protection
Gets an individual protection resource
Overview
| Name | protection |
| Type | Resource |
| Description | protection |
| Id | awscc.shield.protection |
Fields
| Name | Datatype | Description |
|---|---|---|
protection_id | string | The unique identifier (ID) of the protection. |
protection_arn | string | The ARN (Amazon Resource Name) of the protection. |
name | string | Friendly name for the Protection. |
resource_arn | string | The ARN (Amazon Resource Name) of the resource to be protected. |
health_check_arns | array | The Amazon Resource Names (ARNs) of the health check to associate with the protection. |
application_layer_automatic_response_configuration | object | |
tags | array | One or more tag key-value pairs for the Protection object. |
region | string | AWS region. |
Methods
Currently only SELECT is supported for this resource resource.
Example
SELECT
region,
protection_id,
protection_arn,
name,
resource_arn,
health_check_arns,
application_layer_automatic_response_configuration,
tags
FROM awscc.shield.protection
WHERE data__Identifier = '<ProtectionArn>';
Permissions
To operate on the protection resource, the following permissions are required:
Delete
shield:DeleteProtection,
shield:UntagResource
Read
shield:DescribeProtection,
shield:ListTagsForResource
Update
shield:DescribeProtection,
shield:AssociateHealthCheck,
shield:DisassociateHealthCheck,
shield:EnableApplicationLayerAutomaticResponse,
shield:UpdateApplicationLayerAutomaticResponse,
shield:DisableApplicationLayerAutomaticResponse,
shield:ListTagsForResource,
shield:TagResource,
shield:UntagResource,
route53:GetHealthCheck,
iam:GetRole,
iam:CreateServiceLinkedRole,
wafv2:GetWebACLForResource,
wafv2:GetWebACL