1. Packages
  2. AWS Classic
  3. API Docs
  4. glue
  5. SecurityConfiguration

Try AWS Native preview for resources not in the classic version.

AWS Classic v6.27.0 published on Monday, Mar 18, 2024 by Pulumi

aws.glue.SecurityConfiguration

Explore with Pulumi AI

aws logo

Try AWS Native preview for resources not in the classic version.

AWS Classic v6.27.0 published on Monday, Mar 18, 2024 by Pulumi

    Manages a Glue Security Configuration.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as aws from "@pulumi/aws";
    
    const example = new aws.glue.SecurityConfiguration("example", {
        name: "example",
        encryptionConfiguration: {
            cloudwatchEncryption: {
                cloudwatchEncryptionMode: "DISABLED",
            },
            jobBookmarksEncryption: {
                jobBookmarksEncryptionMode: "DISABLED",
            },
            s3Encryption: {
                kmsKeyArn: exampleAwsKmsKey.arn,
                s3EncryptionMode: "SSE-KMS",
            },
        },
    });
    
    import pulumi
    import pulumi_aws as aws
    
    example = aws.glue.SecurityConfiguration("example",
        name="example",
        encryption_configuration=aws.glue.SecurityConfigurationEncryptionConfigurationArgs(
            cloudwatch_encryption=aws.glue.SecurityConfigurationEncryptionConfigurationCloudwatchEncryptionArgs(
                cloudwatch_encryption_mode="DISABLED",
            ),
            job_bookmarks_encryption=aws.glue.SecurityConfigurationEncryptionConfigurationJobBookmarksEncryptionArgs(
                job_bookmarks_encryption_mode="DISABLED",
            ),
            s3_encryption=aws.glue.SecurityConfigurationEncryptionConfigurationS3EncryptionArgs(
                kms_key_arn=example_aws_kms_key["arn"],
                s3_encryption_mode="SSE-KMS",
            ),
        ))
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/glue"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := glue.NewSecurityConfiguration(ctx, "example", &glue.SecurityConfigurationArgs{
    			Name: pulumi.String("example"),
    			EncryptionConfiguration: &glue.SecurityConfigurationEncryptionConfigurationArgs{
    				CloudwatchEncryption: &glue.SecurityConfigurationEncryptionConfigurationCloudwatchEncryptionArgs{
    					CloudwatchEncryptionMode: pulumi.String("DISABLED"),
    				},
    				JobBookmarksEncryption: &glue.SecurityConfigurationEncryptionConfigurationJobBookmarksEncryptionArgs{
    					JobBookmarksEncryptionMode: pulumi.String("DISABLED"),
    				},
    				S3Encryption: &glue.SecurityConfigurationEncryptionConfigurationS3EncryptionArgs{
    					KmsKeyArn:        pulumi.Any(exampleAwsKmsKey.Arn),
    					S3EncryptionMode: pulumi.String("SSE-KMS"),
    				},
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Aws = Pulumi.Aws;
    
    return await Deployment.RunAsync(() => 
    {
        var example = new Aws.Glue.SecurityConfiguration("example", new()
        {
            Name = "example",
            EncryptionConfiguration = new Aws.Glue.Inputs.SecurityConfigurationEncryptionConfigurationArgs
            {
                CloudwatchEncryption = new Aws.Glue.Inputs.SecurityConfigurationEncryptionConfigurationCloudwatchEncryptionArgs
                {
                    CloudwatchEncryptionMode = "DISABLED",
                },
                JobBookmarksEncryption = new Aws.Glue.Inputs.SecurityConfigurationEncryptionConfigurationJobBookmarksEncryptionArgs
                {
                    JobBookmarksEncryptionMode = "DISABLED",
                },
                S3Encryption = new Aws.Glue.Inputs.SecurityConfigurationEncryptionConfigurationS3EncryptionArgs
                {
                    KmsKeyArn = exampleAwsKmsKey.Arn,
                    S3EncryptionMode = "SSE-KMS",
                },
            },
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.aws.glue.SecurityConfiguration;
    import com.pulumi.aws.glue.SecurityConfigurationArgs;
    import com.pulumi.aws.glue.inputs.SecurityConfigurationEncryptionConfigurationArgs;
    import com.pulumi.aws.glue.inputs.SecurityConfigurationEncryptionConfigurationCloudwatchEncryptionArgs;
    import com.pulumi.aws.glue.inputs.SecurityConfigurationEncryptionConfigurationJobBookmarksEncryptionArgs;
    import com.pulumi.aws.glue.inputs.SecurityConfigurationEncryptionConfigurationS3EncryptionArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var example = new SecurityConfiguration("example", SecurityConfigurationArgs.builder()        
                .name("example")
                .encryptionConfiguration(SecurityConfigurationEncryptionConfigurationArgs.builder()
                    .cloudwatchEncryption(SecurityConfigurationEncryptionConfigurationCloudwatchEncryptionArgs.builder()
                        .cloudwatchEncryptionMode("DISABLED")
                        .build())
                    .jobBookmarksEncryption(SecurityConfigurationEncryptionConfigurationJobBookmarksEncryptionArgs.builder()
                        .jobBookmarksEncryptionMode("DISABLED")
                        .build())
                    .s3Encryption(SecurityConfigurationEncryptionConfigurationS3EncryptionArgs.builder()
                        .kmsKeyArn(exampleAwsKmsKey.arn())
                        .s3EncryptionMode("SSE-KMS")
                        .build())
                    .build())
                .build());
    
        }
    }
    
    resources:
      example:
        type: aws:glue:SecurityConfiguration
        properties:
          name: example
          encryptionConfiguration:
            cloudwatchEncryption:
              cloudwatchEncryptionMode: DISABLED
            jobBookmarksEncryption:
              jobBookmarksEncryptionMode: DISABLED
            s3Encryption:
              kmsKeyArn: ${exampleAwsKmsKey.arn}
              s3EncryptionMode: SSE-KMS
    

    Create SecurityConfiguration Resource

    new SecurityConfiguration(name: string, args: SecurityConfigurationArgs, opts?: CustomResourceOptions);
    @overload
    def SecurityConfiguration(resource_name: str,
                              opts: Optional[ResourceOptions] = None,
                              encryption_configuration: Optional[SecurityConfigurationEncryptionConfigurationArgs] = None,
                              name: Optional[str] = None)
    @overload
    def SecurityConfiguration(resource_name: str,
                              args: SecurityConfigurationArgs,
                              opts: Optional[ResourceOptions] = None)
    func NewSecurityConfiguration(ctx *Context, name string, args SecurityConfigurationArgs, opts ...ResourceOption) (*SecurityConfiguration, error)
    public SecurityConfiguration(string name, SecurityConfigurationArgs args, CustomResourceOptions? opts = null)
    public SecurityConfiguration(String name, SecurityConfigurationArgs args)
    public SecurityConfiguration(String name, SecurityConfigurationArgs args, CustomResourceOptions options)
    
    type: aws:glue:SecurityConfiguration
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args SecurityConfigurationArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args SecurityConfigurationArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args SecurityConfigurationArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args SecurityConfigurationArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args SecurityConfigurationArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    SecurityConfiguration Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The SecurityConfiguration resource accepts the following input properties:

    EncryptionConfiguration SecurityConfigurationEncryptionConfiguration
    Configuration block containing encryption configuration. Detailed below.
    Name string
    Name of the security configuration.
    EncryptionConfiguration SecurityConfigurationEncryptionConfigurationArgs
    Configuration block containing encryption configuration. Detailed below.
    Name string
    Name of the security configuration.
    encryptionConfiguration SecurityConfigurationEncryptionConfiguration
    Configuration block containing encryption configuration. Detailed below.
    name String
    Name of the security configuration.
    encryptionConfiguration SecurityConfigurationEncryptionConfiguration
    Configuration block containing encryption configuration. Detailed below.
    name string
    Name of the security configuration.
    encryption_configuration SecurityConfigurationEncryptionConfigurationArgs
    Configuration block containing encryption configuration. Detailed below.
    name str
    Name of the security configuration.
    encryptionConfiguration Property Map
    Configuration block containing encryption configuration. Detailed below.
    name String
    Name of the security configuration.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the SecurityConfiguration resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing SecurityConfiguration Resource

    Get an existing SecurityConfiguration resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: SecurityConfigurationState, opts?: CustomResourceOptions): SecurityConfiguration
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            encryption_configuration: Optional[SecurityConfigurationEncryptionConfigurationArgs] = None,
            name: Optional[str] = None) -> SecurityConfiguration
    func GetSecurityConfiguration(ctx *Context, name string, id IDInput, state *SecurityConfigurationState, opts ...ResourceOption) (*SecurityConfiguration, error)
    public static SecurityConfiguration Get(string name, Input<string> id, SecurityConfigurationState? state, CustomResourceOptions? opts = null)
    public static SecurityConfiguration get(String name, Output<String> id, SecurityConfigurationState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    EncryptionConfiguration SecurityConfigurationEncryptionConfiguration
    Configuration block containing encryption configuration. Detailed below.
    Name string
    Name of the security configuration.
    EncryptionConfiguration SecurityConfigurationEncryptionConfigurationArgs
    Configuration block containing encryption configuration. Detailed below.
    Name string
    Name of the security configuration.
    encryptionConfiguration SecurityConfigurationEncryptionConfiguration
    Configuration block containing encryption configuration. Detailed below.
    name String
    Name of the security configuration.
    encryptionConfiguration SecurityConfigurationEncryptionConfiguration
    Configuration block containing encryption configuration. Detailed below.
    name string
    Name of the security configuration.
    encryption_configuration SecurityConfigurationEncryptionConfigurationArgs
    Configuration block containing encryption configuration. Detailed below.
    name str
    Name of the security configuration.
    encryptionConfiguration Property Map
    Configuration block containing encryption configuration. Detailed below.
    name String
    Name of the security configuration.

    Supporting Types

    SecurityConfigurationEncryptionConfiguration, SecurityConfigurationEncryptionConfigurationArgs

    cloudwatchEncryption Property Map
    jobBookmarksEncryption Property Map
    s3Encryption Property Map
    A s3_encryption block as described below, which contains encryption configuration for S3 data.

    SecurityConfigurationEncryptionConfigurationCloudwatchEncryption, SecurityConfigurationEncryptionConfigurationCloudwatchEncryptionArgs

    CloudwatchEncryptionMode string
    Encryption mode to use for CloudWatch data. Valid values: DISABLED, SSE-KMS. Default value: DISABLED.
    KmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    CloudwatchEncryptionMode string
    Encryption mode to use for CloudWatch data. Valid values: DISABLED, SSE-KMS. Default value: DISABLED.
    KmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    cloudwatchEncryptionMode String
    Encryption mode to use for CloudWatch data. Valid values: DISABLED, SSE-KMS. Default value: DISABLED.
    kmsKeyArn String
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    cloudwatchEncryptionMode string
    Encryption mode to use for CloudWatch data. Valid values: DISABLED, SSE-KMS. Default value: DISABLED.
    kmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    cloudwatch_encryption_mode str
    Encryption mode to use for CloudWatch data. Valid values: DISABLED, SSE-KMS. Default value: DISABLED.
    kms_key_arn str
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    cloudwatchEncryptionMode String
    Encryption mode to use for CloudWatch data. Valid values: DISABLED, SSE-KMS. Default value: DISABLED.
    kmsKeyArn String
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.

    SecurityConfigurationEncryptionConfigurationJobBookmarksEncryption, SecurityConfigurationEncryptionConfigurationJobBookmarksEncryptionArgs

    JobBookmarksEncryptionMode string
    Encryption mode to use for job bookmarks data. Valid values: CSE-KMS, DISABLED. Default value: DISABLED.
    KmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    JobBookmarksEncryptionMode string
    Encryption mode to use for job bookmarks data. Valid values: CSE-KMS, DISABLED. Default value: DISABLED.
    KmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    jobBookmarksEncryptionMode String
    Encryption mode to use for job bookmarks data. Valid values: CSE-KMS, DISABLED. Default value: DISABLED.
    kmsKeyArn String
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    jobBookmarksEncryptionMode string
    Encryption mode to use for job bookmarks data. Valid values: CSE-KMS, DISABLED. Default value: DISABLED.
    kmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    job_bookmarks_encryption_mode str
    Encryption mode to use for job bookmarks data. Valid values: CSE-KMS, DISABLED. Default value: DISABLED.
    kms_key_arn str
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    jobBookmarksEncryptionMode String
    Encryption mode to use for job bookmarks data. Valid values: CSE-KMS, DISABLED. Default value: DISABLED.
    kmsKeyArn String
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.

    SecurityConfigurationEncryptionConfigurationS3Encryption, SecurityConfigurationEncryptionConfigurationS3EncryptionArgs

    KmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    S3EncryptionMode string
    Encryption mode to use for S3 data. Valid values: DISABLED, SSE-KMS, SSE-S3. Default value: DISABLED.
    KmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    S3EncryptionMode string
    Encryption mode to use for S3 data. Valid values: DISABLED, SSE-KMS, SSE-S3. Default value: DISABLED.
    kmsKeyArn String
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    s3EncryptionMode String
    Encryption mode to use for S3 data. Valid values: DISABLED, SSE-KMS, SSE-S3. Default value: DISABLED.
    kmsKeyArn string
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    s3EncryptionMode string
    Encryption mode to use for S3 data. Valid values: DISABLED, SSE-KMS, SSE-S3. Default value: DISABLED.
    kms_key_arn str
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    s3_encryption_mode str
    Encryption mode to use for S3 data. Valid values: DISABLED, SSE-KMS, SSE-S3. Default value: DISABLED.
    kmsKeyArn String
    Amazon Resource Name (ARN) of the KMS key to be used to encrypt the data.
    s3EncryptionMode String
    Encryption mode to use for S3 data. Valid values: DISABLED, SSE-KMS, SSE-S3. Default value: DISABLED.

    Import

    Using pulumi import, import Glue Security Configurations using name. For example:

    $ pulumi import aws:glue/securityConfiguration:SecurityConfiguration example example
    

    Package Details

    Repository
    AWS Classic pulumi/pulumi-aws
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the aws Terraform Provider.
    aws logo

    Try AWS Native preview for resources not in the classic version.

    AWS Classic v6.27.0 published on Monday, Mar 18, 2024 by Pulumi