aws.msk.Cluster
Explore with Pulumi AI
Manages an Amazon MSK cluster.
Note: This resource manages provisioned clusters. To manage a serverless Amazon MSK cluster, use the
aws.msk.ServerlessCluster
resource.
Example Usage
Basic
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const vpc = new aws.ec2.Vpc("vpc", {cidrBlock: "192.168.0.0/22"});
const azs = aws.getAvailabilityZones({
state: "available",
});
const subnetAz1 = new aws.ec2.Subnet("subnet_az1", {
availabilityZone: azs.then(azs => azs.names?.[0]),
cidrBlock: "192.168.0.0/24",
vpcId: vpc.id,
});
const subnetAz2 = new aws.ec2.Subnet("subnet_az2", {
availabilityZone: azs.then(azs => azs.names?.[1]),
cidrBlock: "192.168.1.0/24",
vpcId: vpc.id,
});
const subnetAz3 = new aws.ec2.Subnet("subnet_az3", {
availabilityZone: azs.then(azs => azs.names?.[2]),
cidrBlock: "192.168.2.0/24",
vpcId: vpc.id,
});
const sg = new aws.ec2.SecurityGroup("sg", {vpcId: vpc.id});
const kms = new aws.kms.Key("kms", {description: "example"});
const test = new aws.cloudwatch.LogGroup("test", {name: "msk_broker_logs"});
const bucket = new aws.s3.BucketV2("bucket", {bucket: "msk-broker-logs-bucket"});
const bucketAcl = new aws.s3.BucketAclV2("bucket_acl", {
bucket: bucket.id,
acl: "private",
});
const assumeRole = aws.iam.getPolicyDocument({
statements: [{
effect: "Allow",
principals: [{
type: "Service",
identifiers: ["firehose.amazonaws.com"],
}],
actions: ["sts:AssumeRole"],
}],
});
const firehoseRole = new aws.iam.Role("firehose_role", {
name: "firehose_test_role",
assumeRolePolicy: assumeRole.then(assumeRole => assumeRole.json),
});
const testStream = new aws.kinesis.FirehoseDeliveryStream("test_stream", {
name: "kinesis-firehose-msk-broker-logs-stream",
destination: "extended_s3",
extendedS3Configuration: {
roleArn: firehoseRole.arn,
bucketArn: bucket.arn,
},
tags: {
LogDeliveryEnabled: "placeholder",
},
});
const example = new aws.msk.Cluster("example", {
clusterName: "example",
kafkaVersion: "3.2.0",
numberOfBrokerNodes: 3,
brokerNodeGroupInfo: {
instanceType: "kafka.m5.large",
clientSubnets: [
subnetAz1.id,
subnetAz2.id,
subnetAz3.id,
],
storageInfo: {
ebsStorageInfo: {
volumeSize: 1000,
},
},
securityGroups: [sg.id],
},
encryptionInfo: {
encryptionAtRestKmsKeyArn: kms.arn,
},
openMonitoring: {
prometheus: {
jmxExporter: {
enabledInBroker: true,
},
nodeExporter: {
enabledInBroker: true,
},
},
},
loggingInfo: {
brokerLogs: {
cloudwatchLogs: {
enabled: true,
logGroup: test.name,
},
firehose: {
enabled: true,
deliveryStream: testStream.name,
},
s3: {
enabled: true,
bucket: bucket.id,
prefix: "logs/msk-",
},
},
},
tags: {
foo: "bar",
},
});
export const zookeeperConnectString = example.zookeeperConnectString;
export const bootstrapBrokersTls = example.bootstrapBrokersTls;
import pulumi
import pulumi_aws as aws
vpc = aws.ec2.Vpc("vpc", cidr_block="192.168.0.0/22")
azs = aws.get_availability_zones(state="available")
subnet_az1 = aws.ec2.Subnet("subnet_az1",
availability_zone=azs.names[0],
cidr_block="192.168.0.0/24",
vpc_id=vpc.id)
subnet_az2 = aws.ec2.Subnet("subnet_az2",
availability_zone=azs.names[1],
cidr_block="192.168.1.0/24",
vpc_id=vpc.id)
subnet_az3 = aws.ec2.Subnet("subnet_az3",
availability_zone=azs.names[2],
cidr_block="192.168.2.0/24",
vpc_id=vpc.id)
sg = aws.ec2.SecurityGroup("sg", vpc_id=vpc.id)
kms = aws.kms.Key("kms", description="example")
test = aws.cloudwatch.LogGroup("test", name="msk_broker_logs")
bucket = aws.s3.BucketV2("bucket", bucket="msk-broker-logs-bucket")
bucket_acl = aws.s3.BucketAclV2("bucket_acl",
bucket=bucket.id,
acl="private")
assume_role = aws.iam.get_policy_document(statements=[{
"effect": "Allow",
"principals": [{
"type": "Service",
"identifiers": ["firehose.amazonaws.com"],
}],
"actions": ["sts:AssumeRole"],
}])
firehose_role = aws.iam.Role("firehose_role",
name="firehose_test_role",
assume_role_policy=assume_role.json)
test_stream = aws.kinesis.FirehoseDeliveryStream("test_stream",
name="kinesis-firehose-msk-broker-logs-stream",
destination="extended_s3",
extended_s3_configuration={
"role_arn": firehose_role.arn,
"bucket_arn": bucket.arn,
},
tags={
"LogDeliveryEnabled": "placeholder",
})
example = aws.msk.Cluster("example",
cluster_name="example",
kafka_version="3.2.0",
number_of_broker_nodes=3,
broker_node_group_info={
"instance_type": "kafka.m5.large",
"client_subnets": [
subnet_az1.id,
subnet_az2.id,
subnet_az3.id,
],
"storage_info": {
"ebs_storage_info": {
"volume_size": 1000,
},
},
"security_groups": [sg.id],
},
encryption_info={
"encryption_at_rest_kms_key_arn": kms.arn,
},
open_monitoring={
"prometheus": {
"jmx_exporter": {
"enabled_in_broker": True,
},
"node_exporter": {
"enabled_in_broker": True,
},
},
},
logging_info={
"broker_logs": {
"cloudwatch_logs": {
"enabled": True,
"log_group": test.name,
},
"firehose": {
"enabled": True,
"delivery_stream": test_stream.name,
},
"s3": {
"enabled": True,
"bucket": bucket.id,
"prefix": "logs/msk-",
},
},
},
tags={
"foo": "bar",
})
pulumi.export("zookeeperConnectString", example.zookeeper_connect_string)
pulumi.export("bootstrapBrokersTls", example.bootstrap_brokers_tls)
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/cloudwatch"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/ec2"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/iam"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kinesis"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kms"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/s3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
vpc, err := ec2.NewVpc(ctx, "vpc", &ec2.VpcArgs{
CidrBlock: pulumi.String("192.168.0.0/22"),
})
if err != nil {
return err
}
azs, err := aws.GetAvailabilityZones(ctx, &aws.GetAvailabilityZonesArgs{
State: pulumi.StringRef("available"),
}, nil)
if err != nil {
return err
}
subnetAz1, err := ec2.NewSubnet(ctx, "subnet_az1", &ec2.SubnetArgs{
AvailabilityZone: pulumi.String(azs.Names[0]),
CidrBlock: pulumi.String("192.168.0.0/24"),
VpcId: vpc.ID(),
})
if err != nil {
return err
}
subnetAz2, err := ec2.NewSubnet(ctx, "subnet_az2", &ec2.SubnetArgs{
AvailabilityZone: pulumi.String(azs.Names[1]),
CidrBlock: pulumi.String("192.168.1.0/24"),
VpcId: vpc.ID(),
})
if err != nil {
return err
}
subnetAz3, err := ec2.NewSubnet(ctx, "subnet_az3", &ec2.SubnetArgs{
AvailabilityZone: pulumi.String(azs.Names[2]),
CidrBlock: pulumi.String("192.168.2.0/24"),
VpcId: vpc.ID(),
})
if err != nil {
return err
}
sg, err := ec2.NewSecurityGroup(ctx, "sg", &ec2.SecurityGroupArgs{
VpcId: vpc.ID(),
})
if err != nil {
return err
}
kms, err := kms.NewKey(ctx, "kms", &kms.KeyArgs{
Description: pulumi.String("example"),
})
if err != nil {
return err
}
test, err := cloudwatch.NewLogGroup(ctx, "test", &cloudwatch.LogGroupArgs{
Name: pulumi.String("msk_broker_logs"),
})
if err != nil {
return err
}
bucket, err := s3.NewBucketV2(ctx, "bucket", &s3.BucketV2Args{
Bucket: pulumi.String("msk-broker-logs-bucket"),
})
if err != nil {
return err
}
_, err = s3.NewBucketAclV2(ctx, "bucket_acl", &s3.BucketAclV2Args{
Bucket: bucket.ID(),
Acl: pulumi.String("private"),
})
if err != nil {
return err
}
assumeRole, err := iam.GetPolicyDocument(ctx, &iam.GetPolicyDocumentArgs{
Statements: []iam.GetPolicyDocumentStatement{
{
Effect: pulumi.StringRef("Allow"),
Principals: []iam.GetPolicyDocumentStatementPrincipal{
{
Type: "Service",
Identifiers: []string{
"firehose.amazonaws.com",
},
},
},
Actions: []string{
"sts:AssumeRole",
},
},
},
}, nil)
if err != nil {
return err
}
firehoseRole, err := iam.NewRole(ctx, "firehose_role", &iam.RoleArgs{
Name: pulumi.String("firehose_test_role"),
AssumeRolePolicy: pulumi.String(assumeRole.Json),
})
if err != nil {
return err
}
testStream, err := kinesis.NewFirehoseDeliveryStream(ctx, "test_stream", &kinesis.FirehoseDeliveryStreamArgs{
Name: pulumi.String("kinesis-firehose-msk-broker-logs-stream"),
Destination: pulumi.String("extended_s3"),
ExtendedS3Configuration: &kinesis.FirehoseDeliveryStreamExtendedS3ConfigurationArgs{
RoleArn: firehoseRole.Arn,
BucketArn: bucket.Arn,
},
Tags: pulumi.StringMap{
"LogDeliveryEnabled": pulumi.String("placeholder"),
},
})
if err != nil {
return err
}
example, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
ClusterName: pulumi.String("example"),
KafkaVersion: pulumi.String("3.2.0"),
NumberOfBrokerNodes: pulumi.Int(3),
BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
InstanceType: pulumi.String("kafka.m5.large"),
ClientSubnets: pulumi.StringArray{
subnetAz1.ID(),
subnetAz2.ID(),
subnetAz3.ID(),
},
StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
VolumeSize: pulumi.Int(1000),
},
},
SecurityGroups: pulumi.StringArray{
sg.ID(),
},
},
EncryptionInfo: &msk.ClusterEncryptionInfoArgs{
EncryptionAtRestKmsKeyArn: kms.Arn,
},
OpenMonitoring: &msk.ClusterOpenMonitoringArgs{
Prometheus: &msk.ClusterOpenMonitoringPrometheusArgs{
JmxExporter: &msk.ClusterOpenMonitoringPrometheusJmxExporterArgs{
EnabledInBroker: pulumi.Bool(true),
},
NodeExporter: &msk.ClusterOpenMonitoringPrometheusNodeExporterArgs{
EnabledInBroker: pulumi.Bool(true),
},
},
},
LoggingInfo: &msk.ClusterLoggingInfoArgs{
BrokerLogs: &msk.ClusterLoggingInfoBrokerLogsArgs{
CloudwatchLogs: &msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs{
Enabled: pulumi.Bool(true),
LogGroup: test.Name,
},
Firehose: &msk.ClusterLoggingInfoBrokerLogsFirehoseArgs{
Enabled: pulumi.Bool(true),
DeliveryStream: testStream.Name,
},
S3: &msk.ClusterLoggingInfoBrokerLogsS3Args{
Enabled: pulumi.Bool(true),
Bucket: bucket.ID(),
Prefix: pulumi.String("logs/msk-"),
},
},
},
Tags: pulumi.StringMap{
"foo": pulumi.String("bar"),
},
})
if err != nil {
return err
}
ctx.Export("zookeeperConnectString", example.ZookeeperConnectString)
ctx.Export("bootstrapBrokersTls", example.BootstrapBrokersTls)
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var vpc = new Aws.Ec2.Vpc("vpc", new()
{
CidrBlock = "192.168.0.0/22",
});
var azs = Aws.GetAvailabilityZones.Invoke(new()
{
State = "available",
});
var subnetAz1 = new Aws.Ec2.Subnet("subnet_az1", new()
{
AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[0]),
CidrBlock = "192.168.0.0/24",
VpcId = vpc.Id,
});
var subnetAz2 = new Aws.Ec2.Subnet("subnet_az2", new()
{
AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[1]),
CidrBlock = "192.168.1.0/24",
VpcId = vpc.Id,
});
var subnetAz3 = new Aws.Ec2.Subnet("subnet_az3", new()
{
AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[2]),
CidrBlock = "192.168.2.0/24",
VpcId = vpc.Id,
});
var sg = new Aws.Ec2.SecurityGroup("sg", new()
{
VpcId = vpc.Id,
});
var kms = new Aws.Kms.Key("kms", new()
{
Description = "example",
});
var test = new Aws.CloudWatch.LogGroup("test", new()
{
Name = "msk_broker_logs",
});
var bucket = new Aws.S3.BucketV2("bucket", new()
{
Bucket = "msk-broker-logs-bucket",
});
var bucketAcl = new Aws.S3.BucketAclV2("bucket_acl", new()
{
Bucket = bucket.Id,
Acl = "private",
});
var assumeRole = Aws.Iam.GetPolicyDocument.Invoke(new()
{
Statements = new[]
{
new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
{
Effect = "Allow",
Principals = new[]
{
new Aws.Iam.Inputs.GetPolicyDocumentStatementPrincipalInputArgs
{
Type = "Service",
Identifiers = new[]
{
"firehose.amazonaws.com",
},
},
},
Actions = new[]
{
"sts:AssumeRole",
},
},
},
});
var firehoseRole = new Aws.Iam.Role("firehose_role", new()
{
Name = "firehose_test_role",
AssumeRolePolicy = assumeRole.Apply(getPolicyDocumentResult => getPolicyDocumentResult.Json),
});
var testStream = new Aws.Kinesis.FirehoseDeliveryStream("test_stream", new()
{
Name = "kinesis-firehose-msk-broker-logs-stream",
Destination = "extended_s3",
ExtendedS3Configuration = new Aws.Kinesis.Inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs
{
RoleArn = firehoseRole.Arn,
BucketArn = bucket.Arn,
},
Tags =
{
{ "LogDeliveryEnabled", "placeholder" },
},
});
var example = new Aws.Msk.Cluster("example", new()
{
ClusterName = "example",
KafkaVersion = "3.2.0",
NumberOfBrokerNodes = 3,
BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
{
InstanceType = "kafka.m5.large",
ClientSubnets = new[]
{
subnetAz1.Id,
subnetAz2.Id,
subnetAz3.Id,
},
StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
{
EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
{
VolumeSize = 1000,
},
},
SecurityGroups = new[]
{
sg.Id,
},
},
EncryptionInfo = new Aws.Msk.Inputs.ClusterEncryptionInfoArgs
{
EncryptionAtRestKmsKeyArn = kms.Arn,
},
OpenMonitoring = new Aws.Msk.Inputs.ClusterOpenMonitoringArgs
{
Prometheus = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusArgs
{
JmxExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs
{
EnabledInBroker = true,
},
NodeExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs
{
EnabledInBroker = true,
},
},
},
LoggingInfo = new Aws.Msk.Inputs.ClusterLoggingInfoArgs
{
BrokerLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsArgs
{
CloudwatchLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
{
Enabled = true,
LogGroup = test.Name,
},
Firehose = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs
{
Enabled = true,
DeliveryStream = testStream.Name,
},
S3 = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsS3Args
{
Enabled = true,
Bucket = bucket.Id,
Prefix = "logs/msk-",
},
},
},
Tags =
{
{ "foo", "bar" },
},
});
return new Dictionary<string, object?>
{
["zookeeperConnectString"] = example.ZookeeperConnectString,
["bootstrapBrokersTls"] = example.BootstrapBrokersTls,
};
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.ec2.Vpc;
import com.pulumi.aws.ec2.VpcArgs;
import com.pulumi.aws.AwsFunctions;
import com.pulumi.aws.inputs.GetAvailabilityZonesArgs;
import com.pulumi.aws.ec2.Subnet;
import com.pulumi.aws.ec2.SubnetArgs;
import com.pulumi.aws.ec2.SecurityGroup;
import com.pulumi.aws.ec2.SecurityGroupArgs;
import com.pulumi.aws.kms.Key;
import com.pulumi.aws.kms.KeyArgs;
import com.pulumi.aws.cloudwatch.LogGroup;
import com.pulumi.aws.cloudwatch.LogGroupArgs;
import com.pulumi.aws.s3.BucketV2;
import com.pulumi.aws.s3.BucketV2Args;
import com.pulumi.aws.s3.BucketAclV2;
import com.pulumi.aws.s3.BucketAclV2Args;
import com.pulumi.aws.iam.IamFunctions;
import com.pulumi.aws.iam.inputs.GetPolicyDocumentArgs;
import com.pulumi.aws.iam.Role;
import com.pulumi.aws.iam.RoleArgs;
import com.pulumi.aws.kinesis.FirehoseDeliveryStream;
import com.pulumi.aws.kinesis.FirehoseDeliveryStreamArgs;
import com.pulumi.aws.kinesis.inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs;
import com.pulumi.aws.msk.Cluster;
import com.pulumi.aws.msk.ClusterArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterEncryptionInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsS3Args;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var vpc = new Vpc("vpc", VpcArgs.builder()
.cidrBlock("192.168.0.0/22")
.build());
final var azs = AwsFunctions.getAvailabilityZones(GetAvailabilityZonesArgs.builder()
.state("available")
.build());
var subnetAz1 = new Subnet("subnetAz1", SubnetArgs.builder()
.availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[0]))
.cidrBlock("192.168.0.0/24")
.vpcId(vpc.id())
.build());
var subnetAz2 = new Subnet("subnetAz2", SubnetArgs.builder()
.availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[1]))
.cidrBlock("192.168.1.0/24")
.vpcId(vpc.id())
.build());
var subnetAz3 = new Subnet("subnetAz3", SubnetArgs.builder()
.availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[2]))
.cidrBlock("192.168.2.0/24")
.vpcId(vpc.id())
.build());
var sg = new SecurityGroup("sg", SecurityGroupArgs.builder()
.vpcId(vpc.id())
.build());
var kms = new Key("kms", KeyArgs.builder()
.description("example")
.build());
var test = new LogGroup("test", LogGroupArgs.builder()
.name("msk_broker_logs")
.build());
var bucket = new BucketV2("bucket", BucketV2Args.builder()
.bucket("msk-broker-logs-bucket")
.build());
var bucketAcl = new BucketAclV2("bucketAcl", BucketAclV2Args.builder()
.bucket(bucket.id())
.acl("private")
.build());
final var assumeRole = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
.statements(GetPolicyDocumentStatementArgs.builder()
.effect("Allow")
.principals(GetPolicyDocumentStatementPrincipalArgs.builder()
.type("Service")
.identifiers("firehose.amazonaws.com")
.build())
.actions("sts:AssumeRole")
.build())
.build());
var firehoseRole = new Role("firehoseRole", RoleArgs.builder()
.name("firehose_test_role")
.assumeRolePolicy(assumeRole.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult.json()))
.build());
var testStream = new FirehoseDeliveryStream("testStream", FirehoseDeliveryStreamArgs.builder()
.name("kinesis-firehose-msk-broker-logs-stream")
.destination("extended_s3")
.extendedS3Configuration(FirehoseDeliveryStreamExtendedS3ConfigurationArgs.builder()
.roleArn(firehoseRole.arn())
.bucketArn(bucket.arn())
.build())
.tags(Map.of("LogDeliveryEnabled", "placeholder"))
.build());
var example = new Cluster("example", ClusterArgs.builder()
.clusterName("example")
.kafkaVersion("3.2.0")
.numberOfBrokerNodes(3)
.brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
.instanceType("kafka.m5.large")
.clientSubnets(
subnetAz1.id(),
subnetAz2.id(),
subnetAz3.id())
.storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
.ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
.volumeSize(1000)
.build())
.build())
.securityGroups(sg.id())
.build())
.encryptionInfo(ClusterEncryptionInfoArgs.builder()
.encryptionAtRestKmsKeyArn(kms.arn())
.build())
.openMonitoring(ClusterOpenMonitoringArgs.builder()
.prometheus(ClusterOpenMonitoringPrometheusArgs.builder()
.jmxExporter(ClusterOpenMonitoringPrometheusJmxExporterArgs.builder()
.enabledInBroker(true)
.build())
.nodeExporter(ClusterOpenMonitoringPrometheusNodeExporterArgs.builder()
.enabledInBroker(true)
.build())
.build())
.build())
.loggingInfo(ClusterLoggingInfoArgs.builder()
.brokerLogs(ClusterLoggingInfoBrokerLogsArgs.builder()
.cloudwatchLogs(ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs.builder()
.enabled(true)
.logGroup(test.name())
.build())
.firehose(ClusterLoggingInfoBrokerLogsFirehoseArgs.builder()
.enabled(true)
.deliveryStream(testStream.name())
.build())
.s3(ClusterLoggingInfoBrokerLogsS3Args.builder()
.enabled(true)
.bucket(bucket.id())
.prefix("logs/msk-")
.build())
.build())
.build())
.tags(Map.of("foo", "bar"))
.build());
ctx.export("zookeeperConnectString", example.zookeeperConnectString());
ctx.export("bootstrapBrokersTls", example.bootstrapBrokersTls());
}
}
resources:
vpc:
type: aws:ec2:Vpc
properties:
cidrBlock: 192.168.0.0/22
subnetAz1:
type: aws:ec2:Subnet
name: subnet_az1
properties:
availabilityZone: ${azs.names[0]}
cidrBlock: 192.168.0.0/24
vpcId: ${vpc.id}
subnetAz2:
type: aws:ec2:Subnet
name: subnet_az2
properties:
availabilityZone: ${azs.names[1]}
cidrBlock: 192.168.1.0/24
vpcId: ${vpc.id}
subnetAz3:
type: aws:ec2:Subnet
name: subnet_az3
properties:
availabilityZone: ${azs.names[2]}
cidrBlock: 192.168.2.0/24
vpcId: ${vpc.id}
sg:
type: aws:ec2:SecurityGroup
properties:
vpcId: ${vpc.id}
kms:
type: aws:kms:Key
properties:
description: example
test:
type: aws:cloudwatch:LogGroup
properties:
name: msk_broker_logs
bucket:
type: aws:s3:BucketV2
properties:
bucket: msk-broker-logs-bucket
bucketAcl:
type: aws:s3:BucketAclV2
name: bucket_acl
properties:
bucket: ${bucket.id}
acl: private
firehoseRole:
type: aws:iam:Role
name: firehose_role
properties:
name: firehose_test_role
assumeRolePolicy: ${assumeRole.json}
testStream:
type: aws:kinesis:FirehoseDeliveryStream
name: test_stream
properties:
name: kinesis-firehose-msk-broker-logs-stream
destination: extended_s3
extendedS3Configuration:
roleArn: ${firehoseRole.arn}
bucketArn: ${bucket.arn}
tags:
LogDeliveryEnabled: placeholder
example:
type: aws:msk:Cluster
properties:
clusterName: example
kafkaVersion: 3.2.0
numberOfBrokerNodes: 3
brokerNodeGroupInfo:
instanceType: kafka.m5.large
clientSubnets:
- ${subnetAz1.id}
- ${subnetAz2.id}
- ${subnetAz3.id}
storageInfo:
ebsStorageInfo:
volumeSize: 1000
securityGroups:
- ${sg.id}
encryptionInfo:
encryptionAtRestKmsKeyArn: ${kms.arn}
openMonitoring:
prometheus:
jmxExporter:
enabledInBroker: true
nodeExporter:
enabledInBroker: true
loggingInfo:
brokerLogs:
cloudwatchLogs:
enabled: true
logGroup: ${test.name}
firehose:
enabled: true
deliveryStream: ${testStream.name}
s3:
enabled: true
bucket: ${bucket.id}
prefix: logs/msk-
tags:
foo: bar
variables:
azs:
fn::invoke:
Function: aws:getAvailabilityZones
Arguments:
state: available
assumeRole:
fn::invoke:
Function: aws:iam:getPolicyDocument
Arguments:
statements:
- effect: Allow
principals:
- type: Service
identifiers:
- firehose.amazonaws.com
actions:
- sts:AssumeRole
outputs:
zookeeperConnectString: ${example.zookeeperConnectString}
bootstrapBrokersTls: ${example.bootstrapBrokersTls}
With volume_throughput argument
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.msk.Cluster("example", {
clusterName: "example",
kafkaVersion: "2.7.1",
numberOfBrokerNodes: 3,
brokerNodeGroupInfo: {
instanceType: "kafka.m5.4xlarge",
clientSubnets: [
subnetAz1.id,
subnetAz2.id,
subnetAz3.id,
],
storageInfo: {
ebsStorageInfo: {
provisionedThroughput: {
enabled: true,
volumeThroughput: 250,
},
volumeSize: 1000,
},
},
securityGroups: [sg.id],
},
});
import pulumi
import pulumi_aws as aws
example = aws.msk.Cluster("example",
cluster_name="example",
kafka_version="2.7.1",
number_of_broker_nodes=3,
broker_node_group_info={
"instance_type": "kafka.m5.4xlarge",
"client_subnets": [
subnet_az1["id"],
subnet_az2["id"],
subnet_az3["id"],
],
"storage_info": {
"ebs_storage_info": {
"provisioned_throughput": {
"enabled": True,
"volume_throughput": 250,
},
"volume_size": 1000,
},
},
"security_groups": [sg["id"]],
})
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
ClusterName: pulumi.String("example"),
KafkaVersion: pulumi.String("2.7.1"),
NumberOfBrokerNodes: pulumi.Int(3),
BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
InstanceType: pulumi.String("kafka.m5.4xlarge"),
ClientSubnets: pulumi.StringArray{
subnetAz1.Id,
subnetAz2.Id,
subnetAz3.Id,
},
StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
ProvisionedThroughput: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs{
Enabled: pulumi.Bool(true),
VolumeThroughput: pulumi.Int(250),
},
VolumeSize: pulumi.Int(1000),
},
},
SecurityGroups: pulumi.StringArray{
sg.Id,
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Msk.Cluster("example", new()
{
ClusterName = "example",
KafkaVersion = "2.7.1",
NumberOfBrokerNodes = 3,
BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
{
InstanceType = "kafka.m5.4xlarge",
ClientSubnets = new[]
{
subnetAz1.Id,
subnetAz2.Id,
subnetAz3.Id,
},
StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
{
EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
{
ProvisionedThroughput = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
{
Enabled = true,
VolumeThroughput = 250,
},
VolumeSize = 1000,
},
},
SecurityGroups = new[]
{
sg.Id,
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.msk.Cluster;
import com.pulumi.aws.msk.ClusterArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new Cluster("example", ClusterArgs.builder()
.clusterName("example")
.kafkaVersion("2.7.1")
.numberOfBrokerNodes(3)
.brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
.instanceType("kafka.m5.4xlarge")
.clientSubnets(
subnetAz1.id(),
subnetAz2.id(),
subnetAz3.id())
.storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
.ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
.provisionedThroughput(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs.builder()
.enabled(true)
.volumeThroughput(250)
.build())
.volumeSize(1000)
.build())
.build())
.securityGroups(sg.id())
.build())
.build());
}
}
resources:
example:
type: aws:msk:Cluster
properties:
clusterName: example
kafkaVersion: 2.7.1
numberOfBrokerNodes: 3
brokerNodeGroupInfo:
instanceType: kafka.m5.4xlarge
clientSubnets:
- ${subnetAz1.id}
- ${subnetAz2.id}
- ${subnetAz3.id}
storageInfo:
ebsStorageInfo:
provisionedThroughput:
enabled: true
volumeThroughput: 250
volumeSize: 1000
securityGroups:
- ${sg.id}
Create Cluster Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Cluster(name: string, args: ClusterArgs, opts?: CustomResourceOptions);
@overload
def Cluster(resource_name: str,
args: ClusterArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Cluster(resource_name: str,
opts: Optional[ResourceOptions] = None,
broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
kafka_version: Optional[str] = None,
number_of_broker_nodes: Optional[int] = None,
client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
cluster_name: Optional[str] = None,
configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
enhanced_monitoring: Optional[str] = None,
logging_info: Optional[ClusterLoggingInfoArgs] = None,
open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
storage_mode: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None)
func NewCluster(ctx *Context, name string, args ClusterArgs, opts ...ResourceOption) (*Cluster, error)
public Cluster(string name, ClusterArgs args, CustomResourceOptions? opts = null)
public Cluster(String name, ClusterArgs args)
public Cluster(String name, ClusterArgs args, CustomResourceOptions options)
type: aws:msk:Cluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var exampleclusterResourceResourceFromMskcluster = new Aws.Msk.Cluster("exampleclusterResourceResourceFromMskcluster", new()
{
BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
{
ClientSubnets = new[]
{
"string",
},
InstanceType = "string",
SecurityGroups = new[]
{
"string",
},
AzDistribution = "string",
ConnectivityInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoArgs
{
PublicAccess = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs
{
Type = "string",
},
VpcConnectivity = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs
{
ClientAuthentication = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs
{
Sasl = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs
{
Iam = false,
Scram = false,
},
Tls = false,
},
},
},
StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
{
EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
{
ProvisionedThroughput = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
{
Enabled = false,
VolumeThroughput = 0,
},
VolumeSize = 0,
},
},
},
KafkaVersion = "string",
NumberOfBrokerNodes = 0,
ClientAuthentication = new Aws.Msk.Inputs.ClusterClientAuthenticationArgs
{
Sasl = new Aws.Msk.Inputs.ClusterClientAuthenticationSaslArgs
{
Iam = false,
Scram = false,
},
Tls = new Aws.Msk.Inputs.ClusterClientAuthenticationTlsArgs
{
CertificateAuthorityArns = new[]
{
"string",
},
},
Unauthenticated = false,
},
ClusterName = "string",
ConfigurationInfo = new Aws.Msk.Inputs.ClusterConfigurationInfoArgs
{
Arn = "string",
Revision = 0,
},
EncryptionInfo = new Aws.Msk.Inputs.ClusterEncryptionInfoArgs
{
EncryptionAtRestKmsKeyArn = "string",
EncryptionInTransit = new Aws.Msk.Inputs.ClusterEncryptionInfoEncryptionInTransitArgs
{
ClientBroker = "string",
InCluster = false,
},
},
EnhancedMonitoring = "string",
LoggingInfo = new Aws.Msk.Inputs.ClusterLoggingInfoArgs
{
BrokerLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsArgs
{
CloudwatchLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
{
Enabled = false,
LogGroup = "string",
},
Firehose = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs
{
Enabled = false,
DeliveryStream = "string",
},
S3 = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsS3Args
{
Enabled = false,
Bucket = "string",
Prefix = "string",
},
},
},
OpenMonitoring = new Aws.Msk.Inputs.ClusterOpenMonitoringArgs
{
Prometheus = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusArgs
{
JmxExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs
{
EnabledInBroker = false,
},
NodeExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs
{
EnabledInBroker = false,
},
},
},
StorageMode = "string",
Tags =
{
{ "string", "string" },
},
});
example, err := msk.NewCluster(ctx, "exampleclusterResourceResourceFromMskcluster", &msk.ClusterArgs{
BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
ClientSubnets: pulumi.StringArray{
pulumi.String("string"),
},
InstanceType: pulumi.String("string"),
SecurityGroups: pulumi.StringArray{
pulumi.String("string"),
},
AzDistribution: pulumi.String("string"),
ConnectivityInfo: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoArgs{
PublicAccess: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs{
Type: pulumi.String("string"),
},
VpcConnectivity: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs{
ClientAuthentication: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs{
Sasl: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs{
Iam: pulumi.Bool(false),
Scram: pulumi.Bool(false),
},
Tls: pulumi.Bool(false),
},
},
},
StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
ProvisionedThroughput: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs{
Enabled: pulumi.Bool(false),
VolumeThroughput: pulumi.Int(0),
},
VolumeSize: pulumi.Int(0),
},
},
},
KafkaVersion: pulumi.String("string"),
NumberOfBrokerNodes: pulumi.Int(0),
ClientAuthentication: &msk.ClusterClientAuthenticationArgs{
Sasl: &msk.ClusterClientAuthenticationSaslArgs{
Iam: pulumi.Bool(false),
Scram: pulumi.Bool(false),
},
Tls: &msk.ClusterClientAuthenticationTlsArgs{
CertificateAuthorityArns: pulumi.StringArray{
pulumi.String("string"),
},
},
Unauthenticated: pulumi.Bool(false),
},
ClusterName: pulumi.String("string"),
ConfigurationInfo: &msk.ClusterConfigurationInfoArgs{
Arn: pulumi.String("string"),
Revision: pulumi.Int(0),
},
EncryptionInfo: &msk.ClusterEncryptionInfoArgs{
EncryptionAtRestKmsKeyArn: pulumi.String("string"),
EncryptionInTransit: &msk.ClusterEncryptionInfoEncryptionInTransitArgs{
ClientBroker: pulumi.String("string"),
InCluster: pulumi.Bool(false),
},
},
EnhancedMonitoring: pulumi.String("string"),
LoggingInfo: &msk.ClusterLoggingInfoArgs{
BrokerLogs: &msk.ClusterLoggingInfoBrokerLogsArgs{
CloudwatchLogs: &msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs{
Enabled: pulumi.Bool(false),
LogGroup: pulumi.String("string"),
},
Firehose: &msk.ClusterLoggingInfoBrokerLogsFirehoseArgs{
Enabled: pulumi.Bool(false),
DeliveryStream: pulumi.String("string"),
},
S3: &msk.ClusterLoggingInfoBrokerLogsS3Args{
Enabled: pulumi.Bool(false),
Bucket: pulumi.String("string"),
Prefix: pulumi.String("string"),
},
},
},
OpenMonitoring: &msk.ClusterOpenMonitoringArgs{
Prometheus: &msk.ClusterOpenMonitoringPrometheusArgs{
JmxExporter: &msk.ClusterOpenMonitoringPrometheusJmxExporterArgs{
EnabledInBroker: pulumi.Bool(false),
},
NodeExporter: &msk.ClusterOpenMonitoringPrometheusNodeExporterArgs{
EnabledInBroker: pulumi.Bool(false),
},
},
},
StorageMode: pulumi.String("string"),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var exampleclusterResourceResourceFromMskcluster = new Cluster("exampleclusterResourceResourceFromMskcluster", ClusterArgs.builder()
.brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
.clientSubnets("string")
.instanceType("string")
.securityGroups("string")
.azDistribution("string")
.connectivityInfo(ClusterBrokerNodeGroupInfoConnectivityInfoArgs.builder()
.publicAccess(ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs.builder()
.type("string")
.build())
.vpcConnectivity(ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs.builder()
.clientAuthentication(ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs.builder()
.sasl(ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs.builder()
.iam(false)
.scram(false)
.build())
.tls(false)
.build())
.build())
.build())
.storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
.ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
.provisionedThroughput(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs.builder()
.enabled(false)
.volumeThroughput(0)
.build())
.volumeSize(0)
.build())
.build())
.build())
.kafkaVersion("string")
.numberOfBrokerNodes(0)
.clientAuthentication(ClusterClientAuthenticationArgs.builder()
.sasl(ClusterClientAuthenticationSaslArgs.builder()
.iam(false)
.scram(false)
.build())
.tls(ClusterClientAuthenticationTlsArgs.builder()
.certificateAuthorityArns("string")
.build())
.unauthenticated(false)
.build())
.clusterName("string")
.configurationInfo(ClusterConfigurationInfoArgs.builder()
.arn("string")
.revision(0)
.build())
.encryptionInfo(ClusterEncryptionInfoArgs.builder()
.encryptionAtRestKmsKeyArn("string")
.encryptionInTransit(ClusterEncryptionInfoEncryptionInTransitArgs.builder()
.clientBroker("string")
.inCluster(false)
.build())
.build())
.enhancedMonitoring("string")
.loggingInfo(ClusterLoggingInfoArgs.builder()
.brokerLogs(ClusterLoggingInfoBrokerLogsArgs.builder()
.cloudwatchLogs(ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs.builder()
.enabled(false)
.logGroup("string")
.build())
.firehose(ClusterLoggingInfoBrokerLogsFirehoseArgs.builder()
.enabled(false)
.deliveryStream("string")
.build())
.s3(ClusterLoggingInfoBrokerLogsS3Args.builder()
.enabled(false)
.bucket("string")
.prefix("string")
.build())
.build())
.build())
.openMonitoring(ClusterOpenMonitoringArgs.builder()
.prometheus(ClusterOpenMonitoringPrometheusArgs.builder()
.jmxExporter(ClusterOpenMonitoringPrometheusJmxExporterArgs.builder()
.enabledInBroker(false)
.build())
.nodeExporter(ClusterOpenMonitoringPrometheusNodeExporterArgs.builder()
.enabledInBroker(false)
.build())
.build())
.build())
.storageMode("string")
.tags(Map.of("string", "string"))
.build());
examplecluster_resource_resource_from_mskcluster = aws.msk.Cluster("exampleclusterResourceResourceFromMskcluster",
broker_node_group_info={
"clientSubnets": ["string"],
"instanceType": "string",
"securityGroups": ["string"],
"azDistribution": "string",
"connectivityInfo": {
"publicAccess": {
"type": "string",
},
"vpcConnectivity": {
"clientAuthentication": {
"sasl": {
"iam": False,
"scram": False,
},
"tls": False,
},
},
},
"storageInfo": {
"ebsStorageInfo": {
"provisionedThroughput": {
"enabled": False,
"volumeThroughput": 0,
},
"volumeSize": 0,
},
},
},
kafka_version="string",
number_of_broker_nodes=0,
client_authentication={
"sasl": {
"iam": False,
"scram": False,
},
"tls": {
"certificateAuthorityArns": ["string"],
},
"unauthenticated": False,
},
cluster_name="string",
configuration_info={
"arn": "string",
"revision": 0,
},
encryption_info={
"encryptionAtRestKmsKeyArn": "string",
"encryptionInTransit": {
"clientBroker": "string",
"inCluster": False,
},
},
enhanced_monitoring="string",
logging_info={
"brokerLogs": {
"cloudwatchLogs": {
"enabled": False,
"logGroup": "string",
},
"firehose": {
"enabled": False,
"deliveryStream": "string",
},
"s3": {
"enabled": False,
"bucket": "string",
"prefix": "string",
},
},
},
open_monitoring={
"prometheus": {
"jmxExporter": {
"enabledInBroker": False,
},
"nodeExporter": {
"enabledInBroker": False,
},
},
},
storage_mode="string",
tags={
"string": "string",
})
const exampleclusterResourceResourceFromMskcluster = new aws.msk.Cluster("exampleclusterResourceResourceFromMskcluster", {
brokerNodeGroupInfo: {
clientSubnets: ["string"],
instanceType: "string",
securityGroups: ["string"],
azDistribution: "string",
connectivityInfo: {
publicAccess: {
type: "string",
},
vpcConnectivity: {
clientAuthentication: {
sasl: {
iam: false,
scram: false,
},
tls: false,
},
},
},
storageInfo: {
ebsStorageInfo: {
provisionedThroughput: {
enabled: false,
volumeThroughput: 0,
},
volumeSize: 0,
},
},
},
kafkaVersion: "string",
numberOfBrokerNodes: 0,
clientAuthentication: {
sasl: {
iam: false,
scram: false,
},
tls: {
certificateAuthorityArns: ["string"],
},
unauthenticated: false,
},
clusterName: "string",
configurationInfo: {
arn: "string",
revision: 0,
},
encryptionInfo: {
encryptionAtRestKmsKeyArn: "string",
encryptionInTransit: {
clientBroker: "string",
inCluster: false,
},
},
enhancedMonitoring: "string",
loggingInfo: {
brokerLogs: {
cloudwatchLogs: {
enabled: false,
logGroup: "string",
},
firehose: {
enabled: false,
deliveryStream: "string",
},
s3: {
enabled: false,
bucket: "string",
prefix: "string",
},
},
},
openMonitoring: {
prometheus: {
jmxExporter: {
enabledInBroker: false,
},
nodeExporter: {
enabledInBroker: false,
},
},
},
storageMode: "string",
tags: {
string: "string",
},
});
type: aws:msk:Cluster
properties:
brokerNodeGroupInfo:
azDistribution: string
clientSubnets:
- string
connectivityInfo:
publicAccess:
type: string
vpcConnectivity:
clientAuthentication:
sasl:
iam: false
scram: false
tls: false
instanceType: string
securityGroups:
- string
storageInfo:
ebsStorageInfo:
provisionedThroughput:
enabled: false
volumeThroughput: 0
volumeSize: 0
clientAuthentication:
sasl:
iam: false
scram: false
tls:
certificateAuthorityArns:
- string
unauthenticated: false
clusterName: string
configurationInfo:
arn: string
revision: 0
encryptionInfo:
encryptionAtRestKmsKeyArn: string
encryptionInTransit:
clientBroker: string
inCluster: false
enhancedMonitoring: string
kafkaVersion: string
loggingInfo:
brokerLogs:
cloudwatchLogs:
enabled: false
logGroup: string
firehose:
deliveryStream: string
enabled: false
s3:
bucket: string
enabled: false
prefix: string
numberOfBrokerNodes: 0
openMonitoring:
prometheus:
jmxExporter:
enabledInBroker: false
nodeExporter:
enabledInBroker: false
storageMode: string
tags:
string: string
Cluster Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Cluster resource accepts the following input properties:
- Broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- Kafka
Version string - Specify the desired Kafka software version.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Dictionary<string, string>
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level.
- Broker
Node ClusterGroup Info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- Kafka
Version string - Specify the desired Kafka software version.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Client
Authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Configuration
Info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Encryption
Info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Logging
Info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Open
Monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - map[string]string
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- kafka
Version String - Specify the desired Kafka software version.
- number
Of IntegerBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Map<String,String>
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- kafka
Version string - Specify the desired Kafka software version.
- number
Of numberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name string - Name of the MSK cluster.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - {[key: string]: string}
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker_
node_ Clustergroup_ info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- kafka_
version str - Specify the desired Kafka software version.
- number_
of_ intbroker_ nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client_
authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- cluster_
name str - Name of the MSK cluster.
- configuration_
info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption_
info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- enhanced_
monitoring str - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging_
info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open_
monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage_
mode str - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Mapping[str, str]
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker
Node Property MapGroup Info - Configuration block for the broker nodes of the Kafka cluster.
- kafka
Version String - Specify the desired Kafka software version.
- number
Of NumberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client
Authentication Property Map - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- configuration
Info Property Map - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption
Info Property Map - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging
Info Property Map - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open
Monitoring Property Map - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Map<String>
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level.
Outputs
All input properties are implicitly available as output properties. Additionally, the Cluster resource produces the following output properties:
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- Id string
- The provider-assigned unique ID for this managed resource.
- Dictionary<string, string>
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- Id string
- The provider-assigned unique ID for this managed resource.
- map[string]string
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- id String
- The provider-assigned unique ID for this managed resource.
- Map<String,String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- id string
- The provider-assigned unique ID for this managed resource.
- {[key: string]: string}
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn str
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap_
brokers str - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strtls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strvpc_ connectivity_ sasl_ iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ sasl_ scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster_
uuid str - UUID of the MSK cluster, for use in IAM policies.
- current_
version str - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- id str
- The provider-assigned unique ID for this managed resource.
- Mapping[str, str]
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper_
connect_ strstring - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper_
connect_ strstring_ tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- id String
- The provider-assigned unique ID for this managed resource.
- Map<String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
Look up Existing Cluster Resource
Get an existing Cluster resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ClusterState, opts?: CustomResourceOptions): Cluster
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
arn: Optional[str] = None,
bootstrap_brokers: Optional[str] = None,
bootstrap_brokers_public_sasl_iam: Optional[str] = None,
bootstrap_brokers_public_sasl_scram: Optional[str] = None,
bootstrap_brokers_public_tls: Optional[str] = None,
bootstrap_brokers_sasl_iam: Optional[str] = None,
bootstrap_brokers_sasl_scram: Optional[str] = None,
bootstrap_brokers_tls: Optional[str] = None,
bootstrap_brokers_vpc_connectivity_sasl_iam: Optional[str] = None,
bootstrap_brokers_vpc_connectivity_sasl_scram: Optional[str] = None,
bootstrap_brokers_vpc_connectivity_tls: Optional[str] = None,
broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
cluster_name: Optional[str] = None,
cluster_uuid: Optional[str] = None,
configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
current_version: Optional[str] = None,
encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
enhanced_monitoring: Optional[str] = None,
kafka_version: Optional[str] = None,
logging_info: Optional[ClusterLoggingInfoArgs] = None,
number_of_broker_nodes: Optional[int] = None,
open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
storage_mode: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None,
tags_all: Optional[Mapping[str, str]] = None,
zookeeper_connect_string: Optional[str] = None,
zookeeper_connect_string_tls: Optional[str] = None) -> Cluster
func GetCluster(ctx *Context, name string, id IDInput, state *ClusterState, opts ...ResourceOption) (*Cluster, error)
public static Cluster Get(string name, Input<string> id, ClusterState? state, CustomResourceOptions? opts = null)
public static Cluster get(String name, Output<String> id, ClusterState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- Client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- Encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Kafka
Version string - Specify the desired Kafka software version.
- Logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Dictionary<string, string>
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level. - Dictionary<string, string>
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Broker
Node ClusterGroup Info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- Client
Authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Configuration
Info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- Encryption
Info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Kafka
Version string - Specify the desired Kafka software version.
- Logging
Info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Open
Monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - map[string]string
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level. - map[string]string
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka
Version String - Specify the desired Kafka software version.
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number
Of IntegerBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Map<String,String>
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String,String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name string - Name of the MSK cluster.
- cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka
Version string - Specify the desired Kafka software version.
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number
Of numberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - {[key: string]: string}
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level. - {[key: string]: string}
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn str
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap_
brokers str - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strtls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strvpc_ connectivity_ sasl_ iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ sasl_ scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker_
node_ Clustergroup_ info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- client_
authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- cluster_
name str - Name of the MSK cluster.
- cluster_
uuid str - UUID of the MSK cluster, for use in IAM policies.
- configuration_
info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current_
version str - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- encryption_
info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- enhanced_
monitoring str - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka_
version str - Specify the desired Kafka software version.
- logging_
info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number_
of_ intbroker_ nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open_
monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage_
mode str - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Mapping[str, str]
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level. - Mapping[str, str]
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper_
connect_ strstring - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper_
connect_ strstring_ tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_broker
is set toPLAINTEXT
orTLS_PLAINTEXT
. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andbroker_node_group_info.0.connectivity_info.0.public_access.0.type
is set toSERVICE_PROVIDED_EIPS
and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.iam
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
andclient_authentication.0.sasl.0.scram
is set totrue
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094
. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_broker
is set toTLS_PLAINTEXT
orTLS
. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker
Node Property MapGroup Info - Configuration block for the broker nodes of the Kafka cluster.
- client
Authentication Property Map - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- configuration
Info Property Map - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH
- encryption
Info Property Map - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka
Version String - Specify the desired Kafka software version.
- logging
Info Property Map - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number
Of NumberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open
Monitoring Property Map - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCAL
orTIERED
. - Map<String>
- A map of tags to assign to the resource. .If configured with a provider
default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tags
configuration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
Supporting Types
ClusterBrokerNodeGroupInfo, ClusterBrokerNodeGroupInfoArgs
- Client
Subnets List<string> - A list of subnets to connect to in client VPC (documentation).
- Instance
Type string - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- Security
Groups List<string> - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- Az
Distribution string - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT
. - Connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- Storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- Client
Subnets []string - A list of subnets to connect to in client VPC (documentation).
- Instance
Type string - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- Security
Groups []string - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- Az
Distribution string - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT
. - Connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- Storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client
Subnets List<String> - A list of subnets to connect to in client VPC (documentation).
- instance
Type String - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security
Groups List<String> - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az
Distribution String - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT
. - connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client
Subnets string[] - A list of subnets to connect to in client VPC (documentation).
- instance
Type string - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security
Groups string[] - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az
Distribution string - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT
. - connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client_
subnets Sequence[str] - A list of subnets to connect to in client VPC (documentation).
- instance_
type str - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security_
groups Sequence[str] - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az_
distribution str - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT
. - connectivity_
info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage_
info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client
Subnets List<String> - A list of subnets to connect to in client VPC (documentation).
- instance
Type String - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security
Groups List<String> - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az
Distribution String - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT
. - connectivity
Info Property Map - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage
Info Property Map - A block that contains information about storage volumes attached to MSK broker nodes. See below.
ClusterBrokerNodeGroupInfoConnectivityInfo, ClusterBrokerNodeGroupInfoConnectivityInfoArgs
- Public
Access ClusterBroker Node Group Info Connectivity Info Public Access - Access control settings for brokers. See below.
- Vpc
Connectivity ClusterBroker Node Group Info Connectivity Info Vpc Connectivity - VPC connectivity access control for brokers. See below.
- Public
Access ClusterBroker Node Group Info Connectivity Info Public Access - Access control settings for brokers. See below.
- Vpc
Connectivity ClusterBroker Node Group Info Connectivity Info Vpc Connectivity - VPC connectivity access control for brokers. See below.
- public
Access ClusterBroker Node Group Info Connectivity Info Public Access - Access control settings for brokers. See below.
- vpc
Connectivity ClusterBroker Node Group Info Connectivity Info Vpc Connectivity - VPC connectivity access control for brokers. See below.
- public
Access ClusterBroker Node Group Info Connectivity Info Public Access - Access control settings for brokers. See below.
- vpc
Connectivity ClusterBroker Node Group Info Connectivity Info Vpc Connectivity - VPC connectivity access control for brokers. See below.
- public_
access ClusterBroker Node Group Info Connectivity Info Public Access - Access control settings for brokers. See below.
- vpc_
connectivity ClusterBroker Node Group Info Connectivity Info Vpc Connectivity - VPC connectivity access control for brokers. See below.
- public
Access Property Map - Access control settings for brokers. See below.
- vpc
Connectivity Property Map - VPC connectivity access control for brokers. See below.
ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess, ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs
- Type string
- Public access type. Valid values:
DISABLED
,SERVICE_PROVIDED_EIPS
.
- Type string
- Public access type. Valid values:
DISABLED
,SERVICE_PROVIDED_EIPS
.
- type String
- Public access type. Valid values:
DISABLED
,SERVICE_PROVIDED_EIPS
.
- type string
- Public access type. Valid values:
DISABLED
,SERVICE_PROVIDED_EIPS
.
- type str
- Public access type. Valid values:
DISABLED
,SERVICE_PROVIDED_EIPS
.
- type String
- Public access type. Valid values:
DISABLED
,SERVICE_PROVIDED_EIPS
.
ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs
- Client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- Client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client_
authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client
Authentication Property Map - Configuration block for specifying a client authentication. See below.
ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs
- Sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls bool
- Configuration block for specifying TLS client authentication. See below.
- Sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls bool
- Configuration block for specifying TLS client authentication. See below.
- sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls Boolean
- Configuration block for specifying TLS client authentication. See below.
- sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls boolean
- Configuration block for specifying TLS client authentication. See below.
- sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls bool
- Configuration block for specifying TLS client authentication. See below.
- sasl Property Map
- Configuration block for specifying SASL client authentication. See below.
- tls Boolean
- Configuration block for specifying TLS client authentication. See below.
ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs
ClusterBrokerNodeGroupInfoStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoArgs
- Ebs
Storage ClusterInfo Broker Node Group Info Storage Info Ebs Storage Info - A block that contains EBS volume information. See below.
- Ebs
Storage ClusterInfo Broker Node Group Info Storage Info Ebs Storage Info - A block that contains EBS volume information. See below.
- ebs
Storage ClusterInfo Broker Node Group Info Storage Info Ebs Storage Info - A block that contains EBS volume information. See below.
- ebs
Storage ClusterInfo Broker Node Group Info Storage Info Ebs Storage Info - A block that contains EBS volume information. See below.
- ebs_
storage_ Clusterinfo Broker Node Group Info Storage Info Ebs Storage Info - A block that contains EBS volume information. See below.
- ebs
Storage Property MapInfo - A block that contains EBS volume information. See below.
ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
- Provisioned
Throughput ClusterBroker Node Group Info Storage Info Ebs Storage Info Provisioned Throughput - A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
- Volume
Size int - The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of
1
and maximum value of16384
.
- Provisioned
Throughput ClusterBroker Node Group Info Storage Info Ebs Storage Info Provisioned Throughput - A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
- Volume
Size int - The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of
1
and maximum value of16384
.
- provisioned
Throughput ClusterBroker Node Group Info Storage Info Ebs Storage Info Provisioned Throughput - A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
- volume
Size Integer - The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of
1
and maximum value of16384
.
- provisioned
Throughput ClusterBroker Node Group Info Storage Info Ebs Storage Info Provisioned Throughput - A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
- volume
Size number - The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of
1
and maximum value of16384
.
- provisioned_
throughput ClusterBroker Node Group Info Storage Info Ebs Storage Info Provisioned Throughput - A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
- volume_
size int - The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of
1
and maximum value of16384
.
- provisioned
Throughput Property Map - A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
- volume
Size Number - The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of
1
and maximum value of16384
.
ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
- Enabled bool
- Volume
Throughput int - Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is
250
. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
- Enabled bool
- Volume
Throughput int - Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is
250
. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
- enabled Boolean
- volume
Throughput Integer - Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is
250
. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
- enabled boolean
- volume
Throughput number - Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is
250
. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
- enabled bool
- volume_
throughput int - Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is
250
. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
- enabled Boolean
- volume
Throughput Number - Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is
250
. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
ClusterClientAuthentication, ClusterClientAuthenticationArgs
- Sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- Unauthenticated bool
- Enables unauthenticated access.
- Sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- Unauthenticated bool
- Enables unauthenticated access.
- sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- unauthenticated Boolean
- Enables unauthenticated access.
- sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- unauthenticated boolean
- Enables unauthenticated access.
- sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- unauthenticated bool
- Enables unauthenticated access.
- sasl Property Map
- Configuration block for specifying SASL client authentication. See below.
- tls Property Map
- Configuration block for specifying TLS client authentication. See below.
- unauthenticated Boolean
- Enables unauthenticated access.
ClusterClientAuthenticationSasl, ClusterClientAuthenticationSaslArgs
ClusterClientAuthenticationTls, ClusterClientAuthenticationTlsArgs
- List<string>
- List of ACM Certificate Authority Amazon Resource Names (ARNs).
- []string
- List of ACM Certificate Authority Amazon Resource Names (ARNs).
- List<String>
- List of ACM Certificate Authority Amazon Resource Names (ARNs).
- string[]
- List of ACM Certificate Authority Amazon Resource Names (ARNs).
- Sequence[str]
- List of ACM Certificate Authority Amazon Resource Names (ARNs).
- List<String>
- List of ACM Certificate Authority Amazon Resource Names (ARNs).
ClusterConfigurationInfo, ClusterConfigurationInfoArgs
ClusterEncryptionInfo, ClusterEncryptionInfoArgs
- Encryption
At stringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- Encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- Encryption
At stringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- Encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption
At StringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption
At stringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption_
at_ strrest_ kms_ key_ arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption_
in_ Clustertransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption
At StringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption
In Property MapTransit - Configuration block to specify encryption in transit. See below.
ClusterEncryptionInfoEncryptionInTransit, ClusterEncryptionInfoEncryptionInTransitArgs
- Client
Broker string - Encryption setting for data in transit between clients and brokers. Valid values:
TLS
,TLS_PLAINTEXT
, andPLAINTEXT
. Default value isTLS
. - In
Cluster bool - Whether data communication among broker nodes is encrypted. Default value:
true
.
- Client
Broker string - Encryption setting for data in transit between clients and brokers. Valid values:
TLS
,TLS_PLAINTEXT
, andPLAINTEXT
. Default value isTLS
. - In
Cluster bool - Whether data communication among broker nodes is encrypted. Default value:
true
.
- client
Broker String - Encryption setting for data in transit between clients and brokers. Valid values:
TLS
,TLS_PLAINTEXT
, andPLAINTEXT
. Default value isTLS
. - in
Cluster Boolean - Whether data communication among broker nodes is encrypted. Default value:
true
.
- client
Broker string - Encryption setting for data in transit between clients and brokers. Valid values:
TLS
,TLS_PLAINTEXT
, andPLAINTEXT
. Default value isTLS
. - in
Cluster boolean - Whether data communication among broker nodes is encrypted. Default value:
true
.
- client_
broker str - Encryption setting for data in transit between clients and brokers. Valid values:
TLS
,TLS_PLAINTEXT
, andPLAINTEXT
. Default value isTLS
. - in_
cluster bool - Whether data communication among broker nodes is encrypted. Default value:
true
.
- client
Broker String - Encryption setting for data in transit between clients and brokers. Valid values:
TLS
,TLS_PLAINTEXT
, andPLAINTEXT
. Default value isTLS
. - in
Cluster Boolean - Whether data communication among broker nodes is encrypted. Default value:
true
.
ClusterLoggingInfo, ClusterLoggingInfoArgs
- Broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- Broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker_
logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker
Logs Property Map - Configuration block for Broker Logs settings for logging info. See below.
ClusterLoggingInfoBrokerLogs, ClusterLoggingInfoBrokerLogsArgs
ClusterLoggingInfoBrokerLogsCloudwatchLogs, ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
ClusterLoggingInfoBrokerLogsFirehose, ClusterLoggingInfoBrokerLogsFirehoseArgs
- Enabled bool
- Delivery
Stream string - Name of the Kinesis Data Firehose delivery stream to deliver logs to.
- Enabled bool
- Delivery
Stream string - Name of the Kinesis Data Firehose delivery stream to deliver logs to.
- enabled Boolean
- delivery
Stream String - Name of the Kinesis Data Firehose delivery stream to deliver logs to.
- enabled boolean
- delivery
Stream string - Name of the Kinesis Data Firehose delivery stream to deliver logs to.
- enabled bool
- delivery_
stream str - Name of the Kinesis Data Firehose delivery stream to deliver logs to.
- enabled Boolean
- delivery
Stream String - Name of the Kinesis Data Firehose delivery stream to deliver logs to.
ClusterLoggingInfoBrokerLogsS3, ClusterLoggingInfoBrokerLogsS3Args
ClusterOpenMonitoring, ClusterOpenMonitoringArgs
- Prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- Prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus Property Map
- Configuration block for Prometheus settings for open monitoring. See below.
ClusterOpenMonitoringPrometheus, ClusterOpenMonitoringPrometheusArgs
- Jmx
Exporter ClusterOpen Monitoring Prometheus Jmx Exporter - Configuration block for JMX Exporter. See below.
- Node
Exporter ClusterOpen Monitoring Prometheus Node Exporter - Configuration block for Node Exporter. See below.
- Jmx
Exporter ClusterOpen Monitoring Prometheus Jmx Exporter - Configuration block for JMX Exporter. See below.
- Node
Exporter ClusterOpen Monitoring Prometheus Node Exporter - Configuration block for Node Exporter. See below.
- jmx
Exporter ClusterOpen Monitoring Prometheus Jmx Exporter - Configuration block for JMX Exporter. See below.
- node
Exporter ClusterOpen Monitoring Prometheus Node Exporter - Configuration block for Node Exporter. See below.
- jmx
Exporter ClusterOpen Monitoring Prometheus Jmx Exporter - Configuration block for JMX Exporter. See below.
- node
Exporter ClusterOpen Monitoring Prometheus Node Exporter - Configuration block for Node Exporter. See below.
- jmx_
exporter ClusterOpen Monitoring Prometheus Jmx Exporter - Configuration block for JMX Exporter. See below.
- node_
exporter ClusterOpen Monitoring Prometheus Node Exporter - Configuration block for Node Exporter. See below.
- jmx
Exporter Property Map - Configuration block for JMX Exporter. See below.
- node
Exporter Property Map - Configuration block for Node Exporter. See below.
ClusterOpenMonitoringPrometheusJmxExporter, ClusterOpenMonitoringPrometheusJmxExporterArgs
- Enabled
In boolBroker - Indicates whether you want to enable or disable the Node Exporter.
- Enabled
In boolBroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled
In BooleanBroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled
In booleanBroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled_
in_ boolbroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled
In BooleanBroker - Indicates whether you want to enable or disable the Node Exporter.
ClusterOpenMonitoringPrometheusNodeExporter, ClusterOpenMonitoringPrometheusNodeExporterArgs
- Enabled
In boolBroker - Indicates whether you want to enable or disable the Node Exporter.
- Enabled
In boolBroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled
In BooleanBroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled
In booleanBroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled_
in_ boolbroker - Indicates whether you want to enable or disable the Node Exporter.
- enabled
In BooleanBroker - Indicates whether you want to enable or disable the Node Exporter.
Import
Using pulumi import
, import MSK clusters using the cluster arn
. For example:
$ pulumi import aws:msk/cluster:Cluster example arn:aws:kafka:us-west-2:123456789012:cluster/example/279c0212-d057-4dba-9aa9-1c4e5a25bfc7-3
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- AWS Classic pulumi/pulumi-aws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
aws
Terraform Provider.