Class PolicySummary
- All Implemented Interfaces:
Serializable
,SdkPojo
,ToCopyableBuilder<PolicySummary.Builder,
PolicySummary>
Details of the Firewall Manager policy.
- See Also:
-
Nested Class Summary
-
Method Summary
Modifier and TypeMethodDescriptionstatic PolicySummary.Builder
builder()
final Boolean
Indicates whether Firewall Manager should automatically remove protections from resources that leave the policy scope and clean up resources that Firewall Manager is managing for accounts when those accounts leave policy scope.final boolean
final boolean
equalsBySdkFields
(Object obj) Indicates whether some other object is "equal to" this one by SDK fields.final <T> Optional
<T> getValueForField
(String fieldName, Class<T> clazz) final int
hashCode()
final String
The Amazon Resource Name (ARN) of the specified policy.final String
policyId()
The ID of the specified policy.final String
The name of the specified policy.final CustomerPolicyStatus
Indicates whether the policy is in or out of an admin's policy or Region scope.final String
Indicates whether the policy is in or out of an admin's policy or Region scope.final Boolean
Indicates if the policy should be automatically applied to new resources.final String
The type of resource protected by or in scope of the policy.final SecurityServiceType
The service that the policy is using to protect the resources.final String
The service that the policy is using to protect the resources.static Class
<? extends PolicySummary.Builder> Take this object and create a builder that contains all of the current property values of this object.final String
toString()
Returns a string representation of this object.Methods inherited from interface software.amazon.awssdk.utils.builder.ToCopyableBuilder
copy
-
Method Details
-
policyArn
The Amazon Resource Name (ARN) of the specified policy.
- Returns:
- The Amazon Resource Name (ARN) of the specified policy.
-
policyId
The ID of the specified policy.
- Returns:
- The ID of the specified policy.
-
policyName
The name of the specified policy.
- Returns:
- The name of the specified policy.
-
resourceType
The type of resource protected by or in scope of the policy. This is in the format shown in the Amazon Web Services Resource Types Reference. For WAF and Shield Advanced, examples include
AWS::ElasticLoadBalancingV2::LoadBalancer
andAWS::CloudFront::Distribution
. For a security group common policy, valid values areAWS::EC2::NetworkInterface
andAWS::EC2::Instance
. For a security group content audit policy, valid values areAWS::EC2::SecurityGroup
,AWS::EC2::NetworkInterface
, andAWS::EC2::Instance
. For a security group usage audit policy, the value isAWS::EC2::SecurityGroup
. For an Network Firewall policy or DNS Firewall policy, the value isAWS::EC2::VPC
.- Returns:
- The type of resource protected by or in scope of the policy. This is in the format shown in the Amazon Web Services Resource Types Reference. For WAF and Shield Advanced, examples include
AWS::ElasticLoadBalancingV2::LoadBalancer
andAWS::CloudFront::Distribution
. For a security group common policy, valid values areAWS::EC2::NetworkInterface
andAWS::EC2::Instance
. For a security group content audit policy, valid values areAWS::EC2::SecurityGroup
,AWS::EC2::NetworkInterface
, andAWS::EC2::Instance
. For a security group usage audit policy, the value isAWS::EC2::SecurityGroup
. For an Network Firewall policy or DNS Firewall policy, the value isAWS::EC2::VPC
.
-
securityServiceType
The service that the policy is using to protect the resources. This specifies the type of policy that is created, either an WAF policy, a Shield Advanced policy, or a security group policy.
If the service returns an enum value that is not available in the current SDK version,
securityServiceType
will returnSecurityServiceType.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available fromsecurityServiceTypeAsString()
.- Returns:
- The service that the policy is using to protect the resources. This specifies the type of policy that is created, either an WAF policy, a Shield Advanced policy, or a security group policy.
- See Also:
-
securityServiceTypeAsString
The service that the policy is using to protect the resources. This specifies the type of policy that is created, either an WAF policy, a Shield Advanced policy, or a security group policy.
If the service returns an enum value that is not available in the current SDK version,
securityServiceType
will returnSecurityServiceType.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available fromsecurityServiceTypeAsString()
.- Returns:
- The service that the policy is using to protect the resources. This specifies the type of policy that is created, either an WAF policy, a Shield Advanced policy, or a security group policy.
- See Also:
-
remediationEnabled
Indicates if the policy should be automatically applied to new resources.
- Returns:
- Indicates if the policy should be automatically applied to new resources.
-
deleteUnusedFMManagedResources
Indicates whether Firewall Manager should automatically remove protections from resources that leave the policy scope and clean up resources that Firewall Manager is managing for accounts when those accounts leave policy scope. For example, Firewall Manager will disassociate a Firewall Manager managed web ACL from a protected customer resource when the customer resource leaves policy scope.
By default, Firewall Manager doesn't remove protections or delete Firewall Manager managed resources.
This option is not available for Shield Advanced or WAF Classic policies.
- Returns:
- Indicates whether Firewall Manager should automatically remove protections from resources that leave the
policy scope and clean up resources that Firewall Manager is managing for accounts when those accounts
leave policy scope. For example, Firewall Manager will disassociate a Firewall Manager managed web ACL
from a protected customer resource when the customer resource leaves policy scope.
By default, Firewall Manager doesn't remove protections or delete Firewall Manager managed resources.
This option is not available for Shield Advanced or WAF Classic policies.
-
policyStatus
Indicates whether the policy is in or out of an admin's policy or Region scope.
-
ACTIVE
- The administrator can manage and delete the policy. -
OUT_OF_ADMIN_SCOPE
- The administrator can view the policy, but they can't edit or delete the policy. Existing policy protections stay in place. Any new resources that come into scope of the policy won't be protected.
If the service returns an enum value that is not available in the current SDK version,
policyStatus
will returnCustomerPolicyStatus.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available frompolicyStatusAsString()
.- Returns:
- Indicates whether the policy is in or out of an admin's policy or Region scope.
-
ACTIVE
- The administrator can manage and delete the policy. -
OUT_OF_ADMIN_SCOPE
- The administrator can view the policy, but they can't edit or delete the policy. Existing policy protections stay in place. Any new resources that come into scope of the policy won't be protected.
-
- See Also:
-
-
policyStatusAsString
Indicates whether the policy is in or out of an admin's policy or Region scope.
-
ACTIVE
- The administrator can manage and delete the policy. -
OUT_OF_ADMIN_SCOPE
- The administrator can view the policy, but they can't edit or delete the policy. Existing policy protections stay in place. Any new resources that come into scope of the policy won't be protected.
If the service returns an enum value that is not available in the current SDK version,
policyStatus
will returnCustomerPolicyStatus.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available frompolicyStatusAsString()
.- Returns:
- Indicates whether the policy is in or out of an admin's policy or Region scope.
-
ACTIVE
- The administrator can manage and delete the policy. -
OUT_OF_ADMIN_SCOPE
- The administrator can view the policy, but they can't edit or delete the policy. Existing policy protections stay in place. Any new resources that come into scope of the policy won't be protected.
-
- See Also:
-
-
toBuilder
Description copied from interface:ToCopyableBuilder
Take this object and create a builder that contains all of the current property values of this object.- Specified by:
toBuilder
in interfaceToCopyableBuilder<PolicySummary.Builder,
PolicySummary> - Returns:
- a builder for type T
-
builder
-
serializableBuilderClass
-
hashCode
public final int hashCode() -
equals
-
equalsBySdkFields
Description copied from interface:SdkPojo
Indicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in anSdkPojo
class, and is generated based on a service model.If an
SdkPojo
class does not have any inherited fields,equalsBySdkFields
andequals
are essentially the same.- Specified by:
equalsBySdkFields
in interfaceSdkPojo
- Parameters:
obj
- the object to be compared with- Returns:
- true if the other object equals to this object by sdk fields, false otherwise.
-
toString
Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value. -
getValueForField
-
sdkFields
-