ClientBrokerEncryption

class aws_cdk.aws_msk.ClientBrokerEncryption(value)

Bases: Enum

(experimental) Indicates the encryption setting for data in transit between clients and brokers.

Stability:

experimental

ExampleMetadata:

infused

Example:

# vpc: ec2.Vpc

cluster = msk.Cluster(self, "cluster",
    cluster_name="myCluster",
    kafka_version=msk.KafkaVersion.V2_8_1,
    vpc=vpc,
    encryption_in_transit=msk.EncryptionInTransitConfig(
        client_broker=msk.ClientBrokerEncryption.TLS
    ),
    client_authentication=msk.ClientAuthentication.sasl(
        scram=True
    )
)

Attributes

PLAINTEXT

(experimental) PLAINTEXT means that client-broker communication is enabled in plaintext only.

Stability:

experimental

TLS

(experimental) TLS means that client-broker communication is enabled with TLS only.

Stability:

experimental

TLS_PLAINTEXT

(experimental) TLS_PLAINTEXT means that client-broker communication is enabled for both TLS-encrypted, as well as plaintext data.

Stability:

experimental