SaslAuthProps
- class aws_cdk.aws_msk_alpha.SaslAuthProps(*, iam=None, key=None, scram=None)
Bases:
object
(experimental) SASL authentication properties.
- Parameters:
iam (
Optional
[bool
]) – (experimental) Enable IAM access control. Default: falsekey (
Optional
[IKey
]) – (experimental) KMS Key to encrypt SASL/SCRAM secrets. You must use a customer master key (CMK) when creating users in secrets manager. You cannot use a Secret with Amazon MSK that uses the default Secrets Manager encryption key. Default: - CMK will be created with alias msk/{clusterName}/sasl/scramscram (
Optional
[bool
]) – (experimental) Enable SASL/SCRAM authentication. Default: false
- Stability:
experimental
- ExampleMetadata:
infused
Example:
# vpc: ec2.Vpc cluster = msk.Cluster(self, "cluster", cluster_name="myCluster", kafka_version=msk.KafkaVersion.V2_8_1, vpc=vpc, encryption_in_transit=msk.EncryptionInTransitConfig( client_broker=msk.ClientBrokerEncryption.TLS ), client_authentication=msk.ClientAuthentication.sasl( scram=True ) )
Attributes
- iam
(experimental) Enable IAM access control.
- Default:
false
- Stability:
experimental
- key
(experimental) KMS Key to encrypt SASL/SCRAM secrets.
You must use a customer master key (CMK) when creating users in secrets manager. You cannot use a Secret with Amazon MSK that uses the default Secrets Manager encryption key.
- Default:
CMK will be created with alias msk/{clusterName}/sasl/scram
- Stability:
experimental
- scram
(experimental) Enable SASL/SCRAM authentication.
- Default:
false
- Stability:
experimental