Interface CfnBucket.IServerSideEncryptionRuleProperty
Specifies the default server-side encryption configuration.
Namespace: Amazon.CDK.AWS.S3
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public interface IServerSideEncryptionRuleProperty
Syntax (vb)
Public Interface IServerSideEncryptionRuleProperty
Remarks
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.S3;
var serverSideEncryptionRuleProperty = new ServerSideEncryptionRuleProperty {
BucketKeyEnabled = false,
ServerSideEncryptionByDefault = new ServerSideEncryptionByDefaultProperty {
SseAlgorithm = "sseAlgorithm",
// the properties below are optional
KmsMasterKeyId = "kmsMasterKeyId"
}
};
Synopsis
Properties
BucketKeyEnabled | Specifies whether Amazon S3 should use an S3 Bucket Key with server-side encryption using KMS (SSE-KMS) for new objects in the bucket. |
ServerSideEncryptionByDefault | Specifies the default server-side encryption to apply to new objects in the bucket. |
Properties
BucketKeyEnabled
Specifies whether Amazon S3 should use an S3 Bucket Key with server-side encryption using KMS (SSE-KMS) for new objects in the bucket.
virtual object BucketKeyEnabled { get; }
Property Value
System.Object
Remarks
Existing objects are not affected. Setting the BucketKeyEnabled
element to true
causes Amazon S3 to use an S3 Bucket Key. By default, S3 Bucket Key is not enabled.
For more information, see Amazon S3 Bucket Keys in the Amazon S3 User Guide .
ServerSideEncryptionByDefault
Specifies the default server-side encryption to apply to new objects in the bucket.
virtual object ServerSideEncryptionByDefault { get; }
Property Value
System.Object
Remarks
If a PUT Object request doesn't specify any server-side encryption, this default encryption will be applied.