1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
|
// Code generated by smithy-go-codegen DO NOT EDIT.
package types
import (
smithydocument "github.com/aws/smithy-go/document"
"time"
)
// Allows you to add filters when you use the search function in Secrets Manager.
// For more information, see Find secrets in Secrets Manager
// (https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_search-secret.html).
type Filter struct {
// The following are keys you can use:
//
// * description: Prefix match, not
// case-sensitive.
//
// * name: Prefix match, case-sensitive.
//
// * tag-key: Prefix match,
// case-sensitive.
//
// * tag-value: Prefix match, case-sensitive.
//
// * primary-region:
// Prefix match, case-sensitive.
//
// * all: Breaks the filter value string into words
// and then searches all attributes for matches. Not case-sensitive.
Key FilterNameStringType
// The keyword to filter for. You can prefix your search value with an exclamation
// mark (!) in order to perform negation filters.
Values []string
noSmithyDocumentSerde
}
// A custom type that specifies a Region and the KmsKeyId for a replica secret.
type ReplicaRegionType struct {
// The ARN, key ID, or alias of the KMS key to encrypt the secret. If you don't
// include this field, Secrets Manager uses aws/secretsmanager.
KmsKeyId *string
// A Region code. For a list of Region codes, see Name and code of Regions
// (https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints).
Region *string
noSmithyDocumentSerde
}
// A replication object consisting of a RegionReplicationStatus object and includes
// a Region, KMSKeyId, status, and status message.
type ReplicationStatusType struct {
// Can be an ARN, Key ID, or Alias.
KmsKeyId *string
// The date that the secret was last accessed in the Region. This field is omitted
// if the secret has never been retrieved in the Region.
LastAccessedDate *time.Time
// The Region where replication occurs.
Region *string
// The status can be InProgress, Failed, or InSync.
Status StatusType
// Status message such as "Secret with this name already exists in this region".
StatusMessage *string
noSmithyDocumentSerde
}
// A structure that defines the rotation configuration for the secret.
type RotationRulesType struct {
// The number of days between automatic scheduled rotations of the secret. You can
// use this value to check that your secret meets your compliance guidelines for
// how often secrets must be rotated. In DescribeSecret and ListSecrets, this value
// is calculated from the rotation schedule after every successful rotation. In
// RotateSecret, you can set the rotation schedule in RotationRules with
// AutomaticallyAfterDays or ScheduleExpression, but not both.
AutomaticallyAfterDays *int64
// The length of the rotation window in hours, for example 3h for a three hour
// window. Secrets Manager rotates your secret at any time during this window. The
// window must not go into the next UTC day. If you don't specify this value, the
// window automatically ends at the end of the UTC day. The window begins according
// to the ScheduleExpression. For more information, including examples, see
// Schedule expressions in Secrets Manager rotation
// (https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_schedule.html).
Duration *string
// A cron() or rate() expression that defines the schedule for rotating your
// secret. Secrets Manager rotation schedules use UTC time zone. Secrets Manager
// rate() expressions represent the interval in days that you want to rotate your
// secret, for example rate(10 days). If you use a rate() expression, the rotation
// window opens at midnight, and Secrets Manager rotates your secret any time that
// day after midnight. You can set a Duration to shorten the rotation window. You
// can use a cron() expression to create rotation schedules that are more detailed
// than a rotation interval. For more information, including examples, see Schedule
// expressions in Secrets Manager rotation
// (https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_schedule.html).
// If you use a cron() expression, Secrets Manager rotates your secret any time
// during that day after the window opens. For example, cron(0 8 1 * ? *)
// represents a rotation window that occurs on the first day of every month
// beginning at 8:00 AM UTC. Secrets Manager rotates the secret any time that day
// after 8:00 AM. You can set a Duration to shorten the rotation window.
ScheduleExpression *string
noSmithyDocumentSerde
}
// A structure that contains the details about a secret. It does not include the
// encrypted SecretString and SecretBinary values. To get those values, use
// GetSecretValue
// (https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_GetSecretValue.html)
// .
type SecretListEntry struct {
// The Amazon Resource Name (ARN) of the secret.
ARN *string
// The date and time when a secret was created.
CreatedDate *time.Time
// The date and time the deletion of the secret occurred. Not present on active
// secrets. The secret can be recovered until the number of days in the recovery
// window has passed, as specified in the RecoveryWindowInDays parameter of the
// DeleteSecret
// (https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_DeleteSecret.html)
// operation.
DeletedDate *time.Time
// The user-provided description of the secret.
Description *string
// The ARN of the KMS key that Secrets Manager uses to encrypt the secret value. If
// the secret is encrypted with the Amazon Web Services managed key
// aws/secretsmanager, this field is omitted.
KmsKeyId *string
// The date that the secret was last accessed in the Region. This field is omitted
// if the secret has never been retrieved in the Region.
LastAccessedDate *time.Time
// The last date and time that this secret was modified in any way.
LastChangedDate *time.Time
// The most recent date and time that the Secrets Manager rotation process was
// successfully completed. This value is null if the secret hasn't ever rotated.
LastRotatedDate *time.Time
// The friendly name of the secret. You can use forward slashes in the name to
// represent a path hierarchy. For example, /prod/databases/dbserver1 could
// represent the secret for a server named dbserver1 in the folder databases in the
// folder prod.
Name *string
// Returns the name of the service that created the secret.
OwningService *string
// The Region where Secrets Manager originated the secret.
PrimaryRegion *string
// Indicates whether automatic, scheduled rotation is enabled for this secret.
RotationEnabled *bool
// The ARN of an Amazon Web Services Lambda function invoked by Secrets Manager to
// rotate and expire the secret either automatically per the schedule or manually
// by a call to RotateSecret
// (https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_RotateSecret.html).
RotationLambdaARN *string
// A structure that defines the rotation configuration for the secret.
RotationRules *RotationRulesType
// A list of all of the currently assigned SecretVersionStage staging labels and
// the SecretVersionId attached to each one. Staging labels are used to keep track
// of the different versions during the rotation process. A version that does not
// have any SecretVersionStage is considered deprecated and subject to deletion.
// Such versions are not included in this list.
SecretVersionsToStages map[string][]string
// The list of user-defined tags associated with the secret. To add tags to a
// secret, use TagResource
// (https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_TagResource.html).
// To remove tags, use UntagResource
// (https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_UntagResource.html).
Tags []Tag
noSmithyDocumentSerde
}
// A structure that contains information about one version of a secret.
type SecretVersionsListEntry struct {
// The date and time this version of the secret was created.
CreatedDate *time.Time
// The KMS keys used to encrypt the secret version.
KmsKeyIds []string
// The date that this version of the secret was last accessed. Note that the
// resolution of this field is at the date level and does not include the time.
LastAccessedDate *time.Time
// The unique version identifier of this version of the secret.
VersionId *string
// An array of staging labels that are currently associated with this version of
// the secret.
VersionStages []string
noSmithyDocumentSerde
}
// A structure that contains information about a tag.
type Tag struct {
// The key identifier, or name, of the tag.
Key *string
// The string value associated with the key of the tag.
Value *string
noSmithyDocumentSerde
}
// Displays errors that occurred during validation of the resource policy.
type ValidationErrorsEntry struct {
// Checks the name of the policy.
CheckName *string
// Displays error messages if validation encounters problems during validation of
// the resource policy.
ErrorMessage *string
noSmithyDocumentSerde
}
type noSmithyDocumentSerde = smithydocument.NoSerde
|
