Amazon IAM Access Analyzer

AWS IAM Access Analyzer API

The AWS IAM Access Analyzer API provides programmatic access to create and manage analyzers, findings, archive rules, and policy validations to identify and remediate unintended resource access across AWS accounts and organizations.

GitHub OpenAPI

Documentation

📖
Documentation
https://docs.aws.amazon.com/access-analyzer/latest/APIReference/Welcome.html
📖
GettingStarted
https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html

Specifications

OpenAPI
https://raw.githubusercontent.com/api-evangelist/amazon-iam-access-analyzer/refs/heads/main/openapi/amazon-iam-access-analyzer-openapi-original.yml

Examples

📝
Example
https://raw.githubusercontent.com/api-evangelist/amazon-iam-access-analyzer/refs/heads/main/examples/iam-access-analyzer-analyzer-example.json

Schemas & Data

📊
JSONSchema
https://raw.githubusercontent.com/api-evangelist/amazon-iam-access-analyzer/refs/heads/main/json-schema/iam-access-analyzer-analyzer-schema.json
📊
JSONStructure
https://raw.githubusercontent.com/api-evangelist/amazon-iam-access-analyzer/refs/heads/main/json-structure/iam-access-analyzer-analyzer-structure.json

Other Resources

🔗
Pricing
https://aws.amazon.com/iam/pricing/
🔗
FAQ
https://aws.amazon.com/iam/faqs/
🔗
NaftikoCapability
https://raw.githubusercontent.com/api-evangelist/amazon-iam-access-analyzer/refs/heads/main/capabilities/amazon-iam-access-analyzer.yaml

OpenAPI Specification

amazon-iam-access-analyzer-openapi-original.yml Raw ↑ 
openapi: 3.0.0
info:
  version: 2019-11-01
  x-release: v4
  title: Access Analyzer
  description: <p>Identity and Access Management Access Analyzer helps identify potential resource-access risks by enabling you to identify any policies that grant access to an external principal. It 
    does this by using logic-based reasoning to analyze resource-based policies in your Amazon Web Services environment. An external principal can be another Amazon Web Services account, a root user, 
    an IAM user or role, a federated user, an Amazon Web Services service, or an anonymous user. You can also use IAM Access Analyzer to preview and validate public and cross-account access to your 
    resources before deploying permissions changes. This guide describes the Identity and Access Management Access Analyzer operations that you can call programmatically. For general information about
    IAM Access Analyzer, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html">Identity and Access Management Access Analyzer</a> in the <b>IAM User 
    Guide</b>.</p> <p>To start using IAM Access Analyzer, you first need to create an analyzer.</p>
  x-logo:
    url: https://api.apis.guru/v2/cache/logo/https_twitter.com_awscloud_profile_image.png
    backgroundColor: "#FFFFFF"
  termsOfService: https://aws.amazon.com/service-terms/
  contact:
    name: Mike Ralphson
    email: [email protected]
    url: https://github.com/mermade/aws2openapi
    x-twitter: PermittedSoc
  license:
    name: Apache 2.0 License
    url: http://www.apache.org/licenses/
  x-providerName: amazonaws.com
  x-serviceName: accessanalyzer
  x-aws-signingName: access-analyzer
  x-origin:
  - contentType: application/json
    url: https://raw.githubusercontent.com/aws/aws-sdk-js/master/apis/accessanalyzer-2019-11-01.normal.json
    converter:
      url: https://github.com/mermade/aws2openapi
      version: 1.0.0
    x-apisguru-driver: external
  x-apiClientRegistration:
    url: https://portal.aws.amazon.com/gp/aws/developer/registration/index.html?nc2=h_ct
  x-apisguru-categories:
  - cloud
  x-preferred: true
externalDocs:
  description: Amazon Web Services documentation
  url: https://docs.aws.amazon.com/access-analyzer/
servers:
- url: http://access-analyzer.{region}.amazonaws.com
  variables:
    region:
      description: The AWS region
      enum:
      - us-east-1
      - us-east-2
      - us-west-1
      - us-west-2
      - us-gov-west-1
      - us-gov-east-1
      - ca-central-1
      - eu-north-1
      - eu-west-1
      - eu-west-2
      - eu-west-3
      - eu-central-1
      - eu-south-1
      - af-south-1
      - ap-northeast-1
      - ap-northeast-2
      - ap-northeast-3
      - ap-southeast-1
      - ap-southeast-2
      - ap-east-1
      - ap-south-1
      - sa-east-1
      - me-south-1
      default: us-east-1
  description: The Access Analyzer multi-region endpoint
- url: https://access-analyzer.{region}.amazonaws.com
  variables:
    region:
      description: The AWS region
      enum:
      - us-east-1
      - us-east-2
      - us-west-1
      - us-west-2
      - us-gov-west-1
      - us-gov-east-1
      - ca-central-1
      - eu-north-1
      - eu-west-1
      - eu-west-2
      - eu-west-3
      - eu-central-1
      - eu-south-1
      - af-south-1
      - ap-northeast-1
      - ap-northeast-2
      - ap-northeast-3
      - ap-southeast-1
      - ap-southeast-2
      - ap-east-1
      - ap-south-1
      - sa-east-1
      - me-south-1
      default: us-east-1
  description: The Access Analyzer multi-region endpoint
- url: http://access-analyzer.{region}.amazonaws.com.cn
  variables:
    region:
      description: The AWS region
      enum:
      - cn-north-1
      - cn-northwest-1
      default: cn-north-1
  description: The Access Analyzer endpoint for China (Beijing) and China (Ningxia)
- url: https://access-analyzer.{region}.amazonaws.com.cn
  variables:
    region:
      description: The AWS region
      enum:
      - cn-north-1
      - cn-northwest-1
      default: cn-north-1
  description: The Access Analyzer endpoint for China (Beijing) and China (Ningxia)
x-hasEquivalentPaths: true
paths:
  /archive-rule:
    put:
      operationId: ApplyArchiveRule
      description: Retroactively applies the archive rule to existing findings that meet the archive rule criteria.
      responses:
        "200":
          description: Success
        "480":
          description: ResourceNotFoundException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ResourceNotFoundException"
        "481":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "482":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "483":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "484":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters: []
      requestBody:
        required: true
        content:
          application/json:
            schema:
              type: object
              required:
              - analyzerArn
              - ruleName
              properties:
                analyzerArn:
                  description: The Amazon resource name (ARN) of the analyzer.
                  type: string
                  pattern: "[^:]*:[^:]*:[^:]*:[^:]*:[^:]*:analyzer/.{1,255}"
                ruleName:
                  description: The name of the rule to apply.
                  type: string
                  pattern: "[A-Za-z][A-Za-z0-9_.-]*"
                  minLength: 1
                  maxLength: 255
                clientToken:
                  description: A client token.
                  type: string
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Apply Archive Rule
    parameters:
    - $ref: "#/components/parameters/X-Amz-Content-Sha256"
    - $ref: "#/components/parameters/X-Amz-Date"
    - $ref: "#/components/parameters/X-Amz-Algorithm"
    - $ref: "#/components/parameters/X-Amz-Credential"
    - $ref: "#/components/parameters/X-Amz-Security-Token"
    - $ref: "#/components/parameters/X-Amz-Signature"
    - $ref: "#/components/parameters/X-Amz-SignedHeaders"
  "/policy/generation/{jobId}":
    put:
      operationId: CancelPolicyGeneration
      description: Cancels the requested policy generation.
      responses:
        "200":
          description: Success
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/CancelPolicyGenerationResponse"
        "480":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "481":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "482":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "483":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: jobId
        in: path
        required: true
        description: The <code>JobId</code> that is returned by the <code>StartPolicyGeneration</code> operation. The <code>JobId</code> can be used with <code>GetGeneratedPolicy</code> to retrieve 
          the generated policies or used with <code>CancelPolicyGeneration</code> to cancel the policy generation request.
        schema:
          type: string
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Cancel Policy Generation
    parameters:
    - $ref: "#/components/parameters/X-Amz-Content-Sha256"
    - $ref: "#/components/parameters/X-Amz-Date"
    - $ref: "#/components/parameters/X-Amz-Algorithm"
    - $ref: "#/components/parameters/X-Amz-Credential"
    - $ref: "#/components/parameters/X-Amz-Security-Token"
    - $ref: "#/components/parameters/X-Amz-Signature"
    - $ref: "#/components/parameters/X-Amz-SignedHeaders"
    get:
      operationId: GetGeneratedPolicy
      description: "Retrieves the policy that was generated using <code>StartPolicyGeneration</code>. "
      responses:
        "200":
          description: Success
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/GetGeneratedPolicyResponse"
        "480":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "481":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "482":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "483":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: jobId
        in: path
        required: true
        description: The <code>JobId</code> that is returned by the <code>StartPolicyGeneration</code> operation. The <code>JobId</code> can be used with <code>GetGeneratedPolicy</code> to retrieve 
          the generated policies or used with <code>CancelPolicyGeneration</code> to cancel the policy generation request.
        schema:
          type: string
      - name: includeResourcePlaceholders
        in: query
        required: false
        description: <p>The level of detail that you want to generate. You can specify whether to generate policies with placeholders for resource ARNs for actions that support resource level 
          granularity in policies.</p> <p>For example, in the resource section of a policy, you can receive a placeholder such as <code>"Resource":"arn:aws:s3:::${BucketName}"</code> instead of 
          <code>"*"</code>.</p>
        schema:
          type: boolean
      - name: includeServiceLevelTemplate
        in: query
        required: false
        description: <p>The level of detail that you want to generate. You can specify whether to generate service-level policies. </p> <p>IAM Access Analyzer uses <code>iam:servicelastaccessed</code>
          to identify services that have been used recently to create this service-level template.</p>
        schema:
          type: boolean
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Get Generated Policy
  /access-preview:
    put:
      operationId: CreateAccessPreview
      description: Creates an access preview that allows you to preview IAM Access Analyzer findings for your resource before deploying resource permissions.
      responses:
        "200":
          description: Success
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/CreateAccessPreviewResponse"
        "480":
          description: ResourceNotFoundException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ResourceNotFoundException"
        "481":
          description: ConflictException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ConflictException"
        "482":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "483":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "484":
          description: ServiceQuotaExceededException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ServiceQuotaExceededException"
        "485":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "486":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters: []
      requestBody:
        required: true
        content:
          application/json:
            schema:
              type: object
              required:
              - analyzerArn
              - configurations
              properties:
                analyzerArn:
                  description: The <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html#permission-resources">ARN of the account analyzer</a> used to generate
                    the access preview. You can only create an access preview for analyzers with an <code>Account</code> type and <code>Active</code> status.
                  type: string
                  pattern: "[^:]*:[^:]*:[^:]*:[^:]*:[^:]*:analyzer/.{1,255}"
                configurations:
                  description: Access control configuration for your resource that is used to generate the access preview. The access preview includes findings for external access allowed to the 
                    resource with the proposed access control configuration. The configuration must contain exactly one element.
                  type: object
                  additionalProperties:
                    $ref: "#/components/schemas/Configuration"
                clientToken:
                  description: A client token.
                  type: string
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Create Access Preview
    parameters:
    - $ref: "#/components/parameters/X-Amz-Content-Sha256"
    - $ref: "#/components/parameters/X-Amz-Date"
    - $ref: "#/components/parameters/X-Amz-Algorithm"
    - $ref: "#/components/parameters/X-Amz-Credential"
    - $ref: "#/components/parameters/X-Amz-Security-Token"
    - $ref: "#/components/parameters/X-Amz-Signature"
    - $ref: "#/components/parameters/X-Amz-SignedHeaders"
  /analyzer:
    put:
      operationId: CreateAnalyzer
      description: Creates an analyzer for your account.
      responses:
        "200":
          description: Success
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/CreateAnalyzerResponse"
        "480":
          description: ConflictException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ConflictException"
        "481":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "482":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "483":
          description: ServiceQuotaExceededException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ServiceQuotaExceededException"
        "484":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "485":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters: []
      requestBody:
        required: true
        content:
          application/json:
            schema:
              type: object
              required:
              - analyzerName
              - type
              properties:
                analyzerName:
                  description: The name of the analyzer to create.
                  type: string
                  pattern: "[A-Za-z][A-Za-z0-9_.-]*"
                  minLength: 1
                  maxLength: 255
                type:
                  description: The type of analyzer to create. Only ACCOUNT and ORGANIZATION analyzers are supported. You can create only one analyzer per account per Region. You can create up to 5 
                    analyzers per organization per Region.
                  type: string
                  enum:
                  - ACCOUNT
                  - ORGANIZATION
                archiveRules:
                  description: Specifies the archive rules to add for the analyzer. Archive rules automatically archive findings that meet the criteria you define for the rule.
                  type: array
                  items:
                    $ref: "#/components/schemas/InlineArchiveRule"
                tags:
                  description: The tags to apply to the analyzer.
                  type: object
                  additionalProperties:
                    $ref: "#/components/schemas/String"
                clientToken:
                  description: A client token.
                  type: string
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Create Analyzer
    parameters:
    - $ref: "#/components/parameters/X-Amz-Content-Sha256"
    - $ref: "#/components/parameters/X-Amz-Date"
    - $ref: "#/components/parameters/X-Amz-Algorithm"
    - $ref: "#/components/parameters/X-Amz-Credential"
    - $ref: "#/components/parameters/X-Amz-Security-Token"
    - $ref: "#/components/parameters/X-Amz-Signature"
    - $ref: "#/components/parameters/X-Amz-SignedHeaders"
    get:
      operationId: ListAnalyzers
      description: Retrieves a list of analyzers.
      responses:
        "200":
          description: Success
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ListAnalyzersResponse"
        "480":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "481":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "482":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "483":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: nextToken
        in: query
        required: false
        description: A token used for pagination of results returned.
        schema:
          type: string
      - name: maxResults
        in: query
        required: false
        description: The maximum number of results to return in the response.
        schema:
          type: integer
      - name: type
        in: query
        required: false
        description: The type of analyzer.
        schema:
          type: string
          enum:
          - ACCOUNT
          - ORGANIZATION
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer List Analyzers
  "/analyzer/{analyzerName}/archive-rule":
    put:
      operationId: CreateArchiveRule
      description: <p>Creates an archive rule for the specified analyzer. Archive rules automatically archive new findings that meet the criteria you define when you create the rule.</p> <p>To learn 
        about filter keys that you can use to create an archive rule, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html">IAM Access Analyzer 
        filter keys</a> in the <b>IAM User Guide</b>.</p>
      responses:
        "200":
          description: Success
        "480":
          description: ResourceNotFoundException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ResourceNotFoundException"
        "481":
          description: ConflictException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ConflictException"
        "482":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "483":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "484":
          description: ServiceQuotaExceededException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ServiceQuotaExceededException"
        "485":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "486":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: analyzerName
        in: path
        required: true
        description: The name of the created analyzer.
        schema:
          type: string
          pattern: "[A-Za-z][A-Za-z0-9_.-]*"
          minLength: 1
          maxLength: 255
      requestBody:
        required: true
        content:
          application/json:
            schema:
              type: object
              required:
              - ruleName
              - filter
              properties:
                ruleName:
                  description: The name of the rule to create.
                  type: string
                  pattern: "[A-Za-z][A-Za-z0-9_.-]*"
                  minLength: 1
                  maxLength: 255
                filter:
                  description: The criteria for the rule.
                  type: object
                  additionalProperties:
                    $ref: "#/components/schemas/Criterion"
                clientToken:
                  description: A client token.
                  type: string
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Create Archive Rule
    parameters:
    - $ref: "#/components/parameters/X-Amz-Content-Sha256"
    - $ref: "#/components/parameters/X-Amz-Date"
    - $ref: "#/components/parameters/X-Amz-Algorithm"
    - $ref: "#/components/parameters/X-Amz-Credential"
    - $ref: "#/components/parameters/X-Amz-Security-Token"
    - $ref: "#/components/parameters/X-Amz-Signature"
    - $ref: "#/components/parameters/X-Amz-SignedHeaders"
    get:
      operationId: ListArchiveRules
      description: Retrieves a list of archive rules created for the specified analyzer.
      responses:
        "200":
          description: Success
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ListArchiveRulesResponse"
        "480":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "481":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "482":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "483":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: analyzerName
        in: path
        required: true
        description: The name of the analyzer to retrieve rules from.
        schema:
          type: string
          pattern: "[A-Za-z][A-Za-z0-9_.-]*"
          minLength: 1
          maxLength: 255
      - name: nextToken
        in: query
        required: false
        description: A token used for pagination of results returned.
        schema:
          type: string
      - name: maxResults
        in: query
        required: false
        description: The maximum number of results to return in the request.
        schema:
          type: integer
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer List Archive Rules
  "/analyzer/{analyzerName}":
    delete:
      operationId: DeleteAnalyzer
      description: Deletes the specified analyzer. When you delete an analyzer, IAM Access Analyzer is disabled for the account or organization in the current or specific Region. All findings that 
        were generated by the analyzer are deleted. You cannot undo this action.
      responses:
        "200":
          description: Success
        "480":
          description: ResourceNotFoundException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ResourceNotFoundException"
        "481":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "482":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "483":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "484":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: analyzerName
        in: path
        required: true
        description: The name of the analyzer to delete.
        schema:
          type: string
          pattern: "[A-Za-z][A-Za-z0-9_.-]*"
          minLength: 1
          maxLength: 255
      - name: clientToken
        in: query
        required: false
        description: A client token.
        schema:
          type: string
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Delete Analyzer
    parameters:
    - $ref: "#/components/parameters/X-Amz-Content-Sha256"
    - $ref: "#/components/parameters/X-Amz-Date"
    - $ref: "#/components/parameters/X-Amz-Algorithm"
    - $ref: "#/components/parameters/X-Amz-Credential"
    - $ref: "#/components/parameters/X-Amz-Security-Token"
    - $ref: "#/components/parameters/X-Amz-Signature"
    - $ref: "#/components/parameters/X-Amz-SignedHeaders"
    get:
      operationId: GetAnalyzer
      description: Retrieves information about the specified analyzer.
      responses:
        "200":
          description: Success
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/GetAnalyzerResponse"
        "480":
          description: ResourceNotFoundException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ResourceNotFoundException"
        "481":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "482":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "483":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "484":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: analyzerName
        in: path
        required: true
        description: The name of the analyzer retrieved.
        schema:
          type: string
          pattern: "[A-Za-z][A-Za-z0-9_.-]*"
          minLength: 1
          maxLength: 255
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Get Analyzer
  "/analyzer/{analyzerName}/archive-rule/{ruleName}":
    delete:
      operationId: DeleteArchiveRule
      description: Deletes the specified archive rule.
      responses:
        "200":
          description: Success
        "480":
          description: ResourceNotFoundException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ResourceNotFoundException"
        "481":
          description: ValidationException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ValidationException"
        "482":
          description: InternalServerException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/InternalServerException"
        "483":
          description: ThrottlingException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ThrottlingException"
        "484":
          description: AccessDeniedException
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/AccessDeniedException"
      parameters:
      - name: analyzerName
        in: path
        required: true
        description: The name of the analyzer that associated with the archive rule to delete.
        schema:
          type: string
          pattern: "[A-Za-z][A-Za-z0-9_.-]*"
          minLength: 1
          maxLength: 255
      - name: ruleName
        in: path
        required: true
        description: The name of the rule to delete.
        schema:
          type: string
          pattern: "[A-Za-z][A-Za-z0-9_.-]*"
          minLength: 1
          maxLength: 255
      - name: clientToken
        in: query
        required: false
        description: A client token.
        schema:
          type: string
      x-microcks-operation:
        delay: 0
        dispatcher: FALLBACK
      summary: Amazon IAM Access Analyzer Delete Archive Rule
    parameters:
    - $ref: "#/components/parameters/X-Amz-Content-Sha256"
    - $ref: "#/components/parameters/X-Amz-Date"
    - $ref: "#/components/parameters/X-Amz-Algorithm"
    - $ref: "#/components/parameters/X-Amz-Credential"
    - $ref: "#/components/parameters/X-Amz-Security-Token"
    - $ref: "#/components/parameters/X-Amz-Signature"
    - $ref: "#/components/parameters/X-Amz-SignedHeaders"
    get:
      operatio

# --- truncated at 32 KB (185 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/amazon-iam-access-analyzer/refs/heads/main/openapi/amazon-iam-access-analyzer-openapi-original.yml