/** * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. * SPDX-License-Identifier: Apache-2.0. */ #pragma once #include #include #include #include #include #include namespace Aws { namespace SecurityLake { namespace Model { /** */ class CreateCustomLogSourceRequest : public SecurityLakeRequest { public: AWS_SECURITYLAKE_API CreateCustomLogSourceRequest(); // Service request name is the Operation name which will send this request out, // each operation should has unique request name, so that we can get operation's name from this request. // Note: this is not true for response, multiple operations may have the same response name, // so we can not get operation's name from response. inline virtual const char* GetServiceRequestName() const override { return "CreateCustomLogSource"; } AWS_SECURITYLAKE_API Aws::String SerializePayload() const override; /** *

The configuration for the third-party custom source.

*/ inline const CustomLogSourceConfiguration& GetConfiguration() const{ return m_configuration; } /** *

The configuration for the third-party custom source.

*/ inline bool ConfigurationHasBeenSet() const { return m_configurationHasBeenSet; } /** *

The configuration for the third-party custom source.

*/ inline void SetConfiguration(const CustomLogSourceConfiguration& value) { m_configurationHasBeenSet = true; m_configuration = value; } /** *

The configuration for the third-party custom source.

*/ inline void SetConfiguration(CustomLogSourceConfiguration&& value) { m_configurationHasBeenSet = true; m_configuration = std::move(value); } /** *

The configuration for the third-party custom source.

*/ inline CreateCustomLogSourceRequest& WithConfiguration(const CustomLogSourceConfiguration& value) { SetConfiguration(value); return *this;} /** *

The configuration for the third-party custom source.

*/ inline CreateCustomLogSourceRequest& WithConfiguration(CustomLogSourceConfiguration&& value) { SetConfiguration(std::move(value)); return *this;} /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline const Aws::Vector& GetEventClasses() const{ return m_eventClasses; } /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline bool EventClassesHasBeenSet() const { return m_eventClassesHasBeenSet; } /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline void SetEventClasses(const Aws::Vector& value) { m_eventClassesHasBeenSet = true; m_eventClasses = value; } /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline void SetEventClasses(Aws::Vector&& value) { m_eventClassesHasBeenSet = true; m_eventClasses = std::move(value); } /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline CreateCustomLogSourceRequest& WithEventClasses(const Aws::Vector& value) { SetEventClasses(value); return *this;} /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline CreateCustomLogSourceRequest& WithEventClasses(Aws::Vector&& value) { SetEventClasses(std::move(value)); return *this;} /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline CreateCustomLogSourceRequest& AddEventClasses(const Aws::String& value) { m_eventClassesHasBeenSet = true; m_eventClasses.push_back(value); return *this; } /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline CreateCustomLogSourceRequest& AddEventClasses(Aws::String&& value) { m_eventClassesHasBeenSet = true; m_eventClasses.push_back(std::move(value)); return *this; } /** *

The Open Cybersecurity Schema Framework (OCSF) event classes which describes * the type of data that the custom source will send to Security Lake. The * supported event classes are:

ACCESS_ACTIVITY
*
FILE_ACTIVITY
* KERNEL_ACTIVITY
KERNEL_EXTENSION *
MEMORY_ACTIVITY
* MODULE_ACTIVITY
PROCESS_ACTIVITY *
REGISTRY_KEY_ACTIVITY
* REGISTRY_VALUE_ACTIVITY
* RESOURCE_ACTIVITY
* SCHEDULED_JOB_ACTIVITY
* SECURITY_FINDING
ACCOUNT_CHANGE *
AUTHENTICATION
* AUTHORIZATION
* ENTITY_MANAGEMENT_AUDIT
* DHCP_ACTIVITY
NETWORK_ACTIVITY *
DNS_ACTIVITY
* FTP_ACTIVITY
HTTP_ACTIVITY
*
RDP_ACTIVITY
* SMB_ACTIVITY
SSH_ACTIVITY
*
CONFIG_STATE
* INVENTORY_INFO
EMAIL_ACTIVITY
*
API_ACTIVITY
* CLOUD_API

*/ inline CreateCustomLogSourceRequest& AddEventClasses(const char* value) { m_eventClassesHasBeenSet = true; m_eventClasses.push_back(value); return *this; } /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline const Aws::String& GetSourceName() const{ return m_sourceName; } /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline bool SourceNameHasBeenSet() const { return m_sourceNameHasBeenSet; } /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline void SetSourceName(const Aws::String& value) { m_sourceNameHasBeenSet = true; m_sourceName = value; } /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline void SetSourceName(Aws::String&& value) { m_sourceNameHasBeenSet = true; m_sourceName = std::move(value); } /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline void SetSourceName(const char* value) { m_sourceNameHasBeenSet = true; m_sourceName.assign(value); } /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline CreateCustomLogSourceRequest& WithSourceName(const Aws::String& value) { SetSourceName(value); return *this;} /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline CreateCustomLogSourceRequest& WithSourceName(Aws::String&& value) { SetSourceName(std::move(value)); return *this;} /** *

Specify the name for a third-party custom source. This must be a Regionally * unique value.

*/ inline CreateCustomLogSourceRequest& WithSourceName(const char* value) { SetSourceName(value); return *this;} /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline const Aws::String& GetSourceVersion() const{ return m_sourceVersion; } /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline bool SourceVersionHasBeenSet() const { return m_sourceVersionHasBeenSet; } /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline void SetSourceVersion(const Aws::String& value) { m_sourceVersionHasBeenSet = true; m_sourceVersion = value; } /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline void SetSourceVersion(Aws::String&& value) { m_sourceVersionHasBeenSet = true; m_sourceVersion = std::move(value); } /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline void SetSourceVersion(const char* value) { m_sourceVersionHasBeenSet = true; m_sourceVersion.assign(value); } /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline CreateCustomLogSourceRequest& WithSourceVersion(const Aws::String& value) { SetSourceVersion(value); return *this;} /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline CreateCustomLogSourceRequest& WithSourceVersion(Aws::String&& value) { SetSourceVersion(std::move(value)); return *this;} /** *

Specify the source version for the third-party custom source, to limit log * collection to a specific version of custom data source.

*/ inline CreateCustomLogSourceRequest& WithSourceVersion(const char* value) { SetSourceVersion(value); return *this;} private: CustomLogSourceConfiguration m_configuration; bool m_configurationHasBeenSet = false; Aws::Vector m_eventClasses; bool m_eventClassesHasBeenSet = false; Aws::String m_sourceName; bool m_sourceNameHasBeenSet = false; Aws::String m_sourceVersion; bool m_sourceVersionHasBeenSet = false; }; } // namespace Model } // namespace SecurityLake } // namespace Aws