interface CfnSecurityConfigurationProps

Language	Type name
.NET	`Amazon.CDK.AWS.EMRContainers.CfnSecurityConfigurationProps`
Go	`github.com/aws/aws-cdk-go/awscdk/v2/awsemrcontainers#CfnSecurityConfigurationProps`
Java	`software.amazon.awscdk.services.emrcontainers.CfnSecurityConfigurationProps`
Python	`aws_cdk.aws_emrcontainers.CfnSecurityConfigurationProps`
TypeScript	`aws-cdk-lib` » `aws_emrcontainers` » `CfnSecurityConfigurationProps`

Properties for defining a CfnSecurityConfiguration.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_emrcontainers as emrcontainers } from 'aws-cdk-lib';
const cfnSecurityConfigurationProps: emrcontainers.CfnSecurityConfigurationProps = {
  securityConfigurationData: {
    authenticationConfiguration: {
      iamConfiguration: {
        systemRole: 'systemRole',
      },
      identityCenterConfiguration: {
        enableIdentityCenter: false,
        identityCenterApplicationAssignmentRequired: false,
        identityCenterInstanceArn: 'identityCenterInstanceArn',
      },
    },
    authorizationConfiguration: {
      lakeFormationConfiguration: {
        authorizedSessionTagValue: 'authorizedSessionTagValue',
        queryAccessControlEnabled: false,
        queryEngineRoleArn: 'queryEngineRoleArn',
        secureNamespaceInfo: {
          clusterId: 'clusterId',
          namespace: 'namespace',
        },
      },
    },
    encryptionConfiguration: {
      atRestEncryptionConfiguration: {
        localDiskEncryptionConfiguration: {
          awsKmsKeyId: 'awsKmsKeyId',
          encryptionKeyProviderType: 'encryptionKeyProviderType',
        },
        s3EncryptionConfiguration: {
          encryptionOption: 'encryptionOption',
          kmsKeyId: 'kmsKeyId',
        },
      },
      inTransitEncryptionConfiguration: {
        tlsCertificateConfiguration: {
          certificateProviderType: 'certificateProviderType',
          privateKeySecretArn: 'privateKeySecretArn',
          publicKeySecretArn: 'publicKeySecretArn',
        },
      },
    },
  },

  // the properties below are optional
  containerProvider: {
    id: 'id',
    type: 'type',

    // the properties below are optional
    info: {
      eksInfo: {
        namespace: 'namespace',
      },
    },
  },
  name: 'name',
  tags: [{
    key: 'key',
    value: 'value',
  }],
};

Properties

Name	Type	Description
securityConfigurationData	`IResolvable` `\|` `SecurityConfigurationDataProperty`	Security configuration data containing encryption and authorization settings.
containerProvider?	`IResolvable` `\|` `ContainerProviderProperty`	Container provider information.
name?	`string`	The name of the security configuration.
tags?	`CfnTag[]`	An array of key-value pairs to apply to this security configuration.

securityConfigurationData

Type: IResolvable | SecurityConfigurationDataProperty

Security configuration data containing encryption and authorization settings.

containerProvider?

Type: IResolvable | ContainerProviderProperty (optional)

Container provider information.

name?

Type: string (optional)

The name of the security configuration.

tags?

Type: CfnTag[] (optional)

An array of key-value pairs to apply to this security configuration.

AWS CDK

2.237.1