class Aws::CognitoIdentityProvider::Types::SetRiskConfigurationRequest

@note When making an API call, you may pass SetRiskConfigurationRequest

data as a hash:

    {
      user_pool_id: "UserPoolIdType", # required
      client_id: "ClientIdType",
      compromised_credentials_risk_configuration: {
        event_filter: ["SIGN_IN"], # accepts SIGN_IN, PASSWORD_CHANGE, SIGN_UP
        actions: { # required
          event_action: "BLOCK", # required, accepts BLOCK, NO_ACTION
        },
      },
      account_takeover_risk_configuration: {
        notify_configuration: {
          from: "StringType",
          reply_to: "StringType",
          source_arn: "ArnType", # required
          block_email: {
            subject: "EmailNotificationSubjectType", # required
            html_body: "EmailNotificationBodyType",
            text_body: "EmailNotificationBodyType",
          },
          no_action_email: {
            subject: "EmailNotificationSubjectType", # required
            html_body: "EmailNotificationBodyType",
            text_body: "EmailNotificationBodyType",
          },
          mfa_email: {
            subject: "EmailNotificationSubjectType", # required
            html_body: "EmailNotificationBodyType",
            text_body: "EmailNotificationBodyType",
          },
        },
        actions: { # required
          low_action: {
            notify: false, # required
            event_action: "BLOCK", # required, accepts BLOCK, MFA_IF_CONFIGURED, MFA_REQUIRED, NO_ACTION
          },
          medium_action: {
            notify: false, # required
            event_action: "BLOCK", # required, accepts BLOCK, MFA_IF_CONFIGURED, MFA_REQUIRED, NO_ACTION
          },
          high_action: {
            notify: false, # required
            event_action: "BLOCK", # required, accepts BLOCK, MFA_IF_CONFIGURED, MFA_REQUIRED, NO_ACTION
          },
        },
      },
      risk_exception_configuration: {
        blocked_ip_range_list: ["StringType"],
        skipped_ip_range_list: ["StringType"],
      },
    }

@!attribute [rw] user_pool_id

The user pool ID.
@return [String]

@!attribute [rw] client_id

The app client ID. If `ClientId` is null, then the risk
configuration is mapped to `userPoolId`. When the client ID is null,
the same risk configuration is applied to all the clients in the
userPool.

Otherwise, `ClientId` is mapped to the client. When the client ID is
not null, the user pool configuration is overridden and the risk
configuration for the client is used instead.
@return [String]

@!attribute [rw] compromised_credentials_risk_configuration

The compromised credentials risk configuration.
@return [Types::CompromisedCredentialsRiskConfigurationType]

@!attribute [rw] account_takeover_risk_configuration

The account takeover risk configuration.
@return [Types::AccountTakeoverRiskConfigurationType]

@!attribute [rw] risk_exception_configuration

The configuration to override the risk decision.
@return [Types::RiskExceptionConfigurationType]

@see docs.aws.amazon.com/goto/WebAPI/cognito-idp-2016-04-18/SetRiskConfigurationRequest AWS API Documentation

Constants

SENSITIVE