ResourceType

class aws_cdk.aws_config.ResourceType(*args: Any, **kwargs)

Bases: object

Resources types that are supported by AWS Config.

See:

https://docs.aws.amazon.com/config/latest/developerguide/resource-config-reference.html

ExampleMetadata:

infused

Example:

# eval_compliance_fn: lambda.Function
ssh_rule = config.ManagedRule(self, "SSH",
    identifier=config.ManagedRuleIdentifiers.EC2_SECURITY_GROUPS_INCOMING_SSH_DISABLED,
    rule_scope=config.RuleScope.from_resource(config.ResourceType.EC2_SECURITY_GROUP, "sg-1234567890abcdefgh")
)
custom_rule = config.CustomRule(self, "Lambda",
    lambda_function=eval_compliance_fn,
    configuration_changes=True,
    rule_scope=config.RuleScope.from_resources([config.ResourceType.CLOUDFORMATION_STACK, config.ResourceType.S3_BUCKET])
)

tag_rule = config.CustomRule(self, "CostCenterTagRule",
    lambda_function=eval_compliance_fn,
    configuration_changes=True,
    rule_scope=config.RuleScope.from_tag("Cost Center", "MyApp")
)

Attributes

ACM_CERTIFICATE = <aws_cdk.aws_config.ResourceType object>
APIGATEWAYV2_API = <aws_cdk.aws_config.ResourceType object>
APIGATEWAYV2_STAGE = <aws_cdk.aws_config.ResourceType object>
APIGATEWAY_REST_API = <aws_cdk.aws_config.ResourceType object>
APIGATEWAY_STAGE = <aws_cdk.aws_config.ResourceType object>
AUTO_SCALING_GROUP = <aws_cdk.aws_config.ResourceType object>
AUTO_SCALING_LAUNCH_CONFIGURATION = <aws_cdk.aws_config.ResourceType object>
AUTO_SCALING_POLICY = <aws_cdk.aws_config.ResourceType object>
AUTO_SCALING_SCHEDULED_ACTION = <aws_cdk.aws_config.ResourceType object>
CLOUDFORMATION_STACK = <aws_cdk.aws_config.ResourceType object>
CLOUDFRONT_DISTRIBUTION = <aws_cdk.aws_config.ResourceType object>
CLOUDFRONT_STREAMING_DISTRIBUTION = <aws_cdk.aws_config.ResourceType object>
CLOUDTRAIL_TRAIL = <aws_cdk.aws_config.ResourceType object>
CLOUDWATCH_ALARM = <aws_cdk.aws_config.ResourceType object>
CODEBUILD_PROJECT = <aws_cdk.aws_config.ResourceType object>
CODEPIPELINE_PIPELINE = <aws_cdk.aws_config.ResourceType object>
DYNAMODB_TABLE = <aws_cdk.aws_config.ResourceType object>
EBS_VOLUME = <aws_cdk.aws_config.ResourceType object>
EC2_CUSTOMER_GATEWAY = <aws_cdk.aws_config.ResourceType object>
EC2_EGRESS_ONLY_INTERNET_GATEWAY = <aws_cdk.aws_config.ResourceType object>
EC2_EIP = <aws_cdk.aws_config.ResourceType object>
EC2_FLOW_LOG = <aws_cdk.aws_config.ResourceType object>
EC2_HOST = <aws_cdk.aws_config.ResourceType object>
EC2_INSTANCE = <aws_cdk.aws_config.ResourceType object>
EC2_INTERNET_GATEWAY = <aws_cdk.aws_config.ResourceType object>
EC2_NAT_GATEWAY = <aws_cdk.aws_config.ResourceType object>
EC2_NETWORK_ACL = <aws_cdk.aws_config.ResourceType object>
EC2_ROUTE_TABLE = <aws_cdk.aws_config.ResourceType object>
EC2_SECURITY_GROUP = <aws_cdk.aws_config.ResourceType object>
EC2_SUBNET = <aws_cdk.aws_config.ResourceType object>
EC2_VPC = <aws_cdk.aws_config.ResourceType object>
EC2_VPC_ENDPOINT = <aws_cdk.aws_config.ResourceType object>
EC2_VPC_ENDPOINT_SERVICE = <aws_cdk.aws_config.ResourceType object>
EC2_VPC_PEERING_CONNECTION = <aws_cdk.aws_config.ResourceType object>
EC2_VPN_CONNECTION = <aws_cdk.aws_config.ResourceType object>
EC2_VPN_GATEWAY = <aws_cdk.aws_config.ResourceType object>
ELASTICSEARCH_DOMAIN = <aws_cdk.aws_config.ResourceType object>
ELASTIC_BEANSTALK_APPLICATION = <aws_cdk.aws_config.ResourceType object>
ELASTIC_BEANSTALK_APPLICATION_VERSION = <aws_cdk.aws_config.ResourceType object>
ELASTIC_BEANSTALK_ENVIRONMENT = <aws_cdk.aws_config.ResourceType object>
ELBV2_LOAD_BALANCER = <aws_cdk.aws_config.ResourceType object>
ELB_LOAD_BALANCER = <aws_cdk.aws_config.ResourceType object>
IAM_GROUP = <aws_cdk.aws_config.ResourceType object>
IAM_POLICY = <aws_cdk.aws_config.ResourceType object>
IAM_ROLE = <aws_cdk.aws_config.ResourceType object>
IAM_USER = <aws_cdk.aws_config.ResourceType object>
KMS_KEY = <aws_cdk.aws_config.ResourceType object>
LAMBDA_FUNCTION = <aws_cdk.aws_config.ResourceType object>
QLDB_LEDGER = <aws_cdk.aws_config.ResourceType object>
RDS_DB_CLUSTER = <aws_cdk.aws_config.ResourceType object>
RDS_DB_CLUSTER_SNAPSHOT = <aws_cdk.aws_config.ResourceType object>
RDS_DB_INSTANCE = <aws_cdk.aws_config.ResourceType object>
RDS_DB_SECURITY_GROUP = <aws_cdk.aws_config.ResourceType object>
RDS_DB_SNAPSHOT = <aws_cdk.aws_config.ResourceType object>
RDS_DB_SUBNET_GROUP = <aws_cdk.aws_config.ResourceType object>
RDS_EVENT_SUBSCRIPTION = <aws_cdk.aws_config.ResourceType object>
REDSHIFT_CLUSTER = <aws_cdk.aws_config.ResourceType object>
REDSHIFT_CLUSTER_PARAMETER_GROUP = <aws_cdk.aws_config.ResourceType object>
REDSHIFT_CLUSTER_SECURITY_GROUP = <aws_cdk.aws_config.ResourceType object>
REDSHIFT_CLUSTER_SNAPSHOT = <aws_cdk.aws_config.ResourceType object>
REDSHIFT_CLUSTER_SUBNET_GROUP = <aws_cdk.aws_config.ResourceType object>
REDSHIFT_EVENT_SUBSCRIPTION = <aws_cdk.aws_config.ResourceType object>
S3_ACCOUNT_PUBLIC_ACCESS_BLOCK = <aws_cdk.aws_config.ResourceType object>
S3_BUCKET = <aws_cdk.aws_config.ResourceType object>
SECRETS_MANAGER_SECRET = <aws_cdk.aws_config.ResourceType object>
SERVICE_CATALOG_CLOUDFORMATION_PRODUCT = <aws_cdk.aws_config.ResourceType object>
SERVICE_CATALOG_CLOUDFORMATION_PROVISIONED_PRODUCT = <aws_cdk.aws_config.ResourceType object>
SERVICE_CATALOG_PORTFOLIO = <aws_cdk.aws_config.ResourceType object>
SHIELD_PROTECTION = <aws_cdk.aws_config.ResourceType object>
SHIELD_REGIONAL_PROTECTION = <aws_cdk.aws_config.ResourceType object>
SNS_TOPIC = <aws_cdk.aws_config.ResourceType object>
SQS_QUEUE = <aws_cdk.aws_config.ResourceType object>
SYSTEMS_MANAGER_ASSOCIATION_COMPLIANCE = <aws_cdk.aws_config.ResourceType object>
SYSTEMS_MANAGER_FILE_DATA = <aws_cdk.aws_config.ResourceType object>
SYSTEMS_MANAGER_MANAGED_INSTANCE_INVENTORY = <aws_cdk.aws_config.ResourceType object>
SYSTEMS_MANAGER_PATCH_COMPLIANCE = <aws_cdk.aws_config.ResourceType object>
WAFV2_MANAGED_RULE_SET = <aws_cdk.aws_config.ResourceType object>
WAFV2_RULE_GROUP = <aws_cdk.aws_config.ResourceType object>
WAFV2_WEB_ACL = <aws_cdk.aws_config.ResourceType object>
WAF_RATE_BASED_RULE = <aws_cdk.aws_config.ResourceType object>
WAF_REGIONAL_RATE_BASED_RULE = <aws_cdk.aws_config.ResourceType object>
WAF_REGIONAL_RULE = <aws_cdk.aws_config.ResourceType object>
WAF_REGIONAL_RULE_GROUP = <aws_cdk.aws_config.ResourceType object>
WAF_REGIONAL_WEB_ACL = <aws_cdk.aws_config.ResourceType object>
WAF_RULE = <aws_cdk.aws_config.ResourceType object>
WAF_RULE_GROUP = <aws_cdk.aws_config.ResourceType object>
WAF_WEB_ACL = <aws_cdk.aws_config.ResourceType object>
XRAY_ENCRYPTION_CONFIGURATION = <aws_cdk.aws_config.ResourceType object>
compliance_resource_type

Valid value of resource type.

Static Methods

classmethod of(type)

A custom resource type to support future cases.

Parameters:

type (str) –

Return type:

ResourceType