{ "typeName" : "AWS::AccessAnalyzer::Analyzer", "description" : "The AWS::AccessAnalyzer::Analyzer type specifies an analyzer of the user's account", "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-accessanalyzer.git", "resourceLink" : { "templateUri" : "/access-analyzer/home?region=${awsRegion}#/analyzer/${AnalyzerName}", "mappings" : { "AnalyzerName" : "/AnalyzerName" } }, "definitions" : { "ArchiveRule" : { "description" : "An Access Analyzer archive rule. Archive rules automatically archive new findings that meet the criteria you define when you create the rule.", "type" : "object", "properties" : { "Filter" : { "type" : "array", "insertionOrder" : false, "minItems" : 1, "items" : { "$ref" : "#/definitions/Filter" } }, "RuleName" : { "type" : "string", "description" : "The archive rule name" } }, "required" : [ "Filter", "RuleName" ], "additionalProperties" : false }, "Filter" : { "type" : "object", "properties" : { "Contains" : { "type" : "array", "insertionOrder" : false, "items" : { "type" : "string" } }, "Eq" : { "type" : "array", "insertionOrder" : false, "items" : { "type" : "string" } }, "Exists" : { "type" : "boolean" }, "Property" : { "type" : "string" }, "Neq" : { "type" : "array", "insertionOrder" : false, "items" : { "type" : "string" } } }, "required" : [ "Property" ], "additionalProperties" : false }, "Tag" : { "description" : "A key-value pair to associate with a resource.", "type" : "object", "properties" : { "Key" : { "type" : "string", "description" : "The key name of the tag. You can specify a value that is 1 to 127 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -. ", "minLength" : 1, "maxLength" : 127 }, "Value" : { "type" : "string", "description" : "The value for the tag. You can specify a value that is 1 to 255 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -. ", "minLength" : 1, "maxLength" : 255 } }, "required" : [ "Key", "Value" ], "additionalProperties" : false } }, "properties" : { "AnalyzerName" : { "description" : "Analyzer name", "type" : "string", "minLength" : 1, "maxLength" : 1024 }, "ArchiveRules" : { "type" : "array", "insertionOrder" : false, "items" : { "$ref" : "#/definitions/ArchiveRule" } }, "Arn" : { "description" : "Amazon Resource Name (ARN) of the analyzer", "type" : "string", "minLength" : 1, "maxLength" : 1600 }, "Tags" : { "type" : "array", "maxItems" : 50, "insertionOrder" : false, "uniqueItems" : true, "description" : "An array of key-value pairs to apply to this resource.", "items" : { "$ref" : "#/definitions/Tag" } }, "Type" : { "description" : "The type of the analyzer, must be ACCOUNT or ORGANIZATION", "type" : "string", "minLength" : 0, "maxLength" : 1024 } }, "required" : [ "Type" ], "readOnlyProperties" : [ "/properties/Arn" ], "createOnlyProperties" : [ "/properties/AnalyzerName", "/properties/Type" ], "primaryIdentifier" : [ "/properties/Arn" ], "additionalProperties" : false, "handlers" : { "create" : { "permissions" : [ "access-analyzer:CreateAnalyzer", "access-analyzer:TagResource", "iam:CreateServiceLinkedRole", "organizations:ListAWSServiceAccessForOrganization", "organizations:ListDelegatedAdministrators" ] }, "read" : { "permissions" : [ "access-analyzer:ListAnalyzers", "access-analyzer:GetAnalyzer", "access-analyzer:ListArchiveRules" ] }, "update" : { "permissions" : [ "access-analyzer:CreateArchiveRule", "access-analyzer:DeleteArchiveRule", "access-analyzer:ListAnalyzers", "access-analyzer:TagResource", "access-analyzer:UntagResource", "access-analyzer:UpdateArchiveRule" ] }, "delete" : { "permissions" : [ "access-analyzer:DeleteAnalyzer" ] }, "list" : { "permissions" : [ "access-analyzer:ListAnalyzers" ] } } }