AWS Cloud Control v1.27.0, Apr 14 25

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.27.0 published on Monday, Apr 14, 2025 by Pulumi

pulumi/pulumi-aws-native

aws-native.logs.getLogGroup

Explore with Pulumi AI

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.27.0 published on Monday, Apr 14, 2025 by Pulumi

pulumi/pulumi-aws-native

The AWS::Logs::LogGroup resource specifies a log group. A log group defines common properties for log streams, such as their retention and access control rules. Each log stream must belong to one log group. You can create up to 1,000,000 log groups per Region per account. You must use the following guidelines when naming a log group:

Log group names must be unique within a Region for an AWS account.
Log group names can be between 1 and 512 characters long.
Log group names consist of the following characters: a-z, A-Z, 0-9, ‘_’ (underscore), ‘-’ (hyphen), ‘/’ (forward slash), and ‘.’ (period).

Using getLogGroup

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getLogGroup(args: GetLogGroupArgs, opts?: InvokeOptions): Promise<GetLogGroupResult>
function getLogGroupOutput(args: GetLogGroupOutputArgs, opts?: InvokeOptions): Output<GetLogGroupResult>

def get_log_group(log_group_name: Optional[str] = None,
                  opts: Optional[InvokeOptions] = None) -> GetLogGroupResult
def get_log_group_output(log_group_name: Optional[pulumi.Input[str]] = None,
                  opts: Optional[InvokeOptions] = None) -> Output[GetLogGroupResult]

func LookupLogGroup(ctx *Context, args *LookupLogGroupArgs, opts ...InvokeOption) (*LookupLogGroupResult, error)
func LookupLogGroupOutput(ctx *Context, args *LookupLogGroupOutputArgs, opts ...InvokeOption) LookupLogGroupResultOutput

> Note: This function is named LookupLogGroup in the Go SDK.

public static class GetLogGroup 
{
    public static Task<GetLogGroupResult> InvokeAsync(GetLogGroupArgs args, InvokeOptions? opts = null)
    public static Output<GetLogGroupResult> Invoke(GetLogGroupInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetLogGroupResult> getLogGroup(GetLogGroupArgs args, InvokeOptions options)
public static Output<GetLogGroupResult> getLogGroup(GetLogGroupArgs args, InvokeOptions options)

fn::invoke:
  function: aws-native:logs:getLogGroup
  arguments:
    # arguments dictionary

The following arguments are supported:

LogGroupName string: The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.

LogGroupName string: The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.

logGroupName String: The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.

logGroupName string: The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.

log_group_name str: The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.

logGroupName String: The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.

getLogGroup Result

The following output properties are available:

Arn string

The ARN of the log group, such as arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*

DataProtectionPolicy object

Creates a data protection policy and assigns it to the log group. A data protection policy can help safeguard sensitive data that's ingested by the log group by auditing and masking the sensitive log data. When a user who does not have permission to view masked data views a log event that includes masked data, the sensitive data is replaced by asterisks. For more information, including a list of types of data that can be audited and masked, see Protect sensitive log data with masking.

Search the CloudFormation User Guide for AWS::Logs::LogGroup for more information about the expected schema for this property.

FieldIndexPolicies List<object>

Creates or updates a field index policy for the specified log group. Only log groups in the Standard log class support field index policies. For more information about log classes, see Log classes. You can use field index policies to create field indexes on fields found in log events in the log group. Creating field indexes lowers the costs for CWL Insights queries that reference those field indexes, because these queries attempt to skip the processing of log events that are known to not match the indexed field. Good fields to index are fields that you often need to query for and fields that have high cardinality of values Common examples of indexes include request ID, session ID, userID, and instance IDs. For more information, see Create field indexes to improve query performance and reduce costs. Currently, this array supports only one field index policy object.

KmsKeyId string

The Amazon Resource Name (ARN) of the KMS key to use when encrypting log data. To associate an KMS key with the log group, specify the ARN of that KMS key here. If you do so, ingested data is encrypted using this key. This association is stored as long as the data encrypted with the KMS key is still within CWL. This enables CWL to decrypt this data whenever it is requested. If you attempt to associate a KMS key with the log group but the KMS key doesn't exist or is deactivated, you will receive an InvalidParameterException error. Log group data is always encrypted in CWL. If you omit this key, the encryption does not use KMS. For more information, see Encrypt log data in using

LogGroupClass Pulumi.AwsNative.Logs.LogGroupClass

Specifies the log group class for this log group. There are two classes:

The Standard log class supports all CWL features.
The Infrequent Access log class supports a subset of CWL features and incurs lower costs.

For details about the features supported by each class, see Log classes

RetentionInDays int

The number of days to retain the log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1096, 1827, 2192, 2557, 2922, 3288, and 3653. To set a log group so that its log events do not expire, use DeleteRetentionPolicy.

Tags List<Pulumi.AwsNative.Outputs.Tag>

An array of key-value pairs to apply to the log group. For more information, see Tag.

Arn string

The ARN of the log group, such as arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*

DataProtectionPolicy interface{}

Search the CloudFormation User Guide for AWS::Logs::LogGroup for more information about the expected schema for this property.

FieldIndexPolicies []interface{}

KmsKeyId string

LogGroupClass LogGroupClass

Specifies the log group class for this log group. There are two classes:

The Standard log class supports all CWL features.
The Infrequent Access log class supports a subset of CWL features and incurs lower costs.

For details about the features supported by each class, see Log classes

RetentionInDays int

Tags Tag

An array of key-value pairs to apply to the log group. For more information, see Tag.

arn String

The ARN of the log group, such as arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*

dataProtectionPolicy Object

Search the CloudFormation User Guide for AWS::Logs::LogGroup for more information about the expected schema for this property.

fieldIndexPolicies List<Object>

kmsKeyId String

logGroupClass LogGroupClass

Specifies the log group class for this log group. There are two classes:

The Standard log class supports all CWL features.
The Infrequent Access log class supports a subset of CWL features and incurs lower costs.

For details about the features supported by each class, see Log classes

retentionInDays Integer

tags List<Tag>

An array of key-value pairs to apply to the log group. For more information, see Tag.

arn string

The ARN of the log group, such as arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*

dataProtectionPolicy any

Search the CloudFormation User Guide for AWS::Logs::LogGroup for more information about the expected schema for this property.

fieldIndexPolicies any[]

kmsKeyId string

logGroupClass LogGroupClass

Specifies the log group class for this log group. There are two classes:

The Standard log class supports all CWL features.
The Infrequent Access log class supports a subset of CWL features and incurs lower costs.

For details about the features supported by each class, see Log classes

retentionInDays number

tags Tag[]

An array of key-value pairs to apply to the log group. For more information, see Tag.

arn str

The ARN of the log group, such as arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*

data_protection_policy Any

Search the CloudFormation User Guide for AWS::Logs::LogGroup for more information about the expected schema for this property.

field_index_policies Sequence[Any]

kms_key_id str

log_group_class LogGroupClass

Specifies the log group class for this log group. There are two classes:

The Standard log class supports all CWL features.
The Infrequent Access log class supports a subset of CWL features and incurs lower costs.

For details about the features supported by each class, see Log classes

retention_in_days int

tags Sequence[root_Tag]

An array of key-value pairs to apply to the log group. For more information, see Tag.

arn String

The ARN of the log group, such as arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*

dataProtectionPolicy Any

Search the CloudFormation User Guide for AWS::Logs::LogGroup for more information about the expected schema for this property.

fieldIndexPolicies List<Any>

kmsKeyId String

logGroupClass "STANDARD" | "INFREQUENT_ACCESS"

Specifies the log group class for this log group. There are two classes:

The Standard log class supports all CWL features.
The Infrequent Access log class supports a subset of CWL features and incurs lower costs.

For details about the features supported by each class, see Log classes

retentionInDays Number

tags List<Property Map>

An array of key-value pairs to apply to the log group. For more information, see Tag.

Supporting Types

LogGroupClass

Package Details

Repository: AWS Native pulumi/pulumi-aws-native
License: Apache-2.0

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.27.0 published on Monday, Apr 14, 2025 by Pulumi

pulumi/pulumi-aws-native

aws-native.logs.getLogGroup

On this page

On this page

Using getLogGroup

getLogGroup Result

Supporting Types

LogGroupClass

Tag

Package Details

On this page

On this page