AuthorizeCacheSecurityGroupIngress - Amazon ElastiCache

AuthorizeCacheSecurityGroupIngress

Allows network ingress to a cache security group. Applications using ElastiCache must be running on Amazon EC2, and Amazon EC2 security groups are used as the authorization mechanism.

Note

You cannot authorize ingress from an Amazon EC2 security group in one region to an ElastiCache cluster in another region.

Request Parameters

For information about the parameters that are common to all actions, see Common Parameters.

CacheSecurityGroupName

The cache security group that allows network ingress.

Type: String

Required: Yes

EC2SecurityGroupName

The Amazon EC2 security group to be authorized for ingress to the cache security group.

Type: String

Required: Yes

EC2SecurityGroupOwnerId

The Amazon account number of the Amazon EC2 security group owner. Note that this is not the same thing as an Amazon access key ID - you must provide a valid Amazon account number for this parameter.

Type: String

Required: Yes

Response Elements

The following element is returned by the service.

CacheSecurityGroup

Represents the output of one of the following operations:

  • AuthorizeCacheSecurityGroupIngress

  • CreateCacheSecurityGroup

  • RevokeCacheSecurityGroupIngress

Type: CacheSecurityGroup object

Errors

For information about the errors that are common to all actions, see Common Errors.

AuthorizationAlreadyExists

The specified Amazon EC2 security group is already authorized for the specified cache security group.

HTTP Status Code: 400

CacheSecurityGroupNotFound

The requested cache security group name does not refer to an existing cache security group.

HTTP Status Code: 404

InvalidCacheSecurityGroupState

The current state of the cache security group does not allow deletion.

HTTP Status Code: 400

InvalidParameterCombination

Two or more incompatible parameters were specified.

HTTP Status Code: 400

InvalidParameterValue

The value for a parameter is invalid.

HTTP Status Code: 400

Examples

AuthorizeCacheSecurityGroupIngress

This example illustrates one usage of AuthorizeCacheSecurityGroupIngress.

Sample Request

https://elasticache.us-west-2.amazonaws.com/ ?Action=AuthorizeCacheSecurityGroupIngress &EC2SecurityGroupName=default &CacheSecurityGroupName=mygroup &EC2SecurityGroupOwnerId=1234-5678-1234 &Version=2015-02-02 &SignatureVersion=4 &SignatureMethod=HmacSHA256 &Timestamp=20150202T192317Z &X-Amz-Credential=<credential>

Example

This example illustrates one usage of AuthorizeCacheSecurityGroupIngress.

Sample Response

<AuthorizeCacheSecurityGroupIngressResponse xmlns="http://elasticache.amazonaws.com/doc/2015-02-02/"> <AuthorizeCacheSecurityGroupIngressResult> <CacheSecurityGroup> <EC2SecurityGroups> <EC2SecurityGroup> <Status>authorizing</Status> <EC2SecurityGroupName>default</EC2SecurityGroupName> <EC2SecurityGroupOwnerId>565419523791</EC2SecurityGroupOwnerId> </EC2SecurityGroup> </EC2SecurityGroups> <CacheSecurityGroupName>mygroup</CacheSecurityGroupName> <OwnerId>123456781234</OwnerId> <Description>My security group</Description> </CacheSecurityGroup> </AuthorizeCacheSecurityGroupIngress> <ResponseMetadata> <RequestId>817fa999-3647-11e0-ae57-f96cfe56749c</RequestId> </ResponseMetadata> </AuthorizeCacheSecurityGroupIngressResponse>

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: