aws-cdk-lib.aws_s3.CfnBucket.BucketEncryptionProperty

interface BucketEncryptionProperty

LanguageType name
.NETAmazon.CDK.AWS.S3.CfnBucket.BucketEncryptionProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awss3#CfnBucket_BucketEncryptionProperty
Javasoftware.amazon.awscdk.services.s3.CfnBucket.BucketEncryptionProperty
Pythonaws_cdk.aws_s3.CfnBucket.BucketEncryptionProperty
TypeScript aws-cdk-lib » aws_s3 » CfnBucket » BucketEncryptionProperty

Specifies default encryption for a bucket using server-side encryption with Amazon S3-managed keys (SSE-S3), AWS KMS-managed keys (SSE-KMS), or dual-layer server-side encryption with KMS-managed keys (DSSE-KMS).

For information about the Amazon S3 default encryption feature, see Amazon S3 Default Encryption for S3 Buckets in the Amazon S3 User Guide .

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_s3 as s3 } from 'aws-cdk-lib';
const bucketEncryptionProperty: s3.CfnBucket.BucketEncryptionProperty = {
  serverSideEncryptionConfiguration: [{
    bucketKeyEnabled: false,
    serverSideEncryptionByDefault: {
      sseAlgorithm: 'sseAlgorithm',

      // the properties below are optional
      kmsMasterKeyId: 'kmsMasterKeyId',
    },
  }],
};

Properties

NameTypeDescription
serverSideEncryptionConfigurationIResolvable | IResolvable | ServerSideEncryptionRuleProperty[]Specifies the default server-side-encryption configuration.

serverSideEncryptionConfiguration

Type: IResolvable | IResolvable | ServerSideEncryptionRuleProperty[]

Specifies the default server-side-encryption configuration.