{-# LANGUAGE DeriveGeneric #-}
{-# LANGUAGE DuplicateRecordFields #-}
{-# LANGUAGE NamedFieldPuns #-}
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE RecordWildCards #-}
{-# LANGUAGE StrictData #-}
{-# LANGUAGE NoImplicitPrelude #-}
{-# OPTIONS_GHC -fno-warn-unused-imports #-}
{-# OPTIONS_GHC -fno-warn-unused-matches #-}

-- Derived from AWS service descriptions, licensed under Apache 2.0.

-- |
-- Module      : Amazonka.FMS.Types.PolicyComplianceDetail
-- Copyright   : (c) 2013-2023 Brendan Hay
-- License     : Mozilla Public License, v. 2.0.
-- Maintainer  : Brendan Hay
-- Stability   : auto-generated
-- Portability : non-portable (GHC extensions)
module Amazonka.FMS.Types.PolicyComplianceDetail where

import qualified Amazonka.Core as Core
import qualified Amazonka.Core.Lens.Internal as Lens
import qualified Amazonka.Data as Data
import Amazonka.FMS.Types.ComplianceViolator
import Amazonka.FMS.Types.DependentServiceName
import qualified Amazonka.Prelude as Prelude

-- | Describes the noncompliant resources in a member account for a specific
-- Firewall Manager policy. A maximum of 100 entries are displayed. If more
-- than 100 resources are noncompliant, @EvaluationLimitExceeded@ is set to
-- @True@.
--
-- /See:/ 'newPolicyComplianceDetail' smart constructor.
data PolicyComplianceDetail = PolicyComplianceDetail'
  { -- | Indicates if over 100 resources are noncompliant with the Firewall
    -- Manager policy.
    PolicyComplianceDetail -> Maybe Bool
evaluationLimitExceeded :: Prelude.Maybe Prelude.Bool,
    -- | A timestamp that indicates when the returned information should be
    -- considered out of date.
    PolicyComplianceDetail -> Maybe POSIX
expiredAt :: Prelude.Maybe Data.POSIX,
    -- | Details about problems with dependent services, such as WAF or Config,
    -- and the error message received that indicates the problem with the
    -- service.
    PolicyComplianceDetail -> Maybe (HashMap DependentServiceName Text)
issueInfoMap :: Prelude.Maybe (Prelude.HashMap DependentServiceName Prelude.Text),
    -- | The Amazon Web Services account ID.
    PolicyComplianceDetail -> Maybe Text
memberAccount :: Prelude.Maybe Prelude.Text,
    -- | The ID of the Firewall Manager policy.
    PolicyComplianceDetail -> Maybe Text
policyId :: Prelude.Maybe Prelude.Text,
    -- | The Amazon Web Services account that created the Firewall Manager
    -- policy.
    PolicyComplianceDetail -> Maybe Text
policyOwner :: Prelude.Maybe Prelude.Text,
    -- | An array of resources that aren\'t protected by the WAF or Shield
    -- Advanced policy or that aren\'t in compliance with the security group
    -- policy.
    PolicyComplianceDetail -> Maybe [ComplianceViolator]
violators :: Prelude.Maybe [ComplianceViolator]
  }
  deriving (PolicyComplianceDetail -> PolicyComplianceDetail -> Bool
forall a. (a -> a -> Bool) -> (a -> a -> Bool) -> Eq a
/= :: PolicyComplianceDetail -> PolicyComplianceDetail -> Bool
$c/= :: PolicyComplianceDetail -> PolicyComplianceDetail -> Bool
== :: PolicyComplianceDetail -> PolicyComplianceDetail -> Bool
$c== :: PolicyComplianceDetail -> PolicyComplianceDetail -> Bool
Prelude.Eq, ReadPrec [PolicyComplianceDetail]
ReadPrec PolicyComplianceDetail
Int -> ReadS PolicyComplianceDetail
ReadS [PolicyComplianceDetail]
forall a.
(Int -> ReadS a)
-> ReadS [a] -> ReadPrec a -> ReadPrec [a] -> Read a
readListPrec :: ReadPrec [PolicyComplianceDetail]
$creadListPrec :: ReadPrec [PolicyComplianceDetail]
readPrec :: ReadPrec PolicyComplianceDetail
$creadPrec :: ReadPrec PolicyComplianceDetail
readList :: ReadS [PolicyComplianceDetail]
$creadList :: ReadS [PolicyComplianceDetail]
readsPrec :: Int -> ReadS PolicyComplianceDetail
$creadsPrec :: Int -> ReadS PolicyComplianceDetail
Prelude.Read, Int -> PolicyComplianceDetail -> ShowS
[PolicyComplianceDetail] -> ShowS
PolicyComplianceDetail -> String
forall a.
(Int -> a -> ShowS) -> (a -> String) -> ([a] -> ShowS) -> Show a
showList :: [PolicyComplianceDetail] -> ShowS
$cshowList :: [PolicyComplianceDetail] -> ShowS
show :: PolicyComplianceDetail -> String
$cshow :: PolicyComplianceDetail -> String
showsPrec :: Int -> PolicyComplianceDetail -> ShowS
$cshowsPrec :: Int -> PolicyComplianceDetail -> ShowS
Prelude.Show, forall x. Rep PolicyComplianceDetail x -> PolicyComplianceDetail
forall x. PolicyComplianceDetail -> Rep PolicyComplianceDetail x
forall a.
(forall x. a -> Rep a x) -> (forall x. Rep a x -> a) -> Generic a
$cto :: forall x. Rep PolicyComplianceDetail x -> PolicyComplianceDetail
$cfrom :: forall x. PolicyComplianceDetail -> Rep PolicyComplianceDetail x
Prelude.Generic)

-- |
-- Create a value of 'PolicyComplianceDetail' with all optional fields omitted.
--
-- Use <https://hackage.haskell.org/package/generic-lens generic-lens> or <https://hackage.haskell.org/package/optics optics> to modify other optional fields.
--
-- The following record fields are available, with the corresponding lenses provided
-- for backwards compatibility:
--
-- 'evaluationLimitExceeded', 'policyComplianceDetail_evaluationLimitExceeded' - Indicates if over 100 resources are noncompliant with the Firewall
-- Manager policy.
--
-- 'expiredAt', 'policyComplianceDetail_expiredAt' - A timestamp that indicates when the returned information should be
-- considered out of date.
--
-- 'issueInfoMap', 'policyComplianceDetail_issueInfoMap' - Details about problems with dependent services, such as WAF or Config,
-- and the error message received that indicates the problem with the
-- service.
--
-- 'memberAccount', 'policyComplianceDetail_memberAccount' - The Amazon Web Services account ID.
--
-- 'policyId', 'policyComplianceDetail_policyId' - The ID of the Firewall Manager policy.
--
-- 'policyOwner', 'policyComplianceDetail_policyOwner' - The Amazon Web Services account that created the Firewall Manager
-- policy.
--
-- 'violators', 'policyComplianceDetail_violators' - An array of resources that aren\'t protected by the WAF or Shield
-- Advanced policy or that aren\'t in compliance with the security group
-- policy.
newPolicyComplianceDetail ::
  PolicyComplianceDetail
newPolicyComplianceDetail :: PolicyComplianceDetail
newPolicyComplianceDetail =
  PolicyComplianceDetail'
    { $sel:evaluationLimitExceeded:PolicyComplianceDetail' :: Maybe Bool
evaluationLimitExceeded =
        forall a. Maybe a
Prelude.Nothing,
      $sel:expiredAt:PolicyComplianceDetail' :: Maybe POSIX
expiredAt = forall a. Maybe a
Prelude.Nothing,
      $sel:issueInfoMap:PolicyComplianceDetail' :: Maybe (HashMap DependentServiceName Text)
issueInfoMap = forall a. Maybe a
Prelude.Nothing,
      $sel:memberAccount:PolicyComplianceDetail' :: Maybe Text
memberAccount = forall a. Maybe a
Prelude.Nothing,
      $sel:policyId:PolicyComplianceDetail' :: Maybe Text
policyId = forall a. Maybe a
Prelude.Nothing,
      $sel:policyOwner:PolicyComplianceDetail' :: Maybe Text
policyOwner = forall a. Maybe a
Prelude.Nothing,
      $sel:violators:PolicyComplianceDetail' :: Maybe [ComplianceViolator]
violators = forall a. Maybe a
Prelude.Nothing
    }

-- | Indicates if over 100 resources are noncompliant with the Firewall
-- Manager policy.
policyComplianceDetail_evaluationLimitExceeded :: Lens.Lens' PolicyComplianceDetail (Prelude.Maybe Prelude.Bool)
policyComplianceDetail_evaluationLimitExceeded :: Lens' PolicyComplianceDetail (Maybe Bool)
policyComplianceDetail_evaluationLimitExceeded = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PolicyComplianceDetail' {Maybe Bool
evaluationLimitExceeded :: Maybe Bool
$sel:evaluationLimitExceeded:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Bool
evaluationLimitExceeded} -> Maybe Bool
evaluationLimitExceeded) (\s :: PolicyComplianceDetail
s@PolicyComplianceDetail' {} Maybe Bool
a -> PolicyComplianceDetail
s {$sel:evaluationLimitExceeded:PolicyComplianceDetail' :: Maybe Bool
evaluationLimitExceeded = Maybe Bool
a} :: PolicyComplianceDetail)

-- | A timestamp that indicates when the returned information should be
-- considered out of date.
policyComplianceDetail_expiredAt :: Lens.Lens' PolicyComplianceDetail (Prelude.Maybe Prelude.UTCTime)
policyComplianceDetail_expiredAt :: Lens' PolicyComplianceDetail (Maybe UTCTime)
policyComplianceDetail_expiredAt = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PolicyComplianceDetail' {Maybe POSIX
expiredAt :: Maybe POSIX
$sel:expiredAt:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe POSIX
expiredAt} -> Maybe POSIX
expiredAt) (\s :: PolicyComplianceDetail
s@PolicyComplianceDetail' {} Maybe POSIX
a -> PolicyComplianceDetail
s {$sel:expiredAt:PolicyComplianceDetail' :: Maybe POSIX
expiredAt = Maybe POSIX
a} :: PolicyComplianceDetail) forall b c a. (b -> c) -> (a -> b) -> a -> c
Prelude.. forall (f :: * -> *) (g :: * -> *) s t a b.
(Functor f, Functor g) =>
AnIso s t a b -> Iso (f s) (g t) (f a) (g b)
Lens.mapping forall (a :: Format). Iso' (Time a) UTCTime
Data._Time

-- | Details about problems with dependent services, such as WAF or Config,
-- and the error message received that indicates the problem with the
-- service.
policyComplianceDetail_issueInfoMap :: Lens.Lens' PolicyComplianceDetail (Prelude.Maybe (Prelude.HashMap DependentServiceName Prelude.Text))
policyComplianceDetail_issueInfoMap :: Lens'
  PolicyComplianceDetail (Maybe (HashMap DependentServiceName Text))
policyComplianceDetail_issueInfoMap = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PolicyComplianceDetail' {Maybe (HashMap DependentServiceName Text)
issueInfoMap :: Maybe (HashMap DependentServiceName Text)
$sel:issueInfoMap:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe (HashMap DependentServiceName Text)
issueInfoMap} -> Maybe (HashMap DependentServiceName Text)
issueInfoMap) (\s :: PolicyComplianceDetail
s@PolicyComplianceDetail' {} Maybe (HashMap DependentServiceName Text)
a -> PolicyComplianceDetail
s {$sel:issueInfoMap:PolicyComplianceDetail' :: Maybe (HashMap DependentServiceName Text)
issueInfoMap = Maybe (HashMap DependentServiceName Text)
a} :: PolicyComplianceDetail) forall b c a. (b -> c) -> (a -> b) -> a -> c
Prelude.. forall (f :: * -> *) (g :: * -> *) s t a b.
(Functor f, Functor g) =>
AnIso s t a b -> Iso (f s) (g t) (f a) (g b)
Lens.mapping forall s t a b. (Coercible s a, Coercible t b) => Iso s t a b
Lens.coerced

-- | The Amazon Web Services account ID.
policyComplianceDetail_memberAccount :: Lens.Lens' PolicyComplianceDetail (Prelude.Maybe Prelude.Text)
policyComplianceDetail_memberAccount :: Lens' PolicyComplianceDetail (Maybe Text)
policyComplianceDetail_memberAccount = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PolicyComplianceDetail' {Maybe Text
memberAccount :: Maybe Text
$sel:memberAccount:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
memberAccount} -> Maybe Text
memberAccount) (\s :: PolicyComplianceDetail
s@PolicyComplianceDetail' {} Maybe Text
a -> PolicyComplianceDetail
s {$sel:memberAccount:PolicyComplianceDetail' :: Maybe Text
memberAccount = Maybe Text
a} :: PolicyComplianceDetail)

-- | The ID of the Firewall Manager policy.
policyComplianceDetail_policyId :: Lens.Lens' PolicyComplianceDetail (Prelude.Maybe Prelude.Text)
policyComplianceDetail_policyId :: Lens' PolicyComplianceDetail (Maybe Text)
policyComplianceDetail_policyId = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PolicyComplianceDetail' {Maybe Text
policyId :: Maybe Text
$sel:policyId:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
policyId} -> Maybe Text
policyId) (\s :: PolicyComplianceDetail
s@PolicyComplianceDetail' {} Maybe Text
a -> PolicyComplianceDetail
s {$sel:policyId:PolicyComplianceDetail' :: Maybe Text
policyId = Maybe Text
a} :: PolicyComplianceDetail)

-- | The Amazon Web Services account that created the Firewall Manager
-- policy.
policyComplianceDetail_policyOwner :: Lens.Lens' PolicyComplianceDetail (Prelude.Maybe Prelude.Text)
policyComplianceDetail_policyOwner :: Lens' PolicyComplianceDetail (Maybe Text)
policyComplianceDetail_policyOwner = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PolicyComplianceDetail' {Maybe Text
policyOwner :: Maybe Text
$sel:policyOwner:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
policyOwner} -> Maybe Text
policyOwner) (\s :: PolicyComplianceDetail
s@PolicyComplianceDetail' {} Maybe Text
a -> PolicyComplianceDetail
s {$sel:policyOwner:PolicyComplianceDetail' :: Maybe Text
policyOwner = Maybe Text
a} :: PolicyComplianceDetail)

-- | An array of resources that aren\'t protected by the WAF or Shield
-- Advanced policy or that aren\'t in compliance with the security group
-- policy.
policyComplianceDetail_violators :: Lens.Lens' PolicyComplianceDetail (Prelude.Maybe [ComplianceViolator])
policyComplianceDetail_violators :: Lens' PolicyComplianceDetail (Maybe [ComplianceViolator])
policyComplianceDetail_violators = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PolicyComplianceDetail' {Maybe [ComplianceViolator]
violators :: Maybe [ComplianceViolator]
$sel:violators:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe [ComplianceViolator]
violators} -> Maybe [ComplianceViolator]
violators) (\s :: PolicyComplianceDetail
s@PolicyComplianceDetail' {} Maybe [ComplianceViolator]
a -> PolicyComplianceDetail
s {$sel:violators:PolicyComplianceDetail' :: Maybe [ComplianceViolator]
violators = Maybe [ComplianceViolator]
a} :: PolicyComplianceDetail) forall b c a. (b -> c) -> (a -> b) -> a -> c
Prelude.. forall (f :: * -> *) (g :: * -> *) s t a b.
(Functor f, Functor g) =>
AnIso s t a b -> Iso (f s) (g t) (f a) (g b)
Lens.mapping forall s t a b. (Coercible s a, Coercible t b) => Iso s t a b
Lens.coerced

instance Data.FromJSON PolicyComplianceDetail where
  parseJSON :: Value -> Parser PolicyComplianceDetail
parseJSON =
    forall a. String -> (Object -> Parser a) -> Value -> Parser a
Data.withObject
      String
"PolicyComplianceDetail"
      ( \Object
x ->
          Maybe Bool
-> Maybe POSIX
-> Maybe (HashMap DependentServiceName Text)
-> Maybe Text
-> Maybe Text
-> Maybe Text
-> Maybe [ComplianceViolator]
-> PolicyComplianceDetail
PolicyComplianceDetail'
            forall (f :: * -> *) a b. Functor f => (a -> b) -> f a -> f b
Prelude.<$> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"EvaluationLimitExceeded")
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"ExpiredAt")
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"IssueInfoMap" forall a. Parser (Maybe a) -> a -> Parser a
Data..!= forall a. Monoid a => a
Prelude.mempty)
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"MemberAccount")
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"PolicyId")
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"PolicyOwner")
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"Violators" forall a. Parser (Maybe a) -> a -> Parser a
Data..!= forall a. Monoid a => a
Prelude.mempty)
      )

instance Prelude.Hashable PolicyComplianceDetail where
  hashWithSalt :: Int -> PolicyComplianceDetail -> Int
hashWithSalt Int
_salt PolicyComplianceDetail' {Maybe Bool
Maybe [ComplianceViolator]
Maybe Text
Maybe (HashMap DependentServiceName Text)
Maybe POSIX
violators :: Maybe [ComplianceViolator]
policyOwner :: Maybe Text
policyId :: Maybe Text
memberAccount :: Maybe Text
issueInfoMap :: Maybe (HashMap DependentServiceName Text)
expiredAt :: Maybe POSIX
evaluationLimitExceeded :: Maybe Bool
$sel:violators:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe [ComplianceViolator]
$sel:policyOwner:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
$sel:policyId:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
$sel:memberAccount:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
$sel:issueInfoMap:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe (HashMap DependentServiceName Text)
$sel:expiredAt:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe POSIX
$sel:evaluationLimitExceeded:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Bool
..} =
    Int
_salt
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Bool
evaluationLimitExceeded
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe POSIX
expiredAt
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe (HashMap DependentServiceName Text)
issueInfoMap
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
memberAccount
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
policyId
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
policyOwner
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe [ComplianceViolator]
violators

instance Prelude.NFData PolicyComplianceDetail where
  rnf :: PolicyComplianceDetail -> ()
rnf PolicyComplianceDetail' {Maybe Bool
Maybe [ComplianceViolator]
Maybe Text
Maybe (HashMap DependentServiceName Text)
Maybe POSIX
violators :: Maybe [ComplianceViolator]
policyOwner :: Maybe Text
policyId :: Maybe Text
memberAccount :: Maybe Text
issueInfoMap :: Maybe (HashMap DependentServiceName Text)
expiredAt :: Maybe POSIX
evaluationLimitExceeded :: Maybe Bool
$sel:violators:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe [ComplianceViolator]
$sel:policyOwner:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
$sel:policyId:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
$sel:memberAccount:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Text
$sel:issueInfoMap:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe (HashMap DependentServiceName Text)
$sel:expiredAt:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe POSIX
$sel:evaluationLimitExceeded:PolicyComplianceDetail' :: PolicyComplianceDetail -> Maybe Bool
..} =
    forall a. NFData a => a -> ()
Prelude.rnf Maybe Bool
evaluationLimitExceeded
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe POSIX
expiredAt
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe (HashMap DependentServiceName Text)
issueInfoMap
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
memberAccount
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
policyId
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
policyOwner
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe [ComplianceViolator]
violators