Class BucketEncryption
What kind of server-side encryption to apply to this bucket.
Inheritance
Namespace: Amazon.CDK.AWS.S3
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public sealed class BucketEncryption : Enum
Syntax (vb)
Public NotInheritable Class BucketEncryption
Inherits
Enum
Remarks
ExampleMetadata: infused
Examples
using Amazon.CDK.AWS.S3;
var app = new App(new AppProps {
DefaultStackSynthesizer = AppStagingSynthesizer.DefaultResources(new DefaultResourcesOptions {
AppId = "my-app-id",
StagingBucketEncryption = BucketEncryption.S3_MANAGED,
FileAssetPublishingRole = BootstrapRole.FromRoleArn("arn:aws:iam::123456789012:role/S3Access"),
ImageAssetPublishingRole = BootstrapRole.FromRoleArn("arn:aws:iam::123456789012:role/ECRAccess")
})
});
Synopsis
Fields
DSSE | Double server-side encryption with a KMS key managed by the user. |
DSSE_MANAGED | Double server-side KMS encryption with a master key managed by KMS. |
KMS | Server-side encryption with a KMS key managed by the user. |
KMS_MANAGED | Server-side KMS encryption with a master key managed by KMS. |
S3_MANAGED | Server-side encryption with a master key managed by S3. |
UNENCRYPTED | (deprecated) Previous option. |
value__ |
Fields
DSSE
Double server-side encryption with a KMS key managed by the user.
public const BucketEncryption DSSE
Field Value
Type | Description |
---|---|
BucketEncryption |
Remarks
If encryptionKey
is specified, this key will be used, otherwise, one will be defined.
DSSE_MANAGED
Double server-side KMS encryption with a master key managed by KMS.
public const BucketEncryption DSSE_MANAGED
Field Value
Type | Description |
---|---|
BucketEncryption |
KMS
Server-side encryption with a KMS key managed by the user.
public const BucketEncryption KMS
Field Value
Type | Description |
---|---|
BucketEncryption |
Remarks
If encryptionKey
is specified, this key will be used, otherwise, one will be defined.
KMS_MANAGED
Server-side KMS encryption with a master key managed by KMS.
public const BucketEncryption KMS_MANAGED
Field Value
Type | Description |
---|---|
BucketEncryption |
S3_MANAGED
Server-side encryption with a master key managed by S3.
public const BucketEncryption S3_MANAGED
Field Value
Type | Description |
---|---|
BucketEncryption |
UNENCRYPTED
(deprecated) Previous option.
public const BucketEncryption UNENCRYPTED
Field Value
Type | Description |
---|---|
BucketEncryption |
Remarks
Buckets can not be unencrypted now.
Stability: Deprecated
See: https://docs.aws.amazon.com/AmazonS3/latest/userguide/serv-side-encryption.html
value__
public int value__
Field Value
Type | Description |
---|---|
System.Int32 |