Copyright	(c) 2013-2021 Brendan Hay
License	Mozilla Public License, v. 2.0.
Maintainer	Brendan Hay <brendan.g.hay+amazonka@gmail.com>
Stability	auto-generated
Portability	non-portable (GHC extensions)
Safe Haskell	None

Amazonka.EMR.Types.BlockPublicAccessConfiguration

Description

Synopsis

data BlockPublicAccessConfiguration = BlockPublicAccessConfiguration' {
- permittedPublicSecurityGroupRuleRanges :: Maybe [PortRange]
- blockPublicSecurityGroupRules :: Bool
}
newBlockPublicAccessConfiguration :: Bool -> BlockPublicAccessConfiguration
blockPublicAccessConfiguration_permittedPublicSecurityGroupRuleRanges :: Lens' BlockPublicAccessConfiguration (Maybe [PortRange])
blockPublicAccessConfiguration_blockPublicSecurityGroupRules :: Lens' BlockPublicAccessConfiguration Bool

Documentation

data BlockPublicAccessConfiguration Source #

A configuration for Amazon EMR block public access. When BlockPublicSecurityGroupRules is set to true, Amazon EMR prevents cluster creation if one of the cluster's security groups has a rule that allows inbound traffic from 0.0.0.0/0 or ::/0 on a port, unless the port is specified as an exception using PermittedPublicSecurityGroupRuleRanges.

See: newBlockPublicAccessConfiguration smart constructor.

Constructors

BlockPublicAccessConfiguration'

Fields

permittedPublicSecurityGroupRuleRanges :: Maybe [PortRange]
Specifies ports and port ranges that are permitted to have security group rules that allow inbound traffic from all public sources. For example, if Port 23 (Telnet) is specified for PermittedPublicSecurityGroupRuleRanges, Amazon EMR allows cluster creation if a security group associated with the cluster has a rule that allows inbound traffic on Port 23 from IPv4 0.0.0.0/0 or IPv6 port ::/0 as the source.
By default, Port 22, which is used for SSH access to the cluster EC2 instances, is in the list of PermittedPublicSecurityGroupRuleRanges.
blockPublicSecurityGroupRules :: Bool
Indicates whether Amazon EMR block public access is enabled (true) or disabled (false). By default, the value is false for accounts that have created EMR clusters before July 2019. For accounts created after this, the default is true.

Instances

Instances details

Eq BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Methods (==) :: BlockPublicAccessConfiguration -> BlockPublicAccessConfiguration -> Bool # (/=) :: BlockPublicAccessConfiguration -> BlockPublicAccessConfiguration -> Bool #
Read BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Methods readsPrec :: Int -> ReadS BlockPublicAccessConfiguration # readList :: ReadS [BlockPublicAccessConfiguration] # readPrec :: ReadPrec BlockPublicAccessConfiguration # readListPrec :: ReadPrec [BlockPublicAccessConfiguration] #
Show BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Methods showsPrec :: Int -> BlockPublicAccessConfiguration -> ShowS # show :: BlockPublicAccessConfiguration -> String # showList :: [BlockPublicAccessConfiguration] -> ShowS #
Generic BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Associated Types type Rep BlockPublicAccessConfiguration :: Type -> Type # Methods from :: BlockPublicAccessConfiguration -> Rep BlockPublicAccessConfiguration x # to :: Rep BlockPublicAccessConfiguration x -> BlockPublicAccessConfiguration #
NFData BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Methods rnf :: BlockPublicAccessConfiguration -> () #
Hashable BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Methods hashWithSalt :: Int -> BlockPublicAccessConfiguration -> Int # hash :: BlockPublicAccessConfiguration -> Int #
ToJSON BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Methods toJSON :: BlockPublicAccessConfiguration -> Value # toEncoding :: BlockPublicAccessConfiguration -> Encoding # toJSONList :: [BlockPublicAccessConfiguration] -> Value # toEncodingList :: [BlockPublicAccessConfiguration] -> Encoding #
FromJSON BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration Methods parseJSON :: Value -> Parser BlockPublicAccessConfiguration # parseJSONList :: Value -> Parser [BlockPublicAccessConfiguration] #
type Rep BlockPublicAccessConfiguration Source #
Instance details Defined in Amazonka.EMR.Types.BlockPublicAccessConfiguration type Rep BlockPublicAccessConfiguration = D1 ('MetaData "BlockPublicAccessConfiguration" "Amazonka.EMR.Types.BlockPublicAccessConfiguration" "libZSservicesZSamazonka-emrZSamazonka-emr" 'False) (C1 ('MetaCons "BlockPublicAccessConfiguration'" 'PrefixI 'True) (S1 ('MetaSel ('Just "permittedPublicSecurityGroupRuleRanges") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [PortRange])) :*: S1 ('MetaSel ('Just "blockPublicSecurityGroupRules") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Bool)))

newBlockPublicAccessConfiguration Source #

Arguments

:: Bool	`$sel:blockPublicSecurityGroupRules:BlockPublicAccessConfiguration'`
-> BlockPublicAccessConfiguration

Create a value of BlockPublicAccessConfiguration with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:permittedPublicSecurityGroupRuleRanges:BlockPublicAccessConfiguration', blockPublicAccessConfiguration_permittedPublicSecurityGroupRuleRanges - Specifies ports and port ranges that are permitted to have security group rules that allow inbound traffic from all public sources. For example, if Port 23 (Telnet) is specified for PermittedPublicSecurityGroupRuleRanges, Amazon EMR allows cluster creation if a security group associated with the cluster has a rule that allows inbound traffic on Port 23 from IPv4 0.0.0.0/0 or IPv6 port ::/0 as the source.

By default, Port 22, which is used for SSH access to the cluster EC2 instances, is in the list of PermittedPublicSecurityGroupRuleRanges.

$sel:blockPublicSecurityGroupRules:BlockPublicAccessConfiguration', blockPublicAccessConfiguration_blockPublicSecurityGroupRules - Indicates whether Amazon EMR block public access is enabled (true) or disabled (false). By default, the value is false for accounts that have created EMR clusters before July 2019. For accounts created after this, the default is true.

blockPublicAccessConfiguration_permittedPublicSecurityGroupRuleRanges :: Lens' BlockPublicAccessConfiguration (Maybe [PortRange]) Source #

Specifies ports and port ranges that are permitted to have security group rules that allow inbound traffic from all public sources. For example, if Port 23 (Telnet) is specified for PermittedPublicSecurityGroupRuleRanges, Amazon EMR allows cluster creation if a security group associated with the cluster has a rule that allows inbound traffic on Port 23 from IPv4 0.0.0.0/0 or IPv6 port ::/0 as the source.

By default, Port 22, which is used for SSH access to the cluster EC2 instances, is in the list of PermittedPublicSecurityGroupRuleRanges.

blockPublicAccessConfiguration_blockPublicSecurityGroupRules :: Lens' BlockPublicAccessConfiguration Bool Source #

Indicates whether Amazon EMR block public access is enabled (true) or disabled (false). By default, the value is false for accounts that have created EMR clusters before July 2019. For accounts created after this, the default is true.