This is the new *CloudFormation Template Reference Guide*. Please update your bookmarks and links. For help getting started with CloudFormation, see the [AWS CloudFormation User Guide](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/Welcome.html). # AWS::Transfer::WebApp Creates a web app based on specified parameters, and returns the ID for the new web app. You can configure the web app to be publicly accessible or hosted within a VPC. For more information about using VPC endpoints with AWS Transfer Family, see [Create a Transfer Family web app in a VPC](https://docs.aws.amazon.com/transfer/latest/userguide/create-webapp-in-vpc.html). ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "Type" : "AWS::Transfer::WebApp", "Properties" : { "[AccessEndpoint](#cfn-transfer-webapp-accessendpoint)" : String, "[EndpointDetails](#cfn-transfer-webapp-endpointdetails)" : EndpointDetails, "[IdentityProviderDetails](#cfn-transfer-webapp-identityproviderdetails)" : IdentityProviderDetails, "[Tags](#cfn-transfer-webapp-tags)" : [ Tag, ... ], "[WebAppCustomization](#cfn-transfer-webapp-webappcustomization)" : WebAppCustomization, "[WebAppEndpointPolicy](#cfn-transfer-webapp-webappendpointpolicy)" : String, "[WebAppUnits](#cfn-transfer-webapp-webappunits)" : WebAppUnits } } ``` ### YAML ``` Type: AWS::Transfer::WebApp Properties: [AccessEndpoint](#cfn-transfer-webapp-accessendpoint): String [EndpointDetails](#cfn-transfer-webapp-endpointdetails): EndpointDetails [IdentityProviderDetails](#cfn-transfer-webapp-identityproviderdetails): IdentityProviderDetails [Tags](#cfn-transfer-webapp-tags): - Tag [WebAppCustomization](#cfn-transfer-webapp-webappcustomization): WebAppCustomization [WebAppEndpointPolicy](#cfn-transfer-webapp-webappendpointpolicy): String [WebAppUnits](#cfn-transfer-webapp-webappunits): WebAppUnits ``` ## Properties `AccessEndpoint` The `AccessEndpoint` is the URL that you provide to your users for them to interact with the Transfer Family web app. You can specify a custom URL or use the default value. Before you enter a custom URL for this parameter, follow the steps described in [Update your access endpoint with a custom URL](https://docs.aws.amazon.com//transfer/latest/userguide/webapp-customize.html). *Required*: No *Type*: String *Minimum*: `1` *Maximum*: `1024` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `EndpointDetails` The virtual private cloud (VPC) endpoint settings that are configured for your file transfer protocol-enabled server. With a VPC endpoint, you can restrict access to your server and resources only within your VPC. To control incoming internet traffic, invoke the `UpdateServer` API and attach an Elastic IP address to your server's endpoint. After May 19, 2021, you won't be able to create a server using `EndpointType=VPC_ENDPOINT` in your AWS account if your account hasn't already done so before May 19, 2021. If you have already created servers with `EndpointType=VPC_ENDPOINT` in your AWS account on or before May 19, 2021, you will not be affected. After this date, use `EndpointType`=`VPC`. For more information, see [Discontinuing the use of VPC\$1ENDPOINT](https://docs.aws.amazon.com/transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint). It is recommended that you use `VPC` as the `EndpointType`. With this endpoint type, you have the option to directly associate up to three Elastic IPv4 addresses (BYO IP included) with your server's endpoint and use VPC security groups to restrict traffic by the client's public IP address. This is not possible with `EndpointType` set to `VPC_ENDPOINT`. *Required*: No *Type*: [EndpointDetails](aws-properties-transfer-webapp-endpointdetails.md) *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `IdentityProviderDetails` You can provide a structure that contains the details for the identity provider to use with your web app. For more details about this parameter, see [Configure your identity provider for Transfer Family web apps](https://docs.aws.amazon.com//transfer/latest/userguide/webapp-identity-center.html). *Required*: Yes *Type*: [IdentityProviderDetails](aws-properties-transfer-webapp-identityproviderdetails.md) *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `Tags` Key-value pairs that can be used to group and search for web apps. Tags are metadata attached to web apps for any purpose. *Required*: No *Type*: Array of [Tag](aws-properties-transfer-webapp-tag.md) *Maximum*: `50` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `WebAppCustomization` A structure that contains the customization fields for the web app. You can provide a title, logo, and icon to customize the appearance of your web app. *Required*: No *Type*: [WebAppCustomization](aws-properties-transfer-webapp-webappcustomization.md) *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `WebAppEndpointPolicy` Setting for the type of endpoint policy for the web app. The default value is `STANDARD`. If your web app was created in an AWS GovCloud (US) Region, the value of this parameter can be `FIPS`, which indicates the web app endpoint is FIPS-compliant. *Required*: No *Type*: String *Allowed values*: `STANDARD | FIPS` *Update requires*: [Replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) `WebAppUnits` A union that contains the value for number of concurrent connections or the user sessions on your web app. *Required*: No *Type*: [WebAppUnits](aws-properties-transfer-webapp-webappunits.md) *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) ## Return values ### Ref When you pass the logical ID of this resource to the intrinsic `Ref` function, `Ref` returns the web app ARN, such as `arn:aws:transfer:us-east-2:123456789012:webapp/webapp-01234567890abcdef` . For more information about using the `Ref` function, see [https://docs.aws.amazon.com/AWSCloudFormation/latest/TemplateReference/intrinsic-function-reference-ref.html](https://docs.aws.amazon.com/AWSCloudFormation/latest/TemplateReference/intrinsic-function-reference-ref.html). ### Fn::GetAtt #### `Arn` The Amazon Resource Name (ARN) of the web app. `IdentityProviderDetails.ApplicationArn` Property description not available. `VpcEndpointId` The identifier of the VPC endpoint created for the web app. `WebAppId` The unique identifier for the web app. # AWS::Transfer::WebApp EndpointDetails The virtual private cloud (VPC) endpoint settings that are configured for your file transfer protocol-enabled server. With a VPC endpoint, you can restrict access to your server and resources only within your VPC. To control incoming internet traffic, invoke the `UpdateServer` API and attach an Elastic IP address to your server's endpoint. **Note** After May 19, 2021, you won't be able to create a server using `EndpointType=VPC_ENDPOINT` in your AWS account if your account hasn't already done so before May 19, 2021. If you have already created servers with `EndpointType=VPC_ENDPOINT` in your AWS account on or before May 19, 2021, you will not be affected. After this date, use `EndpointType`=`VPC`. For more information, see [Discontinuing the use of VPC\$1ENDPOINT](https://docs.aws.amazon.com/transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint). It is recommended that you use `VPC` as the `EndpointType`. With this endpoint type, you have the option to directly associate up to three Elastic IPv4 addresses (BYO IP included) with your server's endpoint and use VPC security groups to restrict traffic by the client's public IP address. This is not possible with `EndpointType` set to `VPC_ENDPOINT`. ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "[Vpc](#cfn-transfer-webapp-endpointdetails-vpc)" : Vpc } ``` ### YAML ``` [Vpc](#cfn-transfer-webapp-endpointdetails-vpc): Vpc ``` ## Properties `Vpc` Property description not available. *Required*: No *Type*: [Vpc](aws-properties-transfer-webapp-vpc.md) *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) # AWS::Transfer::WebApp IdentityProviderDetails A structure that describes the values to use for the IAM Identity Center settings when you create or update a web app. ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "[ApplicationArn](#cfn-transfer-webapp-identityproviderdetails-applicationarn)" : String, "[InstanceArn](#cfn-transfer-webapp-identityproviderdetails-instancearn)" : String, "[Role](#cfn-transfer-webapp-identityproviderdetails-role)" : String } ``` ### YAML ``` [ApplicationArn](#cfn-transfer-webapp-identityproviderdetails-applicationarn): String [InstanceArn](#cfn-transfer-webapp-identityproviderdetails-instancearn): String [Role](#cfn-transfer-webapp-identityproviderdetails-role): String ``` ## Properties `ApplicationArn` The Amazon Resource Name (ARN) for the IAM Identity Center application: this value is set automatically when you create your web app. *Required*: No *Type*: String *Pattern*: `^arn:[\w-]+:sso::\d{12}:application/(sso)?ins-[a-zA-Z0-9-.]{16}/apl-[a-zA-Z0-9]{16}$` *Minimum*: `10` *Maximum*: `1224` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `InstanceArn` The Amazon Resource Name (ARN) for the IAM Identity Center used for the web app. *Required*: No *Type*: String *Pattern*: `^arn:[\w-]+:sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}$` *Minimum*: `10` *Maximum*: `1224` *Update requires*: [Replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) `Role` The IAM role in IAM Identity Center used for the web app. *Required*: No *Type*: String *Pattern*: `^arn:[a-z-]+:iam::[0-9]{12}:role[:/]\S+$` *Minimum*: `20` *Maximum*: `2048` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) # AWS::Transfer::WebApp Tag Creates a key-value pair for a specific resource. Tags are metadata that you can use to search for and group a resource for various purposes. You can apply tags to servers, users, and roles. A tag key can take more than one value. For example, to group servers for accounting purposes, you might create a tag called `Group` and assign the values `Research` and `Accounting` to that group. ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "[Key](#cfn-transfer-webapp-tag-key)" : String, "[Value](#cfn-transfer-webapp-tag-value)" : String } ``` ### YAML ``` [Key](#cfn-transfer-webapp-tag-key): String [Value](#cfn-transfer-webapp-tag-value): String ``` ## Properties `Key` The name assigned to the tag that you create. *Required*: Yes *Type*: String *Minimum*: `0` *Maximum*: `128` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `Value` Contains one or more values that you assigned to the key name you create. *Required*: Yes *Type*: String *Minimum*: `0` *Maximum*: `256` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) # AWS::Transfer::WebApp Vpc The `Vpc` property type specifies Property description not available. for an [AWS::Transfer::WebApp](aws-resource-transfer-webapp.md). ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "[SecurityGroupIds](#cfn-transfer-webapp-vpc-securitygroupids)" : [ String, ... ], "[SubnetIds](#cfn-transfer-webapp-vpc-subnetids)" : [ String, ... ], "[VpcId](#cfn-transfer-webapp-vpc-vpcid)" : String } ``` ### YAML ``` [SecurityGroupIds](#cfn-transfer-webapp-vpc-securitygroupids): - String [SubnetIds](#cfn-transfer-webapp-vpc-subnetids): - String [VpcId](#cfn-transfer-webapp-vpc-vpcid): String ``` ## Properties `SecurityGroupIds` Property description not available. *Required*: No *Type*: Array of String *Minimum*: `11` *Maximum*: `20 | 10` *Update requires*: [Replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) `SubnetIds` Property description not available. *Required*: No *Type*: Array of String *Minimum*: `15` *Maximum*: `24 | 10` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `VpcId` Property description not available. *Required*: No *Type*: String *Pattern*: `^vpc-[0-9a-f]{8,17}$` *Minimum*: `12` *Maximum*: `21` *Update requires*: [Replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) # AWS::Transfer::WebApp WebAppCustomization A structure that contains the customization fields for the web app. You can provide a title, logo, and icon to customize the appearance of your web app. ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "[FaviconFile](#cfn-transfer-webapp-webappcustomization-faviconfile)" : String, "[LogoFile](#cfn-transfer-webapp-webappcustomization-logofile)" : String, "[Title](#cfn-transfer-webapp-webappcustomization-title)" : String } ``` ### YAML ``` [FaviconFile](#cfn-transfer-webapp-webappcustomization-faviconfile): String [LogoFile](#cfn-transfer-webapp-webappcustomization-logofile): String [Title](#cfn-transfer-webapp-webappcustomization-title): String ``` ## Properties `FaviconFile` Returns an icon file data string (in base64 encoding). *Required*: No *Type*: String *Minimum*: `1` *Maximum*: `20960` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `LogoFile` Returns a logo file data string (in base64 encoding). *Required*: No *Type*: String *Minimum*: `1` *Maximum*: `51200` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `Title` Returns the page title that you defined for your web app. *Required*: No *Type*: String *Minimum*: `0` *Maximum*: `100` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) # AWS::Transfer::WebApp WebAppUnits Contains an integer value that represents the value for number of concurrent connections or the user sessions on your web app. ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "[Provisioned](#cfn-transfer-webapp-webappunits-provisioned)" : Integer } ``` ### YAML ``` [Provisioned](#cfn-transfer-webapp-webappunits-provisioned): Integer ``` ## Properties `Provisioned` An integer that represents the number of units for your desired number of concurrent connections, or the number of user sessions on your web app at the same time. Each increment allows an additional 250 concurrent sessions: a value of `1` sets the number of concurrent sessions to 250; `2` sets a value of 500, and so on. *Required*: Yes *Type*: Integer *Minimum*: `1` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)