Class: Trail

CloudTrail.Trail

new Trail()

Properties:

Name	Type	Description
`CloudWatchLogsLogGroupArn`	String	Required: Conditional. The Amazon Resource Name (ARN) of a log group to which CloudTrail logs will be delivered.Update requires: No interruption
`CloudWatchLogsRoleArn`	String	Required: No. The role ARN that Amazon CloudWatch Logs (CloudWatch Logs) assumes to write logs to a log group. For more information, see Role Policy Document for CloudTrail to Use CloudWatch Logs for Monitoring in the AWS CloudTrail User Guide.Update requires: No interruption
`EnableLogFileValidation`	Boolean	Required: No. Indicates whether CloudTrail validates the integrity of log files. By default, AWS CloudFormation sets this value to false. When you disable log file integrity validation, CloudTrail stops creating digest files. For more information, see CreateTrail in the AWS CloudTrail API Reference.Update requires: No interruption
`IncludeGlobalServiceEvents`	Boolean	Required: No. Indicates whether the trail is publishing events from global services, such as IAM, to the log files. By default, AWS CloudFormation sets this value to false.Update requires: No interruption
`IsLogging`	Boolean	Required: Yes. Indicates whether the CloudTrail trail is currently logging AWS API calls.Update requires: No interruption
`IsMultiRegionTrail`	Boolean	Required: No. Indicates whether the CloudTrail trail is created in the region in which you create the stack (false) or in all regions (true). By default, AWS CloudFormation sets this value to false. For more information, see How Does CloudTrail Behave Regionally and Globally? in the AWS CloudTrail User Guide.Update requires: No interruption
`KMSKeyId`	String	Required: No. The AWS Key Management Service (AWS KMS) key ID that you want to use to encrypt CloudTrail logs. You can specify an alias name (prefixed with alias/), an alias ARN, a key ARN, or a globally unique identifier.Update requires: No interruption
`S3BucketName`	String	Required: Yes. The name of the Amazon S3 bucket where CloudTrail publishes log files.Update requires: No interruption
`S3KeyPrefix`	String	Required: No. An Amazon S3 object key prefix that precedes the name of all log files.Update requires: No interruption
`SnsTopicName`	String	Required: No. The name of an Amazon SNS topic that is notified when new log files are published.Update requires: No interruption
`Tags`	AWSCloudFormationResourceTags	Required: No. An arbitrary set of tags (key–value pairs) for this trail.Update requires: No interruption.

Source:

resources/cloudtrail.js, line 39

Extends

WKResource

CloudTrail.Trail

new Trail()

Properties:

Name	Type	Description
`CloudWatchLogsLogGroupArn`	String	Required: Conditional. The Amazon Resource Name (ARN) of a log group to which CloudTrail logs will be delivered.Update requires: No interruption
`CloudWatchLogsRoleArn`	String	Required: No. The role ARN that Amazon CloudWatch Logs (CloudWatch Logs) assumes to write logs to a log group. For more information, see Role Policy Document for CloudTrail to Use CloudWatch Logs for Monitoring in the AWS CloudTrail User Guide.Update requires: No interruption
`EnableLogFileValidation`	Boolean	Required: No. Indicates whether CloudTrail validates the integrity of log files. By default, AWS CloudFormation sets this value to false. When you disable log file integrity validation, CloudTrail stops creating digest files. For more information, see CreateTrail in the AWS CloudTrail API Reference.Update requires: No interruption
`IncludeGlobalServiceEvents`	Boolean	Required: No. Indicates whether the trail is publishing events from global services, such as IAM, to the log files. By default, AWS CloudFormation sets this value to false.Update requires: No interruption
`IsLogging`	Boolean	Required: Yes. Indicates whether the CloudTrail trail is currently logging AWS API calls.Update requires: No interruption
`IsMultiRegionTrail`	Boolean	Required: No. Indicates whether the CloudTrail trail is created in the region in which you create the stack (false) or in all regions (true). By default, AWS CloudFormation sets this value to false. For more information, see How Does CloudTrail Behave Regionally and Globally? in the AWS CloudTrail User Guide.Update requires: No interruption
`KMSKeyId`	String	Required: No. The AWS Key Management Service (AWS KMS) key ID that you want to use to encrypt CloudTrail logs. You can specify an alias name (prefixed with alias/), an alias ARN, a key ARN, or a globally unique identifier.Update requires: No interruption
`S3BucketName`	String	Required: Yes. The name of the Amazon S3 bucket where CloudTrail publishes log files.Update requires: No interruption
`S3KeyPrefix`	String	Required: No. An Amazon S3 object key prefix that precedes the name of all log files.Update requires: No interruption
`SnsTopicName`	String	Required: No. The name of an Amazon SNS topic that is notified when new log files are published.Update requires: No interruption
`Tags`	AWSCloudFormationResourceTags	Required: No. An arbitrary set of tags (key–value pairs) for this trail.Update requires: No interruption.

Source:

resources/cloudtrail.js, line 39

Extends

WKResource