interface CfnAliasProps
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.KMS.CfnAliasProps |
 Go | github.com/aws/aws-cdk-go/awscdk/v2/awskms#CfnAliasProps |
 Java | software.amazon.awscdk.services.kms.CfnAliasProps |
 Python | aws_cdk.aws_kms.CfnAliasProps |
 TypeScript | aws-cdk-lib » aws_kms » CfnAliasProps |
Properties for defining a CfnAlias.
See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-kms-alias.html
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_kms as kms } from 'aws-cdk-lib';
const cfnAliasProps: kms.CfnAliasProps = {
aliasName: 'aliasName',
targetKeyId: 'targetKeyId',
};
Properties
| Name | Type | Description |
|---|---|---|
| alias | string | Specifies the alias name. This value must begin with alias/ followed by a name, such as alias/ExampleAlias . |
| target | string | Associates the alias with the specified customer managed key . The KMS key must be in the same AWS account and Region. |
aliasName
Type:
string
Specifies the alias name. This value must begin with alias/ followed by a name, such as alias/ExampleAlias .
If you change the value of the
AliasNameproperty, the existing alias is deleted and a new alias is created for the specified KMS key. This change can disrupt applications that use the alias. It can also allow or deny access to a KMS key affected by attribute-based access control (ABAC).
The alias must be string of 1-256 characters. It can contain only alphanumeric characters, forward slashes (/), underscores (_), and dashes (-). The alias name cannot begin with alias/aws/ . The alias/aws/ prefix is reserved for AWS managed keys .
targetKeyId
Type:
string
Associates the alias with the specified customer managed key . The KMS key must be in the same AWS account and Region.
A valid key ID is required. If you supply a null or empty string value, this operation returns an error.
For help finding the key ID and ARN, see Finding the key ID and ARN in the AWS Key Management Service Developer Guide .
Specify the key ID or the key ARN of the KMS key.
For example:
- Key ID:
1234abcd-12ab-34cd-56ef-1234567890ab - Key ARN:
arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab
To get the key ID and key ARN for a KMS key, use ListKeys or DescribeKey .