* Use event selectors to further specify the management and data event settings for your trail. By default, trails * created without specific event selectors will be configured to log all read and write management events, and no data * events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, * if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event * selector, the trail doesn't log the event. *
** You can configure up to five event selectors for a trail. *
** You cannot apply both event selectors and advanced event selectors to a trail. *
* * @see AWS API * Documentation */ @Generated("com.amazonaws:aws-java-sdk-code-generator") public class EventSelector implements Serializable, Cloneable, StructuredPojo { /** *
* Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2
* GetConsoleOutput is a read-only API operation and RunInstances is a write-only API
* operation.
*
* By default, the value is All.
*
* Specify if you want your event selector to include management events for your trail. *
** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events that you * are logging on any subsequent trail in the same Region. For more information about CloudTrail pricing, see CloudTrail Pricing. *
*/ private Boolean includeManagementEvents; /** ** CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with * basic event selectors. You can specify up to 250 resources for an individual event selector, but the total number * of data resources cannot exceed 250 across all event selectors in a trail. This limit does not apply if you * configure resource logging for all data events. *
** For more information, see Data * Events and Limits in * CloudTrail in the CloudTrail User Guide. *
*/ private com.amazonaws.internal.SdkInternalList
* An optional list of service event sources from which you do not want management events to be logged on your
* trail. In this release, the list can be empty (disables the filter), or it can filter out Key Management Service
* or Amazon RDS Data API events by containing kms.amazonaws.com or rdsdata.amazonaws.com.
* By default, ExcludeManagementEventSources is empty, and KMS and Amazon RDS Data API events are
* logged to your trail. You can exclude management event sources only in Regions that support the event source.
*
* Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2
* GetConsoleOutput is a read-only API operation and RunInstances is a write-only API
* operation.
*
* By default, the value is All.
*
GetConsoleOutput is a read-only API operation and RunInstances is a write-only
* API operation.
*
* By default, the value is All.
* @see ReadWriteType
*/
public void setReadWriteType(String readWriteType) {
this.readWriteType = readWriteType;
}
/**
*
* Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2
* GetConsoleOutput is a read-only API operation and RunInstances is a write-only API
* operation.
*
* By default, the value is All.
*
GetConsoleOutput is a read-only API operation and RunInstances is a write-only
* API operation.
*
* By default, the value is All.
* @see ReadWriteType
*/
public String getReadWriteType() {
return this.readWriteType;
}
/**
*
* Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2
* GetConsoleOutput is a read-only API operation and RunInstances is a write-only API
* operation.
*
* By default, the value is All.
*
GetConsoleOutput is a read-only API operation and RunInstances is a write-only
* API operation.
*
* By default, the value is All.
* @return Returns a reference to this object so that method calls can be chained together.
* @see ReadWriteType
*/
public EventSelector withReadWriteType(String readWriteType) {
setReadWriteType(readWriteType);
return this;
}
/**
*
* Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2
* GetConsoleOutput is a read-only API operation and RunInstances is a write-only API
* operation.
*
* By default, the value is All.
*
GetConsoleOutput is a read-only API operation and RunInstances is a write-only
* API operation.
*
* By default, the value is All.
* @see ReadWriteType
*/
public void setReadWriteType(ReadWriteType readWriteType) {
withReadWriteType(readWriteType);
}
/**
*
* Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2
* GetConsoleOutput is a read-only API operation and RunInstances is a write-only API
* operation.
*
* By default, the value is All.
*
GetConsoleOutput is a read-only API operation and RunInstances is a write-only
* API operation.
*
* By default, the value is All.
* @return Returns a reference to this object so that method calls can be chained together.
* @see ReadWriteType
*/
public EventSelector withReadWriteType(ReadWriteType readWriteType) {
this.readWriteType = readWriteType.toString();
return this;
}
/**
*
* Specify if you want your event selector to include management events for your trail. *
** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events that you * are logging on any subsequent trail in the same Region. For more information about CloudTrail pricing, see CloudTrail Pricing. *
* * @param includeManagementEvents * Specify if you want your event selector to include management events for your trail. ** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events * that you are logging on any subsequent trail in the same Region. For more information about CloudTrail * pricing, see CloudTrail Pricing. */ public void setIncludeManagementEvents(Boolean includeManagementEvents) { this.includeManagementEvents = includeManagementEvents; } /** *
* Specify if you want your event selector to include management events for your trail. *
** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events that you * are logging on any subsequent trail in the same Region. For more information about CloudTrail pricing, see CloudTrail Pricing. *
* * @return Specify if you want your event selector to include management events for your trail. ** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events * that you are logging on any subsequent trail in the same Region. For more information about CloudTrail * pricing, see CloudTrail Pricing. */ public Boolean getIncludeManagementEvents() { return this.includeManagementEvents; } /** *
* Specify if you want your event selector to include management events for your trail. *
** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events that you * are logging on any subsequent trail in the same Region. For more information about CloudTrail pricing, see CloudTrail Pricing. *
* * @param includeManagementEvents * Specify if you want your event selector to include management events for your trail. ** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events * that you are logging on any subsequent trail in the same Region. For more information about CloudTrail * pricing, see CloudTrail Pricing. * @return Returns a reference to this object so that method calls can be chained together. */ public EventSelector withIncludeManagementEvents(Boolean includeManagementEvents) { setIncludeManagementEvents(includeManagementEvents); return this; } /** *
* Specify if you want your event selector to include management events for your trail. *
** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events that you * are logging on any subsequent trail in the same Region. For more information about CloudTrail pricing, see CloudTrail Pricing. *
* * @return Specify if you want your event selector to include management events for your trail. ** For more information, see Management Events in the CloudTrail User Guide. *
*
* By default, the value is true.
*
* The first copy of management events is free. You are charged for additional copies of management events * that you are logging on any subsequent trail in the same Region. For more information about CloudTrail * pricing, see CloudTrail Pricing. */ public Boolean isIncludeManagementEvents() { return this.includeManagementEvents; } /** *
* CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with * basic event selectors. You can specify up to 250 resources for an individual event selector, but the total number * of data resources cannot exceed 250 across all event selectors in a trail. This limit does not apply if you * configure resource logging for all data events. *
** For more information, see Data * Events and Limits in * CloudTrail in the CloudTrail User Guide. *
* * @return CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB * tables with basic event selectors. You can specify up to 250 resources for an individual event selector, * but the total number of data resources cannot exceed 250 across all event selectors in a trail. This * limit does not apply if you configure resource logging for all data events. *
* For more information, see Data Events and Limits in
* CloudTrail in the CloudTrail User Guide.
*/
public java.util.List
* CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with
* basic event selectors. You can specify up to 250 resources for an individual event selector, but the total number
* of data resources cannot exceed 250 across all event selectors in a trail. This limit does not apply if you
* configure resource logging for all data events.
*
* For more information, see Data
* Events and Limits in
* CloudTrail in the CloudTrail User Guide.
*
* For more information, see Data
* Events and Limits in
* CloudTrail in the CloudTrail User Guide.
*/
public void setDataResources(java.util.Collection
* CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with
* basic event selectors. You can specify up to 250 resources for an individual event selector, but the total number
* of data resources cannot exceed 250 across all event selectors in a trail. This limit does not apply if you
* configure resource logging for all data events.
*
* For more information, see Data
* Events and Limits in
* CloudTrail in the CloudTrail User Guide.
*
* NOTE: This method appends the values to the existing list (if any). Use
* {@link #setDataResources(java.util.Collection)} or {@link #withDataResources(java.util.Collection)} if you want
* to override the existing values.
*
* For more information, see Data
* Events and Limits in
* CloudTrail in the CloudTrail User Guide.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public EventSelector withDataResources(DataResource... dataResources) {
if (this.dataResources == null) {
setDataResources(new com.amazonaws.internal.SdkInternalList
* CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with
* basic event selectors. You can specify up to 250 resources for an individual event selector, but the total number
* of data resources cannot exceed 250 across all event selectors in a trail. This limit does not apply if you
* configure resource logging for all data events.
*
* For more information, see Data
* Events and Limits in
* CloudTrail in the CloudTrail User Guide.
*
* For more information, see Data
* Events and Limits in
* CloudTrail in the CloudTrail User Guide.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public EventSelector withDataResources(java.util.Collection
* An optional list of service event sources from which you do not want management events to be logged on your
* trail. In this release, the list can be empty (disables the filter), or it can filter out Key Management Service
* or Amazon RDS Data API events by containing
* An optional list of service event sources from which you do not want management events to be logged on your
* trail. In this release, the list can be empty (disables the filter), or it can filter out Key Management Service
* or Amazon RDS Data API events by containing
* An optional list of service event sources from which you do not want management events to be logged on your
* trail. In this release, the list can be empty (disables the filter), or it can filter out Key Management Service
* or Amazon RDS Data API events by containing
* NOTE: This method appends the values to the existing list (if any). Use
* {@link #setExcludeManagementEventSources(java.util.Collection)} or
* {@link #withExcludeManagementEventSources(java.util.Collection)} if you want to override the existing values.
*
* An optional list of service event sources from which you do not want management events to be logged on your
* trail. In this release, the list can be empty (disables the filter), or it can filter out Key Management Service
* or Amazon RDS Data API events by containing kms.amazonaws.com or rdsdata.amazonaws.com.
* By default, ExcludeManagementEventSources is empty, and KMS and Amazon RDS Data API events are
* logged to your trail. You can exclude management event sources only in Regions that support the event source.
* kms.amazonaws.com or
* rdsdata.amazonaws.com. By default, ExcludeManagementEventSources is empty, and
* KMS and Amazon RDS Data API events are logged to your trail. You can exclude management event sources
* only in Regions that support the event source.
*/
public java.util.Listkms.amazonaws.com or rdsdata.amazonaws.com.
* By default, ExcludeManagementEventSources is empty, and KMS and Amazon RDS Data API events are
* logged to your trail. You can exclude management event sources only in Regions that support the event source.
* kms.amazonaws.com or
* rdsdata.amazonaws.com. By default, ExcludeManagementEventSources is empty, and
* KMS and Amazon RDS Data API events are logged to your trail. You can exclude management event sources only
* in Regions that support the event source.
*/
public void setExcludeManagementEventSources(java.util.Collectionkms.amazonaws.com or rdsdata.amazonaws.com.
* By default, ExcludeManagementEventSources is empty, and KMS and Amazon RDS Data API events are
* logged to your trail. You can exclude management event sources only in Regions that support the event source.
* kms.amazonaws.com or
* rdsdata.amazonaws.com. By default, ExcludeManagementEventSources is empty, and
* KMS and Amazon RDS Data API events are logged to your trail. You can exclude management event sources only
* in Regions that support the event source.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public EventSelector withExcludeManagementEventSources(String... excludeManagementEventSources) {
if (this.excludeManagementEventSources == null) {
setExcludeManagementEventSources(new com.amazonaws.internal.SdkInternalListkms.amazonaws.com or rdsdata.amazonaws.com.
* By default, ExcludeManagementEventSources is empty, and KMS and Amazon RDS Data API events are
* logged to your trail. You can exclude management event sources only in Regions that support the event source.
* kms.amazonaws.com or
* rdsdata.amazonaws.com. By default, ExcludeManagementEventSources is empty, and
* KMS and Amazon RDS Data API events are logged to your trail. You can exclude management event sources only
* in Regions that support the event source.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public EventSelector withExcludeManagementEventSources(java.util.Collection