Class CfnRepositoryCreationTemplate.EncryptionConfigurationProperty.Builder
- All Implemented Interfaces:
software.amazon.jsii.Builder<CfnRepositoryCreationTemplate.EncryptionConfigurationProperty>
- Enclosing interface:
CfnRepositoryCreationTemplate.EncryptionConfigurationProperty
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionbuild()
Builds the configured instance.encryptionType
(String encryptionType)
-
Constructor Details
-
Builder
public Builder()
-
-
Method Details
-
encryptionType
@Stability(Stable) public CfnRepositoryCreationTemplate.EncryptionConfigurationProperty.Builder encryptionType(String encryptionType) - Parameters:
encryptionType
- The encryption type to use. This parameter is required. If you use theKMS
encryption type, the contents of the repository will be encrypted using server-side encryption with AWS Key Management Service key stored in AWS KMS . When you use AWS KMS to encrypt your data, you can either use the default AWS managed AWS KMS key for Amazon ECR, or specify your own AWS KMS key, which you already created.If you use the
KMS_DSSE
encryption type, the contents of the repository will be encrypted with two layers of encryption using server-side encryption with the AWS KMS Management Service key stored in AWS KMS . Similar to theKMS
encryption type, you can either use the default AWS managed AWS KMS key for Amazon ECR, or specify your own AWS KMS key, which you've already created.If you use the
AES256
encryption type, Amazon ECR uses server-side encryption with Amazon S3-managed encryption keys which encrypts the images in the repository using an AES256 encryption algorithm.For more information, see Amazon ECR encryption at rest in the Amazon Elastic Container Registry User Guide .
- Returns:
this
-
kmsKey
@Stability(Stable) public CfnRepositoryCreationTemplate.EncryptionConfigurationProperty.Builder kmsKey(String kmsKey) - Parameters:
kmsKey
- If you use theKMS
encryption type, specify the AWS KMS key to use for encryption. The alias, key ID, or full ARN of the AWS KMS key can be specified. The key must exist in the same Region as the repository. If no key is specified, the default AWS managed AWS KMS key for Amazon ECR will be used.- Returns:
this
-
build
Builds the configured instance.- Specified by:
build
in interfacesoftware.amazon.jsii.Builder<CfnRepositoryCreationTemplate.EncryptionConfigurationProperty>
- Returns:
- a new instance of
CfnRepositoryCreationTemplate.EncryptionConfigurationProperty
- Throws:
NullPointerException
- if any required attribute was not provided
-