CfnSecurityConfigurationPropsMixin
- class aws_cdk.mixins_preview.aws_emrcontainers.mixins.CfnSecurityConfigurationPropsMixin(props, *, strategy=None)
Bases:
MixinResource Schema of AWS::EMRContainers::SecurityConfiguration Type.
- See:
- CloudformationResource:
AWS::EMRContainers::SecurityConfiguration
- Mixin:
true
- ExampleMetadata:
fixture=_generated
Example:
from aws_cdk import CfnTag # The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview import mixins from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins cfn_security_configuration_props_mixin = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin(emrcontainers_mixins.CfnSecurityConfigurationMixinProps( container_provider=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.ContainerProviderProperty( id="id", info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.ContainerInfoProperty( eks_info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.EksInfoProperty( namespace="namespace" ) ), type="type" ), name="name", security_configuration_data=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.SecurityConfigurationDataProperty( authentication_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AuthenticationConfigurationProperty( iam_configuration={ "system_role": "systemRole" }, identity_center_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.IdentityCenterConfigurationProperty( enable_identity_center=False, identity_center_application_assignment_required=False, identity_center_instance_arn="identityCenterInstanceArn" ) ), authorization_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AuthorizationConfigurationProperty( lake_formation_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LakeFormationConfigurationProperty( authorized_session_tag_value="authorizedSessionTagValue", query_access_control_enabled=False, query_engine_role_arn="queryEngineRoleArn", secure_namespace_info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.SecureNamespaceInfoProperty( cluster_id="clusterId", namespace="namespace" ) ) ), encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.EncryptionConfigurationProperty( at_rest_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AtRestEncryptionConfigurationProperty( local_disk_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LocalDiskEncryptionConfigurationProperty( aws_kms_key_id="awsKmsKeyId", encryption_key_provider_type="encryptionKeyProviderType" ), s3_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.S3EncryptionConfigurationProperty( encryption_option="encryptionOption", kms_key_id="kmsKeyId" ) ), in_transit_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.InTransitEncryptionConfigurationProperty( tls_certificate_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.TLSCertificateConfigurationProperty( certificate_provider_type="certificateProviderType", private_key_secret_arn="privateKeySecretArn", public_key_secret_arn="publicKeySecretArn" ) ) ) ), tags=[CfnTag( key="key", value="value" )] ), strategy=mixins.PropertyMergeStrategy.OVERRIDE )
Create a mixin to apply properties to
AWS::EMRContainers::SecurityConfiguration.- Parameters:
props (
Union[CfnSecurityConfigurationMixinProps,Dict[str,Any]]) – L1 properties to apply.strategy (
Optional[PropertyMergeStrategy]) – (experimental) Strategy for merging nested properties. Default: - PropertyMergeStrategy.MERGE
Methods
- apply_to(construct)
Apply the mixin properties to the construct.
- Parameters:
construct (
IConstruct)- Return type:
None
- supports(construct)
Check if this mixin supports the given construct.
- Parameters:
construct (
IConstruct)- Return type:
bool
Attributes
- CFN_PROPERTY_KEYS = ['containerProvider', 'name', 'securityConfigurationData', 'tags']
Static Methods
- classmethod is_mixin(x)
(experimental) Checks if
xis a Mixin.- Parameters:
x (
Any) – Any object.- Return type:
bool- Returns:
true if
xis an object created from a class which extendsMixin.- Stability:
experimental
AtRestEncryptionConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.AtRestEncryptionConfigurationProperty(*, local_disk_encryption_configuration=None, s3_encryption_configuration=None)
Bases:
objectAt-rest encryption configuration.
- Parameters:
local_disk_encryption_configuration (
Union[IResolvable,LocalDiskEncryptionConfigurationProperty,Dict[str,Any],None]) – Local disk encryption configuration.s3_encryption_configuration (
Union[IResolvable,S3EncryptionConfigurationProperty,Dict[str,Any],None]) – S3 encryption configuration.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins at_rest_encryption_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AtRestEncryptionConfigurationProperty( local_disk_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LocalDiskEncryptionConfigurationProperty( aws_kms_key_id="awsKmsKeyId", encryption_key_provider_type="encryptionKeyProviderType" ), s3_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.S3EncryptionConfigurationProperty( encryption_option="encryptionOption", kms_key_id="kmsKeyId" ) )
Attributes
- local_disk_encryption_configuration
Local disk encryption configuration.
- s3_encryption_configuration
S3 encryption configuration.
AuthenticationConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.AuthenticationConfigurationProperty(*, iam_configuration=None, identity_center_configuration=None)
Bases:
objectAuthentication configuration for the security configuration.
- Parameters:
iam_configuration (
Union[IResolvable,IAMConfigurationProperty,Dict[str,Any],None]) – IAM configuration.identity_center_configuration (
Union[IResolvable,IdentityCenterConfigurationProperty,Dict[str,Any],None]) – Identity Center configuration.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins authentication_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AuthenticationConfigurationProperty( iam_configuration={ "system_role": "systemRole" }, identity_center_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.IdentityCenterConfigurationProperty( enable_identity_center=False, identity_center_application_assignment_required=False, identity_center_instance_arn="identityCenterInstanceArn" ) )
Attributes
- iam_configuration
IAM configuration.
- identity_center_configuration
Identity Center configuration.
ContainerInfoProperty
- class CfnSecurityConfigurationPropsMixin.ContainerInfoProperty(*, eks_info=None)
Bases:
objectContainer information.
- Parameters:
eks_info (
Union[IResolvable,EksInfoProperty,Dict[str,Any],None]) – EKS information.- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins container_info_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.ContainerInfoProperty( eks_info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.EksInfoProperty( namespace="namespace" ) )
Attributes
ContainerProviderProperty
- class CfnSecurityConfigurationPropsMixin.ContainerProviderProperty(*, id=None, info=None, type=None)
Bases:
objectContainer provider information.
- Parameters:
id (
Optional[str]) – The container provider ID.info (
Union[IResolvable,ContainerInfoProperty,Dict[str,Any],None]) – Container information.type (
Optional[str]) – The container provider type.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins container_provider_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.ContainerProviderProperty( id="id", info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.ContainerInfoProperty( eks_info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.EksInfoProperty( namespace="namespace" ) ), type="type" )
Attributes
- id
The container provider ID.
- info
Container information.
EksInfoProperty
- class CfnSecurityConfigurationPropsMixin.EksInfoProperty(*, namespace=None)
Bases:
objectEKS information.
- Parameters:
namespace (
Optional[str]) – The EKS namespace.- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins eks_info_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.EksInfoProperty( namespace="namespace" )
Attributes
EncryptionConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.EncryptionConfigurationProperty(*, at_rest_encryption_configuration=None, in_transit_encryption_configuration=None)
Bases:
objectEncryption configuration for the security configuration.
- Parameters:
at_rest_encryption_configuration (
Union[IResolvable,AtRestEncryptionConfigurationProperty,Dict[str,Any],None]) – At-rest encryption configuration.in_transit_encryption_configuration (
Union[IResolvable,InTransitEncryptionConfigurationProperty,Dict[str,Any],None]) – In-transit encryption configuration.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins encryption_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.EncryptionConfigurationProperty( at_rest_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AtRestEncryptionConfigurationProperty( local_disk_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LocalDiskEncryptionConfigurationProperty( aws_kms_key_id="awsKmsKeyId", encryption_key_provider_type="encryptionKeyProviderType" ), s3_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.S3EncryptionConfigurationProperty( encryption_option="encryptionOption", kms_key_id="kmsKeyId" ) ), in_transit_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.InTransitEncryptionConfigurationProperty( tls_certificate_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.TLSCertificateConfigurationProperty( certificate_provider_type="certificateProviderType", private_key_secret_arn="privateKeySecretArn", public_key_secret_arn="publicKeySecretArn" ) ) )
Attributes
- at_rest_encryption_configuration
At-rest encryption configuration.
- in_transit_encryption_configuration
In-transit encryption configuration.
IAMConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.IAMConfigurationProperty(*, system_role=None)
Bases:
objectIAM configuration.
- Parameters:
system_role (
Optional[str]) – The system role ARN.- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins i_aMConfiguration_property = { "system_role": "systemRole" }
Attributes
IdentityCenterConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.IdentityCenterConfigurationProperty(*, enable_identity_center=None, identity_center_application_assignment_required=None, identity_center_instance_arn=None)
Bases:
objectIdentity Center configuration.
- Parameters:
enable_identity_center (
Union[bool,IResolvable,None]) – Whether to enable Identity Center integration.identity_center_application_assignment_required (
Union[bool,IResolvable,None]) – Whether Identity Center application assignment is required.identity_center_instance_arn (
Optional[str]) – The ARN of the Identity Center instance.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins identity_center_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.IdentityCenterConfigurationProperty( enable_identity_center=False, identity_center_application_assignment_required=False, identity_center_instance_arn="identityCenterInstanceArn" )
Attributes
- enable_identity_center
Whether to enable Identity Center integration.
- identity_center_application_assignment_required
Whether Identity Center application assignment is required.
- identity_center_instance_arn
The ARN of the Identity Center instance.
InTransitEncryptionConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.InTransitEncryptionConfigurationProperty(*, tls_certificate_configuration=None)
Bases:
objectIn-transit encryption configuration.
- Parameters:
tls_certificate_configuration (
Union[IResolvable,TLSCertificateConfigurationProperty,Dict[str,Any],None]) – TLS certificate configuration for in-transit encryption.- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins in_transit_encryption_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.InTransitEncryptionConfigurationProperty( tls_certificate_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.TLSCertificateConfigurationProperty( certificate_provider_type="certificateProviderType", private_key_secret_arn="privateKeySecretArn", public_key_secret_arn="publicKeySecretArn" ) )
Attributes
- tls_certificate_configuration
TLS certificate configuration for in-transit encryption.
LakeFormationConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.LakeFormationConfigurationProperty(*, authorized_session_tag_value=None, query_access_control_enabled=None, query_engine_role_arn=None, secure_namespace_info=None)
Bases:
objectLake Formation configuration.
- Parameters:
authorized_session_tag_value (
Optional[str]) – The session tag to authorize Lake Formation access.query_access_control_enabled (
Union[bool,IResolvable,None]) – Whether query access control is enabled.query_engine_role_arn (
Optional[str]) – The ARN of the query engine role.secure_namespace_info (
Union[IResolvable,SecureNamespaceInfoProperty,Dict[str,Any],None]) – Secure namespace information for Lake Formation.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins lake_formation_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LakeFormationConfigurationProperty( authorized_session_tag_value="authorizedSessionTagValue", query_access_control_enabled=False, query_engine_role_arn="queryEngineRoleArn", secure_namespace_info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.SecureNamespaceInfoProperty( cluster_id="clusterId", namespace="namespace" ) )
Attributes
- authorized_session_tag_value
The session tag to authorize Lake Formation access.
- query_access_control_enabled
Whether query access control is enabled.
- query_engine_role_arn
The ARN of the query engine role.
- secure_namespace_info
Secure namespace information for Lake Formation.
LocalDiskEncryptionConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.LocalDiskEncryptionConfigurationProperty(*, aws_kms_key_id=None, encryption_key_provider_type=None)
Bases:
objectLocal disk encryption configuration.
- Parameters:
aws_kms_key_id (
Optional[str]) – The AWS KMS key ID.encryption_key_provider_type (
Optional[str]) – The encryption key provider type.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins local_disk_encryption_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LocalDiskEncryptionConfigurationProperty( aws_kms_key_id="awsKmsKeyId", encryption_key_provider_type="encryptionKeyProviderType" )
Attributes
- aws_kms_key_id
The AWS KMS key ID.
- encryption_key_provider_type
The encryption key provider type.
S3EncryptionConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.S3EncryptionConfigurationProperty(*, encryption_option=None, kms_key_id=None)
Bases:
objectS3 encryption configuration.
- Parameters:
encryption_option (
Optional[str]) – The S3 encryption option.kms_key_id (
Optional[str]) – The KMS key ID for encryption.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins s3_encryption_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.S3EncryptionConfigurationProperty( encryption_option="encryptionOption", kms_key_id="kmsKeyId" )
Attributes
- encryption_option
The S3 encryption option.
SecureNamespaceInfoProperty
- class CfnSecurityConfigurationPropsMixin.SecureNamespaceInfoProperty(*, cluster_id=None, namespace=None)
Bases:
objectSecure namespace information for Lake Formation.
- Parameters:
cluster_id (
Optional[str]) – The ID of the cluster.namespace (
Optional[str]) – The namespace.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins secure_namespace_info_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.SecureNamespaceInfoProperty( cluster_id="clusterId", namespace="namespace" )
Attributes
- cluster_id
The ID of the cluster.
SecurityConfigurationDataProperty
- class CfnSecurityConfigurationPropsMixin.SecurityConfigurationDataProperty(*, authentication_configuration=None, authorization_configuration=None, encryption_configuration=None)
Bases:
objectSecurity configuration data containing encryption and authorization settings.
- Parameters:
authentication_configuration (
Union[IResolvable,AuthenticationConfigurationProperty,Dict[str,Any],None]) – Authentication configuration for the security configuration.authorization_configuration (
Union[IResolvable,AuthorizationConfigurationProperty,Dict[str,Any],None]) – Authorization configuration for the security configuration.encryption_configuration (
Union[IResolvable,EncryptionConfigurationProperty,Dict[str,Any],None]) – Encryption configuration for the security configuration.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins security_configuration_data_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.SecurityConfigurationDataProperty( authentication_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AuthenticationConfigurationProperty( iam_configuration={ "system_role": "systemRole" }, identity_center_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.IdentityCenterConfigurationProperty( enable_identity_center=False, identity_center_application_assignment_required=False, identity_center_instance_arn="identityCenterInstanceArn" ) ), authorization_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AuthorizationConfigurationProperty( lake_formation_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LakeFormationConfigurationProperty( authorized_session_tag_value="authorizedSessionTagValue", query_access_control_enabled=False, query_engine_role_arn="queryEngineRoleArn", secure_namespace_info=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.SecureNamespaceInfoProperty( cluster_id="clusterId", namespace="namespace" ) ) ), encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.EncryptionConfigurationProperty( at_rest_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.AtRestEncryptionConfigurationProperty( local_disk_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.LocalDiskEncryptionConfigurationProperty( aws_kms_key_id="awsKmsKeyId", encryption_key_provider_type="encryptionKeyProviderType" ), s3_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.S3EncryptionConfigurationProperty( encryption_option="encryptionOption", kms_key_id="kmsKeyId" ) ), in_transit_encryption_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.InTransitEncryptionConfigurationProperty( tls_certificate_configuration=emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.TLSCertificateConfigurationProperty( certificate_provider_type="certificateProviderType", private_key_secret_arn="privateKeySecretArn", public_key_secret_arn="publicKeySecretArn" ) ) ) )
Attributes
- authentication_configuration
Authentication configuration for the security configuration.
- authorization_configuration
Authorization configuration for the security configuration.
- encryption_configuration
Encryption configuration for the security configuration.
TLSCertificateConfigurationProperty
- class CfnSecurityConfigurationPropsMixin.TLSCertificateConfigurationProperty(*, certificate_provider_type=None, private_key_secret_arn=None, public_key_secret_arn=None)
Bases:
objectTLS certificate configuration for in-transit encryption.
- Parameters:
certificate_provider_type (
Optional[str]) – The certificate provider type.private_key_secret_arn (
Optional[str]) – The ARN of the secret containing the private key.public_key_secret_arn (
Optional[str]) – The ARN of the secret containing the public key.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_emrcontainers import mixins as emrcontainers_mixins t_lSCertificate_configuration_property = emrcontainers_mixins.CfnSecurityConfigurationPropsMixin.TLSCertificateConfigurationProperty( certificate_provider_type="certificateProviderType", private_key_secret_arn="privateKeySecretArn", public_key_secret_arn="publicKeySecretArn" )
Attributes
- certificate_provider_type
The certificate provider type.
- private_key_secret_arn
The ARN of the secret containing the private key.
- public_key_secret_arn
The ARN of the secret containing the public key.