Interface ISecretTargetAttachment.Jsii$Default
- All Superinterfaces:
software.constructs.IConstruct,software.constructs.IConstruct.Jsii$Default,software.constructs.IDependable,software.constructs.IDependable.Jsii$Default,IEnvironmentAware,IEnvironmentAware.Jsii$Default,IResource,IResource.Jsii$Default,ISecret,ISecret.Jsii$Default,ISecretTargetAttachment,software.amazon.jsii.JsiiSerializable
- All Known Implementing Classes:
ISecretTargetAttachment.Jsii$Proxy
- Enclosing interface:
ISecretTargetAttachment
@Internal
public static interface ISecretTargetAttachment.Jsii$Default
extends ISecretTargetAttachment, ISecret.Jsii$Default
Internal default implementation for
ISecretTargetAttachment.-
Nested Class Summary
Nested classes/interfaces inherited from interface software.constructs.IConstruct
software.constructs.IConstruct.Jsii$Default, software.constructs.IConstruct.Jsii$ProxyNested classes/interfaces inherited from interface software.constructs.IDependable
software.constructs.IDependable.Jsii$Default, software.constructs.IDependable.Jsii$ProxyNested classes/interfaces inherited from interface software.amazon.awscdk.interfaces.IEnvironmentAware
IEnvironmentAware.Jsii$Default, IEnvironmentAware.Jsii$ProxyNested classes/interfaces inherited from interface software.amazon.awscdk.IResource
IResource.Jsii$Default, IResource.Jsii$ProxyNested classes/interfaces inherited from interface software.amazon.awscdk.services.secretsmanager.ISecret
ISecret.Jsii$Default, ISecret.Jsii$ProxyNested classes/interfaces inherited from interface software.amazon.awscdk.services.secretsmanager.ISecretTargetAttachment
ISecretTargetAttachment.Jsii$Default, ISecretTargetAttachment.Jsii$Proxy -
Method Summary
Modifier and TypeMethodDescriptiondefault RotationScheduleaddRotationSchedule(String id, RotationScheduleOptions options) Adds a rotation schedule to the secret.default AddToResourcePolicyResultaddToResourcePolicy(PolicyStatement statement) Adds a statement to the IAM resource policy associated with this secret.default voidapplyRemovalPolicy(RemovalPolicy policy) Apply the given removal policy to this resource.default ISecretattach(ISecretAttachmentTarget target) Attach a target to this secret.default StringReturns a key which can be used within an AWS CloudFormation dynamic reference to dynamically load this secret from AWS Secrets Manager.default voidDenies theDeleteSecretaction to all principals within the current account.default IKeyThe customer-managed encryption key that is used to encrypt this secret, if any.default ResourceEnvironmentgetEnv()The environment this resource belongs to.default software.constructs.NodegetNode()The tree node.default StringThe ARN of the secret in AWS Secrets Manager.default StringThe full ARN of the secret in AWS Secrets Manager, which is the ARN including the Secrets Manager-supplied 6-character suffix.default StringThe name of the secret.default StringSame assecretArn.default SecretValueRetrieve the value of the stored secret as aSecretValue.default StackgetStack()The stack in which this resource is defined.default GrantgrantRead(IGrantable grantee, List<String> versionStages) Grants reading the secret value to some role.default GrantgrantWrite(IGrantable grantee) Grants writing and updating the secret value to some role.default SecretValueInterpret the secret as a JSON object and return a field's value from it as aSecretValue.Methods inherited from interface software.amazon.awscdk.services.secretsmanager.ISecret
cfnDynamicReferenceKey, grantReadMethods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson
-
Method Details
-
getNode
@Stability(Stable) @NotNull default software.constructs.Node getNode()The tree node.- Specified by:
getNodein interfacesoftware.constructs.IConstruct- Specified by:
getNodein interfacesoftware.constructs.IConstruct.Jsii$Default- Specified by:
getNodein interfaceIResource.Jsii$Default- Specified by:
getNodein interfaceISecret.Jsii$Default
-
getEnv
The environment this resource belongs to.For resources that are created and managed in a Stack (those created by creating new class instances like
new Role(),new Bucket(), etc.), this is always the same as the environment of the stack they belong to.For referenced resources (those obtained from referencing methods like
Role.fromRoleArn(),Bucket.fromBucketName(), etc.), they might be different than the stack they were imported into.- Specified by:
getEnvin interfaceIEnvironmentAware- Specified by:
getEnvin interfaceIEnvironmentAware.Jsii$Default- Specified by:
getEnvin interfaceIResource.Jsii$Default- Specified by:
getEnvin interfaceISecret.Jsii$Default
-
getStack
The stack in which this resource is defined.- Specified by:
getStackin interfaceIResource- Specified by:
getStackin interfaceIResource.Jsii$Default- Specified by:
getStackin interfaceISecret.Jsii$Default
-
getSecretArn
The ARN of the secret in AWS Secrets Manager.Will return the full ARN if available, otherwise a partial arn. For secrets imported by the deprecated
fromSecretName, it will return thesecretName.- Specified by:
getSecretArnin interfaceISecret- Specified by:
getSecretArnin interfaceISecret.Jsii$Default
-
getSecretName
The name of the secret.For "owned" secrets, this will be the full resource name (secret name + suffix), unless the '@aws-cdk/aws-secretsmanager:parseOwnedSecretName' feature flag is set.
- Specified by:
getSecretNamein interfaceISecret- Specified by:
getSecretNamein interfaceISecret.Jsii$Default
-
getSecretValue
Retrieve the value of the stored secret as aSecretValue.- Specified by:
getSecretValuein interfaceISecret- Specified by:
getSecretValuein interfaceISecret.Jsii$Default
-
getEncryptionKey
The customer-managed encryption key that is used to encrypt this secret, if any.When not specified, the default KMS key for the account and region is being used.
- Specified by:
getEncryptionKeyin interfaceISecret- Specified by:
getEncryptionKeyin interfaceISecret.Jsii$Default
-
getSecretFullArn
The full ARN of the secret in AWS Secrets Manager, which is the ARN including the Secrets Manager-supplied 6-character suffix.This is equal to
secretArnin most cases, but is undefined when a full ARN is not available (e.g., secrets imported by name).- Specified by:
getSecretFullArnin interfaceISecret- Specified by:
getSecretFullArnin interfaceISecret.Jsii$Default
-
getSecretTargetAttachmentSecretArn
Same assecretArn.- Specified by:
getSecretTargetAttachmentSecretArnin interfaceISecretTargetAttachment
-
applyRemovalPolicy
Apply the given removal policy to this resource.The Removal Policy controls what happens to this resource when it stops being managed by CloudFormation, either because you've removed it from the CDK application or because you've made a change that requires the resource to be replaced.
The resource can be deleted (
RemovalPolicy.DESTROY), or left in your AWS account for data recovery and cleanup later (RemovalPolicy.RETAIN).- Specified by:
applyRemovalPolicyin interfaceIResource- Specified by:
applyRemovalPolicyin interfaceIResource.Jsii$Default- Specified by:
applyRemovalPolicyin interfaceISecret.Jsii$Default- Parameters:
policy- This parameter is required.
-
addRotationSchedule
@Stability(Stable) @NotNull default RotationSchedule addRotationSchedule(@NotNull String id, @NotNull RotationScheduleOptions options) Adds a rotation schedule to the secret.- Specified by:
addRotationSchedulein interfaceISecret- Specified by:
addRotationSchedulein interfaceISecret.Jsii$Default- Parameters:
id- This parameter is required.options- This parameter is required.
-
addToResourcePolicy
@Stability(Stable) @NotNull default AddToResourcePolicyResult addToResourcePolicy(@NotNull PolicyStatement statement) Adds a statement to the IAM resource policy associated with this secret.If this secret was created in this stack, a resource policy will be automatically created upon the first call to
addToResourcePolicy. If the secret is imported, then this is a no-op.- Specified by:
addToResourcePolicyin interfaceISecret- Specified by:
addToResourcePolicyin interfaceISecret.Jsii$Default- Parameters:
statement- This parameter is required.
-
attach
Attach a target to this secret.- Specified by:
attachin interfaceISecret- Specified by:
attachin interfaceISecret.Jsii$Default- Parameters:
target- The target to attach. This parameter is required.- Returns:
- An attached secret
-
cfnDynamicReferenceKey
@Stability(Stable) @NotNull default String cfnDynamicReferenceKey(@Nullable SecretsManagerSecretOptions options) Returns a key which can be used within an AWS CloudFormation dynamic reference to dynamically load this secret from AWS Secrets Manager.- Specified by:
cfnDynamicReferenceKeyin interfaceISecret- Specified by:
cfnDynamicReferenceKeyin interfaceISecret.Jsii$Default- Parameters:
options- Options.- See Also:
-
denyAccountRootDelete
@Stability(Stable) default void denyAccountRootDelete()Denies theDeleteSecretaction to all principals within the current account.- Specified by:
denyAccountRootDeletein interfaceISecret- Specified by:
denyAccountRootDeletein interfaceISecret.Jsii$Default
-
grantRead
@Stability(Stable) @NotNull default Grant grantRead(@NotNull IGrantable grantee, @Nullable List<String> versionStages) Grants reading the secret value to some role.- Specified by:
grantReadin interfaceISecret- Specified by:
grantReadin interfaceISecret.Jsii$Default- Parameters:
grantee- the principal being granted permission. This parameter is required.versionStages- the version stages the grant is limited to.
-
grantWrite
Grants writing and updating the secret value to some role.- Specified by:
grantWritein interfaceISecret- Specified by:
grantWritein interfaceISecret.Jsii$Default- Parameters:
grantee- the principal being granted permission. This parameter is required.
-
secretValueFromJson
Interpret the secret as a JSON object and return a field's value from it as aSecretValue.- Specified by:
secretValueFromJsonin interfaceISecret- Specified by:
secretValueFromJsonin interfaceISecret.Jsii$Default- Parameters:
key- This parameter is required.
-