Copyright	(c) 2013-2023 Brendan Hay
License	Mozilla Public License, v. 2.0.
Maintainer	Brendan Hay
Stability	auto-generated
Portability	non-portable (GHC extensions)
Safe Haskell	Safe-Inferred
Language	Haskell2010

Amazonka.EC2.AuthorizeClientVpnIngress

Contents

Creating a Request
Request Lenses
Destructuring the Response
Response Lenses

Description

Adds an ingress authorization rule to a Client VPN endpoint. Ingress authorization rules act as firewall rules that grant access to networks. You must configure ingress authorization rules to enable clients to access resources in Amazon Web Services or on-premises networks.

Synopsis

Creating a Request

data AuthorizeClientVpnIngress Source #

See: newAuthorizeClientVpnIngress smart constructor.

Constructors

AuthorizeClientVpnIngress'

Fields

accessGroupId :: Maybe Text
The ID of the group to grant access to, for example, the Active Directory group or identity provider (IdP) group. Required if AuthorizeAllGroups is false or not specified.
authorizeAllGroups :: Maybe Bool
Indicates whether to grant access to all clients. Specify true to grant all clients who successfully establish a VPN connection access to the network. Must be set to true if AccessGroupId is not specified.
clientToken :: Maybe Text
Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. For more information, see How to ensure idempotency.
description :: Maybe Text
A brief description of the authorization rule.
dryRun :: Maybe Bool
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
clientVpnEndpointId :: Text
The ID of the Client VPN endpoint.
targetNetworkCidr :: Text
The IPv4 address range, in CIDR notation, of the network for which access is being authorized.

Instances

Instances details

ToHeaders AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods toHeaders :: AuthorizeClientVpnIngress -> [Header] #
ToPath AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods toPath :: AuthorizeClientVpnIngress -> ByteString #
ToQuery AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods toQuery :: AuthorizeClientVpnIngress -> QueryString #
AWSRequest AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Associated Types type AWSResponse AuthorizeClientVpnIngress # Methods request :: (Service -> Service) -> AuthorizeClientVpnIngress -> Request AuthorizeClientVpnIngress # response :: MonadResource m => (ByteStringLazy -> IO ByteStringLazy) -> Service -> Proxy AuthorizeClientVpnIngress -> ClientResponse ClientBody -> m (Either Error (ClientResponse (AWSResponse AuthorizeClientVpnIngress))) #
Generic AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Associated Types type Rep AuthorizeClientVpnIngress :: Type -> Type # Methods from :: AuthorizeClientVpnIngress -> Rep AuthorizeClientVpnIngress x # to :: Rep AuthorizeClientVpnIngress x -> AuthorizeClientVpnIngress #
Read AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods readsPrec :: Int -> ReadS AuthorizeClientVpnIngress # readList :: ReadS [AuthorizeClientVpnIngress] # readPrec :: ReadPrec AuthorizeClientVpnIngress # readListPrec :: ReadPrec [AuthorizeClientVpnIngress] #
Show AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods showsPrec :: Int -> AuthorizeClientVpnIngress -> ShowS # show :: AuthorizeClientVpnIngress -> String # showList :: [AuthorizeClientVpnIngress] -> ShowS #
NFData AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods rnf :: AuthorizeClientVpnIngress -> () #
Eq AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods (==) :: AuthorizeClientVpnIngress -> AuthorizeClientVpnIngress -> Bool # (/=) :: AuthorizeClientVpnIngress -> AuthorizeClientVpnIngress -> Bool #
Hashable AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods hashWithSalt :: Int -> AuthorizeClientVpnIngress -> Int # hash :: AuthorizeClientVpnIngress -> Int #
type AWSResponse AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress type AWSResponse AuthorizeClientVpnIngress = AuthorizeClientVpnIngressResponse
type Rep AuthorizeClientVpnIngress Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress type Rep AuthorizeClientVpnIngress = D1 ('MetaData "AuthorizeClientVpnIngress" "Amazonka.EC2.AuthorizeClientVpnIngress" "amazonka-ec2-2.0-48L9RAJvmvzAdBkRegqWCL" 'False) (C1 ('MetaCons "AuthorizeClientVpnIngress'" 'PrefixI 'True) ((S1 ('MetaSel ('Just "accessGroupId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :: (S1 ('MetaSel ('Just "authorizeAllGroups") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool)) :: S1 ('MetaSel ('Just "clientToken") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)))) :: ((S1 ('MetaSel ('Just "description") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :: S1 ('MetaSel ('Just "dryRun") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool))) :: (S1 ('MetaSel ('Just "clientVpnEndpointId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Text) :: S1 ('MetaSel ('Just "targetNetworkCidr") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Text)))))

newAuthorizeClientVpnIngress Source #

Arguments

:: Text	`AuthorizeClientVpnIngress`
-> Text	`$sel:targetNetworkCidr:AuthorizeClientVpnIngress'`
-> AuthorizeClientVpnIngress

Create a value of AuthorizeClientVpnIngress with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:accessGroupId:AuthorizeClientVpnIngress', authorizeClientVpnIngress_accessGroupId - The ID of the group to grant access to, for example, the Active Directory group or identity provider (IdP) group. Required if AuthorizeAllGroups is false or not specified.

$sel:authorizeAllGroups:AuthorizeClientVpnIngress', authorizeClientVpnIngress_authorizeAllGroups - Indicates whether to grant access to all clients. Specify true to grant all clients who successfully establish a VPN connection access to the network. Must be set to true if AccessGroupId is not specified.

AuthorizeClientVpnIngress, authorizeClientVpnIngress_clientToken - Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. For more information, see How to ensure idempotency.

AuthorizeClientVpnIngress, authorizeClientVpnIngress_description - A brief description of the authorization rule.

$sel:dryRun:AuthorizeClientVpnIngress', authorizeClientVpnIngress_dryRun - Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

AuthorizeClientVpnIngress, authorizeClientVpnIngress_clientVpnEndpointId - The ID of the Client VPN endpoint.

$sel:targetNetworkCidr:AuthorizeClientVpnIngress', authorizeClientVpnIngress_targetNetworkCidr - The IPv4 address range, in CIDR notation, of the network for which access is being authorized.

Request Lenses

authorizeClientVpnIngress_accessGroupId :: Lens' AuthorizeClientVpnIngress (Maybe Text) Source #

The ID of the group to grant access to, for example, the Active Directory group or identity provider (IdP) group. Required if AuthorizeAllGroups is false or not specified.

authorizeClientVpnIngress_authorizeAllGroups :: Lens' AuthorizeClientVpnIngress (Maybe Bool) Source #

Indicates whether to grant access to all clients. Specify true to grant all clients who successfully establish a VPN connection access to the network. Must be set to true if AccessGroupId is not specified.

authorizeClientVpnIngress_clientToken :: Lens' AuthorizeClientVpnIngress (Maybe Text) Source #

Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. For more information, see How to ensure idempotency.

authorizeClientVpnIngress_description :: Lens' AuthorizeClientVpnIngress (Maybe Text) Source #

A brief description of the authorization rule.

authorizeClientVpnIngress_dryRun :: Lens' AuthorizeClientVpnIngress (Maybe Bool) Source #

Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

authorizeClientVpnIngress_clientVpnEndpointId :: Lens' AuthorizeClientVpnIngress Text Source #

The ID of the Client VPN endpoint.

authorizeClientVpnIngress_targetNetworkCidr :: Lens' AuthorizeClientVpnIngress Text Source #

The IPv4 address range, in CIDR notation, of the network for which access is being authorized.

Destructuring the Response

data AuthorizeClientVpnIngressResponse Source #

See: newAuthorizeClientVpnIngressResponse smart constructor.

Constructors

AuthorizeClientVpnIngressResponse'
Fields status :: Maybe ClientVpnAuthorizationRuleStatus The current state of the authorization rule. httpStatus :: Int The response's http status code.

Instances

Instances details

Generic AuthorizeClientVpnIngressResponse Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Associated Types type Rep AuthorizeClientVpnIngressResponse :: Type -> Type # Methods from :: AuthorizeClientVpnIngressResponse -> Rep AuthorizeClientVpnIngressResponse x # to :: Rep AuthorizeClientVpnIngressResponse x -> AuthorizeClientVpnIngressResponse #
Read AuthorizeClientVpnIngressResponse Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods readsPrec :: Int -> ReadS AuthorizeClientVpnIngressResponse # readList :: ReadS [AuthorizeClientVpnIngressResponse] # readPrec :: ReadPrec AuthorizeClientVpnIngressResponse # readListPrec :: ReadPrec [AuthorizeClientVpnIngressResponse] #
Show AuthorizeClientVpnIngressResponse Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods showsPrec :: Int -> AuthorizeClientVpnIngressResponse -> ShowS # show :: AuthorizeClientVpnIngressResponse -> String # showList :: [AuthorizeClientVpnIngressResponse] -> ShowS #
NFData AuthorizeClientVpnIngressResponse Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods rnf :: AuthorizeClientVpnIngressResponse -> () #
Eq AuthorizeClientVpnIngressResponse Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress Methods (==) :: AuthorizeClientVpnIngressResponse -> AuthorizeClientVpnIngressResponse -> Bool # (/=) :: AuthorizeClientVpnIngressResponse -> AuthorizeClientVpnIngressResponse -> Bool #
type Rep AuthorizeClientVpnIngressResponse Source #
Instance details Defined in Amazonka.EC2.AuthorizeClientVpnIngress type Rep AuthorizeClientVpnIngressResponse = D1 ('MetaData "AuthorizeClientVpnIngressResponse" "Amazonka.EC2.AuthorizeClientVpnIngress" "amazonka-ec2-2.0-48L9RAJvmvzAdBkRegqWCL" 'False) (C1 ('MetaCons "AuthorizeClientVpnIngressResponse'" 'PrefixI 'True) (S1 ('MetaSel ('Just "status") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe ClientVpnAuthorizationRuleStatus)) :*: S1 ('MetaSel ('Just "httpStatus") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Int)))

newAuthorizeClientVpnIngressResponse Source #

Arguments

:: Int	`$sel:httpStatus:AuthorizeClientVpnIngressResponse'`
-> AuthorizeClientVpnIngressResponse

Create a value of AuthorizeClientVpnIngressResponse with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

AuthorizeClientVpnIngressResponse, authorizeClientVpnIngressResponse_status - The current state of the authorization rule.

$sel:httpStatus:AuthorizeClientVpnIngressResponse', authorizeClientVpnIngressResponse_httpStatus - The response's http status code.

Response Lenses

authorizeClientVpnIngressResponse_status :: Lens' AuthorizeClientVpnIngressResponse (Maybe ClientVpnAuthorizationRuleStatus) Source #

The current state of the authorization rule.

authorizeClientVpnIngressResponse_httpStatus :: Lens' AuthorizeClientVpnIngressResponse Int Source #

The response's http status code.