@Stability(value=Stable)
public static interface CfnRotationSchedule.HostedRotationLambdaProperty
extends software.amazon.jsii.JsiiSerializable
To use these values, you must specify Transform: AWS::SecretsManager-2020-07-23 at the beginning of the CloudFormation template.
Example:
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import software.amazon.awscdk.services.secretsmanager.*;
HostedRotationLambdaProperty hostedRotationLambdaProperty = HostedRotationLambdaProperty.builder()
.rotationType("rotationType")
// the properties below are optional
.kmsKeyArn("kmsKeyArn")
.masterSecretArn("masterSecretArn")
.masterSecretKmsKeyArn("masterSecretKmsKeyArn")
.rotationLambdaName("rotationLambdaName")
.superuserSecretArn("superuserSecretArn")
.superuserSecretKmsKeyArn("superuserSecretKmsKeyArn")
.vpcSecurityGroupIds("vpcSecurityGroupIds")
.vpcSubnetIds("vpcSubnetIds")
.build();
| Modifier and Type | Interface and Description |
|---|---|
static class |
CfnRotationSchedule.HostedRotationLambdaProperty.Builder
A builder for
CfnRotationSchedule.HostedRotationLambdaProperty |
static class |
CfnRotationSchedule.HostedRotationLambdaProperty.Jsii$Proxy
An implementation for
CfnRotationSchedule.HostedRotationLambdaProperty |
| Modifier and Type | Method and Description |
|---|---|
static CfnRotationSchedule.HostedRotationLambdaProperty.Builder |
builder() |
default String |
getKmsKeyArn()
The ARN of the KMS key that Secrets Manager uses to encrypt the secret.
|
default String |
getMasterSecretArn()
The ARN of the secret that contains elevated credentials.
|
default String |
getMasterSecretKmsKeyArn()
The ARN of the KMS key that Secrets Manager uses to encrypt the elevated secret if you use the [alternating users strategy](https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets_strategies.html#rotating-secrets-two-users) .
|
default String |
getRotationLambdaName()
The name of the Lambda rotation function.
|
String |
getRotationType()
The type of rotation template to use.
|
default String |
getSuperuserSecretArn()
`CfnRotationSchedule.HostedRotationLambdaProperty.SuperuserSecretArn`.
|
default String |
getSuperuserSecretKmsKeyArn()
`CfnRotationSchedule.HostedRotationLambdaProperty.SuperuserSecretKmsKeyArn`.
|
default String |
getVpcSecurityGroupIds()
A comma-separated list of security group IDs applied to the target database.
|
default String |
getVpcSubnetIds()
A comma separated list of VPC subnet IDs of the target database network.
|
@Stability(value=Stable) @NotNull String getRotationType()
You can specify one of the following RotationTypes :
@Stability(value=Stable) @Nullable default String getKmsKeyArn()
If you don't specify this value, then Secrets Manager uses the key aws/secretsmanager . If aws/secretsmanager doesn't yet exist, then Secrets Manager creates it for you automatically the first time it encrypts the secret value.
@Stability(value=Stable) @Nullable default String getMasterSecretArn()
The Lambda rotation function uses this secret for the Alternating users rotation strategy .
@Stability(value=Stable) @Nullable default String getMasterSecretKmsKeyArn()
@Stability(value=Stable) @Nullable default String getRotationLambdaName()
@Stability(value=Stable) @Nullable default String getSuperuserSecretArn()
@Stability(value=Stable) @Nullable default String getSuperuserSecretKmsKeyArn()
@Stability(value=Stable) @Nullable default String getVpcSecurityGroupIds()
The templates applies the same security groups as on the Lambda rotation function that is created as part of this stack.
@Stability(value=Stable) @Nullable default String getVpcSubnetIds()
The Lambda rotation function is in the same subnet group.
@Stability(value=Stable) static CfnRotationSchedule.HostedRotationLambdaProperty.Builder builder()
Copyright © 2022. All rights reserved.