v20190319

type AttributeKeyDetail struct {
	// Input box type
	LabelType *string `json:"LabelType,omitempty" name:"LabelType"`

	// Initial display
	Starter *string `json:"Starter,omitempty" name:"Starter"`

	// Display sort order
	Order *int64 `json:"Order,omitempty" name:"Order"`

	// `AttributeKey` value
	Value *string `json:"Value,omitempty" name:"Value"`

	// Tag
	Label *string `json:"Label,omitempty" name:"Label"`
}

type AuditSummary struct {
	// Tracking set status. 1: enabled, 0: disabled
	AuditStatus *int64 `json:"AuditStatus,omitempty" name:"AuditStatus"`

	// COS bucket name
	CosBucketName *string `json:"CosBucketName,omitempty" name:"CosBucketName"`

	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`

	// Log prefix
	LogFilePrefix *string `json:"LogFilePrefix,omitempty" name:"LogFilePrefix"`
}

type Client struct {
	common.Client
}

type CmqRegionInfo struct {
	// Region description
	CmqRegionName *string `json:"CmqRegionName,omitempty" name:"CmqRegionName"`

	// CMQ region
	CmqRegion *string `json:"CmqRegion,omitempty" name:"CmqRegion"`
}

type CosRegionInfo struct {
	// COS region
	CosRegion *string `json:"CosRegion,omitempty" name:"CosRegion"`

	// Region description
	CosRegionName *string `json:"CosRegionName,omitempty" name:"CosRegionName"`
}

type CreateAuditRequest struct {
	*tchttp.BaseRequest

	// Whether to enable CMQ message notification. 1: Yes; 0: No. Only CMQ queue service is currently supported. If CMQ message notification is enabled, CloudAudit will deliver your log contents to the designated queue in the specified region in real time.
	IsEnableCmqNotify *int64 `json:"IsEnableCmqNotify,omitempty" name:"IsEnableCmqNotify"`

	// Manages the read/write attribute of event. Valid values: 1 (read-only), 2 (write-only), 3 (read/write).
	ReadWriteAttribute *int64 `json:"ReadWriteAttribute,omitempty" name:"ReadWriteAttribute"`

	// Tracking set name, which can contain 3–128 ASCII letters (a–z; A–Z), digits (0–9), and underscores (_).
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`

	// COS region. Supported regions can be queried through the `ListCosEnableRegion` API.
	CosRegion *string `json:"CosRegion,omitempty" name:"CosRegion"`

	// Whether to create a COS bucket. 1: Yes; 0: No.
	IsCreateNewBucket *int64 `json:"IsCreateNewBucket,omitempty" name:"IsCreateNewBucket"`

	// User-defined COS bucket name, which can only contain 1–40 lowercase letters (a–z), digits (0–9), and dashes (-) and cannot begin or end with "-". If a bucket is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CosBucketName *string `json:"CosBucketName,omitempty" name:"CosBucketName"`

	// Globally unique ID of the CMK. This value is required if it is not a newly created KMS element. It can be obtained through `ListKeyAliasByRegion`. CloudAudit will not verify the validity of the `KeyId`. Enter it carefully to avoid data loss.
	KeyId *string `json:"KeyId,omitempty" name:"KeyId"`

	// Queue name, which must begin with a letter and can contain up to 64 letters, digits, and dashes (-). This field is required if the value of `IsEnableCmqNotify` is 1. If a queue is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CmqQueueName *string `json:"CmqQueueName,omitempty" name:"CmqQueueName"`

	// KMS region. Currently supported regions can be obtained through `ListKmsEnableRegion`. This must be the same as the COS region.
	KmsRegion *string `json:"KmsRegion,omitempty" name:"KmsRegion"`

	// Whether to enable KMS encryption. 1: Yes, 0: No. If KMS encryption is enabled, the data will be encrypted when delivered to COS.
	IsEnableKmsEncry *int64 `json:"IsEnableKmsEncry,omitempty" name:"IsEnableKmsEncry"`

	// Region where the queue is located. Supported CMQ regions can be queried through the `ListCmqEnableRegion` API. This field is required if the value of `IsEnableCmqNotify` is 1.
	CmqRegion *string `json:"CmqRegion,omitempty" name:"CmqRegion"`

	// Log file prefix, which can only contain 3–40 ASCII letters (a–z; A–Z) and digits (0–9). It can be left empty and is the account ID by default.
	LogFilePrefix *string `json:"LogFilePrefix,omitempty" name:"LogFilePrefix"`

	// Whether to create a queue. 1: Yes; 0: No. This field is required if the value of `IsEnableCmqNotify` is 1.
	IsCreateNewQueue *int64 `json:"IsCreateNewQueue,omitempty" name:"IsCreateNewQueue"`
}

type CreateAuditRequestParams struct {
	// Whether to enable CMQ message notification. 1: Yes; 0: No. Only CMQ queue service is currently supported. If CMQ message notification is enabled, CloudAudit will deliver your log contents to the designated queue in the specified region in real time.
	IsEnableCmqNotify *int64 `json:"IsEnableCmqNotify,omitempty" name:"IsEnableCmqNotify"`

	// Manages the read/write attribute of event. Valid values: 1 (read-only), 2 (write-only), 3 (read/write).
	ReadWriteAttribute *int64 `json:"ReadWriteAttribute,omitempty" name:"ReadWriteAttribute"`

	// Tracking set name, which can contain 3–128 ASCII letters (a–z; A–Z), digits (0–9), and underscores (_).
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`

	// COS region. Supported regions can be queried through the `ListCosEnableRegion` API.
	CosRegion *string `json:"CosRegion,omitempty" name:"CosRegion"`

	// Whether to create a COS bucket. 1: Yes; 0: No.
	IsCreateNewBucket *int64 `json:"IsCreateNewBucket,omitempty" name:"IsCreateNewBucket"`

	// User-defined COS bucket name, which can only contain 1–40 lowercase letters (a–z), digits (0–9), and dashes (-) and cannot begin or end with "-". If a bucket is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CosBucketName *string `json:"CosBucketName,omitempty" name:"CosBucketName"`

	// Globally unique ID of the CMK. This value is required if it is not a newly created KMS element. It can be obtained through `ListKeyAliasByRegion`. CloudAudit will not verify the validity of the `KeyId`. Enter it carefully to avoid data loss.
	KeyId *string `json:"KeyId,omitempty" name:"KeyId"`

	// Queue name, which must begin with a letter and can contain up to 64 letters, digits, and dashes (-). This field is required if the value of `IsEnableCmqNotify` is 1. If a queue is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CmqQueueName *string `json:"CmqQueueName,omitempty" name:"CmqQueueName"`

	// KMS region. Currently supported regions can be obtained through `ListKmsEnableRegion`. This must be the same as the COS region.
	KmsRegion *string `json:"KmsRegion,omitempty" name:"KmsRegion"`

	// Whether to enable KMS encryption. 1: Yes, 0: No. If KMS encryption is enabled, the data will be encrypted when delivered to COS.
	IsEnableKmsEncry *int64 `json:"IsEnableKmsEncry,omitempty" name:"IsEnableKmsEncry"`

	// Region where the queue is located. Supported CMQ regions can be queried through the `ListCmqEnableRegion` API. This field is required if the value of `IsEnableCmqNotify` is 1.
	CmqRegion *string `json:"CmqRegion,omitempty" name:"CmqRegion"`

	// Log file prefix, which can only contain 3–40 ASCII letters (a–z; A–Z) and digits (0–9). It can be left empty and is the account ID by default.
	LogFilePrefix *string `json:"LogFilePrefix,omitempty" name:"LogFilePrefix"`

	// Whether to create a queue. 1: Yes; 0: No. This field is required if the value of `IsEnableCmqNotify` is 1.
	IsCreateNewQueue *int64 `json:"IsCreateNewQueue,omitempty" name:"IsCreateNewQueue"`
}

type CreateAuditResponse struct {
	*tchttp.BaseResponse
	Response *CreateAuditResponseParams `json:"Response"`
}

type CreateAuditResponseParams struct {
	// Whether creation succeeded.
	IsSuccess *int64 `json:"IsSuccess,omitempty" name:"IsSuccess"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type CreateAuditTrackRequest struct {
	*tchttp.BaseRequest

	// Tracking set name, which can only contain 3-48 letters, digits, hyphens, and underscores.
	Name *string `json:"Name,omitempty" name:"Name"`

	// Tracking set event type (`Read`: Read; `Write`: Write; `*`: All)
	ActionType *string `json:"ActionType,omitempty" name:"ActionType"`

	// The product to which the tracking set event belongs. The value can be a single product such as `cos`, or `*` that indicates all products.
	ResourceType *string `json:"ResourceType,omitempty" name:"ResourceType"`

	// Tracking set status (0: Not enabled; 1: Enabled)
	Status *uint64 `json:"Status,omitempty" name:"Status"`

	// The list of API names of tracking set events. When `ResourceType` is `*`, the value of `EventNames` must be `*`. When `ResourceType` is a specified product, the value of `EventNames` can be `*`. When `ResourceType` is `cos` or `cls`, up to 10 APIs are supported.
	EventNames []*string `json:"EventNames,omitempty" name:"EventNames"`

	// Storage type of shipped data. Valid values: `cos`, `cls`.
	Storage *Storage `json:"Storage,omitempty" name:"Storage"`

	// Whether to enable the feature of shipping organization members’ operation logs to the organization admin account or the trusted service admin account (0: Not enabled; 1: Enabled. This feature can only be enabled by the organization admin account or the trusted service admin account)
	TrackForAllMembers *uint64 `json:"TrackForAllMembers,omitempty" name:"TrackForAllMembers"`
}

type CreateAuditTrackRequestParams struct {
	// Tracking set name, which can only contain 3-48 letters, digits, hyphens, and underscores.
	Name *string `json:"Name,omitempty" name:"Name"`

	// Tracking set event type (`Read`: Read; `Write`: Write; `*`: All)
	ActionType *string `json:"ActionType,omitempty" name:"ActionType"`

	// The product to which the tracking set event belongs. The value can be a single product such as `cos`, or `*` that indicates all products.
	ResourceType *string `json:"ResourceType,omitempty" name:"ResourceType"`

	// Tracking set status (0: Not enabled; 1: Enabled)
	Status *uint64 `json:"Status,omitempty" name:"Status"`

	// The list of API names of tracking set events. When `ResourceType` is `*`, the value of `EventNames` must be `*`. When `ResourceType` is a specified product, the value of `EventNames` can be `*`. When `ResourceType` is `cos` or `cls`, up to 10 APIs are supported.
	EventNames []*string `json:"EventNames,omitempty" name:"EventNames"`

	// Storage type of shipped data. Valid values: `cos`, `cls`.
	Storage *Storage `json:"Storage,omitempty" name:"Storage"`

	// Whether to enable the feature of shipping organization members’ operation logs to the organization admin account or the trusted service admin account (0: Not enabled; 1: Enabled. This feature can only be enabled by the organization admin account or the trusted service admin account)
	TrackForAllMembers *uint64 `json:"TrackForAllMembers,omitempty" name:"TrackForAllMembers"`
}

type CreateAuditTrackResponse struct {
	*tchttp.BaseResponse
	Response *CreateAuditTrackResponseParams `json:"Response"`
}

type CreateAuditTrackResponseParams struct {
	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type DeleteAuditRequest struct {
	*tchttp.BaseRequest

	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type DeleteAuditRequestParams struct {
	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type DeleteAuditResponse struct {
	*tchttp.BaseResponse
	Response *DeleteAuditResponseParams `json:"Response"`
}

type DeleteAuditResponseParams struct {
	// Whether deletion succeeded
	IsSuccess *int64 `json:"IsSuccess,omitempty" name:"IsSuccess"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type DeleteAuditTrackRequest struct {
	*tchttp.BaseRequest

	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`
}

type DeleteAuditTrackRequestParams struct {
	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`
}

type DeleteAuditTrackResponse struct {
	*tchttp.BaseResponse
	Response *DeleteAuditTrackResponseParams `json:"Response"`
}

type DeleteAuditTrackResponseParams struct {
	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type DescribeAuditRequest struct {
	*tchttp.BaseRequest

	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type DescribeAuditRequestParams struct {
	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type DescribeAuditResponse struct {
	*tchttp.BaseResponse
	Response *DescribeAuditResponseParams `json:"Response"`
}

type DescribeAuditResponseParams struct {
	// Whether to enable CMQ message notification. 1: Yes; 0: No.
	IsEnableCmqNotify *int64 `json:"IsEnableCmqNotify,omitempty" name:"IsEnableCmqNotify"`

	// Manages the read/write attribute of event. Valid values: 1 (read-only), 2 (write-only), 3 (read/write)
	ReadWriteAttribute *int64 `json:"ReadWriteAttribute,omitempty" name:"ReadWriteAttribute"`

	// Globally unique CMK ID.
	KeyId *string `json:"KeyId,omitempty" name:"KeyId"`

	// Tracking set status. 1: enabled, 0: disabled.
	AuditStatus *int64 `json:"AuditStatus,omitempty" name:"AuditStatus"`

	// Tracking set name.
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`

	// COS bucket region.
	CosRegion *string `json:"CosRegion,omitempty" name:"CosRegion"`

	// Queue name.
	CmqQueueName *string `json:"CmqQueueName,omitempty" name:"CmqQueueName"`

	// CMK alias.
	KmsAlias *string `json:"KmsAlias,omitempty" name:"KmsAlias"`

	// KMS region.
	KmsRegion *string `json:"KmsRegion,omitempty" name:"KmsRegion"`

	// Whether to enable KMS encryption. 1: Yes, 0: No. If KMS encryption is enabled, the data will be encrypted when it is delivered to COS.
	IsEnableKmsEncry *int64 `json:"IsEnableKmsEncry,omitempty" name:"IsEnableKmsEncry"`

	// COS bucket name.
	CosBucketName *string `json:"CosBucketName,omitempty" name:"CosBucketName"`

	// Queue region.
	CmqRegion *string `json:"CmqRegion,omitempty" name:"CmqRegion"`

	// Log prefix.
	LogFilePrefix *string `json:"LogFilePrefix,omitempty" name:"LogFilePrefix"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type DescribeAuditTrackRequest struct {
	*tchttp.BaseRequest

	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`
}

type DescribeAuditTrackRequestParams struct {
	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`
}

type DescribeAuditTrackResponse struct {
	*tchttp.BaseResponse
	Response *DescribeAuditTrackResponseParams `json:"Response"`
}

type DescribeAuditTrackResponseParams struct {
	// Tracking set name
	Name *string `json:"Name,omitempty" name:"Name"`

	// Tracking set event type (`Read`: Read; `Write`: Write; `*`: All)
	ActionType *string `json:"ActionType,omitempty" name:"ActionType"`

	// The product to which the tracking set event belongs, such as `cos`, or `*` that indicates all products
	ResourceType *string `json:"ResourceType,omitempty" name:"ResourceType"`

	// Tracking set status (0: Not enabled; 1: Enabled)
	Status *uint64 `json:"Status,omitempty" name:"Status"`

	// The list of API names of tracking set events (`*`: All)
	EventNames []*string `json:"EventNames,omitempty" name:"EventNames"`

	// Storage type of shipped data. Valid values: `cos`, `cls`.
	Storage *Storage `json:"Storage,omitempty" name:"Storage"`

	// Creation time of the tracking set
	CreateTime *string `json:"CreateTime,omitempty" name:"CreateTime"`

	// Whether to enable the feature of shipping organization members’ operation logs to the organization admin account or the trusted service admin account
	// Note: This field may return null, indicating that no valid values can be obtained.
	TrackForAllMembers *uint64 `json:"TrackForAllMembers,omitempty" name:"TrackForAllMembers"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type DescribeAuditTracksRequest struct {
	*tchttp.BaseRequest

	// Page number
	PageNumber *uint64 `json:"PageNumber,omitempty" name:"PageNumber"`

	// The number of tracking sets per page
	PageSize *uint64 `json:"PageSize,omitempty" name:"PageSize"`
}

type DescribeAuditTracksRequestParams struct {
	// Page number
	PageNumber *uint64 `json:"PageNumber,omitempty" name:"PageNumber"`

	// The number of tracking sets per page
	PageSize *uint64 `json:"PageSize,omitempty" name:"PageSize"`
}

type DescribeAuditTracksResponse struct {
	*tchttp.BaseResponse
	Response *DescribeAuditTracksResponseParams `json:"Response"`
}

type DescribeAuditTracksResponseParams struct {
	// Tracking set list
	Tracks []*Tracks `json:"Tracks,omitempty" name:"Tracks"`

	// Total number of tracking sets
	TotalCount *uint64 `json:"TotalCount,omitempty" name:"TotalCount"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type DescribeEventsRequest struct {
	*tchttp.BaseRequest

	// Start timestamp in seconds (cannot be 90 days after the current time).
	StartTime *uint64 `json:"StartTime,omitempty" name:"StartTime"`

	// End timestamp in seconds (the time range for query is less than 30 days).
	EndTime *uint64 `json:"EndTime,omitempty" name:"EndTime"`

	// Credential for viewing more logs.
	NextToken *uint64 `json:"NextToken,omitempty" name:"NextToken"`

	// Max number of returned logs (up to 50).
	MaxResults *uint64 `json:"MaxResults,omitempty" name:"MaxResults"`

	// Search condition. Valid values: `RequestId`, `EventName`, `ActionType` (write/read), `PrincipalId` (sub-account), `ResourceType`, `ResourceName`, `AccessKeyId`, `SensitiveAction`, `ApiErrorCode`, `CamErrorCode`, and `Tags` (Format of AttributeValue: [{"key":"*","value":"*"}])
	LookupAttributes []*LookupAttribute `json:"LookupAttributes,omitempty" name:"LookupAttributes"`

	// Whether to return the IP location. `1`: yes, `0`: no.
	IsReturnLocation *uint64 `json:"IsReturnLocation,omitempty" name:"IsReturnLocation"`
}

type DescribeEventsRequestParams struct {
	// Start timestamp in seconds (cannot be 90 days after the current time).
	StartTime *uint64 `json:"StartTime,omitempty" name:"StartTime"`

	// End timestamp in seconds (the time range for query is less than 30 days).
	EndTime *uint64 `json:"EndTime,omitempty" name:"EndTime"`

	// Credential for viewing more logs.
	NextToken *uint64 `json:"NextToken,omitempty" name:"NextToken"`

	// Max number of returned logs (up to 50).
	MaxResults *uint64 `json:"MaxResults,omitempty" name:"MaxResults"`

	// Search condition. Valid values: `RequestId`, `EventName`, `ActionType` (write/read), `PrincipalId` (sub-account), `ResourceType`, `ResourceName`, `AccessKeyId`, `SensitiveAction`, `ApiErrorCode`, `CamErrorCode`, and `Tags` (Format of AttributeValue: [{"key":"*","value":"*"}])
	LookupAttributes []*LookupAttribute `json:"LookupAttributes,omitempty" name:"LookupAttributes"`

	// Whether to return the IP location. `1`: yes, `0`: no.
	IsReturnLocation *uint64 `json:"IsReturnLocation,omitempty" name:"IsReturnLocation"`
}

type DescribeEventsResponse struct {
	*tchttp.BaseResponse
	Response *DescribeEventsResponseParams `json:"Response"`
}

type DescribeEventsResponseParams struct {
	// Whether the log list has come to an end. `true`: Yes. Pagination is not required.
	ListOver *bool `json:"ListOver,omitempty" name:"ListOver"`

	// Credential for viewing more logs.
	NextToken *uint64 `json:"NextToken,omitempty" name:"NextToken"`

	// Logset.
	// Note: `null` may be returned for this field, indicating that no valid values can be obtained.
	Events []*Event `json:"Events,omitempty" name:"Events"`

	// This parameter has been deprecated. Please use `ListOver` and `NextToken` for pagination, and read data of the next page when the value of `ListOver` is `false`.
	// Note: This field may return null, indicating that no valid values can be obtained.
	TotalCount *uint64 `json:"TotalCount,omitempty" name:"TotalCount"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type Event struct {
	// Log ID
	EventId *string `json:"EventId,omitempty" name:"EventId"`

	// Username
	Username *string `json:"Username,omitempty" name:"Username"`

	// Event Time
	EventTime *string `json:"EventTime,omitempty" name:"EventTime"`

	// Log details
	CloudAuditEvent *string `json:"CloudAuditEvent,omitempty" name:"CloudAuditEvent"`

	// Description of resource type in Chinese (please use this field as required; if you are using other languages, ignore this field)
	ResourceTypeCn *string `json:"ResourceTypeCn,omitempty" name:"ResourceTypeCn"`

	// Authentication error code
	ErrorCode *int64 `json:"ErrorCode,omitempty" name:"ErrorCode"`

	// Event name
	EventName *string `json:"EventName,omitempty" name:"EventName"`

	// Certificate ID
	// Note: `null` may be returned for this field, indicating that no valid values can be obtained.
	SecretId *string `json:"SecretId,omitempty" name:"SecretId"`

	// Request source
	EventSource *string `json:"EventSource,omitempty" name:"EventSource"`

	// Request ID
	RequestID *string `json:"RequestID,omitempty" name:"RequestID"`

	// Resource region
	ResourceRegion *string `json:"ResourceRegion,omitempty" name:"ResourceRegion"`

	// Root account ID
	AccountID *int64 `json:"AccountID,omitempty" name:"AccountID"`

	// Source IP
	// Note: `null` may be returned for this field, indicating that no valid values can be obtained.
	SourceIPAddress *string `json:"SourceIPAddress,omitempty" name:"SourceIPAddress"`

	// Description of event name in Chinese (please use this field as required; if you are using other languages, ignore this field)
	EventNameCn *string `json:"EventNameCn,omitempty" name:"EventNameCn"`

	// Resource pair
	Resources *Resource `json:"Resources,omitempty" name:"Resources"`

	// Event region
	EventRegion *string `json:"EventRegion,omitempty" name:"EventRegion"`

	// IP location
	Location *string `json:"Location,omitempty" name:"Location"`
}

type GetAttributeKeyRequest struct {
	*tchttp.BaseRequest

	// Website type. Valid values: zh, en. If this parameter is left empty, `zh` will be used by default
	WebsiteType *string `json:"WebsiteType,omitempty" name:"WebsiteType"`
}

type GetAttributeKeyRequestParams struct {
	// Website type. Valid values: zh, en. If this parameter is left empty, `zh` will be used by default
	WebsiteType *string `json:"WebsiteType,omitempty" name:"WebsiteType"`
}

type GetAttributeKeyResponse struct {
	*tchttp.BaseResponse
	Response *GetAttributeKeyResponseParams `json:"Response"`
}

type GetAttributeKeyResponseParams struct {
	// Valid values of `AttributeKey`
	AttributeKeyDetails []*AttributeKeyDetail `json:"AttributeKeyDetails,omitempty" name:"AttributeKeyDetails"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type InquireAuditCreditRequest struct {
	*tchttp.BaseRequest
}

type InquireAuditCreditRequestParams struct {
}

type InquireAuditCreditResponse struct {
	*tchttp.BaseResponse
	Response *InquireAuditCreditResponseParams `json:"Response"`
}

type InquireAuditCreditResponseParams struct {
	// Number of tracking sets that can be created
	AuditAmount *int64 `json:"AuditAmount,omitempty" name:"AuditAmount"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type ListAuditsRequest struct {
	*tchttp.BaseRequest
}

type ListAuditsRequestParams struct {
}

type ListAuditsResponse struct {
	*tchttp.BaseResponse
	Response *ListAuditsResponseParams `json:"Response"`
}

type ListAuditsResponseParams struct {
	// Set of queried tracking set summaries
	// Note: This field may return null, indicating that no valid values can be obtained.
	AuditSummarys []*AuditSummary `json:"AuditSummarys,omitempty" name:"AuditSummarys"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type ListCmqEnableRegionRequest struct {
	*tchttp.BaseRequest

	// Website type. zh: Chinese mainland (default); en: outside Chinese mainland.
	WebsiteType *string `json:"WebsiteType,omitempty" name:"WebsiteType"`
}

type ListCmqEnableRegionRequestParams struct {
	// Website type. zh: Chinese mainland (default); en: outside Chinese mainland.
	WebsiteType *string `json:"WebsiteType,omitempty" name:"WebsiteType"`
}

type ListCmqEnableRegionResponse struct {
	*tchttp.BaseResponse
	Response *ListCmqEnableRegionResponseParams `json:"Response"`
}

type ListCmqEnableRegionResponseParams struct {
	// CloudAudit-enabled CMQ AZs
	EnableRegions []*CmqRegionInfo `json:"EnableRegions,omitempty" name:"EnableRegions"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type ListCosEnableRegionRequest struct {
	*tchttp.BaseRequest

	// Website type. zh: Chinese mainland (default); en: outside Chinese mainland.
	WebsiteType *string `json:"WebsiteType,omitempty" name:"WebsiteType"`
}

type ListCosEnableRegionRequestParams struct {
	// Website type. zh: Chinese mainland (default); en: outside Chinese mainland.
	WebsiteType *string `json:"WebsiteType,omitempty" name:"WebsiteType"`
}

type ListCosEnableRegionResponse struct {
	*tchttp.BaseResponse
	Response *ListCosEnableRegionResponseParams `json:"Response"`
}

type ListCosEnableRegionResponseParams struct {
	// CloudAudit-enabled COS AZs
	EnableRegions []*CosRegionInfo `json:"EnableRegions,omitempty" name:"EnableRegions"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type LookUpEventsRequest struct {
	*tchttp.BaseRequest

	// Start time
	StartTime *int64 `json:"StartTime,omitempty" name:"StartTime"`

	// End time
	EndTime *int64 `json:"EndTime,omitempty" name:"EndTime"`

	// Search criteria
	LookupAttributes []*LookupAttribute `json:"LookupAttributes,omitempty" name:"LookupAttributes"`

	// Credential for viewing more logs
	NextToken *string `json:"NextToken,omitempty" name:"NextToken"`

	// Maximum number of logs to be returned
	MaxResults *int64 `json:"MaxResults,omitempty" name:"MaxResults"`

	// CloudAudit mode. Valid values: standard, quick. Default value: standard
	Mode *string `json:"Mode,omitempty" name:"Mode"`
}

type LookUpEventsRequestParams struct {
	// Start time
	StartTime *int64 `json:"StartTime,omitempty" name:"StartTime"`

	// End time
	EndTime *int64 `json:"EndTime,omitempty" name:"EndTime"`

	// Search criteria
	LookupAttributes []*LookupAttribute `json:"LookupAttributes,omitempty" name:"LookupAttributes"`

	// Credential for viewing more logs
	NextToken *string `json:"NextToken,omitempty" name:"NextToken"`

	// Maximum number of logs to be returned
	MaxResults *int64 `json:"MaxResults,omitempty" name:"MaxResults"`

	// CloudAudit mode. Valid values: standard, quick. Default value: standard
	Mode *string `json:"Mode,omitempty" name:"Mode"`
}

type LookUpEventsResponse struct {
	*tchttp.BaseResponse
	Response *LookUpEventsResponseParams `json:"Response"`
}

type LookUpEventsResponseParams struct {
	// Credential for viewing more logs
	// Note: This field may return null, indicating that no valid values can be obtained.
	NextToken *string `json:"NextToken,omitempty" name:"NextToken"`

	// Logset
	// Note: This field may return null, indicating that no valid values can be obtained.
	Events []*Event `json:"Events,omitempty" name:"Events"`

	// Whether the logset ends
	// Note: This field may return null, indicating that no valid values can be obtained.
	ListOver *bool `json:"ListOver,omitempty" name:"ListOver"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type LookupAttribute struct {
	// Valid values: RequestId, EventName, ReadOnly, Username, ResourceType, ResourceName, AccessKeyId, and EventId
	// Note: `null` may be returned for this field, indicating that no valid values can be obtained.
	AttributeKey *string `json:"AttributeKey,omitempty" name:"AttributeKey"`

	// Value of `AttributeValue`
	// Note: `null` may be returned for this field, indicating that no valid values can be obtained.
	AttributeValue *string `json:"AttributeValue,omitempty" name:"AttributeValue"`
}

type ModifyAuditTrackRequest struct {
	*tchttp.BaseRequest

	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`

	// Tracking set name, which can only contain 3-48 letters, digits, hyphens, and underscores.
	Name *string `json:"Name,omitempty" name:"Name"`

	// Tracking set event type (`Read`: Read; `Write`: Write; `*`: All)
	ActionType *string `json:"ActionType,omitempty" name:"ActionType"`

	// The product to which the tracking set event belongs. The value can be a single product such as `cos`, or `*` that indicates all products.
	ResourceType *string `json:"ResourceType,omitempty" name:"ResourceType"`

	// Tracking set status (0: Not enabled; 1: Enabled)
	Status *uint64 `json:"Status,omitempty" name:"Status"`

	// The list of API names of tracking set events. When `ResourceType` is `*`, the value of `EventNames` must be `*`. When `ResourceType` is a specified product, the value of `EventNames` can be `*`. When `ResourceType` is `cos` or `cls`, up to 10 APIs are supported.
	EventNames []*string `json:"EventNames,omitempty" name:"EventNames"`

	// Storage type of shipped data. Valid values: `cos`, `cls`.
	Storage *Storage `json:"Storage,omitempty" name:"Storage"`

	// Whether to enable the feature of shipping organization members’ operation logs to the organization admin account or the trusted service admin account (0: Not enabled; 1: Enabled. This feature can only be enabled by the organization admin account or the trusted service admin account)
	TrackForAllMembers *uint64 `json:"TrackForAllMembers,omitempty" name:"TrackForAllMembers"`
}

type ModifyAuditTrackRequestParams struct {
	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`

	// Tracking set name, which can only contain 3-48 letters, digits, hyphens, and underscores.
	Name *string `json:"Name,omitempty" name:"Name"`

	// Tracking set event type (`Read`: Read; `Write`: Write; `*`: All)
	ActionType *string `json:"ActionType,omitempty" name:"ActionType"`

	// The product to which the tracking set event belongs. The value can be a single product such as `cos`, or `*` that indicates all products.
	ResourceType *string `json:"ResourceType,omitempty" name:"ResourceType"`

	// Tracking set status (0: Not enabled; 1: Enabled)
	Status *uint64 `json:"Status,omitempty" name:"Status"`

	// The list of API names of tracking set events. When `ResourceType` is `*`, the value of `EventNames` must be `*`. When `ResourceType` is a specified product, the value of `EventNames` can be `*`. When `ResourceType` is `cos` or `cls`, up to 10 APIs are supported.
	EventNames []*string `json:"EventNames,omitempty" name:"EventNames"`

	// Storage type of shipped data. Valid values: `cos`, `cls`.
	Storage *Storage `json:"Storage,omitempty" name:"Storage"`

	// Whether to enable the feature of shipping organization members’ operation logs to the organization admin account or the trusted service admin account (0: Not enabled; 1: Enabled. This feature can only be enabled by the organization admin account or the trusted service admin account)
	TrackForAllMembers *uint64 `json:"TrackForAllMembers,omitempty" name:"TrackForAllMembers"`
}

type ModifyAuditTrackResponse struct {
	*tchttp.BaseResponse
	Response *ModifyAuditTrackResponseParams `json:"Response"`
}

type ModifyAuditTrackResponseParams struct {
	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type Resource struct {
	// Resource type
	ResourceType *string `json:"ResourceType,omitempty" name:"ResourceType"`

	// Resource name
	// Note: `null` may be returned for this field, indicating that no valid values can be obtained.
	ResourceName *string `json:"ResourceName,omitempty" name:"ResourceName"`
}

type StartLoggingRequest struct {
	*tchttp.BaseRequest

	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type StartLoggingRequestParams struct {
	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type StartLoggingResponse struct {
	*tchttp.BaseResponse
	Response *StartLoggingResponseParams `json:"Response"`
}

type StartLoggingResponseParams struct {
	// Whether enablement succeeded
	IsSuccess *int64 `json:"IsSuccess,omitempty" name:"IsSuccess"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type StopLoggingRequest struct {
	*tchttp.BaseRequest

	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type StopLoggingRequestParams struct {
	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`
}

type StopLoggingResponse struct {
	*tchttp.BaseResponse
	Response *StopLoggingResponseParams `json:"Response"`
}

type StopLoggingResponseParams struct {
	// Whether disablement succeeded
	IsSuccess *int64 `json:"IsSuccess,omitempty" name:"IsSuccess"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}

type Storage struct {
	// Storage type (Valid values: cos, cls)
	StorageType *string `json:"StorageType,omitempty" name:"StorageType"`

	// Storage region
	StorageRegion *string `json:"StorageRegion,omitempty" name:"StorageRegion"`

	// Storage name. For COS, the storage name is the custom bucket name, which can contain up to 50 lowercase letters, digits, and hyphens. It cannot contain "-APPID" and cannot start or end with a hyphen. For CLS, the storage name is the log topic ID, which can contain 1-50 characters.
	StorageName *string `json:"StorageName,omitempty" name:"StorageName"`

	// Storage directory prefix. The COS log file prefix can only contain 3-40 letters and digits.
	StoragePrefix *string `json:"StoragePrefix,omitempty" name:"StoragePrefix"`
}

type Tracks struct {
	// Tracking set name
	Name *string `json:"Name,omitempty" name:"Name"`

	// Tracking set event type (`Read`: Read; `Write`: Write; `*`: All)
	ActionType *string `json:"ActionType,omitempty" name:"ActionType"`

	// The product to which the tracking set event belongs, such as `cos`, or `*` that indicates all products
	ResourceType *string `json:"ResourceType,omitempty" name:"ResourceType"`

	// Tracking set status (0: Not enabled; 1: Enabled)
	Status *uint64 `json:"Status,omitempty" name:"Status"`

	// The list of API names of tracking set events (`*`: All)
	EventNames []*string `json:"EventNames,omitempty" name:"EventNames"`

	// Storage type of shipped data. Valid values: `cos`, `cls`.
	Storage *Storage `json:"Storage,omitempty" name:"Storage"`

	// Creation time of the tracking set
	CreateTime *string `json:"CreateTime,omitempty" name:"CreateTime"`

	// Tracking set ID
	TrackId *uint64 `json:"TrackId,omitempty" name:"TrackId"`
}

type UpdateAuditRequest struct {
	*tchttp.BaseRequest

	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`

	// Whether to enable CMQ message notification. 1: Yes; 0: No. Only CMQ queue service is currently supported. If CMQ message notification is enabled, CloudAudit will deliver your log contents to the designated queue in the specified region in real time.
	IsEnableCmqNotify *int64 `json:"IsEnableCmqNotify,omitempty" name:"IsEnableCmqNotify"`

	// Manages the read/write attribute of event. Valid values: 1 (read-only), 2 (write-only), 3 (read/write).
	ReadWriteAttribute *int64 `json:"ReadWriteAttribute,omitempty" name:"ReadWriteAttribute"`

	// Globally unique ID of the CMK. This value is required if it is not a newly created KMS element. It can be obtained through `ListKeyAliasByRegion`. CloudAudit will not verify the validity of the `KeyId`. Enter it carefully to avoid data loss.
	KeyId *string `json:"KeyId,omitempty" name:"KeyId"`

	// COS region. Supported regions can be queried through the `ListCosEnableRegion` API.
	CosRegion *string `json:"CosRegion,omitempty" name:"CosRegion"`

	// Queue name, which must begin with a letter and can contain up to 64 letters, digits, and dashes (-). This field is required if the value of `IsEnableCmqNotify` is 1. If a queue is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CmqQueueName *string `json:"CmqQueueName,omitempty" name:"CmqQueueName"`

	// Whether to create a COS bucket. 1: Yes; 0: No.
	IsCreateNewBucket *int64 `json:"IsCreateNewBucket,omitempty" name:"IsCreateNewBucket"`

	// KMS region. Currently supported regions can be obtained through `ListKmsEnableRegion`. This must be the same as the COS region.
	KmsRegion *string `json:"KmsRegion,omitempty" name:"KmsRegion"`

	// Whether to enable KMS encryption. 1: Yes, 0: No. If KMS encryption is enabled, the data will be encrypted when delivered to COS.
	IsEnableKmsEncry *int64 `json:"IsEnableKmsEncry,omitempty" name:"IsEnableKmsEncry"`

	// User-defined COS bucket name, which can only contain 1–40 lowercase letters (a–z), digits (0–9), and dashes (-) and cannot begin or end with "-". If a bucket is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CosBucketName *string `json:"CosBucketName,omitempty" name:"CosBucketName"`

	// Region where the queue is located. Supported CMQ regions can be queried through the `ListCmqEnableRegion` API. This field is required if the value of `IsEnableCmqNotify` is 1.
	CmqRegion *string `json:"CmqRegion,omitempty" name:"CmqRegion"`

	// Log file prefix, which can only contain 3–40 ASCII letters (a–z; A–Z) and digits (0–9).
	LogFilePrefix *string `json:"LogFilePrefix,omitempty" name:"LogFilePrefix"`

	// Whether to create a queue. 1: Yes; 0: No. This field is required if the value of `IsEnableCmqNotify` is 1.
	IsCreateNewQueue *int64 `json:"IsCreateNewQueue,omitempty" name:"IsCreateNewQueue"`
}

type UpdateAuditRequestParams struct {
	// Tracking set name
	AuditName *string `json:"AuditName,omitempty" name:"AuditName"`

	// Whether to enable CMQ message notification. 1: Yes; 0: No. Only CMQ queue service is currently supported. If CMQ message notification is enabled, CloudAudit will deliver your log contents to the designated queue in the specified region in real time.
	IsEnableCmqNotify *int64 `json:"IsEnableCmqNotify,omitempty" name:"IsEnableCmqNotify"`

	// Manages the read/write attribute of event. Valid values: 1 (read-only), 2 (write-only), 3 (read/write).
	ReadWriteAttribute *int64 `json:"ReadWriteAttribute,omitempty" name:"ReadWriteAttribute"`

	// Globally unique ID of the CMK. This value is required if it is not a newly created KMS element. It can be obtained through `ListKeyAliasByRegion`. CloudAudit will not verify the validity of the `KeyId`. Enter it carefully to avoid data loss.
	KeyId *string `json:"KeyId,omitempty" name:"KeyId"`

	// COS region. Supported regions can be queried through the `ListCosEnableRegion` API.
	CosRegion *string `json:"CosRegion,omitempty" name:"CosRegion"`

	// Queue name, which must begin with a letter and can contain up to 64 letters, digits, and dashes (-). This field is required if the value of `IsEnableCmqNotify` is 1. If a queue is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CmqQueueName *string `json:"CmqQueueName,omitempty" name:"CmqQueueName"`

	// Whether to create a COS bucket. 1: Yes; 0: No.
	IsCreateNewBucket *int64 `json:"IsCreateNewBucket,omitempty" name:"IsCreateNewBucket"`

	// KMS region. Currently supported regions can be obtained through `ListKmsEnableRegion`. This must be the same as the COS region.
	KmsRegion *string `json:"KmsRegion,omitempty" name:"KmsRegion"`

	// Whether to enable KMS encryption. 1: Yes, 0: No. If KMS encryption is enabled, the data will be encrypted when delivered to COS.
	IsEnableKmsEncry *int64 `json:"IsEnableKmsEncry,omitempty" name:"IsEnableKmsEncry"`

	// User-defined COS bucket name, which can only contain 1–40 lowercase letters (a–z), digits (0–9), and dashes (-) and cannot begin or end with "-". If a bucket is not newly created, CloudAudit will not verify whether it actually exists. Enter the name with caution to avoid log delivery failure and consequent data loss.
	CosBucketName *string `json:"CosBucketName,omitempty" name:"CosBucketName"`

	// Region where the queue is located. Supported CMQ regions can be queried through the `ListCmqEnableRegion` API. This field is required if the value of `IsEnableCmqNotify` is 1.
	CmqRegion *string `json:"CmqRegion,omitempty" name:"CmqRegion"`

	// Log file prefix, which can only contain 3–40 ASCII letters (a–z; A–Z) and digits (0–9).
	LogFilePrefix *string `json:"LogFilePrefix,omitempty" name:"LogFilePrefix"`

	// Whether to create a queue. 1: Yes; 0: No. This field is required if the value of `IsEnableCmqNotify` is 1.
	IsCreateNewQueue *int64 `json:"IsCreateNewQueue,omitempty" name:"IsCreateNewQueue"`
}

type UpdateAuditResponse struct {
	*tchttp.BaseResponse
	Response *UpdateAuditResponseParams `json:"Response"`
}

type UpdateAuditResponseParams struct {
	// Whether update succeeded
	IsSuccess *int64 `json:"IsSuccess,omitempty" name:"IsSuccess"`

	// The unique request ID, which is returned for each request. RequestId is required for locating a problem.
	RequestId *string `json:"RequestId,omitempty" name:"RequestId"`
}