CfnCodeSigningConfigPropsMixin

class aws_cdk.mixins_preview.aws_lambda.mixins.CfnCodeSigningConfigPropsMixin(props, *, strategy=None)

Bases: Mixin

Details about a Code signing configuration .

See:: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-lambda-codesigningconfig.html
CloudformationResource:: AWS::Lambda::CodeSigningConfig
Mixin:: true
ExampleMetadata:: fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview import mixins
from aws_cdk.mixins_preview.aws_lambda import mixins as lambda_mixins

cfn_code_signing_config_props_mixin = lambda_mixins.CfnCodeSigningConfigPropsMixin(lambda_mixins.CfnCodeSigningConfigMixinProps(
    allowed_publishers=lambda_mixins.CfnCodeSigningConfigPropsMixin.AllowedPublishersProperty(
        signing_profile_version_arns=["signingProfileVersionArns"]
    ),
    code_signing_policies=lambda_mixins.CfnCodeSigningConfigPropsMixin.CodeSigningPoliciesProperty(
        untrusted_artifact_on_deployment="untrustedArtifactOnDeployment"
    ),
    description="description",
    tags=[CfnTag(
        key="key",
        value="value"
    )]
),
    strategy=mixins.PropertyMergeStrategy.OVERRIDE
)

Create a mixin to apply properties to AWS::Lambda::CodeSigningConfig.

Parameters:

props (Union[CfnCodeSigningConfigMixinProps, Dict[str, Any]]) – L1 properties to apply.
strategy (Optional[PropertyMergeStrategy]) – (experimental) Strategy for merging nested properties. Default: - PropertyMergeStrategy.MERGE

Methods

apply_to(construct)

Apply the mixin properties to the construct.

Parameters:: construct (IConstruct)
Return type:: IConstruct

supports(construct)

Check if this mixin supports the given construct.

Parameters:: construct (IConstruct)
Return type:: bool

Attributes

CFN_PROPERTY_KEYS = ['allowedPublishers', 'codeSigningPolicies', 'description', 'tags']

Static Methods

classmethod is_mixin(x)

(experimental) Checks if x is a Mixin.

Parameters:: x (Any) – Any object.
Return type:: bool
Returns:: true if x is an object created from a class which extends Mixin.
Stability:: experimental

AllowedPublishersProperty

class CfnCodeSigningConfigPropsMixin.AllowedPublishersProperty(*, signing_profile_version_arns=None)

Bases: object

List of signing profiles that can sign a code package.

Parameters:: signing_profile_version_arns (Optional[Sequence[str]]) – The Amazon Resource Name (ARN) for each of the signing profiles. A signing profile defines a trusted user who can sign a code package.
See:: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-codesigningconfig-allowedpublishers.html
ExampleMetadata:: fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_lambda import mixins as lambda_mixins

allowed_publishers_property = lambda_mixins.CfnCodeSigningConfigPropsMixin.AllowedPublishersProperty(
    signing_profile_version_arns=["signingProfileVersionArns"]
)

Attributes

signing_profile_version_arns

The Amazon Resource Name (ARN) for each of the signing profiles.

A signing profile defines a trusted user who can sign a code package.

See:: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-codesigningconfig-allowedpublishers.html#cfn-lambda-codesigningconfig-allowedpublishers-signingprofileversionarns

CodeSigningPoliciesProperty

class CfnCodeSigningConfigPropsMixin.CodeSigningPoliciesProperty(*, untrusted_artifact_on_deployment=None)

Bases: object

Code signing configuration policies specify the validation failure action for signature mismatch or expiry.

Parameters:: untrusted_artifact_on_deployment (Optional[str]) – Code signing configuration policy for deployment validation failure. If you set the policy to Enforce , Lambda blocks the deployment request if signature validation checks fail. If you set the policy to Warn , Lambda allows the deployment and issues a new Amazon CloudWatch metric ( SignatureValidationErrors ) and also stores the warning in the CloudTrail log. Default value: Warn Default: - “Warn”
See:: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-codesigningconfig-codesigningpolicies.html
ExampleMetadata:: fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_lambda import mixins as lambda_mixins

code_signing_policies_property = lambda_mixins.CfnCodeSigningConfigPropsMixin.CodeSigningPoliciesProperty(
    untrusted_artifact_on_deployment="untrustedArtifactOnDeployment"
)

Attributes

untrusted_artifact_on_deployment

Code signing configuration policy for deployment validation failure.

If you set the policy to Enforce , Lambda blocks the deployment request if signature validation checks fail. If you set the policy to Warn , Lambda allows the deployment and issues a new Amazon CloudWatch metric ( SignatureValidationErrors ) and also stores the warning in the CloudTrail log.

Default value: Warn

Default:

“Warn”

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-codesigningconfig-codesigningpolicies.html#cfn-lambda-codesigningconfig-codesigningpolicies-untrustedartifactondeployment