/*******************************************************************************
* Copyright 2012-2019 Amazon.com, Inc. or its affiliates. All Rights Reserved.
* Licensed under the Apache License, Version 2.0 (the "License"). You may not use
* this file except in compliance with the License. A copy of the License is located at
*
* http://aws.amazon.com/apache2.0
*
* or in the "license" file accompanying this file.
* This file is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
* CONDITIONS OF ANY KIND, either express or implied. See the License for the
* specific language governing permissions and limitations under the License.
* *****************************************************************************
*
* AWS Tools for Windows (TM) PowerShell (TM)
*
*/
using System;
using System.Collections.Generic;
using System.Linq;
using System.Management.Automation;
using System.Text;
using Amazon.PowerShell.Common;
using Amazon.Runtime;
using Amazon.NetworkFirewall;
using Amazon.NetworkFirewall.Model;
namespace Amazon.PowerShell.Cmdlets.NWFW
{
///
/// Updates the rule settings for the specified rule group. You use a rule group by reference
/// in one or more firewall policies. When you modify a rule group, you modify all firewall
/// policies that use the rule group.
///
///
///
/// To update a rule group, first call DescribeRuleGroup to retrieve the current
/// RuleGroup object, update the object as needed, and then provide the updated
/// object to this call.
///
///
[Cmdlet("Update", "NWFWRuleGroup", SupportsShouldProcess = true, ConfirmImpact = ConfirmImpact.Medium)]
[OutputType("Amazon.NetworkFirewall.Model.UpdateRuleGroupResponse")]
[AWSCmdlet("Calls the AWS Network Firewall UpdateRuleGroup API operation.", Operation = new[] {"UpdateRuleGroup"}, SelectReturnType = typeof(Amazon.NetworkFirewall.Model.UpdateRuleGroupResponse))]
[AWSCmdletOutput("Amazon.NetworkFirewall.Model.UpdateRuleGroupResponse",
"This cmdlet returns an Amazon.NetworkFirewall.Model.UpdateRuleGroupResponse object containing multiple properties. The object can also be referenced from properties attached to the cmdlet entry in the $AWSHistory stack."
)]
public partial class UpdateNWFWRuleGroupCmdlet : AmazonNetworkFirewallClientCmdlet, IExecutor
{
#region Parameter StatelessRulesAndCustomActions_CustomAction
///
///
/// Defines an array of individual custom action definitions that are available for use
/// by the stateless rules in this StatelessRulesAndCustomActions specification.
/// You name each custom action that you define, and then you can use it by name in your
/// StatelessRuleRuleDefinitionActions specification.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RulesSource_StatelessRulesAndCustomActions_CustomActions")]
public Amazon.NetworkFirewall.Model.CustomAction[] StatelessRulesAndCustomActions_CustomAction { get; set; }
#endregion
#region Parameter Description
///
///
/// A description of the rule group.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public System.String Description { get; set; }
#endregion
#region Parameter DryRun
///
///
/// Indicates whether you want Network Firewall to just check the validity of the request,
/// rather than run the request. If set to TRUE, Network Firewall checks whether the request can run successfully,
/// but doesn't actually make the requested changes. The call returns the value that the
/// request would return if you ran it with dry run set to FALSE, but doesn't
/// make additions or changes to your resources. This option allows you to make sure that
/// you have the required permissions to run the request and that your request parameters
/// are valid. If set to FALSE, Network Firewall makes the requested changes to your
/// resources.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public System.Boolean? DryRun { get; set; }
#endregion
#region Parameter RulesSourceList_GeneratedRulesType
///
///
/// Whether you want to allow or deny access to the domains in your target list.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RulesSource_RulesSourceList_GeneratedRulesType")]
[AWSConstantClassSource("Amazon.NetworkFirewall.GeneratedRulesType")]
public Amazon.NetworkFirewall.GeneratedRulesType RulesSourceList_GeneratedRulesType { get; set; }
#endregion
#region Parameter ReferenceSets_IPSetReference
///
///
/// The list of IP set references.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_ReferenceSets_IPSetReferences")]
public System.Collections.Hashtable ReferenceSets_IPSetReference { get; set; }
#endregion
#region Parameter RuleVariables_IPSet
///
///
/// A list of IP addresses and address ranges, in CIDR notation.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RuleVariables_IPSets")]
public System.Collections.Hashtable RuleVariables_IPSet { get; set; }
#endregion
#region Parameter EncryptionConfiguration_KeyId
///
///
/// The ID of the Amazon Web Services Key Management Service (KMS) customer managed key.
/// You can use any of the key identifiers that KMS supports, unless you're using a key
/// that's managed by another account. If you're using a key managed by another account,
/// then specify the key ARN. For more information, see Key
/// ID in the Amazon Web Services KMS Developer Guide.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public System.String EncryptionConfiguration_KeyId { get; set; }
#endregion
#region Parameter RuleVariables_PortSet
///
///
/// A list of port ranges.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RuleVariables_PortSets")]
public System.Collections.Hashtable RuleVariables_PortSet { get; set; }
#endregion
#region Parameter RuleGroupArn
///
///
/// The Amazon Resource Name (ARN) of the rule group.You must specify the ARN or the name, and you can specify both.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public System.String RuleGroupArn { get; set; }
#endregion
#region Parameter RuleGroupName
///
///
/// The descriptive name of the rule group. You can't change the name of a rule group
/// after you create it.You must specify the ARN or the name, and you can specify both.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public System.String RuleGroupName { get; set; }
#endregion
#region Parameter StatefulRuleOptions_RuleOrder
///
///
/// Indicates how to manage the order of the rule evaluation for the rule group. DEFAULT_ACTION_ORDER
/// is the default behavior. Stateful rules are provided to the rule engine as Suricata
/// compatible strings, and Suricata evaluates them based on certain settings. For more
/// information, see Evaluation
/// order for stateful rules in the Network Firewall Developer Guide.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_StatefulRuleOptions_RuleOrder")]
[AWSConstantClassSource("Amazon.NetworkFirewall.RuleOrder")]
public Amazon.NetworkFirewall.RuleOrder StatefulRuleOptions_RuleOrder { get; set; }
#endregion
#region Parameter Rule
///
///
/// A string containing stateful rule group rules specifications in Suricata flat format,
/// with one rule per line. Use this to import your existing Suricata compatible rule
/// groups. You must provide either this rules setting or a populated RuleGroup setting,
/// but not both. You can provide your rule group specification in Suricata flat format through this
/// setting when you create or update your rule group. The call response returns a RuleGroup
/// object that Network Firewall has populated from your string.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("Rules")]
public System.String Rule { get; set; }
#endregion
#region Parameter RulesSource_RulesString
///
///
/// Stateful inspection criteria, provided in Suricata compatible intrusion prevention
/// system (IPS) rules. Suricata is an open-source network IPS that includes a standard
/// rule-based language for network traffic inspection.These rules contain the inspection criteria and the action to take for traffic that
/// matches the criteria, so this type of rule group doesn't have a separate action setting.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RulesSource_RulesString")]
public System.String RulesSource_RulesString { get; set; }
#endregion
#region Parameter SourceMetadata_SourceArn
///
///
/// The Amazon Resource Name (ARN) of the rule group that your own rule group is copied
/// from.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public System.String SourceMetadata_SourceArn { get; set; }
#endregion
#region Parameter SourceMetadata_SourceUpdateToken
///
///
/// The update token of the Amazon Web Services managed rule group that your own rule
/// group is copied from. To determine the update token for the managed rule group, call
/// DescribeRuleGroup.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public System.String SourceMetadata_SourceUpdateToken { get; set; }
#endregion
#region Parameter RulesSource_StatefulRule
///
///
/// An array of individual stateful rules inspection criteria to be used together in a
/// stateful rule group. Use this option to specify simple Suricata rules with protocol,
/// source and destination, ports, direction, and rule options. For information about
/// the Suricata Rules format, see Rules
/// Format.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RulesSource_StatefulRules")]
public Amazon.NetworkFirewall.Model.StatefulRule[] RulesSource_StatefulRule { get; set; }
#endregion
#region Parameter StatelessRulesAndCustomActions_StatelessRule
///
///
/// Defines the set of stateless rules for use in a stateless rule group.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RulesSource_StatelessRulesAndCustomActions_StatelessRules")]
public Amazon.NetworkFirewall.Model.StatelessRule[] StatelessRulesAndCustomActions_StatelessRule { get; set; }
#endregion
#region Parameter RulesSourceList_Target
///
///
/// The domains that you want to inspect for in your traffic flows. Valid domain specifications
/// are the following:- Explicit names. For example,
abc.example.com matches only the domain
/// abc.example.com. - Names that use a domain wildcard, which you indicate with an initial '
.'.
/// For example,.example.com matches example.com and matches
/// all subdomains of example.com, such as abc.example.com and
/// www.example.com.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RulesSource_RulesSourceList_Targets")]
public System.String[] RulesSourceList_Target { get; set; }
#endregion
#region Parameter RulesSourceList_TargetType
///
///
/// The protocols you want to inspect. Specify TLS_SNI for HTTPS.
/// Specify HTTP_HOST for HTTP. You can specify either or both.
///
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[Alias("RuleGroup_RulesSource_RulesSourceList_TargetTypes")]
public System.String[] RulesSourceList_TargetType { get; set; }
#endregion
#region Parameter EncryptionConfiguration_Type
///
///
/// The type of Amazon Web Services KMS key to use for encryption of your Network Firewall
/// resources.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[AWSConstantClassSource("Amazon.NetworkFirewall.EncryptionType")]
public Amazon.NetworkFirewall.EncryptionType EncryptionConfiguration_Type { get; set; }
#endregion
#region Parameter Type
///
///
/// Indicates whether the rule group is stateless or stateful. If the rule group is stateless,
/// it contains stateless rules. If it is stateful, it contains stateful rules. This setting is required for requests that do not include the RuleGroupARN.
///
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
[AWSConstantClassSource("Amazon.NetworkFirewall.RuleGroupType")]
public Amazon.NetworkFirewall.RuleGroupType Type { get; set; }
#endregion
#region Parameter UpdateToken
///
///
/// A token used for optimistic locking. Network Firewall returns a token to your requests
/// that access the rule group. The token marks the state of the rule group resource at
/// the time of the request. To make changes to the rule group, you provide the token in your request. Network
/// Firewall uses the token to ensure that the rule group hasn't changed since you last
/// retrieved it. If it has changed, the operation fails with an InvalidTokenException.
/// If this happens, retrieve the rule group again to get a current copy of it with a
/// current token. Reapply your changes as needed, then try the operation again using
/// the new token.
///
///
#if !MODULAR
[System.Management.Automation.Parameter(Position = 0, ValueFromPipelineByPropertyName = true, ValueFromPipeline = true)]
#else
[System.Management.Automation.Parameter(Position = 0, ValueFromPipelineByPropertyName = true, ValueFromPipeline = true, Mandatory = true)]
[System.Management.Automation.AllowEmptyString]
[System.Management.Automation.AllowNull]
#endif
[Amazon.PowerShell.Common.AWSRequiredParameter]
public System.String UpdateToken { get; set; }
#endregion
#region Parameter Select
///
/// Use the -Select parameter to control the cmdlet output. The default value is '*'.
/// Specifying -Select '*' will result in the cmdlet returning the whole service response (Amazon.NetworkFirewall.Model.UpdateRuleGroupResponse).
/// Specifying the name of a property of type Amazon.NetworkFirewall.Model.UpdateRuleGroupResponse will result in that property being returned.
/// Specifying -Select '^ParameterName' will result in the cmdlet returning the selected cmdlet parameter value.
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public string Select { get; set; } = "*";
#endregion
#region Parameter PassThru
///
/// Changes the cmdlet behavior to return the value passed to the UpdateToken parameter.
/// The -PassThru parameter is deprecated, use -Select '^UpdateToken' instead. This parameter will be removed in a future version.
///
[System.Obsolete("The -PassThru parameter is deprecated, use -Select '^UpdateToken' instead. This parameter will be removed in a future version.")]
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public SwitchParameter PassThru { get; set; }
#endregion
#region Parameter Force
///
/// This parameter overrides confirmation prompts to force
/// the cmdlet to continue its operation. This parameter should always
/// be used with caution.
///
[System.Management.Automation.Parameter(ValueFromPipelineByPropertyName = true)]
public SwitchParameter Force { get; set; }
#endregion
protected override void ProcessRecord()
{
this._AWSSignerType = "v4";
base.ProcessRecord();
var resourceIdentifiersText = string.Empty;
if (!ConfirmShouldProceed(this.Force.IsPresent, resourceIdentifiersText, "Update-NWFWRuleGroup (UpdateRuleGroup)"))
{
return;
}
var context = new CmdletContext();
// allow for manipulation of parameters prior to loading into context
PreExecutionContextLoad(context);
#pragma warning disable CS0618, CS0612 //A class member was marked with the Obsolete attribute
if (ParameterWasBound(nameof(this.Select)))
{
context.Select = CreateSelectDelegate(Select) ??
throw new System.ArgumentException("Invalid value for -Select parameter.", nameof(this.Select));
if (this.PassThru.IsPresent)
{
throw new System.ArgumentException("-PassThru cannot be used when -Select is specified.", nameof(this.Select));
}
}
else if (this.PassThru.IsPresent)
{
context.Select = (response, cmdlet) => this.UpdateToken;
}
#pragma warning restore CS0618, CS0612 //A class member was marked with the Obsolete attribute
context.Description = this.Description;
context.DryRun = this.DryRun;
context.EncryptionConfiguration_KeyId = this.EncryptionConfiguration_KeyId;
context.EncryptionConfiguration_Type = this.EncryptionConfiguration_Type;
if (this.ReferenceSets_IPSetReference != null)
{
context.ReferenceSets_IPSetReference = new Dictionary(StringComparer.Ordinal);
foreach (var hashKey in this.ReferenceSets_IPSetReference.Keys)
{
context.ReferenceSets_IPSetReference.Add((String)hashKey, (IPSetReference)(this.ReferenceSets_IPSetReference[hashKey]));
}
}
context.RulesSourceList_GeneratedRulesType = this.RulesSourceList_GeneratedRulesType;
if (this.RulesSourceList_Target != null)
{
context.RulesSourceList_Target = new List(this.RulesSourceList_Target);
}
if (this.RulesSourceList_TargetType != null)
{
context.RulesSourceList_TargetType = new List(this.RulesSourceList_TargetType);
}
context.RulesSource_RulesString = this.RulesSource_RulesString;
if (this.RulesSource_StatefulRule != null)
{
context.RulesSource_StatefulRule = new List(this.RulesSource_StatefulRule);
}
if (this.StatelessRulesAndCustomActions_CustomAction != null)
{
context.StatelessRulesAndCustomActions_CustomAction = new List(this.StatelessRulesAndCustomActions_CustomAction);
}
if (this.StatelessRulesAndCustomActions_StatelessRule != null)
{
context.StatelessRulesAndCustomActions_StatelessRule = new List(this.StatelessRulesAndCustomActions_StatelessRule);
}
if (this.RuleVariables_IPSet != null)
{
context.RuleVariables_IPSet = new Dictionary(StringComparer.Ordinal);
foreach (var hashKey in this.RuleVariables_IPSet.Keys)
{
context.RuleVariables_IPSet.Add((String)hashKey, (IPSet)(this.RuleVariables_IPSet[hashKey]));
}
}
if (this.RuleVariables_PortSet != null)
{
context.RuleVariables_PortSet = new Dictionary(StringComparer.Ordinal);
foreach (var hashKey in this.RuleVariables_PortSet.Keys)
{
context.RuleVariables_PortSet.Add((String)hashKey, (PortSet)(this.RuleVariables_PortSet[hashKey]));
}
}
context.StatefulRuleOptions_RuleOrder = this.StatefulRuleOptions_RuleOrder;
context.RuleGroupArn = this.RuleGroupArn;
context.RuleGroupName = this.RuleGroupName;
context.Rule = this.Rule;
context.SourceMetadata_SourceArn = this.SourceMetadata_SourceArn;
context.SourceMetadata_SourceUpdateToken = this.SourceMetadata_SourceUpdateToken;
context.Type = this.Type;
context.UpdateToken = this.UpdateToken;
#if MODULAR
if (this.UpdateToken == null && ParameterWasBound(nameof(this.UpdateToken)))
{
WriteWarning("You are passing $null as a value for parameter UpdateToken which is marked as required. In case you believe this parameter was incorrectly marked as required, report this by opening an issue at https://github.com/aws/aws-tools-for-powershell/issues.");
}
#endif
// allow further manipulation of loaded context prior to processing
PostExecutionContextLoad(context);
var output = Execute(context) as CmdletOutput;
ProcessOutput(output);
}
#region IExecutor Members
public object Execute(ExecutorContext context)
{
var cmdletContext = context as CmdletContext;
// create request
var request = new Amazon.NetworkFirewall.Model.UpdateRuleGroupRequest();
if (cmdletContext.Description != null)
{
request.Description = cmdletContext.Description;
}
if (cmdletContext.DryRun != null)
{
request.DryRun = cmdletContext.DryRun.Value;
}
// populate EncryptionConfiguration
var requestEncryptionConfigurationIsNull = true;
request.EncryptionConfiguration = new Amazon.NetworkFirewall.Model.EncryptionConfiguration();
System.String requestEncryptionConfiguration_encryptionConfiguration_KeyId = null;
if (cmdletContext.EncryptionConfiguration_KeyId != null)
{
requestEncryptionConfiguration_encryptionConfiguration_KeyId = cmdletContext.EncryptionConfiguration_KeyId;
}
if (requestEncryptionConfiguration_encryptionConfiguration_KeyId != null)
{
request.EncryptionConfiguration.KeyId = requestEncryptionConfiguration_encryptionConfiguration_KeyId;
requestEncryptionConfigurationIsNull = false;
}
Amazon.NetworkFirewall.EncryptionType requestEncryptionConfiguration_encryptionConfiguration_Type = null;
if (cmdletContext.EncryptionConfiguration_Type != null)
{
requestEncryptionConfiguration_encryptionConfiguration_Type = cmdletContext.EncryptionConfiguration_Type;
}
if (requestEncryptionConfiguration_encryptionConfiguration_Type != null)
{
request.EncryptionConfiguration.Type = requestEncryptionConfiguration_encryptionConfiguration_Type;
requestEncryptionConfigurationIsNull = false;
}
// determine if request.EncryptionConfiguration should be set to null
if (requestEncryptionConfigurationIsNull)
{
request.EncryptionConfiguration = null;
}
// populate RuleGroup
var requestRuleGroupIsNull = true;
request.RuleGroup = new Amazon.NetworkFirewall.Model.RuleGroup();
Amazon.NetworkFirewall.Model.ReferenceSets requestRuleGroup_ruleGroup_ReferenceSets = null;
// populate ReferenceSets
var requestRuleGroup_ruleGroup_ReferenceSetsIsNull = true;
requestRuleGroup_ruleGroup_ReferenceSets = new Amazon.NetworkFirewall.Model.ReferenceSets();
Dictionary requestRuleGroup_ruleGroup_ReferenceSets_referenceSets_IPSetReference = null;
if (cmdletContext.ReferenceSets_IPSetReference != null)
{
requestRuleGroup_ruleGroup_ReferenceSets_referenceSets_IPSetReference = cmdletContext.ReferenceSets_IPSetReference;
}
if (requestRuleGroup_ruleGroup_ReferenceSets_referenceSets_IPSetReference != null)
{
requestRuleGroup_ruleGroup_ReferenceSets.IPSetReferences = requestRuleGroup_ruleGroup_ReferenceSets_referenceSets_IPSetReference;
requestRuleGroup_ruleGroup_ReferenceSetsIsNull = false;
}
// determine if requestRuleGroup_ruleGroup_ReferenceSets should be set to null
if (requestRuleGroup_ruleGroup_ReferenceSetsIsNull)
{
requestRuleGroup_ruleGroup_ReferenceSets = null;
}
if (requestRuleGroup_ruleGroup_ReferenceSets != null)
{
request.RuleGroup.ReferenceSets = requestRuleGroup_ruleGroup_ReferenceSets;
requestRuleGroupIsNull = false;
}
Amazon.NetworkFirewall.Model.StatefulRuleOptions requestRuleGroup_ruleGroup_StatefulRuleOptions = null;
// populate StatefulRuleOptions
var requestRuleGroup_ruleGroup_StatefulRuleOptionsIsNull = true;
requestRuleGroup_ruleGroup_StatefulRuleOptions = new Amazon.NetworkFirewall.Model.StatefulRuleOptions();
Amazon.NetworkFirewall.RuleOrder requestRuleGroup_ruleGroup_StatefulRuleOptions_statefulRuleOptions_RuleOrder = null;
if (cmdletContext.StatefulRuleOptions_RuleOrder != null)
{
requestRuleGroup_ruleGroup_StatefulRuleOptions_statefulRuleOptions_RuleOrder = cmdletContext.StatefulRuleOptions_RuleOrder;
}
if (requestRuleGroup_ruleGroup_StatefulRuleOptions_statefulRuleOptions_RuleOrder != null)
{
requestRuleGroup_ruleGroup_StatefulRuleOptions.RuleOrder = requestRuleGroup_ruleGroup_StatefulRuleOptions_statefulRuleOptions_RuleOrder;
requestRuleGroup_ruleGroup_StatefulRuleOptionsIsNull = false;
}
// determine if requestRuleGroup_ruleGroup_StatefulRuleOptions should be set to null
if (requestRuleGroup_ruleGroup_StatefulRuleOptionsIsNull)
{
requestRuleGroup_ruleGroup_StatefulRuleOptions = null;
}
if (requestRuleGroup_ruleGroup_StatefulRuleOptions != null)
{
request.RuleGroup.StatefulRuleOptions = requestRuleGroup_ruleGroup_StatefulRuleOptions;
requestRuleGroupIsNull = false;
}
Amazon.NetworkFirewall.Model.RuleVariables requestRuleGroup_ruleGroup_RuleVariables = null;
// populate RuleVariables
var requestRuleGroup_ruleGroup_RuleVariablesIsNull = true;
requestRuleGroup_ruleGroup_RuleVariables = new Amazon.NetworkFirewall.Model.RuleVariables();
Dictionary requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_IPSet = null;
if (cmdletContext.RuleVariables_IPSet != null)
{
requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_IPSet = cmdletContext.RuleVariables_IPSet;
}
if (requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_IPSet != null)
{
requestRuleGroup_ruleGroup_RuleVariables.IPSets = requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_IPSet;
requestRuleGroup_ruleGroup_RuleVariablesIsNull = false;
}
Dictionary requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_PortSet = null;
if (cmdletContext.RuleVariables_PortSet != null)
{
requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_PortSet = cmdletContext.RuleVariables_PortSet;
}
if (requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_PortSet != null)
{
requestRuleGroup_ruleGroup_RuleVariables.PortSets = requestRuleGroup_ruleGroup_RuleVariables_ruleVariables_PortSet;
requestRuleGroup_ruleGroup_RuleVariablesIsNull = false;
}
// determine if requestRuleGroup_ruleGroup_RuleVariables should be set to null
if (requestRuleGroup_ruleGroup_RuleVariablesIsNull)
{
requestRuleGroup_ruleGroup_RuleVariables = null;
}
if (requestRuleGroup_ruleGroup_RuleVariables != null)
{
request.RuleGroup.RuleVariables = requestRuleGroup_ruleGroup_RuleVariables;
requestRuleGroupIsNull = false;
}
Amazon.NetworkFirewall.Model.RulesSource requestRuleGroup_ruleGroup_RulesSource = null;
// populate RulesSource
var requestRuleGroup_ruleGroup_RulesSourceIsNull = true;
requestRuleGroup_ruleGroup_RulesSource = new Amazon.NetworkFirewall.Model.RulesSource();
System.String requestRuleGroup_ruleGroup_RulesSource_rulesSource_RulesString = null;
if (cmdletContext.RulesSource_RulesString != null)
{
requestRuleGroup_ruleGroup_RulesSource_rulesSource_RulesString = cmdletContext.RulesSource_RulesString;
}
if (requestRuleGroup_ruleGroup_RulesSource_rulesSource_RulesString != null)
{
requestRuleGroup_ruleGroup_RulesSource.RulesString = requestRuleGroup_ruleGroup_RulesSource_rulesSource_RulesString;
requestRuleGroup_ruleGroup_RulesSourceIsNull = false;
}
List requestRuleGroup_ruleGroup_RulesSource_rulesSource_StatefulRule = null;
if (cmdletContext.RulesSource_StatefulRule != null)
{
requestRuleGroup_ruleGroup_RulesSource_rulesSource_StatefulRule = cmdletContext.RulesSource_StatefulRule;
}
if (requestRuleGroup_ruleGroup_RulesSource_rulesSource_StatefulRule != null)
{
requestRuleGroup_ruleGroup_RulesSource.StatefulRules = requestRuleGroup_ruleGroup_RulesSource_rulesSource_StatefulRule;
requestRuleGroup_ruleGroup_RulesSourceIsNull = false;
}
Amazon.NetworkFirewall.Model.StatelessRulesAndCustomActions requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions = null;
// populate StatelessRulesAndCustomActions
var requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActionsIsNull = true;
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions = new Amazon.NetworkFirewall.Model.StatelessRulesAndCustomActions();
List requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_CustomAction = null;
if (cmdletContext.StatelessRulesAndCustomActions_CustomAction != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_CustomAction = cmdletContext.StatelessRulesAndCustomActions_CustomAction;
}
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_CustomAction != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions.CustomActions = requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_CustomAction;
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActionsIsNull = false;
}
List requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_StatelessRule = null;
if (cmdletContext.StatelessRulesAndCustomActions_StatelessRule != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_StatelessRule = cmdletContext.StatelessRulesAndCustomActions_StatelessRule;
}
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_StatelessRule != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions.StatelessRules = requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions_statelessRulesAndCustomActions_StatelessRule;
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActionsIsNull = false;
}
// determine if requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions should be set to null
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActionsIsNull)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions = null;
}
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions != null)
{
requestRuleGroup_ruleGroup_RulesSource.StatelessRulesAndCustomActions = requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_StatelessRulesAndCustomActions;
requestRuleGroup_ruleGroup_RulesSourceIsNull = false;
}
Amazon.NetworkFirewall.Model.RulesSourceList requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList = null;
// populate RulesSourceList
var requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceListIsNull = true;
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList = new Amazon.NetworkFirewall.Model.RulesSourceList();
Amazon.NetworkFirewall.GeneratedRulesType requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_GeneratedRulesType = null;
if (cmdletContext.RulesSourceList_GeneratedRulesType != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_GeneratedRulesType = cmdletContext.RulesSourceList_GeneratedRulesType;
}
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_GeneratedRulesType != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList.GeneratedRulesType = requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_GeneratedRulesType;
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceListIsNull = false;
}
List requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_Target = null;
if (cmdletContext.RulesSourceList_Target != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_Target = cmdletContext.RulesSourceList_Target;
}
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_Target != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList.Targets = requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_Target;
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceListIsNull = false;
}
List requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_TargetType = null;
if (cmdletContext.RulesSourceList_TargetType != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_TargetType = cmdletContext.RulesSourceList_TargetType;
}
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_TargetType != null)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList.TargetTypes = requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList_rulesSourceList_TargetType;
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceListIsNull = false;
}
// determine if requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList should be set to null
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceListIsNull)
{
requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList = null;
}
if (requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList != null)
{
requestRuleGroup_ruleGroup_RulesSource.RulesSourceList = requestRuleGroup_ruleGroup_RulesSource_ruleGroup_RulesSource_RulesSourceList;
requestRuleGroup_ruleGroup_RulesSourceIsNull = false;
}
// determine if requestRuleGroup_ruleGroup_RulesSource should be set to null
if (requestRuleGroup_ruleGroup_RulesSourceIsNull)
{
requestRuleGroup_ruleGroup_RulesSource = null;
}
if (requestRuleGroup_ruleGroup_RulesSource != null)
{
request.RuleGroup.RulesSource = requestRuleGroup_ruleGroup_RulesSource;
requestRuleGroupIsNull = false;
}
// determine if request.RuleGroup should be set to null
if (requestRuleGroupIsNull)
{
request.RuleGroup = null;
}
if (cmdletContext.RuleGroupArn != null)
{
request.RuleGroupArn = cmdletContext.RuleGroupArn;
}
if (cmdletContext.RuleGroupName != null)
{
request.RuleGroupName = cmdletContext.RuleGroupName;
}
if (cmdletContext.Rule != null)
{
request.Rules = cmdletContext.Rule;
}
// populate SourceMetadata
var requestSourceMetadataIsNull = true;
request.SourceMetadata = new Amazon.NetworkFirewall.Model.SourceMetadata();
System.String requestSourceMetadata_sourceMetadata_SourceArn = null;
if (cmdletContext.SourceMetadata_SourceArn != null)
{
requestSourceMetadata_sourceMetadata_SourceArn = cmdletContext.SourceMetadata_SourceArn;
}
if (requestSourceMetadata_sourceMetadata_SourceArn != null)
{
request.SourceMetadata.SourceArn = requestSourceMetadata_sourceMetadata_SourceArn;
requestSourceMetadataIsNull = false;
}
System.String requestSourceMetadata_sourceMetadata_SourceUpdateToken = null;
if (cmdletContext.SourceMetadata_SourceUpdateToken != null)
{
requestSourceMetadata_sourceMetadata_SourceUpdateToken = cmdletContext.SourceMetadata_SourceUpdateToken;
}
if (requestSourceMetadata_sourceMetadata_SourceUpdateToken != null)
{
request.SourceMetadata.SourceUpdateToken = requestSourceMetadata_sourceMetadata_SourceUpdateToken;
requestSourceMetadataIsNull = false;
}
// determine if request.SourceMetadata should be set to null
if (requestSourceMetadataIsNull)
{
request.SourceMetadata = null;
}
if (cmdletContext.Type != null)
{
request.Type = cmdletContext.Type;
}
if (cmdletContext.UpdateToken != null)
{
request.UpdateToken = cmdletContext.UpdateToken;
}
CmdletOutput output;
// issue call
var client = Client ?? CreateClient(_CurrentCredentials, _RegionEndpoint);
try
{
var response = CallAWSServiceOperation(client, request);
object pipelineOutput = null;
pipelineOutput = cmdletContext.Select(response, this);
output = new CmdletOutput
{
PipelineOutput = pipelineOutput,
ServiceResponse = response
};
}
catch (Exception e)
{
output = new CmdletOutput { ErrorResponse = e };
}
return output;
}
public ExecutorContext CreateContext()
{
return new CmdletContext();
}
#endregion
#region AWS Service Operation Call
private Amazon.NetworkFirewall.Model.UpdateRuleGroupResponse CallAWSServiceOperation(IAmazonNetworkFirewall client, Amazon.NetworkFirewall.Model.UpdateRuleGroupRequest request)
{
Utils.Common.WriteVerboseEndpointMessage(this, client.Config, "AWS Network Firewall", "UpdateRuleGroup");
try
{
#if DESKTOP
return client.UpdateRuleGroup(request);
#elif CORECLR
return client.UpdateRuleGroupAsync(request).GetAwaiter().GetResult();
#else
#error "Unknown build edition"
#endif
}
catch (AmazonServiceException exc)
{
var webException = exc.InnerException as System.Net.WebException;
if (webException != null)
{
throw new Exception(Utils.Common.FormatNameResolutionFailureMessage(client.Config, webException.Message), webException);
}
throw;
}
}
#endregion
internal partial class CmdletContext : ExecutorContext
{
public System.String Description { get; set; }
public System.Boolean? DryRun { get; set; }
public System.String EncryptionConfiguration_KeyId { get; set; }
public Amazon.NetworkFirewall.EncryptionType EncryptionConfiguration_Type { get; set; }
public Dictionary ReferenceSets_IPSetReference { get; set; }
public Amazon.NetworkFirewall.GeneratedRulesType RulesSourceList_GeneratedRulesType { get; set; }
public List RulesSourceList_Target { get; set; }
public List RulesSourceList_TargetType { get; set; }
public System.String RulesSource_RulesString { get; set; }
public List RulesSource_StatefulRule { get; set; }
public List StatelessRulesAndCustomActions_CustomAction { get; set; }
public List StatelessRulesAndCustomActions_StatelessRule { get; set; }
public Dictionary RuleVariables_IPSet { get; set; }
public Dictionary RuleVariables_PortSet { get; set; }
public Amazon.NetworkFirewall.RuleOrder StatefulRuleOptions_RuleOrder { get; set; }
public System.String RuleGroupArn { get; set; }
public System.String RuleGroupName { get; set; }
public System.String Rule { get; set; }
public System.String SourceMetadata_SourceArn { get; set; }
public System.String SourceMetadata_SourceUpdateToken { get; set; }
public Amazon.NetworkFirewall.RuleGroupType Type { get; set; }
public System.String UpdateToken { get; set; }
public System.Func Select { get; set; } =
(response, cmdlet) => response;
}
}
}