aws-cdk-lib.aws_amazonmq.CfnBrokerProps

interface CfnBrokerProps

LanguageType name
.NETAmazon.CDK.AWS.AmazonMQ.CfnBrokerProps
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsamazonmq#CfnBrokerProps
Javasoftware.amazon.awscdk.services.amazonmq.CfnBrokerProps
Pythonaws_cdk.aws_amazonmq.CfnBrokerProps
TypeScript aws-cdk-lib » aws_amazonmq » CfnBrokerProps

Properties for defining a CfnBroker.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_amazonmq as amazonmq } from 'aws-cdk-lib';
const cfnBrokerProps: amazonmq.CfnBrokerProps = {
  autoMinorVersionUpgrade: false,
  brokerName: 'brokerName',
  deploymentMode: 'deploymentMode',
  engineType: 'engineType',
  engineVersion: 'engineVersion',
  hostInstanceType: 'hostInstanceType',
  publiclyAccessible: false,
  users: [{
    password: 'password',
    username: 'username',

    // the properties below are optional
    consoleAccess: false,
    groups: ['groups'],
  }],

  // the properties below are optional
  authenticationStrategy: 'authenticationStrategy',
  configuration: {
    id: 'id',
    revision: 123,
  },
  encryptionOptions: {
    useAwsOwnedKey: false,

    // the properties below are optional
    kmsKeyId: 'kmsKeyId',
  },
  ldapServerMetadata: {
    hosts: ['hosts'],
    roleBase: 'roleBase',
    roleSearchMatching: 'roleSearchMatching',
    serviceAccountPassword: 'serviceAccountPassword',
    serviceAccountUsername: 'serviceAccountUsername',
    userBase: 'userBase',
    userSearchMatching: 'userSearchMatching',

    // the properties below are optional
    roleName: 'roleName',
    roleSearchSubtree: false,
    userRoleName: 'userRoleName',
    userSearchSubtree: false,
  },
  logs: {
    audit: false,
    general: false,
  },
  maintenanceWindowStartTime: {
    dayOfWeek: 'dayOfWeek',
    timeOfDay: 'timeOfDay',
    timeZone: 'timeZone',
  },
  securityGroups: ['securityGroups'],
  storageType: 'storageType',
  subnetIds: ['subnetIds'],
  tags: [{
    key: 'key',
    value: 'value',
  }],
};

Properties

NameTypeDescription
autoMinorVersionUpgradeboolean | IResolvableEnables automatic upgrades to new minor versions for brokers, as new broker engine versions are released and supported by Amazon MQ.
brokerNamestringThe name of the broker.
deploymentModestringThe deployment mode of the broker. Available values:.
engineTypestringThe type of broker engine.
engineVersionstringThe version of the broker engine.
hostInstanceTypestringThe broker's instance type.
publiclyAccessibleboolean | IResolvableEnables connections from applications outside of the VPC that hosts the broker's subnets.
usersIResolvable | IResolvable | UserProperty[]The list of broker users (persons or applications) who can access queues and topics.
authenticationStrategy?stringOptional.
configuration?IResolvable | ConfigurationIdPropertyA list of information about the configuration.
encryptionOptions?IResolvable | EncryptionOptionsPropertyEncryption options for the broker.
ldapServerMetadata?IResolvable | LdapServerMetadataPropertyOptional.
logs?IResolvable | LogListPropertyEnables Amazon CloudWatch logging for brokers.
maintenanceWindowStartTime?IResolvable | MaintenanceWindowPropertyThe scheduled time period relative to UTC during which Amazon MQ begins to apply pending updates or patches to the broker.
securityGroups?string[]The list of rules (1 minimum, 125 maximum) that authorize connections to brokers.
storageType?stringThe broker's storage type.
subnetIds?string[]The list of groups that define which subnets and IP ranges the broker can use from different Availability Zones.
tags?TagsEntryProperty[]An array of key-value pairs.

autoMinorVersionUpgrade

Type: boolean | IResolvable

Enables automatic upgrades to new minor versions for brokers, as new broker engine versions are released and supported by Amazon MQ.

Automatic upgrades occur during the scheduled maintenance window of the broker or after a manual broker reboot.


brokerName

Type: string

The name of the broker.

This value must be unique in your AWS account , 1-50 characters long, must contain only letters, numbers, dashes, and underscores, and must not contain white spaces, brackets, wildcard characters, or special characters.

Do not add personally identifiable information (PII) or other confidential or sensitive information in broker names. Broker names are accessible to other AWS services, including C CloudWatch Logs . Broker names are not intended to be used for private or sensitive data.


deploymentMode

Type: string

The deployment mode of the broker. Available values:.

  • SINGLE_INSTANCE
  • ACTIVE_STANDBY_MULTI_AZ
  • CLUSTER_MULTI_AZ

engineType

Type: string

The type of broker engine.

Currently, Amazon MQ supports ACTIVEMQ and RABBITMQ .


engineVersion

Type: string

The version of the broker engine.

For a list of supported engine versions, see Engine in the Amazon MQ Developer Guide .


hostInstanceType

Type: string

The broker's instance type.


publiclyAccessible

Type: boolean | IResolvable

Enables connections from applications outside of the VPC that hosts the broker's subnets.


users

Type: IResolvable | IResolvable | UserProperty[]

The list of broker users (persons or applications) who can access queues and topics.

For Amazon MQ for RabbitMQ brokers, one and only one administrative user is accepted and created when a broker is first provisioned. All subsequent RabbitMQ users are created by via the RabbitMQ web console or by using the RabbitMQ management API.


authenticationStrategy?

Type: string (optional)

Optional.

The authentication strategy used to secure the broker. The default is SIMPLE .


configuration?

Type: IResolvable | ConfigurationIdProperty (optional)

A list of information about the configuration.

Does not apply to RabbitMQ brokers.


encryptionOptions?

Type: IResolvable | EncryptionOptionsProperty (optional)

Encryption options for the broker.

Does not apply to RabbitMQ brokers.


ldapServerMetadata?

Type: IResolvable | LdapServerMetadataProperty (optional)

Optional.

The metadata of the LDAP server used to authenticate and authorize connections to the broker. Does not apply to RabbitMQ brokers.


logs?

Type: IResolvable | LogListProperty (optional)

Enables Amazon CloudWatch logging for brokers.


maintenanceWindowStartTime?

Type: IResolvable | MaintenanceWindowProperty (optional)

The scheduled time period relative to UTC during which Amazon MQ begins to apply pending updates or patches to the broker.


securityGroups?

Type: string[] (optional)

The list of rules (1 minimum, 125 maximum) that authorize connections to brokers.


storageType?

Type: string (optional)

The broker's storage type.


subnetIds?

Type: string[] (optional)

The list of groups that define which subnets and IP ranges the broker can use from different Availability Zones.

If you specify more than one subnet, the subnets must be in different Availability Zones. Amazon MQ will not be able to create VPC endpoints for your broker with multiple subnets in the same Availability Zone. A SINGLE_INSTANCE deployment requires one subnet (for example, the default subnet). An ACTIVE_STANDBY_MULTI_AZ deployment (ACTIVEMQ) requires two subnets. A CLUSTER_MULTI_AZ deployment (RABBITMQ) has no subnet requirements when deployed with public accessibility, deployment without public accessibility requires at least one subnet.

If you specify subnets in a shared VPC for a RabbitMQ broker, the associated VPC to which the specified subnets belong must be owned by your AWS account . Amazon MQ will not be able to create VPC enpoints in VPCs that are not owned by your AWS account .


tags?

Type: TagsEntryProperty[] (optional)

An array of key-value pairs.

For more information, see Using Cost Allocation Tags in the Billing and Cost Management User Guide .