{-# OPTIONS_GHC -fno-warn-duplicate-exports #-} {-# OPTIONS_GHC -fno-warn-unused-imports #-} -- | -- Module : Amazonka.Detective -- Copyright : (c) 2013-2023 Brendan Hay -- License : Mozilla Public License, v. 2.0. -- Maintainer : Brendan Hay -- Stability : auto-generated -- Portability : non-portable (GHC extensions) -- -- Derived from API version @2018-10-26@ of the AWS service descriptions, licensed under Apache 2.0. -- -- Detective uses machine learning and purpose-built visualizations to help -- you to analyze and investigate security issues across your Amazon Web -- Services (Amazon Web Services) workloads. Detective automatically -- extracts time-based events such as login attempts, API calls, and -- network traffic from CloudTrail and Amazon Virtual Private Cloud (Amazon -- VPC) flow logs. It also extracts findings detected by Amazon GuardDuty. -- -- The Detective API primarily supports the creation and management of -- behavior graphs. A behavior graph contains the extracted data from a set -- of member accounts, and is created and managed by an administrator -- account. -- -- To add a member account to the behavior graph, the administrator account -- sends an invitation to the account. When the account accepts the -- invitation, it becomes a member account in the behavior graph. -- -- Detective is also integrated with Organizations. The organization -- management account designates the Detective administrator account for -- the organization. That account becomes the administrator account for the -- organization behavior graph. The Detective administrator account is also -- the delegated administrator account for Detective in Organizations. -- -- The Detective administrator account can enable any organization account -- as a member account in the organization behavior graph. The organization -- accounts do not receive invitations. The Detective administrator account -- can also invite other accounts to the organization behavior graph. -- -- Every behavior graph is specific to a Region. You can only use the API -- to manage behavior graphs that belong to the Region that is associated -- with the currently selected endpoint. -- -- The administrator account for a behavior graph can use the Detective API -- to do the following: -- -- - Enable and disable Detective. Enabling Detective creates a new -- behavior graph. -- -- - View the list of member accounts in a behavior graph. -- -- - Add member accounts to a behavior graph. -- -- - Remove member accounts from a behavior graph. -- -- - Apply tags to a behavior graph. -- -- The organization management account can use the Detective API to select -- the delegated administrator for Detective. -- -- The Detective administrator account for an organization can use the -- Detective API to do the following: -- -- - Perform all of the functions of an administrator account. -- -- - Determine whether to automatically enable new organization accounts -- as member accounts in the organization behavior graph. -- -- An invited member account can use the Detective API to do the following: -- -- - View the list of behavior graphs that they are invited to. -- -- - Accept an invitation to contribute to a behavior graph. -- -- - Decline an invitation to contribute to a behavior graph. -- -- - Remove their account from a behavior graph. -- -- All API actions are logged as CloudTrail events. See -- <https://docs.aws.amazon.com/detective/latest/adminguide/logging-using-cloudtrail.html Logging Detective API Calls with CloudTrail>. -- -- We replaced the term \"master account\" with the term \"administrator -- account.\" An administrator account is used to centrally manage multiple -- accounts. In the case of Detective, the administrator account manages -- the accounts in their behavior graph. module Amazonka.Detective ( -- * Service Configuration defaultService, -- * Errors -- $errors -- ** AccessDeniedException _AccessDeniedException, -- ** ConflictException _ConflictException, -- ** InternalServerException _InternalServerException, -- ** ResourceNotFoundException _ResourceNotFoundException, -- ** ServiceQuotaExceededException _ServiceQuotaExceededException, -- ** TooManyRequestsException _TooManyRequestsException, -- ** ValidationException _ValidationException, -- * Waiters -- $waiters -- * Operations -- $operations -- ** AcceptInvitation AcceptInvitation (AcceptInvitation'), newAcceptInvitation, AcceptInvitationResponse (AcceptInvitationResponse'), newAcceptInvitationResponse, -- ** BatchGetGraphMemberDatasources BatchGetGraphMemberDatasources (BatchGetGraphMemberDatasources'), newBatchGetGraphMemberDatasources, BatchGetGraphMemberDatasourcesResponse (BatchGetGraphMemberDatasourcesResponse'), newBatchGetGraphMemberDatasourcesResponse, -- ** BatchGetMembershipDatasources BatchGetMembershipDatasources (BatchGetMembershipDatasources'), newBatchGetMembershipDatasources, BatchGetMembershipDatasourcesResponse (BatchGetMembershipDatasourcesResponse'), newBatchGetMembershipDatasourcesResponse, -- ** CreateGraph CreateGraph (CreateGraph'), newCreateGraph, CreateGraphResponse (CreateGraphResponse'), newCreateGraphResponse, -- ** CreateMembers CreateMembers (CreateMembers'), newCreateMembers, CreateMembersResponse (CreateMembersResponse'), newCreateMembersResponse, -- ** DeleteGraph DeleteGraph (DeleteGraph'), newDeleteGraph, DeleteGraphResponse (DeleteGraphResponse'), newDeleteGraphResponse, -- ** DeleteMembers DeleteMembers (DeleteMembers'), newDeleteMembers, DeleteMembersResponse (DeleteMembersResponse'), newDeleteMembersResponse, -- ** DescribeOrganizationConfiguration DescribeOrganizationConfiguration (DescribeOrganizationConfiguration'), newDescribeOrganizationConfiguration, DescribeOrganizationConfigurationResponse (DescribeOrganizationConfigurationResponse'), newDescribeOrganizationConfigurationResponse, -- ** DisableOrganizationAdminAccount DisableOrganizationAdminAccount (DisableOrganizationAdminAccount'), newDisableOrganizationAdminAccount, DisableOrganizationAdminAccountResponse (DisableOrganizationAdminAccountResponse'), newDisableOrganizationAdminAccountResponse, -- ** DisassociateMembership DisassociateMembership (DisassociateMembership'), newDisassociateMembership, DisassociateMembershipResponse (DisassociateMembershipResponse'), newDisassociateMembershipResponse, -- ** EnableOrganizationAdminAccount EnableOrganizationAdminAccount (EnableOrganizationAdminAccount'), newEnableOrganizationAdminAccount, EnableOrganizationAdminAccountResponse (EnableOrganizationAdminAccountResponse'), newEnableOrganizationAdminAccountResponse, -- ** GetMembers GetMembers (GetMembers'), newGetMembers, GetMembersResponse (GetMembersResponse'), newGetMembersResponse, -- ** ListDatasourcePackages ListDatasourcePackages (ListDatasourcePackages'), newListDatasourcePackages, ListDatasourcePackagesResponse (ListDatasourcePackagesResponse'), newListDatasourcePackagesResponse, -- ** ListGraphs ListGraphs (ListGraphs'), newListGraphs, ListGraphsResponse (ListGraphsResponse'), newListGraphsResponse, -- ** ListInvitations ListInvitations (ListInvitations'), newListInvitations, ListInvitationsResponse (ListInvitationsResponse'), newListInvitationsResponse, -- ** ListMembers ListMembers (ListMembers'), newListMembers, ListMembersResponse (ListMembersResponse'), newListMembersResponse, -- ** ListOrganizationAdminAccounts ListOrganizationAdminAccounts (ListOrganizationAdminAccounts'), newListOrganizationAdminAccounts, ListOrganizationAdminAccountsResponse (ListOrganizationAdminAccountsResponse'), newListOrganizationAdminAccountsResponse, -- ** ListTagsForResource ListTagsForResource (ListTagsForResource'), newListTagsForResource, ListTagsForResourceResponse (ListTagsForResourceResponse'), newListTagsForResourceResponse, -- ** RejectInvitation RejectInvitation (RejectInvitation'), newRejectInvitation, RejectInvitationResponse (RejectInvitationResponse'), newRejectInvitationResponse, -- ** StartMonitoringMember StartMonitoringMember (StartMonitoringMember'), newStartMonitoringMember, StartMonitoringMemberResponse (StartMonitoringMemberResponse'), newStartMonitoringMemberResponse, -- ** TagResource TagResource (TagResource'), newTagResource, TagResourceResponse (TagResourceResponse'), newTagResourceResponse, -- ** UntagResource UntagResource (UntagResource'), newUntagResource, UntagResourceResponse (UntagResourceResponse'), newUntagResourceResponse, -- ** UpdateDatasourcePackages UpdateDatasourcePackages (UpdateDatasourcePackages'), newUpdateDatasourcePackages, UpdateDatasourcePackagesResponse (UpdateDatasourcePackagesResponse'), newUpdateDatasourcePackagesResponse, -- ** UpdateOrganizationConfiguration UpdateOrganizationConfiguration (UpdateOrganizationConfiguration'), newUpdateOrganizationConfiguration, UpdateOrganizationConfigurationResponse (UpdateOrganizationConfigurationResponse'), newUpdateOrganizationConfigurationResponse, -- * Types -- ** DatasourcePackage DatasourcePackage (..), -- ** DatasourcePackageIngestState DatasourcePackageIngestState (..), -- ** InvitationType InvitationType (..), -- ** MemberDisabledReason MemberDisabledReason (..), -- ** MemberStatus MemberStatus (..), -- ** Account Account (Account'), newAccount, -- ** Administrator Administrator (Administrator'), newAdministrator, -- ** DatasourcePackageIngestDetail DatasourcePackageIngestDetail (DatasourcePackageIngestDetail'), newDatasourcePackageIngestDetail, -- ** DatasourcePackageUsageInfo DatasourcePackageUsageInfo (DatasourcePackageUsageInfo'), newDatasourcePackageUsageInfo, -- ** Graph Graph (Graph'), newGraph, -- ** MemberDetail MemberDetail (MemberDetail'), newMemberDetail, -- ** MembershipDatasources MembershipDatasources (MembershipDatasources'), newMembershipDatasources, -- ** TimestampForCollection TimestampForCollection (TimestampForCollection'), newTimestampForCollection, -- ** UnprocessedAccount UnprocessedAccount (UnprocessedAccount'), newUnprocessedAccount, -- ** UnprocessedGraph UnprocessedGraph (UnprocessedGraph'), newUnprocessedGraph, ) where import Amazonka.Detective.AcceptInvitation import Amazonka.Detective.BatchGetGraphMemberDatasources import Amazonka.Detective.BatchGetMembershipDatasources import Amazonka.Detective.CreateGraph import Amazonka.Detective.CreateMembers import Amazonka.Detective.DeleteGraph import Amazonka.Detective.DeleteMembers import Amazonka.Detective.DescribeOrganizationConfiguration import Amazonka.Detective.DisableOrganizationAdminAccount import Amazonka.Detective.DisassociateMembership import Amazonka.Detective.EnableOrganizationAdminAccount import Amazonka.Detective.GetMembers import Amazonka.Detective.Lens import Amazonka.Detective.ListDatasourcePackages import Amazonka.Detective.ListGraphs import Amazonka.Detective.ListInvitations import Amazonka.Detective.ListMembers import Amazonka.Detective.ListOrganizationAdminAccounts import Amazonka.Detective.ListTagsForResource import Amazonka.Detective.RejectInvitation import Amazonka.Detective.StartMonitoringMember import Amazonka.Detective.TagResource import Amazonka.Detective.Types import Amazonka.Detective.UntagResource import Amazonka.Detective.UpdateDatasourcePackages import Amazonka.Detective.UpdateOrganizationConfiguration import Amazonka.Detective.Waiters -- $errors -- Error matchers are designed for use with the functions provided by -- <http://hackage.haskell.org/package/lens/docs/Control-Exception-Lens.html Control.Exception.Lens>. -- This allows catching (and rethrowing) service specific errors returned -- by 'Detective'. -- $operations -- Some AWS operations return results that are incomplete and require subsequent -- requests in order to obtain the entire result set. The process of sending -- subsequent requests to continue where a previous request left off is called -- pagination. For example, the 'ListObjects' operation of Amazon S3 returns up to -- 1000 objects at a time, and you must send subsequent requests with the -- appropriate Marker in order to retrieve the next page of results. -- -- Operations that have an 'AWSPager' instance can transparently perform subsequent -- requests, correctly setting Markers and other request facets to iterate through -- the entire result set of a truncated API operation. Operations which support -- this have an additional note in the documentation. -- -- Many operations have the ability to filter results on the server side. See the -- individual operation parameters for details. -- $waiters -- Waiters poll by repeatedly sending a request until some remote success condition -- configured by the 'Wait' specification is fulfilled. The 'Wait' specification -- determines how many attempts should be made, in addition to delay and retry strategies.