CfnVerifiedAccessInstancePropsMixin

class aws_cdk.mixins_preview.aws_ec2.mixins.CfnVerifiedAccessInstancePropsMixin(props, *, strategy=None)

Bases: Mixin

An AWS Verified Access instance is a regional entity that evaluates application requests and grants access only when your security requirements are met.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html

CloudformationResource:

AWS::EC2::VerifiedAccessInstance

Mixin:

true

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview import mixins
from aws_cdk.mixins_preview.aws_ec2 import mixins as ec2_mixins

cfn_verified_access_instance_props_mixin = ec2_mixins.CfnVerifiedAccessInstancePropsMixin(ec2_mixins.CfnVerifiedAccessInstanceMixinProps(
    cidr_endpoints_custom_sub_domain="cidrEndpointsCustomSubDomain",
    description="description",
    fips_enabled=False,
    logging_configurations=ec2_mixins.CfnVerifiedAccessInstancePropsMixin.VerifiedAccessLogsProperty(
        cloud_watch_logs=ec2_mixins.CfnVerifiedAccessInstancePropsMixin.CloudWatchLogsProperty(
            enabled=False,
            log_group="logGroup"
        ),
        include_trust_context=False,
        kinesis_data_firehose=ec2_mixins.CfnVerifiedAccessInstancePropsMixin.KinesisDataFirehoseProperty(
            delivery_stream="deliveryStream",
            enabled=False
        ),
        log_version="logVersion",
        s3=ec2_mixins.CfnVerifiedAccessInstancePropsMixin.S3Property(
            bucket_name="bucketName",
            bucket_owner="bucketOwner",
            enabled=False,
            prefix="prefix"
        )
    ),
    tags=[CfnTag(
        key="key",
        value="value"
    )],
    verified_access_trust_provider_ids=["verifiedAccessTrustProviderIds"],
    verified_access_trust_providers=[ec2_mixins.CfnVerifiedAccessInstancePropsMixin.VerifiedAccessTrustProviderProperty(
        description="description",
        device_trust_provider_type="deviceTrustProviderType",
        trust_provider_type="trustProviderType",
        user_trust_provider_type="userTrustProviderType",
        verified_access_trust_provider_id="verifiedAccessTrustProviderId"
    )]
),
    strategy=mixins.PropertyMergeStrategy.OVERRIDE
)

Create a mixin to apply properties to AWS::EC2::VerifiedAccessInstance.

Parameters:

• props (Union[CfnVerifiedAccessInstanceMixinProps, Dict[str, Any]]) – L1 properties to apply.

• strategy (Optional[PropertyMergeStrategy]) – (experimental) Strategy for merging nested properties. Default: - PropertyMergeStrategy.MERGE

Methods

apply_to(construct)

Apply the mixin properties to the construct.

Parameters:

construct (IConstruct)

Return type:

IConstruct

supports(construct)

Check if this mixin supports the given construct.

Parameters:

construct (IConstruct)

Return type:

bool

Attributes

CFN_PROPERTY_KEYS = ['cidrEndpointsCustomSubDomain', 'description', 'fipsEnabled', 'loggingConfigurations', 'tags', 'verifiedAccessTrustProviderIds', 'verifiedAccessTrustProviders']

Static Methods

classmethod is_mixin(x)

(experimental) Checks if x is a Mixin.

Parameters:

x (Any) – Any object.

Return type:

bool

Returns:

true if x is an object created from a class which extends Mixin.

Stability:

experimental

CloudWatchLogsProperty

class CfnVerifiedAccessInstancePropsMixin.CloudWatchLogsProperty(*, enabled=None, log_group=None)

Bases: object

Options for CloudWatch Logs as a logging destination.

Parameters:

• enabled (Union[bool, IResolvable, None]) – Indicates whether logging is enabled.

• log_group (Optional[str]) – The ID of the CloudWatch Logs log group.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-cloudwatchlogs.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_ec2 import mixins as ec2_mixins

cloud_watch_logs_property = ec2_mixins.CfnVerifiedAccessInstancePropsMixin.CloudWatchLogsProperty(
    enabled=False,
    log_group="logGroup"
)

Attributes

enabled

Indicates whether logging is enabled.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-cloudwatchlogs.html#cfn-ec2-verifiedaccessinstance-cloudwatchlogs-enabled

log_group

The ID of the CloudWatch Logs log group.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-cloudwatchlogs.html#cfn-ec2-verifiedaccessinstance-cloudwatchlogs-loggroup

KinesisDataFirehoseProperty

class CfnVerifiedAccessInstancePropsMixin.KinesisDataFirehoseProperty(*, delivery_stream=None, enabled=None)

Bases: object

Options for Kinesis as a logging destination.

Parameters:

• delivery_stream (Optional[str]) – The ID of the delivery stream.

• enabled (Union[bool, IResolvable, None]) – Indicates whether logging is enabled.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-kinesisdatafirehose.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_ec2 import mixins as ec2_mixins

kinesis_data_firehose_property = ec2_mixins.CfnVerifiedAccessInstancePropsMixin.KinesisDataFirehoseProperty(
    delivery_stream="deliveryStream",
    enabled=False
)

Attributes

delivery_stream

The ID of the delivery stream.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-kinesisdatafirehose.html#cfn-ec2-verifiedaccessinstance-kinesisdatafirehose-deliverystream

enabled

Indicates whether logging is enabled.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-kinesisdatafirehose.html#cfn-ec2-verifiedaccessinstance-kinesisdatafirehose-enabled

S3Property

class CfnVerifiedAccessInstancePropsMixin.S3Property(*, bucket_name=None, bucket_owner=None, enabled=None, prefix=None)

Bases: object

Options for Amazon S3 as a logging destination.

Parameters:

• bucket_name (Optional[str]) – The bucket name.

• bucket_owner (Optional[str]) – The AWS account number that owns the bucket.

• enabled (Union[bool, IResolvable, None]) – Indicates whether logging is enabled.

• prefix (Optional[str]) – The bucket prefix.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_ec2 import mixins as ec2_mixins

s3_property = ec2_mixins.CfnVerifiedAccessInstancePropsMixin.S3Property(
    bucket_name="bucketName",
    bucket_owner="bucketOwner",
    enabled=False,
    prefix="prefix"
)

Attributes

bucket_name

The bucket name.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-bucketname

bucket_owner

The AWS account number that owns the bucket.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-bucketowner

enabled

Indicates whether logging is enabled.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-enabled

prefix

The bucket prefix.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-prefix

VerifiedAccessLogsProperty

class CfnVerifiedAccessInstancePropsMixin.VerifiedAccessLogsProperty(*, cloud_watch_logs=None, include_trust_context=None, kinesis_data_firehose=None, log_version=None, s3=None)

Bases: object

Describes the options for Verified Access logs.

Parameters:

• cloud_watch_logs (Union[IResolvable, CloudWatchLogsProperty, Dict[str, Any], None]) – CloudWatch Logs logging destination.

• include_trust_context (Union[bool, IResolvable, None]) – Indicates whether to include trust data sent by trust providers in the logs.

• kinesis_data_firehose (Union[IResolvable, KinesisDataFirehoseProperty, Dict[str, Any], None]) – Kinesis logging destination.

• log_version (Optional[str]) – The logging version. Valid values: ocsf-0.1 | ocsf-1.0.0-rc.2

• s3 (Union[IResolvable, S3Property, Dict[str, Any], None]) – Amazon S3 logging options.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_ec2 import mixins as ec2_mixins

verified_access_logs_property = ec2_mixins.CfnVerifiedAccessInstancePropsMixin.VerifiedAccessLogsProperty(
    cloud_watch_logs=ec2_mixins.CfnVerifiedAccessInstancePropsMixin.CloudWatchLogsProperty(
        enabled=False,
        log_group="logGroup"
    ),
    include_trust_context=False,
    kinesis_data_firehose=ec2_mixins.CfnVerifiedAccessInstancePropsMixin.KinesisDataFirehoseProperty(
        delivery_stream="deliveryStream",
        enabled=False
    ),
    log_version="logVersion",
    s3=ec2_mixins.CfnVerifiedAccessInstancePropsMixin.S3Property(
        bucket_name="bucketName",
        bucket_owner="bucketOwner",
        enabled=False,
        prefix="prefix"
    )
)

Attributes

cloud_watch_logs

CloudWatch Logs logging destination.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-cloudwatchlogs

include_trust_context

Indicates whether to include trust data sent by trust providers in the logs.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-includetrustcontext

kinesis_data_firehose

Kinesis logging destination.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-kinesisdatafirehose

log_version

The logging version.

Valid values: ocsf-0.1 | ocsf-1.0.0-rc.2

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-logversion

s3

Amazon S3 logging options.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-s3

VerifiedAccessTrustProviderProperty

class CfnVerifiedAccessInstancePropsMixin.VerifiedAccessTrustProviderProperty(*, description=None, device_trust_provider_type=None, trust_provider_type=None, user_trust_provider_type=None, verified_access_trust_provider_id=None)

Bases: object

A trust provider is a third-party entity that creates, maintains, and manages identity information for users and devices.

When an application request is made, the identity information sent by the trust provider is evaluated by Verified Access before allowing or denying the application request.

Parameters:

• description (Optional[str]) – A description for the AWS Verified Access trust provider.

• device_trust_provider_type (Optional[str]) – The type of device-based trust provider.

• trust_provider_type (Optional[str]) – The type of Verified Access trust provider.

• user_trust_provider_type (Optional[str]) – The type of user-based trust provider.

• verified_access_trust_provider_id (Optional[str]) – The ID of the AWS Verified Access trust provider.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_ec2 import mixins as ec2_mixins

verified_access_trust_provider_property = ec2_mixins.CfnVerifiedAccessInstancePropsMixin.VerifiedAccessTrustProviderProperty(
    description="description",
    device_trust_provider_type="deviceTrustProviderType",
    trust_provider_type="trustProviderType",
    user_trust_provider_type="userTrustProviderType",
    verified_access_trust_provider_id="verifiedAccessTrustProviderId"
)

Attributes

description

A description for the AWS Verified Access trust provider.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-description

device_trust_provider_type

The type of device-based trust provider.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-devicetrustprovidertype

trust_provider_type

The type of Verified Access trust provider.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-trustprovidertype

user_trust_provider_type

The type of user-based trust provider.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-usertrustprovidertype

verified_access_trust_provider_id

The ID of the AWS Verified Access trust provider.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-verifiedaccesstrustproviderid