Package software.amazon.awscdk.services.emr

Interface CfnSecurityConfigurationProps

All Superinterfaces:

software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:

CfnSecurityConfigurationProps.Jsii$Proxy

@Generated(value="jsii-pacmak/1.97.0 (build 729de35)",
           date="2024-04-18T17:54:17.216Z")
@Stability(Stable)
public interface CfnSecurityConfigurationProps
extends software.amazon.jsii.JsiiSerializable

Properties for defining a CfnSecurityConfiguration.

Example:

 import software.amazon.awscdk.services.emr.*;
 CfnSecurityConfiguration cfnSecurityConfiguration = CfnSecurityConfiguration.Builder.create(this, "EmrSecurityConfiguration")
         .name("AddStepRuntimeRoleSecConfig")
         .securityConfiguration(JSON.parse("\n    {\n      \"AuthorizationConfiguration\": {\n          \"IAMConfiguration\": {\n              \"EnableApplicationScopedIAMRole\": true,\n              \"ApplicationScopedIAMRoleConfiguration\":\n                  {\n                      \"PropagateSourceIdentity\": true\n                  }\n          },\n          \"LakeFormationConfiguration\": {\n              \"AuthorizedSessionTagValue\": \"Amazon EMR\"\n          }\n      }\n    }"))
         .build();
 EmrCreateCluster task = EmrCreateCluster.Builder.create(this, "Create Cluster")
         .instances(InstancesConfigProperty.builder().build())
         .name(TaskInput.fromJsonPathAt("$.ClusterName").getValue())
         .securityConfiguration(cfnSecurityConfiguration.getName())
         .build();
 Role executionRole = Role.Builder.create(this, "Role")
         .assumedBy(new ArnPrincipal(task.getClusterRole().getRoleArn()))
         .build();
 executionRole.assumeRolePolicy.addStatements(
 PolicyStatement.Builder.create()
         .effect(Effect.ALLOW)
         .principals(List.of(task.getClusterRole()))
         .actions(List.of("sts:SetSourceIdentity"))
         .build(),
 PolicyStatement.Builder.create()
         .effect(Effect.ALLOW)
         .principals(List.of(task.getClusterRole()))
         .actions(List.of("sts:TagSession"))
         .conditions(Map.of(
                 "StringEquals", Map.of(
                         "aws:RequestTag/LakeFormationAuthorizedCaller", "Amazon EMR")))
         .build());
 EmrAddStep.Builder.create(this, "Task")
         .clusterId("ClusterId")
         .executionRoleArn(executionRole.getRoleArn())
         .name("StepName")
         .jar("Jar")
         .actionOnFailure(ActionOnFailure.CONTINUE)
         .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-emr-securityconfiguration.html

Nested Class Summary

Nested Classes

Modifier and Type	Interface	Description
static final class	CfnSecurityConfigurationProps.Builder	A builder for CfnSecurityConfigurationProps
static final class	CfnSecurityConfigurationProps.Jsii$Proxy	An implementation for CfnSecurityConfigurationProps

Method Summary

Modifier and Type	Method	Description
static CfnSecurityConfigurationProps.Builder	builder()
default String	getName()	The name of the security configuration.
Object	getSecurityConfiguration()	The security configuration details in JSON format.

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Method Details

getSecurityConfiguration

@Stability(Stable)
@NotNull
Object getSecurityConfiguration()

The security configuration details in JSON format.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-emr-securityconfiguration.html#cfn-emr-securityconfiguration-securityconfiguration

getName

@Stability(Stable)
@Nullable
default String getName()

The name of the security configuration.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-emr-securityconfiguration.html#cfn-emr-securityconfiguration-name

builder

@Stability(Stable)
static CfnSecurityConfigurationProps.Builder builder()

Returns:

a CfnSecurityConfigurationProps.Builder of CfnSecurityConfigurationProps