NAME

Paws::AccessAnalyzer::CreateAccessPreview - Arguments for method CreateAccessPreview on Paws::AccessAnalyzer

DESCRIPTION

This class represents the parameters used for calling the method CreateAccessPreview on the Access Analyzer service. Use the attributes of this class as arguments to method CreateAccessPreview.

You shouldn't make instances of this class. Each attribute should be used as a named argument in the call to CreateAccessPreview.

SYNOPSIS

my $access-analyzer = Paws->service('AccessAnalyzer');
my $CreateAccessPreviewResponse = $access -analyzer->CreateAccessPreview(
  AnalyzerArn    => 'MyAnalyzerArn',
  Configurations => {
    'MyConfigurationsMapKey' => {
      IamRole => {
        TrustPolicy => 'MyIamTrustPolicy',    # OPTIONAL
      },    # OPTIONAL
      KmsKey => {
        Grants => [
          {
            GranteePrincipal => 'MyGranteePrincipal',
            IssuingAccount   => 'MyIssuingAccount',
            Operations       => [
              'CreateGrant',
              ... # values: CreateGrant, Decrypt, DescribeKey, Encrypt, GenerateDataKey, GenerateDataKeyPair, GenerateDataKeyPairWithoutPlaintext, GenerateDataKeyWithoutPlaintext, GetPublicKey, ReEncryptFrom, ReEncryptTo, RetireGrant, Sign, Verify
            ],
            Constraints => {
              EncryptionContextEquals =>
                { 'MyKmsConstraintsKey' => 'MyKmsConstraintsValue', }
              ,    # OPTIONAL
              EncryptionContextSubset =>
                { 'MyKmsConstraintsKey' => 'MyKmsConstraintsValue', }
              ,    # OPTIONAL
            },    # OPTIONAL
            RetiringPrincipal => 'MyRetiringPrincipal',    # OPTIONAL
          },
          ...
        ],    # OPTIONAL
        KeyPolicies => { 'MyPolicyName' => 'MyKmsKeyPolicy', },   # OPTIONAL
      },    # OPTIONAL
      S3Bucket => {
        AccessPoints => {
          'MyAccessPointArn' => {
            AccessPointPolicy => 'MyAccessPointPolicy',    # OPTIONAL
            NetworkOrigin     => {
              InternetConfiguration => {

              },                                           # OPTIONAL
              VpcConfiguration => {
                VpcId => 'MyVpcId',

              },                                           # OPTIONAL
            },    # OPTIONAL
            PublicAccessBlock => {
              IgnorePublicAcls      => 1,
              RestrictPublicBuckets => 1,

            },    # OPTIONAL
          },
        },    # OPTIONAL
        BucketAclGrants => [
          {
            Grantee => {
              Id  => 'MyAclCanonicalId',    # OPTIONAL
              Uri => 'MyAclUri',            # OPTIONAL
            },
            Permission => 'READ'
            ,    # values: READ, WRITE, READ_ACP, WRITE_ACP, FULL_CONTROL

          },
          ...
        ],    # OPTIONAL
        BucketPolicy            => 'MyS3BucketPolicy',    # OPTIONAL
        BucketPublicAccessBlock => {
          IgnorePublicAcls      => 1,
          RestrictPublicBuckets => 1,

        },                                                # OPTIONAL
      },    # OPTIONAL
      SecretsManagerSecret => {
        KmsKeyId     => 'MySecretsManagerSecretKmsId',     # OPTIONAL
        SecretPolicy => 'MySecretsManagerSecretPolicy',    # OPTIONAL
      },    # OPTIONAL
      SqsQueue => {
        QueuePolicy => 'MySqsQueuePolicy',    # OPTIONAL
      },    # OPTIONAL
    },
  },
  ClientToken => 'MyString',    # OPTIONAL
);

# Results:
my $Id = $CreateAccessPreviewResponse->Id;

# Returns a L<Paws::AccessAnalyzer::CreateAccessPreviewResponse> object.

Values for attributes that are native types (Int, String, Float, etc) can passed as-is (scalar values). Values for complex Types (objects) can be passed as a HashRef. The keys and values of the hashref will be used to instance the underlying object. For the AWS API documentation, see https://docs.aws.amazon.com/goto/WebAPI/access-analyzer/CreateAccessPreview

ATTRIBUTES

REQUIRED AnalyzerArn => Str

The ARN of the account analyzer (https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources) used to generate the access preview. You can only create an access preview for analyzers with an Account type and Active status.

ClientToken => Str

A client token.

REQUIRED Configurations => Paws::AccessAnalyzer::ConfigurationsMap

Access control configuration for your resource that is used to generate the access preview. The access preview includes findings for external access allowed to the resource with the proposed access control configuration. The configuration must contain exactly one element.

SEE ALSO

This class forms part of Paws, documenting arguments for method CreateAccessPreview in Paws::AccessAnalyzer

BUGS and CONTRIBUTIONS

The source code is located here: https://github.com/pplu/aws-sdk-perl

Please report bugs to: https://github.com/pplu/aws-sdk-perl/issues