CfnEncryptionConfigurationProps

class aws_cdk.aws_iot.CfnEncryptionConfigurationProps(*, encryption_type, kms_access_role_arn=None, kms_key_arn=None)

Bases: object

Properties for defining a CfnEncryptionConfiguration.

Parameters:

• encryption_type (str) – The type of the KMS key.

• kms_access_role_arn (Optional[str]) – The Amazon Resource Name (ARN) of the IAM role assumed by AWS IoT Core to call AWS KMS on behalf of the customer.

• kms_key_arn (Optional[str]) – The ARN of the customer managed KMS key.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-encryptionconfiguration.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk import aws_iot as iot

cfn_encryption_configuration_props = iot.CfnEncryptionConfigurationProps(
    encryption_type="encryptionType",

    # the properties below are optional
    kms_access_role_arn="kmsAccessRoleArn",
    kms_key_arn="kmsKeyArn"
)

Attributes

encryption_type

The type of the KMS key.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-encryptionconfiguration.html#cfn-iot-encryptionconfiguration-encryptiontype

kms_access_role_arn

The Amazon Resource Name (ARN) of the IAM role assumed by AWS IoT Core to call AWS KMS on behalf of the customer.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-encryptionconfiguration.html#cfn-iot-encryptionconfiguration-kmsaccessrolearn

kms_key_arn

The ARN of the customer managed KMS key.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-encryptionconfiguration.html#cfn-iot-encryptionconfiguration-kmskeyarn