interface SaslAuthProps
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.MSK.Alpha.SaslAuthProps |
 Go | github.com/aws/aws-cdk-go/awscdkmskalpha/v2#SaslAuthProps |
 Java | software.amazon.awscdk.services.msk.alpha.SaslAuthProps |
 Python | aws_cdk.aws_msk_alpha.SaslAuthProps |
 TypeScript (source) | @aws-cdk/aws-msk-alpha » SaslAuthProps |
SASL authentication properties.
Example
declare const vpc: ec2.Vpc;
const cluster = new msk.Cluster(this, 'cluster', {
clusterName: 'myCluster',
kafkaVersion: msk.KafkaVersion.V2_8_1,
vpc,
encryptionInTransit: {
clientBroker: msk.ClientBrokerEncryption.TLS,
},
clientAuthentication: msk.ClientAuthentication.sasl({
scram: true,
}),
});
Properties
| Name | Type | Description |
|---|---|---|
| iam? | boolean | Enable IAM access control. |
| key? | IKey | KMS Key to encrypt SASL/SCRAM secrets. |
| scram? | boolean | Enable SASL/SCRAM authentication. |
iam?
Type:
boolean
(optional, default: false)
Enable IAM access control.
key?
Type:
IKey
(optional, default: CMK will be created with alias msk/{clusterName}/sasl/scram)
KMS Key to encrypt SASL/SCRAM secrets.
You must use a customer master key (CMK) when creating users in secrets manager. You cannot use a Secret with Amazon MSK that uses the default Secrets Manager encryption key.
scram?
Type:
boolean
(optional, default: false)
Enable SASL/SCRAM authentication.