aws-cdk-lib.aws_stepfunctions_tasks.EncryptionOption

enum EncryptionOption

LanguageType name
.NETAmazon.CDK.AWS.StepFunctions.Tasks.EncryptionOption
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsstepfunctionstasks#EncryptionOption
Javasoftware.amazon.awscdk.services.stepfunctions.tasks.EncryptionOption
Pythonaws_cdk.aws_stepfunctions_tasks.EncryptionOption
TypeScript (source)aws-cdk-lib » aws_stepfunctions_tasks » EncryptionOption

Encryption Options of the S3 bucket.

See also: https://docs.aws.amazon.com/athena/latest/APIReference/API_EncryptionConfiguration.html#athena-Type-EncryptionConfiguration-EncryptionOption

Example

const startQueryExecutionJob = new tasks.AthenaStartQueryExecution(this, 'Start Athena Query', {
  queryString: sfn.JsonPath.stringAt('$.queryString'),
  queryExecutionContext: {
    databaseName: 'mydatabase',
  },
  resultConfiguration: {
    encryptionConfiguration: {
      encryptionOption: tasks.EncryptionOption.S3_MANAGED,
    },
    outputLocation: {
      bucketName: 'query-results-bucket',
      objectKey: 'folder',
    },
  },
});

Members

NameDescription
S3_MANAGEDServer side encryption (SSE) with an Amazon S3-managed key.
KMSServer-side encryption (SSE) with an AWS KMS key managed by the account owner.
CLIENT_SIDE_KMSClient-side encryption (CSE) with an AWS KMS key managed by the account owner.

S3_MANAGED

Server side encryption (SSE) with an Amazon S3-managed key.

See also: https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingServerSideEncryption.html


KMS

Server-side encryption (SSE) with an AWS KMS key managed by the account owner.

See also: https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingKMSEncryption.html


CLIENT_SIDE_KMS

Client-side encryption (CSE) with an AWS KMS key managed by the account owner.

See also: https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html