterParameterGroup descriptions. If a DBClusterParameterGroupName parameter is specified, the list will contain only the description of the specified DB cluster parameter group.
|
|
| DescribeDBClusterParameters |
Show DescriptionReturns the detailed parameter list for a particular DB cluster parameter group. |
|
| DescribeDBClusterSnapshotAttributes |
Show DescriptionReturns a list of DB cluster snapshot attribute names and values for a manual DB cluster snapshot. When sharing snapshots with other Amazon accounts,DescribeDBClusterSnapshotAttributes returns the restore attribute and a list of IDs for the Amazon accounts that are authorized to copy or restore the manual DB cluster snapshot. If all is included in the list of values for the restore attribute, then the manual DB cluster snapshot is public and can be copied or restored by all Amazon accounts. To add or remove access for an Amazon account to copy or restore a manual DB cluster snapshot, or to make the manual DB cluster snapshot public or private, use the ModifyDBClusterSnapshotAttribute API action.
|
|
| DescribeDBClusterSnapshots |
Show DescriptionReturns information about DB cluster snapshots. This API action supports pagination. |
|
| DescribeDBClusters |
Show DescriptionReturns information about provisioned DB clusters, and supports pagination. |
|
| DescribeDBEngineVersions |
Show DescriptionReturns a list of the available DB engines. |
|
| DescribeDBInstances |
Show DescriptionReturns information about provisioned instances, and supports pagination. |
|
| DescribeDBParameterGroups |
Show DescriptionReturns a list ofDBParameterGroup descriptions. If a DBParameterGroupName is specified, the list will contain only the description of the specified DB parameter group.
|
|
| DescribeDBParameters |
Show DescriptionReturns the detailed parameter list for a particular DB parameter group. |
|
| DescribeDBSubnetGroups |
Show DescriptionReturns a list of DBSubnetGroup descriptions. If a DBSubnetGroupName is specified, the list will contain only the descriptions of the specified DBSubnetGroup. For an overview of CIDR ranges, go to the Wikipedia Tutorial. |
|
| DescribeEngineDefaultClusterParameters |
Show DescriptionReturns the default engine and system parameter information for the cluster database engine. |
|
| DescribeEngineDefaultParameters |
Show DescriptionReturns the default engine and system parameter information for the specified database engine. |
|
| DescribeEventCategories |
Show DescriptionDisplays a list of categories for all event source types, or, if specified, for a specified source type. |
|
| DescribeEventSubscriptions |
Show DescriptionLists all the subscription descriptions for a customer account. The description for a subscription includes SubscriptionName, SNSTopicARN, CustomerID, SourceType, SourceID, CreationTime, and Status. If you specify a SubscriptionName, lists the description for that subscription. |
|
| DescribeEvents |
Show DescriptionReturns events related to DB instances, DB security groups, DB snapshots, and DB parameter groups for the past 14 days. Events specific to a particular DB instance, DB security group, database snapshot, or DB parameter group can be obtained by providing the name as a parameter. By default, the past hour of events are returned. |
|
| DescribeOrderableDBInstanceOptions |
Show DescriptionReturns a list of orderable DB instance options for the specified engine. |
|
| DescribePendingMaintenanceActions |
Show DescriptionReturns a list of resources (for example, DB instances) that have at least one pending maintenance action. |
|
| DescribeValidDBInstanceModifications |
Show DescriptionYou can call DescribeValidDBInstanceModifications to learn what modifications you can make to your DB instance. You can use this information when you call ModifyDBInstance. |
|
| FailoverDBCluster |
Show DescriptionForces a failover for a DB cluster. A failover for a DB cluster promotes one of the Read Replicas (read-only instances) in the DB cluster to be the primary instance (the cluster writer). Amazon Neptune will automatically fail over to a Read Replica, if one exists, when the primary instance fails. You can force a failover when you want to simulate a failure of a primary instance for testing. Because each instance in a DB cluster has its own endpoint address, you will need to clean up and re-establish any existing connections that use those endpoint addresses when the failover is complete. |
|
| ListTagsForResource |
Show DescriptionLists all tags on an Amazon Neptune resource. |
|
| ModifyDBCluster |
Show DescriptionModify a setting for a DB cluster. You can change one or more database configuration parameters by specifying these parameters and the new values in the request. |
|
| ModifyDBClusterEndpoint |
Show DescriptionModifies the properties of an endpoint in an Amazon Neptune DB cluster. |
|
| ModifyDBClusterParameterGroup |
Show DescriptionModifies the parameters of a DB cluster parameter group. To modify more than one parameter, submit a list of the following:ParameterName, ParameterValue, and ApplyMethod. A maximum of 20 parameters can be modified in a single request. character_set_database parameter. You can use the Parameter Groups option of the Amazon Neptune console or the DescribeDBClusterParameters command to verify that your DB cluster parameter group has been created or modified. |
|
| ModifyDBClusterSnapshotAttribute |
Show DescriptionAdds an attribute and values to, or removes an attribute and values from, a manual DB cluster snapshot. To share a manual DB cluster snapshot with other Amazon accounts, specifyrestore as the AttributeName and use the ValuesToAdd parameter to add a list of IDs of the Amazon accounts that are authorized to restore the manual DB cluster snapshot. Use the value all to make the manual DB cluster snapshot public, which means that it can be copied or restored by all Amazon accounts. Do not add the all value for any manual DB cluster snapshots that contain private information that you don't want available to all Amazon accounts. If a manual DB cluster snapshot is encrypted, it can be shared, but only by specifying a list of authorized Amazon account IDs for the ValuesToAdd parameter. You can't use all as a value for that parameter in this case. To view which Amazon accounts have access to copy or restore a manual DB cluster snapshot, or whether a manual DB cluster snapshot public or private, use the DescribeDBClusterSnapshotAttributes API action.
|
|
| ModifyDBInstance |
Show DescriptionModifies settings for a DB instance. You can change one or more database configuration parameters by specifying these parameters and the new values in the request. To learn what modifications you can make to your DB instance, call DescribeValidDBInstanceModifications before you call ModifyDBInstance. |
|
| ModifyDBParameterGroup |
Show DescriptionModifies the parameters of a DB parameter group. To modify more than one parameter, submit a list of the following:ParameterName, ParameterValue, and ApplyMethod. A maximum of 20 parameters can be modified in a single request. character_set_database parameter. You can use the Parameter Groups option of the Amazon Neptune console or the DescribeDBParameters command to verify that your DB parameter group has been created or modified. |
|
| ModifyDBSubnetGroup |
Show DescriptionModifies an existing DB subnet group. DB subnet groups must contain at least one subnet in at least two AZs in the Amazon Region. |
|
| ModifyEventSubscription |
Show DescriptionModifies an existing event notification subscription. Note that you can't modify the source identifiers using this call; to change source identifiers for a subscription, use the AddSourceIdentifierToSubscription and RemoveSourceIdentifierFromSubscription calls. You can see a list of the event categories for a given SourceType by using the DescribeEventCategories action. |
|
| PromoteReadReplicaDBCluster |
Show DescriptionNot supported. |
|
| RebootDBInstance |
Show DescriptionYou might need to reboot your DB instance, usually for maintenance reasons. For example, if you make certain modifications, or if you change the DB parameter group associated with the DB instance, you must reboot the instance for the changes to take effect. Rebooting a DB instance restarts the database engine service. Rebooting a DB instance results in a momentary outage, during which the DB instance status is set to rebooting. |
|
| RemoveRoleFromDBCluster | ||
| RemoveSourceIdentifierFromSubscription |
Show DescriptionRemoves a source identifier from an existing event notification subscription. |
|
| RemoveTagsFromResource | ||
| ResetDBClusterParameterGroup |
Show DescriptionModifies the parameters of a DB cluster parameter group to the default value. To reset specific parameters submit a list of the following:ParameterName and ApplyMethod. To reset the entire DB cluster parameter group, specify the DBClusterParameterGroupName and ResetAllParameters parameters. When resetting the entire group, dynamic parameters are updated immediately and static parameters are set to pending-reboot to take effect on the next DB instance restart or RebootDBInstance request. You must call RebootDBInstance for every DB instance in your DB cluster that you want the updated static parameter to apply to.
|
|
| ResetDBParameterGroup |
Show DescriptionModifies the parameters of a DB parameter group to the engine/system default value. To reset specific parameters, provide a list of the following:ParameterName and ApplyMethod. To reset the entire DB parameter group, specify the DBParameterGroup name and ResetAllParameters parameters. When resetting the entire group, dynamic parameters are updated immediately and static parameters are set to pending-reboot to take effect on the next DB instance restart or RebootDBInstance request.
|
|
| RestoreDBClusterFromSnapshot |
Show DescriptionCreates a new DB cluster from a DB snapshot or DB cluster snapshot. If a DB snapshot is specified, the target DB cluster is created from the source DB snapshot with a default configuration and default security group. If a DB cluster snapshot is specified, the target DB cluster is created from the source DB cluster restore point with the same configuration as the original source DB cluster, except that the new DB cluster is created with the default security group. |
|
| RestoreDBClusterToPointInTime |
Show DescriptionRestores a DB cluster to an arbitrary point in time. Users can restore to any point in time beforeLatestRestorableTime for up to BackupRetentionPeriod days. The target DB cluster is created from the source DB cluster with the same configuration as the original DB cluster, except that the new DB cluster is created with the default DB security group. DBClusterIdentifier. You can create DB instances only after the RestoreDBClusterToPointInTime action has completed and the DB cluster is available. |
|
| StartDBCluster |
Show DescriptionStarts an Amazon Neptune DB cluster that was stopped using the Amazon console, the Amazon CLI stop-db-cluster command, or the StopDBCluster API. |
Networkmanager Events
| Service | Event Name | Description |
|---|---|---|
| networkmanager | AssociateCustomerGateway |
Show DescriptionAssociates a customer gateway with a device and optionally, with a link. If you specify a link, it must be associated with the specified device. You can only associate customer gateways that are connected to a VPN attachment on a transit gateway. The transit gateway must be registered in your global network. When you register a transit gateway, customer gateways that are connected to the transit gateway are automatically included in the global network. To list customer gateways that are connected to a transit gateway, use the DescribeVpnConnections EC2 API and filter bytransit-gateway-id. You cannot associate a customer gateway with more than one device and link.
|
| AssociateLink |
Show DescriptionAssociates a link to a device. A device can be associated to multiple links and a link can be associated to multiple devices. The device and link must be in the same global network and the same site. |
|
| AssociateTransitGatewayConnectPeer |
Show DescriptionAssociates a transit gateway Connect peer with a device, and optionally, with a link. If you specify a link, it must be associated with the specified device. You can only associate transit gateway Connect peers that have been created on a transit gateway that's registered in your global network. You cannot associate a transit gateway Connect peer with more than one device and link. |
|
| CreateConnection |
Show DescriptionCreates a connection between two devices. The devices can be a physical or virtual appliance that connects to a third-party appliance in a VPC, or a physical appliance that connects to another physical appliance in an on-premises network. |
|
| CreateDevice |
Show DescriptionCreates a new device in a global network. If you specify both a site ID and a location, the location of the site is used for visualization in the Network Manager console. |
|
| CreateGlobalNetwork |
Show DescriptionCreates a new, empty global network. |
|
| CreateLink |
Show DescriptionCreates a new link for a specified site. |
|
| CreateSite |
Show DescriptionCreates a new site in a global network. |
|
| DeleteConnection |
Show DescriptionDeletes the specified connection in your global network. |
|
| DeleteDevice |
Show DescriptionDeletes an existing device. You must first disassociate the device from any links and customer gateways. |
|
| DeleteGlobalNetwork |
Show DescriptionDeletes an existing global network. You must first delete all global network objects (devices, links, and sites) and deregister all transit gateways. |
|
| DeleteLink |
Show DescriptionDeletes an existing link. You must first disassociate the link from any devices and customer gateways. |
|
| DeleteSite |
Show DescriptionDeletes an existing site. The site cannot be associated with any device or link. |
|
| DeregisterTransitGateway |
Show DescriptionDeregisters a transit gateway from your global network. This action does not delete your transit gateway, or modify any of its attachments. This action removes any customer gateway associations. |
|
| DescribeGlobalNetworks |
Show DescriptionDescribes one or more global networks. By default, all global networks are described. To describe the objects in your global network, you must use the appropriateGet* action. For example, to list the transit gateways in your global network, use GetTransitGatewayRegistrations.
|
|
| DisassociateCustomerGateway |
Show DescriptionDisassociates a customer gateway from a device and a link. |
|
| DisassociateLink |
Show DescriptionDisassociates an existing device from a link. You must first disassociate any customer gateways that are associated with the link. |
|
| DisassociateTransitGatewayConnectPeer |
Show DescriptionDisassociates a transit gateway Connect peer from a device and link. |
|
| GetConnections |
Show DescriptionGets information about one or more of your connections in a global network. |
|
| GetCustomerGatewayAssociations |
Show DescriptionGets the association information for customer gateways that are associated with devices and links in your global network. |
|
| GetDevices |
Show DescriptionGets information about one or more of your devices in a global network. |
|
| GetLinkAssociations |
Show DescriptionGets the link associations for a device or a link. Either the device ID or the link ID must be specified. |
|
| GetLinks |
Show DescriptionGets information about one or more links in a specified global network. If you specify the site ID, you cannot specify the type or provider in the same request. You can specify the type and provider in the same request. |
|
| GetNetworkResourceCounts |
Show DescriptionGets the count of network resources, by resource type, for the specified global network. |
|
| GetNetworkResourceRelationships |
Show DescriptionGets the network resource relationships for the specified global network. |
|
| GetNetworkResources |
Show DescriptionDescribes the network resources for the specified global network. The results include information from the corresponding Describe call for the resource, minus any sensitive information such as pre-shared keys. |
|
| GetNetworkRoutes |
Show DescriptionGets the network routes of the specified global network. |
|
| GetNetworkTelemetry |
Show DescriptionGets the network telemetry of the specified global network. |
|
| GetRouteAnalysis |
Show DescriptionGets information about the specified route analysis. |
|
| GetSites |
Show DescriptionGets information about one or more of your sites in a global network. |
|
| GetTransitGatewayConnectPeerAssociations |
Show DescriptionGets information about one or more of your transit gateway Connect peer associations in a global network. |
|
| GetTransitGatewayRegistrations |
Show DescriptionGets information about the transit gateway registrations in a specified global network. |
|
| ListTagsForResource |
Show DescriptionLists the tags for a specified resource. |
|
| RegisterTransitGateway |
Show DescriptionRegisters a transit gateway in your global network. The transit gateway can be in any Amazon Web Services Region, but it must be owned by the same Amazon Web Services account that owns the global network. You cannot register a transit gateway in more than one global network. |
|
| StartRouteAnalysis |
Show DescriptionStarts analyzing the routing path between the specified source and destination. For more information, see Route Analyzer. |
|
| TagResource |
Show DescriptionTags a specified resource. |
|
| UntagResource |
Show DescriptionRemoves tags from a specified resource. |
|
| UpdateConnection |
Show DescriptionUpdates the information for an existing connection. To remove information for any of the parameters, specify an empty string. |
|
| UpdateDevice |
Show DescriptionUpdates the details for an existing device. To remove information for any of the parameters, specify an empty string. |
|
| UpdateGlobalNetwork |
Show DescriptionUpdates an existing global network. To remove information for any of the parameters, specify an empty string. |
|
| UpdateLink |
Show DescriptionUpdates the details for an existing link. To remove information for any of the parameters, specify an empty string. |
|
| UpdateNetworkResourceMetadata |
Show DescriptionUpdates the resource metadata for the specified global network. |
Nimble Events
| Service | Event Name | Description |
|---|---|---|
| nimble | AcceptEulas |
Show DescriptionAccept EULAs. |
| CreateLaunchProfile |
Show DescriptionCreate a launch profile. |
|
| CreateStreamingImage |
Show DescriptionCreates a streaming image resource in a studio. |
|
| CreateStreamingSession |
Show DescriptionCreates a streaming session in a studio. After invoking this operation, you must poll GetStreamingSession until the streaming session is in state READY. |
|
| CreateStreamingSessionStream |
Show DescriptionCreates a streaming session stream for a streaming session. After invoking this API, invoke GetStreamingSessionStream with the returned streamId to poll the resource until it is in state READY. |
|
| CreateStudio |
Show DescriptionCreate a new Studio. When creating a Studio, two IAM roles must be provided: the admin role and the user Role. These roles are assumed by your users when they log in to the Nimble Studio portal. The user role must have the AmazonNimbleStudio-StudioUser managed policy attached for the portal to function properly. The Admin Role must have the AmazonNimbleStudio-StudioAdmin managed policy attached for the portal to function properly. You may optionally specify a KMS key in the StudioEncryptionConfiguration. In Nimble Studio, resource names, descriptions, initialization scripts, and other data you provide are always encrypted at rest using an KMS key. By default, this key is owned by Amazon Web Services and managed on your behalf. You may provide your own KMS key when calling CreateStudio to encrypt this data using a key you own and manage. When providing an KMS key during studio creation, Nimble Studio creates KMS grants in your account to provide your studio user and admin roles access to these KMS keys. If you delete this grant, the studio will no longer be accessible to your portal users. If you delete the studio KMS key, your studio will no longer be accessible. |
|
| CreateStudioComponent |
Show DescriptionCreates a studio component resource. |
|
| DeleteLaunchProfile |
Show DescriptionPermanently delete a launch profile. |
|
| DeleteLaunchProfileMember |
Show DescriptionDelete a user from launch profile membership. |
|
| DeleteStreamingImage |
Show DescriptionDelete streaming image. |
|
| DeleteStreamingSession |
Show DescriptionDeletes streaming session resource. After invoking this operation, use GetStreamingSession to poll the resource until it transitions to a DELETED state. A streaming session will count against your streaming session quota until it is marked DELETED. |
|
| DeleteStudio |
Show DescriptionDelete a studio resource. |
|
| DeleteStudioComponent |
Show DescriptionDeletes a studio component resource. |
|
| DeleteStudioMember |
Show DescriptionDelete a user from studio membership. |
|
| GetEula |
Show DescriptionGet Eula. |
|
| GetLaunchProfile |
Show DescriptionGet a launch profile. |
|
| GetLaunchProfileDetails |
Show DescriptionLaunch profile details include the launch profile resource and summary information of resources that are used by, or available to, the launch profile. This includes the name and description of all studio components used by the launch profiles, and the name and description of streaming images that can be used with this launch profile. |
|
| GetLaunchProfileInitialization |
Show DescriptionGet a launch profile initialization. |
|
| GetLaunchProfileMember |
Show DescriptionGet a user persona in launch profile membership. |
|
| GetStreamingImage |
Show DescriptionGet streaming image. |
|
| GetStreamingSession |
Show DescriptionGets StreamingSession resource. anvoke this operation to poll for a streaming session state while creating or deleting a session. |
|
| GetStreamingSessionStream |
Show DescriptionGets a StreamingSessionStream for a streaming session. Invoke this operation to poll the resource after invoking CreateStreamingSessionStream. After the StreamingSessionStream changes to the state READY, the url property will contain a stream to be used with the DCV streaming client. |
|
| GetStudio |
Show DescriptionGet a Studio resource. |
|
| GetStudioComponent |
Show DescriptionGets a studio component resource. |
|
| GetStudioMember |
Show DescriptionGet a user's membership in a studio. |
|
| ListEulaAcceptances |
Show DescriptionList Eula Acceptances. |
|
| ListEulas |
Show DescriptionList Eulas. |
|
| ListLaunchProfileMembers |
Show DescriptionGet all users in a given launch profile membership. |
|
| ListLaunchProfiles |
Show DescriptionList all the launch profiles a studio. |
|
| ListStreamingImages |
Show DescriptionList the streaming image resources available to this studio. This list will contain both images provided by Amazon Web Services, as well as streaming images that you have created in your studio. |
|
| ListStreamingSessions |
Show DescriptionLists the streaming image resources in a studio. |
|
| ListStudioComponents |
Show DescriptionLists the StudioComponents in a studio. |
|
| ListStudioMembers |
Show DescriptionGet all users in a given studio membership. |
|
| ListStudios |
Show DescriptionList studios in your Amazon Web Services account in the requested Amazon Web Services Region. |
|
| ListTagsForResource |
Show DescriptionGets the tags for a resource, given its Amazon Resource Names (ARN). This operation supports ARNs for all resource types in Nimble Studio that support tags, including studio, studio component, launch profile, streaming image, and streaming session. All resources that can be tagged will contain an ARN property, so you do not have to create this ARN yourself. |
|
| PutLaunchProfileMembers |
Show DescriptionAdd/update users with given persona to launch profile membership. |
|
| PutStudioMembers |
Show DescriptionAdd/update users with given persona to studio membership. |
|
| StartStreamingSession |
Show DescriptionTransitions sessions from the STOPPED state into the READY state. The START_IN_PROGRESS state is the intermediate state between the STOPPED and READY states. |
|
| StartStudioSSOConfigurationRepair |
Show DescriptionRepairs the Amazon Web Services SSO configuration for a given studio. If the studio has a valid Amazon Web Services SSO configuration currently associated with it, this operation will fail with a validation error. If the studio does not have a valid Amazon Web Services SSO configuration currently associated with it, then a new Amazon Web Services SSO application is created for the studio and the studio is changed to the READY state. After the Amazon Web Services SSO application is repaired, you must use the Amazon Nimble Studio console to add administrators and users to your studio. |
|
| StopStreamingSession |
Show DescriptionTransitions sessions from the READY state into the STOPPED state. The STOP_IN_PROGRESS state is the intermediate state between the READY and STOPPED states. |
|
| TagResource |
Show DescriptionCreates tags for a resource, given its ARN. |
|
| UntagResource |
Show DescriptionDeletes the tags for a resource. |
|
| UpdateLaunchProfile |
Show DescriptionUpdate a launch profile. |
|
| UpdateLaunchProfileMember |
Show DescriptionUpdate a user persona in launch profile membership. |
|
| UpdateStreamingImage |
Show DescriptionUpdate streaming image. |
|
| UpdateStudio |
Show DescriptionUpdate a Studio resource. Currently, this operation only supports updating the displayName of your studio. |
Opensearch Events
| Service | Event Name | Description |
|---|---|---|
| opensearch | AcceptInboundConnection |
Show DescriptionAllows the remote domain owner to accept an inbound cross-cluster connection request. |
| AddTags | ||
| AssociatePackage |
Show DescriptionAssociates a package with an Amazon OpenSearch Service domain. |
|
| CancelServiceSoftwareUpdate |
Show DescriptionCancels a scheduled service software update for an Amazon OpenSearch Service domain. You can only perform this operation before theAutomatedUpdateDate and when the UpdateStatus is in the PENDING_UPDATE state.
|
|
| CreateDomain |
Show DescriptionCreates a new Amazon OpenSearch Service domain. For more information, see Creating and managing Amazon OpenSearch Service domains in the Amazon OpenSearch Service Developer Guide. |
|
| CreateOutboundConnection |
Show DescriptionCreates a new cross-cluster connection from a local OpenSearch domain to a remote OpenSearch domain. |
|
| CreatePackage |
Show DescriptionCreate a package for use with Amazon OpenSearch Service domains. |
|
| DeleteDomain |
Show DescriptionPermanently deletes the specified domain and all of its data. Once a domain is deleted, it cannot be recovered. |
|
| DeleteInboundConnection |
Show DescriptionAllows the remote domain owner to delete an existing inbound cross-cluster connection. |
|
| DeleteOutboundConnection |
Show DescriptionAllows the local domain owner to delete an existing outbound cross-cluster connection. |
|
| DeletePackage |
Show DescriptionDeletes the package. |
|
| DescribeDomain |
Show DescriptionReturns domain configuration information about the specified domain, including the domain ID, domain endpoint, and domain ARN. |
|
| DescribeDomainAutoTunes |
Show DescriptionProvides scheduled Auto-Tune action details for the domain, such as Auto-Tune action type, description, severity, and scheduled date. |
|
| DescribeDomainConfig |
Show DescriptionProvides cluster configuration information about the specified domain, such as the state, creation date, update version, and update date for cluster options. |
|
| DescribeDomains |
Show DescriptionReturns domain configuration information about the specified domains, including the domain ID, domain endpoint, and domain ARN. |
|
| DescribeInboundConnections |
Show DescriptionLists all the inbound cross-cluster connections for a remote domain. |
|
| DescribeInstanceTypeLimits |
Show DescriptionDescribe the limits for a given instance type and OpenSearch or Elasticsearch version. When modifying an existing domain, specify the DomainName to see which limits you can modify.
|
|
| DescribeOutboundConnections |
Show DescriptionLists all the outbound cross-cluster connections for a local domain. |
|
| DescribePackages |
Show DescriptionDescribes all packages available to Amazon OpenSearch Service domains. Includes options for filtering, limiting the number of results, and pagination. |
|
| DescribeReservedInstanceOfferings |
Show DescriptionLists available reserved OpenSearch instance offerings. |
|
| DescribeReservedInstances |
Show DescriptionReturns information about reserved OpenSearch instances for this account. |
|
| DissociatePackage |
Show DescriptionDissociates a package from the Amazon OpenSearch Service domain. |
|
| GetCompatibleVersions |
Show DescriptionReturns a list of upgrade-compatible versions of OpenSearch/Elasticsearch. You can optionally pass a DomainName to get all upgrade-compatible versions of OpenSearch/Elasticsearch for that specific domain.
|
|
| GetPackageVersionHistory |
Show DescriptionReturns a list of package versions, along with their creation time and commit message. |
|
| GetUpgradeHistory |
Show DescriptionRetrieves the complete history of the last 10 upgrades performed on the domain. |
|
| GetUpgradeStatus |
Show DescriptionRetrieves the latest status of the last upgrade or upgrade eligibility check performed on the domain. |
|
| ListDomainNames |
Show DescriptionReturns the names of all domains owned by the current user's account. |
|
| ListDomainsForPackage |
Show DescriptionLists all Amazon OpenSearch Service domains associated with the package. |
|
| ListInstanceTypeDetails |
Show DescriptionNone |
|
| ListPackagesForDomain |
Show DescriptionLists all packages associated with the Amazon OpenSearch Service domain. |
|
| ListTags |
Show DescriptionReturns all tags for the given domain. |
|
| ListVersions |
Show DescriptionList all supported versions of OpenSearch and Elasticsearch. |
|
| PurchaseReservedInstanceOffering |
Show DescriptionAllows you to purchase reserved OpenSearch instances. |
|
| RejectInboundConnection |
Show DescriptionAllows the remote domain owner to reject an inbound cross-cluster connection request. |
|
| RemoveTags | ||
| StartServiceSoftwareUpdate |
Show DescriptionSchedules a service software update for an Amazon OpenSearch Service domain. |
|
| UpdateDomainConfig |
Show DescriptionModifies the cluster configuration of the specified domain, such as setting the instance type and the number of instances. |
|
| UpdatePackage |
Show DescriptionUpdates a package for use with Amazon OpenSearch Service domains. |
Opsworks Events
| Service | Event Name | Description |
|---|---|---|
| opsworks | AssignInstance | |
| AssignVolume | ||
| AssociateElasticIp | ||
| AttachElasticLoadBalancer | ||
| CloneStack |
Show DescriptionCreates a clone of a specified stack. For more information, see Clone a Stack. By default, all parameters are set to the values used by the parent stack. Required Permissions: To use this action, an IAM user must have an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. |
|
| CreateApp |
Show DescriptionCreates an app for a specified stack. For more information, see Creating Apps. Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| CreateDeployment |
Show DescriptionRuns deployment or stack commands. For more information, see Deploying Apps and Run Stack Commands. Required Permissions: To use this action, an IAM user must have a Deploy or Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| CreateInstance |
Show DescriptionCreates an instance in a specified stack. For more information, see Adding an Instance to a Layer. Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| CreateLayer |
Show DescriptionCreates a layer. For more information, see How to Create a Layer. |
|
| CreateStack |
Show DescriptionCreates a new stack. For more information, see Create a New Stack. Required Permissions: To use this action, an IAM user must have an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. |
|
| CreateUserProfile |
Show DescriptionCreates a new user profile. Required Permissions: To use this action, an IAM user must have an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. |
|
| DeleteApp | ||
| DeleteInstance | ||
| DeleteLayer | ||
| DeleteStack | ||
| DeleteUserProfile | ||
| DeregisterEcsCluster | ||
| DeregisterElasticIp | ||
| DeregisterInstance | ||
| DeregisterRdsDbInstance | ||
| DeregisterVolume | ||
| DescribeAgentVersions |
Show DescriptionDescribes the available AWS OpsWorks Stacks agent versions. You must specify a stack ID or a configuration manager.DescribeAgentVersions returns a list of available agent versions for the specified stack or configuration manager.
|
|
| DescribeApps |
Show DescriptionRequests a description of a specified set of apps. |
|
| DescribeCommands |
Show DescriptionDescribes the results of specified commands. |
|
| DescribeDeployments |
Show DescriptionRequests a description of a specified set of deployments. |
|
| DescribeEcsClusters |
Show DescriptionDescribes Amazon ECS clusters that are registered with a stack. If you specify only a stack ID, you can use theMaxResults and NextToken parameters to paginate the response. However, AWS OpsWorks Stacks currently supports only one cluster per layer, so the result set has a maximum of one element. Required Permissions: To use this action, an IAM user must have a Show, Deploy, or Manage permissions level for the stack or an attached policy that explicitly grants permission. For more information about user permissions, see Managing User Permissions. This call accepts only one resource-identifying parameter.
|
|
| DescribeElasticIps |
Show DescriptionDescribes Elastic IP addresses. |
|
| DescribeElasticLoadBalancers |
Show DescriptionDescribes a stack's Elastic Load Balancing instances. |
|
| DescribeInstances |
Show DescriptionRequests a description of a set of instances. |
|
| DescribeLayers |
Show DescriptionRequests a description of one or more layers in a specified stack. |
|
| DescribeLoadBasedAutoScaling |
Show DescriptionDescribes load-based auto scaling configurations for specified layers. |
|
| DescribeMyUserProfile |
Show DescriptionDescribes a user's SSH information. Required Permissions: To use this action, an IAM user must have self-management enabled or an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. |
|
| DescribeOperatingSystems |
Show DescriptionDescribes the operating systems that are supported by AWS OpsWorks Stacks. |
|
| DescribePermissions |
Show DescriptionDescribes the permissions for a specified stack. Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| DescribeRaidArrays |
Show DescriptionDescribe an instance's RAID arrays. |
|
| DescribeRdsDbInstances |
Show DescriptionDescribes Amazon RDS instances. Required Permissions: To use this action, an IAM user must have a Show, Deploy, or Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. This call accepts only one resource-identifying parameter. |
|
| DescribeServiceErrors |
Show DescriptionDescribes AWS OpsWorks Stacks service errors. Required Permissions: To use this action, an IAM user must have a Show, Deploy, or Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. This call accepts only one resource-identifying parameter. |
|
| DescribeStackProvisioningParameters |
Show DescriptionRequests a description of a stack's provisioning parameters. Required Permissions: To use this action, an IAM user must have a Show, Deploy, or Manage permissions level for the stack or an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. |
|
| DescribeStackSummary |
Show DescriptionDescribes the number of layers and apps in a specified stack, and the number of instances in each state, such asrunning_setup or online. Required Permissions: To use this action, an IAM user must have a Show, Deploy, or Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions.
|
|
| DescribeStacks |
Show DescriptionRequests a description of one or more stacks. Required Permissions: To use this action, an IAM user must have a Show, Deploy, or Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. |
|
| DescribeTimeBasedAutoScaling |
Show DescriptionDescribes time-based auto scaling configurations for specified instances. |
|
| DescribeUserProfiles |
Show DescriptionDescribe specified users. Required Permissions: To use this action, an IAM user must have an attached policy that explicitly grants permissions. For more information about user permissions, see Managing User Permissions. |
|
| DescribeVolumes |
Show DescriptionDescribes an instance's Amazon EBS volumes. |
|
| DetachElasticLoadBalancer | ||
| DisassociateElasticIp | ||
| GetHostnameSuggestion |
Show DescriptionGets a generated host name for the specified layer, based on the current host name theme. Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| GrantAccess |
Show Description |
|
| ListTags |
Show DescriptionReturns a list of tags that are applied to the specified stack or layer. |
|
| RebootInstance | ||
| RegisterEcsCluster |
Show DescriptionRegisters a specified Amazon ECS cluster with a stack. You can register only one cluster with a stack. A cluster can be registered with only one stack. For more information, see Resource Management. Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| RegisterElasticIp |
Show DescriptionRegisters an Elastic IP address with a specified stack. An address can be registered with only one stack at a time. If the address is already registered, you must first deregister it by calling DeregisterElasticIp. For more information, see Resource Management. Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| RegisterInstance |
Show DescriptionRegisters instances that were created outside of AWS OpsWorks Stacks with a specified stack.RegisterInstance handles only the second step. You should instead use the AWS CLI register command, which performs the entire registration operation. For more information, see Registering an Instance with an AWS OpsWorks Stacks Stack. |
|
| RegisterRdsDbInstance | ||
| RegisterVolume |
Show DescriptionRegisters an Amazon EBS volume with a specified stack. A volume can be registered with only one stack at a time. If the volume is already registered, you must first deregister it by calling DeregisterVolume. For more information, see Resource Management. Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions. |
|
| SetLoadBasedAutoScaling | ||
| SetPermission | ||
| SetTimeBasedAutoScaling | ||
| StartInstance | ||
| StartStack | ||
| StopInstance | ||
| StopStack | ||
| TagResource | ||
| UnassignInstance | ||
| UnassignVolume | ||
| UntagResource | ||
| UpdateApp | ||
| UpdateElasticIp | ||
| UpdateInstance | ||
| UpdateLayer | ||
| UpdateMyUserProfile | ||
| UpdateRdsDbInstance | ||
| UpdateStack | ||
| UpdateUserProfile |
Opsworkscm Events
| Service | Event Name | Description |
|---|---|---|
| opsworkscm | AssociateNode |
Show DescriptionAssociates a new node with the server. For more information about how to disassociate a node, see DisassociateNode. On a Chef server: This command is an alternative toknife bootstrap. Example (Chef): aws opsworks-cm associate-node --server-name MyServer --node-name MyManagedNode --engine-attributes "Name=CHEF_ORGANIZATION,Value=default" "Name=CHEF_NODE_PUBLIC_KEY,Value=public-key-pem" On a Puppet server, this command is an alternative to the puppet cert sign command that signs a Puppet node CSR. Example (Puppet): aws opsworks-cm associate-node --server-name MyServer --node-name MyManagedNode --engine-attributes "Name=PUPPET_NODE_CSR,Value=csr-pem" A node can can only be associated with servers that are in a HEALTHY state. Otherwise, an InvalidStateException is thrown. A ResourceNotFoundException is thrown when the server does not exist. A ValidationException is raised when parameters of the request are not valid. The AssociateNode API call can be integrated into Auto Scaling configurations, AWS Cloudformation templates, or the user data of a server's instance.
|
| CreateBackup |
Show DescriptionCreates an application-level backup of a server. While the server is in theBACKING_UP state, the server cannot be changed, and no additional backup can be created. Backups can be created for servers in RUNNING, HEALTHY, and UNHEALTHY states. By default, you can create a maximum of 50 manual backups. This operation is asynchronous. A LimitExceededException is thrown when the maximum number of manual backups is reached. An InvalidStateException is thrown when the server is not in any of the following states: RUNNING, HEALTHY, or UNHEALTHY. A ResourceNotFoundException is thrown when the server is not found. A ValidationException is thrown when parameters of the request are not valid.
|
|
| CreateServer |
Show DescriptionCreates and immedately starts a new server. The server is ready to use when it is in theHEALTHY state. By default, you can create a maximum of 10 servers. This operation is asynchronous. A LimitExceededException is thrown when you have created the maximum number of servers (10). A ResourceAlreadyExistsException is thrown when a server with the same name already exists in the account. A ResourceNotFoundException is thrown when you specify a backup ID that is not valid or is for a backup that does not exist. A ValidationException is thrown when parameters of the request are not valid. If you do not specify a security group by adding the SecurityGroupIds parameter, AWS OpsWorks creates a new security group. Chef Automate: The default security group opens the Chef server to the world on TCP port 443. If a KeyName is present, AWS OpsWorks enables SSH access. SSH is also open to the world on TCP port 22. Puppet Enterprise: The default security group opens TCP ports 22, 443, 4433, 8140, 8142, 8143, and 8170. If a KeyName is present, AWS OpsWorks enables SSH access. SSH is also open to the world on TCP port 22. By default, your server is accessible from any IP address. We recommend that you update your security group rules to allow access from known IP addresses and address ranges only. To edit security group rules, open Security Groups in the navigation pane of the EC2 management console. To specify your own domain for a server, and provide your own self-signed or CA-signed certificate and private key, specify values for CustomDomain, CustomCertificate, and CustomPrivateKey.
|
|
| DeleteBackup |
Show DescriptionDeletes a backup. You can delete both manual and automated backups. This operation is asynchronous. AnInvalidStateException is thrown when a backup deletion is already in progress. A ResourceNotFoundException is thrown when the backup does not exist. A ValidationException is thrown when parameters of the request are not valid.
|
|
| DeleteServer |
Show DescriptionDeletes the server and the underlying AWS CloudFormation stacks (including the server's EC2 instance). When you run this command, the server state is updated toDELETING. After the server is deleted, it is no longer returned by DescribeServer requests. If the AWS CloudFormation stack cannot be deleted, the server cannot be deleted. This operation is asynchronous. An InvalidStateException is thrown when a server deletion is already in progress. A ResourceNotFoundException is thrown when the server does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| DescribeAccountAttributes |
Show DescriptionDescribes your OpsWorks-CM account attributes. This operation is synchronous. |
|
| DescribeBackups |
Show DescriptionDescribes backups. The results are ordered by time, with newest backups first. If you do not specify a BackupId or ServerName, the command returns all backups. This operation is synchronous. AResourceNotFoundException is thrown when the backup does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| DescribeEvents |
Show DescriptionDescribes events for a specified server. Results are ordered by time, with newest events first. This operation is synchronous. AResourceNotFoundException is thrown when the server does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| DescribeNodeAssociationStatus |
Show DescriptionReturns the current status of an existing association or disassociation request. AResourceNotFoundException is thrown when no recent association or disassociation request with the specified token is found, or when the server does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| DescribeServers |
Show DescriptionLists all configuration management servers that are identified with your account. Only the stored results from Amazon DynamoDB are returned. AWS OpsWorks CM does not query other services. This operation is synchronous. AResourceNotFoundException is thrown when the server does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| DisassociateNode |
Show DescriptionDisassociates a node from an AWS OpsWorks CM server, and removes the node from the server's managed nodes. After a node is disassociated, the node key pair is no longer valid for accessing the configuration manager's API. For more information about how to associate a node, see AssociateNode. A node can can only be disassociated from a server that is in aHEALTHY state. Otherwise, an InvalidStateException is thrown. A ResourceNotFoundException is thrown when the server does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| ExportServerEngineAttribute |
Show DescriptionExports a specified server engine attribute as a base64-encoded string. For example, you can export user data that you can use in EC2 to associate nodes with a server. This operation is synchronous. AValidationException is raised when parameters of the request are not valid. A ResourceNotFoundException is thrown when the server does not exist. An InvalidStateException is thrown when the server is in any of the following states: CREATING, TERMINATED, FAILED or DELETING.
|
|
| ListTagsForResource |
Show DescriptionReturns a list of tags that are applied to the specified AWS OpsWorks for Chef Automate or AWS OpsWorks for Puppet Enterprise servers or backups. |
|
| RestoreServer |
Show DescriptionRestores a backup to a server that is in aCONNECTION_LOST, HEALTHY, RUNNING, UNHEALTHY, or TERMINATED state. When you run RestoreServer, the server's EC2 instance is deleted, and a new EC2 instance is configured. RestoreServer maintains the existing server endpoint, so configuration management of the server's client devices (nodes) should continue to work. Restoring from a backup is performed by creating a new EC2 instance. If restoration is successful, and the server is in a HEALTHY state, AWS OpsWorks CM switches traffic over to the new instance. After restoration is finished, the old EC2 instance is maintained in a Running or Stopped state, but is eventually terminated. This operation is asynchronous. An InvalidStateException is thrown when the server is not in a valid state. A ResourceNotFoundException is thrown when the server does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| StartMaintenance |
Show DescriptionManually starts server maintenance. This command can be useful if an earlier maintenance attempt failed, and the underlying cause of maintenance failure has been resolved. The server is in anUNDER_MAINTENANCE state while maintenance is in progress. Maintenance can only be started on servers in HEALTHY and UNHEALTHY states. Otherwise, an InvalidStateException is thrown. A ResourceNotFoundException is thrown when the server does not exist. A ValidationException is raised when parameters of the request are not valid.
|
|
| TagResource |
Show DescriptionApplies tags to an AWS OpsWorks for Chef Automate or AWS OpsWorks for Puppet Enterprise server, or to server backups. |
|
| UntagResource |
Show DescriptionRemoves specified tags from an AWS OpsWorks-CM server or backup. |
|
| UpdateServer |
Show DescriptionUpdates settings for a server. This operation is synchronous. |
Organizations Events
| Service | Event Name | Description |
|---|---|---|
| organizations | AcceptHandshake |
Show DescriptionSends a response to the originator of a handshake agreeing to the action proposed by the handshake request. This operation can be called only by the following principals when they also have the relevant IAM permissions:
|
| AttachPolicy | ||
| CancelHandshake |
Show DescriptionCancels a handshake. Canceling a handshake sets the handshake state toCANCELED. This operation can be called only from the account that originated the handshake. The recipient of the handshake can't cancel it, but can use DeclineHandshake instead. After a handshake is canceled, the recipient can no longer respond to that handshake. After you cancel a handshake, it continues to appear in the results of relevant APIs for only 30 days. After that, it's deleted.
|
|
| CreateAccount |
Show DescriptionCreates an AWS account that is automatically a member of the organization whose credentials made the request. This is an asynchronous request that AWS performs in the background. BecauseCreateAccount operates asynchronously, it can return a successful completion message even though account initialization might still be in progress. You might need to wait a few minutes before you can successfully access the account. To check the status of the request, do one of the following:
organizations:CreateAccount permission. If you enabled all features in the organization, AWS Organizations creates the required service-linked role named AWSServiceRoleForOrganizations. For more information, see AWS Organizations and Service-Linked Roles in the AWS Organizations User Guide. If the request includes tags, then the requester must have the organizations:TagResource permission. AWS Organizations preconfigures the new member account with a role (named OrganizationAccountAccessRole by default) that grants users in the management account administrator permissions in the new member account. Principals in the management account can assume the role. AWS Organizations clones the company name and address information for the new account from the organization's management account. This operation can be called only from the organization's management account. For more information about creating accounts, see Creating an AWS Account in Your Organization in the AWS Organizations User Guide.
|
|
| CreateGovCloudAccount |
Show DescriptionThis action is available if all of the following are true:
AWSServiceRoleForOrganizations. For more information, see AWS Organizations and Service-Linked Roles in the AWS Organizations User Guide. AWS automatically enables AWS CloudTrail for AWS GovCloud (US) accounts, but you should also do the following:
organizations:TagResource permission. The tags are attached to the commercial account associated with the GovCloud account, rather than the GovCloud account itself. To add tags to the GovCloud account, call the TagResource operation in the GovCloud Region after the new GovCloud account exists. You call this action from the management account of your organization in the commercial Region to create a standalone AWS account in the AWS GovCloud (US) Region. After the account is created, the management account of an organization in the AWS GovCloud (US) Region can invite it to that organization. For more information on inviting standalone accounts in the AWS GovCloud (US) to join an organization, see AWS Organizations in the AWS GovCloud User Guide. Calling CreateGovCloudAccount is an asynchronous request that AWS performs in the background. Because CreateGovCloudAccount operates asynchronously, it can return a successful completion message even though account initialization might still be in progress. You might need to wait a few minutes before you can successfully access the account. To check the status of the request, do one of the following:
CreateGovCloudAccount action, you create two accounts: a standalone account in the AWS GovCloud (US) Region and an associated account in the commercial Region for billing and support purposes. The account in the commercial Region is automatically a member of the organization whose credentials made the request. Both accounts are associated with the same email address. A role is created in the new account in the commercial Region that allows the management account in the organization in the commercial Region to assume it. An AWS GovCloud (US) account is then created and associated with the commercial account that you just created. A role is also created in the new AWS GovCloud (US) account that can be assumed by the AWS GovCloud (US) account that is associated with the management account of the commercial organization. For more information and to view a diagram that explains how account access works, see AWS Organizations in the AWS GovCloud User Guide. For more information about creating accounts, see Creating an AWS Account in Your Organization in the AWS Organizations User Guide.
|
|
| CreateOrganization |
Show DescriptionCreates an AWS organization. The account whose user is calling theCreateOrganization operation automatically becomes the management account of the new organization. This operation must be called using credentials from the account that is to become the new organization's management account. The principal must also have the relevant IAM permissions. By default (or if you set the FeatureSet parameter to ALL), the new organization is created with all features enabled and service control policies automatically enabled in the root. If you instead choose to create the organization supporting only the consolidated billing features by setting the FeatureSet parameter to CONSOLIDATED_BILLING", no policy types are enabled by default, and you can't use organization policies
|
|
| CreateOrganizationalUnit |
Show DescriptionCreates an organizational unit (OU) within a root or parent OU. An OU is a container for accounts that enables you to organize your accounts to apply policies according to your business requirements. The number of levels deep that you can nest OUs is dependent upon the policy types enabled for that root. For service control policies, the limit is five. For more information about OUs, see Managing Organizational Units in the AWS Organizations User Guide. If the request includes tags, then the requester must have theorganizations:TagResource permission. This operation can be called only from the organization's management account.
|
|
| CreatePolicy |
Show DescriptionCreates a policy of a specified type that you can attach to a root, an organizational unit (OU), or an individual AWS account. For more information about policies and their use, see Managing Organization Policies. If the request includes tags, then the requester must have theorganizations:TagResource permission. This operation can be called only from the organization's management account.
|
|
| DeclineHandshake |
Show DescriptionDeclines a handshake request. This sets the handshake state toDECLINED and effectively deactivates the request. This operation can be called only from the account that received the handshake. The originator of the handshake can use CancelHandshake instead. The originator can't reactivate a declined request, but can reinitiate the process with a new handshake request. After you decline a handshake, it continues to appear in the results of relevant APIs for only 30 days. After that, it's deleted.
|
|
| DeleteOrganization | ||
| DeleteOrganizationalUnit | ||
| DeletePolicy | ||
| DeregisterDelegatedAdministrator | ||
| DescribeAccount |
Show DescriptionRetrieves AWS Organizations-related information about the specified account. This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| DescribeCreateAccountStatus |
Show DescriptionRetrieves the current status of an asynchronous request to create an account. This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| DescribeEffectivePolicy |
Show DescriptionReturns the contents of the effective policy for specified policy type and account. The effective policy is the aggregation of any policies of the specified type that the account inherits, plus any policy of that type that is directly attached to the account. This operation applies only to policy types other than service control policies (SCPs). For more information about policy inheritance, see How Policy Inheritance Works in the AWS Organizations User Guide. This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| DescribeHandshake |
Show DescriptionRetrieves information about a previously requested handshake. The handshake ID comes from the response to the original InviteAccountToOrganization operation that generated the handshake. You can access handshakes that areACCEPTED, DECLINED, or CANCELED for only 30 days after they change to that state. They're then deleted and no longer accessible. This operation can be called from any account in the organization.
|
|
| DescribeOrganization |
Show DescriptionRetrieves information about the organization that the user's account belongs to. This operation can be called from any account in the organization. |
|
| DescribeOrganizationalUnit |
Show DescriptionRetrieves information about an organizational unit (OU). This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| DescribePolicy |
Show DescriptionRetrieves information about a policy. This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| DetachPolicy | ||
| DisableAWSServiceAccess | ||
| DisablePolicyType |
Show DescriptionDisables an organizational policy type in a root. A policy of a certain type can be attached to entities in a root only if that type is enabled in the root. After you perform this operation, you no longer can attach policies of the specified type to that root or to any organizational unit (OU) or account in that root. You can undo this by using the EnablePolicyType operation. This is an asynchronous request that AWS performs in the background. If you disable a policy type for a root, it still appears enabled for the organization if all features are enabled for the organization. AWS recommends that you first use ListRoots to see the status of policy types for a specified root, and then use this operation. This operation can be called only from the organization's management account. To view the status of available policy types in the organization, use DescribeOrganization. |
|
| EnableAWSServiceAccess | ||
| EnableAllFeatures |
Show DescriptionEnables all features in an organization. This enables the use of organization policies that can restrict the services and actions that can be called in each account. Until you enable all features, you have access only to consolidated billing, and you can't use any of the advanced account administration features that AWS Organizations supports. For more information, see Enabling All Features in Your Organization in the AWS Organizations User Guide."Action": "ENABLE_ALL_FEATURES". This completes the change. After you enable all features in your organization, the management account in the organization can apply policies on all member accounts. These policies can restrict what users and even administrators in those accounts can do. The management account can apply policies that prevent accounts from leaving the organization. Ensure that your account administrators are aware of this. This operation can be called only from the organization's management account.
|
|
| EnablePolicyType |
Show DescriptionEnables a policy type in a root. After you enable a policy type in a root, you can attach policies of that type to the root, any organizational unit (OU), or account in that root. You can undo this by using the DisablePolicyType operation. This is an asynchronous request that AWS performs in the background. AWS recommends that you first use ListRoots to see the status of policy types for a specified root, and then use this operation. This operation can be called only from the organization's management account. You can enable a policy type in a root only if that policy type is available in the organization. To view the status of available policy types in the organization, use DescribeOrganization. |
|
| InviteAccountToOrganization |
Show DescriptionSends an invitation to another account to join your organization as a member account. AWS Organizations sends email on your behalf to the email address that is associated with the other account's owner. The invitation is implemented as a Handshake whose details are in the response.
organizations:TagResource permission. This operation can be called only from the organization's management account.
|
|
| LeaveOrganization | ||
| ListAWSServiceAccessForOrganization |
Show DescriptionReturns a list of the AWS services that you enabled to integrate with your organization. After a service on this list creates the resources that it requires for the integration, it can perform operations on your organization and its accounts. For more information about integrating other services with AWS Organizations, including the list of services that currently work with Organizations, see Integrating AWS Organizations with Other AWS Services in the AWS Organizations User Guide. This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| ListAccounts |
Show DescriptionLists all the accounts in the organization. To request only the accounts in a specified root or organizational unit (OU), use the ListAccountsForParent operation instead.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListAccountsForParent |
Show DescriptionLists the accounts in an organization that are contained by the specified target root or organizational unit (OU). If you specify the root, you get a list of all the accounts that aren't in any OU. If you specify an OU, you get a list of all the accounts in only that OU and not in any child OUs. To get a list of all accounts in the organization, use the ListAccounts operation.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListChildren |
Show DescriptionLists all of the organizational units (OUs) or accounts that are contained in the specified parent OU or root. This operation, along with ListParents enables you to traverse the tree structure that makes up this root.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListCreateAccountStatus |
Show DescriptionLists the account creation requests that match the specified status that is currently being tracked for the organization.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListDelegatedAdministrators |
Show DescriptionLists the AWS accounts that are designated as delegated administrators in this organization. This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| ListDelegatedServicesForAccount |
Show DescriptionList the AWS services for which the specified account is a delegated administrator. This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an AWS service. |
|
| ListHandshakesForAccount |
Show DescriptionLists the current handshakes that are associated with the account of the requesting user. Handshakes that areACCEPTED, DECLINED, or CANCELED appear in the results of this API for only 30 days after changing to that state. After that, they're deleted and no longer accessible. NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListHandshakesForOrganization |
Show DescriptionLists the handshakes that are associated with the organization that the requesting user is part of. TheListHandshakesForOrganization operation returns a list of handshake structures. Each structure contains details and status about a handshake. Handshakes that are ACCEPTED, DECLINED, or CANCELED appear in the results of this API for only 30 days after changing to that state. After that, they're deleted and no longer accessible. NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListOrganizationalUnitsForParent |
Show DescriptionLists the organizational units (OUs) in a parent organizational unit or root.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListParents |
Show DescriptionLists the root or organizational units (OUs) that serve as the immediate parent of the specified child OU or account. This operation, along with ListChildren enables you to traverse the tree structure that makes up this root.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListPolicies |
Show DescriptionRetrieves the list of all policies in an organization of a specified type.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListPoliciesForTarget |
Show DescriptionLists the policies that are directly attached to the specified target root, organizational unit (OU), or account. You must specify the policy type that you want included in the returned list.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListRoots |
Show DescriptionLists the roots that are defined in the current organization.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| ListTagsForResource |
Show DescriptionLists tags that are attached to the specified resource. You can attach tags to the following resources in AWS Organizations.
|
|
| ListTargetsForPolicy |
Show DescriptionLists all the roots, organizational units (OUs), and accounts that the specified policy is attached to.NextToken response parameter for a null value when calling a List* operation. These operations can occasionally return an empty set of results even when there are more results available. The NextToken response parameter value is null only when there are no more results to display. |
|
| MoveAccount | ||
| RegisterDelegatedAdministrator | ||
| RemoveAccountFromOrganization | ||
| TagResource | ||
| UntagResource | ||
| UpdateOrganizationalUnit |
Show DescriptionRenames the specified organizational unit (OU). The ID and ARN don't change. The child OUs and accounts remain in place, and any attached policies of the OU remain attached. This operation can be called only from the organization's management account. |
Outposts Events
| Service | Event Name | Description |
|---|---|---|
| outposts | CreateOrder |
Show DescriptionCreates an order for an Outpost. |
| CreateOutpost |
Show DescriptionCreates an Outpost. You can specifyAvailabilityZone or AvailabilityZoneId.
|
|
| DeleteOutpost |
Show DescriptionDeletes the Outpost. |
|
| DeleteSite |
Show DescriptionDeletes the site. |
|
| GetOutpost |
Show DescriptionGets information about the specified Outpost. |
|
| GetOutpostInstanceTypes |
Show DescriptionLists the instance types for the specified Outpost. |
|
| ListOutposts |
Show DescriptionCreate a list of the Outposts for your AWS account. Add filters to your request to return a more specific list of results. Use filters to match an Outpost lifecycle status, Availibility Zone (us-east-1a), and AZ ID (use1-az1). If you specify multiple filters, the filters are joined with an AND, and the request returns only results that match all of the specified filters.
|
|
| ListSites |
Show DescriptionLists the sites for the specified AWS account. |
|
| ListTagsForResource |
Show DescriptionLists the tags for the specified resource. |
|
| TagResource |
Show DescriptionAdds tags to the specified resource. |
Panorama Events
| Service | Event Name | Description |
|---|---|---|
| panorama | CreateApplicationInstance |
Show DescriptionCreates an application instance and deploys it to a device. |
| CreateJobForDevices |
Show DescriptionCreates a job to run on one or more devices. |
|
| CreateNodeFromTemplateJob |
Show DescriptionCreates a camera stream node. |
|
| CreatePackage |
Show DescriptionCreates a package and storage location in an Amazon S3 access point. |
|
| CreatePackageImportJob |
Show DescriptionImports a node package. |
|
| DeleteDevice |
Show DescriptionDeletes a device. |
|
| DeletePackage |
Show DescriptionDeletes a package. |
|
| DeregisterPackageVersion |
Show DescriptionDeregisters a package version. |
|
| DescribeApplicationInstance |
Show DescriptionReturns information about an application instance on a device. |
|
| DescribeApplicationInstanceDetails |
Show DescriptionReturns information about an application instance's configuration manifest. |
|
| DescribeDevice |
Show DescriptionReturns information about a device. |
|
| DescribeDeviceJob |
Show DescriptionReturns information about a device job. |
|
| DescribeNode |
Show DescriptionReturns information about a node. |
|
| DescribeNodeFromTemplateJob |
Show DescriptionReturns information about a job to create a camera stream node. |
|
| DescribePackage |
Show DescriptionReturns information about a package. |
|
| DescribePackageImportJob |
Show DescriptionReturns information about a package import job. |
|
| DescribePackageVersion |
Show DescriptionReturns information about a package version. |
|
| ListApplicationInstanceDependencies |
Show DescriptionReturns a list of application instance dependencies. |
|
| ListApplicationInstanceNodeInstances |
Show DescriptionReturns a list of application node instances. |
|
| ListApplicationInstances |
Show DescriptionReturns a list of application instances. |
|
| ListDevices |
Show DescriptionReturns a list of devices. |
|
| ListDevicesJobs |
Show DescriptionReturns a list of jobs. |
|
| ListNodeFromTemplateJobs |
Show DescriptionReturns a list of camera stream node jobs. |
|
| ListNodes |
Show DescriptionReturns a list of nodes. |
|
| ListPackageImportJobs |
Show DescriptionReturns a list of package import jobs. |
|
| ListPackages |
Show DescriptionReturns a list of packages. |
|
| ListTagsForResource |
Show DescriptionReturns a list of tags for a resource. |
|
| ProvisionDevice |
Show DescriptionCreates a device and returns a configuration archive. The configuration archive is a ZIP file that contains a provisioning certificate that is valid for 5 minutes. Transfer the configuration archive to the device with the included USB storage device within 5 minutes. |
|
| RegisterPackageVersion |
Show DescriptionRegisters a package version. |
|
| RemoveApplicationInstance |
Show DescriptionRemoves an application instance. |
|
| TagResource |
Show DescriptionTags a resource. |
|
| UntagResource |
Show DescriptionRemoves tags from a resource. |
Personalize-runtime Events
| Service | Event Name | Description |
|---|---|---|
| personalize-runtime | GetPersonalizedRanking |
Show DescriptionRe-ranks a list of recommended items for the given user. The first item in the list is deemed the most likely item to be of interest to the user. |
Pi Events
| Service | Event Name | Description |
|---|---|---|
| pi | DescribeDimensionKeys |
Show DescriptionFor a specific time period, retrieve the topN dimension keys for a metric. |
| GetDimensionKeyDetails |
Show DescriptionGet the attributes of the specified dimension group for a DB instance or data source. For example, if you specify a SQL ID,GetDimensionKeyDetails retrieves the full text of the dimension db.sql.statement associated with this ID. This operation is useful because GetResourceMetrics and DescribeDimensionKeys don't support retrieval of large SQL statement text.
|
Pinpoint-email Events
| Service | Event Name | Description |
|---|---|---|
| pinpoint-email | CreateConfigurationSet |
Show DescriptionCreate a configuration set. Configuration sets are groups of rules that you can apply to the emails you send using Amazon Pinpoint. You apply a configuration set to an email by including a reference to the configuration set in the headers of the email. When you apply a configuration set to an email, all of the rules in that configuration set are applied to the email. |
| CreateConfigurationSetEventDestination |
Show DescriptionCreate an event destination. In Amazon Pinpoint, events include message sends, deliveries, opens, clicks, bounces, and complaints. Event destinations are places that you can send information about these events to. For example, you can send event data to Amazon SNS to receive notifications when you receive bounces or complaints, or you can use Amazon Kinesis Data Firehose to stream data to Amazon S3 for long-term storage. A single configuration set can include more than one event destination. |
|
| CreateDedicatedIpPool |
Show DescriptionCreate a new pool of dedicated IP addresses. A pool can include one or more dedicated IP addresses that are associated with your Amazon Pinpoint account. You can associate a pool with a configuration set. When you send an email that uses that configuration set, Amazon Pinpoint sends it using only the IP addresses in the associated pool. |
|
| CreateDeliverabilityTestReport |
Show DescriptionCreate a new predictive inbox placement test. Predictive inbox placement tests can help you predict how your messages will be handled by various email providers around the world. When you perform a predictive inbox placement test, you provide a sample message that contains the content that you plan to send to your customers. Amazon Pinpoint then sends that message to special email addresses spread across several major email providers. After about 24 hours, the test is complete, and you can use theGetDeliverabilityTestReport operation to view the results of the test.
|
|
| CreateEmailIdentity |
Show DescriptionVerifies an email identity for use with Amazon Pinpoint. In Amazon Pinpoint, an identity is an email address or domain that you use when you send email. Before you can use an identity to send email with Amazon Pinpoint, you first have to verify it. By verifying an address, you demonstrate that you're the owner of the address, and that you've given Amazon Pinpoint permission to send email from the address. When you verify an email address, Amazon Pinpoint sends an email to the address. Your email address is verified as soon as you follow the link in the verification email. When you verify a domain, this operation provides a set of DKIM tokens, which you can convert into CNAME tokens. You add these CNAME tokens to the DNS configuration for your domain. Your domain is verified when Amazon Pinpoint detects these records in the DNS configuration for your domain. It usually takes around 72 hours to complete the domain verification process. |
|
| DeleteConfigurationSet |
Show DescriptionDelete an existing configuration set. In Amazon Pinpoint, configuration sets are groups of rules that you can apply to the emails you send. You apply a configuration set to an email by including a reference to the configuration set in the headers of the email. When you apply a configuration set to an email, all of the rules in that configuration set are applied to the email. |
|
| DeleteConfigurationSetEventDestination |
Show DescriptionDelete an event destination. In Amazon Pinpoint, events include message sends, deliveries, opens, clicks, bounces, and complaints. Event destinations are places that you can send information about these events to. For example, you can send event data to Amazon SNS to receive notifications when you receive bounces or complaints, or you can use Amazon Kinesis Data Firehose to stream data to Amazon S3 for long-term storage. |
|
| DeleteDedicatedIpPool |
Show DescriptionDelete a dedicated IP pool. |
|
| DeleteEmailIdentity |
Show DescriptionDeletes an email identity that you previously verified for use with Amazon Pinpoint. An identity can be either an email address or a domain name. |
|
| GetAccount |
Show DescriptionObtain information about the email-sending status and capabilities of your Amazon Pinpoint account in the current AWS Region. |
|
| GetBlacklistReports |
Show DescriptionRetrieve a list of the blacklists that your dedicated IP addresses appear on. |
|
| GetConfigurationSet |
Show DescriptionGet information about an existing configuration set, including the dedicated IP pool that it's associated with, whether or not it's enabled for sending email, and more. In Amazon Pinpoint, configuration sets are groups of rules that you can apply to the emails you send. You apply a configuration set to an email by including a reference to the configuration set in the headers of the email. When you apply a configuration set to an email, all of the rules in that configuration set are applied to the email. |
|
| GetConfigurationSetEventDestinations |
Show DescriptionRetrieve a list of event destinations that are associated with a configuration set. In Amazon Pinpoint, events include message sends, deliveries, opens, clicks, bounces, and complaints. Event destinations are places that you can send information about these events to. For example, you can send event data to Amazon SNS to receive notifications when you receive bounces or complaints, or you can use Amazon Kinesis Data Firehose to stream data to Amazon S3 for long-term storage. |
|
| GetDedicatedIp |
Show DescriptionGet information about a dedicated IP address, including the name of the dedicated IP pool that it's associated with, as well information about the automatic warm-up process for the address. |
|
| GetDedicatedIps |
Show DescriptionList the dedicated IP addresses that are associated with your Amazon Pinpoint account. |
|
| GetDeliverabilityDashboardOptions |
Show DescriptionRetrieve information about the status of the Deliverability dashboard for your Amazon Pinpoint account. When the Deliverability dashboard is enabled, you gain access to reputation, deliverability, and other metrics for the domains that you use to send email using Amazon Pinpoint. You also gain the ability to perform predictive inbox placement tests. When you use the Deliverability dashboard, you pay a monthly subscription charge, in addition to any other fees that you accrue by using Amazon Pinpoint. For more information about the features and cost of a Deliverability dashboard subscription, see Amazon Pinpoint Pricing. |
|
| GetDeliverabilityTestReport |
Show DescriptionRetrieve the results of a predictive inbox placement test. |
|
| GetDomainDeliverabilityCampaign |
Show DescriptionRetrieve all the deliverability data for a specific campaign. This data is available for a campaign only if the campaign sent email by using a domain that the Deliverability dashboard is enabled for (PutDeliverabilityDashboardOption operation).
|
|
| GetDomainStatisticsReport |
Show DescriptionRetrieve inbox placement and engagement rates for the domains that you use to send email. |
|
| GetEmailIdentity |
Show DescriptionProvides information about a specific identity associated with your Amazon Pinpoint account, including the identity's verification status, its DKIM authentication status, and its custom Mail-From settings. |
|
| ListConfigurationSets |
Show DescriptionList all of the configuration sets associated with your Amazon Pinpoint account in the current region. In Amazon Pinpoint, configuration sets are groups of rules that you can apply to the emails you send. You apply a configuration set to an email by including a reference to the configuration set in the headers of the email. When you apply a configuration set to an email, all of the rules in that configuration set are applied to the email. |
|
| ListDedicatedIpPools |
Show DescriptionList all of the dedicated IP pools that exist in your Amazon Pinpoint account in the current AWS Region. |
|
| ListDeliverabilityTestReports |
Show DescriptionShow a list of the predictive inbox placement tests that you've performed, regardless of their statuses. For predictive inbox placement tests that are complete, you can use theGetDeliverabilityTestReport operation to view the results.
|
|
| ListDomainDeliverabilityCampaigns |
Show DescriptionRetrieve deliverability data for all the campaigns that used a specific domain to send email during a specified time range. This data is available for a domain only if you enabled the Deliverability dashboard (PutDeliverabilityDashboardOption operation) for the domain.
|
|
| ListEmailIdentities |
Show DescriptionReturns a list of all of the email identities that are associated with your Amazon Pinpoint account. An identity can be either an email address or a domain. This operation returns identities that are verified as well as those that aren't. |
|
| ListTagsForResource |
Show DescriptionRetrieve a list of the tags (keys and values) that are associated with a specified resource. A tag is a label that you optionally define and associate with a resource in Amazon Pinpoint. Each tag consists of a required tag key and an optional associated tag value. A tag key is a general label that acts as a category for more specific tag values. A tag value acts as a descriptor within a tag key. |
|
| PutAccountDedicatedIpWarmupAttributes |
Show DescriptionEnable or disable the automatic warm-up feature for dedicated IP addresses. |
|
| PutAccountSendingAttributes |
Show DescriptionEnable or disable the ability of your account to send email. |
|
| PutConfigurationSetDeliveryOptions |
Show DescriptionAssociate a configuration set with a dedicated IP pool. You can use dedicated IP pools to create groups of dedicated IP addresses for sending specific types of email. |
|
| PutConfigurationSetReputationOptions |
Show DescriptionEnable or disable collection of reputation metrics for emails that you send using a particular configuration set in a specific AWS Region. |
|
| PutConfigurationSetSendingOptions |
Show DescriptionEnable or disable email sending for messages that use a particular configuration set in a specific AWS Region. |
|
| PutConfigurationSetTrackingOptions |
Show DescriptionSpecify a custom domain to use for open and click tracking elements in email that you send using Amazon Pinpoint. |
|
| PutDedicatedIpInPool |
Show DescriptionMove a dedicated IP address to an existing dedicated IP pool.CreateDedicatedIpPool operation. |
|
| PutDedicatedIpWarmupAttributes |
Show Description |
|
| PutDeliverabilityDashboardOption |
Show DescriptionEnable or disable the Deliverability dashboard for your Amazon Pinpoint account. When you enable the Deliverability dashboard, you gain access to reputation, deliverability, and other metrics for the domains that you use to send email using Amazon Pinpoint. You also gain the ability to perform predictive inbox placement tests. When you use the Deliverability dashboard, you pay a monthly subscription charge, in addition to any other fees that you accrue by using Amazon Pinpoint. For more information about the features and cost of a Deliverability dashboard subscription, see Amazon Pinpoint Pricing. |
|
| PutEmailIdentityDkimAttributes |
Show DescriptionUsed to enable or disable DKIM authentication for an email identity. |
|
| PutEmailIdentityFeedbackAttributes |
Show DescriptionUsed to enable or disable feedback forwarding for an identity. This setting determines what happens when an identity is used to send an email that results in a bounce or complaint event. When you enable feedback forwarding, Amazon Pinpoint sends you email notifications when bounce or complaint events occur. Amazon Pinpoint sends this notification to the address that you specified in the Return-Path header of the original email. When you disable feedback forwarding, Amazon Pinpoint sends notifications through other mechanisms, such as by notifying an Amazon SNS topic. You're required to have a method of tracking bounces and complaints. If you haven't set up another mechanism for receiving bounce or complaint notifications, Amazon Pinpoint sends an email notification when these events occur (even if this setting is disabled). |
|
| PutEmailIdentityMailFromAttributes |
Show DescriptionUsed to enable or disable the custom Mail-From domain configuration for an email identity. |
|
| SendEmail |
Show DescriptionSends an email message. You can use the Amazon Pinpoint Email API to send two types of messages:
|
|
| TagResource |
Show DescriptionAdd one or more tags (keys and values) to a specified resource. A tag is a label that you optionally define and associate with a resource in Amazon Pinpoint. Tags can help you categorize and manage resources in different ways, such as by purpose, owner, environment, or other criteria. A resource can have as many as 50 tags. Each tag consists of a required tag key and an associated tag value, both of which you define. A tag key is a general label that acts as a category for more specific tag values. A tag value acts as a descriptor within a tag key. |
|
| UntagResource |
Show DescriptionRemove one or more tags (keys and values) from a specified resource. |
Pinpoint-sms-voice Events
| Service | Event Name | Description |
|---|---|---|
| pinpoint-sms-voice | CreateConfigurationSet |
Show DescriptionCreate a new configuration set. After you create the configuration set, you can add one or more event destinations to it. |
| CreateConfigurationSetEventDestination |
Show DescriptionCreate a new event destination in a configuration set. |
|
| DeleteConfigurationSet |
Show DescriptionDeletes an existing configuration set. |
|
| DeleteConfigurationSetEventDestination |
Show DescriptionDeletes an event destination in a configuration set. |
|
| GetConfigurationSetEventDestinations |
Show DescriptionObtain information about an event destination, including the types of events it reports, the Amazon Resource Name (ARN) of the destination, and the name of the event destination. |
|
| SendVoiceMessage |
Show DescriptionCreate a new voice message and send it to a recipient's phone number. |
Polly Events
| Service | Event Name | Description |
|---|---|---|
| polly | DeleteLexicon |
Show DescriptionDeletes the specified pronunciation lexicon stored in an Amazon Web Services Region. A lexicon which has been deleted is not available for speech synthesis, nor is it possible to retrieve it using either theGetLexicon or ListLexicon APIs. For more information, see Managing Lexicons.
|
| DescribeVoices |
Show DescriptionReturns the list of voices that are available for use when requesting speech synthesis. Each voice speaks a specified language, is either male or female, and is identified by an ID, which is the ASCII version of the voice name. When synthesizing speech (SynthesizeSpeech ), you provide the voice ID for the voice you want from the list of voices returned by DescribeVoices. For example, you want your news reader application to read news in a specific language, but giving a user the option to choose the voice. Using the DescribeVoices operation you can provide the user with a list of available voices to select from. You can optionally specify a language code to filter the available voices. For example, if you specify en-US, the operation returns a list of all available US English voices. This operation requires permissions to perform the polly:DescribeVoices action.
|
|
| GetLexicon |
Show DescriptionReturns the content of the specified pronunciation lexicon stored in an Amazon Web Services Region. For more information, see Managing Lexicons. |
|
| GetSpeechSynthesisTask |
Show DescriptionRetrieves a specific SpeechSynthesisTask object based on its TaskID. This object contains information about the given speech synthesis task, including the status of the task, and a link to the S3 bucket containing the output of the task. |
|
| ListLexicons |
Show DescriptionReturns a list of pronunciation lexicons stored in an Amazon Web Services Region. For more information, see Managing Lexicons. |
|
| ListSpeechSynthesisTasks |
Show DescriptionReturns a list of SpeechSynthesisTask objects ordered by their creation date. This operation can filter the tasks by their status, for example, allowing users to list only tasks that are completed. |
|
| PutLexicon |
Show DescriptionStores a pronunciation lexicon in an Amazon Web Services Region. If a lexicon with the same name already exists in the region, it is overwritten by the new lexicon. Lexicon operations have eventual consistency, therefore, it might take some time before the lexicon is available to the SynthesizeSpeech operation. For more information, see Managing Lexicons. |
|
| StartSpeechSynthesisTask |
Show DescriptionAllows the creation of an asynchronous synthesis task, by starting a newSpeechSynthesisTask. This operation requires all the standard information needed for speech synthesis, plus the name of an Amazon S3 bucket for the service to store the output of the synthesis task and two optional parameters (OutputS3KeyPrefix and SnsTopicArn). Once the synthesis task is created, this operation will return a SpeechSynthesisTask object, which will include an identifier of this task as well as the current status. The SpeechSynthesisTask object is available for 72 hours after starting the asynchronous synthesis task.
|
Pricing Events
| Service | Event Name | Description |
|---|---|---|
| pricing | DescribeServices |
Show DescriptionReturns the metadata for one service or a list of the metadata for all services. Use this without a service code to get the service codes for all services. Use it with a service code, such asAmazonEC2, to get information specific to that service, such as the attribute names available for that service. For example, some of the attribute names available for EC2 are volumeType, maxIopsVolume, operation, locationType, and instanceCapacity10xlarge.
|
| GetAttributeValues |
Show DescriptionReturns a list of attribute values. Attibutes are similar to the details in a Price List API offer file. For a list of available attributes, see Offer File Definitions in the Amazon Web Services Billing and Cost Management User Guide. |
Proton Events
| Service | Event Name | Description |
|---|---|---|
| proton | AcceptEnvironmentAccountConnection |
Show DescriptionIn a management account, an environment account connection request is accepted. When the environment account connection request is accepted, AWS Proton can use the associated IAM role to provision environment infrastructure resources in the associated environment account. For more information, see Environment account connections in the AWS Proton Administrator guide. |
| CancelEnvironmentDeployment |
Show DescriptionAttempts to cancel an environment deployment on an UpdateEnvironment action, if the deployment isIN_PROGRESS. For more information, see Update an environment in the AWS Proton Administrator guide. The following list includes potential cancellation scenarios.
|
|
| CancelServiceInstanceDeployment |
Show DescriptionAttempts to cancel a service instance deployment on an UpdateServiceInstance action, if the deployment isIN_PROGRESS. For more information, see Update a service instance in the AWS Proton Administrator guide or the AWS Proton User guide. The following list includes potential cancellation scenarios.
|
|
| CancelServicePipelineDeployment |
Show DescriptionAttempts to cancel a service pipeline deployment on an UpdateServicePipeline action, if the deployment isIN_PROGRESS. For more information, see Update a service pipeline in the AWS Proton Administrator guide or the AWS Proton User guide. The following list includes potential cancellation scenarios.
|
|
| CreateEnvironment |
Show DescriptionDeploy a new environment. An AWS Proton environment is created from an environment template that defines infrastructure and resources that can be shared across services. For more information, see the Environments in the AWS Proton Administrator Guide. |
|
| CreateEnvironmentAccountConnection |
Show DescriptionCreate an environment account connection in an environment account so that environment infrastructure resources can be provisioned in the environment account from a management account. An environment account connection is a secure bi-directional connection between a management account and an environment account that maintains authorization and permissions. For more information, see Environment account connections in the AWS Proton Administrator guide. |
|
| CreateEnvironmentTemplate |
Show DescriptionCreate an environment template for AWS Proton. For more information, see Environment Templates in the AWS Proton Administrator Guide. You can create an environment template in one of the two following ways:
|
|
| CreateEnvironmentTemplateVersion |
Show DescriptionCreate a new major or minor version of an environment template. A major version of an environment template is a version that isn't backwards compatible. A minor version of an environment template is a version that's backwards compatible within its major version. |
|
| CreateService | ||
| CreateServiceTemplate |
Show DescriptionCreate a service template. The administrator creates a service template to define standardized infrastructure and an optional CICD service pipeline. Developers, in turn, select the service template from AWS Proton. If the selected service template includes a service pipeline definition, they provide a link to their source code repository. AWS Proton then deploys and manages the infrastructure defined by the selected service template. For more information, see Service Templates in the AWS Proton Administrator Guide. |
|
| CreateServiceTemplateVersion |
Show DescriptionCreate a new major or minor version of a service template. A major version of a service template is a version that isn't backwards compatible. A minor version of a service template is a version that's backwards compatible within its major version. |
|
| DeleteEnvironment |
Show DescriptionDelete an environment. |
|
| DeleteEnvironmentAccountConnection |
Show DescriptionIn an environment account, delete an environment account connection. After you delete an environment account connection that’s in use by an AWS Proton environment, AWS Proton can’t manage the environment infrastructure resources until a new environment account connection is accepted for the environment account and associated environment. You're responsible for cleaning up provisioned resources that remain without an environment connection. For more information, see Environment account connections in the AWS Proton Administrator guide. |
|
| DeleteEnvironmentTemplate |
Show DescriptionIf no other major or minor versions of an environment template exist, delete the environment template. |
|
| DeleteEnvironmentTemplateVersion |
Show DescriptionIf no other minor versions of an environment template exist, delete a major version of the environment template if it's not theRecommended version. Delete the Recommended version of the environment template if no other major versions or minor versions of the environment template exist. A major version of an environment template is a version that's not backwards compatible. Delete a minor version of an environment template if it isn't the Recommended version. Delete a Recommended minor version of the environment template if no other minor versions of the environment template exist. A minor version of an environment template is a version that's backwards compatible.
|
|
| DeleteService |
Show DescriptionDelete a service. |
|
| DeleteServiceTemplate |
Show DescriptionIf no other major or minor versions of the service template exist, delete the service template. |
|
| DeleteServiceTemplateVersion |
Show DescriptionIf no other minor versions of a service template exist, delete a major version of the service template if it's not theRecommended version. Delete the Recommended version of the service template if no other major versions or minor versions of the service template exist. A major version of a service template is a version that isn't backwards compatible. Delete a minor version of a service template if it's not the Recommended version. Delete a Recommended minor version of the service template if no other minor versions of the service template exist. A minor version of a service template is a version that's backwards compatible.
|
|
| GetAccountSettings |
Show DescriptionGet detail data for the AWS Proton pipeline service role. |
|
| GetEnvironment |
Show DescriptionGet detail data for an environment. |
|
| GetEnvironmentAccountConnection |
Show DescriptionIn an environment account, view the detail data for an environment account connection. For more information, see Environment account connections in the AWS Proton Administrator guide. |
|
| GetEnvironmentTemplate |
Show DescriptionGet detail data for an environment template. |
|
| GetEnvironmentTemplateVersion |
Show DescriptionView detail data for a major or minor version of an environment template. |
|
| GetService |
Show DescriptionGet detail data for a service. |
|
| GetServiceInstance |
Show DescriptionGet detail data for a service instance. A service instance is an instantiation of service template, which is running in a specific environment. |
|
| GetServiceTemplate |
Show DescriptionGet detail data for a service template. |
|
| GetServiceTemplateVersion |
Show DescriptionView detail data for a major or minor version of a service template. |
|
| ListEnvironmentAccountConnections |
Show DescriptionView a list of environment account connections. For more information, see Environment account connections in the AWS Proton Administrator guide. |
|
| ListEnvironmentTemplateVersions |
Show DescriptionList major or minor versions of an environment template with detail data. |
|
| ListEnvironmentTemplates |
Show DescriptionList environment templates. |
|
| ListEnvironments |
Show DescriptionList environments with detail data summaries. |
|
| ListServiceInstances |
Show DescriptionList service instances with summaries of detail data. |
|
| ListServiceTemplateVersions |
Show DescriptionList major or minor versions of a service template with detail data. |
|
| ListServiceTemplates |
Show DescriptionList service templates with detail data. |
|
| ListServices |
Show DescriptionList services with summaries of detail data. |
|
| ListTagsForResource |
Show DescriptionList tags for a resource. For more information, see AWS Proton resources and tagging in the AWS Proton Administrator Guide or AWS Proton User Guide. |
|
| RejectEnvironmentAccountConnection |
Show DescriptionIn a management account, reject an environment account connection from another environment account. After you reject an environment account connection request, you won’t be able to accept or use the rejected environment account connection. You can’t reject an environment account connection that is connected to an environment. For more information, see Environment account connections in the AWS Proton Administrator guide. |
|
| TagResource |
Show DescriptionTag a resource. For more information, see AWS Proton resources and tagging in the AWS Proton Administrator Guide or AWS Proton User Guide. |
|
| UntagResource |
Show DescriptionRemove a tag from a resource. For more information, see AWS Proton resources and tagging in the AWS Proton Administrator Guide or AWS Proton User Guide. |
|
| UpdateAccountSettings |
Show DescriptionUpdate the AWS Proton pipeline service account settings. |
|
| UpdateEnvironment |
Show DescriptionUpdate an environment. If the environment is associated with an environment account connection, don't update or include theprotonServiceRoleArn parameter to update or connect to an environment account connection. You can only update to a new environment account connection if it was created in the same environment account that the current environment account connection was created in and is associated with the current environment. If the environment isn't associated with an environment account connection, don't update or include the environmentAccountConnectionId parameter to update or connect to an environment account connection. You can update either the environmentAccountConnectionId or protonServiceRoleArn parameter and value. You can’t update both. There are four modes for updating an environment as described in the following. The deploymentType field defines the mode.
|
|
| UpdateEnvironmentAccountConnection |
Show DescriptionIn an environment account, update an environment account connection to use a new IAM role. For more information, see Environment account connections in the AWS Proton Administrator guide. |
|
| UpdateEnvironmentTemplate |
Show DescriptionUpdate an environment template. |
|
| UpdateEnvironmentTemplateVersion |
Show DescriptionUpdate a major or minor version of an environment template. |
|
| UpdateService |
Show DescriptionEdit a service description or use a spec to add and delete service instances.description parameter to modify the description. Edit the spec parameter to add or delete instances.
|
|
| UpdateServiceInstance |
Show DescriptionUpdate a service instance. There are four modes for updating a service instance as described in the following. ThedeploymentType field defines the mode.
|
|
| UpdateServicePipeline |
Show DescriptionUpdate the service pipeline. There are four modes for updating a service pipeline as described in the following. ThedeploymentType field defines the mode.
|
|
| UpdateServiceTemplate |
Show DescriptionUpdate a service template. |
Qldb-session Events
| Service | Event Name | Description |
|---|---|---|
| qldb-session | SendCommand |
Show DescriptionSends a command to an Amazon QLDB ledger.
|
Qldb Events
| Service | Event Name | Description |
|---|---|---|
| qldb | CancelJournalKinesisStream |
Show DescriptionEnds a given Amazon QLDB journal stream. Before a stream can be canceled, its current status must beACTIVE. You can't restart a stream after you cancel it. Canceled QLDB stream resources are subject to a 7-day retention period, so they are automatically deleted after this limit expires.
|
| CreateLedger |
Show DescriptionCreates a new ledger in your account in the current Region. |
|
| DeleteLedger | ||
| DescribeJournalKinesisStream |
Show DescriptionReturns detailed information about a given Amazon QLDB journal stream. The output includes the Amazon Resource Name (ARN), stream name, current status, creation time, and the parameters of the original stream creation request. This action does not return any expired journal streams. For more information, see Expiration for terminal streams in the Amazon QLDB Developer Guide. |
|
| DescribeJournalS3Export |
Show DescriptionReturns information about a journal export job, including the ledger name, export ID, creation time, current status, and the parameters of the original export creation request. This action does not return any expired export jobs. For more information, see Export job expiration in the Amazon QLDB Developer Guide. If the export job with the givenExportId doesn't exist, then throws ResourceNotFoundException. If the ledger with the given Name doesn't exist, then throws ResourceNotFoundException.
|
|
| DescribeLedger |
Show DescriptionReturns information about a ledger, including its state, permissions mode, encryption at rest settings, and when it was created. |
|
| ExportJournalToS3 |
Show DescriptionExports journal contents within a date and time range from a ledger into a specified Amazon Simple Storage Service (Amazon S3) bucket. The data is written as files in Amazon Ion format. If the ledger with the givenName doesn't exist, then throws ResourceNotFoundException. If the ledger with the given Name is in CREATING status, then throws ResourcePreconditionNotMetException. You can initiate up to two concurrent journal export requests for each ledger. Beyond this limit, journal export requests throw LimitExceededException.
|
|
| GetBlock |
Show DescriptionReturns a block object at a specified address in a journal. Also returns a proof of the specified block for verification ifDigestTipAddress is provided. For information about the data contents in a block, see Journal contents in the Amazon QLDB Developer Guide. If the specified ledger doesn't exist or is in DELETING status, then throws ResourceNotFoundException. If the specified ledger is in CREATING status, then throws ResourcePreconditionNotMetException. If no block exists with the specified address, then throws InvalidParameterException.
|
|
| GetDigest |
Show DescriptionReturns the digest of a ledger at the latest committed block in the journal. The response includes a 256-bit hash value and a block address. |
|
| GetRevision |
Show DescriptionReturns a revision data object for a specified document ID and block address. Also returns a proof of the specified revision for verification ifDigestTipAddress is provided.
|
|
| ListJournalKinesisStreamsForLedger |
Show DescriptionReturns an array of all Amazon QLDB journal stream descriptors for a given ledger. The output of each stream descriptor includes the same details that are returned byDescribeJournalKinesisStream. This action does not return any expired journal streams. For more information, see Expiration for terminal streams in the Amazon QLDB Developer Guide. This action returns a maximum of MaxResults items. It is paginated so that you can retrieve all the items by calling ListJournalKinesisStreamsForLedger multiple times.
|
|
| ListJournalS3Exports |
Show DescriptionReturns an array of journal export job descriptions for all ledgers that are associated with the current account and Region. This action returns a maximum ofMaxResults items, and is paginated so that you can retrieve all the items by calling ListJournalS3Exports multiple times. This action does not return any expired export jobs. For more information, see Export job expiration in the Amazon QLDB Developer Guide.
|
|
| ListJournalS3ExportsForLedger |
Show DescriptionReturns an array of journal export job descriptions for a specified ledger. This action returns a maximum ofMaxResults items, and is paginated so that you can retrieve all the items by calling ListJournalS3ExportsForLedger multiple times. This action does not return any expired export jobs. For more information, see Export job expiration in the Amazon QLDB Developer Guide.
|
|
| ListLedgers |
Show DescriptionReturns an array of ledger summaries that are associated with the current account and Region. This action returns a maximum of 100 items and is paginated so that you can retrieve all the items by callingListLedgers multiple times.
|
|
| ListTagsForResource |
Show DescriptionReturns all tags for a specified Amazon QLDB resource. |
|
| StreamJournalToKinesis |
Show DescriptionCreates a journal stream for a given Amazon QLDB ledger. The stream captures every document revision that is committed to the ledger's journal and delivers the data to a specified Amazon Kinesis Data Streams resource. |
|
| TagResource |
Show DescriptionAdds one or more tags to a specified Amazon QLDB resource. A resource can have up to 50 tags. If you try to create more than 50 tags for a resource, your request fails and returns an error. |
|
| UntagResource |
Show DescriptionRemoves one or more tags from a specified Amazon QLDB resource. You can specify up to 50 tag keys to remove. |
|
| UpdateLedger |
Show DescriptionUpdates properties on a ledger. |
Quicksight Events
| Service | Event Name | Description |
|---|---|---|
| quicksight | CancelIngestion |
Show DescriptionCancels an ongoing ingestion of data into SPICE. |
| CreateAccountCustomization |
Show DescriptionCreates Amazon QuickSight customizations the current Amazon Web Services Region. Currently, you can add a custom default theme by using theCreateAccountCustomization or UpdateAccountCustomization API operation. To further customize Amazon QuickSight by removing Amazon QuickSight sample assets and videos for all new users, see Customizing Amazon QuickSight in the Amazon QuickSight User Guide. You can create customizations for your Amazon Web Services account or, if you specify a namespace, for a Amazon QuickSight namespace instead. Customizations that apply to a namespace always override customizations that apply to an Amazon Web Services account. To find out which customizations apply, use the DescribeAccountCustomization API operation. Before you use the CreateAccountCustomization API operation to add a theme as the namespace default, make sure that you first share the theme with the namespace. If you don't share it with the namespace, the theme isn't visible to your users even if you make it the default theme. To check if the theme is shared, view the current permissions by using the DescribeThemePermissions API operation. To share the theme, grant permissions by using the UpdateThemePermissions API operation.
|
|
| CreateAnalysis |
Show DescriptionCreates an analysis in Amazon QuickSight. |
|
| CreateDashboard |
Show DescriptionCreates a dashboard from a template. To first create a template, see the CreateTemplate API operation. A dashboard is an entity in Amazon QuickSight that identifies Amazon QuickSight reports, created from analyses. You can share Amazon QuickSight dashboards. With the right permissions, you can create scheduled email reports from them. If you have the correct permissions, you can create a dashboard from a template that exists in a different Amazon Web Services account.
|
|
| CreateDataSet |
Show DescriptionCreates a dataset. |
|
| CreateDataSource |
Show DescriptionCreates a data source. |
|
| CreateFolder |
Show DescriptionCreates an empty shared folder. |
|
| CreateFolderMembership |
Show DescriptionAdds an asset, such as a dashboard, analysis, or dataset into a folder. |
|
| CreateGroup |
Show DescriptionCreates an Amazon QuickSight group. The permissions resource isarn:aws:quicksight:us-east-1:<relevant-aws-account-id>:group/default/<group-name> . The response is a group object.
|
|
| CreateGroupMembership |
Show DescriptionAdds an Amazon QuickSight user to an Amazon QuickSight group. |
|
| CreateIAMPolicyAssignment |
Show DescriptionCreates an assignment with one specified IAMpolicy, identified by its Amazon Resource Name (ARN). This policy assignment is attached to the specified groups or users of Amazon QuickSight. Assignment names are unique per Amazon Web Services account. To avoid overwriting rules in other namespaces, use assignment names that are unique. |
|
| CreateIngestion |
Show DescriptionCreates and starts a new SPICE ingestion on a dataset Any ingestions operating on tagged datasets inherit the same tags automatically for use in access control. For an example, see How do I create an IAM policy to control access to Amazon EC2 resources using tags? in the Amazon Web Services Knowledge Center. Tags are visible on the tagged dataset, but not on the ingestion resource. |
|
| CreateNamespace |
Show Description(Enterprise edition only) Creates a new namespace for you to use with Amazon QuickSight. A namespace allows you to isolate the Amazon QuickSight users and groups that are registered for that namespace. Users that access the namespace can share assets only with other users or groups in the same namespace. They can't see users and groups in other namespaces. You can create a namespace after your Amazon Web Services account is subscribed to Amazon QuickSight. The namespace must be unique within the Amazon Web Services account. By default, there is a limit of 100 namespaces per Amazon Web Services account. To increase your limit, create a ticket with Amazon Web Services Support. |
|
| CreateTemplate |
Show DescriptionCreates a template from an existing Amazon QuickSight analysis or template. You can use the resulting template to create a dashboard. A template is an entity in Amazon QuickSight that encapsulates the metadata required to create an analysis and that you can use to create s dashboard. A template adds a layer of abstraction by using placeholders to replace the dataset associated with the analysis. You can use templates to create dashboards by replacing dataset placeholders with datasets that follow the same schema that was used to create the source analysis and template. |
|
| CreateTemplateAlias |
Show DescriptionCreates a template alias for a template. |
|
| CreateTheme |
Show DescriptionCreates a theme. A theme is set of configuration options for color and layout. Themes apply to analyses and dashboards. For more information, see Using Themes in Amazon QuickSight in the Amazon QuickSight User Guide. |
|
| CreateThemeAlias |
Show DescriptionCreates a theme alias for a theme. |
|
| DeleteAccountCustomization |
Show DescriptionDeletes all Amazon QuickSight customizations in this Amazon Web Services Region for the specified Amazon Web Services account and Amazon QuickSight namespace. |
|
| DeleteAnalysis |
Show DescriptionDeletes an analysis from Amazon QuickSight. You can optionally include a recovery window during which you can restore the analysis. If you don't specify a recovery window value, the operation defaults to 30 days. Amazon QuickSight attaches aDeletionTime stamp to the response that specifies the end of the recovery window. At the end of the recovery window, Amazon QuickSight deletes the analysis permanently. At any time before recovery window ends, you can use the RestoreAnalysis API operation to remove the DeletionTime stamp and cancel the deletion of the analysis. The analysis remains visible in the API until it's deleted, so you can describe it but you can't make a template from it. An analysis that's scheduled for deletion isn't accessible in the Amazon QuickSight console. To access it in the console, restore it. Deleting an analysis doesn't delete the dashboards that you publish from it.
|
|
| DeleteDashboard |
Show DescriptionDeletes a dashboard. |
|
| DeleteDataSet |
Show DescriptionDeletes a dataset. |
|
| DeleteDataSource |
Show DescriptionDeletes the data source permanently. This operation breaks all the datasets that reference the deleted data source. |
|
| DeleteFolder |
Show DescriptionDeletes an empty folder. |
|
| DeleteFolderMembership |
Show DescriptionRemoves an asset, such as a dashboard, analysis, or dataset, from a folder. |
|
| DeleteGroup |
Show DescriptionRemoves a user group from Amazon QuickSight. |
|
| DeleteGroupMembership |
Show DescriptionRemoves a user from a group so that the user is no longer a member of the group. |
|
| DeleteIAMPolicyAssignment |
Show DescriptionDeletes an existing IAMpolicy assignment. |
|
| DeleteNamespace |
Show DescriptionDeletes a namespace and the users and groups that are associated with the namespace. This is an asynchronous process. Assets including dashboards, analyses, datasets and data sources are not deleted. To delete these assets, you use the API operations for the relevant asset. |
|
| DeleteTemplate |
Show DescriptionDeletes a template. |
|
| DeleteTemplateAlias |
Show DescriptionDeletes the item that the specified template alias points to. If you provide a specific alias, you delete the version of the template that the alias points to. |
|
| DeleteTheme |
Show DescriptionDeletes a theme. |
|
| DeleteThemeAlias |
Show DescriptionDeletes the version of the theme that the specified theme alias points to. If you provide a specific alias, you delete the version of the theme that the alias points to. |
|
| DeleteUser |
Show DescriptionDeletes the Amazon QuickSight user that is associated with the identity of the Identity and Access Management (IAM) user or role that's making the call. The IAM user isn't deleted as a result of this call. |
|
| DeleteUserByPrincipalId |
Show DescriptionDeletes a user identified by its principal ID. |
|
| DescribeAccountCustomization |
Show DescriptionDescribes the customizations associated with the provided Amazon Web Services account and Amazon Amazon QuickSight namespace in an Amazon Web Services Region. The Amazon QuickSight console evaluates which customizations to apply by running this API operation with theResolved flag included. To determine what customizations display when you run this command, it can help to visualize the relationship of the entities involved.
|
|
| DescribeAccountSettings |
Show DescriptionDescribes the settings that were used when your Amazon QuickSight subscription was first created in this Amazon Web Services account. |
|
| DescribeAnalysis |
Show DescriptionProvides a summary of the metadata for an analysis. |
|
| DescribeAnalysisPermissions |
Show DescriptionProvides the read and write permissions for an analysis. |
|
| DescribeDashboard |
Show DescriptionProvides a summary for a dashboard. |
|
| DescribeDashboardPermissions |
Show DescriptionDescribes read and write permissions for a dashboard. |
|
| DescribeDataSet |
Show DescriptionDescribes a dataset. |
|
| DescribeDataSetPermissions |
Show DescriptionDescribes the permissions on a dataset. The permissions resource isarn:aws:quicksight:region:aws-account-id:dataset/data-set-id.
|
|
| DescribeDataSource |
Show DescriptionDescribes a data source. |
|
| DescribeDataSourcePermissions |
Show DescriptionDescribes the resource permissions for a data source. |
|
| DescribeFolder |
Show DescriptionDescribes a folder. |
|
| DescribeFolderPermissions |
Show DescriptionDescribes permissions for a folder. |
|
| DescribeFolderResolvedPermissions |
Show DescriptionDescribes the folder resolved permissions. Permissions consists of both folder direct permissions and the inherited permissions from the ancestor folders. |
|
| DescribeGroup |
Show DescriptionReturns an Amazon QuickSight group's description and Amazon Resource Name (ARN). |
|
| DescribeIAMPolicyAssignment |
Show DescriptionDescribes an existing IAMpolicy assignment, as specified by the assignment name. |
|
| DescribeIngestion |
Show DescriptionDescribes a SPICE ingestion. |
|
| DescribeIpRestriction |
Show DescriptionProvides a summary and status of IP Rules. |
|
| DescribeNamespace |
Show DescriptionDescribes the current namespace. |
|
| DescribeTemplate |
Show DescriptionDescribes a template's metadata. |
|
| DescribeTemplateAlias |
Show DescriptionDescribes the template alias for a template. |
|
| DescribeTemplatePermissions |
Show DescriptionDescribes read and write permissions on a template. |
|
| DescribeTheme |
Show DescriptionDescribes a theme. |
|
| DescribeThemeAlias |
Show DescriptionDescribes the alias for a theme. |
|
| DescribeThemePermissions |
Show DescriptionDescribes the read and write permissions for a theme. |
|
| DescribeUser |
Show DescriptionReturns information about a user, given the user name. |
|
| GenerateEmbedUrlForAnonymousUser |
Show DescriptionGenerates an embed URL that you can use to embed an Amazon QuickSight dashboard in your website, without having to register any reader users. Before you use this action, make sure that you have configured the dashboards and permissions. The following rules apply to the generated URL:
|
|
| GenerateEmbedUrlForRegisteredUser |
Show DescriptionGenerates an embed URL that you can use to embed an Amazon QuickSight experience in your website. This action can be used for any type of user registered in an Amazon QuickSight account. Before you use this action, make sure that you have configured the relevant Amazon QuickSight resource and permissions. The following rules apply to the generated URL:
|
|
| GetDashboardEmbedUrl |
Show DescriptionGenerates a session URL and authorization code that you can use to embed an Amazon Amazon QuickSight read-only dashboard in your web server code. Before you use this command, make sure that you have configured the dashboards and permissions. Currently, you can useGetDashboardEmbedURL only from the server, not from the user's browser. The following rules apply to the combination of URL and authorization code:
|
|
| GetSessionEmbedUrl |
Show DescriptionGenerates a session URL and authorization code that you can use to embed the Amazon Amazon QuickSight console in your web server code. UseGetSessionEmbedUrl where you want to provide an authoring portal that allows users to create data sources, datasets, analyses, and dashboards. The users who access an embedded Amazon QuickSight console need belong to the author or admin security cohort. If you want to restrict permissions to some of these features, add a custom permissions profile to the user with the UpdateUser API operation. Use RegisterUser API operation to add a new user with a custom permission profile attached. For more information, see the following sections in the Amazon QuickSight User Guide:
|
|
| ListAnalyses |
Show DescriptionLists Amazon QuickSight analyses that exist in the specified Amazon Web Services account. |
|
| ListDashboardVersions |
Show DescriptionLists all the versions of the dashboards in the Amazon QuickSight subscription. |
|
| ListDashboards |
Show DescriptionLists dashboards in an Amazon Web Services account. |
|
| ListDataSets |
Show DescriptionLists all of the datasets belonging to the current Amazon Web Services account in an Amazon Web Services Region. The permissions resource isarn:aws:quicksight:region:aws-account-id:dataset/*.
|
|
| ListDataSources |
Show DescriptionLists data sources in current Amazon Web Services Region that belong to this Amazon Web Services account. |
|
| ListFolderMembers |
Show DescriptionList all assets (DASHBOARD, ANALYSIS, and DATASET) in a folder.
|
|
| ListFolders |
Show DescriptionLists all folders in an account. |
|
| ListGroupMemberships |
Show DescriptionLists member users in a group. |
|
| ListGroups |
Show DescriptionLists all user groups in Amazon QuickSight. |
|
| ListIAMPolicyAssignments |
Show DescriptionLists IAMpolicy assignments in the current Amazon QuickSight account. |
|
| ListIAMPolicyAssignmentsForUser |
Show DescriptionLists all the IAMpolicy assignments, including the Amazon Resource Names (ARNs) for the IAM policies assigned to the specified user and group or groups that the user belongs to. |
|
| ListIngestions |
Show DescriptionLists the history of SPICE ingestions for a dataset. |
|
| ListNamespaces |
Show DescriptionLists the namespaces for the specified Amazon Web Services account. |
|
| ListTagsForResource |
Show DescriptionLists the tags assigned to a resource. |
|
| ListTemplateAliases |
Show DescriptionLists all the aliases of a template. |
|
| ListTemplateVersions |
Show DescriptionLists all the versions of the templates in the current Amazon QuickSight account. |
|
| ListTemplates |
Show DescriptionLists all the templates in the current Amazon QuickSight account. |
|
| ListThemeAliases |
Show DescriptionLists all the aliases of a theme. |
|
| ListThemeVersions |
Show DescriptionLists all the versions of the themes in the current Amazon Web Services account. |
|
| ListThemes |
Show DescriptionLists all the themes in the current Amazon Web Services account. |
|
| ListUserGroups |
Show DescriptionLists the Amazon QuickSight groups that an Amazon QuickSight user is a member of. |
|
| ListUsers |
Show DescriptionReturns a list of all of the Amazon QuickSight users belonging to this account. |
|
| RegisterUser |
Show DescriptionCreates an Amazon QuickSight user, whose identity is associated with the AWS Identity and Access Management (IAM) identity or role specified in the request. |
|
| RestoreAnalysis |
Show DescriptionRestores an analysis. |
|
| SearchAnalyses |
Show DescriptionSearches for analyses that belong to the user specified in the filter. |
|
| SearchDashboards |
Show DescriptionSearches for dashboards that belong to a user. |
|
| SearchFolders |
Show DescriptionSearches the subfolders in a folder. |
|
| TagResource |
Show DescriptionAssigns one or more tags (key-value pairs) to the specified Amazon QuickSight resource. Tags can help you organize and categorize your resources. You can also use them to scope user permissions, by granting a user permission to access or change only resources with certain tag values. You can use theTagResource operation with a resource that already has tags. If you specify a new tag key for the resource, this tag is appended to the list of tags associated with the resource. If you specify a tag key that is already associated with the resource, the new tag value that you specify replaces the previous value for that tag. You can associate as many as 50 tags with a resource. Amazon QuickSight supports tagging on data set, data source, dashboard, and template. Tagging for Amazon QuickSight works in a similar way to tagging for other AWS services, except for the following:
|
|
| UntagResource |
Show DescriptionRemoves a tag or tags from a resource. |
|
| UpdateAccountCustomization |
Show DescriptionUpdates Amazon QuickSight customizations the current Amazon Web Services Region. Currently, the only customization you can use is a theme. You can use customizations for your Amazon Web Services account or, if you specify a namespace, for a Amazon QuickSight namespace instead. Customizations that apply to a namespace override customizations that apply to an Amazon Web Services account. To find out which customizations apply, use theDescribeAccountCustomization API operation.
|
|
| UpdateAccountSettings |
Show DescriptionUpdates the Amazon QuickSight settings in your Amazon Web Services account. |
|
| UpdateAnalysis |
Show DescriptionUpdates an analysis in Amazon QuickSight |
|
| UpdateAnalysisPermissions |
Show DescriptionUpdates the read and write permissions for an analysis. |
|
| UpdateDashboard |
Show DescriptionUpdates a dashboard in an Amazon Web Services account. |
|
| UpdateDashboardPermissions |
Show DescriptionUpdates read and write permissions on a dashboard. |
|
| UpdateDashboardPublishedVersion |
Show DescriptionUpdates the published version of a dashboard. |
|
| UpdateDataSet |
Show DescriptionUpdates a dataset. |
|
| UpdateDataSetPermissions |
Show DescriptionUpdates the permissions on a dataset. The permissions resource isarn:aws:quicksight:region:aws-account-id:dataset/data-set-id.
|
|
| UpdateDataSource |
Show DescriptionUpdates a data source. |
|
| UpdateDataSourcePermissions |
Show DescriptionUpdates the permissions to a data source. |
|
| UpdateFolder |
Show DescriptionUpdates the name of a folder. |
|
| UpdateFolderPermissions |
Show DescriptionUpdates permissions of a folder. |
|
| UpdateGroup |
Show DescriptionChanges a group description. |
|
| UpdateIAMPolicyAssignment |
Show DescriptionUpdates an existing IAMpolicy assignment. This operation updates only the optional parameter or parameters that are specified in the request. This overwrites all of the users included inIdentities.
|
|
| UpdateIpRestriction |
Show DescriptionUpdates content and status of IP Rules. |
|
| UpdateTemplate |
Show DescriptionUpdates a template from an existing Amazon QuickSight analysis or another template. |
|
| UpdateTemplateAlias |
Show DescriptionUpdates the template alias of a template. |
|
| UpdateTemplatePermissions |
Show DescriptionUpdates the resource permissions for a template. |
|
| UpdateTheme |
Show DescriptionUpdates a theme. |
|
| UpdateThemeAlias |
Show DescriptionUpdates an alias of a theme. |
|
| UpdateThemePermissions |
Show DescriptionUpdates the resource permissions for a theme. Permissions apply to the action to grant or revoke permissions on, for example"quicksight:DescribeTheme". Theme permissions apply in groupings. Valid groupings include the following for the three levels of permissions, which are user, owner, or no permissions:
|
Ram Events
| Service | Event Name | Description |
|---|---|---|
| ram | AcceptResourceShareInvitation |
Show DescriptionAccepts an invitation to a resource share from another Amazon Web Services account. |
| AssociateResourceShare |
Show DescriptionAssociates the specified resource share with the specified principals and resources. |
|
| AssociateResourceSharePermission |
Show DescriptionAssociates a permission with a resource share. |
|
| CreateResourceShare |
Show DescriptionCreates a resource share. You must provide a list of the Amazon Resource Names (ARNs) for the resources you want to share. You must also specify who you want to share the resources with, and the permissions that you grant them. |
|
| DeleteResourceShare |
Show DescriptionDeletes the specified resource share. |
|
| DisassociateResourceShare |
Show DescriptionDisassociates the specified principals or resources from the specified resource share. |
|
| DisassociateResourceSharePermission |
Show DescriptionDisassociates an RAM permission from a resource share. |
|
| EnableSharingWithAwsOrganization |
Show DescriptionEnables resource sharing within your organization in Organizations. The caller must be the master account for the organization. |
|
| GetPermission |
Show DescriptionGets the contents of an RAM permission in JSON format. |
|
| GetResourcePolicies |
Show DescriptionGets the policies for the specified resources that you own and have shared. |
|
| GetResourceShareAssociations |
Show DescriptionGets the resources or principals for the resource shares that you own. |
|
| GetResourceShareInvitations |
Show DescriptionGets the invitations that you have received for resource shares. |
|
| GetResourceShares |
Show DescriptionGets the resource shares that you own or the resource shares that are shared with you. |
|
| ListPendingInvitationResources |
Show DescriptionLists the resources in a resource share that is shared with you but that the invitation is still pending for. |
|
| ListPermissions |
Show DescriptionLists the RAM permissions. |
|
| ListPrincipals |
Show DescriptionLists the principals that you have shared resources with or that have shared resources with you. |
|
| ListResourceSharePermissions |
Show DescriptionLists the RAM permissions that are associated with a resource share. |
|
| ListResourceTypes |
Show DescriptionLists the shareable resource types supported by RAM. |
|
| ListResources |
Show DescriptionLists the resources that you added to a resource shares or the resources that are shared with you. |
|
| PromoteResourceShareCreatedFromPolicy |
Show DescriptionResource shares that were created by attaching a policy to a resource are visible only to the resource share owner, and the resource share cannot be modified in RAM. Use this API action to promote the resource share. When you promote the resource share, it becomes:
|
|
| RejectResourceShareInvitation |
Show DescriptionRejects an invitation to a resource share from another Amazon Web Services account. |
|
| TagResource |
Show DescriptionAdds the specified tags to the specified resource share that you own. |
|
| UntagResource |
Show DescriptionRemoves the specified tags from the specified resource share that you own. |
Rds-data Events
| Service | Event Name | Description |
|---|---|---|
| rds-data | BatchExecuteStatement |
Show DescriptionRuns a batch SQL statement over an array of data. You can run bulk update and insert operations for multiple records using a DML statement with different parameter sets. Bulk operations can provide a significant performance improvement over individual insert and update operations.transactionID parameter, changes that result from the call are committed automatically. |
| BeginTransaction |
Show DescriptionStarts a SQL transaction. |
|
| CommitTransaction |
Show DescriptionEnds a SQL transaction started with theBeginTransaction operation and commits the changes.
|
|
| ExecuteSql |
Show DescriptionRuns one or more SQL statements.BatchExecuteStatement or ExecuteStatement operation. |
|
| ExecuteStatement |
Show DescriptionRuns a SQL statement against a database.transactionID parameter, changes that result from the call are committed automatically. |
Rds Events
| Service | Event Name | Description |
|---|---|---|
| rds | AddRoleToDBCluster | |
| AddRoleToDBInstance | ||
| AddSourceIdentifierToSubscription |
Show DescriptionAdds a source identifier to an existing RDS event notification subscription. |
|
| AddTagsToResource | ||
| ApplyPendingMaintenanceAction |
Show DescriptionApplies a pending maintenance action to a resource (for example, to a DB instance). |
|
| AuthorizeDBSecurityGroupIngress |
Show DescriptionEnables ingress to a DBSecurityGroup using one of two forms of authorization. First, EC2 or VPC security groups can be added to the DBSecurityGroup if the application using the database is running on EC2 or VPC instances. Second, IP ranges are available if the application accessing your database is running on the Internet. Required parameters for this API are one of CIDR range, EC2SecurityGroupId for VPC, or (EC2SecurityGroupOwnerId and either EC2SecurityGroupName or EC2SecurityGroupId for non-VPC). |
|
| BacktrackDBCluster |
Show DescriptionBacktracks a DB cluster to a specific time, without creating a new DB cluster. For more information on backtracking, see Backtracking an Aurora DB Cluster in the Amazon Aurora User Guide. |
|
| CancelExportTask |
Show DescriptionCancels an export task in progress that is exporting a snapshot to Amazon S3. Any data that has already been written to the S3 bucket isn't removed. |
|
| CopyDBClusterParameterGroup |
Show DescriptionCopies the specified DB cluster parameter group. |
|
| CopyDBClusterSnapshot |
Show DescriptionCopies a snapshot of a DB cluster. To copy a DB cluster snapshot from a shared manual DB cluster snapshot,SourceDBClusterSnapshotIdentifier must be the Amazon Resource Name (ARN) of the shared DB cluster snapshot. You can copy an encrypted DB cluster snapshot from another Amazon Web Services Region. In that case, the Amazon Web Services Region where you call the CopyDBClusterSnapshot action is the destination Amazon Web Services Region for the encrypted DB cluster snapshot to be copied to. To copy an encrypted DB cluster snapshot from another Amazon Web Services Region, you must provide the following values:
TargetDBClusterSnapshotIdentifier while that DB cluster snapshot is in "copying" status. For more information on copying encrypted DB cluster snapshots from one Amazon Web Services Region to another, see Copying a Snapshot in the Amazon Aurora User Guide. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| CopyDBParameterGroup |
Show DescriptionCopies the specified DB parameter group. |
|
| CopyDBSnapshot |
Show DescriptionCopies the specified DB snapshot. The source DB snapshot must be in theavailable state. You can copy a snapshot from one Amazon Web Services Region to another. In that case, the Amazon Web Services Region where you call the CopyDBSnapshot action is the destination Amazon Web Services Region for the DB snapshot copy. This command doesn't apply to RDS Custom. For more information about copying snapshots, see Copying a DB Snapshot in the Amazon RDS User Guide.
|
|
| CopyOptionGroup |
Show DescriptionCopies the specified option group. |
|
| CreateCustomAvailabilityZone |
Show DescriptionCreates a custom Availability Zone (AZ). A custom AZ is an on-premises AZ that is integrated with a VMware vSphere cluster. For more information about RDS on VMware, see the RDS on VMware User Guide. |
|
| CreateCustomDBEngineVersion |
Show DescriptionCreates a custom DB engine version (CEV). A CEV is a binary volume snapshot of a database engine and specific AMI. The only supported engine is Oracle Database 19c Enterprise Edition with the January 2021 or later RU/RUR. For more information, see Amazon RDS Custom requirements and limitations in the Amazon RDS User Guide. Amazon RDS, which is a fully managed service, supplies the Amazon Machine Image (AMI) and database software. The Amazon RDS database software is preinstalled, so you need only select a DB engine and version, and create your database. With Amazon RDS Custom, you upload your database installation files in Amazon S3. For more information, see Preparing to create a CEV in the Amazon RDS User Guide. When you create a custom engine version, you specify the files in a JSON document called a CEV manifest. This document describes installation .zip files stored in Amazon S3. RDS Custom creates your CEV from the installation files that you provided. This service model is called Bring Your Own Media (BYOM). Creation takes approximately two hours. If creation fails, RDS Custom issuesRDS-EVENT-0196 with the message Creation failed for custom engine version, and includes details about the failure. For example, the event prints missing files. After you create the CEV, it is available for use. You can create multiple CEVs, and create multiple RDS Custom instances from any CEV. You can also change the status of a CEV to make it available or inactive. CreateCustomDbEngineVersion event aren't logged. However, you might see calls from the API gateway that accesses your Amazon S3 bucket. These calls originate from the MediaImport service for the CreateCustomDbEngineVersion event. |
|
| CreateDBCluster |
Show DescriptionCreates a new Amazon Aurora DB cluster. You can use theReplicationSourceIdentifier parameter to create the DB cluster as a read replica of another DB cluster or Amazon RDS MySQL or PostgreSQL DB instance. For cross-region replication where the DB cluster identified by ReplicationSourceIdentifier is encrypted, you must also specify the PreSignedUrl parameter. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| CreateDBClusterEndpoint |
Show DescriptionCreates a new custom endpoint and associates it with an Amazon Aurora DB cluster. |
|
| CreateDBClusterParameterGroup |
Show DescriptionCreates a new DB cluster parameter group. Parameters in a DB cluster parameter group apply to all of the instances in a DB cluster. A DB cluster parameter group is initially created with the default parameters for the database engine used by instances in the DB cluster. To provide custom values for any of the parameters, you must modify the group after creating it usingModifyDBClusterParameterGroup. Once you've created a DB cluster parameter group, you need to associate it with your DB cluster using ModifyDBCluster. When you associate a new DB cluster parameter group with a running DB cluster, you need to reboot the DB instances in the DB cluster without failover for the new DB cluster parameter group and associated settings to take effect. character_set_database parameter. You can use the Parameter Groups option of the Amazon RDS console or the DescribeDBClusterParameters action to verify that your DB cluster parameter group has been created or modified. |
|
| CreateDBClusterSnapshot |
Show DescriptionCreates a snapshot of a DB cluster. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| CreateDBInstance |
Show DescriptionCreates a new DB instance. |
|
| CreateDBInstanceReadReplica |
Show DescriptionCreates a new DB instance that acts as a read replica for an existing source DB instance. You can create a read replica for a DB instance running MySQL, MariaDB, Oracle, PostgreSQL, or SQL Server. For more information, see Working with Read Replicas in the Amazon RDS User Guide. Amazon Aurora doesn't support this action. Call theCreateDBInstance action to create a DB instance for an Aurora DB cluster. All read replica DB instances are created with backups disabled. All other DB instance attributes (including DB security groups and DB parameter groups) are inherited from the source DB instance, except as specified. |
|
| CreateDBParameterGroup |
Show DescriptionCreates a new DB parameter group. A DB parameter group is initially created with the default parameters for the database engine used by the DB instance. To provide custom values for any of the parameters, you must modify the group after creating it usingModifyDBParameterGroup. Once you've created a DB parameter group, you need to associate it with your DB instance using ModifyDBInstance. When you associate a new DB parameter group with a running DB instance, you need to reboot the DB instance without failover for the new DB parameter group and associated settings to take effect. This command doesn't apply to RDS Custom. character_set_database parameter. You can use the Parameter Groups option of the Amazon RDS console or the DescribeDBParameters command to verify that your DB parameter group has been created or modified. |
|
| CreateDBProxy |
Show DescriptionCreates a new DB proxy. |
|
| CreateDBProxyEndpoint |
Show DescriptionCreates aDBProxyEndpoint. Only applies to proxies that are associated with Aurora DB clusters. You can use DB proxy endpoints to specify read/write or read-only access to the DB cluster. You can also use DB proxy endpoints to access a DB proxy through a different VPC than the proxy's default VPC.
|
|
| CreateDBSecurityGroup |
Show DescriptionCreates a new DB security group. DB security groups control access to a DB instance. |
|
| CreateDBSnapshot |
Show DescriptionCreates a snapshot of a DB instance. The source DB instance must be in theavailable or storage-optimization state.
|
|
| CreateDBSubnetGroup |
Show DescriptionCreates a new DB subnet group. DB subnet groups must contain at least one subnet in at least two AZs in the Amazon Web Services Region. |
|
| CreateEventSubscription |
Show DescriptionCreates an RDS event notification subscription. This action requires a topic Amazon Resource Name (ARN) created by either the RDS console, the SNS console, or the SNS API. To obtain an ARN with SNS, you must create a topic in Amazon SNS and subscribe to the topic. The ARN is displayed in the SNS console. You can specify the type of source (SourceType) that you want to be notified of and provide a list of RDS sources (SourceIds) that triggers the events. You can also provide a list of event categories (EventCategories) for events that you want to be notified of. For example, you can specify SourceType = db-instance, SourceIds = mydbinstance1, mydbinstance2 and EventCategories = Availability, Backup. If you specify both the SourceType and SourceIds, such as SourceType = db-instance and SourceIdentifier = myDBInstance1, you are notified of all the db-instance events for the specified source. If you specify a SourceType but do not specify a SourceIdentifier, you receive notice of the events for that source type for all your RDS sources. If you don't specify either the SourceType or the SourceIdentifier, you are notified of events generated from all RDS sources belonging to your customer account. |
|
| CreateGlobalCluster |
Show DescriptionCreates an Aurora global database spread across multiple Amazon Web Services Regions. The global database contains a single primary cluster with read-write capability, and a read-only secondary cluster that receives data from the primary cluster through high-speed replication performed by the Aurora storage subsystem. You can create a global database that is initially empty, and then add a primary cluster and a secondary cluster to it. Or you can specify an existing Aurora cluster during the create operation, and this cluster becomes the primary cluster of the global database. |
|
| CreateOptionGroup |
Show DescriptionCreates a new option group. You can create up to 20 option groups. This command doesn't apply to RDS Custom. |
|
| DeleteCustomAvailabilityZone |
Show DescriptionDeletes a custom Availability Zone (AZ). A custom AZ is an on-premises AZ that is integrated with a VMware vSphere cluster. For more information about RDS on VMware, see the RDS on VMware User Guide. |
|
| DeleteCustomDBEngineVersion |
Show DescriptionDeletes a custom engine version. To run this command, make sure you meet the following prerequisites:
DeleteCustomDbEngineVersion event aren't logged. However, you might see calls from the API gateway that accesses your Amazon S3 bucket. These calls originate from the MediaImport service for the DeleteCustomDbEngineVersion event. |
|
| DeleteDBCluster |
Show DescriptionThe DeleteDBCluster action deletes a previously provisioned DB cluster. When you delete a DB cluster, all automated backups for that DB cluster are deleted and can't be recovered. Manual DB cluster snapshots of the specified DB cluster are not deleted. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DeleteDBClusterEndpoint |
Show DescriptionDeletes a custom endpoint and removes it from an Amazon Aurora DB cluster. |
|
| DeleteDBClusterParameterGroup | ||
| DeleteDBClusterSnapshot |
Show DescriptionDeletes a DB cluster snapshot. If the snapshot is being copied, the copy operation is terminated.available state to be deleted. |
|
| DeleteDBInstance |
Show DescriptionThe DeleteDBInstance action deletes a previously provisioned DB instance. When you delete a DB instance, all automated backups for that instance are deleted and can't be recovered. Manual DB snapshots of the DB instance to be deleted byDeleteDBInstance are not deleted. If you request a final DB snapshot the status of the Amazon RDS DB instance is deleting until the DB snapshot is created. The API action DescribeDBInstance is used to monitor the status of this operation. The action can't be canceled or reverted once submitted. When a DB instance is in a failure state and has a status of failed, incompatible-restore, or incompatible-network, you can only delete it when you skip creation of the final snapshot with the SkipFinalSnapshot parameter. If the specified DB instance is part of an Amazon Aurora DB cluster, you can't delete the DB instance if both of the following conditions are true:
PromoteReadReplicaDBCluster API action to promote the DB cluster so it's no longer a read replica. After the promotion completes, then call the DeleteDBInstance API action to delete the final instance in the DB cluster.
|
|
| DeleteDBInstanceAutomatedBackup |
Show DescriptionDeletes automated backups using theDbiResourceId value of the source DB instance or the Amazon Resource Name (ARN) of the automated backups.
|
|
| DeleteDBParameterGroup | ||
| DeleteDBProxy |
Show DescriptionDeletes an existing DB proxy. |
|
| DeleteDBProxyEndpoint |
Show DescriptionDeletes aDBProxyEndpoint. Doing so removes the ability to access the DB proxy using the endpoint that you defined. The endpoint that you delete might have provided capabilities such as read/write or read-only operations, or using a different VPC than the DB proxy's default VPC.
|
|
| DeleteDBSecurityGroup | ||
| DeleteDBSnapshot |
Show DescriptionDeletes a DB snapshot. If the snapshot is being copied, the copy operation is terminated.available state to be deleted. |
|
| DeleteDBSubnetGroup | ||
| DeleteEventSubscription |
Show DescriptionDeletes an RDS event notification subscription. |
|
| DeleteGlobalCluster |
Show DescriptionDeletes a global database cluster. The primary and secondary clusters must already be detached or destroyed first. |
|
| DeleteInstallationMedia |
Show DescriptionDeletes the installation medium for a DB engine that requires an on-premises customer provided license, such as Microsoft SQL Server. |
|
| DeleteOptionGroup | ||
| DeregisterDBProxyTargets |
Show DescriptionRemove the association between one or moreDBProxyTarget data structures and a DBProxyTargetGroup.
|
|
| DescribeAccountAttributes |
Show DescriptionLists all of the attributes for a customer account. The attributes include Amazon RDS quotas for the account, such as the number of DB instances allowed. The description for a quota includes the quota name, current usage toward that quota, and the quota's maximum value. This command doesn't take any parameters. |
|
| DescribeCertificates |
Show DescriptionLists the set of CA certificates provided by Amazon RDS for this Amazon Web Services account. |
|
| DescribeCustomAvailabilityZones |
Show DescriptionReturns information about custom Availability Zones (AZs). A custom AZ is an on-premises AZ that is integrated with a VMware vSphere cluster. For more information about RDS on VMware, see the RDS on VMware User Guide. |
|
| DescribeDBClusterBacktracks |
Show DescriptionReturns information about backtracks for a DB cluster. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DescribeDBClusterEndpoints |
Show DescriptionReturns information about endpoints for an Amazon Aurora DB cluster. |
|
| DescribeDBClusterParameterGroups |
Show DescriptionReturns a list ofDBClusterParameterGroup descriptions. If a DBClusterParameterGroupName parameter is specified, the list will contain only the description of the specified DB cluster parameter group. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DescribeDBClusterParameters |
Show DescriptionReturns the detailed parameter list for a particular DB cluster parameter group. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DescribeDBClusterSnapshotAttributes |
Show DescriptionReturns a list of DB cluster snapshot attribute names and values for a manual DB cluster snapshot. When sharing snapshots with other Amazon Web Services accounts,DescribeDBClusterSnapshotAttributes returns the restore attribute and a list of IDs for the Amazon Web Services accounts that are authorized to copy or restore the manual DB cluster snapshot. If all is included in the list of values for the restore attribute, then the manual DB cluster snapshot is public and can be copied or restored by all Amazon Web Services accounts. To add or remove access for an Amazon Web Services account to copy or restore a manual DB cluster snapshot, or to make the manual DB cluster snapshot public or private, use the ModifyDBClusterSnapshotAttribute API action. |
|
| DescribeDBClusterSnapshots |
Show DescriptionReturns information about DB cluster snapshots. This API action supports pagination. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DescribeDBClusters |
Show DescriptionReturns information about provisioned Aurora DB clusters. This API supports pagination. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DescribeDBEngineVersions |
Show DescriptionReturns a list of the available DB engines. |
|
| DescribeDBInstanceAutomatedBackups |
Show DescriptionDisplays backups for both current and deleted instances. For example, use this operation to find details about automated backups for previously deleted instances. Current instances with retention periods greater than zero (0) are returned for both theDescribeDBInstanceAutomatedBackups and DescribeDBInstances operations. All parameters are optional.
|
|
| DescribeDBInstances |
Show DescriptionReturns information about provisioned RDS instances. This API supports pagination. |
|
| DescribeDBLogFiles |
Show DescriptionReturns a list of DB log files for the DB instance. This command doesn't apply to RDS Custom. |
|
| DescribeDBParameterGroups |
Show DescriptionReturns a list ofDBParameterGroup descriptions. If a DBParameterGroupName is specified, the list will contain only the description of the specified DB parameter group.
|
|
| DescribeDBParameters |
Show DescriptionReturns the detailed parameter list for a particular DB parameter group. |
|
| DescribeDBProxies |
Show DescriptionReturns information about DB proxies. |
|
| DescribeDBProxyEndpoints |
Show DescriptionReturns information about DB proxy endpoints. |
|
| DescribeDBProxyTargetGroups |
Show DescriptionReturns information about DB proxy target groups, represented byDBProxyTargetGroup data structures.
|
|
| DescribeDBProxyTargets |
Show DescriptionReturns information aboutDBProxyTarget objects. This API supports pagination.
|
|
| DescribeDBSecurityGroups |
Show DescriptionReturns a list ofDBSecurityGroup descriptions. If a DBSecurityGroupName is specified, the list will contain only the descriptions of the specified DB security group.
|
|
| DescribeDBSnapshotAttributes |
Show DescriptionReturns a list of DB snapshot attribute names and values for a manual DB snapshot. When sharing snapshots with other Amazon Web Services accounts,DescribeDBSnapshotAttributes returns the restore attribute and a list of IDs for the Amazon Web Services accounts that are authorized to copy or restore the manual DB snapshot. If all is included in the list of values for the restore attribute, then the manual DB snapshot is public and can be copied or restored by all Amazon Web Services accounts. To add or remove access for an Amazon Web Services account to copy or restore a manual DB snapshot, or to make the manual DB snapshot public or private, use the ModifyDBSnapshotAttribute API action.
|
|
| DescribeDBSnapshots |
Show DescriptionReturns information about DB snapshots. This API action supports pagination. |
|
| DescribeDBSubnetGroups |
Show DescriptionReturns a list of DBSubnetGroup descriptions. If a DBSubnetGroupName is specified, the list will contain only the descriptions of the specified DBSubnetGroup. For an overview of CIDR ranges, go to the Wikipedia Tutorial. |
|
| DescribeEngineDefaultClusterParameters |
Show DescriptionReturns the default engine and system parameter information for the cluster database engine. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DescribeEngineDefaultParameters |
Show DescriptionReturns the default engine and system parameter information for the specified database engine. |
|
| DescribeEventCategories |
Show DescriptionDisplays a list of categories for all event source types, or, if specified, for a specified source type. You can see a list of the event categories and source types in Events in the Amazon RDS User Guide. |
|
| DescribeEventSubscriptions |
Show DescriptionLists all the subscription descriptions for a customer account. The description for a subscription includesSubscriptionName, SNSTopicARN, CustomerID, SourceType, SourceID, CreationTime, and Status. If you specify a SubscriptionName, lists the description for that subscription.
|
|
| DescribeEvents |
Show DescriptionReturns events related to DB instances, DB clusters, DB parameter groups, DB security groups, DB snapshots, and DB cluster snapshots for the past 14 days. Events specific to a particular DB instances, DB clusters, DB parameter groups, DB security groups, DB snapshots, and DB cluster snapshots group can be obtained by providing the name as a parameter. |
|
| DescribeExportTasks |
Show DescriptionReturns information about a snapshot export to Amazon S3. This API operation supports pagination. |
|
| DescribeGlobalClusters |
Show DescriptionReturns information about Aurora global database clusters. This API supports pagination. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| DescribeInstallationMedia |
Show DescriptionDescribes the available installation media for a DB engine that requires an on-premises customer provided license, such as Microsoft SQL Server. |
|
| DescribeOptionGroupOptions |
Show DescriptionDescribes all available options. |
|
| DescribeOptionGroups |
Show DescriptionDescribes the available option groups. |
|
| DescribeOrderableDBInstanceOptions |
Show DescriptionReturns a list of orderable DB instance options for the specified engine. |
|
| DescribePendingMaintenanceActions |
Show DescriptionReturns a list of resources (for example, DB instances) that have at least one pending maintenance action. |
|
| DescribeReservedDBInstances |
Show DescriptionReturns information about reserved DB instances for this account, or about a specified reserved DB instance. |
|
| DescribeReservedDBInstancesOfferings |
Show DescriptionLists available reserved DB instance offerings. |
|
| DescribeSourceRegions |
Show DescriptionReturns a list of the source Amazon Web Services Regions where the current Amazon Web Services Region can create a read replica, copy a DB snapshot from, or replicate automated backups from. This API action supports pagination. |
|
| DescribeValidDBInstanceModifications |
Show DescriptionYou can callDescribeValidDBInstanceModifications to learn what modifications you can make to your DB instance. You can use this information when you call ModifyDBInstance. This command doesn't apply to RDS Custom.
|
|
| DownloadDBLogFilePortion |
Show DescriptionDownloads all or a portion of the specified log file, up to 1 MB in size. This command doesn't apply to RDS Custom. |
|
| FailoverDBCluster |
Show DescriptionForces a failover for a DB cluster. A failover for a DB cluster promotes one of the Aurora Replicas (read-only instances) in the DB cluster to be the primary instance (the cluster writer). Amazon Aurora will automatically fail over to an Aurora Replica, if one exists, when the primary instance fails. You can force a failover when you want to simulate a failure of a primary instance for testing. Because each instance in a DB cluster has its own endpoint address, you will need to clean up and re-establish any existing connections that use those endpoint addresses when the failover is complete. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| FailoverGlobalCluster |
Show DescriptionInitiates the failover process for an Aurora global database (GlobalCluster). A failover for an Aurora global database promotes one of secondary read-only DB clusters to be the primary DB cluster and demotes the primary DB cluster to being a secondary (read-only) DB cluster. In other words, the role of the current primary DB cluster and the selected (target) DB cluster are switched. The selected secondary DB cluster assumes full read/write capabilities for the Aurora global database. For more information about failing over an Amazon Aurora global database, see Managed planned failover for Amazon Aurora global databases in the Amazon Aurora User Guide. |
|
| ImportInstallationMedia |
Show DescriptionImports the installation media for a DB engine that requires an on-premises customer provided license, such as SQL Server. |
|
| ListTagsForResource |
Show DescriptionLists all tags on an Amazon RDS resource. For an overview on tagging an Amazon RDS resource, see Tagging Amazon RDS Resources in the Amazon RDS User Guide. |
|
| ModifyCertificates |
Show DescriptionOverride the system-default Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificate for Amazon RDS for new DB instances temporarily, or remove the override. By using this operation, you can specify an RDS-approved SSL/TLS certificate for new DB instances that is different from the default certificate provided by RDS. You can also use this operation to remove the override, so that new DB instances use the default certificate provided by RDS. You might need to override the default certificate in the following situations:
|
|
| ModifyCurrentDBClusterCapacity |
Show DescriptionSet the capacity of an Aurora Serverless DB cluster to a specific value. Aurora Serverless scales seamlessly based on the workload on the DB cluster. In some cases, the capacity might not scale fast enough to meet a sudden change in workload, such as a large number of new transactions. CallModifyCurrentDBClusterCapacity to set the capacity explicitly. After this call sets the DB cluster capacity, Aurora Serverless can automatically scale the DB cluster based on the cooldown period for scaling up and the cooldown period for scaling down. For more information about Aurora Serverless, see Using Amazon Aurora Serverless in the Amazon Aurora User Guide. ModifyCurrentDBClusterCapacity with the default TimeoutAction, connections that prevent Aurora Serverless from finding a scaling point might be dropped. For more information about scaling points, see Autoscaling for Aurora Serverless in the Amazon Aurora User Guide. |
|
| ModifyCustomDBEngineVersion |
Show DescriptionModifies the status of a custom engine version (CEV). You can find CEVs to modify by callingDescribeDBEngineVersions. ModifyCustomDbEngineVersion event aren't logged. However, you might see calls from the API gateway that accesses your Amazon S3 bucket. These calls originate from the MediaImport service for the ModifyCustomDbEngineVersion event. |
|
| ModifyDBCluster |
Show DescriptionModify a setting for an Amazon Aurora DB cluster. You can change one or more database configuration parameters by specifying these parameters and the new values in the request. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| ModifyDBClusterEndpoint |
Show DescriptionModifies the properties of an endpoint in an Amazon Aurora DB cluster. |
|
| ModifyDBClusterParameterGroup |
Show DescriptionModifies the parameters of a DB cluster parameter group. To modify more than one parameter, submit a list of the following:ParameterName, ParameterValue, and ApplyMethod. A maximum of 20 parameters can be modified in a single request. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. character_set_database parameter. You can use the Parameter Groups option of the Amazon RDS console or the DescribeDBClusterParameters action to verify that your DB cluster parameter group has been created or modified. If the modified DB cluster parameter group is used by an Aurora Serverless cluster, Aurora applies the update immediately. The cluster restart might interrupt your workload. In that case, your application must reopen any connections and retry any transactions that were active when the parameter changes took effect. |
|
| ModifyDBClusterSnapshotAttribute |
Show DescriptionAdds an attribute and values to, or removes an attribute and values from, a manual DB cluster snapshot. To share a manual DB cluster snapshot with other Amazon Web Services accounts, specifyrestore as the AttributeName and use the ValuesToAdd parameter to add a list of IDs of the Amazon Web Services accounts that are authorized to restore the manual DB cluster snapshot. Use the value all to make the manual DB cluster snapshot public, which means that it can be copied or restored by all Amazon Web Services accounts. all value for any manual DB cluster snapshots that contain private information that you don't want available to all Amazon Web Services accounts. ValuesToAdd parameter. You can't use all as a value for that parameter in this case. To view which Amazon Web Services accounts have access to copy or restore a manual DB cluster snapshot, or whether a manual DB cluster snapshot is public or private, use the DescribeDBClusterSnapshotAttributes API action. The accounts are returned as values for the restore attribute. |
|
| ModifyDBInstance |
Show DescriptionModifies settings for a DB instance. You can change one or more database configuration parameters by specifying these parameters and the new values in the request. To learn what modifications you can make to your DB instance, callDescribeValidDBInstanceModifications before you call ModifyDBInstance.
|
|
| ModifyDBParameterGroup |
Show DescriptionModifies the parameters of a DB parameter group. To modify more than one parameter, submit a list of the following:ParameterName, ParameterValue, and ApplyMethod. A maximum of 20 parameters can be modified in a single request. character_set_database parameter. You can use the Parameter Groups option of the Amazon RDS console or the DescribeDBParameters command to verify that your DB parameter group has been created or modified. |
|
| ModifyDBProxy |
Show DescriptionChanges the settings for an existing DB proxy. |
|
| ModifyDBProxyEndpoint |
Show DescriptionChanges the settings for an existing DB proxy endpoint. |
|
| ModifyDBProxyTargetGroup |
Show DescriptionModifies the properties of aDBProxyTargetGroup.
|
|
| ModifyDBSnapshot |
Show DescriptionUpdates a manual DB snapshot with a new engine version. The snapshot can be encrypted or unencrypted, but not shared or public. Amazon RDS supports upgrading DB snapshots for MySQL, PostgreSQL, and Oracle. This command doesn't apply to RDS Custom. |
|
| ModifyDBSnapshotAttribute |
Show DescriptionAdds an attribute and values to, or removes an attribute and values from, a manual DB snapshot. To share a manual DB snapshot with other Amazon Web Services accounts, specifyrestore as the AttributeName and use the ValuesToAdd parameter to add a list of IDs of the Amazon Web Services accounts that are authorized to restore the manual DB snapshot. Uses the value all to make the manual DB snapshot public, which means it can be copied or restored by all Amazon Web Services accounts. all value for any manual DB snapshots that contain private information that you don't want available to all Amazon Web Services accounts. ValuesToAdd parameter. You can't use all as a value for that parameter in this case. To view which Amazon Web Services accounts have access to copy or restore a manual DB snapshot, or whether a manual DB snapshot public or private, use the DescribeDBSnapshotAttributes API action. The accounts are returned as values for the restore attribute.
|
|
| ModifyDBSubnetGroup |
Show DescriptionModifies an existing DB subnet group. DB subnet groups must contain at least one subnet in at least two AZs in the Amazon Web Services Region. |
|
| ModifyEventSubscription |
Show DescriptionModifies an existing RDS event notification subscription. You can't modify the source identifiers using this call. To change source identifiers for a subscription, use theAddSourceIdentifierToSubscription and RemoveSourceIdentifierFromSubscription calls. You can see a list of the event categories for a given source type (SourceType) in Events in the Amazon RDS User Guide or by using the DescribeEventCategories operation.
|
|
| ModifyGlobalCluster |
Show DescriptionModify a setting for an Amazon Aurora global cluster. You can change one or more database configuration parameters by specifying these parameters and the new values in the request. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| ModifyOptionGroup |
Show DescriptionModifies an existing option group. |
|
| PromoteReadReplica |
Show DescriptionPromotes a read replica DB instance to a standalone DB instance.
|
|
| PromoteReadReplicaDBCluster |
Show DescriptionPromotes a read replica DB cluster to a standalone DB cluster. |
|
| PurchaseReservedDBInstancesOffering |
Show DescriptionPurchases a reserved DB instance offering. |
|
| RebootDBInstance |
Show DescriptionYou might need to reboot your DB instance, usually for maintenance reasons. For example, if you make certain modifications, or if you change the DB parameter group associated with the DB instance, you must reboot the instance for the changes to take effect. Rebooting a DB instance restarts the database engine service. Rebooting a DB instance results in a momentary outage, during which the DB instance status is set to rebooting. For more information about rebooting, see Rebooting a DB Instance in the Amazon RDS User Guide. This command doesn't apply to RDS Custom. |
|
| RegisterDBProxyTargets |
Show DescriptionAssociate one or moreDBProxyTarget data structures with a DBProxyTargetGroup.
|
|
| RemoveFromGlobalCluster |
Show DescriptionDetaches an Aurora secondary cluster from an Aurora global database cluster. The cluster becomes a standalone cluster with read-write capability instead of being read-only and receiving data from a primary cluster in a different region. |
|
| RemoveRoleFromDBCluster | ||
| RemoveRoleFromDBInstance | ||
| RemoveSourceIdentifierFromSubscription |
Show DescriptionRemoves a source identifier from an existing RDS event notification subscription. |
|
| RemoveTagsFromResource | ||
| ResetDBClusterParameterGroup |
Show DescriptionModifies the parameters of a DB cluster parameter group to the default value. To reset specific parameters submit a list of the following:ParameterName and ApplyMethod. To reset the entire DB cluster parameter group, specify the DBClusterParameterGroupName and ResetAllParameters parameters. When resetting the entire group, dynamic parameters are updated immediately and static parameters are set to pending-reboot to take effect on the next DB instance restart or RebootDBInstance request. You must call RebootDBInstance for every DB instance in your DB cluster that you want the updated static parameter to apply to. For more information on Amazon Aurora, see What Is Amazon Aurora? in the Amazon Aurora User Guide. |
|
| ResetDBParameterGroup |
Show DescriptionModifies the parameters of a DB parameter group to the engine/system default value. To reset specific parameters, provide a list of the following:ParameterName and ApplyMethod. To reset the entire DB parameter group, specify the DBParameterGroup name and ResetAllParameters parameters. When resetting the entire group, dynamic parameters are updated immediately and static parameters are set to pending-reboot to take effect on the next DB instance restart or RebootDBInstance request.
|
|
| RestoreDBClusterFromS3 |
Show DescriptionCreates an Amazon Aurora DB cluster from MySQL data stored in an Amazon S3 bucket. Amazon RDS must be authorized to access the Amazon S3 bucket and the data must be created using the Percona XtraBackup utility as described in Migrating Data from MySQL by Using an Amazon S3 Bucket in the Amazon Aurora User Guide.CreateDBInstance action to create DB instances for the restored DB cluster, specifying the identifier of the restored DB cluster in DBClusterIdentifier. You can create DB instances only after the RestoreDBClusterFromS3 action has completed and the DB cluster is available. |
|
| RestoreDBClusterFromSnapshot |
Show DescriptionCreates a new DB cluster from a DB snapshot or DB cluster snapshot. This action only applies to Aurora DB clusters. The target DB cluster is created from the source snapshot with a default configuration. If you don't specify a security group, the new DB cluster is associated with the default security group.CreateDBInstance action to create DB instances for the restored DB cluster, specifying the identifier of the restored DB cluster in DBClusterIdentifier. You can create DB instances only after the RestoreDBClusterFromSnapshot action has completed and the DB cluster is available. |
|
| RestoreDBClusterToPointInTime |
Show DescriptionRestores a DB cluster to an arbitrary point in time. Users can restore to any point in time beforeLatestRestorableTime for up to BackupRetentionPeriod days. The target DB cluster is created from the source DB cluster with the same configuration as the original DB cluster, except that the new DB cluster is created with the default DB security group. CreateDBInstance action to create DB instances for the restored DB cluster, specifying the identifier of the restored DB cluster in DBClusterIdentifier. You can create DB instances only after the RestoreDBClusterToPointInTime action has completed and the DB cluster is available. |
|
| RestoreDBInstanceFromDBSnapshot |
Show DescriptionCreates a new DB instance from a DB snapshot. The target database is created from the source database restore point with most of the source's original configuration, including the default security group and DB parameter group. By default, the new DB instance is created as a Single-AZ deployment, except when the instance is a SQL Server instance that has an option group associated with mirroring. In this case, the instance becomes a Multi-AZ deployment, not a Single-AZ deployment. If you want to replace your original DB instance with the new, restored DB instance, then rename your original DB instance before you call the RestoreDBInstanceFromDBSnapshot action. RDS doesn't allow two DB instances with the same name. After you have renamed your original DB instance with a different identifier, then you can pass the original name of the DB instance as the DBInstanceIdentifier in the call to the RestoreDBInstanceFromDBSnapshot action. The result is that you replace the original DB instance with the DB instance created from the snapshot. If you are restoring from a shared manual DB snapshot, theDBSnapshotIdentifier must be the ARN of the shared DB snapshot. RestoreDBClusterFromSnapshot. |
|
| RestoreDBInstanceFromS3 |
Show DescriptionAmazon Relational Database Service (Amazon RDS) supports importing MySQL databases by using backup files. You can create a backup of your on-premises database, store it on Amazon Simple Storage Service (Amazon S3), and then restore the backup file onto a new Amazon RDS DB instance running MySQL. For more information, see Importing Data into an Amazon RDS MySQL DB Instance in the Amazon RDS User Guide. This command doesn't apply to RDS Custom. |
|
| RestoreDBInstanceToPointInTime |
Show DescriptionRestores a DB instance to an arbitrary point in time. You can restore to any point in time before the time identified by the LatestRestorableTime property. You can restore to a point up to the number of days specified by the BackupRetentionPeriod property. The target database is created with most of the original configuration, but in a system-selected Availability Zone, with the default security group, the default subnet group, and the default DB parameter group. By default, the new DB instance is created as a single-AZ deployment except when the instance is a SQL Server instance that has an option group that is associated with mirroring; in this case, the instance becomes a mirrored deployment and not a single-AZ deployment.RestoreDBClusterToPointInTime. |
|
| RevokeDBSecurityGroupIngress |
Show DescriptionRevokes ingress from a DBSecurityGroup for previously authorized IP ranges or EC2 or VPC security groups. Required parameters for this API are one of CIDRIP, EC2SecurityGroupId for VPC, or (EC2SecurityGroupOwnerId and either EC2SecurityGroupName or EC2SecurityGroupId). |
|
| StartActivityStream |
Show DescriptionStarts a database activity stream to monitor activity on the database. For more information, see Database Activity Streams in the Amazon Aurora User Guide. |
|
| StartDBCluster |
Show DescriptionStarts an Amazon Aurora DB cluster that was stopped using the Amazon Web Services console, the stop-db-cluster CLI command, or the StopDBCluster action. For more information, see Stopping and Starting an Aurora Cluster in the Amazon Aurora User Guide. |
|
| StartDBInstance |
Show DescriptionStarts an Amazon RDS DB instance that was stopped using the Amazon Web Services console, the stop-db-instance CLI command, or the StopDBInstance action. For more information, see Starting an Amazon RDS DB instance That Was Previously Stopped in the Amazon RDS User Guide.StartDBCluster instead. |
|
| StartDBInstanceAutomatedBackupsReplication |
Show DescriptionEnables replication of automated backups to a different Amazon Web Services Region. This command doesn't apply to RDS Custom. For more information, see Replicating Automated Backups to Another Amazon Web Services Region in the Amazon RDS User Guide. |
|
| StartExportTask |
Show DescriptionStarts an export of a snapshot to Amazon S3. The provided IAM role must have access to the S3 bucket. This command doesn't apply to RDS Custom. |
|
| StopActivityStream |
Show DescriptionStops a database activity stream that was started using the Amazon Web Services console, thestart-activity-stream CLI command, or the StartActivityStream action. For more information, see Database Activity Streams in the Amazon Aurora User Guide.
|
|
| StopDBCluster |
Show DescriptionStops an Amazon Aurora DB cluster. When you stop a DB cluster, Aurora retains the DB cluster's metadata, including its endpoints and DB parameter groups. Aurora also retains the transaction logs so you can do a point-in-time restore if necessary. For more information, see Stopping and Starting an Aurora Cluster in the Amazon Aurora User Guide. |
|
| StopDBInstance |
Show DescriptionStops an Amazon RDS DB instance. When you stop a DB instance, Amazon RDS retains the DB instance's metadata, including its endpoint, DB parameter group, and option group membership. Amazon RDS also retains the transaction logs so you can do a point-in-time restore if necessary. For more information, see Stopping an Amazon RDS DB Instance Temporarily in the Amazon RDS User Guide.StopDBCluster instead. |
Redshift-data Events
| Service | Event Name | Description |
|---|---|---|
| redshift-data | BatchExecuteStatement |
Show DescriptionRuns one or more SQL statements, which can be data manipulation language (DML) or data definition language (DDL). Depending on the authorization method, use one of the following combinations of request parameters:
|
| CancelStatement |
Show DescriptionCancels a running query. To be canceled, a query must be running. |
|
| DescribeStatement |
Show DescriptionDescribes the details about a specific instance when a query was run by the Amazon Redshift Data API. The information includes when the query started, when it finished, the query status, the number of rows returned, and the SQL statement. |
|
| DescribeTable |
Show DescriptionDescribes the detailed information about a table from metadata in the cluster. The information includes its columns. A token is returned to page through the column list. Depending on the authorization method, use one of the following combinations of request parameters:
|
|
| ExecuteStatement |
Show DescriptionRuns an SQL statement, which can be data manipulation language (DML) or data definition language (DDL). This statement must be a single SQL statement. Depending on the authorization method, use one of the following combinations of request parameters:
|
|
| GetStatementResult |
Show DescriptionFetches the temporarily cached result of an SQL statement. A token is returned to page through the statement results. |
|
| ListDatabases |
Show DescriptionList the databases in a cluster. A token is returned to page through the database list. Depending on the authorization method, use one of the following combinations of request parameters:
|
|
| ListSchemas |
Show DescriptionLists the schemas in a database. A token is returned to page through the schema list. Depending on the authorization method, use one of the following combinations of request parameters:
|
|
| ListStatements |
Show DescriptionList of SQL statements. By default, only finished statements are shown. A token is returned to page through the statement list. |
Redshift Events
| Service | Event Name | Description |
|---|---|---|
| redshift | AcceptReservedNodeExchange |
Show DescriptionExchanges a DC1 Reserved Node for a DC2 Reserved Node with no changes to the configuration (term, payment type, or number of nodes) and no additional costs. |
| AddPartner |
Show DescriptionAdds a partner integration to a cluster. This operation authorizes a partner to push status updates for the specified database. To complete the integration, you also set up the integration on the partner website. |
|
| AssociateDataShareConsumer |
Show DescriptionFrom a datashare consumer account, associates a datashare with the account (AssociateEntireAccount) or the specified namespace (ConsumerArn). If you make this association, the consumer can consume the datashare. |
|
| AuthorizeClusterSecurityGroupIngress |
Show DescriptionAdds an inbound (ingress) rule to an Amazon Redshift security group. Depending on whether the application accessing your cluster is running on the Internet or an Amazon EC2 instance, you can authorize inbound access to either a Classless Interdomain Routing (CIDR)/Internet Protocol (IP) range or to an Amazon EC2 security group. You can add as many as 20 ingress rules to an Amazon Redshift security group. If you authorize access to an Amazon EC2 security group, specify EC2SecurityGroupName and EC2SecurityGroupOwnerId. The Amazon EC2 security group and Amazon Redshift cluster must be in the same Amazon Web Services Region. If you authorize access to a CIDR/IP address range, specify CIDRIP. For an overview of CIDR blocks, see the Wikipedia article on Classless Inter-Domain Routing. You must also associate the security group with a cluster so that clients running on these IP addresses or the EC2 instance are authorized to connect to the cluster. For information about managing security groups, go to Working with Security Groups in the Amazon Redshift Cluster Management Guide. |
|
| AuthorizeDataShare |
Show DescriptionFrom a data producer account, authorizes the sharing of a datashare with one or more consumer accounts. To authorize a datashare for a data consumer, the producer account must have the correct access privileges. |
|
| AuthorizeEndpointAccess |
Show DescriptionGrants access to a cluster. |
|
| AuthorizeSnapshotAccess |
Show DescriptionAuthorizes the specified Amazon Web Services account to restore the specified snapshot. For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide. |
|
| BatchDeleteClusterSnapshots |
Show DescriptionDeletes a set of cluster snapshots. |
|
| BatchModifyClusterSnapshots |
Show DescriptionModifies the settings for a set of cluster snapshots. |
|
| CancelResize |
Show DescriptionCancels a resize operation for a cluster. |
|
| CopyClusterSnapshot |
Show DescriptionCopies the specified automated cluster snapshot to a new manual cluster snapshot. The source must be an automated snapshot and it must be in the available state. When you delete a cluster, Amazon Redshift deletes any automated snapshots of the cluster. Also, when the retention period of the snapshot expires, Amazon Redshift automatically deletes it. If you want to keep an automated snapshot for a longer period, you can make a manual copy of the snapshot. Manual snapshots are retained until you delete them. For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide. |
|
| CreateAuthenticationProfile |
Show DescriptionCreates an authentication profile with the specified parameters. |
|
| CreateCluster |
Show DescriptionCreates a new cluster with the specified parameters. To create a cluster in Virtual Private Cloud (VPC), you must provide a cluster subnet group name. The cluster subnet group identifies the subnets of your VPC that Amazon Redshift uses when creating the cluster. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide. |
|
| CreateClusterParameterGroup |
Show DescriptionCreates an Amazon Redshift parameter group. Creating parameter groups is independent of creating clusters. You can associate a cluster with a parameter group when you create the cluster. You can also associate an existing cluster with a parameter group after the cluster is created by using ModifyCluster. Parameters in the parameter group define specific behavior that applies to the databases you create on the cluster. For more information about parameters and parameter groups, go to Amazon Redshift Parameter Groups in the Amazon Redshift Cluster Management Guide. |
|
| CreateClusterSecurityGroup |
Show DescriptionCreates a new Amazon Redshift security group. You use security groups to control access to non-VPC clusters. For information about managing security groups, go to Amazon Redshift Cluster Security Groups in the Amazon Redshift Cluster Management Guide. |
|
| CreateClusterSnapshot |
Show DescriptionCreates a manual snapshot of the specified cluster. The cluster must be in theavailable state. For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide.
|
|
| CreateClusterSubnetGroup |
Show DescriptionCreates a new Amazon Redshift subnet group. You must provide a list of one or more subnets in your existing Amazon Virtual Private Cloud (Amazon VPC) when creating Amazon Redshift subnet group. For information about subnet groups, go to Amazon Redshift Cluster Subnet Groups in the Amazon Redshift Cluster Management Guide. |
|
| CreateEndpointAccess |
Show DescriptionCreates a Redshift-managed VPC endpoint. |
|
| CreateEventSubscription |
Show DescriptionCreates an Amazon Redshift event notification subscription. This action requires an ARN (Amazon Resource Name) of an Amazon SNS topic created by either the Amazon Redshift console, the Amazon SNS console, or the Amazon SNS API. To obtain an ARN with Amazon SNS, you must create a topic in Amazon SNS and subscribe to the topic. The ARN is displayed in the SNS console. You can specify the source type, and lists of Amazon Redshift source IDs, event categories, and event severities. Notifications will be sent for all events you want that match those criteria. For example, you can specify source type = cluster, source ID = my-cluster-1 and mycluster2, event categories = Availability, Backup, and severity = ERROR. The subscription will only send notifications for those ERROR events in the Availability and Backup categories for the specified clusters. If you specify both the source type and source IDs, such as source type = cluster and source identifier = my-cluster-1, notifications will be sent for all the cluster events for my-cluster-1. If you specify a source type but do not specify a source identifier, you will receive notice of the events for the objects of that type in your Amazon Web Services account. If you do not specify either the SourceType nor the SourceIdentifier, you will be notified of events generated from all Amazon Redshift sources belonging to your Amazon Web Services account. You must specify a source type if you specify a source ID. |
|
| CreateHsmClientCertificate |
Show DescriptionCreates an HSM client certificate that an Amazon Redshift cluster will use to connect to the client's HSM in order to store and retrieve the keys used to encrypt the cluster databases. The command returns a public key, which you must store in the HSM. In addition to creating the HSM certificate, you must create an Amazon Redshift HSM configuration that provides a cluster the information needed to store and use encryption keys in the HSM. For more information, go to Hardware Security Modules in the Amazon Redshift Cluster Management Guide. |
|
| CreateHsmConfiguration |
Show DescriptionCreates an HSM configuration that contains the information required by an Amazon Redshift cluster to store and use database encryption keys in a Hardware Security Module (HSM). After creating the HSM configuration, you can specify it as a parameter when creating a cluster. The cluster will then store its encryption keys in the HSM. In addition to creating an HSM configuration, you must also create an HSM client certificate. For more information, go to Hardware Security Modules in the Amazon Redshift Cluster Management Guide. |
|
| CreateScheduledAction |
Show DescriptionCreates a scheduled action. A scheduled action contains a schedule and an Amazon Redshift API action. For example, you can create a schedule of when to run theResizeCluster API operation.
|
|
| CreateSnapshotCopyGrant |
Show DescriptionCreates a snapshot copy grant that permits Amazon Redshift to use a customer master key (CMK) from Key Management Service (KMS) to encrypt copied snapshots in a destination region. For more information about managing snapshot copy grants, go to Amazon Redshift Database Encryption in the Amazon Redshift Cluster Management Guide. |
|
| CreateSnapshotSchedule |
Show DescriptionCreate a snapshot schedule that can be associated to a cluster and which overrides the default system backup schedule. |
|
| CreateTags | ||
| CreateUsageLimit |
Show DescriptionCreates a usage limit for a specified Amazon Redshift feature on a cluster. The usage limit is identified by the returned usage limit identifier. |
|
| DeauthorizeDataShare |
Show DescriptionFrom the producer account, removes authorization from the specified datashare. |
|
| DeleteAuthenticationProfile |
Show DescriptionDeletes an authentication profile. |
|
| DeleteCluster |
Show DescriptionDeletes a previously provisioned cluster without its final snapshot being created. A successful response from the web service indicates that the request was received correctly. Use DescribeClusters to monitor the status of the deletion. The delete operation cannot be canceled or reverted once submitted. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide. If you want to shut down the cluster and retain it for future use, set SkipFinalClusterSnapshot tofalse and specify a name for FinalClusterSnapshotIdentifier. You can later restore this snapshot to resume using the cluster. If a final cluster snapshot is requested, the status of the cluster will be "final-snapshot" while the snapshot is being taken, then it's "deleting" once Amazon Redshift begins deleting the cluster. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide.
|
|
| DeleteClusterParameterGroup | ||
| DeleteClusterSecurityGroup | ||
| DeleteClusterSnapshot |
Show DescriptionDeletes the specified manual snapshot. The snapshot must be in theavailable state, with no other users authorized to access the snapshot. Unlike automated snapshots, manual snapshots are retained even after you delete your cluster. Amazon Redshift does not delete your manual snapshots. You must delete manual snapshot explicitly to avoid getting charged. If other accounts are authorized to access the snapshot, you must revoke all of the authorizations before you can delete the snapshot.
|
|
| DeleteClusterSubnetGroup | ||
| DeleteEndpointAccess |
Show DescriptionDeletes a Redshift-managed VPC endpoint. |
|
| DeleteEventSubscription | ||
| DeleteHsmClientCertificate | ||
| DeleteHsmConfiguration | ||
| DeletePartner |
Show DescriptionDeletes a partner integration from a cluster. Data can still flow to the cluster until the integration is deleted at the partner's website. |
|
| DeleteScheduledAction | ||
| DeleteSnapshotCopyGrant | ||
| DeleteSnapshotSchedule | ||
| DeleteTags | ||
| DeleteUsageLimit | ||
| DescribeAccountAttributes |
Show DescriptionReturns a list of attributes attached to an account |
|
| DescribeAuthenticationProfiles |
Show DescriptionDescribes an authentication profile. |
|
| DescribeClusterDbRevisions |
Show DescriptionReturns an array ofClusterDbRevision objects.
|
|
| DescribeClusterParameterGroups |
Show DescriptionReturns a list of Amazon Redshift parameter groups, including parameter groups you created and the default parameter group. For each parameter group, the response includes the parameter group name, description, and parameter group family name. You can optionally specify a name to retrieve the description of a specific parameter group. For more information about parameters and parameter groups, go to Amazon Redshift Parameter Groups in the Amazon Redshift Cluster Management Guide. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all parameter groups that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all parameter groups that have any combination of those values are returned. If both tag keys and values are omitted from the request, parameter groups are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeClusterParameters |
Show DescriptionReturns a detailed list of parameters contained within the specified Amazon Redshift parameter group. For each parameter the response includes information such as parameter name, description, data type, value, whether the parameter value is modifiable, and so on. You can specify source filter to retrieve parameters of only specific type. For example, to retrieve parameters that were modified by a user action such as from ModifyClusterParameterGroup, you can specify source equal to user. For more information about parameters and parameter groups, go to Amazon Redshift Parameter Groups in the Amazon Redshift Cluster Management Guide. |
|
| DescribeClusterSecurityGroups |
Show DescriptionReturns information about Amazon Redshift security groups. If the name of a security group is specified, the response will contain only information about only that security group. For information about managing security groups, go to Amazon Redshift Cluster Security Groups in the Amazon Redshift Cluster Management Guide. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all security groups that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all security groups that have any combination of those values are returned. If both tag keys and values are omitted from the request, security groups are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeClusterSnapshots |
Show DescriptionReturns one or more snapshot objects, which contain metadata about your cluster snapshots. By default, this operation returns information about all snapshots of all clusters that are owned by your Amazon Web Services account. No information is returned for snapshots owned by inactive Amazon Web Services accounts. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all snapshots that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all snapshots that have any combination of those values are returned. Only snapshots that you own are returned in the response; shared snapshots are not returned with the tag key and tag value request parameters. If both tag keys and values are omitted from the request, snapshots are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeClusterSubnetGroups |
Show DescriptionReturns one or more cluster subnet group objects, which contain metadata about your cluster subnet groups. By default, this operation returns information about all cluster subnet groups that are defined in your Amazon Web Services account. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all subnet groups that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all subnet groups that have any combination of those values are returned. If both tag keys and values are omitted from the request, subnet groups are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeClusterTracks |
Show DescriptionReturns a list of all the available maintenance tracks. |
|
| DescribeClusterVersions |
Show DescriptionReturns descriptions of the available Amazon Redshift cluster versions. You can call this operation even before creating any clusters to learn more about the Amazon Redshift versions. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide. |
|
| DescribeClusters |
Show DescriptionReturns properties of provisioned clusters including general cluster properties, cluster database properties, maintenance and backup properties, and security and access properties. This operation supports pagination. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all clusters that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all clusters that have any combination of those values are returned. If both tag keys and values are omitted from the request, clusters are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeDataShares |
Show DescriptionShows the status of any inbound or outbound datashares available in the specified account. |
|
| DescribeDataSharesForConsumer |
Show DescriptionReturns a list of datashares where the account identifier being called is a consumer account identifier. |
|
| DescribeDataSharesForProducer |
Show DescriptionReturns a list of datashares when the account identifier being called is a producer account identifier. |
|
| DescribeDefaultClusterParameters |
Show DescriptionReturns a list of parameter settings for the specified parameter group family. For more information about parameters and parameter groups, go to Amazon Redshift Parameter Groups in the Amazon Redshift Cluster Management Guide. |
|
| DescribeEndpointAccess |
Show DescriptionDescribes a Redshift-managed VPC endpoint. |
|
| DescribeEndpointAuthorization |
Show DescriptionDescribes an endpoint authorization. |
|
| DescribeEventCategories |
Show DescriptionDisplays a list of event categories for all event source types, or for a specified source type. For a list of the event categories and source types, go to Amazon Redshift Event Notifications. |
|
| DescribeEventSubscriptions |
Show DescriptionLists descriptions of all the Amazon Redshift event notification subscriptions for a customer account. If you specify a subscription name, lists the description for that subscription. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all event notification subscriptions that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all subscriptions that have any combination of those values are returned. If both tag keys and values are omitted from the request, subscriptions are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeEvents |
Show DescriptionReturns events related to clusters, security groups, snapshots, and parameter groups for the past 14 days. Events specific to a particular cluster, security group, snapshot or parameter group can be obtained by providing the name as a parameter. By default, the past hour of events are returned. |
|
| DescribeHsmClientCertificates |
Show DescriptionReturns information about the specified HSM client certificate. If no certificate ID is specified, returns information about all the HSM certificates owned by your Amazon Web Services account. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all HSM client certificates that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all HSM client certificates that have any combination of those values are returned. If both tag keys and values are omitted from the request, HSM client certificates are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeHsmConfigurations |
Show DescriptionReturns information about the specified Amazon Redshift HSM configuration. If no configuration ID is specified, returns information about all the HSM configurations owned by your Amazon Web Services account. If you specify both tag keys and tag values in the same request, Amazon Redshift returns all HSM connections that match any combination of the specified keys and values. For example, if you haveowner and environment for tag keys, and admin and test for tag values, all HSM connections that have any combination of those values are returned. If both tag keys and values are omitted from the request, HSM connections are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeLoggingStatus |
Show DescriptionDescribes whether information, such as queries and connection attempts, is being logged for the specified Amazon Redshift cluster. |
|
| DescribeNodeConfigurationOptions |
Show DescriptionReturns properties of possible node configurations such as node type, number of nodes, and disk usage for the specified action type. |
|
| DescribeOrderableClusterOptions |
Show DescriptionReturns a list of orderable cluster options. Before you create a new cluster you can use this operation to find what options are available, such as the EC2 Availability Zones (AZ) in the specific Amazon Web Services Region that you can specify, and the node types you can request. The node types differ by available storage, memory, CPU and price. With the cost involved you might want to obtain a list of cluster options in the specific region and specify values when creating a cluster. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide. |
|
| DescribePartners |
Show DescriptionReturns information about the partner integrations defined for a cluster. |
|
| DescribeReservedNodeOfferings |
Show DescriptionReturns a list of the available reserved node offerings by Amazon Redshift with their descriptions including the node type, the fixed and recurring costs of reserving the node and duration the node will be reserved for you. These descriptions help you determine which reserve node offering you want to purchase. You then use the unique offering ID in you call to PurchaseReservedNodeOffering to reserve one or more nodes for your Amazon Redshift cluster. For more information about reserved node offerings, go to Purchasing Reserved Nodes in the Amazon Redshift Cluster Management Guide. |
|
| DescribeReservedNodes |
Show DescriptionReturns the descriptions of the reserved nodes. |
|
| DescribeResize |
Show DescriptionReturns information about the last resize operation for the specified cluster. If no resize operation has ever been initiated for the specified cluster, aHTTP 404 error is returned. If a resize operation was initiated and completed, the status of the resize remains as SUCCEEDED until the next resize. A resize operation can be requested using ModifyCluster and specifying a different number or type of nodes for the cluster.
|
|
| DescribeScheduledActions |
Show DescriptionDescribes properties of scheduled actions. |
|
| DescribeSnapshotCopyGrants |
Show DescriptionReturns a list of snapshot copy grants owned by the Amazon Web Services account in the destination region. For more information about managing snapshot copy grants, go to Amazon Redshift Database Encryption in the Amazon Redshift Cluster Management Guide. |
|
| DescribeSnapshotSchedules |
Show DescriptionReturns a list of snapshot schedules. |
|
| DescribeStorage |
Show DescriptionReturns account level backups storage size and provisional storage. |
|
| DescribeTableRestoreStatus |
Show DescriptionLists the status of one or more table restore requests made using the RestoreTableFromClusterSnapshot API action. If you don't specify a value for theTableRestoreRequestId parameter, then DescribeTableRestoreStatus returns the status of all table restore requests ordered by the date and time of the request in ascending order. Otherwise DescribeTableRestoreStatus returns the status of the table specified by TableRestoreRequestId.
|
|
| DescribeTags |
Show DescriptionReturns a list of tags. You can return tags from a specific resource by specifying an ARN, or you can return all tags for a given type of resource, such as clusters, snapshots, and so on. The following are limitations forDescribeTags:
owner and environment for tag keys, and admin and test for tag values, all resources that have any combination of those values are returned. If both tag keys and values are omitted from the request, resources are returned regardless of whether they have tag keys or values associated with them.
|
|
| DescribeUsageLimits |
Show DescriptionShows usage limits on a cluster. Results are filtered based on the combination of input usage limit identifier, cluster identifier, and feature type parameters:
|
|
| DisableLogging |
Show DescriptionStops logging information, such as queries and connection attempts, for the specified Amazon Redshift cluster. |
|
| DisableSnapshotCopy |
Show DescriptionDisables the automatic copying of snapshots from one region to another region for a specified cluster. If your cluster and its snapshots are encrypted using a customer master key (CMK) from Key Management Service, use DeleteSnapshotCopyGrant to delete the grant that grants Amazon Redshift permission to the CMK in the destination region. |
|
| DisassociateDataShareConsumer |
Show DescriptionFrom a consumer account, remove association for the specified datashare. |
|
| EnableLogging |
Show DescriptionStarts logging information, such as queries and connection attempts, for the specified Amazon Redshift cluster. |
|
| EnableSnapshotCopy |
Show DescriptionEnables the automatic copy of snapshots from one region to another region for a specified cluster. |
|
| GetClusterCredentials |
Show DescriptionReturns a database user name and temporary password with temporary authorization to log on to an Amazon Redshift database. The action returns the database user name prefixed withIAM: if AutoCreate is False or IAMA: if AutoCreate is True. You can optionally specify one or more database user groups that the user will join at log on. By default, the temporary credentials expire in 900 seconds. You can optionally specify a duration between 900 seconds (15 minutes) and 3600 seconds (60 minutes). For more information, see Using IAM Authentication to Generate Database User Credentials in the Amazon Redshift Cluster Management Guide. The Identity and Access Management (IAM) user or role that runs GetClusterCredentials must have an IAM policy attached that allows access to all necessary actions and resources. For more information about permissions, see Resource Policies for GetClusterCredentials in the Amazon Redshift Cluster Management Guide. If the DbGroups parameter is specified, the IAM policy must allow the redshift:JoinGroup action with access to the listed dbgroups. In addition, if the AutoCreate parameter is set to True, then the policy must include the redshift:CreateClusterUser privilege. If the DbName parameter is specified, the IAM policy must allow access to the resource dbname for the specified database name.
|
|
| GetReservedNodeExchangeOfferings |
Show DescriptionReturns an array of DC2 ReservedNodeOfferings that matches the payment type, term, and usage price of the given DC1 reserved node. |
|
| ModifyAquaConfiguration |
Show DescriptionModifies whether a cluster can use AQUA (Advanced Query Accelerator). |
|
| ModifyAuthenticationProfile |
Show DescriptionModifies an authentication profile. |
|
| ModifyCluster |
Show DescriptionModifies the settings for a cluster. You can also change node type and the number of nodes to scale up or down the cluster. When resizing a cluster, you must specify both the number of nodes and the node type even if one of the parameters does not change. You can add another security or parameter group, or change the admin user password. Resetting a cluster password or modifying the security groups associated with a cluster do not need a reboot. However, modifying a parameter group requires a reboot for parameters to take effect. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide. |
|
| ModifyClusterDbRevision |
Show DescriptionModifies the database revision of a cluster. The database revision is a unique revision of the database running in a cluster. |
|
| ModifyClusterIamRoles |
Show DescriptionModifies the list of Identity and Access Management (IAM) roles that can be used by the cluster to access other Amazon Web Services services. A cluster can have up to 10 IAM roles associated at any time. |
|
| ModifyClusterMaintenance |
Show DescriptionModifies the maintenance settings of a cluster. |
|
| ModifyClusterParameterGroup |
Show DescriptionModifies the parameters of a parameter group. For the parameters parameter, it can't contain ASCII characters. For more information about parameters and parameter groups, go to Amazon Redshift Parameter Groups in the Amazon Redshift Cluster Management Guide. |
|
| ModifyClusterSnapshot |
Show DescriptionModifies the settings for a snapshot. This exanmple modifies the manual retention period setting for a cluster snapshot. |
|
| ModifyClusterSnapshotSchedule | ||
| ModifyClusterSubnetGroup |
Show DescriptionModifies a cluster subnet group to include the specified list of VPC subnets. The operation replaces the existing list of subnets with the new list of subnets. |
|
| ModifyEndpointAccess |
Show DescriptionModifies a Redshift-managed VPC endpoint. |
|
| ModifyEventSubscription |
Show DescriptionModifies an existing Amazon Redshift event notification subscription. |
|
| ModifyScheduledAction |
Show DescriptionModifies a scheduled action. |
|
| ModifySnapshotCopyRetentionPeriod |
Show DescriptionModifies the number of days to retain snapshots in the destination Amazon Web Services Region after they are copied from the source Amazon Web Services Region. By default, this operation only changes the retention period of copied automated snapshots. The retention periods for both new and existing copied automated snapshots are updated with the new retention period. You can set the manual option to change only the retention periods of copied manual snapshots. If you set this option, only newly copied manual snapshots have the new retention period. |
|
| ModifySnapshotSchedule |
Show DescriptionModifies a snapshot schedule. Any schedule associated with a cluster is modified asynchronously. |
|
| ModifyUsageLimit |
Show DescriptionModifies a usage limit in a cluster. You can't modify the feature type or period of a usage limit. |
|
| PauseCluster |
Show DescriptionPauses a cluster. |
|
| PurchaseReservedNodeOffering |
Show DescriptionAllows you to purchase reserved nodes. Amazon Redshift offers a predefined set of reserved node offerings. You can purchase one or more of the offerings. You can call the DescribeReservedNodeOfferings API to obtain the available reserved node offerings. You can call this API by providing a specific reserved node offering and the number of nodes you want to reserve. For more information about reserved node offerings, go to Purchasing Reserved Nodes in the Amazon Redshift Cluster Management Guide. |
|
| RebootCluster |
Show DescriptionReboots a cluster. This action is taken as soon as possible. It results in a momentary outage to the cluster, during which the cluster status is set torebooting. A cluster event is created when the reboot is completed. Any pending cluster modifications (see ModifyCluster) are applied at this reboot. For more information about managing clusters, go to Amazon Redshift Clusters in the Amazon Redshift Cluster Management Guide.
|
|
| RejectDataShare |
Show DescriptionFrom the consumer account, rejects the specified datashare. |
|
| ResetClusterParameterGroup |
Show DescriptionSets one or more parameters of the specified parameter group to their default values and sets the source values of the parameters to "engine-default". To reset the entire parameter group specify the ResetAllParameters parameter. For parameter changes to take effect you must reboot any associated clusters. |
|
| ResizeCluster |
Show DescriptionChanges the size of the cluster. You can change the cluster's type, or change the number or type of nodes. The default behavior is to use the elastic resize method. With an elastic resize, your cluster is available for read and write operations more quickly than with the classic resize method. Elastic resize operations have the following restrictions:
|
|
| RestoreFromClusterSnapshot |
Show DescriptionCreates a new cluster from a snapshot. By default, Amazon Redshift creates the resulting cluster with the same configuration as the original cluster from which the snapshot was created, except that the new cluster is created with the default cluster security and parameter groups. After Amazon Redshift creates the cluster, you can use the ModifyCluster API to associate a different security group and different parameter group with the restored cluster. If you are using a DS node type, you can also choose to change to another DS node type of the same size during restore. If you restore a cluster into a VPC, you must provide a cluster subnet group where you want the cluster restored. For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide. |
|
| RestoreTableFromClusterSnapshot |
Show DescriptionCreates a new table from a table in an Amazon Redshift cluster snapshot. You must create the new table within the Amazon Redshift cluster that the snapshot was taken from. You cannot useRestoreTableFromClusterSnapshot to restore a table with the same name as an existing table in an Amazon Redshift cluster. That is, you cannot overwrite an existing table in a cluster with a restored table. If you want to replace your original table with a new, restored table, then rename or drop your original table before you call RestoreTableFromClusterSnapshot. When you have renamed your original table, then you can pass the original name of the table as the NewTableName parameter value in the call to RestoreTableFromClusterSnapshot. This way, you can replace the original table with the table created from the snapshot.
|
|
| ResumeCluster |
Show DescriptionResumes a paused cluster. |
|
| RevokeClusterSecurityGroupIngress |
Show DescriptionRevokes an ingress rule in an Amazon Redshift security group for a previously authorized IP range or Amazon EC2 security group. To add an ingress rule, see AuthorizeClusterSecurityGroupIngress. For information about managing security groups, go to Amazon Redshift Cluster Security Groups in the Amazon Redshift Cluster Management Guide. |
|
| RevokeEndpointAccess |
Show DescriptionRevokes access to a cluster. |
|
| RevokeSnapshotAccess |
Show DescriptionRemoves the ability of the specified Amazon Web Services account to restore the specified snapshot. If the account is currently restoring the snapshot, the restore will run to completion. For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide. |
|
| RotateEncryptionKey |
Show DescriptionRotates the encryption keys for a cluster. |
Rekognition Events
| Service | Event Name | Description |
|---|---|---|
| rekognition | CompareFaces |
Show DescriptionCompares a face in the source input image with each of the 100 largest faces detected in the target input image. If the source image contains multiple faces, the service detects the largest face and compares it with each face detected in the target image.CompareFaces to make a decision that impacts an individual's rights, privacy, or access to services, we recommend that you pass the result to a human for review and further validation before taking action. SimilarityThreshold parameter. CompareFaces also returns an array of faces that don't match the source image. For each face, it returns a bounding box, confidence value, landmarks, pose details, and quality. The response also returns information about the face in the source image, including the bounding box of the face and confidence value. The QualityFilter input parameter allows you to filter out detected faces that don’t meet a required quality bar. The quality bar is based on a variety of common use cases. Use QualityFilter to set the quality bar by specifying LOW, MEDIUM, or HIGH. If you do not want to filter detected faces, specify NONE. The default value is NONE. If the image doesn't contain Exif metadata, CompareFaces returns orientation information for the source and target images. Use these values to display the images with the correct image orientation. If no faces are detected in the source or target images, CompareFaces returns an InvalidParameterException error. rekognition:CompareFaces action.
|
| CreateCollection |
Show DescriptionCreates a collection in an AWS Region. You can add faces to the collection using the IndexFaces operation. For example, you might create collections, one for each of your application users. A user can then index faces using theIndexFaces operation and persist results in a specific collection. Then, a user can search the collection for faces in the user-specific container. When you create a collection, it is associated with the latest version of the face model version. rekognition:CreateCollection action. If you want to tag your collection, you also require permission to perform the rekognition:TagResource operation.
|
|
| CreateDataset |
Show DescriptionCreates a new Amazon Rekognition Custom Labels dataset. You can create a dataset by using an Amazon Sagemaker format manifest file or by copying an existing Amazon Rekognition Custom Labels dataset. To create a training dataset for a project, specifytrain for the value of DatasetType. To create the test dataset for a project, specify test for the value of DatasetType. The response from CreateDataset is the Amazon Resource Name (ARN) for the dataset. Creating a dataset takes a while to complete. Use DescribeDataset to check the current status. The dataset created successfully if the value of Status is CREATE_COMPLETE. To check if any non-terminal errors occurred, call ListDatasetEntries and check for the presence of errors lists in the JSON Lines. Dataset creation fails if a terminal error occurs (Status = CREATE_FAILED). Currently, you can't access the terminal error information. For more information, see Creating dataset in the Amazon Rekognition Custom Labels Developer Guide. This operation requires permissions to perform the rekognition:CreateDataset action. If you want to copy an existing dataset, you also require permission to perform the rekognition:ListDatasetEntries action.
|
|
| CreateProject |
Show DescriptionCreates a new Amazon Rekognition Custom Labels project. A project is a group of resources (datasets, model versions) that you use to create and manage Amazon Rekognition Custom Labels models. This operation requires permissions to perform therekognition:CreateProject action.
|
|
| CreateProjectVersion |
Show DescriptionCreates a new version of a model and begins training. Models are managed as part of an Amazon Rekognition Custom Labels project. The response fromCreateProjectVersion is an Amazon Resource Name (ARN) for the version of the model. Training uses the training and test datasets associated with the project. For more information, see Creating training and test dataset in the Amazon Rekognition Custom Labels Developer Guide. TrainingData and TestingData fields. If you open the console after training a model with manifest files, Amazon Rekognition Custom Labels creates the datasets for you using the most recent manifest files. You can no longer train a model version for the project by specifying manifest files. Instead of training with a project without associated datasets, we recommend that you use the manifest files to create training and test datasets for the project. Status field is TRAINING_COMPLETED. If training fails, see Debugging a failed model training in the Amazon Rekognition Custom Labels developer guide. Once training has successfully completed, call DescribeProjectVersions to get the training results and evaluate the model. For more information, see Improving a trained Amazon Rekognition Custom Labels model in the Amazon Rekognition Custom Labels developers guide. After evaluating the model, you start the model by calling StartProjectVersion. This operation requires permissions to perform the rekognition:CreateProjectVersion action.
|
|
| CreateStreamProcessor |
Show DescriptionCreates an Amazon Rekognition stream processor that you can use to detect and recognize faces in a streaming video. Amazon Rekognition Video is a consumer of live video from Amazon Kinesis Video Streams. Amazon Rekognition Video sends analysis results to Amazon Kinesis Data Streams. You provide as input a Kinesis video stream (Input) and a Kinesis data stream (Output) stream. You also specify the face recognition criteria in Settings. For example, the collection containing faces that you want to recognize. Use Name to assign an identifier for the stream processor. You use Name to manage the stream processor. For example, you can start processing the source video by calling StartStreamProcessor with the Name field. After you have finished analyzing a streaming video, use StopStreamProcessor to stop processing. You can delete the stream processor by calling DeleteStreamProcessor. This operation requires permissions to perform the rekognition:CreateStreamProcessor action. If you want to tag your stream processor, you also require permission to perform the rekognition:TagResource operation.
|
|
| DeleteCollection |
Show DescriptionDeletes the specified collection. Note that this operation removes all faces in the collection. For an example, see delete-collection-procedure. This operation requires permissions to perform therekognition:DeleteCollection action.
|
|
| DeleteDataset |
Show DescriptionDeletes an existing Amazon Rekognition Custom Labels dataset. Deleting a dataset might take while. Use DescribeDataset to check the current status. The dataset is still deleting if the value ofStatus is DELETE_IN_PROGRESS. If you try to access the dataset after it is deleted, you get a ResourceNotFoundException exception. You can't delete a dataset while it is creating (Status = CREATE_IN_PROGRESS) or if the dataset is updating (Status = UPDATE_IN_PROGRESS). This operation requires permissions to perform the rekognition:DeleteDataset action.
|
|
| DeleteFaces |
Show DescriptionDeletes faces from a collection. You specify a collection ID and an array of face IDs to remove from the collection. This operation requires permissions to perform therekognition:DeleteFaces action.
|
|
| DeleteProject |
Show DescriptionDeletes an Amazon Rekognition Custom Labels project. To delete a project you must first delete all models associated with the project. To delete a model, see DeleteProjectVersion.DeleteProject is an asynchronous operation. To check if the project is deleted, call DescribeProjects. The project is deleted when the project no longer appears in the response. This operation requires permissions to perform the rekognition:DeleteProject action.
|
|
| DeleteProjectVersion |
Show DescriptionDeletes an Amazon Rekognition Custom Labels model. You can't delete a model if it is running or if it is training. To check the status of a model, use theStatus field returned from DescribeProjectVersions. To stop a running model call StopProjectVersion. If the model is training, wait until it finishes. This operation requires permissions to perform the rekognition:DeleteProjectVersion action.
|
|
| DeleteStreamProcessor |
Show DescriptionDeletes the stream processor identified byName. You assign the value for Name when you create the stream processor with CreateStreamProcessor. You might not be able to use the same name for a stream processor for a few seconds after calling DeleteStreamProcessor.
|
|
| DescribeCollection |
Show DescriptionDescribes the specified collection. You can useDescribeCollection to get information, such as the number of faces indexed into a collection and the version of the model used by the collection for face detection. For more information, see Describing a Collection in the Amazon Rekognition Developer Guide.
|
|
| DescribeDataset |
Show DescriptionDescribes an Amazon Rekognition Custom Labels dataset. You can get information such as the current status of a dataset and statistics about the images and labels in a dataset. This operation requires permissions to perform therekognition:DescribeDataset action.
|
|
| DescribeProjectVersions |
Show DescriptionLists and describes the versions of a model in an Amazon Rekognition Custom Labels project. You can specify up to 10 model versions inProjectVersionArns. If you don't specify a value, descriptions for all model versions in the project are returned. This operation requires permissions to perform the rekognition:DescribeProjectVersions action.
|
|
| DescribeProjects |
Show DescriptionGets information about your Amazon Rekognition Custom Labels projects. This operation requires permissions to perform therekognition:DescribeProjects action.
|
|
| DescribeStreamProcessor |
Show DescriptionProvides information about a stream processor created by CreateStreamProcessor. You can get information about the input and output streams, the input parameters for the face recognition being performed, and the current status of the stream processor. |
|
| DetectCustomLabels |
Show DescriptionDetects custom labels in a supplied image by using an Amazon Rekognition Custom Labels model. You specify which version of a model version to use by using theProjectVersionArn input parameter. You pass the input image as base64-encoded image bytes or as a reference to an image in an Amazon S3 bucket. If you use the AWS CLI to call Amazon Rekognition operations, passing image bytes is not supported. The image must be either a PNG or JPEG formatted file. For each object that the model version detects on an image, the API returns a (CustomLabel) object in an array (CustomLabels). Each CustomLabel object provides the label name (Name), the level of confidence that the image contains the object (Confidence), and object location information, if it exists, for the label on the image (Geometry). To filter labels that are returned, specify a value for MinConfidence. DetectCustomLabelsLabels only returns labels with a confidence that's higher than the specified value. The value of MinConfidence maps to the assumed threshold values created during training. For more information, see Assumed threshold in the Amazon Rekognition Custom Labels Developer Guide. Amazon Rekognition Custom Labels metrics expresses an assumed threshold as a floating point value between 0-1. The range of MinConfidence normalizes the threshold value to a percentage value (0-100). Confidence responses from DetectCustomLabels are also returned as a percentage. You can use MinConfidence to change the precision and recall or your model. For more information, see Analyzing an image in the Amazon Rekognition Custom Labels Developer Guide. If you don't specify a value for MinConfidence, DetectCustomLabels returns labels based on the assumed threshold of each label. This is a stateless API operation. That is, the operation does not persist any data. This operation requires permissions to perform the rekognition:DetectCustomLabels action. For more information, see Analyzing an image in the Amazon Rekognition Custom Labels Developer Guide.
|
|
| DetectFaces |
Show DescriptionDetects faces within an image that is provided as input.DetectFaces detects the 100 largest faces in the image. For each face detected, the operation returns face details. These details include a bounding box of the face, a confidence value (that the bounding box contains a face), and a fixed set of attributes such as facial landmarks (for example, coordinates of eye and mouth), presence of beard, sunglasses, and so on. The face-detection algorithm is most effective on frontal faces. For non-frontal or obscured faces, the algorithm might not detect the faces or might detect faces with lower confidence. You pass the input image either as base64-encoded image bytes or as a reference to an image in an Amazon S3 bucket. If you use the AWS CLI to call Amazon Rekognition operations, passing image bytes is not supported. The image must be either a PNG or JPEG formatted file. rekognition:DetectFaces action.
|
|
| DetectLabels |
Show DescriptionDetects instances of real-world entities within an image (JPEG or PNG) provided as input. This includes objects like flower, tree, and table; events like wedding, graduation, and birthday party; and concepts like landscape, evening, and nature. For an example, see Analyzing Images Stored in an Amazon S3 Bucket in the Amazon Rekognition Developer Guide.DetectLabels does not support the detection of activities. However, activity detection is supported for label detection in videos. For more information, see StartLabelDetection in the Amazon Rekognition Developer Guide. {Name: lighthouse, Confidence: 98.4629} {Name: rock,Confidence: 79.2097} {Name: sea,Confidence: 75.061} In the preceding example, the operation returns one label for each of the three objects. The operation can also return multiple labels for the same object in the image. For example, if the input image shows a flower (for example, a tulip), the operation might return the following three labels. {Name: flower,Confidence: 99.0562} {Name: plant,Confidence: 99.0562} {Name: tulip,Confidence: 99.0562} In this example, the detection algorithm more precisely identifies the flower as a tulip. In response, the API returns an array of labels. In addition, the response also includes the orientation correction. Optionally, you can specify MinConfidence to control the confidence threshold for the labels returned. The default is 55%. You can also add the MaxLabels parameter to limit the number of labels returned. DetectLabels returns bounding boxes for instances of common object labels in an array of Instance objects. An Instance object contains a BoundingBox object, for the location of the label on the image. It also includes the confidence by which the bounding box was detected. DetectLabels also returns a hierarchical taxonomy of detected labels. For example, a detected car might be assigned the label car. The label car has two parent labels: Vehicle (its parent) and Transportation (its grandparent). The response returns the entire list of ancestors for a label. Each ancestor is a unique label in the response. In the previous example, Car, Vehicle, and Transportation are returned as unique labels in the response. This is a stateless API operation. That is, the operation does not persist any data. This operation requires permissions to perform the rekognition:DetectLabels action.
|
|
| DetectModerationLabels |
Show DescriptionDetects unsafe content in a specified JPEG or PNG format image. UseDetectModerationLabels to moderate images depending on your requirements. For example, you might want to filter images that contain nudity, but not images containing suggestive content. To filter images, use the labels returned by DetectModerationLabels to determine which types of content are appropriate. For information about moderation labels, see Detecting Unsafe Content in the Amazon Rekognition Developer Guide. You pass the input image either as base64-encoded image bytes or as a reference to an image in an Amazon S3 bucket. If you use the AWS CLI to call Amazon Rekognition operations, passing image bytes is not supported. The image must be either a PNG or JPEG formatted file.
|
|
| DetectProtectiveEquipment |
Show DescriptionDetects Personal Protective Equipment (PPE) worn by people detected in an image. Amazon Rekognition can detect the following types of PPE.
DetectProtectiveEquipment detects PPE worn by up to 15 persons detected in an image. For each person detected in the image the API returns an array of body parts (face, head, left-hand, right-hand). For each body part, an array of detected items of PPE is returned, including an indicator of whether or not the PPE covers the body part. The API returns the confidence it has in each detection (person, PPE, body part and body part coverage). It also returns a bounding box (BoundingBox) for each detected person and each detected item of PPE. You can optionally request a summary of detected PPE items with the SummarizationAttributes input parameter. The summary provides the following information.
rekognition:DetectProtectiveEquipment action.
|
|
| DetectText |
Show DescriptionDetects text in the input image and converts it into machine-readable text. Pass the input image as base64-encoded image bytes or as a reference to an image in an Amazon S3 bucket. If you use the AWS CLI to call Amazon Rekognition operations, you must pass it as a reference to an image in an Amazon S3 bucket. For the AWS CLI, passing image bytes is not supported. The image must be either a .png or .jpeg formatted file. TheDetectText operation returns text in an array of TextDetection elements, TextDetections. Each TextDetection element provides information about a single word or line of text that was detected in the image. A word is one or more ISO basic latin script characters that are not separated by spaces. DetectText can detect up to 100 words in an image. A line is a string of equally spaced words. A line isn't necessarily a complete sentence. For example, a driver's license number is detected as a line. A line ends when there is no aligned text after it. Also, a line ends when there is a large gap between words, relative to the length of the words. This means, depending on the gap between words, Amazon Rekognition may detect multiple lines in text aligned in the same direction. Periods don't represent the end of a line. If a sentence spans multiple lines, the DetectText operation returns multiple lines. To determine whether a TextDetection element is a line of text or a word, use the TextDetection object Type field. To be detected, text must be within +/- 90 degrees orientation of the horizontal axis. For more information, see DetectText in the Amazon Rekognition Developer Guide.
|
|
| DistributeDatasetEntries |
Show DescriptionDistributes the entries (images) in a training dataset across the training dataset and the test dataset for a project.DistributeDatasetEntries moves 20% of the training dataset images to the test dataset. An entry is a JSON Line that describes an image. You supply the Amazon Resource Names (ARN) of a project's training dataset and test dataset. The training dataset must contain the images that you want to split. The test dataset must be empty. The datasets must belong to the same project. To create training and test datasets for a project, call CreateDataset. Distributing a dataset takes a while to complete. To check the status call DescribeDataset. The operation is complete when the Status field for the training dataset and the test dataset is UPDATE_COMPLETE. If the dataset split fails, the value of Status is UPDATE_FAILED. This operation requires permissions to perform the rekognition:DistributeDatasetEntries action.
|
|
| GetCelebrityInfo |
Show DescriptionGets the name and additional information about a celebrity based on their Amazon Rekognition ID. The additional information is returned as an array of URLs. If there is no additional information about the celebrity, this list is empty. For more information, see Recognizing Celebrities in an Image in the Amazon Rekognition Developer Guide. This operation requires permissions to perform therekognition:GetCelebrityInfo action.
|
|
| GetCelebrityRecognition |
Show DescriptionGets the celebrity recognition results for a Amazon Rekognition Video analysis started by StartCelebrityRecognition. Celebrity recognition in a video is an asynchronous operation. Analysis is started by a call to StartCelebrityRecognition which returns a job identifier (JobId). When the celebrity recognition operation finishes, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartCelebrityRecognition. To get the results of the celebrity recognition analysis, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetCelebrityDetection and pass the job identifier (JobId) from the initial call to StartCelebrityDetection. For more information, see Working With Stored Videos in the Amazon Rekognition Developer Guide. GetCelebrityRecognition returns detected celebrities and the time(s) they are detected in an array (Celebrities) of CelebrityRecognition objects. Each CelebrityRecognition contains information about the celebrity in a CelebrityDetail object and the time, Timestamp, the celebrity was detected. This CelebrityDetail object stores information about the detected celebrity's face attributes, a face bounding box, known gender, the celebrity's name, and a confidence estimate. GetCelebrityRecognition only returns the default facial attributes (BoundingBox, Confidence, Landmarks, Pose, and Quality). The BoundingBox field only applies to the detected face instance. The other facial attributes listed in the Face object of the following response syntax are not returned. For more information, see FaceDetail in the Amazon Rekognition Developer Guide. Celebrities array is sorted by time (milliseconds from the start of the video). You can also sort the array by celebrity by specifying the value ID in the SortBy input parameter. The CelebrityDetail object includes the celebrity identifer and additional information urls. If you don't store the additional information urls, you can get them later by calling GetCelebrityInfo with the celebrity identifer. No information is returned for faces not recognized as celebrities. Use MaxResults parameter to limit the number of labels returned. If there are more results than specified in MaxResults, the value of NextToken in the operation response contains a pagination token for getting the next set of results. To get the next page of results, call GetCelebrityDetection and populate the NextToken request parameter with the token value returned from the previous call to GetCelebrityRecognition.
|
|
| GetContentModeration |
Show DescriptionGets the inappropriate, unwanted, or offensive content analysis results for a Amazon Rekognition Video analysis started by StartContentModeration. For a list of moderation labels in Amazon Rekognition, see Using the image and video moderation APIs. Amazon Rekognition Video inappropriate or offensive content detection in a stored video is an asynchronous operation. You start analysis by calling StartContentModeration which returns a job identifier (JobId). When analysis finishes, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartContentModeration. To get the results of the content analysis, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetContentModeration and pass the job identifier (JobId) from the initial call to StartContentModeration. For more information, see Working with Stored Videos in the Amazon Rekognition Devlopers Guide. GetContentModeration returns detected inappropriate, unwanted, or offensive content moderation labels, and the time they are detected, in an array, ModerationLabels, of ContentModerationDetection objects. By default, the moderated labels are returned sorted by time, in milliseconds from the start of the video. You can also sort them by moderated label by specifying NAME for the SortBy input parameter. Since video analysis can return a large number of results, use the MaxResults parameter to limit the number of labels returned in a single call to GetContentModeration. If there are more results than specified in MaxResults, the value of NextToken in the operation response contains a pagination token for getting the next set of results. To get the next page of results, call GetContentModeration and populate the NextToken request parameter with the value of NextToken returned from the previous call to GetContentModeration. For more information, see Content moderation in the Amazon Rekognition Developer Guide.
|
|
| GetFaceDetection |
Show DescriptionGets face detection results for a Amazon Rekognition Video analysis started by StartFaceDetection. Face detection with Amazon Rekognition Video is an asynchronous operation. You start face detection by calling StartFaceDetection which returns a job identifier (JobId). When the face detection operation finishes, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartFaceDetection. To get the results of the face detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetFaceDetection and pass the job identifier (JobId) from the initial call to StartFaceDetection. GetFaceDetection returns an array of detected faces (Faces) sorted by the time the faces were detected. Use MaxResults parameter to limit the number of labels returned. If there are more results than specified in MaxResults, the value of NextToken in the operation response contains a pagination token for getting the next set of results. To get the next page of results, call GetFaceDetection and populate the NextToken request parameter with the token value returned from the previous call to GetFaceDetection.
|
|
| GetFaceSearch |
Show DescriptionGets the face search results for Amazon Rekognition Video face search started by StartFaceSearch. The search returns faces in a collection that match the faces of persons detected in a video. It also includes the time(s) that faces are matched in the video. Face search in a video is an asynchronous operation. You start face search by calling to StartFaceSearch which returns a job identifier (JobId). When the search operation finishes, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartFaceSearch. To get the search results, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetFaceSearch and pass the job identifier (JobId) from the initial call to StartFaceSearch. For more information, see Searching Faces in a Collection in the Amazon Rekognition Developer Guide. The search results are retured in an array, Persons, of PersonMatch objects. EachPersonMatch element contains details about the matching faces in the input collection, person information (facial attributes, bounding boxes, and person identifer) for the matched person, and the time the person was matched in the video. GetFaceSearch only returns the default facial attributes (BoundingBox, Confidence, Landmarks, Pose, and Quality). The other facial attributes listed in the Face object of the following response syntax are not returned. For more information, see FaceDetail in the Amazon Rekognition Developer Guide. Persons array is sorted by the time, in milliseconds from the start of the video, persons are matched. You can also sort by persons by specifying INDEX for the SORTBY input parameter.
|
|
| GetLabelDetection |
Show DescriptionGets the label detection results of a Amazon Rekognition Video analysis started by StartLabelDetection. The label detection operation is started by a call to StartLabelDetection which returns a job identifier (JobId). When the label detection operation finishes, Amazon Rekognition publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartlabelDetection. To get the results of the label detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetLabelDetection and pass the job identifier (JobId) from the initial call to StartLabelDetection. GetLabelDetection returns an array of detected labels (Labels) sorted by the time the labels were detected. You can also sort by the label name by specifying NAME for the SortBy input parameter. The labels returned include the label name, the percentage confidence in the accuracy of the detected label, and the time the label was detected in the video. The returned labels also include bounding box information for common objects, a hierarchical taxonomy of detected labels, and the version of the label model used for detection. Use MaxResults parameter to limit the number of labels returned. If there are more results than specified in MaxResults, the value of NextToken in the operation response contains a pagination token for getting the next set of results. To get the next page of results, call GetlabelDetection and populate the NextToken request parameter with the token value returned from the previous call to GetLabelDetection.
|
|
| GetPersonTracking |
Show DescriptionGets the path tracking results of a Amazon Rekognition Video analysis started by StartPersonTracking. The person path tracking operation is started by a call toStartPersonTracking which returns a job identifier (JobId). When the operation finishes, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartPersonTracking. To get the results of the person path tracking operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetPersonTracking and pass the job identifier (JobId) from the initial call to StartPersonTracking. GetPersonTracking returns an array, Persons, of tracked persons and the time(s) their paths were tracked in the video. GetPersonTracking only returns the default facial attributes (BoundingBox, Confidence, Landmarks, Pose, and Quality). The other facial attributes listed in the Face object of the following response syntax are not returned. For more information, see FaceDetail in the Amazon Rekognition Developer Guide. INDEX for the SortBy input parameter. Use the MaxResults parameter to limit the number of items returned. If there are more results than specified in MaxResults, the value of NextToken in the operation response contains a pagination token for getting the next set of results. To get the next page of results, call GetPersonTracking and populate the NextToken request parameter with the token value returned from the previous call to GetPersonTracking.
|
|
| GetSegmentDetection |
Show DescriptionGets the segment detection results of a Amazon Rekognition Video analysis started by StartSegmentDetection. Segment detection with Amazon Rekognition Video is an asynchronous operation. You start segment detection by calling StartSegmentDetection which returns a job identifier (JobId). When the segment detection operation finishes, Amazon Rekognition publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartSegmentDetection. To get the results of the segment detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. if so, call GetSegmentDetection and pass the job identifier (JobId) from the initial call of StartSegmentDetection. GetSegmentDetection returns detected segments in an array (Segments) of SegmentDetection objects. Segments is sorted by the segment types specified in the SegmentTypes input parameter of StartSegmentDetection. Each element of the array includes the detected segment, the precentage confidence in the acuracy of the detected segment, the type of the segment, and the frame in which the segment was detected. Use SelectedSegmentTypes to find out the type of segment detection requested in the call to StartSegmentDetection. Use the MaxResults parameter to limit the number of segment detections returned. If there are more results than specified in MaxResults, the value of NextToken in the operation response contains a pagination token for getting the next set of results. To get the next page of results, call GetSegmentDetection and populate the NextToken request parameter with the token value returned from the previous call to GetSegmentDetection. For more information, see Detecting Video Segments in Stored Video in the Amazon Rekognition Developer Guide.
|
|
| GetTextDetection |
Show DescriptionGets the text detection results of a Amazon Rekognition Video analysis started by StartTextDetection. Text detection with Amazon Rekognition Video is an asynchronous operation. You start text detection by calling StartTextDetection which returns a job identifier (JobId) When the text detection operation finishes, Amazon Rekognition publishes a completion status to the Amazon Simple Notification Service topic registered in the initial call to StartTextDetection. To get the results of the text detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. if so, call GetTextDetection and pass the job identifier (JobId) from the initial call of StartLabelDetection. GetTextDetection returns an array of detected text (TextDetections) sorted by the time the text was detected, up to 50 words per frame of video. Each element of the array includes the detected text, the precentage confidence in the acuracy of the detected text, the time the text was detected, bounding box information for where the text was located, and unique identifiers for words and their lines. Use MaxResults parameter to limit the number of text detections returned. If there are more results than specified in MaxResults, the value of NextToken in the operation response contains a pagination token for getting the next set of results. To get the next page of results, call GetTextDetection and populate the NextToken request parameter with the token value returned from the previous call to GetTextDetection.
|
|
| IndexFaces |
Show DescriptionDetects faces in the input image and adds them to the specified collection. Amazon Rekognition doesn't save the actual faces that are detected. Instead, the underlying detection algorithm first detects the faces in the input image. For each face, the algorithm extracts facial features into a feature vector, and stores it in the backend database. Amazon Rekognition uses feature vectors when it performs face match and search operations using the SearchFaces and SearchFacesByImage operations. For more information, see Adding Faces to a Collection in the Amazon Rekognition Developer Guide. To get the number of faces in a collection, call DescribeCollection. If you're using version 1.0 of the face detection model,IndexFaces indexes the 15 largest faces in the input image. Later versions of the face detection model index the 100 largest faces in the input image. If you're using version 4 or later of the face model, image orientation information is not returned in the OrientationCorrection field. To determine which version of the model you're using, call DescribeCollection and supply the collection ID. You can also get the model version from the value of FaceModelVersion in the response from IndexFaces For more information, see Model Versioning in the Amazon Rekognition Developer Guide. If you provide the optional ExternalImageId for the input image you provided, Amazon Rekognition associates this ID with all faces that it detects. When you call the ListFaces operation, the response returns the external ID. You can use this external image ID to create a client-side index to associate the faces with each image. You can then use the index to find all faces in an image. You can specify the maximum number of faces to index with the MaxFaces input parameter. This is useful when you want to index the largest faces in an image and don't want to index smaller faces, such as those belonging to people standing in the background. The QualityFilter input parameter allows you to filter out detected faces that don’t meet a required quality bar. The quality bar is based on a variety of common use cases. By default, IndexFaces chooses the quality bar that's used to filter faces. You can also explicitly choose the quality bar. Use QualityFilter, to set the quality bar by specifying LOW, MEDIUM, or HIGH. If you do not want to filter detected faces, specify NONE. UnindexedFaces. Faces aren't indexed for reasons such as:
IndexFaces operation returns an array of metadata for all detected faces, FaceRecords. This includes:
detectionAttributes parameter), Amazon Rekognition returns detailed facial attributes, such as facial landmarks (for example, location of eye and mouth) and other facial attributes. If you provide the same image, specify the same collection, and use the same external ID in the IndexFaces operation, Amazon Rekognition doesn't save duplicate face metadata. The input image is passed either as base64-encoded image bytes, or as a reference to an image in an Amazon S3 bucket. If you use the AWS CLI to call Amazon Rekognition operations, passing image bytes isn't supported. The image must be formatted as a PNG or JPEG file. This operation requires permissions to perform the rekognition:IndexFaces action.
|
|
| ListCollections |
Show DescriptionReturns list of collection IDs in your account. If the result is truncated, the response also provides aNextToken that you can use in the subsequent request to fetch the next set of collection IDs. For an example, see Listing Collections in the Amazon Rekognition Developer Guide. This operation requires permissions to perform the rekognition:ListCollections action.
|
|
| ListDatasetEntries |
Show DescriptionLists the entries (images) within a dataset. An entry is a JSON Line that contains the information for a single image, including the image location, assigned labels, and object location bounding boxes. For more information, see Creating a manifest file. JSON Lines in the response include information about non-terminal errors found in the dataset. Non terminal errors are reported inerrors lists within each JSON Line. The same information is reported in the training and testing validation result manifests that Amazon Rekognition Custom Labels creates during model training. You can filter the response in variety of ways, such as choosing which labels to return and returning JSON Lines created after a specific date. This operation requires permissions to perform the rekognition:ListDatasetEntries action.
|
|
| ListDatasetLabels |
Show DescriptionLists the labels in a dataset. Amazon Rekognition Custom Labels uses labels to describe images. For more information, see Labeling images. Lists the labels in a dataset. Amazon Rekognition Custom Labels uses labels to describe images. For more information, see Labeling images in the Amazon Rekognition Custom Labels Developer Guide. |
|
| ListFaces |
Show DescriptionReturns metadata for faces in the specified collection. This metadata includes information such as the bounding box coordinates, the confidence (that the bounding box contains a face), and face ID. For an example, see Listing Faces in a Collection in the Amazon Rekognition Developer Guide. This operation requires permissions to perform therekognition:ListFaces action.
|
|
| ListStreamProcessors |
Show DescriptionGets a list of stream processors that you have created with CreateStreamProcessor. |
|
| ListTagsForResource |
Show DescriptionReturns a list of tags in an Amazon Rekognition collection, stream processor, or Custom Labels model. This operation requires permissions to perform therekognition:ListTagsForResource action.
|
|
| RecognizeCelebrities |
Show DescriptionReturns an array of celebrities recognized in the input image. For more information, see Recognizing Celebrities in the Amazon Rekognition Developer Guide.RecognizeCelebrities returns the 64 largest faces in the image. It lists the recognized celebrities in the CelebrityFaces array and any unrecognized faces in the UnrecognizedFaces array. RecognizeCelebrities doesn't return celebrities whose faces aren't among the largest 64 faces in the image. For each celebrity recognized, RecognizeCelebrities returns a Celebrity object. The Celebrity object contains the celebrity name, ID, URL links to additional information, match confidence, and a ComparedFace object that you can use to locate the celebrity's face on the image. Amazon Rekognition doesn't retain information about which images a celebrity has been recognized in. Your application must store this information and use the Celebrity ID property as a unique identifier for the celebrity. If you don't store the celebrity name or additional information URLs returned by RecognizeCelebrities, you will need the ID to identify the celebrity in a call to the GetCelebrityInfo operation. You pass the input image either as base64-encoded image bytes or as a reference to an image in an Amazon S3 bucket. If you use the AWS CLI to call Amazon Rekognition operations, passing image bytes is not supported. The image must be either a PNG or JPEG formatted file. For an example, see Recognizing Celebrities in an Image in the Amazon Rekognition Developer Guide. This operation requires permissions to perform the rekognition:RecognizeCelebrities operation.
|
|
| SearchFaces |
Show DescriptionFor a given input face ID, searches for matching faces in the collection the face belongs to. You get a face ID when you add a face to the collection using the IndexFaces operation. The operation compares the features of the input face with faces in the specified collection.SearchFacesByImage operation. confidence value for each face match, indicating the confidence that the specific face matches the input face. For an example, see Searching for a Face Using Its Face ID in the Amazon Rekognition Developer Guide. This operation requires permissions to perform the rekognition:SearchFaces action.
|
|
| SearchFacesByImage |
Show DescriptionFor a given input image, first detects the largest face in the image, and then searches the specified collection for matching faces. The operation compares the features of the input face with faces in the specified collection.DetectFaces operation and use the bounding boxes in the response to make face crops, which then you can pass in to the SearchFacesByImage operation. similarity indicating how similar the face is to the input face. In the response, the operation also returns the bounding box (and a confidence level that the bounding box contains a face) of the face that Amazon Rekognition used for the input image. If no faces are detected in the input image, SearchFacesByImage returns an InvalidParameterException error. For an example, Searching for a Face Using an Image in the Amazon Rekognition Developer Guide. The QualityFilter input parameter allows you to filter out detected faces that don’t meet a required quality bar. The quality bar is based on a variety of common use cases. Use QualityFilter to set the quality bar for filtering by specifying LOW, MEDIUM, or HIGH. If you do not want to filter detected faces, specify NONE. The default value is NONE. rekognition:SearchFacesByImage action.
|
|
| StartCelebrityRecognition |
Show DescriptionStarts asynchronous recognition of celebrities in a stored video. Amazon Rekognition Video can detect celebrities in a video must be stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartCelebrityRecognition returns a job identifier (JobId) which you use to get the results of the analysis. When celebrity recognition analysis is finished, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. To get the results of the celebrity recognition analysis, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetCelebrityRecognition and pass the job identifier (JobId) from the initial call to StartCelebrityRecognition. For more information, see Recognizing Celebrities in the Amazon Rekognition Developer Guide.
|
|
| StartContentModeration |
Show DescriptionStarts asynchronous detection of inappropriate, unwanted, or offensive content in a stored video. For a list of moderation labels in Amazon Rekognition, see Using the image and video moderation APIs. Amazon Rekognition Video can moderate content in a video stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartContentModeration returns a job identifier (JobId) which you use to get the results of the analysis. When content analysis is finished, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. To get the results of the content analysis, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetContentModeration and pass the job identifier (JobId) from the initial call to StartContentModeration. For more information, see Content moderation in the Amazon Rekognition Developer Guide.
|
|
| StartFaceDetection |
Show DescriptionStarts asynchronous detection of faces in a stored video. Amazon Rekognition Video can detect faces in a video stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartFaceDetection returns a job identifier (JobId) that you use to get the results of the operation. When face detection is finished, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. To get the results of the face detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetFaceDetection and pass the job identifier (JobId) from the initial call to StartFaceDetection. For more information, see Detecting Faces in a Stored Video in the Amazon Rekognition Developer Guide.
|
|
| StartFaceSearch |
Show DescriptionStarts the asynchronous search for faces in a collection that match the faces of persons detected in a stored video. The video must be stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartFaceSearch returns a job identifier (JobId) which you use to get the search results once the search has completed. When searching is finished, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. To get the search results, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetFaceSearch and pass the job identifier (JobId) from the initial call to StartFaceSearch. For more information, see procedure-person-search-videos.
|
|
| StartLabelDetection |
Show DescriptionStarts asynchronous detection of labels in a stored video. Amazon Rekognition Video can detect labels in a video. Labels are instances of real-world entities. This includes objects like flower, tree, and table; events like wedding, graduation, and birthday party; concepts like landscape, evening, and nature; and activities like a person getting out of a car or a person skiing. The video must be stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartLabelDetection returns a job identifier (JobId) which you use to get the results of the operation. When label detection is finished, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. To get the results of the label detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetLabelDetection and pass the job identifier (JobId) from the initial call to StartLabelDetection.
|
|
| StartPersonTracking |
Show DescriptionStarts the asynchronous tracking of a person's path in a stored video. Amazon Rekognition Video can track the path of people in a video stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartPersonTracking returns a job identifier (JobId) which you use to get the results of the operation. When label detection is finished, Amazon Rekognition publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. To get the results of the person detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. If so, call GetPersonTracking and pass the job identifier (JobId) from the initial call to StartPersonTracking.
|
|
| StartProjectVersion |
Show DescriptionStarts the running of the version of a model. Starting a model takes a while to complete. To check the current state of the model, use DescribeProjectVersions. Once the model is running, you can detect custom labels in new images by calling DetectCustomLabels.rekognition:StartProjectVersion action.
|
|
| StartSegmentDetection |
Show DescriptionStarts asynchronous detection of segment detection in a stored video. Amazon Rekognition Video can detect segments in a video stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartSegmentDetection returns a job identifier (JobId) which you use to get the results of the operation. When segment detection is finished, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. You can use the Filters (StartSegmentDetectionFilters) input parameter to specify the minimum detection confidence returned in the response. Within Filters, use ShotFilter (StartShotDetectionFilter) to filter detected shots. Use TechnicalCueFilter (StartTechnicalCueDetectionFilter) to filter technical cues. To get the results of the segment detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. if so, call GetSegmentDetection and pass the job identifier (JobId) from the initial call to StartSegmentDetection. For more information, see Detecting Video Segments in Stored Video in the Amazon Rekognition Developer Guide.
|
|
| StartStreamProcessor |
Show DescriptionStarts processing a stream processor. You create a stream processor by calling CreateStreamProcessor. To tellStartStreamProcessor which stream processor to start, use the value of the Name field specified in the call to CreateStreamProcessor.
|
|
| StartTextDetection |
Show DescriptionStarts asynchronous detection of text in a stored video. Amazon Rekognition Video can detect text in a video stored in an Amazon S3 bucket. Use Video to specify the bucket name and the filename of the video.StartTextDetection returns a job identifier (JobId) which you use to get the results of the operation. When text detection is finished, Amazon Rekognition Video publishes a completion status to the Amazon Simple Notification Service topic that you specify in NotificationChannel. To get the results of the text detection operation, first check that the status value published to the Amazon SNS topic is SUCCEEDED. if so, call GetTextDetection and pass the job identifier (JobId) from the initial call to StartTextDetection.
|
|
| StopProjectVersion |
Show DescriptionStops a running model. The operation might take a while to complete. To check the current status, call DescribeProjectVersions. |
|
| StopStreamProcessor |
Show DescriptionStops a running stream processor that was created by CreateStreamProcessor. |
|
| TagResource |
Show DescriptionAdds one or more key-value tags to an Amazon Rekognition collection, stream processor, or Custom Labels model. For more information, see Tagging AWS Resources. This operation requires permissions to perform therekognition:TagResource action.
|
|
| UntagResource |
Show DescriptionRemoves one or more tags from an Amazon Rekognition collection, stream processor, or Custom Labels model. This operation requires permissions to perform therekognition:UntagResource action.
|
Resource-groups Events
| Service | Event Name | Description |
|---|---|---|
| resource-groups | CreateGroup |
Show DescriptionCreates a resource group with the specified name and description. You can optionally include a resource query, or a service configuration. For more information about constructing a resource query, see Create a tag-based group in Resource Groups. For more information about service configurations, see Service configurations for resource groups. Minimum permissions To run this command, you must have the following permissions:
|
| DeleteGroup |
Show DescriptionDeletes the specified resource group. Deleting a resource group does not delete any resources that are members of the group; it only deletes the group structure. Minimum permissions To run this command, you must have the following permissions:
|
|
| GetGroup |
Show DescriptionReturns information about a specified resource group. Minimum permissions To run this command, you must have the following permissions:
|
|
| GetGroupConfiguration |
Show DescriptionReturns the service configuration associated with the specified resource group. For details about the service configuration syntax, see Service configurations for resource groups. Minimum permissions To run this command, you must have the following permissions:
|
|
| GetGroupQuery |
Show DescriptionRetrieves the resource query associated with the specified resource group. For more information about resource queries, see Create a tag-based group in Resource Groups. Minimum permissions To run this command, you must have the following permissions:
|
|
| GetTags |
Show DescriptionReturns a list of tags that are associated with a resource group, specified by an ARN. Minimum permissions To run this command, you must have the following permissions:
|
|
| GroupResources |
Show DescriptionAdds the specified resources to the specified group. Minimum permissions To run this command, you must have the following permissions:
|
|
| ListGroupResources |
Show DescriptionReturns a list of ARNs of the resources that are members of a specified resource group. Minimum permissions To run this command, you must have the following permissions:
|
|
| ListGroups |
Show DescriptionReturns a list of existing resource groups in your account. Minimum permissions To run this command, you must have the following permissions:
|
|
| PutGroupConfiguration |
Show DescriptionAttaches a service configuration to the specified group. This occurs asynchronously, and can take time to complete. You can use GetGroupConfiguration to check the status of the update. Minimum permissions To run this command, you must have the following permissions:
|
|
| SearchResources |
Show DescriptionReturns a list of AWS resource identifiers that matches the specified query. The query uses the same format as a resource query in a CreateGroup or UpdateGroupQuery operation. Minimum permissions To run this command, you must have the following permissions:
|
|
| Tag |
Show DescriptionAdds tags to a resource group with the specified ARN. Existing tags on a resource group are not changed if they are not specified in the request parameters.
|
|
| UngroupResources |
Show DescriptionRemoves the specified resources from the specified group. Minimum permissions To run this command, you must have the following permissions:
|
|
| Untag |
Show DescriptionDeletes tags from a specified resource group. Minimum permissions To run this command, you must have the following permissions:
|
|
| UpdateGroup |
Show DescriptionUpdates the description for an existing group. You cannot update the name of a resource group. Minimum permissions To run this command, you must have the following permissions:
|
Resourcegroupstaggingapi Events
| Service | Event Name | Description |
|---|---|---|
| resourcegroupstaggingapi | DescribeReportCreation |
Show DescriptionDescribes the status of theStartReportCreation operation. You can call this operation only from the organization's management account and from the us-east-1 Region.
|
| GetComplianceSummary |
Show DescriptionReturns a table that shows counts of resources that are noncompliant with their tag policies. For more information on tag policies, see Tag Policies in the AWS Organizations User Guide. You can call this operation only from the organization's management account and from the us-east-1 Region. This operation supports pagination, where the response can be sent in multiple pages. You should check thePaginationToken response parameter to determine if there are additional results available to return. Repeat the query, passing the PaginationToken response parameter value as an input to the next request until you recieve a null value. A null value for PaginationToken indicates that there are no more results waiting to be returned.
|
|
| GetResources |
Show DescriptionReturns all the tagged or previously tagged resources that are located in the specified Region for the AWS account. Depending on what information you want returned, you can also specify the following:
PaginationToken response parameter to determine if there are additional results available to return. Repeat the query, passing the PaginationToken response parameter value as an input to the next request until you recieve a null value. A null value for PaginationToken indicates that there are no more results waiting to be returned.
|
|
| GetTagKeys |
Show DescriptionReturns all tag keys currently in use in the specified Region for the calling AWS account. This operation supports pagination, where the response can be sent in multiple pages. You should check thePaginationToken response parameter to determine if there are additional results available to return. Repeat the query, passing the PaginationToken response parameter value as an input to the next request until you recieve a null value. A null value for PaginationToken indicates that there are no more results waiting to be returned.
|
|
| GetTagValues |
Show DescriptionReturns all tag values for the specified key that are used in the specified AWS Region for the calling AWS account. This operation supports pagination, where the response can be sent in multiple pages. You should check thePaginationToken response parameter to determine if there are additional results available to return. Repeat the query, passing the PaginationToken response parameter value as an input to the next request until you recieve a null value. A null value for PaginationToken indicates that there are no more results waiting to be returned.
|
|
| StartReportCreation |
Show DescriptionGenerates a report that lists all tagged resources in the accounts across your organization and tells whether each resource is compliant with the effective tag policy. Compliance data is refreshed daily. The report is generated asynchronously. The generated report is saved to the following location:s3://example-bucket/AwsTagPolicies/o-exampleorgid/YYYY-MM-ddTHH:mm:ssZ/report.csv You can call this operation only from the organization's management account and from the us-east-1 Region.
|
|
| TagResources |
Show DescriptionApplies one or more tags to the specified resources. Note the following:
|
Robomaker Events
| Service | Event Name | Description |
|---|---|---|
| robomaker | BatchDeleteWorlds |
Show DescriptionDeletes one or more worlds in a batch operation. |
| BatchDescribeSimulationJob |
Show DescriptionDescribes one or more simulation jobs. |
|
| CancelDeploymentJob |
Show DescriptionCancels the specified deployment job. |
|
| CancelSimulationJob |
Show DescriptionCancels the specified simulation job. |
|
| CancelSimulationJobBatch |
Show DescriptionCancels a simulation job batch. When you cancel a simulation job batch, you are also cancelling all of the active simulation jobs created as part of the batch. |
|
| CancelWorldExportJob |
Show DescriptionCancels the specified export job. |
|
| CancelWorldGenerationJob |
Show DescriptionCancels the specified world generator job. |
|
| CreateDeploymentJob |
Show DescriptionDeploys a specific version of a robot application to robots in a fleet. The robot application must have a numberedapplicationVersion for consistency reasons. To create a new version, use CreateRobotApplicationVersion or see Creating a Robot Application Version. |
|
| CreateFleet |
Show DescriptionCreates a fleet, a logical group of robots running the same robot application. |
|
| CreateRobot |
Show DescriptionCreates a robot. |
|
| CreateRobotApplication |
Show DescriptionCreates a robot application. |
|
| CreateRobotApplicationVersion |
Show DescriptionCreates a version of a robot application. |
|
| CreateSimulationApplication |
Show DescriptionCreates a simulation application. |
|
| CreateSimulationApplicationVersion |
Show DescriptionCreates a simulation application with a specific revision id. |
|
| CreateSimulationJob |
Show DescriptionCreates a simulation job. |
|
| CreateWorldExportJob |
Show DescriptionCreates a world export job. |
|
| CreateWorldGenerationJob |
Show DescriptionCreates worlds using the specified template. |
|
| CreateWorldTemplate |
Show DescriptionCreates a world template. |
|
| DeleteFleet |
Show DescriptionDeletes a fleet. |
|
| DeleteRobot |
Show DescriptionDeletes a robot. |
|
| DeleteRobotApplication |
Show DescriptionDeletes a robot application. |
|
| DeleteSimulationApplication |
Show DescriptionDeletes a simulation application. |
|
| DeleteWorldTemplate |
Show DescriptionDeletes a world template. |
|
| DeregisterRobot |
Show DescriptionDeregisters a robot. |
|
| DescribeDeploymentJob |
Show DescriptionDescribes a deployment job. |
|
| DescribeFleet |
Show DescriptionDescribes a fleet. |
|
| DescribeRobot |
Show DescriptionDescribes a robot. |
|
| DescribeRobotApplication |
Show DescriptionDescribes a robot application. |
|
| DescribeSimulationApplication |
Show DescriptionDescribes a simulation application. |
|
| DescribeSimulationJob |
Show DescriptionDescribes a simulation job. |
|
| DescribeSimulationJobBatch |
Show DescriptionDescribes a simulation job batch. |
|
| DescribeWorld |
Show DescriptionDescribes a world. |
|
| DescribeWorldExportJob |
Show DescriptionDescribes a world export job. |
|
| DescribeWorldGenerationJob |
Show DescriptionDescribes a world generation job. |
|
| DescribeWorldTemplate |
Show DescriptionDescribes a world template. |
|
| GetWorldTemplateBody |
Show DescriptionGets the world template body. |
|
| ListDeploymentJobs |
Show DescriptionReturns a list of deployment jobs for a fleet. You can optionally provide filters to retrieve specific deployment jobs. |
|
| ListFleets |
Show DescriptionReturns a list of fleets. You can optionally provide filters to retrieve specific fleets. |
|
| ListRobotApplications |
Show DescriptionReturns a list of robot application. You can optionally provide filters to retrieve specific robot applications. |
|
| ListRobots |
Show DescriptionReturns a list of robots. You can optionally provide filters to retrieve specific robots. |
|
| ListSimulationApplications |
Show DescriptionReturns a list of simulation applications. You can optionally provide filters to retrieve specific simulation applications. |
|
| ListSimulationJobBatches |
Show DescriptionReturns a list simulation job batches. You can optionally provide filters to retrieve specific simulation batch jobs. |
|
| ListSimulationJobs |
Show DescriptionReturns a list of simulation jobs. You can optionally provide filters to retrieve specific simulation jobs. |
|
| ListTagsForResource |
Show DescriptionLists all tags on a AWS RoboMaker resource. |
|
| ListWorldExportJobs |
Show DescriptionLists world export jobs. |
|
| ListWorldGenerationJobs |
Show DescriptionLists world generator jobs. |
|
| ListWorldTemplates |
Show DescriptionLists world templates. |
|
| ListWorlds |
Show DescriptionLists worlds. |
|
| RegisterRobot |
Show DescriptionRegisters a robot with a fleet. |
|
| RestartSimulationJob |
Show DescriptionRestarts a running simulation job. |
|
| StartSimulationJobBatch |
Show DescriptionStarts a new simulation job batch. The batch is defined using one or moreSimulationJobRequest objects.
|
|
| SyncDeploymentJob |
Show DescriptionSyncrhonizes robots in a fleet to the latest deployment. This is helpful if robots were added after a deployment. |
|
| TagResource |
Show DescriptionAdds or edits tags for a AWS RoboMaker resource. Each tag consists of a tag key and a tag value. Tag keys and tag values are both required, but tag values can be empty strings. For information about the rules that apply to tag keys and tag values, see User-Defined Tag Restrictions in the AWS Billing and Cost Management User Guide. |
|
| UntagResource |
Show DescriptionRemoves the specified tags from the specified AWS RoboMaker resource. To remove a tag, specify the tag key. To change the tag value of an existing tag key, useTagResource .
|
|
| UpdateRobotApplication |
Show DescriptionUpdates a robot application. |
|
| UpdateSimulationApplication |
Show DescriptionUpdates a simulation application. |
Route53-recovery-cluster Events
| Service | Event Name | Description |
|---|---|---|
| route53-recovery-cluster | GetRoutingControlState |
Show DescriptionGet the state for a routing control. A routing control is a simple on/off switch that you can use to route traffic to cells. When the state is On, traffic flows to a cell. When it's off, traffic does not flow. Before you can create a routing control, you first must create a cluster to host the control. For more information, see CreateCluster. Access one of the endpoints for the cluster to get or update the routing control state to redirect traffic. For more information about working with routing controls, see Routing control in the Route 53 Application Recovery Controller Developer Guide. |
| UpdateRoutingControlState |
Show DescriptionSet the state of the routing control to reroute traffic. You can set the value to be On or Off. When the state is On, traffic flows to a cell. When it's off, traffic does not flow. For more information about working with routing controls, see Routing control in the Route 53 Application Recovery Controller Developer Guide. |
Route53-recovery-control-config Events
| Service | Event Name | Description |
|---|---|---|
| route53-recovery-control-config | CreateCluster |
Show DescriptionCreate a new cluster. A cluster is a set of redundant Regional endpoints against which you can run API calls to update or get the state of one or more routing controls. Each cluster has a name, status, Amazon Resource Name (ARN), and an array of the five cluster endpoints (one for each supported Amazon Web Services Region) that you can use with API calls to the Amazon Route 53 Application Recovery Controller cluster data plane. |
| CreateControlPanel |
Show DescriptionCreates a new control panel. A control panel represents a group of routing controls that can be changed together in a single transaction. You can use a control panel to centrally view the operational status of applications across your organization, and trigger multi-app failovers in a single transaction, for example, to fail over an Availability Zone or AWS Region. |
|
| CreateRoutingControl |
Show DescriptionCreates a new routing control. A routing control has one of two states: ON and OFF. You can map the routing control state to the state of an Amazon Route 53 health check, which can be used to control traffic routing. To get or update the routing control state, see the Recovery Cluster (data plane) API actions for Amazon Route 53 Application Recovery Controller. |
|
| CreateSafetyRule |
Show DescriptionCreates a safety rule in a control panel. Safety rules let you add safeguards around enabling and disabling routing controls, to help prevent unexpected outcomes. There are two types of safety rules: assertion rules and gating rules. Assertion rule: An assertion rule enforces that, when a routing control state is changed, the criteria set by the rule configuration is met. Otherwise, the change to the routing control is not accepted. Gating rule: A gating rule verifies that a set of gating controls evaluates as true, based on a rule configuration that you specify. If the gating rule evaluates to true, Amazon Route 53 Application Recovery Controller allows a set of routing control state changes to run and complete against the set of target controls. |
|
| DeleteCluster |
Show DescriptionDelete a cluster. |
|
| DeleteControlPanel |
Show DescriptionDeletes a control panel. |
|
| DeleteRoutingControl |
Show DescriptionDeletes a routing control. |
|
| DeleteSafetyRule |
Show DescriptionDeletes a safety rule./> |
|
| DescribeCluster |
Show DescriptionDisplay the details about a cluster. The response includes the cluster name, endpoints, status, and Amazon Resource Name (ARN). |
|
| DescribeControlPanel |
Show DescriptionDisplays details about a control panel. |
|
| DescribeRoutingControl |
Show DescriptionDisplays details about a routing control. A routing control has one of two states: ON and OFF. You can map the routing control state to the state of an Amazon Route 53 health check, which can be used to control routing. To get or update the routing control state, see the Recovery Cluster (data plane) API actions for Amazon Route 53 Application Recovery Controller. |
|
| DescribeSafetyRule |
Show DescriptionDescribes the safety rules (that is, the assertion rules and gating rules) for the routing controls in a control panel. |
|
| ListAssociatedRoute53HealthChecks |
Show DescriptionReturns an array of all Amazon Route 53 health checks associated with a specific routing control. |
|
| ListClusters |
Show DescriptionReturns an array of all the clusters in an account. |
|
| ListControlPanels |
Show DescriptionReturns an array of control panels for a cluster. |
|
| ListRoutingControls |
Show DescriptionReturns an array of routing controls for a control panel. A routing control is an Amazon Route 53 Application Recovery Controller construct that has one of two states: ON and OFF. You can map the routing control state to the state of an Amazon Route 53 health check, which can be used to control routing. |
|
| ListSafetyRules |
Show DescriptionList the safety rules (the assertion rules and gating rules) that you've defined for the routing controls in a control panel. |
|
| UpdateControlPanel |
Show DescriptionUpdates a control panel. The only update you can make to a control panel is to change the name of the control panel. |
|
| UpdateRoutingControl |
Show DescriptionUpdates a routing control. You can only update the name of the routing control. To get or update the routing control state, see the Recovery Cluster (data plane) API actions for Amazon Route 53 Application Recovery Controller. |
Route53-recovery-readiness Events
| Service | Event Name | Description |
|---|---|---|
| route53-recovery-readiness | CreateCell |
Show DescriptionCreates a new Cell. |
| CreateCrossAccountAuthorization |
Show DescriptionCreate a new cross account readiness authorization. |
|
| CreateReadinessCheck |
Show DescriptionCreates a new Readiness Check. |
|
| CreateRecoveryGroup |
Show DescriptionCreates a new Recovery Group. |
|
| CreateResourceSet |
Show DescriptionCreates a new Resource Set. |
|
| DeleteCell | ||
| DeleteCrossAccountAuthorization |
Show DescriptionDelete cross account readiness authorization |
|
| DeleteReadinessCheck | ||
| DeleteRecoveryGroup | ||
| DeleteResourceSet | ||
| GetArchitectureRecommendations |
Show DescriptionReturns a collection of recommendations to improve resilliance and readiness check quality for a Recovery Group. |
|
| GetCell |
Show DescriptionReturns information about a Cell. |
|
| GetCellReadinessSummary |
Show DescriptionReturns information about readiness of a Cell. |
|
| GetReadinessCheck |
Show DescriptionReturns information about a ReadinessCheck. |
|
| GetReadinessCheckResourceStatus |
Show DescriptionReturns detailed information about the status of an individual resource within a Readiness Check's Resource Set. |
|
| GetReadinessCheckStatus |
Show DescriptionReturns information about the status of a Readiness Check. |
|
| GetRecoveryGroup |
Show DescriptionReturns information about a Recovery Group. |
|
| GetRecoveryGroupReadinessSummary |
Show DescriptionReturns information about a Recovery Group. |
|
| GetResourceSet |
Show DescriptionReturns information about a Resource Set. |
|
| ListCells |
Show DescriptionReturns a collection of Cells. |
|
| ListCrossAccountAuthorizations |
Show DescriptionReturns a collection of cross account readiness authorizations. |
|
| ListReadinessChecks |
Show DescriptionReturns a collection of Readiness Checks. |
|
| ListRecoveryGroups |
Show DescriptionReturns a collection of Recovery Groups. |
|
| ListResourceSets |
Show DescriptionReturns a collection of Resource Sets. |
|
| ListRules |
Show DescriptionReturns a collection of rules that are applied as part of Readiness Checks. |
|
| ListTagsForResources |
Show DescriptionReturns a list of the tags assigned to the specified resource. |
|
| TagResource |
Show DescriptionAdds tags to the specified resource. You can specify one or more tags to add. |
|
| UntagResource | ||
| UpdateCell |
Show DescriptionUpdates an existing Cell. |
|
| UpdateReadinessCheck |
Show DescriptionUpdates an exisiting Readiness Check. |
|
| UpdateRecoveryGroup |
Show DescriptionUpdates an existing Recovery Group. |
Route53 Events
| Service | Event Name | Description |
|---|---|---|
| route53 | ActivateKeySigningKey |
Show DescriptionActivates a key-signing key (KSK) so that it can be used for signing by DNSSEC. This operation changes the KSK status toACTIVE.
|
| AssociateVPCWithHostedZone |
Show DescriptionAssociates an Amazon VPC with a private hosted zone.CreateVPCAssociationAuthorization request. Then the account that created the VPC must submit an AssociateVPCWithHostedZone request. |
|
| ChangeResourceRecordSets |
Show DescriptionCreates, changes, or deletes a resource record set, which contains authoritative DNS information for a specified domain name or subdomain name. For example, you can useChangeResourceRecordSets to create a resource record set that routes traffic for test.example.com to a web server that has an IP address of 192.0.2.44. Deleting Resource Record Sets To delete a resource record set, you must specify all the same values that you specified when you created it. Change Batches and Transactional Changes The request body must include a document with a ChangeResourceRecordSetsRequest element. The request body contains a list of change items, known as a change batch. Change batches are considered transactional changes. Route 53 validates the changes in the request and then either makes all or none of the changes in the change batch request. This ensures that DNS routing isn't adversely affected by partial changes to the resource record sets in a hosted zone. For example, suppose a change batch request contains two changes: it deletes the CNAME resource record set for www.example.com and creates an alias resource record set for www.example.com. If validation for both records succeeds, Route 53 deletes the first resource record set and creates the second resource record set in a single operation. If validation for either the DELETE or the CREATE action fails, then the request is canceled, and the original CNAME record continues to exist. InvalidChangeBatch error. ChangeResourceRecordsSetsRequest to perform the following actions:
ChangeResourceRecordSets. Change Propagation to Route 53 DNS Servers When you submit a ChangeResourceRecordSets request, Route 53 propagates your changes to all of the Route 53 authoritative DNS servers. While your changes are propagating, GetChange returns a status of PENDING. When propagation is complete, GetChange returns a status of INSYNC. Changes generally propagate to all Route 53 name servers within 60 seconds. For more information, see GetChange. Limits on ChangeResourceRecordSets Requests For information about the limits on a ChangeResourceRecordSets request, see Limits in the Amazon Route 53 Developer Guide.
|
|
| ChangeTagsForResource |
Show DescriptionAdds, edits, or deletes tags for a health check or a hosted zone. For information about using tags for cost allocation, see Using Cost Allocation Tags in the Billing and Cost Management User Guide. |
|
| CreateHealthCheck |
Show DescriptionCreates a new health check. For information about adding health checks to resource record sets, see HealthCheckId in ChangeResourceRecordSets. ELB Load Balancers If you're registering EC2 instances with an Elastic Load Balancing (ELB) load balancer, do not create Amazon Route 53 health checks for the EC2 instances. When you register an EC2 instance with a load balancer, you configure settings for an ELB health check, which performs a similar function to a Route 53 health check. Private Hosted Zones You can associate health checks with failover resource record sets in a private hosted zone. Note the following:
|
|
| CreateHostedZone |
Show DescriptionCreates a new public or private hosted zone. You create records in a public hosted zone to define how you want to route traffic on the internet for a domain, such as example.com, and its subdomains (apex.example.com, acme.example.com). You create records in a private hosted zone to define how you want to route traffic for a domain and its subdomains within one or more Amazon Virtual Private Clouds (Amazon VPCs).
CreateHostedZone request, the initial status of the hosted zone is PENDING. For public hosted zones, this means that the NS and SOA records are not yet available on all Route 53 DNS servers. When the NS and SOA records are available, the status of the zone changes to INSYNC. The CreateHostedZone request requires the caller to have an ec2:DescribeVpcs permission.
|
|
| CreateKeySigningKey |
Show DescriptionCreates a new key-signing key (KSK) associated with a hosted zone. You can only have two KSKs per hosted zone. |
|
| CreateQueryLoggingConfig |
Show DescriptionCreates a configuration for DNS query logging. After you create a query logging configuration, Amazon Route 53 begins to publish log data to an Amazon CloudWatch Logs log group. DNS query logs contain information about the queries that Route 53 receives for a specified public hosted zone, such as the following:
|
|
| CreateReusableDelegationSet |
Show DescriptionCreates a delegation set (a group of four name servers) that can be reused by multiple hosted zones that were created by the same Amazon Web Services account. You can also create a reusable delegation set that uses the four name servers that are associated with an existing hosted zone. Specify the hosted zone ID in theCreateReusableDelegationSet request.
|
|
| CreateTrafficPolicy |
Show DescriptionCreates a traffic policy, which you use to create multiple DNS resource record sets for one domain name (such as example.com) or one subdomain name (such as www.example.com). |
|
| CreateTrafficPolicyInstance |
Show DescriptionCreates resource record sets in a specified hosted zone based on the settings in a specified traffic policy version. In addition,CreateTrafficPolicyInstance associates the resource record sets with a specified domain name (such as example.com) or subdomain name (such as www.example.com). Amazon Route 53 responds to DNS queries for the domain or subdomain name by using the resource record sets that CreateTrafficPolicyInstance created.
|
|
| CreateTrafficPolicyVersion |
Show DescriptionCreates a new version of an existing traffic policy. When you create a new version of a traffic policy, you specify the ID of the traffic policy that you want to update and a JSON-formatted document that describes the new version. You use traffic policies to create multiple DNS resource record sets for one domain name (such as example.com) or one subdomain name (such as www.example.com). You can create a maximum of 1000 versions of a traffic policy. If you reach the limit and need to create another version, you'll need to start a new traffic policy. |
|
| CreateVPCAssociationAuthorization |
Show DescriptionAuthorizes the Amazon Web Services account that created a specified VPC to submit anAssociateVPCWithHostedZone request to associate the VPC with a specified hosted zone that was created by a different account. To submit a CreateVPCAssociationAuthorization request, you must use the account that created the hosted zone. After you authorize the association, use the account that created the VPC to submit an AssociateVPCWithHostedZone request. |
|
| DeactivateKeySigningKey |
Show DescriptionDeactivates a key-signing key (KSK) so that it will not be used for signing by DNSSEC. This operation changes the KSK status toINACTIVE.
|
|
| DeleteHealthCheck |
Show DescriptionDeletes a health check.DeleteHealthCheck command to delete the health check. The health check is deleted automatically when you deregister the instance; there can be a delay of several hours before the health check is deleted from Route 53.
|
|
| DeleteHostedZone |
Show DescriptionDeletes a hosted zone. If the hosted zone was created by another service, such as Cloud Map, see Deleting Public Hosted Zones That Were Created by Another Service in the Amazon Route 53 Developer Guide for information about how to delete it. (The process is the same for public and private hosted zones that were created by another service.) If you want to keep your domain registration but you want to stop routing internet traffic to your website or web application, we recommend that you delete resource record sets in the hosted zone instead of deleting the hosted zone.HostedZoneNotEmpty error. For information about deleting records from your hosted zone, see ChangeResourceRecordSets. To verify that the hosted zone has been deleted, do one of the following:
|
|
| DeleteKeySigningKey |
Show DescriptionDeletes a key-signing key (KSK). Before you can delete a KSK, you must deactivate it. The KSK must be deactivated before you can delete it regardless of whether the hosted zone is enabled for DNSSEC signing. |
|
| DeleteQueryLoggingConfig |
Show DescriptionDeletes a configuration for DNS query logging. If you delete a configuration, Amazon Route 53 stops sending query logs to CloudWatch Logs. Route 53 doesn't delete any logs that are already in CloudWatch Logs. For more information about DNS query logs, see CreateQueryLoggingConfig. |
|
| DeleteReusableDelegationSet |
Show DescriptionDeletes a reusable delegation set. |
|
| DeleteTrafficPolicy |
Show DescriptionDeletes a traffic policy. When you delete a traffic policy, Route 53 sets a flag on the policy to indicate that it has been deleted. However, Route 53 never fully deletes the traffic policy. Note the following:
|
|
| DeleteTrafficPolicyInstance |
Show DescriptionDeletes a traffic policy instance and all of the resource record sets that Amazon Route 53 created when you created the instance. |
|
| DeleteVPCAssociationAuthorization |
Show DescriptionRemoves authorization to submit anAssociateVPCWithHostedZone request to associate a specified VPC with a hosted zone that was created by a different account. You must use the account that created the hosted zone to submit a DeleteVPCAssociationAuthorization request. DeleteVPCAssociationAuthorization won't disassociate the VPC from the hosted zone. If you want to delete an existing association, use DisassociateVPCFromHostedZone. |
|
| DisableHostedZoneDNSSEC |
Show DescriptionDisables DNSSEC signing in a specific hosted zone. This action does not deactivate any key-signing keys (KSKs) that are active in the hosted zone. |
|
| DisassociateVPCFromHostedZone |
Show DescriptionDisassociates an Amazon Virtual Private Cloud (Amazon VPC) from an Amazon Route 53 private hosted zone. Note the following:
|
|
| EnableHostedZoneDNSSEC |
Show DescriptionEnables DNSSEC signing in a specific hosted zone. |
|
| GetAccountLimit |
Show DescriptionGets the specified limit for the current account, for example, the maximum number of health checks that you can create using the account. For the default limit, see Limits in the Amazon Route 53 Developer Guide. To request a higher limit, open a case. |
|
| GetChange |
Show DescriptionReturns the current status of a change batch request. The status is one of the following values:
|
|
| GetCheckerIpRanges |
Show DescriptionRoute 53 does not perform authorization for this API because it retrieves information that is already available to the public.GetCheckerIpRanges still works, but we recommend that you download ip-ranges.json, which includes IP address ranges for all Amazon Web Services services. For more information, see IP Address Ranges of Amazon Route 53 Servers in the Amazon Route 53 Developer Guide. |
|
| GetDNSSEC |
Show DescriptionReturns information about DNSSEC for a specific hosted zone, including the key-signing keys (KSKs) in the hosted zone. |
|
| GetGeoLocation |
Show DescriptionGets information about whether a specified geographic location is supported for Amazon Route 53 geolocation resource record sets. Route 53 does not perform authorization for this API because it retrieves information that is already available to the public. Use the following syntax to determine whether a continent is supported for geolocation:GET /2013-04-01/geolocation?continentcode=two-letter abbreviation for a continent Use the following syntax to determine whether a country is supported for geolocation: GET /2013-04-01/geolocation?countrycode=two-character country code Use the following syntax to determine whether a subdivision of a country is supported for geolocation: GET /2013-04-01/geolocation?countrycode=two-character country code&subdivisioncode=subdivision code
|
|
| GetHealthCheck |
Show DescriptionGets information about a specified health check. |
|
| GetHealthCheckCount |
Show DescriptionRetrieves the number of health checks that are associated with the current Amazon Web Services account. |
|
| GetHealthCheckLastFailureReason |
Show DescriptionGets the reason that a specified health check failed most recently. |
|
| GetHealthCheckStatus |
Show DescriptionGets status of a specified health check. |
|
| GetHostedZone |
Show DescriptionGets information about a specified hosted zone including the four name servers assigned to the hosted zone. |
|
| GetHostedZoneCount |
Show DescriptionRetrieves the number of hosted zones that are associated with the current Amazon Web Services account. |
|
| GetHostedZoneLimit |
Show DescriptionGets the specified limit for a specified hosted zone, for example, the maximum number of records that you can create in the hosted zone. For the default limit, see Limits in the Amazon Route 53 Developer Guide. To request a higher limit, open a case. |
|
| GetQueryLoggingConfig |
Show DescriptionGets information about a specified configuration for DNS query logging. For more information about DNS query logs, see CreateQueryLoggingConfig and Logging DNS Queries. |
|
| GetReusableDelegationSet |
Show DescriptionRetrieves information about a specified reusable delegation set, including the four name servers that are assigned to the delegation set. |
|
| GetReusableDelegationSetLimit |
Show DescriptionGets the maximum number of hosted zones that you can associate with the specified reusable delegation set. For the default limit, see Limits in the Amazon Route 53 Developer Guide. To request a higher limit, open a case. |
|
| GetTrafficPolicy |
Show DescriptionGets information about a specific traffic policy version. For information about how of deleting a traffic policy affects the response fromGetTrafficPolicy, see DeleteTrafficPolicy.
|
|
| GetTrafficPolicyInstance |
Show DescriptionGets information about a specified traffic policy instance.CreateTrafficPolicyInstance or an UpdateTrafficPolicyInstance request, there's a brief delay while Amazon Route 53 creates the resource record sets that are specified in the traffic policy definition. For more information, see the State response element. |
|
| GetTrafficPolicyInstanceCount |
Show DescriptionGets the number of traffic policy instances that are associated with the current Amazon Web Services account. |
|
| ListGeoLocations |
Show DescriptionRetrieves a list of supported geographic locations. Countries are listed first, and continents are listed last. If Amazon Route 53 supports subdivisions for a country (for example, states or provinces), the subdivisions for that country are listed in alphabetical order immediately after the corresponding country. Route 53 does not perform authorization for this API because it retrieves information that is already available to the public. For a list of supported geolocation codes, see the GeoLocation data type. |
|
| ListHealthChecks |
Show DescriptionRetrieve a list of the health checks that are associated with the current Amazon Web Services account. |
|
| ListHostedZones |
Show DescriptionRetrieves a list of the public and private hosted zones that are associated with the current Amazon Web Services account. The response includes aHostedZones child element for each hosted zone. Amazon Route 53 returns a maximum of 100 items in each response. If you have a lot of hosted zones, you can use the maxitems parameter to list them in groups of up to 100.
|
|
| ListHostedZonesByName |
Show DescriptionRetrieves a list of your hosted zones in lexicographic order. The response includes aHostedZones child element for each hosted zone created by the current Amazon Web Services account. ListHostedZonesByName sorts hosted zones by name with the labels reversed. For example: com.example.www. Note the trailing dot, which can change the sort order in some circumstances. If the domain name includes escape characters or Punycode, ListHostedZonesByName alphabetizes the domain name using the escaped or Punycoded value, which is the format that Amazon Route 53 saves in its database. For example, to create a hosted zone for exämple.com, you specify ex\344mple.com for the domain name. ListHostedZonesByName alphabetizes it as: com.ex\344mple. The labels are reversed and alphabetized using the escaped value. For more information about valid domain name formats, including internationalized domain names, see DNS Domain Name Format in the Amazon Route 53 Developer Guide. Route 53 returns up to 100 items in each response. If you have a lot of hosted zones, use the MaxItems parameter to list them in groups of up to 100. The response includes values that help navigate from one group of MaxItems hosted zones to the next:
|
|
| ListHostedZonesByVPC |
Show DescriptionLists all the private hosted zones that a specified VPC is associated with, regardless of which Amazon Web Services account or Amazon Web Services service owns the hosted zones. TheHostedZoneOwner structure in the response contains one of the following values:
|
|
| ListQueryLoggingConfigs |
Show DescriptionLists the configurations for DNS query logging that are associated with the current Amazon Web Services account or the configuration that is associated with a specified hosted zone. For more information about DNS query logs, see CreateQueryLoggingConfig. Additional information, including the format of DNS query logs, appears in Logging DNS Queries in the Amazon Route 53 Developer Guide. |
|
| ListResourceRecordSets |
Show DescriptionLists the resource record sets in a specified hosted zone.ListResourceRecordSets returns up to 300 resource record sets at a time in ASCII order, beginning at a position specified by the name and type elements. Sort order ListResourceRecordSets sorts results first by DNS name with the labels reversed, for example: com.example.www. Note the trailing dot, which can change the sort order when the record name contains characters that appear before . (decimal 46) in the ASCII table. These characters include the following: ! " # $ % & ' ( ) * + , - When multiple records have the same DNS name, ListResourceRecordSets sorts results by the record type. Specifying where to start listing records You can use the name and type elements to specify the resource record set that the list begins with:
PENDING, and that are not yet available on all Route 53 DNS servers. Changing resource record sets To ensure that you get an accurate listing of the resource record sets for a hosted zone at a point in time, do not submit a ChangeResourceRecordSets request while you're paging through the results of a ListResourceRecordSets request. If you do, some pages may display results without the latest changes while other pages display results with the latest changes. Displaying the next page of results If a ListResourceRecordSets command returns more than one page of results, the value of IsTruncated is true. To display the next page of results, get the values of NextRecordName, NextRecordType, and NextRecordIdentifier (if any) from the response. Then submit another ListResourceRecordSets request, and specify those values for StartRecordName, StartRecordType, and StartRecordIdentifier.
|
|
| ListReusableDelegationSets |
Show DescriptionRetrieves a list of the reusable delegation sets that are associated with the current Amazon Web Services account. |
|
| ListTagsForResource |
Show DescriptionLists tags for one health check or hosted zone. For information about using tags for cost allocation, see Using Cost Allocation Tags in the Billing and Cost Management User Guide. |
|
| ListTagsForResources |
Show DescriptionLists tags for up to 10 health checks or hosted zones. For information about using tags for cost allocation, see Using Cost Allocation Tags in the Billing and Cost Management User Guide. |
|
| ListTrafficPolicies |
Show DescriptionGets information about the latest version for every traffic policy that is associated with the current Amazon Web Services account. Policies are listed in the order that they were created in. For information about how of deleting a traffic policy affects the response fromListTrafficPolicies, see DeleteTrafficPolicy.
|
|
| ListTrafficPolicyInstances |
Show DescriptionGets information about the traffic policy instances that you created by using the current Amazon Web Services account.UpdateTrafficPolicyInstance request, there's a brief delay while Amazon Route 53 creates the resource record sets that are specified in the traffic policy definition. For more information, see the State response element. MaxItems parameter to list them in groups of up to 100.
|
|
| ListTrafficPolicyInstancesByHostedZone |
Show DescriptionGets information about the traffic policy instances that you created in a specified hosted zone.CreateTrafficPolicyInstance or an UpdateTrafficPolicyInstance request, there's a brief delay while Amazon Route 53 creates the resource record sets that are specified in the traffic policy definition. For more information, see the State response element. MaxItems parameter to list them in groups of up to 100.
|
|
| ListTrafficPolicyInstancesByPolicy |
Show DescriptionGets information about the traffic policy instances that you created by using a specify traffic policy version.CreateTrafficPolicyInstance or an UpdateTrafficPolicyInstance request, there's a brief delay while Amazon Route 53 creates the resource record sets that are specified in the traffic policy definition. For more information, see the State response element. MaxItems parameter to list them in groups of up to 100.
|
|
| ListTrafficPolicyVersions |
Show DescriptionGets information about all of the versions for a specified traffic policy. Traffic policy versions are listed in numerical order byVersionNumber.
|
|
| ListVPCAssociationAuthorizations |
Show DescriptionGets a list of the VPCs that were created by other accounts and that can be associated with a specified hosted zone because you've submitted one or moreCreateVPCAssociationAuthorization requests. The response includes a VPCs element with a VPC child element for each VPC that can be associated with the hosted zone.
|
|
| TestDNSAnswer |
Show DescriptionGets the value that Amazon Route 53 returns in response to a DNS request for a specified record name and type. You can optionally specify the IP address of a DNS resolver, an EDNS0 client subnet IP address, and a subnet mask. This call only supports querying public hosted zones. |
|
| UpdateHealthCheck |
Show DescriptionUpdates an existing health check. Note that some values can't be updated. For more information about updating health checks, see Creating, Updating, and Deleting Health Checks in the Amazon Route 53 Developer Guide. |
|
| UpdateHostedZoneComment |
Show DescriptionUpdates the comment for a specified hosted zone. |
|
| UpdateTrafficPolicyComment |
Show DescriptionUpdates the comment for a specified traffic policy version. |
Route53domains Events
| Service | Event Name | Description |
|---|---|---|
| route53domains | AcceptDomainTransferFromAnotherAwsAccount |
Show DescriptionAccepts the transfer of a domain from another AWS account to the current AWS account. You initiate a transfer between AWS accounts using TransferDomainToAnotherAwsAccount. Use either ListOperations or GetOperationDetail to determine whether the operation succeeded. GetOperationDetail provides additional information, for example,Domain Transfer from Aws Account 111122223333 has been cancelled.
|
| CancelDomainTransferToAnotherAwsAccount |
Show DescriptionCancels the transfer of a domain from the current AWS account to another AWS account. You initiate a transfer between AWS accounts using TransferDomainToAnotherAwsAccount.Domain Transfer from Aws Account 111122223333 has been cancelled.
|
|
| CheckDomainAvailability |
Show DescriptionThis operation checks the availability of one domain name. Note that if the availability status of a domain is pending, you must submit another request to determine the availability of the domain name. |
|
| CheckDomainTransferability |
Show DescriptionChecks whether a domain name can be transferred to Amazon Route 53. |
|
| DeleteTagsForDomain |
Show DescriptionThis operation deletes the specified tags for a domain. All tag operations are eventually consistent; subsequent operations might not immediately represent all issued operations. |
|
| DisableDomainAutoRenew |
Show DescriptionThis operation disables automatic renewal of domain registration for the specified domain. |
|
| DisableDomainTransferLock |
Show DescriptionThis operation removes the transfer lock on the domain (specifically theclientTransferProhibited status) to allow domain transfers. We recommend you refrain from performing this action unless you intend to transfer the domain to a different registrar. Successful submission returns an operation ID that you can use to track the progress and completion of the action. If the request is not completed successfully, the domain registrant will be notified by email.
|
|
| EnableDomainAutoRenew |
Show DescriptionThis operation configures Amazon Route 53 to automatically renew the specified domain before the domain registration expires. The cost of renewing your domain registration is billed to your AWS account. The period during which you can renew a domain name varies by TLD. For a list of TLDs and their renewal policies, see Domains That You Can Register with Amazon Route 53 in the Amazon Route 53 Developer Guide. Route 53 requires that you renew before the end of the renewal period so we can complete processing before the deadline. |
|
| EnableDomainTransferLock |
Show DescriptionThis operation sets the transfer lock on the domain (specifically theclientTransferProhibited status) to prevent domain transfers. Successful submission returns an operation ID that you can use to track the progress and completion of the action. If the request is not completed successfully, the domain registrant will be notified by email.
|
|
| GetContactReachabilityStatus |
Show DescriptionFor operations that require confirmation that the email address for the registrant contact is valid, such as registering a new domain, this operation returns information about whether the registrant contact has responded. If you want us to resend the email, use theResendContactReachabilityEmail operation.
|
|
| GetDomainDetail |
Show DescriptionThis operation returns detailed information about a specified domain that is associated with the current AWS account. Contact information for the domain is also returned as part of the output. |
|
| GetDomainSuggestions |
Show DescriptionThe GetDomainSuggestions operation returns a list of suggested domain names. |
|
| GetOperationDetail |
Show DescriptionThis operation returns the current status of an operation that is not completed. |
|
| ListDomains |
Show DescriptionThis operation returns all the domain names registered with Amazon Route 53 for the current AWS account. |
|
| ListOperations |
Show DescriptionReturns information about all of the operations that return an operation ID and that have ever been performed on domains that were registered by the current account. |
|
| ListTagsForDomain |
Show DescriptionThis operation returns all of the tags that are associated with the specified domain. All tag operations are eventually consistent; subsequent operations might not immediately represent all issued operations. |
|
| RegisterDomain |
Show DescriptionThis operation registers a domain. Domains are registered either by Amazon Registrar (for .com, .net, and .org domains) or by our registrar associate, Gandi (for all other domains). For some top-level domains (TLDs), this operation requires extra parameters. When you register a domain, Amazon Route 53 does the following:
|
|
| RejectDomainTransferFromAnotherAwsAccount |
Show DescriptionRejects the transfer of a domain from another AWS account to the current AWS account. You initiate a transfer between AWS accounts using TransferDomainToAnotherAwsAccount. Use either ListOperations or GetOperationDetail to determine whether the operation succeeded. GetOperationDetail provides additional information, for example,Domain Transfer from Aws Account 111122223333 has been cancelled.
|
|
| RenewDomain |
Show DescriptionThis operation renews a domain for the specified number of years. The cost of renewing your domain is billed to your AWS account. We recommend that you renew your domain several weeks before the expiration date. Some TLD registries delete domains before the expiration date if you haven't renewed far enough in advance. For more information about renewing domain registration, see Renewing Registration for a Domain in the Amazon Route 53 Developer Guide. |
|
| ResendContactReachabilityEmail |
Show DescriptionFor operations that require confirmation that the email address for the registrant contact is valid, such as registering a new domain, this operation resends the confirmation email to the current email address for the registrant contact. |
|
| RetrieveDomainAuthCode |
Show DescriptionThis operation returns the AuthCode for the domain. To transfer a domain to another registrar, you provide this value to the new registrar. |
|
| TransferDomain |
Show DescriptionTransfers a domain from another registrar to Amazon Route 53. When the transfer is complete, the domain is registered either with Amazon Registrar (for .com, .net, and .org domains) or with our registrar associate, Gandi (for all other TLDs). For more information about transferring domains, see the following topics:
|
|
| TransferDomainToAnotherAwsAccount |
Show DescriptionTransfers a domain from the current AWS account to another AWS account. Note the following:
Domain Transfer from Aws Account 111122223333 has been cancelled.
|
|
| UpdateDomainContact |
Show DescriptionThis operation updates the contact information for a particular domain. You must specify information for at least one contact: registrant, administrator, or technical. If the update is successful, this method returns an operation ID that you can use to track the progress and completion of the action. If the request is not completed successfully, the domain registrant will be notified by email. |
|
| UpdateDomainContactPrivacy |
Show DescriptionThis operation updates the specified domain contact's privacy setting. When privacy protection is enabled, contact information such as email address is replaced either with contact information for Amazon Registrar (for .com, .net, and .org domains) or with contact information for our registrar associate, Gandi. This operation affects only the contact information for the specified contact type (registrant, administrator, or tech). If the request succeeds, Amazon Route 53 returns an operation ID that you can use with GetOperationDetail to track the progress and completion of the action. If the request doesn't complete successfully, the domain registrant will be notified by email.UpdateDomainContactPrivacy or the Route 53 console. Enabling privacy protection removes the contact information provided for this domain from the WHOIS database. For more information on our privacy practices, see https://aws.amazon.com/privacy/. |
|
| UpdateDomainNameservers |
Show DescriptionThis operation replaces the current set of name servers for the domain with the specified set of name servers. If you use Amazon Route 53 as your DNS service, specify the four name servers in the delegation set for the hosted zone for the domain. If successful, this operation returns an operation ID that you can use to track the progress and completion of the action. If the request is not completed successfully, the domain registrant will be notified by email. |
|
| UpdateTagsForDomain |
Show DescriptionThis operation adds or updates tags for a specified domain. All tag operations are eventually consistent; subsequent operations might not immediately represent all issued operations. |
Route53resolver Events
| Service | Event Name | Description |
|---|---|---|
| route53resolver | AssociateFirewallRuleGroup |
Show DescriptionAssociates a FirewallRuleGroup with a VPC, to provide DNS filtering for the VPC. |
| AssociateResolverEndpointIpAddress |
Show DescriptionAdds IP addresses to an inbound or an outbound Resolver endpoint. If you want to add more than one IP address, submit oneAssociateResolverEndpointIpAddress request for each IP address. To remove an IP address from an endpoint, see DisassociateResolverEndpointIpAddress.
|
|
| AssociateResolverQueryLogConfig |
Show DescriptionAssociates an Amazon VPC with a specified query logging configuration. Route 53 Resolver logs DNS queries that originate in all of the Amazon VPCs that are associated with a specified query logging configuration. To associate more than one VPC with a configuration, submit oneAssociateResolverQueryLogConfig request for each VPC. |
|
| AssociateResolverRule |
Show DescriptionAssociates a Resolver rule with a VPC. When you associate a rule with a VPC, Resolver forwards all DNS queries for the domain name that is specified in the rule and that originate in the VPC. The queries are forwarded to the IP addresses for the DNS resolvers that are specified in the rule. For more information about rules, see CreateResolverRule. |
|
| CreateFirewallDomainList |
Show DescriptionCreates an empty firewall domain list for use in DNS Firewall rules. You can populate the domains for the new list with a file, using ImportFirewallDomains, or with domain strings, using UpdateFirewallDomains. |
|
| CreateFirewallRule |
Show DescriptionCreates a single DNS Firewall rule in the specified rule group, using the specified domain list. |
|
| CreateFirewallRuleGroup |
Show DescriptionCreates an empty DNS Firewall rule group for filtering DNS network traffic in a VPC. You can add rules to the new rule group by calling CreateFirewallRule. |
|
| CreateResolverEndpoint |
Show DescriptionCreates a Resolver endpoint. There are two types of Resolver endpoints, inbound and outbound:
|
|
| CreateResolverQueryLogConfig |
Show DescriptionCreates a Resolver query logging configuration, which defines where you want Resolver to save DNS query logs that originate in your VPCs. Resolver can log queries only for VPCs that are in the same Region as the query logging configuration. To specify which VPCs you want to log queries for, you useAssociateResolverQueryLogConfig. For more information, see AssociateResolverQueryLogConfig. You can optionally use Resource Access Manager (RAM) to share a query logging configuration with other Amazon Web Services accounts. The other accounts can then associate VPCs with the configuration. The query logs that Resolver creates for a configuration include all DNS queries that originate in all VPCs that are associated with the configuration.
|
|
| CreateResolverRule |
Show DescriptionFor DNS queries that originate in your VPCs, specifies which Resolver endpoint the queries pass through, one domain name that you want to forward to your network, and the IP addresses of the DNS resolvers in your network. |
|
| DeleteFirewallDomainList |
Show DescriptionDeletes the specified domain list. |
|
| DeleteFirewallRule |
Show DescriptionDeletes the specified firewall rule. |
|
| DeleteFirewallRuleGroup |
Show DescriptionDeletes the specified firewall rule group. |
|
| DeleteResolverEndpoint |
Show DescriptionDeletes a Resolver endpoint. The effect of deleting a Resolver endpoint depends on whether it's an inbound or an outbound Resolver endpoint:
|
|
| DeleteResolverQueryLogConfig |
Show DescriptionDeletes a query logging configuration. When you delete a configuration, Resolver stops logging DNS queries for all of the Amazon VPCs that are associated with the configuration. This also applies if the query logging configuration is shared with other Amazon Web Services accounts, and the other accounts have associated VPCs with the shared configuration. Before you can delete a query logging configuration, you must first disassociate all VPCs from the configuration. See DisassociateResolverQueryLogConfig. If you used Resource Access Manager (RAM) to share a query logging configuration with other accounts, you must stop sharing the configuration before you can delete a configuration. The accounts that you shared the configuration with can first disassociate VPCs that they associated with the configuration, but that's not necessary. If you stop sharing the configuration, those VPCs are automatically disassociated from the configuration. |
|
| DeleteResolverRule |
Show DescriptionDeletes a Resolver rule. Before you can delete a Resolver rule, you must disassociate it from all the VPCs that you associated the Resolver rule with. For more information, see DisassociateResolverRule. |
|
| DisassociateFirewallRuleGroup |
Show DescriptionDisassociates a FirewallRuleGroup from a VPC, to remove DNS filtering from the VPC. |
|
| DisassociateResolverEndpointIpAddress |
Show DescriptionRemoves IP addresses from an inbound or an outbound Resolver endpoint. If you want to remove more than one IP address, submit oneDisassociateResolverEndpointIpAddress request for each IP address. To add an IP address to an endpoint, see AssociateResolverEndpointIpAddress.
|
|
| DisassociateResolverQueryLogConfig |
Show DescriptionDisassociates a VPC from a query logging configuration.
|
|
| DisassociateResolverRule |
Show DescriptionRemoves the association between a specified Resolver rule and a specified VPC. |
|
| GetFirewallConfig |
Show DescriptionRetrieves the configuration of the firewall behavior provided by DNS Firewall for a single VPC from Amazon Virtual Private Cloud (Amazon VPC). |
|
| GetFirewallDomainList |
Show DescriptionRetrieves the specified firewall domain list. |
|
| GetFirewallRuleGroup |
Show DescriptionRetrieves the specified firewall rule group. |
|
| GetFirewallRuleGroupAssociation |
Show DescriptionRetrieves a firewall rule group association, which enables DNS filtering for a VPC with one rule group. A VPC can have more than one firewall rule group association, and a rule group can be associated with more than one VPC. |
|
| GetFirewallRuleGroupPolicy |
Show DescriptionReturns the Identity and Access Management (Amazon Web Services IAM) policy for sharing the specified rule group. You can use the policy to share the rule group using Resource Access Manager (RAM). |
|
| GetResolverConfig |
Show DescriptionRetrieves the behavior configuration of Route 53 Resolver behavior for a single VPC from Amazon Virtual Private Cloud. |
|
| GetResolverDnssecConfig |
Show DescriptionGets DNSSEC validation information for a specified resource. |
|
| GetResolverEndpoint |
Show DescriptionGets information about a specified Resolver endpoint, such as whether it's an inbound or an outbound Resolver endpoint, and the current status of the endpoint. |
|
| GetResolverQueryLogConfig |
Show DescriptionGets information about a specified Resolver query logging configuration, such as the number of VPCs that the configuration is logging queries for and the location that logs are sent to. |
|
| GetResolverQueryLogConfigAssociation |
Show DescriptionGets information about a specified association between a Resolver query logging configuration and an Amazon VPC. When you associate a VPC with a query logging configuration, Resolver logs DNS queries that originate in that VPC. |
|
| GetResolverQueryLogConfigPolicy |
Show DescriptionGets information about a query logging policy. A query logging policy specifies the Resolver query logging operations and resources that you want to allow another Amazon Web Services account to be able to use. |
|
| GetResolverRule |
Show DescriptionGets information about a specified Resolver rule, such as the domain name that the rule forwards DNS queries for and the ID of the outbound Resolver endpoint that the rule is associated with. |
|
| GetResolverRuleAssociation |
Show DescriptionGets information about an association between a specified Resolver rule and a VPC. You associate a Resolver rule and a VPC using AssociateResolverRule. |
|
| GetResolverRulePolicy |
Show DescriptionGets information about the Resolver rule policy for a specified rule. A Resolver rule policy includes the rule that you want to share with another account, the account that you want to share the rule with, and the Resolver operations that you want to allow the account to use. |
|
| ImportFirewallDomains |
Show DescriptionImports domain names from a file into a domain list, for use in a DNS firewall rule group. Each domain specification in your domain list must satisfy the following requirements:
|
|
| ListFirewallConfigs |
Show DescriptionRetrieves the firewall configurations that you have defined. DNS Firewall uses the configurations to manage firewall behavior for your VPCs. A single call might return only a partial list of the configurations. For information, seeMaxResults.
|
|
| ListFirewallDomainLists |
Show DescriptionRetrieves the firewall domain lists that you have defined. For each firewall domain list, you can retrieve the domains that are defined for a list by calling ListFirewallDomains. A single call to this list operation might return only a partial list of the domain lists. For information, seeMaxResults.
|
|
| ListFirewallDomains |
Show DescriptionRetrieves the domains that you have defined for the specified firewall domain list. A single call might return only a partial list of the domains. For information, seeMaxResults.
|
|
| ListFirewallRuleGroupAssociations |
Show DescriptionRetrieves the firewall rule group associations that you have defined. Each association enables DNS filtering for a VPC with one rule group. A single call might return only a partial list of the associations. For information, seeMaxResults.
|
|
| ListFirewallRuleGroups |
Show DescriptionRetrieves the minimal high-level information for the rule groups that you have defined. A single call might return only a partial list of the rule groups. For information, seeMaxResults.
|
|
| ListFirewallRules |
Show DescriptionRetrieves the firewall rules that you have defined for the specified firewall rule group. DNS Firewall uses the rules in a rule group to filter DNS network traffic for a VPC. A single call might return only a partial list of the rules. For information, seeMaxResults.
|
|
| ListResolverConfigs |
Show DescriptionRetrieves the Resolver configurations that you have defined. Route 53 Resolver uses the configurations to manage DNS resolution behavior for your VPCs. |
|
| ListResolverDnssecConfigs |
Show DescriptionLists the configurations for DNSSEC validation that are associated with the current Amazon Web Services account. |
|
| ListResolverEndpointIpAddresses |
Show DescriptionGets the IP addresses for a specified Resolver endpoint. |
|
| ListResolverEndpoints |
Show DescriptionLists all the Resolver endpoints that were created using the current Amazon Web Services account. |
|
| ListResolverQueryLogConfigAssociations |
Show DescriptionLists information about associations between Amazon VPCs and query logging configurations. |
|
| ListResolverQueryLogConfigs |
Show DescriptionLists information about the specified query logging configurations. Each configuration defines where you want Resolver to save DNS query logs and specifies the VPCs that you want to log queries for. |
|
| ListResolverRuleAssociations |
Show DescriptionLists the associations that were created between Resolver rules and VPCs using the current Amazon Web Services account. |
|
| ListResolverRules |
Show DescriptionLists the Resolver rules that were created using the current Amazon Web Services account. |
|
| ListTagsForResource |
Show DescriptionLists the tags that you associated with the specified resource. |
|
| PutFirewallRuleGroupPolicy |
Show DescriptionAttaches an Identity and Access Management (Amazon Web Services IAM) policy for sharing the rule group. You can use the policy to share the rule group using Resource Access Manager (RAM). |
|
| PutResolverQueryLogConfigPolicy |
Show DescriptionSpecifies an Amazon Web Services account that you want to share a query logging configuration with, the query logging configuration that you want to share, and the operations that you want the account to be able to perform on the configuration. |
|
| PutResolverRulePolicy |
Show DescriptionSpecifies an Amazon Web Services rule that you want to share with another account, the account that you want to share the rule with, and the operations that you want the account to be able to perform on the rule. |
|
| TagResource |
Show DescriptionAdds one or more tags to a specified resource. |
|
| UntagResource |
Show DescriptionRemoves one or more tags from a specified resource. |
|
| UpdateFirewallConfig |
Show DescriptionUpdates the configuration of the firewall behavior provided by DNS Firewall for a single VPC from Amazon Virtual Private Cloud (Amazon VPC). |
|
| UpdateFirewallDomains |
Show DescriptionUpdates the firewall domain list from an array of domain specifications. |
|
| UpdateFirewallRule |
Show DescriptionUpdates the specified firewall rule. |
|
| UpdateFirewallRuleGroupAssociation |
Show DescriptionChanges the association of a FirewallRuleGroup with a VPC. The association enables DNS filtering for the VPC. |
|
| UpdateResolverConfig |
Show DescriptionUpdates the behavior configuration of Route 53 Resolver behavior for a single VPC from Amazon Virtual Private Cloud. |
|
| UpdateResolverDnssecConfig |
Show DescriptionUpdates an existing DNSSEC validation configuration. If there is no existing DNSSEC validation configuration, one is created. |
|
| UpdateResolverEndpoint |
Show DescriptionUpdates the name of an inbound or an outbound Resolver endpoint. |
S3 Events
| Service | Event Name | Description | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| s3 | AbortMultipartUpload |
Show DescriptionThis action aborts a multipart upload. After a multipart upload is aborted, no additional parts can be uploaded using that upload ID. The storage consumed by any previously uploaded parts will be freed. However, if any part uploads are currently in progress, those part uploads might or might not succeed. As a result, it might be necessary to abort a given multipart upload multiple times in order to completely free all storage consumed by all parts. To verify that all parts have been removed, so you don't get charged for the part storage, you should call the ListParts action and ensure that the parts list is empty. For information about permissions required to use the multipart upload, see Multipart Upload and Permissions. The following operations are related toAbortMultipartUpload:
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| CompleteMultipartUpload |
Show DescriptionCompletes a multipart upload by assembling previously uploaded parts. You first initiate the multipart upload and then upload all parts using the UploadPart operation. After successfully uploading all relevant parts of an upload, you call this action to complete the upload. Upon receiving this request, Amazon S3 concatenates all the parts in ascending order by part number to create a new object. In the Complete Multipart Upload request, you must provide the parts list. You must ensure that the parts list is complete. This action concatenates the parts that you provide in the list. For each part in the list, you must provide the part number and theETag value, returned after that part was uploaded. Processing of a Complete Multipart Upload request could take several minutes to complete. After Amazon S3 begins processing the request, it sends an HTTP response header that specifies a 200 OK response. While processing is in progress, Amazon S3 periodically sends white space characters to keep the connection from timing out. Because a request could fail after the initial 200 OK response has been sent, it is important that you check the response body to determine whether the request succeeded. Note that if CompleteMultipartUpload fails, applications should be prepared to retry the failed requests. For more information, see Amazon S3 Error Best Practices. For more information about multipart uploads, see Uploading Objects Using Multipart Upload. For information about permissions required to use the multipart upload API, see Multipart Upload and Permissions. CompleteMultipartUpload has the following special errors:
CompleteMultipartUpload:
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| CopyObject |
Show DescriptionCreates a copy of an object that is already stored in Amazon S3.200 OK response. This means that a 200 OK response can contain either a success or an error. Design your application to parse the contents of the response and handle it appropriately. If the copy is successful, you receive a response with information about the copied object. Bad Request error. For more information, see Transfer Acceleration. x-amz-metadata-directive header. When you grant permissions, you can use the s3:x-amz-metadata-directive condition key to enforce certain metadata behavior when objects are uploaded. For more information, see Specifying Conditions in a Policy in the Amazon S3 User Guide. For a complete list of Amazon S3-specific condition keys, see Actions, Resources, and Condition Keys for Amazon S3. x-amz-copy-source-if Headers To only copy an object under certain conditions, such as whether the Etag matches or whether the object was modified before or after a specified date, use the following request parameters:
x-amz-copy-source-if-match and x-amz-copy-source-if-unmodified-since headers are present in the request and evaluate as follows, Amazon S3 returns 200 OK and copies the data:
x-amz-copy-source-if-none-match and x-amz-copy-source-if-modified-since headers are present in the request and evaluate as follows, Amazon S3 returns the 412 Precondition Failed response code:
x-amz- prefix, including x-amz-copy-source, must be signed. CopyObject action to change the storage class of an object that is already stored in Amazon S3 using the StorageClass parameter. For more information, see Storage Classes in the Amazon S3 User Guide. Versioning By default, x-amz-copy-source identifies the current version of an object to copy. If the current version is a delete marker, Amazon S3 behaves as if the object was deleted. To copy a different version, use the versionId subresource. If you enable versioning on the target bucket, Amazon S3 generates a unique version ID for the object being copied. This version ID is different from the version ID of the source object. Amazon S3 returns the version ID of the copied object in the x-amz-version-id response header in the response. If you do not enable versioning or suspend it on the target bucket, the version ID that Amazon S3 generates is always null. If the source object's storage class is GLACIER, you must restore a copy of this object before you can use it as a source object for the copy operation. For more information, see RestoreObject. The following operations are related to CopyObject: For more information, see Copying Objects.
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| CreateBucket |
Show DescriptionCreates a new S3 bucket. To create a bucket, you must register with Amazon S3 and have a valid Amazon Web Services Access Key ID to authenticate requests. Anonymous requests are never allowed to create buckets. By creating the bucket, you become the bucket owner. Not every string is an acceptable bucket name. For information about bucket naming restrictions, see Bucket naming rules. If you want to create an Amazon S3 on Outposts bucket, see Create Bucket. By default, the bucket is created in the US East (N. Virginia) Region. You can optionally specify a Region in the request body. You might choose a Region to optimize latency, minimize costs, or address regulatory requirements. For example, if you reside in Europe, you will probably find it advantageous to create buckets in the Europe (Ireland) Region. For more information, see Accessing a bucket.s3.amazonaws.com endpoint, the request goes to the us-east-1 Region. Accordingly, the signature calculations in Signature Version 4 must use us-east-1 as the Region, even if the location constraint in the request specifies another Region where the bucket is to be created. If you create a bucket in a Region other than US East (N. Virginia), your application must be able to handle 307 redirect. For more information, see Virtual hosting of buckets.
CreateBucket request specifies ACL permissions and the ACL is public-read, public-read-write, authenticated-read, or if you specify access permissions explicitly through any other ACL, both s3:CreateBucket and s3:PutBucketAcl permissions are needed. If the ACL the CreateBucket request is private, only s3:CreateBucket permission is needed. If ObjectLockEnabledForBucket is set to true in your CreateBucket request, s3:PutBucketObjectLockConfiguration and s3:PutBucketVersioning permissions are required. The following operations are related to CreateBucket:
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| CreateMultipartUpload |
Show DescriptionThis action initiates a multipart upload and returns an upload ID. This upload ID is used to associate all of the parts in the specific multipart upload. You specify this upload ID in each of your subsequent upload part requests (see UploadPart). You also include this upload ID in the final request to either complete or abort the multipart upload request. For more information about multipart uploads, see Multipart Upload Overview. If you have configured a lifecycle rule to abort incomplete multipart uploads, the upload must complete within the number of days specified in the bucket lifecycle configuration. Otherwise, the incomplete multipart upload becomes eligible for an abort action and Amazon S3 aborts the multipart upload. For more information, see Aborting Incomplete Multipart Uploads Using a Bucket Lifecycle Policy. For information about the permissions required to use the multipart upload API, see Multipart Upload and Permissions. For request signing, multipart upload is just a series of regular requests. You initiate a multipart upload, send one or more requests to upload parts, and then complete the multipart upload process. You sign each request individually. There is nothing special about signing multipart upload requests. For more information about signing, see Authenticating Requests (Amazon Web Services Signature Version 4).CreateMultipartUpload. To perform a multipart upload with encryption using an Amazon Web Services KMS key, the requester must have permission to the kms:Decrypt and kms:GenerateDataKey* actions on the key. These permissions are required because Amazon S3 must decrypt and read data from the encrypted file parts before it completes the multipart upload. For more information, see Multipart upload API and permissions in the Amazon S3 User Guide. If your Identity and Access Management (IAM) user or role is in the same Amazon Web Services account as the KMS key, then you must have these permissions on the key policy. If your IAM user or role belongs to a different account than the key, then you must have the permissions on both the key policy and your IAM user or role. For more information, see Protecting Data Using Server-Side Encryption.
CreateMultipartUpload:
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucket | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketAnalyticsConfiguration | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketCors | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketEncryption | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketIntelligentTieringConfiguration | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketInventoryConfiguration | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketLifecycle | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketMetricsConfiguration | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketOwnershipControls | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketPolicy | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketReplication | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketTagging | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteBucketWebsite | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteObject |
Show DescriptionRemoves the null version (if there is one) of an object and inserts a delete marker, which becomes the latest version of the object. If there isn't a null version, Amazon S3 does not remove any objects but will still respond that the command was successful. To remove a specific version, you must be the bucket owner and you must use the version Id subresource. Using this subresource permanently deletes the version. If the object deleted is a delete marker, Amazon S3 sets the response header,x-amz-delete-marker, to true. If the object you want to delete is in a bucket where the bucket versioning configuration is MFA Delete enabled, you must include the x-amz-mfa request header in the DELETE versionId request. Requests that include x-amz-mfa must use HTTPS. For more information about MFA Delete, see Using MFA Delete. To see sample requests that use versioning, see Sample Request. You can delete objects by explicitly calling DELETE Object or configure its lifecycle (PutBucketLifecycle) to enable Amazon S3 to remove them for you. If you want to block users or accounts from removing or deleting objects from your bucket, you must deny them the s3:DeleteObject, s3:DeleteObjectVersion, and s3:PutLifeCycleConfiguration actions. The following action is related to DeleteObject:
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteObjectTagging |
Show DescriptionRemoves the entire tag set from the specified object. For more information about managing object tags, see Object Tagging. To use this operation, you must have permission to perform thes3:DeleteObjectTagging action. To delete tags of a specific object version, add the versionId query parameter in the request. You will need permission for the s3:DeleteObjectVersionTagging action. The following operations are related to DeleteBucketMetricsConfiguration:
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeleteObjects |
Show DescriptionThis action enables you to delete multiple objects from a bucket using a single HTTP request. If you know the object keys that you want to delete, then this action provides a suitable alternative to sending individual delete requests, reducing per-request overhead. The request contains a list of up to 1000 keys that you want to delete. In the XML, you provide the object key names, and optionally, version IDs if you want to delete a specific version of the object from a versioning-enabled bucket. For each key, Amazon S3 performs a delete action and returns the result of that delete, success, or failure, in the response. Note that if the object specified in the request is not found, Amazon S3 returns the result as deleted. The action supports two modes for the response: verbose and quiet. By default, the action uses verbose mode in which the response includes the result of deletion of each key in your request. In quiet mode the response includes only keys where the delete action encountered an error. For a successful deletion, the action does not return any information about the delete in the response body. When performing this action on an MFA Delete enabled bucket, that attempts to delete any versioned objects, you must include an MFA token. If you do not provide one, the entire request will fail, even if there are non-versioned objects you are trying to delete. If you provide an invalid token, whether there are versioned keys in the request or not, the entire Multi-Object Delete request will fail. For information about MFA Delete, see MFA Delete. Finally, the Content-MD5 header is required for all Multi-Object Delete requests. Amazon S3 uses the header value to ensure that your request body has not been altered in transit. The following operations are related toDeleteObjects:
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| DeletePublicAccessBlock | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| GetBucketAccelerateConfiguration |
Show DescriptionThis implementation of the GET action uses theaccelerate subresource to return the Transfer Acceleration state of a bucket, which is either Enabled or Suspended. Amazon S3 Transfer Acceleration is a bucket-level feature that enables you to perform faster data transfers to and from Amazon S3. To use this operation, you must have permission to perform the s3:GetAccelerateConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to your Amazon S3 Resources in the Amazon S3 User Guide. You set the Transfer Acceleration state of an existing bucket to Enabled or Suspended by using the PutBucketAccelerateConfiguration operation. A GET accelerate request does not return a state value for a bucket that has no transfer acceleration state. A bucket has no Transfer Acceleration state if a state has never been set on the bucket. For more information about transfer acceleration, see Transfer Acceleration in the Amazon S3 User Guide. Related Resources </details> </td> </tr>GetBucketAcl |
| Show DescriptionThis implementation of theGET action uses the acl subresource to return the access control list (ACL) of a bucket. To use GET to return the ACL of the bucket, you must have READ_ACP access to the bucket. If READ_ACP permission is granted to the anonymous user, you can return the ACL of the bucket without using an authorization header. Related Resources </details> </td> </tr>GetBucketAnalyticsConfiguration |
| Show DescriptionThis implementation of the GET action returns an analytics configuration (identified by the analytics configuration ID) from the bucket. To use this operation, you must have permissions to perform thes3:GetAnalyticsConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources in the Amazon S3 User Guide. For information about Amazon S3 analytics feature, see Amazon S3 Analytics – Storage Class Analysis in the Amazon S3 User Guide. Related Resources
GetBucketCors |
|
Show DescriptionReturns the cors configuration information set for the bucket. To use this operation, you must have permission to perform the s3:GetBucketCORS action. By default, the bucket owner has this permission and can grant it to others. For more information about cors, see Enabling Cross-Origin Resource Sharing. The following operations are related toGetBucketCors:
GetBucketEncryption |
|
Show DescriptionReturns the default encryption configuration for an Amazon S3 bucket. If the bucket does not have a default encryption configuration, GetBucketEncryption returnsServerSideEncryptionConfigurationNotFoundError. For information about the Amazon S3 default encryption feature, see Amazon S3 Default Bucket Encryption. To use this operation, you must have permission to perform the s3:GetEncryptionConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. The following operations are related to GetBucketEncryption:
GetBucketIntelligentTieringConfiguration |
|
Show DescriptionGets the S3 Intelligent-Tiering configuration from the specified bucket. The S3 Intelligent-Tiering storage class is designed to optimize storage costs by automatically moving data to the most cost-effective storage access tier, without performance impact or operational overhead. S3 Intelligent-Tiering delivers automatic cost savings in two low latency and high throughput access tiers. For data that can be accessed asynchronously, you can choose to activate automatic archiving capabilities within the S3 Intelligent-Tiering storage class. The S3 Intelligent-Tiering storage class is the ideal storage class for data with unknown, changing, or unpredictable access patterns, independent of object size or retention period. If the size of an object is less than 128 KB, it is not eligible for auto-tiering. Smaller objects can be stored, but they are always charged at the Frequent Access tier rates in the S3 Intelligent-Tiering storage class. For more information, see Storage class for automatically optimizing frequently and infrequently accessed objects. Operations related toGetBucketIntelligentTieringConfiguration include:
GetBucketInventoryConfiguration |
|
Show DescriptionReturns an inventory configuration (identified by the inventory configuration ID) from the bucket. To use this operation, you must have permissions to perform thes3:GetInventoryConfiguration action. The bucket owner has this permission by default and can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. For information about the Amazon S3 inventory feature, see Amazon S3 Inventory. The following operations are related to GetBucketInventoryConfiguration:
GetBucketLifecycle |
|
Show Descriptionfilter element, you should see the updated version of this topic. This topic is provided for backward compatibility. s3:GetLifecycleConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. GetBucketLifecycle has the following special error:
GetBucketLifecycle:
GetBucketLifecycleConfiguration |
|
Show Descriptions3:GetLifecycleConfiguration action. The bucket owner has this permission, by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. GetBucketLifecycleConfiguration has the following special error:
GetBucketLifecycleConfiguration:
GetBucketLocation |
|
Show DescriptionReturns the Region the bucket resides in. You set the bucket's Region using theLocationConstraint request parameter in a CreateBucket request. For more information, see CreateBucket. To use this implementation of the operation, you must be the bucket owner. To use this API against an access point, provide the alias of the access point in place of the bucket name. The following operations are related to GetBucketLocation:
GetBucketLogging |
|
Show DescriptionReturns the logging status of a bucket and the permissions users have to view and modify that status. To use GET, you must be the bucket owner. The following operations are related toGetBucketLogging:
GetBucketMetricsConfiguration |
|
Show DescriptionGets a metrics configuration (specified by the metrics configuration ID) from the bucket. Note that this doesn't include the daily storage metrics. To use this operation, you must have permissions to perform thes3:GetMetricsConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. For information about CloudWatch request metrics for Amazon S3, see Monitoring Metrics with Amazon CloudWatch. The following operations are related to GetBucketMetricsConfiguration:
GetBucketNotification |
|
Show DescriptionNo longer used, see GetBucketNotificationConfiguration.GetBucketNotificationConfiguration |
|
Show DescriptionReturns the notification configuration of a bucket. If notifications are not enabled on the bucket, the action returns an emptyNotificationConfiguration element. By default, you must be the bucket owner to read the notification configuration of a bucket. However, the bucket owner can use a bucket policy to grant permission to other users to read this configuration with the s3:GetBucketNotification permission. For more information about setting and reading the notification configuration on a bucket, see Setting Up Notification of Bucket Events. For more information about bucket policies, see Using Bucket Policies. The following action is related to GetBucketNotification:
GetBucketOwnershipControls |
|
Show DescriptionRetrievesOwnershipControls for an Amazon S3 bucket. To use this operation, you must have the s3:GetBucketOwnershipControls permission. For more information about Amazon S3 permissions, see Specifying Permissions in a Policy. For information about Amazon S3 Object Ownership, see Using Object Ownership. The following operations are related to GetBucketOwnershipControls:
GetBucketPolicy |
|
Show DescriptionReturns the policy of a specified bucket. If you are using an identity other than the root user of the Amazon Web Services account that owns the bucket, the calling identity must have theGetBucketPolicy permissions on the specified bucket and belong to the bucket owner's account in order to use this operation. If you don't have GetBucketPolicy permissions, Amazon S3 returns a 403 Access Denied error. If you have the correct permissions, but you're not using an identity that belongs to the bucket owner's account, Amazon S3 returns a 405 Method Not Allowed error. GetBucketPolicy:
GetBucketPolicyStatus |
|
Show DescriptionRetrieves the policy status for an Amazon S3 bucket, indicating whether the bucket is public. In order to use this operation, you must have thes3:GetBucketPolicyStatus permission. For more information about Amazon S3 permissions, see Specifying Permissions in a Policy. For more information about when Amazon S3 considers a bucket public, see The Meaning of "Public". The following operations are related to GetBucketPolicyStatus:
GetBucketReplication |
|
Show DescriptionReturns the replication configuration of a bucket.s3:GetReplicationConfiguration action. For more information about permissions, see Using Bucket Policies and User Policies. If you include the Filter element in a replication configuration, you must also include the DeleteMarkerReplication and Priority elements. The response also returns those elements. For information about GetBucketReplication errors, see List of replication-related error codes The following operations are related to GetBucketReplication:
GetBucketRequestPayment |
|
Show DescriptionReturns the request payment configuration of a bucket. To use this version of the operation, you must be the bucket owner. For more information, see Requester Pays Buckets. The following operations are related toGetBucketRequestPayment:
GetBucketTagging |
|
Show DescriptionReturns the tag set associated with the bucket. To use this operation, you must have permission to perform thes3:GetBucketTagging action. By default, the bucket owner has this permission and can grant this permission to others. GetBucketTagging has the following special error:
GetBucketTagging:
GetBucketVersioning |
|
Show DescriptionReturns the versioning state of a bucket. To retrieve the versioning state of a bucket, you must be the bucket owner. This implementation also returns the MFA Delete status of the versioning state. If the MFA Delete status isenabled, the bucket owner must use an authentication device to change the versioning state of the bucket. The following operations are related to GetBucketVersioning:
GetBucketWebsite |
|
Show DescriptionReturns the website configuration for a bucket. To host website on Amazon S3, you can configure a bucket as website by adding a website configuration. For more information about hosting websites, see Hosting Websites on Amazon S3. This GET action requires theS3:GetBucketWebsite permission. By default, only the bucket owner can read the bucket website configuration. However, bucket owners can allow other users to read the website configuration by writing a bucket policy granting them the S3:GetBucketWebsite permission. The following operations are related to DeleteBucketWebsite:
GetObject |
|
Show DescriptionRetrieves objects from Amazon S3. To useGET, you must have READ access to the object. If you grant READ access to the anonymous user, you can return the object without using an authorization header. An Amazon S3 bucket has no directory hierarchy such as you would find in a typical computer file system. You can, however, create a logical hierarchy by using object key names that imply a folder structure. For example, instead of naming an object sample.jpg, you can name it photos/2006/February/sample.jpg. To get an object from such a logical hierarchy, specify the full key name for the object in the GET operation. For a virtual hosted-style request example, if you have the object photos/2006/February/sample.jpg, specify the resource as /photos/2006/February/sample.jpg. For a path-style request example, if you have the object photos/2006/February/sample.jpg in the bucket named examplebucket, specify the resource as /examplebucket/photos/2006/February/sample.jpg. For more information about request types, see HTTP Host Header Bucket Specification. To distribute large files to many people, you can save bandwidth costs by using BitTorrent. For more information, see Amazon S3 Torrent. For more information about returning the ACL of an object, see GetObjectAcl. If the object you are retrieving is stored in the S3 Glacier or S3 Glacier Deep Archive storage class, or S3 Intelligent-Tiering Archive or S3 Intelligent-Tiering Deep Archive tiers, before you can retrieve the object you must first restore a copy using RestoreObject. Otherwise, this action returns an InvalidObjectStateError error. For information about restoring archived objects, see Restoring Archived Objects. Encryption request headers, like x-amz-server-side-encryption, should not be sent for GET requests if your object uses server-side encryption with KMS keys (SSE-KMS) or server-side encryption with Amazon S3–managed encryption keys (SSE-S3). If your object does use these types of keys, you’ll get an HTTP 400 BadRequest error. If you encrypt an object by using server-side encryption with customer-provided encryption keys (SSE-C) when you store the object in Amazon S3, then when you GET the object, you must use the following headers:
x-amz-tagging-count header that provides the count of number of tags associated with the object. You can use GetObjectTagging to retrieve the tag set associated with an object. Permissions You need the relevant read object (or version) permission for this operation. For more information, see Specifying Permissions in a Policy. If the object you request does not exist, the error Amazon S3 returns depends on whether you also have the s3:ListBucket permission.
versionId subresource.
Content-Type, Content-Language, Expires, Cache-Control, Content-Disposition, and Content-Encoding. To override these header values in the GET response, you use the following request parameters.
If-Match and If-Unmodified-Since headers are present in the request as follows: If-Match condition evaluates to true, and; If-Unmodified-Since condition evaluates to false; then, S3 returns 200 OK and the data requested. If both of the If-None-Match and If-Modified-Since headers are present in the request as follows: If-None-Match condition evaluates to false, and; If-Modified-Since condition evaluates to true; then, S3 returns 304 Not Modified response code. For more information about conditional requests, see RFC 7232. The following operations are related to GetObject:
GetObjectAcl |
|
Show DescriptionReturns the access control list (ACL) of an object. To use this operation, you must haveREAD_ACP access to the object. This action is not supported by Amazon S3 on Outposts. Versioning By default, GET returns ACL information about the current version of an object. To return ACL information about a different version, use the versionId subresource. The following operations are related to GetObjectAcl:
GetObjectLegalHold |
|
Show DescriptionGets an object's current Legal Hold status. For more information, see Locking Objects. This action is not supported by Amazon S3 on Outposts.GetObjectLockConfiguration |
|
Show DescriptionGets the Object Lock configuration for a bucket. The rule specified in the Object Lock configuration will be applied by default to every new object placed in the specified bucket. For more information, see Locking Objects.GetObjectRetention |
|
Show DescriptionRetrieves an object's retention settings. For more information, see Locking Objects. This action is not supported by Amazon S3 on Outposts.GetObjectTagging |
|
Show DescriptionReturns the tag-set of an object. You send the GET request against the tagging subresource associated with the object. To use this operation, you must have permission to perform thes3:GetObjectTagging action. By default, the GET action returns information about current version of an object. For a versioned bucket, you can have multiple versions of an object in your bucket. To retrieve tags of any other version, use the versionId query parameter. You also need permission for the s3:GetObjectVersionTagging action. By default, the bucket owner has this permission and can grant this permission to others. For information about the Amazon S3 object tagging feature, see Object Tagging. The following action is related to GetObjectTagging:
GetObjectTorrent |
|
Show DescriptionReturns torrent files from a bucket. BitTorrent can save you bandwidth when you're distributing large files. For more information about BitTorrent, see Using BitTorrent with Amazon S3.GetObjectTorrent:
GetPublicAccessBlock |
|
Show DescriptionRetrieves thePublicAccessBlock configuration for an Amazon S3 bucket. To use this operation, you must have the s3:GetBucketPublicAccessBlock permission. For more information about Amazon S3 permissions, see Specifying Permissions in a Policy. PublicAccessBlock configuration for a bucket or an object, it checks the PublicAccessBlock configuration for both the bucket (or the bucket that contains the object) and the bucket owner's account. If the PublicAccessBlock settings are different between the bucket and the account, Amazon S3 uses the most restrictive combination of the bucket-level and account-level settings. GetPublicAccessBlock:
HeadBucket |
| HeadObject |
|
Show DescriptionThe HEAD action retrieves metadata from an object without returning the object itself. This action is useful if you're only interested in an object's metadata. To use HEAD, you must have READ access to the object. AHEAD request has the same options as a GET action on an object. The response is identical to the GET response except that there is no response body. Because of this, if the HEAD request generates an error, it returns a generic 404 Not Found or 403 Forbidden code. It is not possible to retrieve the exact exception beyond these error codes. If you encrypt an object by using server-side encryption with customer-provided encryption keys (SSE-C) when you store the object in Amazon S3, then when you retrieve the metadata from the object, you must use the following headers:
HeadObject:
ListBucketAnalyticsConfigurations |
|
Show DescriptionLists the analytics configurations for the bucket. You can have up to 1,000 analytics configurations per bucket. This action supports list pagination and does not return more than 100 configurations at a time. You should always check theIsTruncated element in the response. If there are no more configurations to list, IsTruncated is set to false. If there are more configurations to list, IsTruncated is set to true, and there will be a value in NextContinuationToken. You use the NextContinuationToken value to continue the pagination of the list by passing the value in continuation-token in the request to GET the next page. To use this operation, you must have permissions to perform the s3:GetAnalyticsConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. For information about Amazon S3 analytics feature, see Amazon S3 Analytics – Storage Class Analysis. The following operations are related to ListBucketAnalyticsConfigurations:
ListBucketIntelligentTieringConfigurations |
|
Show DescriptionLists the S3 Intelligent-Tiering configuration from the specified bucket. The S3 Intelligent-Tiering storage class is designed to optimize storage costs by automatically moving data to the most cost-effective storage access tier, without performance impact or operational overhead. S3 Intelligent-Tiering delivers automatic cost savings in two low latency and high throughput access tiers. For data that can be accessed asynchronously, you can choose to activate automatic archiving capabilities within the S3 Intelligent-Tiering storage class. The S3 Intelligent-Tiering storage class is the ideal storage class for data with unknown, changing, or unpredictable access patterns, independent of object size or retention period. If the size of an object is less than 128 KB, it is not eligible for auto-tiering. Smaller objects can be stored, but they are always charged at the Frequent Access tier rates in the S3 Intelligent-Tiering storage class. For more information, see Storage class for automatically optimizing frequently and infrequently accessed objects. Operations related toListBucketIntelligentTieringConfigurations include:
ListBucketInventoryConfigurations |
|
Show DescriptionReturns a list of inventory configurations for the bucket. You can have up to 1,000 analytics configurations per bucket. This action supports list pagination and does not return more than 100 configurations at a time. Always check theIsTruncated element in the response. If there are no more configurations to list, IsTruncated is set to false. If there are more configurations to list, IsTruncated is set to true, and there is a value in NextContinuationToken. You use the NextContinuationToken value to continue the pagination of the list by passing the value in continuation-token in the request to GET the next page. To use this operation, you must have permissions to perform the s3:GetInventoryConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. For information about the Amazon S3 inventory feature, see Amazon S3 Inventory The following operations are related to ListBucketInventoryConfigurations:
ListBucketMetricsConfigurations |
|
Show DescriptionLists the metrics configurations for the bucket. The metrics configurations are only for the request metrics of the bucket and do not provide information on daily storage metrics. You can have up to 1,000 configurations per bucket. This action supports list pagination and does not return more than 100 configurations at a time. Always check theIsTruncated element in the response. If there are no more configurations to list, IsTruncated is set to false. If there are more configurations to list, IsTruncated is set to true, and there is a value in NextContinuationToken. You use the NextContinuationToken value to continue the pagination of the list by passing the value in continuation-token in the request to GET the next page. To use this operation, you must have permissions to perform the s3:GetMetricsConfiguration action. The bucket owner has this permission by default. The bucket owner can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. For more information about metrics configurations and CloudWatch request metrics, see Monitoring Metrics with Amazon CloudWatch. The following operations are related to ListBucketMetricsConfigurations:
ListBuckets |
|
Show DescriptionReturns a list of all buckets owned by the authenticated sender of the request.ListMultipartUploads |
|
Show DescriptionThis action lists in-progress multipart uploads. An in-progress multipart upload is a multipart upload that has been initiated using the Initiate Multipart Upload request, but has not yet been completed or aborted. This action returns at most 1,000 multipart uploads in the response. 1,000 multipart uploads is the maximum number of uploads a response can include, which is also the default value. You can further limit the number of uploads in a response by specifying themax-uploads parameter in the response. If additional multipart uploads satisfy the list criteria, the response will contain an IsTruncated element with the value true. To list the additional multipart uploads, use the key-marker and upload-id-marker request parameters. In the response, the uploads are sorted by key. If your application has initiated more than one multipart upload using the same object key, then uploads in the response are first sorted by key. Additionally, uploads are sorted in ascending order within each key by the upload initiation time. For more information on multipart uploads, see Uploading Objects Using Multipart Upload. For information on permissions required to use the multipart upload API, see Multipart Upload and Permissions. The following operations are related to ListMultipartUploads:
ListObjectVersions |
|
Show DescriptionReturns metadata about all versions of the objects in a bucket. You can also use request parameters as selection criteria to return metadata about a subset of all the object versions.s3:ListBucketVersions action. Be aware of the name difference. ListObjectVersions:
ListObjects |
|
Show DescriptionReturns some or all (up to 1,000) of the objects in a bucket. You can use the request parameters as selection criteria to return a subset of the objects in a bucket. A 200 OK response can contain valid or invalid XML. Be sure to design your application to parse the contents of the response and handle it appropriately.ListObjects. ListObjects:
ListObjectsV2 |
|
Show DescriptionReturns some or all (up to 1,000) of the objects in a bucket with each request. You can use the request parameters as selection criteria to return a subset of the objects in a bucket. A200 OK response can contain valid or invalid XML. Make sure to design your application to parse the contents of the response and handle it appropriately. Objects are returned sorted in an ascending order of the respective key names in the list. For more information about listing objects, see Listing object keys programmatically To use this operation, you must have READ access to the bucket. To use this action in an Identity and Access Management (IAM) policy, you must have permissions to perform the s3:ListBucket action. The bucket owner has this permission by default and can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources. ListObjectsV2:
ListParts |
|
Show DescriptionLists the parts that have been uploaded for a specific multipart upload. This operation must include the upload ID, which you obtain by sending the initiate multipart upload request (see CreateMultipartUpload). This request returns a maximum of 1,000 uploaded parts. The default number of parts returned is 1,000 parts. You can restrict the number of parts returned by specifying themax-parts request parameter. If your multipart upload consists of more than 1,000 parts, the response returns an IsTruncated field with the value of true, and a NextPartNumberMarker element. In subsequent ListParts requests you can include the part-number-marker query string parameter and set its value to the NextPartNumberMarker field value from the previous response. For more information on multipart uploads, see Uploading Objects Using Multipart Upload. For information on permissions required to use the multipart upload API, see Multipart Upload and Permissions. The following operations are related to ListParts:
PutBucketAccelerateConfiguration |
| PutBucketAcl |
| PutBucketAnalyticsConfiguration |
| PutBucketCors |
| PutBucketEncryption |
| PutBucketIntelligentTieringConfiguration |
| PutBucketInventoryConfiguration |
| PutBucketLifecycle |
| PutBucketLifecycleConfiguration |
| PutBucketLogging |
| PutBucketMetricsConfiguration |
| PutBucketNotification |
| PutBucketNotificationConfiguration |
| PutBucketOwnershipControls |
| PutBucketPolicy |
| PutBucketReplication |
| PutBucketRequestPayment |
| PutBucketTagging |
| PutBucketVersioning |
| PutBucketWebsite |
| PutObject |
| Show DescriptionAdds an object to a bucket. You must have WRITE permissions on a bucket to add an object to it. Amazon S3 never adds partial objects; if you receive a success response, Amazon S3 added the entire object to the bucket. Amazon S3 is a distributed system. If it receives multiple write requests for the same object simultaneously, it overwrites all but the last object written. Amazon S3 does not provide object locking; if you need this, make sure to build it into your application layer or use versioning instead. To ensure that data is not corrupted traversing the network, use theContent-MD5 header. When you use this header, Amazon S3 checks the object against the provided MD5 value and, if they do not match, returns an error. Additionally, you can calculate the MD5 while putting an object to Amazon S3 and compare the returned ETag to the calculated MD5 value.
Related Resources </details> </td> </tr>PutObjectAcl |
| Show DescriptionUses theacl subresource to set the access control list (ACL) permissions for a new or existing object in an S3 bucket. You must have WRITE_ACP permission to set the ACL of an object. For more information, see What permissions can I grant? in the Amazon S3 User Guide. This action is not supported by Amazon S3 on Outposts. Depending on your application needs, you can choose to set the ACL on an object using either the request body or the headers. For example, if you have an existing application that updates a bucket ACL using the request body, you can continue to use that approach. For more information, see Access Control List (ACL) Overview in the Amazon S3 User Guide. Access Permissions You can set access permissions using one of the following methods:
versionId subresource. Related Resources </details> </td> </tr>PutObjectLegalHold |
|
Show DescriptionApplies a Legal Hold configuration to the specified object. For more information, see Locking Objects. This action is not supported by Amazon S3 on Outposts.PutObjectLockConfiguration |
|
Show DescriptionPlaces an Object Lock configuration on the specified bucket. The rule specified in the Object Lock configuration will be applied by default to every new object placed in the specified bucket. For more information, see Locking Objects.
PutObjectRetention |
|
Show DescriptionPlaces an Object Retention configuration on an object. For more information, see Locking Objects. Users or accounts require thes3:PutObjectRetention permission in order to place an Object Retention configuration on objects. Bypassing a Governance Retention configuration requires the s3:BypassGovernanceRetention permission. This action is not supported by Amazon S3 on Outposts. Permissions When the Object Lock retention mode is set to compliance, you need s3:PutObjectRetention and s3:BypassGovernanceRetention permissions. For other requests to PutObjectRetention, only s3:PutObjectRetention permissions are required.
PutObjectTagging |
| Show DescriptionSets the supplied tag-set to an object that already exists in a bucket. A tag is a key-value pair. You can associate tags with an object by sending a PUT request against the tagging subresource that is associated with the object. You can retrieve tags by sending a GET request. For more information, see GetObjectTagging. For tagging-related restrictions related to characters and encodings, see Tag Restrictions. Note that Amazon S3 limits the maximum number of tags to 10 tags per object. To use this operation, you must have permission to perform thes3:PutObjectTagging action. By default, the bucket owner has this permission and can grant this permission to others. To put tags of any other version, use the versionId query parameter. You also need permission for the s3:PutObjectVersionTagging action. For information about the Amazon S3 object tagging feature, see Object Tagging. Special Errors
Related Resources </details> </td> </tr>PutPublicAccessBlock |
| RestoreObject |
| Show DescriptionRestores an archived copy of an object back into Amazon S3 This action is not supported by Amazon S3 on Outposts. This action performs the following types of requests:
s3:RestoreObject action. The bucket owner has this permission by default and can grant this permission to others. For more information about permissions, see Permissions Related to Bucket Subresource Operations and Managing Access Permissions to Your Amazon S3 Resources in the Amazon S3 User Guide. Querying Archives with Select Requests You use a select type of request to perform SQL queries on archived objects. The archived objects that are being queried by the select request must be formatted as uncompressed comma-separated values (CSV) files. You can run queries and custom analytics on your archived data without having to restore your data to a hotter Amazon S3 tier. For an overview about select requests, see Querying Archived Objects in the Amazon S3 User Guide. When making a select request, do the following:
Tier element of the request body:
Expedited data access, see Restoring Archived Objects in the Amazon S3 User Guide. You can use Amazon S3 restore speed upgrade to change the restore speed to a faster speed while it is in progress. For more information, see Upgrading the speed of an in-progress restore in the Amazon S3 User Guide. To get the status of object restoration, you can send a HEAD request. Operations return the x-amz-restore header, which provides information about the restoration status, in the response. You can use Amazon S3 event notifications to notify you when a restore is initiated or completed. For more information, see Configuring Amazon S3 Event Notifications in the Amazon S3 User Guide. After restoring an archived object, you can update the restoration period by reissuing the request with a new period. Amazon S3 updates the restoration period relative to the current time and charges only for the request-there are no data transfer charges. You cannot update the restoration period when Amazon S3 is actively processing your current restore request for the object. If your bucket has a lifecycle configuration with a rule that includes an expiration action, the object expiration overrides the life span that you specify in a restore request. For example, if you restore an object copy for 10 days, but the object is scheduled to expire in 3 days, Amazon S3 deletes the object in 3 days. For more information about lifecycle configuration, see PutBucketLifecycleConfiguration and Object Lifecycle Management in Amazon S3 User Guide. Responses A successful action returns either the 200 OK or 202 Accepted status code.
Special Errors
Related Resources
SelectObjectContent |
| Show DescriptionThis action filters the contents of an Amazon S3 object based on a simple structured query language (SQL) statement. In the request, along with the SQL expression, you must also specify a data serialization format (JSON, CSV, or Apache Parquet) of the object. Amazon S3 uses this format to parse object data into records, and returns only records that match the specified SQL expression. You must also specify the data serialization format for the response. This action is not supported by Amazon S3 on Outposts. For more information about Amazon S3 Select, see Selecting Content from Objects in the Amazon S3 User Guide. For more information about using SQL with Amazon S3 Select, see SQL Reference for Amazon S3 Select and S3 Glacier Select in the Amazon S3 User Guide. Permissions You must haves3:GetObject permission for this operation. Amazon S3 Select does not support anonymous access. For more information about permissions, see Specifying Permissions in a Policy in the Amazon S3 User Guide. Object Data Formats You can use Amazon S3 Select to query objects that have the following format properties:
Transfer-Encoding header with chunked as its value in the response. For more information, see Appendix: SelectObjectContent Response. GetObject Support The SelectObjectContent action does not support the following GetObject functionality. For more information, see GetObject.
Related Resources </details> </td> </tr>UploadPart |
| Show DescriptionUploads a part in a multipart upload.Content-MD5 header in the upload part request. Amazon S3 checks the part data against the provided MD5 value. If they do not match, Amazon S3 returns an error. If the upload request is signed with Signature Version 4, then Amazon Web Services S3 uses the x-amz-content-sha256 header as a checksum instead of Content-MD5. For more information see Authenticating Requests: Using the Authorization Header (Amazon Web Services Signature Version 4). Note: After you initiate multipart upload and upload one or more parts, you must either complete or abort multipart upload in order to stop getting charged for storage of the uploaded parts. Only after you either complete or abort multipart upload, Amazon S3 frees up the parts storage and stops charging you for the parts storage. For more information on multipart uploads, go to Multipart Upload Overview in the Amazon S3 User Guide . For information on the permissions required to use the multipart upload API, go to Multipart Upload and Permissions in the Amazon S3 User Guide. You can optionally request server-side encryption where Amazon S3 encrypts your data as it writes it to disks in its data centers and decrypts it for you when you access it. You have the option of providing your own encryption key, or you can use the Amazon Web Services managed encryption keys. If you choose to provide your own encryption key, the request headers you provide in the request must match the headers you used in the request to initiate the upload by using CreateMultipartUpload. For more information, go to Using Server-Side Encryption in the Amazon S3 User Guide. Server-side encryption is supported by the S3 Multipart Upload actions. Unless you are using a customer-provided encryption key, you don't need to specify the encryption parameters in each UploadPart request. Instead, you only need to specify the server-side encryption parameters in the initial Initiate Multipart request. For more information, see CreateMultipartUpload. If you requested server-side encryption using a customer-provided encryption key in your initiate multipart upload request, you must provide identical encryption information in each part upload using the following headers.
Special Errors
Related Resources </details> </td> </tr>UploadPartCopy |
| Show DescriptionUploads a part by copying data from an existing object as data source. You specify the data source by adding the request headerx-amz-copy-source in your request and a byte range by adding the request header x-amz-copy-source-range in your request. The minimum allowable part size for a multipart upload is 5 MB. For more information about multipart upload limits, go to Quick Facts in the Amazon S3 User Guide. UploadPartCopy operation, see the following:
x-amz-copy-source-if-match, x-amz-copy-source-if-none-match, x-amz-copy-source-if-unmodified-since, and x-amz-copy-source-if-modified-since:
x-amz-copy-source identifies the current version of the object to copy. If the current version is a delete marker and you don't specify a versionId in the x-amz-copy-source, Amazon S3 returns a 404 error, because the object does not exist. If you specify versionId in the x-amz-copy-source and the versionId is a delete marker, Amazon S3 returns an HTTP 400 error, because you are not allowed to specify a delete marker as a version for the x-amz-copy-source. You can optionally specify a specific version of the source object to copy by adding the versionId subresource as shown in the following example: x-amz-copy-source: /bucket/object?versionId=version id Special Errors
Related Resources
|
This post is licensed under
CC BY 4.0
by the author.