AWS::MWAAServerless::Workflow EncryptionConfiguration

Configuration for encrypting workflow data at rest and in transit. Amazon Managed Workflows for Apache Airflow Serverless provides comprehensive encryption capabilities to protect sensitive workflow data, parameters, and execution logs. When using customer-managed keys, the service integrates with AWSAWS KMS to provide fine-grained access control and audit capabilities. Encryption is applied consistently across the distributed execution environment including task containers, metadata storage, and log streams.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON


{
  "KmsKeyId" : String,
  "Type" : String
}

YAML


  KmsKeyId: String
  Type: String

Properties

KmsKeyId

The ID or ARN of the AWS KMS key to use for encryption. Required when Type is CUSTOMER_MANAGED_KEY.

Required: No

Type: String

Update requires: Replacement

Type

The type of encryption to use. Values are AWS_MANAGED_KEY (AWS manages the encryption key) or CUSTOMER_MANAGED_KEY (you provide a KMS key).

Required: Yes

Type: String

Allowed values: AWS_MANAGED_KEY | CUSTOMER_MANAGED_KEY

Update requires: Replacement

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

AWS::MWAAServerless::Workflow

LoggingConfiguration