Module Values.GetServiceLastAccessedDetailsResponseSource

Retrieves a service last accessed report that was created using the GenerateServiceLastAccessedDetails operation. You can use the JobId parameter in GetServiceLastAccessedDetails to retrieve the status of your report job. When the report is complete, you can retrieve the generated report. The report includes a list of Amazon Web Services services that the resource (user, group, role, or managed policy) can access. Service last accessed data does not use other policy types when determining whether a resource could access a service. These other policy types include resource-based policies, access control lists, Organizations policies, IAM permissions boundaries, and STS assume role policies. It only applies permissions policy logic. For more about the evaluation of policy types, see Evaluating policies in the IAM User Guide. For each service that the resource could access using permissions policies, the operation returns details about the most recent access attempt. If there was no attempt, the service is listed without details about the most recent attempt to access the service. If the operation fails, the GetServiceLastAccessedDetails operation returns the reason that it failed. The GetServiceLastAccessedDetails operation returns a list of services. This list includes the number of entities that have attempted to access the service and the date and time of the last attempt. It also returns the ARN of the following entity, depending on the resource ARN that you used to generate the report: User – Returns the user ARN that you used to generate the report Group – Returns the ARN of the group member (user) that last attempted to access the service Role – Returns the role ARN that you used to generate the report Policy – Returns the ARN of the user or role that last used the policy to attempt to access the service By default, the list is sorted by service namespace. If you specified ACTION_LEVEL granularity when you generated the report, this operation returns service and action last accessed data. This includes the most recent access attempt for each tracked action within a service. Otherwise, this operation returns only service data. For more information about service and action last accessed data, see Reducing permissions using service last accessed data in the IAM User Guide.

Sourcetype getServiceLastAccessedDetailsResult = {
  1. jobStatus : JobStatusType.t option;
    (*

    The status of the job.

    *)
  2. jobType : AccessAdvisorUsageGranularityType.t option;
    (*

    The type of job. Service jobs return information about when each service was last accessed. Action jobs also include information about when tracked actions within the service were last accessed.

    *)
  3. jobCreationDate : DateType.t option;
    (*

    The date and time, in ISO 8601 date-time format, when the report job was created.

    *)
  4. servicesLastAccessed : ServicesLastAccessed.t option;
    (*

    A ServiceLastAccessed object that contains details about the most recent attempt to access the service.

    *)
  5. jobCompletionDate : DateType.t option;
    (*

    The date and time, in ISO 8601 date-time format, when the generated report job was completed or failed. This field is null if the job is still in progress, as indicated by a job status value of IN_PROGRESS.

    *)
  6. isTruncated : BooleanType.t option;
    (*

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

    *)
  7. marker : ResponseMarkerType.t option;
    (*

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

    *)
  8. error : ErrorDetails.t option;
    (*

    An object that contains details about the reason the operation failed.

    *)
}
Sourceand responseMetaData = unit
Sourceand t = {
  1. getServiceLastAccessedDetailsResult : getServiceLastAccessedDetailsResult;
  2. responseMetaData : responseMetaData;
}
Sourcetype error = [
  1. | `InvalidInputException of InvalidInputException.t
  2. | `NoSuchEntityException of NoSuchEntityException.t
  3. | `Unknown_operation_error of string * string option
]
Sourceval context_ : string
Sourceval make : ?jobStatus:??? -> ?jobType:??? -> ?jobCreationDate:??? -> ?servicesLastAccessed:??? -> ?jobCompletionDate:??? -> ?isTruncated:??? -> ?marker:??? -> ?error:??? -> unit -> t
Sourceval error_of_json : string -> Yojson.Safe.t -> [> `InvalidInputException of InvalidInputException.t | `NoSuchEntityException of NoSuchEntityException.t | `Unknown_operation_error of string * string option ]
Sourceval error_of_xml : string -> Awso.Xml.t -> [> `InvalidInputException of InvalidInputException.t | `NoSuchEntityException of NoSuchEntityException.t | `Unknown_operation_error of string * string option ]
Sourceval error_to_json : error -> Yojson.Safe.t
Sourceval to_value : t -> [> `Structure of (string * [> `Structure of (string * [> `Boolean of BooleanType.t | `Enum of string | `List of [> `Structure of (string * [> `Integer of IntegerType.t | `List of [> `Structure of (string * [> `String of StringType.t | `Timestamp of DateType.t ]) list ] list | `String of ServiceNameType.t | `Timestamp of DateType.t ]) list ] list | `String of ResponseMarkerType.t | `Structure of (string * [> `String of StringType.t ]) list | `Timestamp of DateType.t ]) list ]) list ]
Sourceval to_query : t -> Awso.Client.Query.t
Sourceval of_xml : Awso.Xml.t -> t
Sourceval of_string : string -> t
Sourceval of_json : Yojson.Safe.t -> t
Sourceval to_json : t -> Yojson.Safe.t