Class CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty.Builder
- All Implemented Interfaces:
software.amazon.jsii.Builder<CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty>
- Enclosing interface:
CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionbuild()Builds the configured instance.kmsMasterKeyId(String kmsMasterKeyId) sseAlgorithm(String sseAlgorithm)
-
Constructor Details
-
Builder
public Builder()
-
-
Method Details
-
kmsMasterKeyId
@Stability(Stable) public CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty.Builder kmsMasterKeyId(String kmsMasterKeyId) Sets the value ofCfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty.getKmsMasterKeyId()- Parameters:
kmsMasterKeyId- AWS Key Management Service (KMS) customer managed key ID to use for the default encryption. This parameter is allowed only ifSSEAlgorithmis set toaws:kms.You can specify this parameter with the key ID or the Amazon Resource Name (ARN) of the KMS key. You can’t use the key alias of the KMS key.
- Key ID:
1234abcd-12ab-34cd-56ef-1234567890ab - Key ARN:
arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab
If you are using encryption with cross-account or AWS service operations, you must use a fully qualified KMS key ARN. For more information, see Using encryption for cross-account operations .
Your SSE-KMS configuration can only support 1 customer managed key per directory bucket for the lifetime of the bucket. AWS managed key (
aws/s3) isn't supported. Also, after you specify a customer managed key for SSE-KMS and upload objects with this configuration, you can't override the customer managed key for your SSE-KMS configuration. To use a new customer manager key for your data, we recommend copying your existing objects to a new directory bucket with a new customer managed key. > Amazon S3 only supports symmetric encryption KMS keys. For more information, see Asymmetric keys in AWS KMS in the AWS Key Management Service Developer Guide .- Key ID:
- Returns:
this
-
sseAlgorithm
@Stability(Stable) public CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty.Builder sseAlgorithm(String sseAlgorithm) Sets the value ofCfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty.getSseAlgorithm()- Parameters:
sseAlgorithm- Server-side encryption algorithm to use for the default encryption.For directory buckets, there are only two supported values for server-side encryption:
AES256andaws:kms.- Returns:
this
-
build
@Stability(Stable) public CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty build()Builds the configured instance.- Specified by:
buildin interfacesoftware.amazon.jsii.Builder<CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty>- Returns:
- a new instance of
CfnDirectoryBucketPropsMixin.ServerSideEncryptionByDefaultProperty - Throws:
NullPointerException- if any required attribute was not provided
-