AWS::MediaPackage::OriginEndpoint SpekeKeyProvider

Key provider settings for DRM.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON


{
  "CertificateArn" : String,
  "EncryptionContractConfiguration" : EncryptionContractConfiguration,
  "ResourceId" : String,
  "RoleArn" : String,
  "SystemIds" : [ String, ... ],
  "Url" : String
}

YAML


  CertificateArn: String
  EncryptionContractConfiguration: 
    EncryptionContractConfiguration
  ResourceId: String
  RoleArn: String
  SystemIds: 
    - String
  Url: String

Properties

CertificateArn

The Amazon Resource Name (ARN) for the certificate that you imported to AWS Certificate Manager to add content key encryption to this endpoint. For this feature to work, your DRM key provider must support content key encryption.

Required: No

Type: String

Update requires: No interruption

EncryptionContractConfiguration

Use encryptionContractConfiguration to configure one or more content encryption keys for your endpoints that use SPEKE Version 2.0. The encryption contract defines which content keys are used to encrypt the audio and video tracks in your stream. To configure the encryption contract, specify which audio and video encryption presets to use.

Required: No

Type: EncryptionContractConfiguration

Update requires: No interruption

ResourceId

Unique identifier for this endpoint, as it is configured in the key provider service.

Required: Yes

Type: String

Update requires: No interruption

RoleArn

The ARN for the IAM role that's granted by the key provider to provide access to the key provider API. This role must have a trust policy that allows AWS Elemental MediaPackage to assume the role, and it must have a sufficient permissions policy to allow access to the specific key retrieval URL. Valid format: arn:aws:iam::{accountID}:role/{name}

Required: Yes

Type: String

Update requires: No interruption

SystemIds

List of unique identifiers for the DRM systems to use, as defined in the CPIX specification.

Required: Yes

Type: Array of String

Update requires: No interruption

Url

URL for the key provider’s key retrieval API endpoint. Must start with https://.

Required: Yes

Type: String

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

MssPackage

StreamSelection