Copyright | (c) 2013-2023 Brendan Hay |
---|---|
License | Mozilla Public License, v. 2.0. |
Maintainer | Brendan Hay |
Stability | auto-generated |
Portability | non-portable (GHC extensions) |
Safe Haskell | Safe-Inferred |
Language | Haskell2010 |
Synopsis
- data Evidence = Evidence' {
- assessmentReportSelection :: Maybe Text
- attributes :: Maybe (HashMap Text Text)
- awsAccountId :: Maybe Text
- awsOrganization :: Maybe Text
- complianceCheck :: Maybe Text
- dataSource :: Maybe Text
- eventName :: Maybe Text
- eventSource :: Maybe Text
- evidenceAwsAccountId :: Maybe Text
- evidenceByType :: Maybe Text
- evidenceFolderId :: Maybe Text
- iamId :: Maybe Text
- id :: Maybe Text
- resourcesIncluded :: Maybe [Resource]
- time :: Maybe POSIX
- newEvidence :: Evidence
- evidence_assessmentReportSelection :: Lens' Evidence (Maybe Text)
- evidence_attributes :: Lens' Evidence (Maybe (HashMap Text Text))
- evidence_awsAccountId :: Lens' Evidence (Maybe Text)
- evidence_awsOrganization :: Lens' Evidence (Maybe Text)
- evidence_complianceCheck :: Lens' Evidence (Maybe Text)
- evidence_dataSource :: Lens' Evidence (Maybe Text)
- evidence_eventName :: Lens' Evidence (Maybe Text)
- evidence_eventSource :: Lens' Evidence (Maybe Text)
- evidence_evidenceAwsAccountId :: Lens' Evidence (Maybe Text)
- evidence_evidenceByType :: Lens' Evidence (Maybe Text)
- evidence_evidenceFolderId :: Lens' Evidence (Maybe Text)
- evidence_iamId :: Lens' Evidence (Maybe Text)
- evidence_id :: Lens' Evidence (Maybe Text)
- evidence_resourcesIncluded :: Lens' Evidence (Maybe [Resource])
- evidence_time :: Lens' Evidence (Maybe UTCTime)
Documentation
A record that contains the information needed to demonstrate compliance with the requirements specified by a control. Examples of evidence include change activity invoked by a user, or a system configuration snapshot.
See: newEvidence
smart constructor.
Evidence' | |
|
Instances
newEvidence :: Evidence Source #
Create a value of Evidence
with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:assessmentReportSelection:Evidence'
, evidence_assessmentReportSelection
- Specifies whether the evidence is included in the assessment report.
$sel:attributes:Evidence'
, evidence_attributes
- The names and values that are used by the evidence event. This includes
an attribute name (such as allowUsersToChangePassword
) and value (such
as true
or false
).
$sel:awsAccountId:Evidence'
, evidence_awsAccountId
- The identifier for the Amazon Web Services account.
$sel:awsOrganization:Evidence'
, evidence_awsOrganization
- The Amazon Web Services account that the evidence is collected from, and
its organization path.
Evidence
, evidence_complianceCheck
- The evaluation status for automated evidence that falls under the
compliance check category.
- Audit Manager classes evidence as non-compliant if Security Hub reports a Fail result, or if Config reports a Non-compliant result.
- Audit Manager classes evidence as compliant if Security Hub reports a Pass result, or if Config reports a Compliant result.
- If a compliance check isn't available or applicable, then no compliance evaluation can be made for that evidence. This is the case if the evidence uses Config or Security Hub as the underlying data source type, but those services aren't enabled. This is also the case if the evidence uses an underlying data source type that doesn't support compliance checks (such as manual evidence, Amazon Web Services API calls, or CloudTrail).
$sel:dataSource:Evidence'
, evidence_dataSource
- The data source where the evidence was collected from.
$sel:eventName:Evidence'
, evidence_eventName
- The name of the evidence event.
$sel:eventSource:Evidence'
, evidence_eventSource
- The Amazon Web Service that the evidence is collected from.
$sel:evidenceAwsAccountId:Evidence'
, evidence_evidenceAwsAccountId
- The identifier for the Amazon Web Services account.
$sel:evidenceByType:Evidence'
, evidence_evidenceByType
- The type of automated evidence.
$sel:evidenceFolderId:Evidence'
, evidence_evidenceFolderId
- The identifier for the folder that the evidence is stored in.
$sel:iamId:Evidence'
, evidence_iamId
- The unique identifier for the IAM user or role that's associated with
the evidence.
$sel:id:Evidence'
, evidence_id
- The identifier for the evidence.
$sel:resourcesIncluded:Evidence'
, evidence_resourcesIncluded
- The list of resources that are assessed to generate the evidence.
$sel:time:Evidence'
, evidence_time
- The timestamp that represents when the evidence was collected.
evidence_assessmentReportSelection :: Lens' Evidence (Maybe Text) Source #
Specifies whether the evidence is included in the assessment report.
evidence_attributes :: Lens' Evidence (Maybe (HashMap Text Text)) Source #
The names and values that are used by the evidence event. This includes
an attribute name (such as allowUsersToChangePassword
) and value (such
as true
or false
).
evidence_awsAccountId :: Lens' Evidence (Maybe Text) Source #
The identifier for the Amazon Web Services account.
evidence_awsOrganization :: Lens' Evidence (Maybe Text) Source #
The Amazon Web Services account that the evidence is collected from, and its organization path.
evidence_complianceCheck :: Lens' Evidence (Maybe Text) Source #
The evaluation status for automated evidence that falls under the compliance check category.
- Audit Manager classes evidence as non-compliant if Security Hub reports a Fail result, or if Config reports a Non-compliant result.
- Audit Manager classes evidence as compliant if Security Hub reports a Pass result, or if Config reports a Compliant result.
- If a compliance check isn't available or applicable, then no compliance evaluation can be made for that evidence. This is the case if the evidence uses Config or Security Hub as the underlying data source type, but those services aren't enabled. This is also the case if the evidence uses an underlying data source type that doesn't support compliance checks (such as manual evidence, Amazon Web Services API calls, or CloudTrail).
evidence_dataSource :: Lens' Evidence (Maybe Text) Source #
The data source where the evidence was collected from.
evidence_eventSource :: Lens' Evidence (Maybe Text) Source #
The Amazon Web Service that the evidence is collected from.
evidence_evidenceAwsAccountId :: Lens' Evidence (Maybe Text) Source #
The identifier for the Amazon Web Services account.
evidence_evidenceFolderId :: Lens' Evidence (Maybe Text) Source #
The identifier for the folder that the evidence is stored in.
evidence_iamId :: Lens' Evidence (Maybe Text) Source #
The unique identifier for the IAM user or role that's associated with the evidence.