{-# LANGUAGE DeriveGeneric #-} {-# LANGUAGE DuplicateRecordFields #-} {-# LANGUAGE NamedFieldPuns #-} {-# LANGUAGE OverloadedStrings #-} {-# LANGUAGE RecordWildCards #-} {-# LANGUAGE StrictData #-} {-# LANGUAGE TypeFamilies #-} {-# LANGUAGE NoImplicitPrelude #-} {-# OPTIONS_GHC -fno-warn-unused-binds #-} {-# OPTIONS_GHC -fno-warn-unused-imports #-} {-# OPTIONS_GHC -fno-warn-unused-matches #-} -- Derived from AWS service descriptions, licensed under Apache 2.0. -- | -- Module : Amazonka.Route53Resolver.ListFirewallRules -- Copyright : (c) 2013-2023 Brendan Hay -- License : Mozilla Public License, v. 2.0. -- Maintainer : Brendan Hay -- Stability : auto-generated -- Portability : non-portable (GHC extensions) -- -- Retrieves the firewall rules that you have defined for the specified -- firewall rule group. DNS Firewall uses the rules in a rule group to -- filter DNS network traffic for a VPC. -- -- A single call might return only a partial list of the rules. For -- information, see @MaxResults@. -- -- This operation returns paginated results. module Amazonka.Route53Resolver.ListFirewallRules ( -- * Creating a Request ListFirewallRules (..), newListFirewallRules, -- * Request Lenses listFirewallRules_action, listFirewallRules_maxResults, listFirewallRules_nextToken, listFirewallRules_priority, listFirewallRules_firewallRuleGroupId, -- * Destructuring the Response ListFirewallRulesResponse (..), newListFirewallRulesResponse, -- * Response Lenses listFirewallRulesResponse_firewallRules, listFirewallRulesResponse_nextToken, listFirewallRulesResponse_httpStatus, ) where import qualified Amazonka.Core as Core import qualified Amazonka.Core.Lens.Internal as Lens import qualified Amazonka.Data as Data import qualified Amazonka.Prelude as Prelude import qualified Amazonka.Request as Request import qualified Amazonka.Response as Response import Amazonka.Route53Resolver.Types -- | /See:/ 'newListFirewallRules' smart constructor. data ListFirewallRules = ListFirewallRules' { -- | Optional additional filter for the rules to retrieve. -- -- The action that DNS Firewall should take on a DNS query when it matches -- one of the domains in the rule\'s domain list: -- -- - @ALLOW@ - Permit the request to go through. -- -- - @ALERT@ - Permit the request to go through but send an alert to the -- logs. -- -- - @BLOCK@ - Disallow the request. If this is specified, additional -- handling details are provided in the rule\'s @BlockResponse@ -- setting. action :: Prelude.Maybe Action, -- | The maximum number of objects that you want Resolver to return for this -- request. If more objects are available, in the response, Resolver -- provides a @NextToken@ value that you can use in a subsequent call to -- get the next batch of objects. -- -- If you don\'t specify a value for @MaxResults@, Resolver returns up to -- 100 objects. maxResults :: Prelude.Maybe Prelude.Natural, -- | For the first call to this list request, omit this value. -- -- When you request a list of objects, Resolver returns at most the number -- of objects specified in @MaxResults@. If more objects are available for -- retrieval, Resolver returns a @NextToken@ value in the response. To -- retrieve the next batch of objects, use the token that was returned for -- the prior request in your next request. nextToken :: Prelude.Maybe Prelude.Text, -- | Optional additional filter for the rules to retrieve. -- -- The setting that determines the processing order of the rules in a rule -- group. DNS Firewall processes the rules in a rule group by order of -- priority, starting from the lowest setting. priority :: Prelude.Maybe Prelude.Int, -- | The unique identifier of the firewall rule group that you want to -- retrieve the rules for. firewallRuleGroupId :: Prelude.Text } deriving (Prelude.Eq, Prelude.Read, Prelude.Show, Prelude.Generic) -- | -- Create a value of 'ListFirewallRules' with all optional fields omitted. -- -- Use or to modify other optional fields. -- -- The following record fields are available, with the corresponding lenses provided -- for backwards compatibility: -- -- 'action', 'listFirewallRules_action' - Optional additional filter for the rules to retrieve. -- -- The action that DNS Firewall should take on a DNS query when it matches -- one of the domains in the rule\'s domain list: -- -- - @ALLOW@ - Permit the request to go through. -- -- - @ALERT@ - Permit the request to go through but send an alert to the -- logs. -- -- - @BLOCK@ - Disallow the request. If this is specified, additional -- handling details are provided in the rule\'s @BlockResponse@ -- setting. -- -- 'maxResults', 'listFirewallRules_maxResults' - The maximum number of objects that you want Resolver to return for this -- request. If more objects are available, in the response, Resolver -- provides a @NextToken@ value that you can use in a subsequent call to -- get the next batch of objects. -- -- If you don\'t specify a value for @MaxResults@, Resolver returns up to -- 100 objects. -- -- 'nextToken', 'listFirewallRules_nextToken' - For the first call to this list request, omit this value. -- -- When you request a list of objects, Resolver returns at most the number -- of objects specified in @MaxResults@. If more objects are available for -- retrieval, Resolver returns a @NextToken@ value in the response. To -- retrieve the next batch of objects, use the token that was returned for -- the prior request in your next request. -- -- 'priority', 'listFirewallRules_priority' - Optional additional filter for the rules to retrieve. -- -- The setting that determines the processing order of the rules in a rule -- group. DNS Firewall processes the rules in a rule group by order of -- priority, starting from the lowest setting. -- -- 'firewallRuleGroupId', 'listFirewallRules_firewallRuleGroupId' - The unique identifier of the firewall rule group that you want to -- retrieve the rules for. newListFirewallRules :: -- | 'firewallRuleGroupId' Prelude.Text -> ListFirewallRules newListFirewallRules pFirewallRuleGroupId_ = ListFirewallRules' { action = Prelude.Nothing, maxResults = Prelude.Nothing, nextToken = Prelude.Nothing, priority = Prelude.Nothing, firewallRuleGroupId = pFirewallRuleGroupId_ } -- | Optional additional filter for the rules to retrieve. -- -- The action that DNS Firewall should take on a DNS query when it matches -- one of the domains in the rule\'s domain list: -- -- - @ALLOW@ - Permit the request to go through. -- -- - @ALERT@ - Permit the request to go through but send an alert to the -- logs. -- -- - @BLOCK@ - Disallow the request. If this is specified, additional -- handling details are provided in the rule\'s @BlockResponse@ -- setting. listFirewallRules_action :: Lens.Lens' ListFirewallRules (Prelude.Maybe Action) listFirewallRules_action = Lens.lens (\ListFirewallRules' {action} -> action) (\s@ListFirewallRules' {} a -> s {action = a} :: ListFirewallRules) -- | The maximum number of objects that you want Resolver to return for this -- request. If more objects are available, in the response, Resolver -- provides a @NextToken@ value that you can use in a subsequent call to -- get the next batch of objects. -- -- If you don\'t specify a value for @MaxResults@, Resolver returns up to -- 100 objects. listFirewallRules_maxResults :: Lens.Lens' ListFirewallRules (Prelude.Maybe Prelude.Natural) listFirewallRules_maxResults = Lens.lens (\ListFirewallRules' {maxResults} -> maxResults) (\s@ListFirewallRules' {} a -> s {maxResults = a} :: ListFirewallRules) -- | For the first call to this list request, omit this value. -- -- When you request a list of objects, Resolver returns at most the number -- of objects specified in @MaxResults@. If more objects are available for -- retrieval, Resolver returns a @NextToken@ value in the response. To -- retrieve the next batch of objects, use the token that was returned for -- the prior request in your next request. listFirewallRules_nextToken :: Lens.Lens' ListFirewallRules (Prelude.Maybe Prelude.Text) listFirewallRules_nextToken = Lens.lens (\ListFirewallRules' {nextToken} -> nextToken) (\s@ListFirewallRules' {} a -> s {nextToken = a} :: ListFirewallRules) -- | Optional additional filter for the rules to retrieve. -- -- The setting that determines the processing order of the rules in a rule -- group. DNS Firewall processes the rules in a rule group by order of -- priority, starting from the lowest setting. listFirewallRules_priority :: Lens.Lens' ListFirewallRules (Prelude.Maybe Prelude.Int) listFirewallRules_priority = Lens.lens (\ListFirewallRules' {priority} -> priority) (\s@ListFirewallRules' {} a -> s {priority = a} :: ListFirewallRules) -- | The unique identifier of the firewall rule group that you want to -- retrieve the rules for. listFirewallRules_firewallRuleGroupId :: Lens.Lens' ListFirewallRules Prelude.Text listFirewallRules_firewallRuleGroupId = Lens.lens (\ListFirewallRules' {firewallRuleGroupId} -> firewallRuleGroupId) (\s@ListFirewallRules' {} a -> s {firewallRuleGroupId = a} :: ListFirewallRules) instance Core.AWSPager ListFirewallRules where page rq rs | Core.stop ( rs Lens.^? listFirewallRulesResponse_nextToken Prelude.. Lens._Just ) = Prelude.Nothing | Core.stop ( rs Lens.^? listFirewallRulesResponse_firewallRules Prelude.. Lens._Just ) = Prelude.Nothing | Prelude.otherwise = Prelude.Just Prelude.$ rq Prelude.& listFirewallRules_nextToken Lens..~ rs Lens.^? listFirewallRulesResponse_nextToken Prelude.. Lens._Just instance Core.AWSRequest ListFirewallRules where type AWSResponse ListFirewallRules = ListFirewallRulesResponse request overrides = Request.postJSON (overrides defaultService) response = Response.receiveJSON ( \s h x -> ListFirewallRulesResponse' Prelude.<$> (x Data..?> "FirewallRules" Core..!@ Prelude.mempty) Prelude.<*> (x Data..?> "NextToken") Prelude.<*> (Prelude.pure (Prelude.fromEnum s)) ) instance Prelude.Hashable ListFirewallRules where hashWithSalt _salt ListFirewallRules' {..} = _salt `Prelude.hashWithSalt` action `Prelude.hashWithSalt` maxResults `Prelude.hashWithSalt` nextToken `Prelude.hashWithSalt` priority `Prelude.hashWithSalt` firewallRuleGroupId instance Prelude.NFData ListFirewallRules where rnf ListFirewallRules' {..} = Prelude.rnf action `Prelude.seq` Prelude.rnf maxResults `Prelude.seq` Prelude.rnf nextToken `Prelude.seq` Prelude.rnf priority `Prelude.seq` Prelude.rnf firewallRuleGroupId instance Data.ToHeaders ListFirewallRules where toHeaders = Prelude.const ( Prelude.mconcat [ "X-Amz-Target" Data.=# ( "Route53Resolver.ListFirewallRules" :: Prelude.ByteString ), "Content-Type" Data.=# ( "application/x-amz-json-1.1" :: Prelude.ByteString ) ] ) instance Data.ToJSON ListFirewallRules where toJSON ListFirewallRules' {..} = Data.object ( Prelude.catMaybes [ ("Action" Data..=) Prelude.<$> action, ("MaxResults" Data..=) Prelude.<$> maxResults, ("NextToken" Data..=) Prelude.<$> nextToken, ("Priority" Data..=) Prelude.<$> priority, Prelude.Just ("FirewallRuleGroupId" Data..= firewallRuleGroupId) ] ) instance Data.ToPath ListFirewallRules where toPath = Prelude.const "/" instance Data.ToQuery ListFirewallRules where toQuery = Prelude.const Prelude.mempty -- | /See:/ 'newListFirewallRulesResponse' smart constructor. data ListFirewallRulesResponse = ListFirewallRulesResponse' { -- | A list of the rules that you have defined. -- -- This might be a partial list of the firewall rules that you\'ve defined. -- For information, see @MaxResults@. firewallRules :: Prelude.Maybe [FirewallRule], -- | If objects are still available for retrieval, Resolver returns this -- token in the response. To retrieve the next batch of objects, provide -- this token in your next request. nextToken :: Prelude.Maybe Prelude.Text, -- | The response's http status code. httpStatus :: Prelude.Int } deriving (Prelude.Eq, Prelude.Read, Prelude.Show, Prelude.Generic) -- | -- Create a value of 'ListFirewallRulesResponse' with all optional fields omitted. -- -- Use or to modify other optional fields. -- -- The following record fields are available, with the corresponding lenses provided -- for backwards compatibility: -- -- 'firewallRules', 'listFirewallRulesResponse_firewallRules' - A list of the rules that you have defined. -- -- This might be a partial list of the firewall rules that you\'ve defined. -- For information, see @MaxResults@. -- -- 'nextToken', 'listFirewallRulesResponse_nextToken' - If objects are still available for retrieval, Resolver returns this -- token in the response. To retrieve the next batch of objects, provide -- this token in your next request. -- -- 'httpStatus', 'listFirewallRulesResponse_httpStatus' - The response's http status code. newListFirewallRulesResponse :: -- | 'httpStatus' Prelude.Int -> ListFirewallRulesResponse newListFirewallRulesResponse pHttpStatus_ = ListFirewallRulesResponse' { firewallRules = Prelude.Nothing, nextToken = Prelude.Nothing, httpStatus = pHttpStatus_ } -- | A list of the rules that you have defined. -- -- This might be a partial list of the firewall rules that you\'ve defined. -- For information, see @MaxResults@. listFirewallRulesResponse_firewallRules :: Lens.Lens' ListFirewallRulesResponse (Prelude.Maybe [FirewallRule]) listFirewallRulesResponse_firewallRules = Lens.lens (\ListFirewallRulesResponse' {firewallRules} -> firewallRules) (\s@ListFirewallRulesResponse' {} a -> s {firewallRules = a} :: ListFirewallRulesResponse) Prelude.. Lens.mapping Lens.coerced -- | If objects are still available for retrieval, Resolver returns this -- token in the response. To retrieve the next batch of objects, provide -- this token in your next request. listFirewallRulesResponse_nextToken :: Lens.Lens' ListFirewallRulesResponse (Prelude.Maybe Prelude.Text) listFirewallRulesResponse_nextToken = Lens.lens (\ListFirewallRulesResponse' {nextToken} -> nextToken) (\s@ListFirewallRulesResponse' {} a -> s {nextToken = a} :: ListFirewallRulesResponse) -- | The response's http status code. listFirewallRulesResponse_httpStatus :: Lens.Lens' ListFirewallRulesResponse Prelude.Int listFirewallRulesResponse_httpStatus = Lens.lens (\ListFirewallRulesResponse' {httpStatus} -> httpStatus) (\s@ListFirewallRulesResponse' {} a -> s {httpStatus = a} :: ListFirewallRulesResponse) instance Prelude.NFData ListFirewallRulesResponse where rnf ListFirewallRulesResponse' {..} = Prelude.rnf firewallRules `Prelude.seq` Prelude.rnf nextToken `Prelude.seq` Prelude.rnf httpStatus