Class AbstractAmazonConfig
- All Implemented Interfaces:
AmazonConfig
- Direct Known Subclasses:
AbstractAmazonConfigAsync
AmazonConfig
. Convenient method forms pass
through to the corresponding overload that takes a request object, which
throws an UnsupportedOperationException
.-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptiondeleteConfigRule
(DeleteConfigRuleRequest request) Deletes the specified AWS Config rule and all of its evaluation results.Deletes the specified delivery channel.Schedules delivery of a configuration snapshot to the Amazon S3 bucket in the specified delivery channel.Simplified method form for invoking the DescribeComplianceByConfigRule operation.Indicates whether the specified AWS Config rules are compliant.Simplified method form for invoking the DescribeComplianceByResource operation.Indicates whether the specified AWS resources are compliant.Simplified method form for invoking the DescribeConfigRuleEvaluationStatus operation.Returns status information for each of your AWS managed Config rules.Simplified method form for invoking the DescribeConfigRules operation.Returns details about your AWS Config rules.Simplified method form for invoking the DescribeConfigurationRecorders operation.Returns the name of one or more specified configuration recorders.Simplified method form for invoking the DescribeConfigurationRecorderStatus operation.Returns the current status of the specified configuration recorder.Simplified method form for invoking the DescribeDeliveryChannels operation.Returns details about the specified delivery channel.Simplified method form for invoking the DescribeDeliveryChannelStatus operation.Returns the current status of the specified delivery channel.Returns additional metadata for a previously executed successful request, typically used for debugging issues where a service isn't acting as expected.Returns the evaluation results for the specified AWS Config rule.Returns the evaluation results for the specified AWS resource.Simplified method form for invoking the GetComplianceSummaryByConfigRule operation.Returns the number of AWS Config rules that are compliant and noncompliant, up to a maximum of 25 for each.Simplified method form for invoking the GetComplianceSummaryByResourceType operation.Returns the number of resources that are compliant and the number that are noncompliant.Returns a list of configuration items for the specified resource.Accepts a resource type and returns a list of resource identifiers for the resources of that type.putConfigRule
(PutConfigRuleRequest request) Adds or updates an AWS Config rule for evaluating whether your AWS resources comply with your desired configurations.Creates a new configuration recorder to record the selected resource configurations.Creates a new delivery channel object to deliver the configuration information to an Amazon S3 bucket, and to an Amazon SNS topic.putEvaluations
(PutEvaluationsRequest request) Used by an AWS Lambda function to deliver evaluation results to AWS Config.void
setEndpoint
(String endpoint) Overrides the default endpoint for this client ("config.us-east-1.amazonaws.com/").void
An alternative toAmazonConfig.setEndpoint(String)
, sets the regional endpoint for this client's service calls.void
shutdown()
Shuts down this client object, releasing any resources that might be held open.Starts recording configurations of the AWS resources you have selected to record in your AWS account.Stops recording configurations of the AWS resources you have selected to record in your AWS account.
-
Constructor Details
-
AbstractAmazonConfig
protected AbstractAmazonConfig()
-
-
Method Details
-
setEndpoint
Description copied from interface:AmazonConfig
Overrides the default endpoint for this client ("config.us-east-1.amazonaws.com/"). Callers can use this method to control which AWS region they want to work with.Callers can pass in just the endpoint (ex: "config.us-east-1.amazonaws.com/") or a full URL, including the protocol (ex: "config.us-east-1.amazonaws.com/"). If the protocol is not specified here, the default protocol from this client's
ClientConfiguration
will be used, which by default is HTTPS.For more information on using AWS regions with the AWS SDK for Java, and a complete list of all available endpoints for all AWS services, see: http://developer.amazonwebservices.com/connect/entry.jspa?externalID= 3912
This method is not threadsafe. An endpoint should be configured when the client is created and before any service requests are made. Changing it afterwards creates inevitable race conditions for any service requests in transit or retrying.
- Specified by:
setEndpoint
in interfaceAmazonConfig
- Parameters:
endpoint
- The endpoint (ex: "config.us-east-1.amazonaws.com/") or a full URL, including the protocol (ex: "config.us-east-1.amazonaws.com/") of the region specific AWS endpoint this client will communicate with.
-
setRegion
Description copied from interface:AmazonConfig
An alternative toAmazonConfig.setEndpoint(String)
, sets the regional endpoint for this client's service calls. Callers can use this method to control which AWS region they want to work with.By default, all service endpoints in all regions use the https protocol. To use http instead, specify it in the
ClientConfiguration
supplied at construction.This method is not threadsafe. A region should be configured when the client is created and before any service requests are made. Changing it afterwards creates inevitable race conditions for any service requests in transit or retrying.
- Specified by:
setRegion
in interfaceAmazonConfig
- Parameters:
region
- The region this client will communicate with. SeeRegion.getRegion(com.amazonaws.regions.Regions)
for accessing a given region. Must not be null and must be a region where the service is available.- See Also:
-
deleteConfigRule
Description copied from interface:AmazonConfig
Deletes the specified AWS Config rule and all of its evaluation results.
AWS Config sets the state of a rule to
DELETING
until the deletion is complete. You cannot update a rule while it is in this state. If you make aPutConfigRule
orDeleteConfigRule
request for the rule, you will receive aResourceInUseException
.You can check the state of a rule by using the
DescribeConfigRules
request.- Specified by:
deleteConfigRule
in interfaceAmazonConfig
- Returns:
- Result of the DeleteConfigRule operation returned by the service.
-
deleteDeliveryChannel
Description copied from interface:AmazonConfig
Deletes the specified delivery channel.
The delivery channel cannot be deleted if it is the only delivery channel and the configuration recorder is still running. To delete the delivery channel, stop the running configuration recorder using the StopConfigurationRecorder action.
- Specified by:
deleteDeliveryChannel
in interfaceAmazonConfig
- Parameters:
request
- The input for the DeleteDeliveryChannel action. The action accepts the following data in JSON format.- Returns:
- Result of the DeleteDeliveryChannel operation returned by the service.
-
deliverConfigSnapshot
Description copied from interface:AmazonConfig
Schedules delivery of a configuration snapshot to the Amazon S3 bucket in the specified delivery channel. After the delivery has started, AWS Config sends following notifications using an Amazon SNS topic that you have specified.
- Notification of starting the delivery.
- Notification of delivery completed, if the delivery was successfully completed.
- Notification of delivery failure, if the delivery failed to complete.
- Specified by:
deliverConfigSnapshot
in interfaceAmazonConfig
- Parameters:
request
- The input for the DeliverConfigSnapshot action.- Returns:
- Result of the DeliverConfigSnapshot operation returned by the service.
-
describeComplianceByConfigRule
public DescribeComplianceByConfigRuleResult describeComplianceByConfigRule(DescribeComplianceByConfigRuleRequest request) Description copied from interface:AmazonConfig
Indicates whether the specified AWS Config rules are compliant. If a rule is noncompliant, this action returns the number of AWS resources that do not comply with the rule.
A rule is compliant if all of the evaluated resources comply with it, and it is noncompliant if any of these resources do not comply.
If AWS Config has no current evaluation results for the rule, it returns
INSUFFICIENT_DATA
. This result might indicate one of the following conditions:- AWS Config has never invoked an evaluation for the rule. To check
whether it has, use the
DescribeConfigRuleEvaluationStatus
action to get theLastSuccessfulInvocationTime
andLastFailedInvocationTime
. - The rule's AWS Lambda function is failing to send evaluation results
to AWS Config. Verify that the role that you assigned to your
configuration recorder includes the
config:PutEvaluations
permission. If the rule is a customer managed rule, verify that the AWS Lambda execution role includes theconfig:PutEvaluations
permission. - The rule's AWS Lambda function has returned
NOT_APPLICABLE
for all evaluation results. This can occur if the resources were deleted or removed from the rule's scope.
- Specified by:
describeComplianceByConfigRule
in interfaceAmazonConfig
- Returns:
- Result of the DescribeComplianceByConfigRule operation returned by the service.
- AWS Config has never invoked an evaluation for the rule. To check
whether it has, use the
-
describeComplianceByConfigRule
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeComplianceByConfigRule operation.- Specified by:
describeComplianceByConfigRule
in interfaceAmazonConfig
- See Also:
-
describeComplianceByResource
public DescribeComplianceByResourceResult describeComplianceByResource(DescribeComplianceByResourceRequest request) Description copied from interface:AmazonConfig
Indicates whether the specified AWS resources are compliant. If a resource is noncompliant, this action returns the number of AWS Config rules that the resource does not comply with.
A resource is compliant if it complies with all the AWS Config rules that evaluate it. It is noncompliant if it does not comply with one or more of these rules.
If AWS Config has no current evaluation results for the resource, it returns
INSUFFICIENT_DATA
. This result might indicate one of the following conditions about the rules that evaluate the resource:- AWS Config has never invoked an evaluation for the rule. To check
whether it has, use the
DescribeConfigRuleEvaluationStatus
action to get theLastSuccessfulInvocationTime
andLastFailedInvocationTime
. - The rule's AWS Lambda function is failing to send evaluation results
to AWS Config. Verify that the role that you assigned to your
configuration recorder includes the
config:PutEvaluations
permission. If the rule is a customer managed rule, verify that the AWS Lambda execution role includes theconfig:PutEvaluations
permission. - The rule's AWS Lambda function has returned
NOT_APPLICABLE
for all evaluation results. This can occur if the resources were deleted or removed from the rule's scope.
- Specified by:
describeComplianceByResource
in interfaceAmazonConfig
- Returns:
- Result of the DescribeComplianceByResource operation returned by the service.
- AWS Config has never invoked an evaluation for the rule. To check
whether it has, use the
-
describeComplianceByResource
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeComplianceByResource operation.- Specified by:
describeComplianceByResource
in interfaceAmazonConfig
- See Also:
-
describeConfigRuleEvaluationStatus
public DescribeConfigRuleEvaluationStatusResult describeConfigRuleEvaluationStatus(DescribeConfigRuleEvaluationStatusRequest request) Description copied from interface:AmazonConfig
Returns status information for each of your AWS managed Config rules. The status includes information such as the last time AWS Config invoked the rule, the last time AWS Config failed to invoke the rule, and the related error for the last failure.
- Specified by:
describeConfigRuleEvaluationStatus
in interfaceAmazonConfig
- Returns:
- Result of the DescribeConfigRuleEvaluationStatus operation returned by the service.
-
describeConfigRuleEvaluationStatus
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeConfigRuleEvaluationStatus operation.- Specified by:
describeConfigRuleEvaluationStatus
in interfaceAmazonConfig
- See Also:
-
describeConfigRules
Description copied from interface:AmazonConfig
Returns details about your AWS Config rules.
- Specified by:
describeConfigRules
in interfaceAmazonConfig
- Returns:
- Result of the DescribeConfigRules operation returned by the service.
-
describeConfigRules
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeConfigRules operation.- Specified by:
describeConfigRules
in interfaceAmazonConfig
- See Also:
-
describeConfigurationRecorderStatus
public DescribeConfigurationRecorderStatusResult describeConfigurationRecorderStatus(DescribeConfigurationRecorderStatusRequest request) Description copied from interface:AmazonConfig
Returns the current status of the specified configuration recorder. If a configuration recorder is not specified, this action returns the status of all configuration recorder associated with the account.
Currently, you can specify only one configuration recorder per account. - Specified by:
describeConfigurationRecorderStatus
in interfaceAmazonConfig
- Parameters:
request
- The input for the DescribeConfigurationRecorderStatus action.- Returns:
- Result of the DescribeConfigurationRecorderStatus operation returned by the service.
-
describeConfigurationRecorderStatus
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeConfigurationRecorderStatus operation.- Specified by:
describeConfigurationRecorderStatus
in interfaceAmazonConfig
- See Also:
-
describeConfigurationRecorders
public DescribeConfigurationRecordersResult describeConfigurationRecorders(DescribeConfigurationRecordersRequest request) Description copied from interface:AmazonConfig
Returns the name of one or more specified configuration recorders. If the recorder name is not specified, this action returns the names of all the configuration recorders associated with the account.
Currently, you can specify only one configuration recorder per account.
- Specified by:
describeConfigurationRecorders
in interfaceAmazonConfig
- Parameters:
request
- The input for the DescribeConfigurationRecorders action.- Returns:
- Result of the DescribeConfigurationRecorders operation returned by the service.
-
describeConfigurationRecorders
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeConfigurationRecorders operation.- Specified by:
describeConfigurationRecorders
in interfaceAmazonConfig
- See Also:
-
describeDeliveryChannelStatus
public DescribeDeliveryChannelStatusResult describeDeliveryChannelStatus(DescribeDeliveryChannelStatusRequest request) Description copied from interface:AmazonConfig
Returns the current status of the specified delivery channel. If a delivery channel is not specified, this action returns the current status of all delivery channels associated with the account.
Currently, you can specify only one delivery channel per account. - Specified by:
describeDeliveryChannelStatus
in interfaceAmazonConfig
- Parameters:
request
- The input for the DeliveryChannelStatus action.- Returns:
- Result of the DescribeDeliveryChannelStatus operation returned by the service.
-
describeDeliveryChannelStatus
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeDeliveryChannelStatus operation.- Specified by:
describeDeliveryChannelStatus
in interfaceAmazonConfig
- See Also:
-
describeDeliveryChannels
public DescribeDeliveryChannelsResult describeDeliveryChannels(DescribeDeliveryChannelsRequest request) Description copied from interface:AmazonConfig
Returns details about the specified delivery channel. If a delivery channel is not specified, this action returns the details of all delivery channels associated with the account.
Currently, you can specify only one delivery channel per account.
- Specified by:
describeDeliveryChannels
in interfaceAmazonConfig
- Parameters:
request
- The input for the DescribeDeliveryChannels action.- Returns:
- Result of the DescribeDeliveryChannels operation returned by the service.
-
describeDeliveryChannels
Description copied from interface:AmazonConfig
Simplified method form for invoking the DescribeDeliveryChannels operation.- Specified by:
describeDeliveryChannels
in interfaceAmazonConfig
- See Also:
-
getComplianceDetailsByConfigRule
public GetComplianceDetailsByConfigRuleResult getComplianceDetailsByConfigRule(GetComplianceDetailsByConfigRuleRequest request) Description copied from interface:AmazonConfig
Returns the evaluation results for the specified AWS Config rule. The results indicate which AWS resources were evaluated by the rule, when each resource was last evaluated, and whether each resource complies with the rule.
- Specified by:
getComplianceDetailsByConfigRule
in interfaceAmazonConfig
- Returns:
- Result of the GetComplianceDetailsByConfigRule operation returned by the service.
-
getComplianceDetailsByResource
public GetComplianceDetailsByResourceResult getComplianceDetailsByResource(GetComplianceDetailsByResourceRequest request) Description copied from interface:AmazonConfig
Returns the evaluation results for the specified AWS resource. The results indicate which AWS Config rules were used to evaluate the resource, when each rule was last used, and whether the resource complies with each rule.
- Specified by:
getComplianceDetailsByResource
in interfaceAmazonConfig
- Returns:
- Result of the GetComplianceDetailsByResource operation returned by the service.
-
getComplianceSummaryByConfigRule
public GetComplianceSummaryByConfigRuleResult getComplianceSummaryByConfigRule(GetComplianceSummaryByConfigRuleRequest request) Description copied from interface:AmazonConfig
Returns the number of AWS Config rules that are compliant and noncompliant, up to a maximum of 25 for each.
- Specified by:
getComplianceSummaryByConfigRule
in interfaceAmazonConfig
- Returns:
- Result of the GetComplianceSummaryByConfigRule operation returned by the service.
-
getComplianceSummaryByConfigRule
Description copied from interface:AmazonConfig
Simplified method form for invoking the GetComplianceSummaryByConfigRule operation.- Specified by:
getComplianceSummaryByConfigRule
in interfaceAmazonConfig
- See Also:
-
getComplianceSummaryByResourceType
public GetComplianceSummaryByResourceTypeResult getComplianceSummaryByResourceType(GetComplianceSummaryByResourceTypeRequest request) Description copied from interface:AmazonConfig
Returns the number of resources that are compliant and the number that are noncompliant. You can specify one or more resource types to get these numbers for each resource type. The maximum number returned is 100.
- Specified by:
getComplianceSummaryByResourceType
in interfaceAmazonConfig
- Returns:
- Result of the GetComplianceSummaryByResourceType operation returned by the service.
-
getComplianceSummaryByResourceType
Description copied from interface:AmazonConfig
Simplified method form for invoking the GetComplianceSummaryByResourceType operation.- Specified by:
getComplianceSummaryByResourceType
in interfaceAmazonConfig
- See Also:
-
getResourceConfigHistory
public GetResourceConfigHistoryResult getResourceConfigHistory(GetResourceConfigHistoryRequest request) Description copied from interface:AmazonConfig
Returns a list of configuration items for the specified resource. The list contains details about each state of the resource during the specified time interval.
The response is paginated, and by default, AWS Config returns a limit of 10 configuration items per page. You can customize this number with the
limit
parameter. The response includes anextToken
string, and to get the next page of results, run the request again and enter this string for thenextToken
parameter.Each call to the API is limited to span a duration of seven days. It is likely that the number of records returned is smaller than the specified
limit
. In such cases, you can make another call, using thenextToken
.- Specified by:
getResourceConfigHistory
in interfaceAmazonConfig
- Parameters:
request
- The input for the GetResourceConfigHistory action.- Returns:
- Result of the GetResourceConfigHistory operation returned by the service.
-
listDiscoveredResources
public ListDiscoveredResourcesResult listDiscoveredResources(ListDiscoveredResourcesRequest request) Description copied from interface:AmazonConfig
Accepts a resource type and returns a list of resource identifiers for the resources of that type. A resource identifier includes the resource type, ID, and (if available) the custom resource name. The results consist of resources that AWS Config has discovered, including those that AWS Config is not currently recording. You can narrow the results to include only resources that have specific resource IDs or a resource name.
You can specify either resource IDs or a resource name but not both in the same request. The response is paginated, and by default AWS Config lists 100 resource identifiers on each page. You can customize this number with the
limit
parameter. The response includes anextToken
string, and to get the next page of results, run the request again and enter this string for thenextToken
parameter.- Specified by:
listDiscoveredResources
in interfaceAmazonConfig
- Returns:
- Result of the ListDiscoveredResources operation returned by the service.
-
putConfigRule
Description copied from interface:AmazonConfig
Adds or updates an AWS Config rule for evaluating whether your AWS resources comply with your desired configurations.
You can use this action for customer managed Config rules and AWS managed Config rules. A customer managed Config rule is a custom rule that you develop and maintain. An AWS managed Config rule is a customizable, predefined rule that is provided by AWS Config.
If you are adding a new customer managed Config rule, you must first create the AWS Lambda function that the rule invokes to evaluate your resources. When you use the
PutConfigRule
action to add the rule to AWS Config, you must specify the Amazon Resource Name (ARN) that AWS Lambda assigns to the function. Specify the ARN for theSourceIdentifier
key. This key is part of theSource
object, which is part of theConfigRule
object.If you are adding a new AWS managed Config rule, specify the rule's identifier for the
SourceIdentifier
key. To reference AWS managed Config rule identifiers, see Using AWS Managed Config Rules.For any new rule that you add, specify the
ConfigRuleName
in theConfigRule
object. Do not specify theConfigRuleArn
or theConfigRuleId
. These values are generated by AWS Config for new rules.If you are updating a rule that you have added previously, specify the rule's
ConfigRuleName
,ConfigRuleId
, orConfigRuleArn
in theConfigRule
data type that you use in this request.The maximum number of rules that AWS Config supports is 25.
For more information about developing and using AWS Config rules, see Evaluating AWS Resource Configurations with AWS Config in the AWS Config Developer Guide.
- Specified by:
putConfigRule
in interfaceAmazonConfig
- Returns:
- Result of the PutConfigRule operation returned by the service.
-
putConfigurationRecorder
public PutConfigurationRecorderResult putConfigurationRecorder(PutConfigurationRecorderRequest request) Description copied from interface:AmazonConfig
Creates a new configuration recorder to record the selected resource configurations.
You can use this action to change the role
roleARN
and/or therecordingGroup
of an existing recorder. To change the role, call the action on the existing configuration recorder and specify a role.Currently, you can specify only one configuration recorder per account.
If
ConfigurationRecorder
does not have the recordingGroup parameter specified, the default is to record all supported resource types.- Specified by:
putConfigurationRecorder
in interfaceAmazonConfig
- Parameters:
request
- The input for the PutConfigurationRecorder action.- Returns:
- Result of the PutConfigurationRecorder operation returned by the service.
-
putDeliveryChannel
Description copied from interface:AmazonConfig
Creates a new delivery channel object to deliver the configuration information to an Amazon S3 bucket, and to an Amazon SNS topic.
You can use this action to change the Amazon S3 bucket or an Amazon SNS topic of the existing delivery channel. To change the Amazon S3 bucket or an Amazon SNS topic, call this action and specify the changed values for the S3 bucket and the SNS topic. If you specify a different value for either the S3 bucket or the SNS topic, this action will keep the existing value for the parameter that is not changed.
Currently, you can specify only one delivery channel per account.
- Specified by:
putDeliveryChannel
in interfaceAmazonConfig
- Parameters:
request
- The input for the PutDeliveryChannel action.- Returns:
- Result of the PutDeliveryChannel operation returned by the service.
-
putEvaluations
Description copied from interface:AmazonConfig
Used by an AWS Lambda function to deliver evaluation results to AWS Config. This action is required in every AWS Lambda function that is invoked by an AWS Config rule.
- Specified by:
putEvaluations
in interfaceAmazonConfig
- Returns:
- Result of the PutEvaluations operation returned by the service.
-
startConfigurationRecorder
public StartConfigurationRecorderResult startConfigurationRecorder(StartConfigurationRecorderRequest request) Description copied from interface:AmazonConfig
Starts recording configurations of the AWS resources you have selected to record in your AWS account.
You must have created at least one delivery channel to successfully start the configuration recorder.
- Specified by:
startConfigurationRecorder
in interfaceAmazonConfig
- Parameters:
request
- The input for the StartConfigurationRecorder action.- Returns:
- Result of the StartConfigurationRecorder operation returned by the service.
-
stopConfigurationRecorder
public StopConfigurationRecorderResult stopConfigurationRecorder(StopConfigurationRecorderRequest request) Description copied from interface:AmazonConfig
Stops recording configurations of the AWS resources you have selected to record in your AWS account.
- Specified by:
stopConfigurationRecorder
in interfaceAmazonConfig
- Parameters:
request
-The input for the StopConfigurationRecorder action.
- Returns:
- Result of the StopConfigurationRecorder operation returned by the service.
-
shutdown
public void shutdown()Description copied from interface:AmazonConfig
Shuts down this client object, releasing any resources that might be held open. This is an optional method, and callers are not expected to call it, but can if they want to explicitly release any open resources. Once a client has been shutdown, it should not be used to make any more requests.- Specified by:
shutdown
in interfaceAmazonConfig
-
getCachedResponseMetadata
Description copied from interface:AmazonConfig
Returns additional metadata for a previously executed successful request, typically used for debugging issues where a service isn't acting as expected. This data isn't considered part of the result data returned by an operation, so it's available through this separate, diagnostic interface.Response metadata is only cached for a limited period of time, so if you need to access this extra diagnostic information for an executed request, you should use this method to retrieve it as soon as possible after executing a request.
- Specified by:
getCachedResponseMetadata
in interfaceAmazonConfig
- Parameters:
request
- The originally executed request.- Returns:
- The response metadata for the specified request, or null if none is available.
-