View Source AWS.VPCLattice (aws-elixir v1.0.4)
Amazon VPC Lattice is a fully managed application networking service that you use to connect, secure, and monitor all of your services across multiple accounts and virtual private clouds (VPCs).
Amazon VPC Lattice interconnects your microservices and legacy services within a logical boundary, so that you can discover and manage them more efficiently. For more information, see the Amazon VPC Lattice User Guide
Link to this section Summary
Functions
Updates the listener rules in a batch.
Enables access logs to be sent to Amazon CloudWatch, Amazon S3, and Amazon Kinesis Data Firehose.
Creates a listener for a service.
Creates a resource configuration.
Creates a resource gateway.
Creates a listener rule.
Creates a service.
Creates a service network.
Associates the specified service network with the specified resource configuration.
Associates the specified service with the specified service network.
Associates a VPC with a service network.
Creates a target group.
Deletes the specified access log subscription.
Deletes the specified auth policy.
Deletes the specified listener.
Deletes the specified resource configuration.
Disassociates the resource configuration from the resource VPC endpoint.
Deletes the specified resource gateway.
Deletes the specified resource policy.
Deletes a listener rule.
Deletes a service.
Deletes a service network.
Deletes the association between a service network and a resource configuration.
Deletes the association between a service and a service network.
Disassociates the VPC from the service network.
Deletes a target group.
Deregisters the specified targets from the specified target group.
Retrieves information about the specified access log subscription.
Retrieves information about the auth policy for the specified service or service network.
Retrieves information about the specified listener for the specified service.
Retrieves information about the specified resource configuration.
Retrieves information about the specified resource gateway.
Retrieves information about the specified resource policy.
Retrieves information about the specified listener rules.
Retrieves information about the specified service.
Retrieves information about the specified service network.
Retrieves information about the specified association between a service network and a resource configuration.
Retrieves information about the specified association between a service network and a service.
Retrieves information about the specified association between a service network and a VPC.
Retrieves information about the specified target group.
Lists the access log subscriptions for the specified service network or service.
Lists the listeners for the specified service.
Lists the resource configurations owned by or shared with this account.
Lists the associations for the specified VPC endpoint.
Lists the resource gateways that you own or that were shared with you.
Lists the rules for the specified listener.
Lists the associations between a service network and a resource configuration.
Lists the associations between a service network and a service.
Lists the associations between a service network and a VPC.
Lists the associations between a service network and a VPC endpoint.
Lists the service networks owned by or shared with this account.
Lists the services owned by the caller account or shared with the caller account.
Lists the tags for the specified resource.
Lists your target groups.
Lists the targets for the target group.
Creates or updates the auth policy.
Attaches a resource-based permission policy to a service or service network.
Registers the targets with the target group.
Adds the specified tags to the specified resource.
Removes the specified tags from the specified resource.
Updates the specified access log subscription.
Updates the specified listener for the specified service.
Updates the specified resource configuration.
Updates the specified resource gateway.
Updates a specified rule for the listener.
Updates the specified service.
Updates the specified service network.
Updates the service network and VPC association.
Updates the specified target group.
Link to this section Functions
batch_update_rule(client, listener_identifier, service_identifier, input, options \\ [])
View SourceUpdates the listener rules in a batch.
You can use this operation to change the priority of listener rules. This can be useful when bulk updating or swapping rule priority.
required-permissions
Required permissions:
vpc-lattice:UpdateRule
For more information, see How Amazon VPC Lattice works with IAM in the Amazon VPC Lattice User Guide.
Enables access logs to be sent to Amazon CloudWatch, Amazon S3, and Amazon Kinesis Data Firehose.
The service network owner can use the access logs to audit the services in the network. The service network owner can only see access logs from clients and services that are associated with their service network. Access log entries represent traffic originated from VPCs associated with that network. For more information, see Access logs in the Amazon VPC Lattice User Guide.
Creates a listener for a service.
Before you start using your Amazon VPC Lattice service, you must add one or more listeners. A listener is a process that checks for connection requests to your services. For more information, see Listeners in the Amazon VPC Lattice User Guide.
Creates a resource configuration.
A resource configuration defines a specific resource. You can associate a resource configuration with a service network or a VPC endpoint.
Creates a resource gateway.
create_rule(client, listener_identifier, service_identifier, input, options \\ [])
View SourceCreates a listener rule.
Each listener has a default rule for checking connection requests, but you can define additional rules. Each rule consists of a priority, one or more actions, and one or more conditions. For more information, see Listener rules in the Amazon VPC Lattice User Guide.
Creates a service.
A service is any software application that can run on instances containers, or serverless functions within an account or virtual private cloud (VPC).
For more information, see Services in the Amazon VPC Lattice User Guide.
Creates a service network.
A service network is a logical boundary for a collection of services. You can associate services and VPCs with a service network.
For more information, see Service networks in the Amazon VPC Lattice User Guide.
create_service_network_resource_association(client, input, options \\ [])
View SourceAssociates the specified service network with the specified resource configuration.
This allows the resource configuration to receive connections through the service network, including through a service network VPC endpoint.
create_service_network_service_association(client, input, options \\ [])
View SourceAssociates the specified service with the specified service network.
For more information, see Manage service associations in the Amazon VPC Lattice User Guide.
You can't use this operation if the service and service network are already associated or if there is a disassociation or deletion in progress. If the association fails, you can retry the operation by deleting the association and recreating it.
You cannot associate a service and service network that are shared with a caller. The caller must own either the service or the service network.
As a result of this operation, the association is created in the service network account and the association owner account.
create_service_network_vpc_association(client, input, options \\ [])
View SourceAssociates a VPC with a service network.
When you associate a VPC with the service network, it enables all the resources within that VPC to be clients and communicate with other services in the service network. For more information, see Manage VPC associations in the Amazon VPC Lattice User Guide.
You can't use this operation if there is a disassociation in progress. If the association fails, retry by deleting the association and recreating it.
As a result of this operation, the association gets created in the service network account and the VPC owner account.
If you add a security group to the service network and VPC association, the association must continue to always have at least one security group. You can add or edit security groups at any time. However, to remove all security groups, you must first delete the association and recreate it without security groups.
Creates a target group.
A target group is a collection of targets, or compute resources, that run your application or service. A target group can only be used by a single service.
For more information, see Target groups in the Amazon VPC Lattice User Guide.
delete_access_log_subscription(client, access_log_subscription_identifier, input, options \\ [])
View SourceDeletes the specified access log subscription.
delete_auth_policy(client, resource_identifier, input, options \\ [])
View SourceDeletes the specified auth policy.
If an auth is set to AWS_IAM and the auth
policy is deleted, all requests are denied. If you are trying to remove the auth
policy
completely, you must set the auth type to NONE. If auth is enabled on the
resource,
but no auth policy is set, all requests are denied.
delete_listener(client, listener_identifier, service_identifier, input, options \\ [])
View SourceDeletes the specified listener.
delete_resource_configuration(client, resource_configuration_identifier, input, options \\ [])
View SourceDeletes the specified resource configuration.
delete_resource_endpoint_association(client, resource_endpoint_association_identifier, input, options \\ [])
View SourceDisassociates the resource configuration from the resource VPC endpoint.
delete_resource_gateway(client, resource_gateway_identifier, input, options \\ [])
View SourceDeletes the specified resource gateway.
delete_resource_policy(client, resource_arn, input, options \\ [])
View SourceDeletes the specified resource policy.
delete_rule(client, listener_identifier, rule_identifier, service_identifier, input, options \\ [])
View SourceDeletes a listener rule.
Each listener has a default rule for checking connection requests, but you can define additional rules. Each rule consists of a priority, one or more actions, and one or more conditions. You can delete additional listener rules, but you cannot delete the default rule.
For more information, see Listener rules in the Amazon VPC Lattice User Guide.
Deletes a service.
A service can't be deleted if it's associated with a service network. If you delete a service, all resources related to the service, such as the resource policy, auth policy, listeners, listener rules, and access log subscriptions, are also deleted. For more information, see Delete a service in the Amazon VPC Lattice User Guide.
delete_service_network(client, service_network_identifier, input, options \\ [])
View SourceDeletes a service network.
You can only delete the service network if there is no service or VPC associated with it. If you delete a service network, all resources related to the service network, such as the resource policy, auth policy, and access log subscriptions, are also deleted. For more information, see Delete a service network in the Amazon VPC Lattice User Guide.
delete_service_network_resource_association(client, service_network_resource_association_identifier, input, options \\ [])
View SourceDeletes the association between a service network and a resource configuration.
delete_service_network_service_association(client, service_network_service_association_identifier, input, options \\ [])
View SourceDeletes the association between a service and a service network.
This operation fails if an association is still in progress.
delete_service_network_vpc_association(client, service_network_vpc_association_identifier, input, options \\ [])
View SourceDisassociates the VPC from the service network.
You can't disassociate the VPC if there is a create or update association in progress.
delete_target_group(client, target_group_identifier, input, options \\ [])
View SourceDeletes a target group.
You can't delete a target group if it is used in a listener rule or if the target group creation is in progress.
deregister_targets(client, target_group_identifier, input, options \\ [])
View SourceDeregisters the specified targets from the specified target group.
get_access_log_subscription(client, access_log_subscription_identifier, options \\ [])
View SourceRetrieves information about the specified access log subscription.
Retrieves information about the auth policy for the specified service or service network.
get_listener(client, listener_identifier, service_identifier, options \\ [])
View SourceRetrieves information about the specified listener for the specified service.
get_resource_configuration(client, resource_configuration_identifier, options \\ [])
View SourceRetrieves information about the specified resource configuration.
get_resource_gateway(client, resource_gateway_identifier, options \\ [])
View SourceRetrieves information about the specified resource gateway.
Retrieves information about the specified resource policy.
The resource policy is an IAM policy created on behalf of the resource owner when they share a resource.
get_rule(client, listener_identifier, rule_identifier, service_identifier, options \\ [])
View SourceRetrieves information about the specified listener rules.
You can also retrieve information about the default listener rule. For more information, see Listener rules in the Amazon VPC Lattice User Guide.
Retrieves information about the specified service.
get_service_network(client, service_network_identifier, options \\ [])
View SourceRetrieves information about the specified service network.
get_service_network_resource_association(client, service_network_resource_association_identifier, options \\ [])
View SourceRetrieves information about the specified association between a service network and a resource configuration.
get_service_network_service_association(client, service_network_service_association_identifier, options \\ [])
View SourceRetrieves information about the specified association between a service network and a service.
get_service_network_vpc_association(client, service_network_vpc_association_identifier, options \\ [])
View SourceRetrieves information about the specified association between a service network and a VPC.
Retrieves information about the specified target group.
list_access_log_subscriptions(client, max_results \\ nil, next_token \\ nil, resource_identifier, options \\ [])
View SourceLists the access log subscriptions for the specified service network or service.
list_listeners(client, service_identifier, max_results \\ nil, next_token \\ nil, options \\ [])
View SourceLists the listeners for the specified service.
list_resource_configurations(client, max_results \\ nil, next_token \\ nil, resource_configuration_group_identifier \\ nil, resource_gateway_identifier \\ nil, options \\ [])
View SourceLists the resource configurations owned by or shared with this account.
list_resource_endpoint_associations(client, max_results \\ nil, next_token \\ nil, resource_configuration_identifier, resource_endpoint_association_identifier \\ nil, vpc_endpoint_id \\ nil, vpc_endpoint_owner \\ nil, options \\ [])
View SourceLists the associations for the specified VPC endpoint.
list_resource_gateways(client, max_results \\ nil, next_token \\ nil, options \\ [])
View SourceLists the resource gateways that you own or that were shared with you.
list_rules(client, listener_identifier, service_identifier, max_results \\ nil, next_token \\ nil, options \\ [])
View SourceLists the rules for the specified listener.
list_service_network_resource_associations(client, max_results \\ nil, next_token \\ nil, resource_configuration_identifier \\ nil, service_network_identifier \\ nil, options \\ [])
View SourceLists the associations between a service network and a resource configuration.
list_service_network_service_associations(client, max_results \\ nil, next_token \\ nil, service_identifier \\ nil, service_network_identifier \\ nil, options \\ [])
View SourceLists the associations between a service network and a service.
You can filter the list either by service or service network. You must provide either the service network identifier or the service identifier.
Every association in Amazon VPC Lattice has a unique Amazon Resource Name (ARN), such as when a service network is associated with a VPC or when a service is associated with a service network. If the association is for a resource is shared with another account, the association includes the local account ID as the prefix in the ARN.
list_service_network_vpc_associations(client, max_results \\ nil, next_token \\ nil, service_network_identifier \\ nil, vpc_identifier \\ nil, options \\ [])
View SourceLists the associations between a service network and a VPC.
You can filter the list either by VPC or service network. You must provide either the ID of the service network identifier or the ID of the VPC.
list_service_network_vpc_endpoint_associations(client, max_results \\ nil, next_token \\ nil, service_network_identifier, options \\ [])
View SourceLists the associations between a service network and a VPC endpoint.
list_service_networks(client, max_results \\ nil, next_token \\ nil, options \\ [])
View SourceLists the service networks owned by or shared with this account.
The account ID in the ARN shows which account owns the service network.
list_services(client, max_results \\ nil, next_token \\ nil, options \\ [])
View SourceLists the services owned by the caller account or shared with the caller account.
Lists the tags for the specified resource.
list_target_groups(client, max_results \\ nil, next_token \\ nil, target_group_type \\ nil, vpc_identifier \\ nil, options \\ [])
View SourceLists your target groups.
You can narrow your search by using the filters below in your request.
list_targets(client, target_group_identifier, input, options \\ [])
View SourceLists the targets for the target group.
By default, all targets are included. You can use this API to check the health status of targets. You can also filter the results by target.
put_auth_policy(client, resource_identifier, input, options \\ [])
View SourceCreates or updates the auth policy.
The policy string in JSON must not contain newlines or blank lines.
For more information, see Auth policies in the Amazon VPC Lattice User Guide.
Attaches a resource-based permission policy to a service or service network.
The policy must contain the same actions and condition statements as the Amazon Web Services Resource Access Manager permission for sharing services and service networks.
register_targets(client, target_group_identifier, input, options \\ [])
View SourceRegisters the targets with the target group.
If it's a Lambda target, you can only have one target in a target group.
Adds the specified tags to the specified resource.
Removes the specified tags from the specified resource.
update_access_log_subscription(client, access_log_subscription_identifier, input, options \\ [])
View SourceUpdates the specified access log subscription.
update_listener(client, listener_identifier, service_identifier, input, options \\ [])
View SourceUpdates the specified listener for the specified service.
update_resource_configuration(client, resource_configuration_identifier, input, options \\ [])
View SourceUpdates the specified resource configuration.
update_resource_gateway(client, resource_gateway_identifier, input, options \\ [])
View SourceUpdates the specified resource gateway.
update_rule(client, listener_identifier, rule_identifier, service_identifier, input, options \\ [])
View SourceUpdates a specified rule for the listener.
You can't modify a default listener rule. To modify a
default listener rule, use UpdateListener.
Updates the specified service.
update_service_network(client, service_network_identifier, input, options \\ [])
View SourceUpdates the specified service network.
update_service_network_vpc_association(client, service_network_vpc_association_identifier, input, options \\ [])
View SourceUpdates the service network and VPC association.
If you add a security group to the service network and VPC association, the association must continue to have at least one security group. You can add or edit security groups at any time. However, to remove all security groups, you must first delete the association and then recreate it without security groups.
update_target_group(client, target_group_identifier, input, options \\ [])
View SourceUpdates the specified target group.