Interface CfnSecurityConfigurationProps
- All Superinterfaces:
software.amazon.jsii.JsiiSerializable
- All Known Implementing Classes:
CfnSecurityConfigurationProps.Jsii$Proxy
@Generated(value="jsii-pacmak/1.119.0 (build 1634eac)",
date="2025-11-13T16:10:05.854Z")
@Stability(Stable)
public interface CfnSecurityConfigurationProps
extends software.amazon.jsii.JsiiSerializable
Properties for defining a
CfnSecurityConfiguration.
Example:
import software.amazon.awscdk.services.emr.*;
CfnSecurityConfiguration cfnSecurityConfiguration = CfnSecurityConfiguration.Builder.create(this, "EmrSecurityConfiguration")
.name("AddStepRuntimeRoleSecConfig")
.securityConfiguration(JSON.parse("\n {\n \"AuthorizationConfiguration\": {\n \"IAMConfiguration\": {\n \"EnableApplicationScopedIAMRole\": true,\n \"ApplicationScopedIAMRoleConfiguration\":\n {\n \"PropagateSourceIdentity\": true\n }\n },\n \"LakeFormationConfiguration\": {\n \"AuthorizedSessionTagValue\": \"Amazon EMR\"\n }\n }\n }"))
.build();
EmrCreateCluster task = EmrCreateCluster.Builder.create(this, "Create Cluster")
.instances(InstancesConfigProperty.builder().build())
.name(TaskInput.fromJsonPathAt("$.ClusterName").getValue())
.securityConfiguration(cfnSecurityConfiguration.getName())
.build();
Role executionRole = Role.Builder.create(this, "Role")
.assumedBy(new ArnPrincipal(task.getClusterRole().getRoleArn()))
.build();
executionRole.assumeRolePolicy.addStatements(
PolicyStatement.Builder.create()
.effect(Effect.ALLOW)
.principals(List.of(task.getClusterRole()))
.actions(List.of("sts:SetSourceIdentity"))
.build(),
PolicyStatement.Builder.create()
.effect(Effect.ALLOW)
.principals(List.of(task.getClusterRole()))
.actions(List.of("sts:TagSession"))
.conditions(Map.of(
"StringEquals", Map.of(
"aws:RequestTag/LakeFormationAuthorizedCaller", "Amazon EMR")))
.build());
EmrAddStep.Builder.create(this, "Task")
.clusterId("ClusterId")
.executionRoleArn(executionRole.getRoleArn())
.name("StepName")
.jar("Jar")
.actionOnFailure(ActionOnFailure.CONTINUE)
.build();
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeInterfaceDescriptionstatic final classA builder forCfnSecurityConfigurationPropsstatic final classAn implementation forCfnSecurityConfigurationProps -
Method Summary
Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson
-
Method Details
-
getSecurityConfiguration
The security configuration details in JSON format.For JSON parameters and examples, see Use Security Configurations to Set Up Cluster Security in the Amazon EMR Management Guide .
- See Also:
-
getName
The name of the security configuration.- See Also:
-
builder
-