AWS Classic v6.2.1, Sep 22 23

Try AWS Native preview for resources not in the classic version.

AWS Classic v6.2.1 published on Friday, Sep 22, 2023 by Pulumi

pulumi/pulumi-aws

aws.msk.Cluster

Explore with Pulumi AI

Try AWS Native preview for resources not in the classic version.

AWS Classic v6.2.1 published on Friday, Sep 22, 2023 by Pulumi

pulumi/pulumi-aws

Example Usage

Basic

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;

return await Deployment.RunAsync(() => 
{
    var vpc = new Aws.Ec2.Vpc("vpc", new()
    {
        CidrBlock = "192.168.0.0/22",
    });

    var azs = Aws.GetAvailabilityZones.Invoke(new()
    {
        State = "available",
    });

    var subnetAz1 = new Aws.Ec2.Subnet("subnetAz1", new()
    {
        AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[0]),
        CidrBlock = "192.168.0.0/24",
        VpcId = vpc.Id,
    });

    var subnetAz2 = new Aws.Ec2.Subnet("subnetAz2", new()
    {
        AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[1]),
        CidrBlock = "192.168.1.0/24",
        VpcId = vpc.Id,
    });

    var subnetAz3 = new Aws.Ec2.Subnet("subnetAz3", new()
    {
        AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[2]),
        CidrBlock = "192.168.2.0/24",
        VpcId = vpc.Id,
    });

    var sg = new Aws.Ec2.SecurityGroup("sg", new()
    {
        VpcId = vpc.Id,
    });

    var kms = new Aws.Kms.Key("kms", new()
    {
        Description = "example",
    });

    var test = new Aws.CloudWatch.LogGroup("test");

    var bucket = new Aws.S3.BucketV2("bucket");

    var bucketAcl = new Aws.S3.BucketAclV2("bucketAcl", new()
    {
        Bucket = bucket.Id,
        Acl = "private",
    });

    var assumeRole = Aws.Iam.GetPolicyDocument.Invoke(new()
    {
        Statements = new[]
        {
            new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
            {
                Effect = "Allow",
                Principals = new[]
                {
                    new Aws.Iam.Inputs.GetPolicyDocumentStatementPrincipalInputArgs
                    {
                        Type = "Service",
                        Identifiers = new[]
                        {
                            "firehose.amazonaws.com",
                        },
                    },
                },
                Actions = new[]
                {
                    "sts:AssumeRole",
                },
            },
        },
    });

    var firehoseRole = new Aws.Iam.Role("firehoseRole", new()
    {
        AssumeRolePolicy = assumeRole.Apply(getPolicyDocumentResult => getPolicyDocumentResult.Json),
    });

    var testStream = new Aws.Kinesis.FirehoseDeliveryStream("testStream", new()
    {
        Destination = "extended_s3",
        ExtendedS3Configuration = new Aws.Kinesis.Inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs
        {
            RoleArn = firehoseRole.Arn,
            BucketArn = bucket.Arn,
        },
        Tags = 
        {
            { "LogDeliveryEnabled", "placeholder" },
        },
    });

    var example = new Aws.Msk.Cluster("example", new()
    {
        KafkaVersion = "3.2.0",
        NumberOfBrokerNodes = 3,
        BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
        {
            InstanceType = "kafka.m5.large",
            ClientSubnets = new[]
            {
                subnetAz1.Id,
                subnetAz2.Id,
                subnetAz3.Id,
            },
            StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
            {
                EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
                {
                    VolumeSize = 1000,
                },
            },
            SecurityGroups = new[]
            {
                sg.Id,
            },
        },
        EncryptionInfo = new Aws.Msk.Inputs.ClusterEncryptionInfoArgs
        {
            EncryptionAtRestKmsKeyArn = kms.Arn,
        },
        OpenMonitoring = new Aws.Msk.Inputs.ClusterOpenMonitoringArgs
        {
            Prometheus = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusArgs
            {
                JmxExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs
                {
                    EnabledInBroker = true,
                },
                NodeExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs
                {
                    EnabledInBroker = true,
                },
            },
        },
        LoggingInfo = new Aws.Msk.Inputs.ClusterLoggingInfoArgs
        {
            BrokerLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsArgs
            {
                CloudwatchLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
                {
                    Enabled = true,
                    LogGroup = test.Name,
                },
                Firehose = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs
                {
                    Enabled = true,
                    DeliveryStream = testStream.Name,
                },
                S3 = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsS3Args
                {
                    Enabled = true,
                    Bucket = bucket.Id,
                    Prefix = "logs/msk-",
                },
            },
        },
        Tags = 
        {
            { "foo", "bar" },
        },
    });

    return new Dictionary<string, object?>
    {
        ["zookeeperConnectString"] = example.ZookeeperConnectString,
        ["bootstrapBrokersTls"] = example.BootstrapBrokersTls,
    };
});

package main

import (
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/cloudwatch"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/ec2"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/iam"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kinesis"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kms"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/s3"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		vpc, err := ec2.NewVpc(ctx, "vpc", &ec2.VpcArgs{
			CidrBlock: pulumi.String("192.168.0.0/22"),
		})
		if err != nil {
			return err
		}
		azs, err := aws.GetAvailabilityZones(ctx, &aws.GetAvailabilityZonesArgs{
			State: pulumi.StringRef("available"),
		}, nil)
		if err != nil {
			return err
		}
		subnetAz1, err := ec2.NewSubnet(ctx, "subnetAz1", &ec2.SubnetArgs{
			AvailabilityZone: *pulumi.String(azs.Names[0]),
			CidrBlock:        pulumi.String("192.168.0.0/24"),
			VpcId:            vpc.ID(),
		})
		if err != nil {
			return err
		}
		subnetAz2, err := ec2.NewSubnet(ctx, "subnetAz2", &ec2.SubnetArgs{
			AvailabilityZone: *pulumi.String(azs.Names[1]),
			CidrBlock:        pulumi.String("192.168.1.0/24"),
			VpcId:            vpc.ID(),
		})
		if err != nil {
			return err
		}
		subnetAz3, err := ec2.NewSubnet(ctx, "subnetAz3", &ec2.SubnetArgs{
			AvailabilityZone: *pulumi.String(azs.Names[2]),
			CidrBlock:        pulumi.String("192.168.2.0/24"),
			VpcId:            vpc.ID(),
		})
		if err != nil {
			return err
		}
		sg, err := ec2.NewSecurityGroup(ctx, "sg", &ec2.SecurityGroupArgs{
			VpcId: vpc.ID(),
		})
		if err != nil {
			return err
		}
		kms, err := kms.NewKey(ctx, "kms", &kms.KeyArgs{
			Description: pulumi.String("example"),
		})
		if err != nil {
			return err
		}
		test, err := cloudwatch.NewLogGroup(ctx, "test", nil)
		if err != nil {
			return err
		}
		bucket, err := s3.NewBucketV2(ctx, "bucket", nil)
		if err != nil {
			return err
		}
		_, err = s3.NewBucketAclV2(ctx, "bucketAcl", &s3.BucketAclV2Args{
			Bucket: bucket.ID(),
			Acl:    pulumi.String("private"),
		})
		if err != nil {
			return err
		}
		assumeRole, err := iam.GetPolicyDocument(ctx, &iam.GetPolicyDocumentArgs{
			Statements: []iam.GetPolicyDocumentStatement{
				{
					Effect: pulumi.StringRef("Allow"),
					Principals: []iam.GetPolicyDocumentStatementPrincipal{
						{
							Type: "Service",
							Identifiers: []string{
								"firehose.amazonaws.com",
							},
						},
					},
					Actions: []string{
						"sts:AssumeRole",
					},
				},
			},
		}, nil)
		if err != nil {
			return err
		}
		firehoseRole, err := iam.NewRole(ctx, "firehoseRole", &iam.RoleArgs{
			AssumeRolePolicy: *pulumi.String(assumeRole.Json),
		})
		if err != nil {
			return err
		}
		testStream, err := kinesis.NewFirehoseDeliveryStream(ctx, "testStream", &kinesis.FirehoseDeliveryStreamArgs{
			Destination: pulumi.String("extended_s3"),
			ExtendedS3Configuration: &kinesis.FirehoseDeliveryStreamExtendedS3ConfigurationArgs{
				RoleArn:   firehoseRole.Arn,
				BucketArn: bucket.Arn,
			},
			Tags: pulumi.StringMap{
				"LogDeliveryEnabled": pulumi.String("placeholder"),
			},
		})
		if err != nil {
			return err
		}
		example, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
			KafkaVersion:        pulumi.String("3.2.0"),
			NumberOfBrokerNodes: pulumi.Int(3),
			BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
				InstanceType: pulumi.String("kafka.m5.large"),
				ClientSubnets: pulumi.StringArray{
					subnetAz1.ID(),
					subnetAz2.ID(),
					subnetAz3.ID(),
				},
				StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
					EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
						VolumeSize: pulumi.Int(1000),
					},
				},
				SecurityGroups: pulumi.StringArray{
					sg.ID(),
				},
			},
			EncryptionInfo: &msk.ClusterEncryptionInfoArgs{
				EncryptionAtRestKmsKeyArn: kms.Arn,
			},
			OpenMonitoring: &msk.ClusterOpenMonitoringArgs{
				Prometheus: &msk.ClusterOpenMonitoringPrometheusArgs{
					JmxExporter: &msk.ClusterOpenMonitoringPrometheusJmxExporterArgs{
						EnabledInBroker: pulumi.Bool(true),
					},
					NodeExporter: &msk.ClusterOpenMonitoringPrometheusNodeExporterArgs{
						EnabledInBroker: pulumi.Bool(true),
					},
				},
			},
			LoggingInfo: &msk.ClusterLoggingInfoArgs{
				BrokerLogs: &msk.ClusterLoggingInfoBrokerLogsArgs{
					CloudwatchLogs: &msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs{
						Enabled:  pulumi.Bool(true),
						LogGroup: test.Name,
					},
					Firehose: &msk.ClusterLoggingInfoBrokerLogsFirehoseArgs{
						Enabled:        pulumi.Bool(true),
						DeliveryStream: testStream.Name,
					},
					S3: &msk.ClusterLoggingInfoBrokerLogsS3Args{
						Enabled: pulumi.Bool(true),
						Bucket:  bucket.ID(),
						Prefix:  pulumi.String("logs/msk-"),
					},
				},
			},
			Tags: pulumi.StringMap{
				"foo": pulumi.String("bar"),
			},
		})
		if err != nil {
			return err
		}
		ctx.Export("zookeeperConnectString", example.ZookeeperConnectString)
		ctx.Export("bootstrapBrokersTls", example.BootstrapBrokersTls)
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.ec2.Vpc;
import com.pulumi.aws.ec2.VpcArgs;
import com.pulumi.aws.AwsFunctions;
import com.pulumi.aws.inputs.GetAvailabilityZonesArgs;
import com.pulumi.aws.ec2.Subnet;
import com.pulumi.aws.ec2.SubnetArgs;
import com.pulumi.aws.ec2.SecurityGroup;
import com.pulumi.aws.ec2.SecurityGroupArgs;
import com.pulumi.aws.kms.Key;
import com.pulumi.aws.kms.KeyArgs;
import com.pulumi.aws.cloudwatch.LogGroup;
import com.pulumi.aws.s3.BucketV2;
import com.pulumi.aws.s3.BucketAclV2;
import com.pulumi.aws.s3.BucketAclV2Args;
import com.pulumi.aws.iam.IamFunctions;
import com.pulumi.aws.iam.inputs.GetPolicyDocumentArgs;
import com.pulumi.aws.iam.Role;
import com.pulumi.aws.iam.RoleArgs;
import com.pulumi.aws.kinesis.FirehoseDeliveryStream;
import com.pulumi.aws.kinesis.FirehoseDeliveryStreamArgs;
import com.pulumi.aws.kinesis.inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs;
import com.pulumi.aws.msk.Cluster;
import com.pulumi.aws.msk.ClusterArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterEncryptionInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsS3Args;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var vpc = new Vpc("vpc", VpcArgs.builder()        
            .cidrBlock("192.168.0.0/22")
            .build());

        final var azs = AwsFunctions.getAvailabilityZones(GetAvailabilityZonesArgs.builder()
            .state("available")
            .build());

        var subnetAz1 = new Subnet("subnetAz1", SubnetArgs.builder()        
            .availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[0]))
            .cidrBlock("192.168.0.0/24")
            .vpcId(vpc.id())
            .build());

        var subnetAz2 = new Subnet("subnetAz2", SubnetArgs.builder()        
            .availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[1]))
            .cidrBlock("192.168.1.0/24")
            .vpcId(vpc.id())
            .build());

        var subnetAz3 = new Subnet("subnetAz3", SubnetArgs.builder()        
            .availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[2]))
            .cidrBlock("192.168.2.0/24")
            .vpcId(vpc.id())
            .build());

        var sg = new SecurityGroup("sg", SecurityGroupArgs.builder()        
            .vpcId(vpc.id())
            .build());

        var kms = new Key("kms", KeyArgs.builder()        
            .description("example")
            .build());

        var test = new LogGroup("test");

        var bucket = new BucketV2("bucket");

        var bucketAcl = new BucketAclV2("bucketAcl", BucketAclV2Args.builder()        
            .bucket(bucket.id())
            .acl("private")
            .build());

        final var assumeRole = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
            .statements(GetPolicyDocumentStatementArgs.builder()
                .effect("Allow")
                .principals(GetPolicyDocumentStatementPrincipalArgs.builder()
                    .type("Service")
                    .identifiers("firehose.amazonaws.com")
                    .build())
                .actions("sts:AssumeRole")
                .build())
            .build());

        var firehoseRole = new Role("firehoseRole", RoleArgs.builder()        
            .assumeRolePolicy(assumeRole.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult.json()))
            .build());

        var testStream = new FirehoseDeliveryStream("testStream", FirehoseDeliveryStreamArgs.builder()        
            .destination("extended_s3")
            .extendedS3Configuration(FirehoseDeliveryStreamExtendedS3ConfigurationArgs.builder()
                .roleArn(firehoseRole.arn())
                .bucketArn(bucket.arn())
                .build())
            .tags(Map.of("LogDeliveryEnabled", "placeholder"))
            .build());

        var example = new Cluster("example", ClusterArgs.builder()        
            .kafkaVersion("3.2.0")
            .numberOfBrokerNodes(3)
            .brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
                .instanceType("kafka.m5.large")
                .clientSubnets(                
                    subnetAz1.id(),
                    subnetAz2.id(),
                    subnetAz3.id())
                .storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
                    .ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
                        .volumeSize(1000)
                        .build())
                    .build())
                .securityGroups(sg.id())
                .build())
            .encryptionInfo(ClusterEncryptionInfoArgs.builder()
                .encryptionAtRestKmsKeyArn(kms.arn())
                .build())
            .openMonitoring(ClusterOpenMonitoringArgs.builder()
                .prometheus(ClusterOpenMonitoringPrometheusArgs.builder()
                    .jmxExporter(ClusterOpenMonitoringPrometheusJmxExporterArgs.builder()
                        .enabledInBroker(true)
                        .build())
                    .nodeExporter(ClusterOpenMonitoringPrometheusNodeExporterArgs.builder()
                        .enabledInBroker(true)
                        .build())
                    .build())
                .build())
            .loggingInfo(ClusterLoggingInfoArgs.builder()
                .brokerLogs(ClusterLoggingInfoBrokerLogsArgs.builder()
                    .cloudwatchLogs(ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs.builder()
                        .enabled(true)
                        .logGroup(test.name())
                        .build())
                    .firehose(ClusterLoggingInfoBrokerLogsFirehoseArgs.builder()
                        .enabled(true)
                        .deliveryStream(testStream.name())
                        .build())
                    .s3(ClusterLoggingInfoBrokerLogsS3Args.builder()
                        .enabled(true)
                        .bucket(bucket.id())
                        .prefix("logs/msk-")
                        .build())
                    .build())
                .build())
            .tags(Map.of("foo", "bar"))
            .build());

        ctx.export("zookeeperConnectString", example.zookeeperConnectString());
        ctx.export("bootstrapBrokersTls", example.bootstrapBrokersTls());
    }
}

import pulumi
import pulumi_aws as aws

vpc = aws.ec2.Vpc("vpc", cidr_block="192.168.0.0/22")
azs = aws.get_availability_zones(state="available")
subnet_az1 = aws.ec2.Subnet("subnetAz1",
    availability_zone=azs.names[0],
    cidr_block="192.168.0.0/24",
    vpc_id=vpc.id)
subnet_az2 = aws.ec2.Subnet("subnetAz2",
    availability_zone=azs.names[1],
    cidr_block="192.168.1.0/24",
    vpc_id=vpc.id)
subnet_az3 = aws.ec2.Subnet("subnetAz3",
    availability_zone=azs.names[2],
    cidr_block="192.168.2.0/24",
    vpc_id=vpc.id)
sg = aws.ec2.SecurityGroup("sg", vpc_id=vpc.id)
kms = aws.kms.Key("kms", description="example")
test = aws.cloudwatch.LogGroup("test")
bucket = aws.s3.BucketV2("bucket")
bucket_acl = aws.s3.BucketAclV2("bucketAcl",
    bucket=bucket.id,
    acl="private")
assume_role = aws.iam.get_policy_document(statements=[aws.iam.GetPolicyDocumentStatementArgs(
    effect="Allow",
    principals=[aws.iam.GetPolicyDocumentStatementPrincipalArgs(
        type="Service",
        identifiers=["firehose.amazonaws.com"],
    )],
    actions=["sts:AssumeRole"],
)])
firehose_role = aws.iam.Role("firehoseRole", assume_role_policy=assume_role.json)
test_stream = aws.kinesis.FirehoseDeliveryStream("testStream",
    destination="extended_s3",
    extended_s3_configuration=aws.kinesis.FirehoseDeliveryStreamExtendedS3ConfigurationArgs(
        role_arn=firehose_role.arn,
        bucket_arn=bucket.arn,
    ),
    tags={
        "LogDeliveryEnabled": "placeholder",
    })
example = aws.msk.Cluster("example",
    kafka_version="3.2.0",
    number_of_broker_nodes=3,
    broker_node_group_info=aws.msk.ClusterBrokerNodeGroupInfoArgs(
        instance_type="kafka.m5.large",
        client_subnets=[
            subnet_az1.id,
            subnet_az2.id,
            subnet_az3.id,
        ],
        storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoArgs(
            ebs_storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs(
                volume_size=1000,
            ),
        ),
        security_groups=[sg.id],
    ),
    encryption_info=aws.msk.ClusterEncryptionInfoArgs(
        encryption_at_rest_kms_key_arn=kms.arn,
    ),
    open_monitoring=aws.msk.ClusterOpenMonitoringArgs(
        prometheus=aws.msk.ClusterOpenMonitoringPrometheusArgs(
            jmx_exporter=aws.msk.ClusterOpenMonitoringPrometheusJmxExporterArgs(
                enabled_in_broker=True,
            ),
            node_exporter=aws.msk.ClusterOpenMonitoringPrometheusNodeExporterArgs(
                enabled_in_broker=True,
            ),
        ),
    ),
    logging_info=aws.msk.ClusterLoggingInfoArgs(
        broker_logs=aws.msk.ClusterLoggingInfoBrokerLogsArgs(
            cloudwatch_logs=aws.msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs(
                enabled=True,
                log_group=test.name,
            ),
            firehose=aws.msk.ClusterLoggingInfoBrokerLogsFirehoseArgs(
                enabled=True,
                delivery_stream=test_stream.name,
            ),
            s3=aws.msk.ClusterLoggingInfoBrokerLogsS3Args(
                enabled=True,
                bucket=bucket.id,
                prefix="logs/msk-",
            ),
        ),
    ),
    tags={
        "foo": "bar",
    })
pulumi.export("zookeeperConnectString", example.zookeeper_connect_string)
pulumi.export("bootstrapBrokersTls", example.bootstrap_brokers_tls)

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

const vpc = new aws.ec2.Vpc("vpc", {cidrBlock: "192.168.0.0/22"});
const azs = aws.getAvailabilityZones({
    state: "available",
});
const subnetAz1 = new aws.ec2.Subnet("subnetAz1", {
    availabilityZone: azs.then(azs => azs.names?.[0]),
    cidrBlock: "192.168.0.0/24",
    vpcId: vpc.id,
});
const subnetAz2 = new aws.ec2.Subnet("subnetAz2", {
    availabilityZone: azs.then(azs => azs.names?.[1]),
    cidrBlock: "192.168.1.0/24",
    vpcId: vpc.id,
});
const subnetAz3 = new aws.ec2.Subnet("subnetAz3", {
    availabilityZone: azs.then(azs => azs.names?.[2]),
    cidrBlock: "192.168.2.0/24",
    vpcId: vpc.id,
});
const sg = new aws.ec2.SecurityGroup("sg", {vpcId: vpc.id});
const kms = new aws.kms.Key("kms", {description: "example"});
const test = new aws.cloudwatch.LogGroup("test", {});
const bucket = new aws.s3.BucketV2("bucket", {});
const bucketAcl = new aws.s3.BucketAclV2("bucketAcl", {
    bucket: bucket.id,
    acl: "private",
});
const assumeRole = aws.iam.getPolicyDocument({
    statements: [{
        effect: "Allow",
        principals: [{
            type: "Service",
            identifiers: ["firehose.amazonaws.com"],
        }],
        actions: ["sts:AssumeRole"],
    }],
});
const firehoseRole = new aws.iam.Role("firehoseRole", {assumeRolePolicy: assumeRole.then(assumeRole => assumeRole.json)});
const testStream = new aws.kinesis.FirehoseDeliveryStream("testStream", {
    destination: "extended_s3",
    extendedS3Configuration: {
        roleArn: firehoseRole.arn,
        bucketArn: bucket.arn,
    },
    tags: {
        LogDeliveryEnabled: "placeholder",
    },
});
const example = new aws.msk.Cluster("example", {
    kafkaVersion: "3.2.0",
    numberOfBrokerNodes: 3,
    brokerNodeGroupInfo: {
        instanceType: "kafka.m5.large",
        clientSubnets: [
            subnetAz1.id,
            subnetAz2.id,
            subnetAz3.id,
        ],
        storageInfo: {
            ebsStorageInfo: {
                volumeSize: 1000,
            },
        },
        securityGroups: [sg.id],
    },
    encryptionInfo: {
        encryptionAtRestKmsKeyArn: kms.arn,
    },
    openMonitoring: {
        prometheus: {
            jmxExporter: {
                enabledInBroker: true,
            },
            nodeExporter: {
                enabledInBroker: true,
            },
        },
    },
    loggingInfo: {
        brokerLogs: {
            cloudwatchLogs: {
                enabled: true,
                logGroup: test.name,
            },
            firehose: {
                enabled: true,
                deliveryStream: testStream.name,
            },
            s3: {
                enabled: true,
                bucket: bucket.id,
                prefix: "logs/msk-",
            },
        },
    },
    tags: {
        foo: "bar",
    },
});
export const zookeeperConnectString = example.zookeeperConnectString;
export const bootstrapBrokersTls = example.bootstrapBrokersTls;

resources:
  vpc:
    type: aws:ec2:Vpc
    properties:
      cidrBlock: 192.168.0.0/22
  subnetAz1:
    type: aws:ec2:Subnet
    properties:
      availabilityZone: ${azs.names[0]}
      cidrBlock: 192.168.0.0/24
      vpcId: ${vpc.id}
  subnetAz2:
    type: aws:ec2:Subnet
    properties:
      availabilityZone: ${azs.names[1]}
      cidrBlock: 192.168.1.0/24
      vpcId: ${vpc.id}
  subnetAz3:
    type: aws:ec2:Subnet
    properties:
      availabilityZone: ${azs.names[2]}
      cidrBlock: 192.168.2.0/24
      vpcId: ${vpc.id}
  sg:
    type: aws:ec2:SecurityGroup
    properties:
      vpcId: ${vpc.id}
  kms:
    type: aws:kms:Key
    properties:
      description: example
  test:
    type: aws:cloudwatch:LogGroup
  bucket:
    type: aws:s3:BucketV2
  bucketAcl:
    type: aws:s3:BucketAclV2
    properties:
      bucket: ${bucket.id}
      acl: private
  firehoseRole:
    type: aws:iam:Role
    properties:
      assumeRolePolicy: ${assumeRole.json}
  testStream:
    type: aws:kinesis:FirehoseDeliveryStream
    properties:
      destination: extended_s3
      extendedS3Configuration:
        roleArn: ${firehoseRole.arn}
        bucketArn: ${bucket.arn}
      tags:
        LogDeliveryEnabled: placeholder
  example:
    type: aws:msk:Cluster
    properties:
      kafkaVersion: 3.2.0
      numberOfBrokerNodes: 3
      brokerNodeGroupInfo:
        instanceType: kafka.m5.large
        clientSubnets:
          - ${subnetAz1.id}
          - ${subnetAz2.id}
          - ${subnetAz3.id}
        storageInfo:
          ebsStorageInfo:
            volumeSize: 1000
        securityGroups:
          - ${sg.id}
      encryptionInfo:
        encryptionAtRestKmsKeyArn: ${kms.arn}
      openMonitoring:
        prometheus:
          jmxExporter:
            enabledInBroker: true
          nodeExporter:
            enabledInBroker: true
      loggingInfo:
        brokerLogs:
          cloudwatchLogs:
            enabled: true
            logGroup: ${test.name}
          firehose:
            enabled: true
            deliveryStream: ${testStream.name}
          s3:
            enabled: true
            bucket: ${bucket.id}
            prefix: logs/msk-
      tags:
        foo: bar
variables:
  azs:
    fn::invoke:
      Function: aws:getAvailabilityZones
      Arguments:
        state: available
  assumeRole:
    fn::invoke:
      Function: aws:iam:getPolicyDocument
      Arguments:
        statements:
          - effect: Allow
            principals:
              - type: Service
                identifiers:
                  - firehose.amazonaws.com
            actions:
              - sts:AssumeRole
outputs:
  zookeeperConnectString: ${example.zookeeperConnectString}
  bootstrapBrokersTls: ${example.bootstrapBrokersTls}

With volume_throughput argument

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;

return await Deployment.RunAsync(() => 
{
    var example = new Aws.Msk.Cluster("example", new()
    {
        KafkaVersion = "2.7.1",
        NumberOfBrokerNodes = 3,
        BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
        {
            InstanceType = "kafka.m5.4xlarge",
            ClientSubnets = new[]
            {
                aws_subnet.Subnet_az1.Id,
                aws_subnet.Subnet_az2.Id,
                aws_subnet.Subnet_az3.Id,
            },
            StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
            {
                EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
                {
                    ProvisionedThroughput = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
                    {
                        Enabled = true,
                        VolumeThroughput = 250,
                    },
                    VolumeSize = 1000,
                },
            },
            SecurityGroups = new[]
            {
                aws_security_group.Sg.Id,
            },
        },
    });

});

package main

import (
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
			KafkaVersion:        pulumi.String("2.7.1"),
			NumberOfBrokerNodes: pulumi.Int(3),
			BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
				InstanceType: pulumi.String("kafka.m5.4xlarge"),
				ClientSubnets: pulumi.StringArray{
					aws_subnet.Subnet_az1.Id,
					aws_subnet.Subnet_az2.Id,
					aws_subnet.Subnet_az3.Id,
				},
				StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
					EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
						ProvisionedThroughput: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs{
							Enabled:          pulumi.Bool(true),
							VolumeThroughput: pulumi.Int(250),
						},
						VolumeSize: pulumi.Int(1000),
					},
				},
				SecurityGroups: pulumi.StringArray{
					aws_security_group.Sg.Id,
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.msk.Cluster;
import com.pulumi.aws.msk.ClusterArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var example = new Cluster("example", ClusterArgs.builder()        
            .kafkaVersion("2.7.1")
            .numberOfBrokerNodes(3)
            .brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
                .instanceType("kafka.m5.4xlarge")
                .clientSubnets(                
                    aws_subnet.subnet_az1().id(),
                    aws_subnet.subnet_az2().id(),
                    aws_subnet.subnet_az3().id())
                .storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
                    .ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
                        .provisionedThroughput(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs.builder()
                            .enabled(true)
                            .volumeThroughput(250)
                            .build())
                        .volumeSize(1000)
                        .build())
                    .build())
                .securityGroups(aws_security_group.sg().id())
                .build())
            .build());

    }
}

import pulumi
import pulumi_aws as aws

example = aws.msk.Cluster("example",
    kafka_version="2.7.1",
    number_of_broker_nodes=3,
    broker_node_group_info=aws.msk.ClusterBrokerNodeGroupInfoArgs(
        instance_type="kafka.m5.4xlarge",
        client_subnets=[
            aws_subnet["subnet_az1"]["id"],
            aws_subnet["subnet_az2"]["id"],
            aws_subnet["subnet_az3"]["id"],
        ],
        storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoArgs(
            ebs_storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs(
                provisioned_throughput=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs(
                    enabled=True,
                    volume_throughput=250,
                ),
                volume_size=1000,
            ),
        ),
        security_groups=[aws_security_group["sg"]["id"]],
    ))

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

const example = new aws.msk.Cluster("example", {
    kafkaVersion: "2.7.1",
    numberOfBrokerNodes: 3,
    brokerNodeGroupInfo: {
        instanceType: "kafka.m5.4xlarge",
        clientSubnets: [
            aws_subnet.subnet_az1.id,
            aws_subnet.subnet_az2.id,
            aws_subnet.subnet_az3.id,
        ],
        storageInfo: {
            ebsStorageInfo: {
                provisionedThroughput: {
                    enabled: true,
                    volumeThroughput: 250,
                },
                volumeSize: 1000,
            },
        },
        securityGroups: [aws_security_group.sg.id],
    },
});

resources:
  example:
    type: aws:msk:Cluster
    properties:
      kafkaVersion: 2.7.1
      numberOfBrokerNodes: 3
      brokerNodeGroupInfo:
        instanceType: kafka.m5.4xlarge
        clientSubnets:
          - ${aws_subnet.subnet_az1.id}
          - ${aws_subnet.subnet_az2.id}
          - ${aws_subnet.subnet_az3.id}
        storageInfo:
          ebsStorageInfo:
            provisionedThroughput:
              enabled: true
              volumeThroughput: 250
            volumeSize: 1000
        securityGroups:
          - ${aws_security_group.sg.id}

Create Cluster Resource

new Cluster(name: string, args: ClusterArgs, opts?: CustomResourceOptions);

@overload
def Cluster(resource_name: str,
            opts: Optional[ResourceOptions] = None,
            broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
            client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
            cluster_name: Optional[str] = None,
            configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
            encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
            enhanced_monitoring: Optional[str] = None,
            kafka_version: Optional[str] = None,
            logging_info: Optional[ClusterLoggingInfoArgs] = None,
            number_of_broker_nodes: Optional[int] = None,
            open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
            storage_mode: Optional[str] = None,
            tags: Optional[Mapping[str, str]] = None)
@overload
def Cluster(resource_name: str,
            args: ClusterArgs,
            opts: Optional[ResourceOptions] = None)

func NewCluster(ctx *Context, name string, args ClusterArgs, opts ...ResourceOption) (*Cluster, error)

public Cluster(string name, ClusterArgs args, CustomResourceOptions? opts = null)

public Cluster(String name, ClusterArgs args)
public Cluster(String name, ClusterArgs args, CustomResourceOptions options)

type: aws:msk:Cluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ClusterArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ClusterArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ClusterArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ClusterArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ClusterArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Cluster Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The Cluster resource accepts the following input properties:

BrokerNodeGroupInfo ClusterBrokerNodeGroupInfo: Configuration block for the broker nodes of the Kafka cluster.
KafkaVersion string: Specify the desired Kafka software version.
NumberOfBrokerNodes int: The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
ClientAuthentication ClusterClientAuthentication: Configuration block for specifying a client authentication. See below.
ClusterName string: Name of the MSK cluster.
ConfigurationInfo ClusterConfigurationInfo: Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
EncryptionInfo ClusterEncryptionInfo: Configuration block for specifying encryption. See below.
EnhancedMonitoring string: Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
LoggingInfo ClusterLoggingInfo: Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
OpenMonitoring ClusterOpenMonitoring: Configuration block for JMX and Node monitoring for the MSK cluster. See below.
StorageMode string: Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
Tags Dictionary<string, string>: A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

BrokerNodeGroupInfo ClusterBrokerNodeGroupInfoArgs: Configuration block for the broker nodes of the Kafka cluster.
KafkaVersion string: Specify the desired Kafka software version.
NumberOfBrokerNodes int: The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
ClientAuthentication ClusterClientAuthenticationArgs: Configuration block for specifying a client authentication. See below.
ClusterName string: Name of the MSK cluster.
ConfigurationInfo ClusterConfigurationInfoArgs: Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
EncryptionInfo ClusterEncryptionInfoArgs: Configuration block for specifying encryption. See below.
EnhancedMonitoring string: Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
LoggingInfo ClusterLoggingInfoArgs: Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
OpenMonitoring ClusterOpenMonitoringArgs: Configuration block for JMX and Node monitoring for the MSK cluster. See below.
StorageMode string: Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
Tags map[string]string: A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

brokerNodeGroupInfo ClusterBrokerNodeGroupInfo: Configuration block for the broker nodes of the Kafka cluster.
kafkaVersion String: Specify the desired Kafka software version.
numberOfBrokerNodes Integer: The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
clientAuthentication ClusterClientAuthentication: Configuration block for specifying a client authentication. See below.
clusterName String: Name of the MSK cluster.
configurationInfo ClusterConfigurationInfo: Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
encryptionInfo ClusterEncryptionInfo: Configuration block for specifying encryption. See below.
enhancedMonitoring String: Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
loggingInfo ClusterLoggingInfo: Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
openMonitoring ClusterOpenMonitoring: Configuration block for JMX and Node monitoring for the MSK cluster. See below.
storageMode String: Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
tags Map<String,String>: A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

brokerNodeGroupInfo ClusterBrokerNodeGroupInfo: Configuration block for the broker nodes of the Kafka cluster.
kafkaVersion string: Specify the desired Kafka software version.
numberOfBrokerNodes number: The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
clientAuthentication ClusterClientAuthentication: Configuration block for specifying a client authentication. See below.
clusterName string: Name of the MSK cluster.
configurationInfo ClusterConfigurationInfo: Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
encryptionInfo ClusterEncryptionInfo: Configuration block for specifying encryption. See below.
enhancedMonitoring string: Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
loggingInfo ClusterLoggingInfo: Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
openMonitoring ClusterOpenMonitoring: Configuration block for JMX and Node monitoring for the MSK cluster. See below.
storageMode string: Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
tags {[key: string]: string}: A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

broker_node_group_info ClusterBrokerNodeGroupInfoArgs: Configuration block for the broker nodes of the Kafka cluster.
kafka_version str: Specify the desired Kafka software version.
number_of_broker_nodes int: The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
client_authentication ClusterClientAuthenticationArgs: Configuration block for specifying a client authentication. See below.
cluster_name str: Name of the MSK cluster.
configuration_info ClusterConfigurationInfoArgs: Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
encryption_info ClusterEncryptionInfoArgs: Configuration block for specifying encryption. See below.
enhanced_monitoring str: Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
logging_info ClusterLoggingInfoArgs: Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
open_monitoring ClusterOpenMonitoringArgs: Configuration block for JMX and Node monitoring for the MSK cluster. See below.
storage_mode str: Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
tags Mapping[str, str]: A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

brokerNodeGroupInfo Property Map: Configuration block for the broker nodes of the Kafka cluster.
kafkaVersion String: Specify the desired Kafka software version.
numberOfBrokerNodes Number: The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
clientAuthentication Property Map: Configuration block for specifying a client authentication. See below.
clusterName String: Name of the MSK cluster.
configurationInfo Property Map: Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
encryptionInfo Property Map: Configuration block for specifying encryption. See below.
enhancedMonitoring String: Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
loggingInfo Property Map: Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
openMonitoring Property Map: Configuration block for JMX and Node monitoring for the MSK cluster. See below.
storageMode String: Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
tags Map<String>: A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

Outputs

All input properties are implicitly available as output properties. Additionally, the Cluster resource produces the following output properties:

Arn string

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

BootstrapBrokers string

Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.

BootstrapBrokersPublicSaslIam string

One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersPublicSaslScram string

One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersPublicTls string

One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersSaslIam string

One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersSaslScram string

One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersTls string

One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivitySaslIam string

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivitySaslScram string

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivityTls string

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

CurrentVersion string

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

Id string

The provider-assigned unique ID for this managed resource.

TagsAll Dictionary<string, string>

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

ZookeeperConnectString string

A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.

ZookeeperConnectStringTls string

A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.

Arn string

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

BootstrapBrokers string

BootstrapBrokersPublicSaslIam string

BootstrapBrokersPublicSaslScram string

BootstrapBrokersPublicTls string

BootstrapBrokersSaslIam string

BootstrapBrokersSaslScram string

BootstrapBrokersTls string

BootstrapBrokersVpcConnectivitySaslIam string

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivitySaslScram string

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivityTls string

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

CurrentVersion string

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

Id string

The provider-assigned unique ID for this managed resource.

TagsAll map[string]string

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

ZookeeperConnectString string

ZookeeperConnectStringTls string

arn String

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrapBrokers String

bootstrapBrokersPublicSaslIam String

bootstrapBrokersPublicSaslScram String

bootstrapBrokersPublicTls String

bootstrapBrokersSaslIam String

bootstrapBrokersSaslScram String

bootstrapBrokersTls String

bootstrapBrokersVpcConnectivitySaslIam String

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivitySaslScram String

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivityTls String

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

currentVersion String

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

id String

The provider-assigned unique ID for this managed resource.

tagsAll Map<String,String>

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeperConnectString String

zookeeperConnectStringTls String

arn string

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrapBrokers string

bootstrapBrokersPublicSaslIam string

bootstrapBrokersPublicSaslScram string

bootstrapBrokersPublicTls string

bootstrapBrokersSaslIam string

bootstrapBrokersSaslScram string

bootstrapBrokersTls string

bootstrapBrokersVpcConnectivitySaslIam string

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivitySaslScram string

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivityTls string

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

currentVersion string

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

id string

The provider-assigned unique ID for this managed resource.

tagsAll {[key: string]: string}

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeperConnectString string

zookeeperConnectStringTls string

arn str

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrap_brokers str

bootstrap_brokers_public_sasl_iam str

bootstrap_brokers_public_sasl_scram str

bootstrap_brokers_public_tls str

bootstrap_brokers_sasl_iam str

bootstrap_brokers_sasl_scram str

bootstrap_brokers_tls str

bootstrap_brokers_vpc_connectivity_sasl_iam str

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrap_brokers_vpc_connectivity_sasl_scram str

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrap_brokers_vpc_connectivity_tls str

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

current_version str

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

id str

The provider-assigned unique ID for this managed resource.

tags_all Mapping[str, str]

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeper_connect_string str

zookeeper_connect_string_tls str

arn String

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrapBrokers String

bootstrapBrokersPublicSaslIam String

bootstrapBrokersPublicSaslScram String

bootstrapBrokersPublicTls String

bootstrapBrokersSaslIam String

bootstrapBrokersSaslScram String

bootstrapBrokersTls String

bootstrapBrokersVpcConnectivitySaslIam String

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivitySaslScram String

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivityTls String

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

currentVersion String

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

id String

The provider-assigned unique ID for this managed resource.

tagsAll Map<String>

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeperConnectString String

zookeeperConnectStringTls String

Look up Existing Cluster Resource

Get an existing Cluster resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ClusterState, opts?: CustomResourceOptions): Cluster

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        arn: Optional[str] = None,
        bootstrap_brokers: Optional[str] = None,
        bootstrap_brokers_public_sasl_iam: Optional[str] = None,
        bootstrap_brokers_public_sasl_scram: Optional[str] = None,
        bootstrap_brokers_public_tls: Optional[str] = None,
        bootstrap_brokers_sasl_iam: Optional[str] = None,
        bootstrap_brokers_sasl_scram: Optional[str] = None,
        bootstrap_brokers_tls: Optional[str] = None,
        bootstrap_brokers_vpc_connectivity_sasl_iam: Optional[str] = None,
        bootstrap_brokers_vpc_connectivity_sasl_scram: Optional[str] = None,
        bootstrap_brokers_vpc_connectivity_tls: Optional[str] = None,
        broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
        client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
        cluster_name: Optional[str] = None,
        configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
        current_version: Optional[str] = None,
        encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
        enhanced_monitoring: Optional[str] = None,
        kafka_version: Optional[str] = None,
        logging_info: Optional[ClusterLoggingInfoArgs] = None,
        number_of_broker_nodes: Optional[int] = None,
        open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
        storage_mode: Optional[str] = None,
        tags: Optional[Mapping[str, str]] = None,
        tags_all: Optional[Mapping[str, str]] = None,
        zookeeper_connect_string: Optional[str] = None,
        zookeeper_connect_string_tls: Optional[str] = None) -> Cluster

func GetCluster(ctx *Context, name string, id IDInput, state *ClusterState, opts ...ResourceOption) (*Cluster, error)

public static Cluster Get(string name, Input<string> id, ClusterState? state, CustomResourceOptions? opts = null)

public static Cluster get(String name, Output<String> id, ClusterState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Arn string

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

BootstrapBrokers string

BootstrapBrokersPublicSaslIam string

BootstrapBrokersPublicSaslScram string

BootstrapBrokersPublicTls string

BootstrapBrokersSaslIam string

BootstrapBrokersSaslScram string

BootstrapBrokersTls string

BootstrapBrokersVpcConnectivitySaslIam string

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivitySaslScram string

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivityTls string

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BrokerNodeGroupInfo ClusterBrokerNodeGroupInfo

Configuration block for the broker nodes of the Kafka cluster.

ClientAuthentication ClusterClientAuthentication

Configuration block for specifying a client authentication. See below.

ClusterName string

Name of the MSK cluster.

ConfigurationInfo ClusterConfigurationInfo

Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.

CurrentVersion string

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

EncryptionInfo ClusterEncryptionInfo

Configuration block for specifying encryption. See below.

EnhancedMonitoring string

Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch

KafkaVersion string

Specify the desired Kafka software version.

LoggingInfo ClusterLoggingInfo

Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.

NumberOfBrokerNodes int

The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.

OpenMonitoring ClusterOpenMonitoring

Configuration block for JMX and Node monitoring for the MSK cluster. See below.

StorageMode string

Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.

Tags Dictionary<string, string>

A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

TagsAll Dictionary<string, string>

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

ZookeeperConnectString string

ZookeeperConnectStringTls string

Arn string

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

BootstrapBrokers string

BootstrapBrokersPublicSaslIam string

BootstrapBrokersPublicSaslScram string

BootstrapBrokersPublicTls string

BootstrapBrokersSaslIam string

BootstrapBrokersSaslScram string

BootstrapBrokersTls string

BootstrapBrokersVpcConnectivitySaslIam string

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivitySaslScram string

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BootstrapBrokersVpcConnectivityTls string

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

BrokerNodeGroupInfo ClusterBrokerNodeGroupInfoArgs

Configuration block for the broker nodes of the Kafka cluster.

ClientAuthentication ClusterClientAuthenticationArgs

Configuration block for specifying a client authentication. See below.

ClusterName string

Name of the MSK cluster.

ConfigurationInfo ClusterConfigurationInfoArgs

Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.

CurrentVersion string

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

EncryptionInfo ClusterEncryptionInfoArgs

Configuration block for specifying encryption. See below.

EnhancedMonitoring string

Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch

KafkaVersion string

Specify the desired Kafka software version.

LoggingInfo ClusterLoggingInfoArgs

Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.

NumberOfBrokerNodes int

The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.

OpenMonitoring ClusterOpenMonitoringArgs

Configuration block for JMX and Node monitoring for the MSK cluster. See below.

StorageMode string

Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.

Tags map[string]string

A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

TagsAll map[string]string

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

ZookeeperConnectString string

ZookeeperConnectStringTls string

arn String

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrapBrokers String

bootstrapBrokersPublicSaslIam String

bootstrapBrokersPublicSaslScram String

bootstrapBrokersPublicTls String

bootstrapBrokersSaslIam String

bootstrapBrokersSaslScram String

bootstrapBrokersTls String

bootstrapBrokersVpcConnectivitySaslIam String

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivitySaslScram String

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivityTls String

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

brokerNodeGroupInfo ClusterBrokerNodeGroupInfo

Configuration block for the broker nodes of the Kafka cluster.

clientAuthentication ClusterClientAuthentication

Configuration block for specifying a client authentication. See below.

clusterName String

Name of the MSK cluster.

configurationInfo ClusterConfigurationInfo

Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.

currentVersion String

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

encryptionInfo ClusterEncryptionInfo

Configuration block for specifying encryption. See below.

enhancedMonitoring String

Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch

kafkaVersion String

Specify the desired Kafka software version.

loggingInfo ClusterLoggingInfo

Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.

numberOfBrokerNodes Integer

The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.

openMonitoring ClusterOpenMonitoring

Configuration block for JMX and Node monitoring for the MSK cluster. See below.

storageMode String

Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.

tags Map<String,String>

A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

tagsAll Map<String,String>

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeperConnectString String

zookeeperConnectStringTls String

arn string

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrapBrokers string

bootstrapBrokersPublicSaslIam string

bootstrapBrokersPublicSaslScram string

bootstrapBrokersPublicTls string

bootstrapBrokersSaslIam string

bootstrapBrokersSaslScram string

bootstrapBrokersTls string

bootstrapBrokersVpcConnectivitySaslIam string

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivitySaslScram string

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivityTls string

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

brokerNodeGroupInfo ClusterBrokerNodeGroupInfo

Configuration block for the broker nodes of the Kafka cluster.

clientAuthentication ClusterClientAuthentication

Configuration block for specifying a client authentication. See below.

clusterName string

Name of the MSK cluster.

configurationInfo ClusterConfigurationInfo

Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.

currentVersion string

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

encryptionInfo ClusterEncryptionInfo

Configuration block for specifying encryption. See below.

enhancedMonitoring string

Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch

kafkaVersion string

Specify the desired Kafka software version.

loggingInfo ClusterLoggingInfo

Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.

numberOfBrokerNodes number

The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.

openMonitoring ClusterOpenMonitoring

Configuration block for JMX and Node monitoring for the MSK cluster. See below.

storageMode string

Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.

tags {[key: string]: string}

A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

tagsAll {[key: string]: string}

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeperConnectString string

zookeeperConnectStringTls string

arn str

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrap_brokers str

bootstrap_brokers_public_sasl_iam str

bootstrap_brokers_public_sasl_scram str

bootstrap_brokers_public_tls str

bootstrap_brokers_sasl_iam str

bootstrap_brokers_sasl_scram str

bootstrap_brokers_tls str

bootstrap_brokers_vpc_connectivity_sasl_iam str

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrap_brokers_vpc_connectivity_sasl_scram str

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrap_brokers_vpc_connectivity_tls str

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

broker_node_group_info ClusterBrokerNodeGroupInfoArgs

Configuration block for the broker nodes of the Kafka cluster.

client_authentication ClusterClientAuthenticationArgs

Configuration block for specifying a client authentication. See below.

cluster_name str

Name of the MSK cluster.

configuration_info ClusterConfigurationInfoArgs

Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.

current_version str

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

encryption_info ClusterEncryptionInfoArgs

Configuration block for specifying encryption. See below.

enhanced_monitoring str

Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch

kafka_version str

Specify the desired Kafka software version.

logging_info ClusterLoggingInfoArgs

Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.

number_of_broker_nodes int

The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.

open_monitoring ClusterOpenMonitoringArgs

Configuration block for JMX and Node monitoring for the MSK cluster. See below.

storage_mode str

Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.

tags Mapping[str, str]

A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

tags_all Mapping[str, str]

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeper_connect_string str

zookeeper_connect_string_tls str

arn String

Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.

bootstrapBrokers String

bootstrapBrokersPublicSaslIam String

bootstrapBrokersPublicSaslScram String

bootstrapBrokersPublicTls String

bootstrapBrokersSaslIam String

bootstrapBrokersSaslScram String

bootstrapBrokersTls String

bootstrapBrokersVpcConnectivitySaslIam String

A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivitySaslScram String

A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

bootstrapBrokersVpcConnectivityTls String

A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.

brokerNodeGroupInfo Property Map

Configuration block for the broker nodes of the Kafka cluster.

clientAuthentication Property Map

Configuration block for specifying a client authentication. See below.

clusterName String

Name of the MSK cluster.

configurationInfo Property Map

Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.

currentVersion String

Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.

encryptionInfo Property Map

Configuration block for specifying encryption. See below.

enhancedMonitoring String

Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch

kafkaVersion String

Specify the desired Kafka software version.

loggingInfo Property Map

Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.

numberOfBrokerNodes Number

The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.

openMonitoring Property Map

Configuration block for JMX and Node monitoring for the MSK cluster. See below.

storageMode String

Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.

tags Map<String>

A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

tagsAll Map<String>

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Deprecated:

Please use tags instead.

zookeeperConnectString String

zookeeperConnectStringTls String

Supporting Types

ClusterBrokerNodeGroupInfo, ClusterBrokerNodeGroupInfoArgs

ClientSubnets List<string>: A list of subnets to connect to in client VPC (documentation).
InstanceType string: Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
SecurityGroups List<string>: A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
AzDistribution string: The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
ConnectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo: Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
StorageInfo ClusterBrokerNodeGroupInfoStorageInfo: A block that contains information about storage volumes attached to MSK broker nodes. See below.

ClientSubnets []string: A list of subnets to connect to in client VPC (documentation).
InstanceType string: Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
SecurityGroups []string: A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
AzDistribution string: The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
ConnectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo: Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
StorageInfo ClusterBrokerNodeGroupInfoStorageInfo: A block that contains information about storage volumes attached to MSK broker nodes. See below.

clientSubnets List<String>: A list of subnets to connect to in client VPC (documentation).
instanceType String: Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
securityGroups List<String>: A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
azDistribution String: The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
connectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo: Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
storageInfo ClusterBrokerNodeGroupInfoStorageInfo: A block that contains information about storage volumes attached to MSK broker nodes. See below.

clientSubnets string[]: A list of subnets to connect to in client VPC (documentation).
instanceType string: Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
securityGroups string[]: A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
azDistribution string: The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
connectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo: Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
storageInfo ClusterBrokerNodeGroupInfoStorageInfo: A block that contains information about storage volumes attached to MSK broker nodes. See below.

client_subnets Sequence[str]: A list of subnets to connect to in client VPC (documentation).
instance_type str: Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
security_groups Sequence[str]: A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
az_distribution str: The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
connectivity_info ClusterBrokerNodeGroupInfoConnectivityInfo: Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
storage_info ClusterBrokerNodeGroupInfoStorageInfo: A block that contains information about storage volumes attached to MSK broker nodes. See below.

clientSubnets List<String>: A list of subnets to connect to in client VPC (documentation).
instanceType String: Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
securityGroups List<String>: A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
azDistribution String: The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
connectivityInfo Property Map: Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
storageInfo Property Map: A block that contains information about storage volumes attached to MSK broker nodes. See below.

ClusterBrokerNodeGroupInfoConnectivityInfo, ClusterBrokerNodeGroupInfoConnectivityInfoArgs

PublicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess: Access control settings for brokers. See below.
VpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity: VPC connectivity access control for brokers. See below.

PublicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess: Access control settings for brokers. See below.
VpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity: VPC connectivity access control for brokers. See below.

publicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess: Access control settings for brokers. See below.
vpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity: VPC connectivity access control for brokers. See below.

publicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess: Access control settings for brokers. See below.
vpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity: VPC connectivity access control for brokers. See below.

public_access ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess: Access control settings for brokers. See below.
vpc_connectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity: VPC connectivity access control for brokers. See below.

publicAccess Property Map: Access control settings for brokers. See below.
vpcConnectivity Property Map: VPC connectivity access control for brokers. See below.

ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess, ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs

Type string: Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.

Type string: Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.

type String: Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.

type string: Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.

type str: Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.

type String: Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.

ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs

ClientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication: Configuration block for specifying a client authentication. See below.

ClientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication: Configuration block for specifying a client authentication. See below.

clientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication: Configuration block for specifying a client authentication. See below.

clientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication: Configuration block for specifying a client authentication. See below.

client_authentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication: Configuration block for specifying a client authentication. See below.

clientAuthentication Property Map: Configuration block for specifying a client authentication. See below.

ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs

Sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
Tls bool: Configuration block for specifying TLS client authentication. See below.

Sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
Tls bool: Configuration block for specifying TLS client authentication. See below.

sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
tls Boolean: Configuration block for specifying TLS client authentication. See below.

sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
tls boolean: Configuration block for specifying TLS client authentication. See below.

sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
tls bool: Configuration block for specifying TLS client authentication. See below.

sasl Property Map: Configuration block for specifying SASL client authentication. See below.
tls Boolean: Configuration block for specifying TLS client authentication. See below.

ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs

Iam bool: Enables SASL/IAM authentication for VPC connectivity.
Scram bool: Enables SASL/SCRAM authentication for VPC connectivity.

Iam bool: Enables SASL/IAM authentication for VPC connectivity.
Scram bool: Enables SASL/SCRAM authentication for VPC connectivity.

iam Boolean: Enables SASL/IAM authentication for VPC connectivity.
scram Boolean: Enables SASL/SCRAM authentication for VPC connectivity.

iam boolean: Enables SASL/IAM authentication for VPC connectivity.
scram boolean: Enables SASL/SCRAM authentication for VPC connectivity.

iam bool: Enables SASL/IAM authentication for VPC connectivity.
scram bool: Enables SASL/SCRAM authentication for VPC connectivity.

iam Boolean: Enables SASL/IAM authentication for VPC connectivity.
scram Boolean: Enables SASL/SCRAM authentication for VPC connectivity.

ClusterBrokerNodeGroupInfoStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoArgs

EbsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo: A block that contains EBS volume information. See below.

EbsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo: A block that contains EBS volume information. See below.

ebsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo: A block that contains EBS volume information. See below.

ebsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo: A block that contains EBS volume information. See below.

ebs_storage_info ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo: A block that contains EBS volume information. See below.

ebsStorageInfo Property Map: A block that contains EBS volume information. See below.

ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs

ProvisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput: A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
VolumeSize int: The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.

ProvisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput: A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
VolumeSize int: The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.

provisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput: A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
volumeSize Integer: The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.

provisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput: A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
volumeSize number: The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.

provisioned_throughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput: A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
volume_size int: The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.

provisionedThroughput Property Map: A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
volumeSize Number: The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.

ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
VolumeThroughput int: Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
VolumeThroughput int: Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
volumeThroughput Integer: Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks

enabled boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
volumeThroughput number: Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks

enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
volume_throughput int: Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
volumeThroughput Number: Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks

ClusterClientAuthentication, ClusterClientAuthenticationArgs

Sasl ClusterClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
Tls ClusterClientAuthenticationTls: Configuration block for specifying TLS client authentication. See below.
Unauthenticated bool: Enables unauthenticated access.

Sasl ClusterClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
Tls ClusterClientAuthenticationTls: Configuration block for specifying TLS client authentication. See below.
Unauthenticated bool: Enables unauthenticated access.

sasl ClusterClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
tls ClusterClientAuthenticationTls: Configuration block for specifying TLS client authentication. See below.
unauthenticated Boolean: Enables unauthenticated access.

sasl ClusterClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
tls ClusterClientAuthenticationTls: Configuration block for specifying TLS client authentication. See below.
unauthenticated boolean: Enables unauthenticated access.

sasl ClusterClientAuthenticationSasl: Configuration block for specifying SASL client authentication. See below.
tls ClusterClientAuthenticationTls: Configuration block for specifying TLS client authentication. See below.
unauthenticated bool: Enables unauthenticated access.

sasl Property Map: Configuration block for specifying SASL client authentication. See below.
tls Property Map: Configuration block for specifying TLS client authentication. See below.
unauthenticated Boolean: Enables unauthenticated access.

ClusterClientAuthenticationSasl, ClusterClientAuthenticationSaslArgs

Iam bool: Enables SASL/IAM authentication for VPC connectivity.
Scram bool: Enables SASL/SCRAM authentication for VPC connectivity.

Iam bool: Enables SASL/IAM authentication for VPC connectivity.
Scram bool: Enables SASL/SCRAM authentication for VPC connectivity.

iam Boolean: Enables SASL/IAM authentication for VPC connectivity.
scram Boolean: Enables SASL/SCRAM authentication for VPC connectivity.

iam boolean: Enables SASL/IAM authentication for VPC connectivity.
scram boolean: Enables SASL/SCRAM authentication for VPC connectivity.

iam bool: Enables SASL/IAM authentication for VPC connectivity.
scram bool: Enables SASL/SCRAM authentication for VPC connectivity.

iam Boolean: Enables SASL/IAM authentication for VPC connectivity.
scram Boolean: Enables SASL/SCRAM authentication for VPC connectivity.

ClusterClientAuthenticationTls, ClusterClientAuthenticationTlsArgs

CertificateAuthorityArns List<string>: List of ACM Certificate Authority Amazon Resource Names (ARNs).

CertificateAuthorityArns []string: List of ACM Certificate Authority Amazon Resource Names (ARNs).

certificateAuthorityArns List<String>: List of ACM Certificate Authority Amazon Resource Names (ARNs).

certificateAuthorityArns string[]: List of ACM Certificate Authority Amazon Resource Names (ARNs).

certificate_authority_arns Sequence[str]: List of ACM Certificate Authority Amazon Resource Names (ARNs).

certificateAuthorityArns List<String>: List of ACM Certificate Authority Amazon Resource Names (ARNs).

ClusterConfigurationInfo, ClusterConfigurationInfoArgs

Arn string: Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
Revision int: Revision of the MSK Configuration to use in the cluster.

Arn string: Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
Revision int: Revision of the MSK Configuration to use in the cluster.

arn String: Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
revision Integer: Revision of the MSK Configuration to use in the cluster.

arn string: Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
revision number: Revision of the MSK Configuration to use in the cluster.

arn str: Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
revision int: Revision of the MSK Configuration to use in the cluster.

arn String: Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
revision Number: Revision of the MSK Configuration to use in the cluster.

ClusterEncryptionInfo, ClusterEncryptionInfoArgs

EncryptionAtRestKmsKeyArn string: You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
EncryptionInTransit ClusterEncryptionInfoEncryptionInTransit: Configuration block to specify encryption in transit. See below.

EncryptionAtRestKmsKeyArn string: You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
EncryptionInTransit ClusterEncryptionInfoEncryptionInTransit: Configuration block to specify encryption in transit. See below.

encryptionAtRestKmsKeyArn String: You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
encryptionInTransit ClusterEncryptionInfoEncryptionInTransit: Configuration block to specify encryption in transit. See below.

encryptionAtRestKmsKeyArn string: You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
encryptionInTransit ClusterEncryptionInfoEncryptionInTransit: Configuration block to specify encryption in transit. See below.

encryption_at_rest_kms_key_arn str: You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
encryption_in_transit ClusterEncryptionInfoEncryptionInTransit: Configuration block to specify encryption in transit. See below.

encryptionAtRestKmsKeyArn String: You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
encryptionInTransit Property Map: Configuration block to specify encryption in transit. See below.

ClusterEncryptionInfoEncryptionInTransit, ClusterEncryptionInfoEncryptionInTransitArgs

ClientBroker string: Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
InCluster bool: Whether data communication among broker nodes is encrypted. Default value: true.

ClientBroker string: Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
InCluster bool: Whether data communication among broker nodes is encrypted. Default value: true.

clientBroker String: Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
inCluster Boolean: Whether data communication among broker nodes is encrypted. Default value: true.

clientBroker string: Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
inCluster boolean: Whether data communication among broker nodes is encrypted. Default value: true.

client_broker str: Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
in_cluster bool: Whether data communication among broker nodes is encrypted. Default value: true.

clientBroker String: Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
inCluster Boolean: Whether data communication among broker nodes is encrypted. Default value: true.

ClusterLoggingInfo, ClusterLoggingInfoArgs

BrokerLogs ClusterLoggingInfoBrokerLogs: Configuration block for Broker Logs settings for logging info. See below.

BrokerLogs ClusterLoggingInfoBrokerLogs: Configuration block for Broker Logs settings for logging info. See below.

brokerLogs ClusterLoggingInfoBrokerLogs: Configuration block for Broker Logs settings for logging info. See below.

brokerLogs ClusterLoggingInfoBrokerLogs: Configuration block for Broker Logs settings for logging info. See below.

broker_logs ClusterLoggingInfoBrokerLogs: Configuration block for Broker Logs settings for logging info. See below.

brokerLogs Property Map: Configuration block for Broker Logs settings for logging info. See below.

ClusterLoggingInfoBrokerLogs, ClusterLoggingInfoBrokerLogsArgs

CloudwatchLogs ClusterLoggingInfoBrokerLogsCloudwatchLogs
Firehose ClusterLoggingInfoBrokerLogsFirehose
S3 ClusterLoggingInfoBrokerLogsS3

CloudwatchLogs ClusterLoggingInfoBrokerLogsCloudwatchLogs
Firehose ClusterLoggingInfoBrokerLogsFirehose
S3 ClusterLoggingInfoBrokerLogsS3

cloudwatchLogs ClusterLoggingInfoBrokerLogsCloudwatchLogs
firehose ClusterLoggingInfoBrokerLogsFirehose
s3 ClusterLoggingInfoBrokerLogsS3

cloudwatchLogs ClusterLoggingInfoBrokerLogsCloudwatchLogs
firehose ClusterLoggingInfoBrokerLogsFirehose
s3 ClusterLoggingInfoBrokerLogsS3

cloudwatch_logs ClusterLoggingInfoBrokerLogsCloudwatchLogs
firehose ClusterLoggingInfoBrokerLogsFirehose
s3 ClusterLoggingInfoBrokerLogsS3

cloudwatchLogs Property Map
firehose Property Map
s3 Property Map

ClusterLoggingInfoBrokerLogsCloudwatchLogs, ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
LogGroup string: Name of the Cloudwatch Log Group to deliver logs to.

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
LogGroup string: Name of the Cloudwatch Log Group to deliver logs to.

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
logGroup String: Name of the Cloudwatch Log Group to deliver logs to.

enabled boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
logGroup string: Name of the Cloudwatch Log Group to deliver logs to.

enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
log_group str: Name of the Cloudwatch Log Group to deliver logs to.

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
logGroup String: Name of the Cloudwatch Log Group to deliver logs to.

ClusterLoggingInfoBrokerLogsFirehose, ClusterLoggingInfoBrokerLogsFirehoseArgs

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
DeliveryStream string: Name of the Kinesis Data Firehose delivery stream to deliver logs to.

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
DeliveryStream string: Name of the Kinesis Data Firehose delivery stream to deliver logs to.

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
deliveryStream String: Name of the Kinesis Data Firehose delivery stream to deliver logs to.

enabled boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
deliveryStream string: Name of the Kinesis Data Firehose delivery stream to deliver logs to.

enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
delivery_stream str: Name of the Kinesis Data Firehose delivery stream to deliver logs to.

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
deliveryStream String: Name of the Kinesis Data Firehose delivery stream to deliver logs to.

ClusterLoggingInfoBrokerLogsS3, ClusterLoggingInfoBrokerLogsS3Args

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
Bucket string: Name of the S3 bucket to deliver logs to.
Prefix string: Prefix to append to the folder name.

Enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
Bucket string: Name of the S3 bucket to deliver logs to.
Prefix string: Prefix to append to the folder name.

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
bucket String: Name of the S3 bucket to deliver logs to.
prefix String: Prefix to append to the folder name.

enabled boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
bucket string: Name of the S3 bucket to deliver logs to.
prefix string: Prefix to append to the folder name.

enabled bool: Controls whether provisioned throughput is enabled or not. Default value: false.
bucket str: Name of the S3 bucket to deliver logs to.
prefix str: Prefix to append to the folder name.

enabled Boolean: Controls whether provisioned throughput is enabled or not. Default value: false.
bucket String: Name of the S3 bucket to deliver logs to.
prefix String: Prefix to append to the folder name.

ClusterOpenMonitoring, ClusterOpenMonitoringArgs

Prometheus ClusterOpenMonitoringPrometheus: Configuration block for Prometheus settings for open monitoring. See below.

Prometheus ClusterOpenMonitoringPrometheus: Configuration block for Prometheus settings for open monitoring. See below.

prometheus ClusterOpenMonitoringPrometheus: Configuration block for Prometheus settings for open monitoring. See below.

prometheus ClusterOpenMonitoringPrometheus: Configuration block for Prometheus settings for open monitoring. See below.

prometheus ClusterOpenMonitoringPrometheus: Configuration block for Prometheus settings for open monitoring. See below.

prometheus Property Map: Configuration block for Prometheus settings for open monitoring. See below.

ClusterOpenMonitoringPrometheus, ClusterOpenMonitoringPrometheusArgs

JmxExporter ClusterOpenMonitoringPrometheusJmxExporter: Configuration block for JMX Exporter. See below.
NodeExporter ClusterOpenMonitoringPrometheusNodeExporter: Configuration block for Node Exporter. See below.

JmxExporter ClusterOpenMonitoringPrometheusJmxExporter: Configuration block for JMX Exporter. See below.
NodeExporter ClusterOpenMonitoringPrometheusNodeExporter: Configuration block for Node Exporter. See below.

jmxExporter ClusterOpenMonitoringPrometheusJmxExporter: Configuration block for JMX Exporter. See below.
nodeExporter ClusterOpenMonitoringPrometheusNodeExporter: Configuration block for Node Exporter. See below.

jmxExporter ClusterOpenMonitoringPrometheusJmxExporter: Configuration block for JMX Exporter. See below.
nodeExporter ClusterOpenMonitoringPrometheusNodeExporter: Configuration block for Node Exporter. See below.

jmx_exporter ClusterOpenMonitoringPrometheusJmxExporter: Configuration block for JMX Exporter. See below.
node_exporter ClusterOpenMonitoringPrometheusNodeExporter: Configuration block for Node Exporter. See below.

jmxExporter Property Map: Configuration block for JMX Exporter. See below.
nodeExporter Property Map: Configuration block for Node Exporter. See below.

ClusterOpenMonitoringPrometheusJmxExporter, ClusterOpenMonitoringPrometheusJmxExporterArgs

EnabledInBroker bool: Indicates whether you want to enable or disable the JMX Exporter.

EnabledInBroker bool: Indicates whether you want to enable or disable the JMX Exporter.

enabledInBroker Boolean: Indicates whether you want to enable or disable the JMX Exporter.

enabledInBroker boolean: Indicates whether you want to enable or disable the JMX Exporter.

enabled_in_broker bool: Indicates whether you want to enable or disable the JMX Exporter.

enabledInBroker Boolean: Indicates whether you want to enable or disable the JMX Exporter.

ClusterOpenMonitoringPrometheusNodeExporter, ClusterOpenMonitoringPrometheusNodeExporterArgs

EnabledInBroker bool: Indicates whether you want to enable or disable the JMX Exporter.

EnabledInBroker bool: Indicates whether you want to enable or disable the JMX Exporter.

enabledInBroker Boolean: Indicates whether you want to enable or disable the JMX Exporter.

enabledInBroker boolean: Indicates whether you want to enable or disable the JMX Exporter.

enabled_in_broker bool: Indicates whether you want to enable or disable the JMX Exporter.

enabledInBroker Boolean: Indicates whether you want to enable or disable the JMX Exporter.

Import

Using pulumi import, import MSK clusters using the cluster arn. For example:

 $ pulumi import aws:msk/cluster:Cluster example arn:aws:kafka:us-west-2:123456789012:cluster/example/279c0212-d057-4dba-9aa9-1c4e5a25bfc7-3

Package Details

Repository: AWS Classic pulumi/pulumi-aws
License: Apache-2.0
Notes: This Pulumi package is based on the aws Terraform Provider.

Try AWS Native preview for resources not in the classic version.

AWS Classic v6.2.1 published on Friday, Sep 22, 2023 by Pulumi

pulumi/pulumi-aws

aws.msk.Cluster

On this page

On this page

Example Usage

Basic

With volume_throughput argument

Create Cluster Resource

Cluster Resource Properties

Inputs

Outputs

Look up Existing Cluster Resource

Supporting Types

ClusterBrokerNodeGroupInfo, ClusterBrokerNodeGroupInfoArgs

ClusterBrokerNodeGroupInfoConnectivityInfo, ClusterBrokerNodeGroupInfoConnectivityInfoArgs

ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess, ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs

ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs

ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs

ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs

ClusterBrokerNodeGroupInfoStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoArgs

ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs

ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs

ClusterClientAuthentication, ClusterClientAuthenticationArgs

ClusterClientAuthenticationSasl, ClusterClientAuthenticationSaslArgs

ClusterClientAuthenticationTls, ClusterClientAuthenticationTlsArgs

ClusterConfigurationInfo, ClusterConfigurationInfoArgs

ClusterEncryptionInfo, ClusterEncryptionInfoArgs

ClusterEncryptionInfoEncryptionInTransit, ClusterEncryptionInfoEncryptionInTransitArgs

ClusterLoggingInfo, ClusterLoggingInfoArgs

ClusterLoggingInfoBrokerLogs, ClusterLoggingInfoBrokerLogsArgs

ClusterLoggingInfoBrokerLogsCloudwatchLogs, ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs

ClusterLoggingInfoBrokerLogsFirehose, ClusterLoggingInfoBrokerLogsFirehoseArgs

ClusterLoggingInfoBrokerLogsS3, ClusterLoggingInfoBrokerLogsS3Args

ClusterOpenMonitoring, ClusterOpenMonitoringArgs

ClusterOpenMonitoringPrometheus, ClusterOpenMonitoringPrometheusArgs

ClusterOpenMonitoringPrometheusJmxExporter, ClusterOpenMonitoringPrometheusJmxExporterArgs

ClusterOpenMonitoringPrometheusNodeExporter, ClusterOpenMonitoringPrometheusNodeExporterArgs

Import

Package Details

On this page

On this page