CfnSecurityConfigurationProps
- class aws_cdk.aws_emrcontainers.CfnSecurityConfigurationProps(*, security_configuration_data, container_provider=None, name=None, tags=None)
Bases:
objectProperties for defining a
CfnSecurityConfiguration.- Parameters:
security_configuration_data (
Union[IResolvable,SecurityConfigurationDataProperty,Dict[str,Any]]) – Security configuration data containing encryption and authorization settings.container_provider (
Union[IResolvable,ContainerProviderProperty,Dict[str,Any],None]) – Container provider information.name (
Optional[str]) – The name of the security configuration.tags (
Optional[Sequence[Union[CfnTag,Dict[str,Any]]]]) – An array of key-value pairs to apply to this security configuration.
- See:
- ExampleMetadata:
fixture=_generated
Example:
from aws_cdk import CfnTag # The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk import aws_emrcontainers as emrcontainers cfn_security_configuration_props = emrcontainers.CfnSecurityConfigurationProps( security_configuration_data=emrcontainers.CfnSecurityConfiguration.SecurityConfigurationDataProperty( authentication_configuration=emrcontainers.CfnSecurityConfiguration.AuthenticationConfigurationProperty( iam_configuration={ "system_role": "systemRole" }, identity_center_configuration=emrcontainers.CfnSecurityConfiguration.IdentityCenterConfigurationProperty( enable_identity_center=False, identity_center_application_assignment_required=False, identity_center_instance_arn="identityCenterInstanceArn" ) ), authorization_configuration=emrcontainers.CfnSecurityConfiguration.AuthorizationConfigurationProperty( lake_formation_configuration=emrcontainers.CfnSecurityConfiguration.LakeFormationConfigurationProperty( authorized_session_tag_value="authorizedSessionTagValue", query_access_control_enabled=False, query_engine_role_arn="queryEngineRoleArn", secure_namespace_info=emrcontainers.CfnSecurityConfiguration.SecureNamespaceInfoProperty( cluster_id="clusterId", namespace="namespace" ) ) ), encryption_configuration=emrcontainers.CfnSecurityConfiguration.EncryptionConfigurationProperty( at_rest_encryption_configuration=emrcontainers.CfnSecurityConfiguration.AtRestEncryptionConfigurationProperty( local_disk_encryption_configuration=emrcontainers.CfnSecurityConfiguration.LocalDiskEncryptionConfigurationProperty( aws_kms_key_id="awsKmsKeyId", encryption_key_provider_type="encryptionKeyProviderType" ), s3_encryption_configuration=emrcontainers.CfnSecurityConfiguration.S3EncryptionConfigurationProperty( encryption_option="encryptionOption", kms_key_id="kmsKeyId" ) ), in_transit_encryption_configuration=emrcontainers.CfnSecurityConfiguration.InTransitEncryptionConfigurationProperty( tls_certificate_configuration=emrcontainers.CfnSecurityConfiguration.TLSCertificateConfigurationProperty( certificate_provider_type="certificateProviderType", private_key_secret_arn="privateKeySecretArn", public_key_secret_arn="publicKeySecretArn" ) ) ) ), # the properties below are optional container_provider=emrcontainers.CfnSecurityConfiguration.ContainerProviderProperty( id="id", type="type", # the properties below are optional info=emrcontainers.CfnSecurityConfiguration.ContainerInfoProperty( eks_info=emrcontainers.CfnSecurityConfiguration.EksInfoProperty( namespace="namespace" ) ) ), name="name", tags=[CfnTag( key="key", value="value" )] )
Attributes
- container_provider
Container provider information.
- name
The name of the security configuration.
- security_configuration_data
Security configuration data containing encryption and authorization settings.
- tags
An array of key-value pairs to apply to this security configuration.