Package software.amazon.awssdk.services.detective.model

Class GetInvestigationResponse

    • Method Detail

      • graphArn

        public final String graphArn()

        The Amazon Resource Name (ARN) of the behavior graph.

        Returns:
        The Amazon Resource Name (ARN) of the behavior graph.

      • investigationId

        public final String investigationId()

        The investigation ID of the investigation report.

        Returns:
        The investigation ID of the investigation report.

      • entityArn

        public final String entityArn()

        The unique Amazon Resource Name (ARN). Detective supports IAM user ARNs and IAM role ARNs.

        Returns:
        The unique Amazon Resource Name (ARN). Detective supports IAM user ARNs and IAM role ARNs.

      • entityType

        public final EntityType entityType()

        Type of entity. For example, Amazon Web Services accounts, such as an IAM user and/or IAM role.

        If the service returns an enum value that is not available in the current SDK version, entityType will return EntityType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from entityTypeAsString().

        Returns:
        Type of entity. For example, Amazon Web Services accounts, such as an IAM user and/or IAM role.
        See Also:
        EntityType

      • entityTypeAsString

        public final String entityTypeAsString()

        Type of entity. For example, Amazon Web Services accounts, such as an IAM user and/or IAM role.

        If the service returns an enum value that is not available in the current SDK version, entityType will return EntityType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from entityTypeAsString().

        Returns:
        Type of entity. For example, Amazon Web Services accounts, such as an IAM user and/or IAM role.
        See Also:
        EntityType

      • createdTime

        public final Instant createdTime()

        The creation time of the investigation report in UTC time stamp format.

        Returns:
        The creation time of the investigation report in UTC time stamp format.

      • scopeStartTime

        public final Instant scopeStartTime()

        The start date and time used to set the scope time within which you want to generate the investigation report. The value is an UTC ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z.

        Returns:
        The start date and time used to set the scope time within which you want to generate the investigation report. The value is an UTC ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z.

      • scopeEndTime

        public final Instant scopeEndTime()

        The data and time when the investigation began. The value is an UTC ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z.

        Returns:
        The data and time when the investigation began. The value is an UTC ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z.

      • status

        public final Status status()

        The status based on the completion status of the investigation.

        If the service returns an enum value that is not available in the current SDK version, status will return Status.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from statusAsString().

        Returns:
        The status based on the completion status of the investigation.
        See Also:
        Status

      • statusAsString

        public final String statusAsString()

        The status based on the completion status of the investigation.

        If the service returns an enum value that is not available in the current SDK version, status will return Status.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from statusAsString().

        Returns:
        The status based on the completion status of the investigation.
        See Also:
        Status

      • severity

        public final Severity severity()

        The severity assigned is based on the likelihood and impact of the indicators of compromise discovered in the investigation.

        If the service returns an enum value that is not available in the current SDK version, severity will return Severity.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from severityAsString().

        Returns:
        The severity assigned is based on the likelihood and impact of the indicators of compromise discovered in the investigation.
        See Also:
        Severity

      • severityAsString

        public final String severityAsString()

        The severity assigned is based on the likelihood and impact of the indicators of compromise discovered in the investigation.

        If the service returns an enum value that is not available in the current SDK version, severity will return Severity.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from severityAsString().

        Returns:
        The severity assigned is based on the likelihood and impact of the indicators of compromise discovered in the investigation.
        See Also:
        Severity

      • state

        public final State state()

        The current state of the investigation. An archived investigation indicates that you have completed reviewing the investigation.

        If the service returns an enum value that is not available in the current SDK version, state will return State.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from stateAsString().

        Returns:
        The current state of the investigation. An archived investigation indicates that you have completed reviewing the investigation.
        See Also:
        State

      • stateAsString

        public final String stateAsString()

        The current state of the investigation. An archived investigation indicates that you have completed reviewing the investigation.

        If the service returns an enum value that is not available in the current SDK version, state will return State.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from stateAsString().

        Returns:
        The current state of the investigation. An archived investigation indicates that you have completed reviewing the investigation.
        See Also:
        State

      • toString

        public final String toString()
        Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.
        Overrides:
        toString in class Object