DefaultAuthScheme

class aws_cdk.aws_rds.DefaultAuthScheme(*values)

Bases: Enum

The default authentication scheme that the proxy uses for client connections to the proxy and connections from the proxy to the underlying database.

ExampleMetadata:

infused

Example:

# vpc: ec2.Vpc

instance = rds.DatabaseInstance(self, "Database",
    engine=rds.DatabaseInstanceEngine.postgres(
        version=rds.PostgresEngineVersion.VER_17_7
    ),
    vpc=vpc,
    iam_authentication=True
)

proxy = rds.DatabaseProxy(self, "Proxy",
    proxy_target=rds.ProxyTarget.from_instance(instance),
    vpc=vpc,
    default_auth_scheme=rds.DefaultAuthScheme.IAM_AUTH
)

# Grant IAM permissions for database connection
role = iam.Role(self, "DBRole", assumed_by=iam.AccountPrincipal(self.account))
proxy.grant_connect(role, "database-user")

Attributes

IAM_AUTH

IAM authentication.

NONE

No default authentication.