KmsEncryptionState

A structure that contains the AWS KMS encryption configuration for the policy store. The encryption state shows what customer-managed KMS key is being used to encrypt all resources within the policy store, and any user-defined context key-value pairs added during encryption processes.

This data type is used as a field that is part of the EncryptionState type.

Contents

Note

In the following list, the required parameters are described first.

encryptionContext

User-defined, additional context added to encryption processes.

Type: String to string map

Map Entries: Minimum number of 0 items. Maximum number of 8192 items.

Key Length Constraints: Minimum length of 1.

Value Length Constraints: Minimum length of 1.

Required: Yes

key

The customer-managed KMS key Amazon Resource Name (ARN) being used for encryption processes.

Type: String

Pattern: [a-zA-Z0-9:/_-]+

Required: Yes

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following:

• AWS SDK for C++

• AWS SDK for Java V2

• AWS SDK for Ruby V3