awscc.networkfirewall_loggingconfiguration

Filters

  • event

  • reduce

  • value

Actions

delete

Parent base class for filters and actions.

properties:
  type:
    enum:
    - delete
required:
- type

Permissions - logs:DeleteLogDelivery, logs:ListLogDeliveries, logs:GetLogDelivery, network-firewall:UpdateLoggingConfiguration

update

Parent base class for filters and actions.

definitions:
  LogDestinationConfig:
    additionalProperties: false
    properties:
      LogDestination:
        additionalProperties: false
        description: A key-value pair to configure the logDestinations.
        minItems: 1
        patternProperties:
          ^[0-9A-Za-z.\-_@\/]+$:
            maxLength: 1024
            minLength: 1
            type: string
        type: object
      LogDestinationType:
        enum:
        - S3
        - CloudWatchLogs
        - KinesisDataFirehose
        type: string
      LogType:
        enum:
        - ALERT
        - FLOW
        type: string
    required:
    - LogType
    - LogDestinationType
    - LogDestination
    type: object
  LoggingConfiguration:
    additionalProperties: false
    properties:
      LogDestinationConfigs:
        insertionOrder: false
        items:
          additionalProperties: false
          properties:
            LogDestination:
              additionalProperties: false
              description: A key-value pair to configure the logDestinations.
              minItems: 1
              patternProperties:
                ^[0-9A-Za-z.\-_@\/]+$:
                  maxLength: 1024
                  minLength: 1
                  type: string
              type: object
            LogDestinationType:
              enum:
              - S3
              - CloudWatchLogs
              - KinesisDataFirehose
              type: string
            LogType:
              enum:
              - ALERT
              - FLOW
              type: string
          required:
          - LogType
          - LogDestinationType
          - LogDestination
          type: object
        minItems: 1
        type: array
    required:
    - LogDestinationConfigs
    type: object
  ResourceArn:
    description: A resource ARN.
    maxLength: 256
    minLength: 1
    pattern: ^arn:aws.*$
    type: string
properties:
  LoggingConfiguration:
    additionalProperties: false
    properties:
      LogDestinationConfigs:
        insertionOrder: false
        items:
          additionalProperties: false
          properties:
            LogDestination:
              additionalProperties: false
              description: A key-value pair to configure the logDestinations.
              minItems: 1
              patternProperties:
                ^[0-9A-Za-z.\-_@\/]+$:
                  maxLength: 1024
                  minLength: 1
                  type: string
              type: object
            LogDestinationType:
              enum:
              - S3
              - CloudWatchLogs
              - KinesisDataFirehose
              type: string
            LogType:
              enum:
              - ALERT
              - FLOW
              type: string
          required:
          - LogType
          - LogDestinationType
          - LogDestination
          type: object
        minItems: 1
        type: array
    required:
    - LogDestinationConfigs
    type: object
  type:
    enum:
    - update

Permissions - logs:CreateLogDelivery, logs:DeleteLogDelivery, logs:GetLogDelivery, logs:UpdateLogDelivery, logs:ListLogDeliveries, s3:PutBucketPolicy, s3:GetBucketPolicy, logs:PutResourcePolicy, logs:DescribeResourcePolicies, logs:DescribeLogGroups, iam:CreateServiceLinkedRole, firehose:TagDeliveryStream, network-firewall:UpdateLoggingConfiguration