How to get the “resource name” while using the AWS CloudTrail processing library











up vote
0
down vote

favorite
1












I am using the AWS CloudTrail processing library to pull Cloudtrail logs from AWS. In the screenshot image of event history below (taken from the CloudTrail web console), the name of the bucket affected by a change is reflected under the column: Resource name . How can I retrieve this same value using the aws-cloudtrail-processing-library. The library returns the name of the bucket where CloudTrail saves the log files and not the affected bucket (highlighted). Also, even after downloading the logs from the bucket, I do not see this information.



enter image description here



Here is the snippet of my processing class:



public class AuditorCloudTrail {





public static void main(String args) throws InterruptedException {

    final Log logger = LogFactory.getLog(AuditorCloudTrail.class);







    final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(

            new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())

                    .withProgressReporter(new AuditorProgressReporter()).withEventFilter(new AuditorEventsFilter())

                    .withExceptionHandler(new AuditorExceptionHandler()).build();

    executor.start();



    // add shut down hook to gracefully stop executor (optional)

    Runtime.getRuntime().addShutdownHook(new Thread() {

        public void run() {

            logger.info("Shut Down Hook is called.");

            executor.stop();

        }

    });



    // register a Default Uncaught Exception Handler (optional)

    Thread.setDefaultUncaughtExceptionHandler(new Thread.UncaughtExceptionHandler() {

        @Override

        public void uncaughtException(Thread t, Throwable e) {



            // Two options here:

            // First, we can call System.exit(1); in such case shut down hook will be

            // called.

            // Second, we can optionally restart another executor and start.

            final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(

                    new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())

                            .withEventFilter(new AuditorEventsFilter())

                            .withProgressReporter(new AuditorProgressReporter())

                            .withExceptionHandler(new AuditorExceptionHandler()).build();

            executor.start();



        }

    });



    // can optionally limit running time, or remove both lines so it is running

    // forever. (optional)

    Thread.sleep(24 * 60 * 60 * 1000);

    executor.stop();

}


and the method that filters events:



   public boolean filterEvent(CloudTrailEvent event) throws CallbackException {

    CloudTrailEventData eventData = event.getEventData();    



    String eventSource = eventData.getEventSource();    



    try {

        saveEvent(eventData);

    } catch (InterruptedException e) {

        e.printStackTrace();

    }



    return (eventSource.equals(IAM_EVENTS) || 

   eventSource.equals(S3_EVENTS));

}





java amazon-web-services aws-sdk amazon-cloudtrail







share|improve this question




























    up vote
    0
    down vote

    favorite
    1












    I am using the AWS CloudTrail processing library to pull Cloudtrail logs from AWS. In the screenshot image of event history below (taken from the CloudTrail web console), the name of the bucket affected by a change is reflected under the column: Resource name . How can I retrieve this same value using the aws-cloudtrail-processing-library. The library returns the name of the bucket where CloudTrail saves the log files and not the affected bucket (highlighted). Also, even after downloading the logs from the bucket, I do not see this information.



    enter image description here



    Here is the snippet of my processing class:



    public class AuditorCloudTrail {
    

    

    
public static void main(String args) throws InterruptedException {
    
    final Log logger = LogFactory.getLog(AuditorCloudTrail.class);
    

    

    

    
    final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(
    
            new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())
    
                    .withProgressReporter(new AuditorProgressReporter()).withEventFilter(new AuditorEventsFilter())
    
                    .withExceptionHandler(new AuditorExceptionHandler()).build();
    
    executor.start();
    

    
    // add shut down hook to gracefully stop executor (optional)
    
    Runtime.getRuntime().addShutdownHook(new Thread() {
    
        public void run() {
    
            logger.info("Shut Down Hook is called.");
    
            executor.stop();
    
        }
    
    });
    

    
    // register a Default Uncaught Exception Handler (optional)
    
    Thread.setDefaultUncaughtExceptionHandler(new Thread.UncaughtExceptionHandler() {
    
        @Override
    
        public void uncaughtException(Thread t, Throwable e) {
    

    
            // Two options here:
    
            // First, we can call System.exit(1); in such case shut down hook will be
    
            // called.
    
            // Second, we can optionally restart another executor and start.
    
            final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(
    
                    new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())
    
                            .withEventFilter(new AuditorEventsFilter())
    
                            .withProgressReporter(new AuditorProgressReporter())
    
                            .withExceptionHandler(new AuditorExceptionHandler()).build();
    
            executor.start();
    

    
        }
    
    });
    

    
    // can optionally limit running time, or remove both lines so it is running
    
    // forever. (optional)
    
    Thread.sleep(24 * 60 * 60 * 1000);
    
    executor.stop();
    
}


    and the method that filters events:



       public boolean filterEvent(CloudTrailEvent event) throws CallbackException {
    
    CloudTrailEventData eventData = event.getEventData();    
    

    
    String eventSource = eventData.getEventSource();    
    

    
    try {
    
        saveEvent(eventData);
    
    } catch (InterruptedException e) {
    
        e.printStackTrace();
    
    }
    

    
    return (eventSource.equals(IAM_EVENTS) || 
    
   eventSource.equals(S3_EVENTS));
    
}





    java amazon-web-services aws-sdk amazon-cloudtrail







    share|improve this question


























      up vote
      0
      down vote

      favorite
      1









      up vote
      0
      down vote

      favorite
      1






      1





      I am using the AWS CloudTrail processing library to pull Cloudtrail logs from AWS. In the screenshot image of event history below (taken from the CloudTrail web console), the name of the bucket affected by a change is reflected under the column: Resource name . How can I retrieve this same value using the aws-cloudtrail-processing-library. The library returns the name of the bucket where CloudTrail saves the log files and not the affected bucket (highlighted). Also, even after downloading the logs from the bucket, I do not see this information.



      enter image description here



      Here is the snippet of my processing class:



      public class AuditorCloudTrail {
      

      

      
public static void main(String args) throws InterruptedException {
      
    final Log logger = LogFactory.getLog(AuditorCloudTrail.class);
      

      

      

      
    final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(
      
            new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())
      
                    .withProgressReporter(new AuditorProgressReporter()).withEventFilter(new AuditorEventsFilter())
      
                    .withExceptionHandler(new AuditorExceptionHandler()).build();
      
    executor.start();
      

      
    // add shut down hook to gracefully stop executor (optional)
      
    Runtime.getRuntime().addShutdownHook(new Thread() {
      
        public void run() {
      
            logger.info("Shut Down Hook is called.");
      
            executor.stop();
      
        }
      
    });
      

      
    // register a Default Uncaught Exception Handler (optional)
      
    Thread.setDefaultUncaughtExceptionHandler(new Thread.UncaughtExceptionHandler() {
      
        @Override
      
        public void uncaughtException(Thread t, Throwable e) {
      

      
            // Two options here:
      
            // First, we can call System.exit(1); in such case shut down hook will be
      
            // called.
      
            // Second, we can optionally restart another executor and start.
      
            final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(
      
                    new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())
      
                            .withEventFilter(new AuditorEventsFilter())
      
                            .withProgressReporter(new AuditorProgressReporter())
      
                            .withExceptionHandler(new AuditorExceptionHandler()).build();
      
            executor.start();
      

      
        }
      
    });
      

      
    // can optionally limit running time, or remove both lines so it is running
      
    // forever. (optional)
      
    Thread.sleep(24 * 60 * 60 * 1000);
      
    executor.stop();
      
}


      and the method that filters events:



         public boolean filterEvent(CloudTrailEvent event) throws CallbackException {
      
    CloudTrailEventData eventData = event.getEventData();    
      

      
    String eventSource = eventData.getEventSource();    
      

      
    try {
      
        saveEvent(eventData);
      
    } catch (InterruptedException e) {
      
        e.printStackTrace();
      
    }
      

      
    return (eventSource.equals(IAM_EVENTS) || 
      
   eventSource.equals(S3_EVENTS));
      
}





      java amazon-web-services aws-sdk amazon-cloudtrail







      share|improve this question















      I am using the AWS CloudTrail processing library to pull Cloudtrail logs from AWS. In the screenshot image of event history below (taken from the CloudTrail web console), the name of the bucket affected by a change is reflected under the column: Resource name . How can I retrieve this same value using the aws-cloudtrail-processing-library. The library returns the name of the bucket where CloudTrail saves the log files and not the affected bucket (highlighted). Also, even after downloading the logs from the bucket, I do not see this information.



      enter image description here



      Here is the snippet of my processing class:



      public class AuditorCloudTrail {
      

      

      
public static void main(String args) throws InterruptedException {
      
    final Log logger = LogFactory.getLog(AuditorCloudTrail.class);
      

      

      

      
    final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(
      
            new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())
      
                    .withProgressReporter(new AuditorProgressReporter()).withEventFilter(new AuditorEventsFilter())
      
                    .withExceptionHandler(new AuditorExceptionHandler()).build();
      
    executor.start();
      

      
    // add shut down hook to gracefully stop executor (optional)
      
    Runtime.getRuntime().addShutdownHook(new Thread() {
      
        public void run() {
      
            logger.info("Shut Down Hook is called.");
      
            executor.stop();
      
        }
      
    });
      

      
    // register a Default Uncaught Exception Handler (optional)
      
    Thread.setDefaultUncaughtExceptionHandler(new Thread.UncaughtExceptionHandler() {
      
        @Override
      
        public void uncaughtException(Thread t, Throwable e) {
      

      
            // Two options here:
      
            // First, we can call System.exit(1); in such case shut down hook will be
      
            // called.
      
            // Second, we can optionally restart another executor and start.
      
            final AWSCloudTrailProcessingExecutor executor = new AWSCloudTrailProcessingExecutor.Builder(
      
                    new AuditorEventsProcessor(), new AuditorCloudTrailConfig()).withSourceFilter(new AuditorSourceFilter())
      
                            .withEventFilter(new AuditorEventsFilter())
      
                            .withProgressReporter(new AuditorProgressReporter())
      
                            .withExceptionHandler(new AuditorExceptionHandler()).build();
      
            executor.start();
      

      
        }
      
    });
      

      
    // can optionally limit running time, or remove both lines so it is running
      
    // forever. (optional)
      
    Thread.sleep(24 * 60 * 60 * 1000);
      
    executor.stop();
      
}


      and the method that filters events:



         public boolean filterEvent(CloudTrailEvent event) throws CallbackException {
      
    CloudTrailEventData eventData = event.getEventData();    
      

      
    String eventSource = eventData.getEventSource();    
      

      
    try {
      
        saveEvent(eventData);
      
    } catch (InterruptedException e) {
      
        e.printStackTrace();
      
    }
      

      
    return (eventSource.equals(IAM_EVENTS) || 
      
   eventSource.equals(S3_EVENTS));
      
}





      java amazon-web-services aws-sdk amazon-cloudtrail




      java amazon-web-services aws-sdk amazon-cloudtrail






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited Nov 9 at 16:52

























      asked Nov 9 at 16:47









      SyCode

      136316




      136316





























          active

          oldest

          votes











          Your Answer






          StackExchange.ifUsing("editor", function () {
          StackExchange.using("externalEditor", function () {
          StackExchange.using("snippets", function () {
          StackExchange.snippets.init();
          });
          });
          }, "code-snippets");

          StackExchange.ready(function() {
          var channelOptions = {
          tags: "".split(" "),
          id: "1"
          };
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function() {
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled) {
          StackExchange.using("snippets", function() {
          createEditor();
          });
          }
          else {
          createEditor();
          }
          });

          function createEditor() {
          StackExchange.prepareEditor({
          heartbeatType: 'answer',
          convertImagesToLinks: true,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: 10,
          bindNavPrevention: true,
          postfix: "",
          imageUploader: {
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          },
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          });


          }
          });














           

          draft saved


          draft discarded


















          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53230009%2fhow-to-get-the-resource-name-while-using-the-aws-cloudtrail-processing-library%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown






























          active

          oldest

          votes













          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes
















           

          draft saved


          draft discarded



















































           


          draft saved


          draft discarded














          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53230009%2fhow-to-get-the-resource-name-while-using-the-aws-cloudtrail-processing-library%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          -

          Popular posts from this blog

          Schultheiß

          Image
          Der Titel dieses Artikels ist mehrdeutig. Weitere Bedeutungen sind unter Schultheiß (Begriffsklärung) aufgeführt. Ein Schultheiß. Holzschnitt von Peter Flötner (16. Jahrhundert) Der Schultheiß oder Schuldheiß (von althochdeutsch  sculdheizo ‚Leistung Befehlender‘, vgl. mittelniederdeutsch  schult(h)ēte , latinisiert (mittellat.) sculte(t)us , schwäbisch heute noch Schultes für „Bürgermeister“) bezeichnet einen in vielen westgermanischen Rechtsordnungen vorgesehenen Beamten, der Schuld heischt : Er hatte im Auftrag seines Herren (Landesherrn, Stadtherrn, Grundherrn) die Mitglieder einer Gemeinde zur Leistung ihrer Schuldigkeit anzuhalten, also Abgaben einzuziehen oder für das Beachten anderer Verpflichtungen Sorge zu tragen. Sprachliche Varianten des Schultheißen sind Schulte , Schultes oder Schulze . Früher wurde zwischen dem Stadtschulzen und dem Dorfschulzen unterschieden. In der städtischen Gerichts- und Gemeindeverfassung war er ein vom städtischen Rat oder vom L...
          Read more

          Verwaltungsgliederung Dänemarks

          Image
          Das Königreich Dänemark umfasst neben dem kontinentaleuropäischen Kernland auch die autonomen Außengebiete Färöer und Grönland. Die staatsrechtliche Einheit von Mutterland und ehemaligen Besitzungen wird als „Reichsgemeinschaft“ (dänisch rigsfællesskabet ) bezeichnet. Die Verwaltungsgliederung des dänischen Kernlandes umfasst seit dem 1. Januar 2007 fünf Regionen und 98 Kommunen. Die Amtsbezirke/Kreise (dän. amt ) wurden im Zuge einer Gebietsreform abgeschafft. Ihre Zuständigkeiten wurden auf Regional- und kommunale Ebene verteilt. Inhaltsverzeichnis 1 Regionen 2 Kommunen 3 Historische Verwaltungsgliederungen 3.1 Älteste Strukturen 3.2 Bistümer (ab 10. Jahrhundert) 3.3 17. und 18. Jahrhundert 3.4 Von 1793 bis 1970 3.5 Von 1970 bis 2007 3.5.1 Fusionen bis Ende 2006 und große Kommunalgebietsreform 4 Literatur 5 Einzelnachweise 6 Weblinks Regionen | → Hauptartikel : Region (Dänemark) Dänemarks Regionen (seit 2007...
          Read more

          Liste der Kulturdenkmale in Wilsdruff

          Image
          Wappen von Wilsdruff Die Liste der Kulturdenkmale in Wilsdruff enthält die Kulturdenkmale in Wilsdruff. Die Anmerkungen sind zu beachten. Diese Liste ist eine Teilliste der Liste der Kulturdenkmale im Landkreis Sächsische Schweiz-Osterzgebirge. Diese Liste ist eine Teilliste der Liste der Kulturdenkmale in Sachsen. Inhaltsverzeichnis 1 Legende 2 Wilsdruff 3 Birkenhain 4 Blankenstein 5 Braunsdorf 6 Grumbach 7 Grund 8 Helbigsdorf 9 Herzogswalde 10 Kaufbach 11 Kesselsdorf 12 Kleinopitz 13 Limbach 14 Mohorn 15 Oberhermsdorf 16 Anmerkungen 17 Ausführliche Denkmaltexte 18 Quellen 19 Weblinks Legende | Bild: zeigt ein Bild des Kulturdenkmals und gegebenenfalls einen Link zu weiteren Fotos des Kulturdenkmals Bezeichnung: Name, Bezeichnung oder die Art des Kulturdenkmals Lage: Straßenname und wenn vorhanden Hausnummer des Kulturdenkmals; Grundsortierung der Liste erfolgt nach dieser A...
          Read more