aws-cdk-lib.aws_config.CloudFormationStackNotificationCheck

class CloudFormationStackNotificationCheck (construct)

LanguageType name
.NETAmazon.CDK.AWS.Config.CloudFormationStackNotificationCheck
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsconfig#CloudFormationStackNotificationCheck
Javasoftware.amazon.awscdk.services.config.CloudFormationStackNotificationCheck
Pythonaws_cdk.aws_config.CloudFormationStackNotificationCheck
TypeScript (source)aws-cdk-lib » aws_config » CloudFormationStackNotificationCheck

Implements IConstruct, IDependable, IResource, IRule

Checks whether your CloudFormation stacks are sending event notifications to a SNS topic.

Optionally checks whether specified SNS topics are used.

See also: https://docs.aws.amazon.com/config/latest/developerguide/cloudformation-stack-notification-check.html

Example

// topics to which CloudFormation stacks may send event notifications
const topic1 = new sns.Topic(this, 'AllowedTopic1');
const topic2 = new sns.Topic(this, 'AllowedTopic2');

// non-compliant if CloudFormation stack does not send notifications to 'topic1' or 'topic2'
new config.CloudFormationStackNotificationCheck(this, 'NotificationCheck', {
  topics: [topic1, topic2],
});

Initializer

new CloudFormationStackNotificationCheck(scope: Construct, id: string, props?: CloudFormationStackNotificationCheckProps)

Parameters

  • scope Construct
  • id string
  • props CloudFormationStackNotificationCheckProps

Construct Props

NameTypeDescription
configRuleName?stringA name for the AWS Config rule.
description?stringA description about this AWS Config rule.
inputParameters?{ [string]: any }Input parameter values that are passed to the AWS Config rule.
maximumExecutionFrequency?MaximumExecutionFrequencyThe maximum frequency at which the AWS Config rule runs evaluations.
ruleScope?RuleScopeDefines which resources trigger an evaluation for an AWS Config rule.
topics?ITopic[]A list of allowed topics.

configRuleName?

Type: string (optional, default: CloudFormation generated name)

A name for the AWS Config rule.


description?

Type: string (optional, default: No description)

A description about this AWS Config rule.


inputParameters?

Type: { [string]: any } (optional, default: No input parameters)

Input parameter values that are passed to the AWS Config rule.


maximumExecutionFrequency?

Type: MaximumExecutionFrequency (optional, default: MaximumExecutionFrequency.TWENTY_FOUR_HOURS)

The maximum frequency at which the AWS Config rule runs evaluations.


ruleScope?

Type: RuleScope (optional, default: evaluations for the rule are triggered when any resource in the recording group changes.)

Defines which resources trigger an evaluation for an AWS Config rule.


topics?

Type: ITopic[] (optional, default: No topics.)

A list of allowed topics.

At most 5 topics.

Properties

NameTypeDescription
configRuleArnstringThe arn of the rule.
configRuleComplianceTypestringThe compliance status of the rule.
configRuleIdstringThe id of the rule.
configRuleNamestringThe name of the rule.
envResourceEnvironmentThe environment this resource belongs to.
nodeNodeThe tree node.
stackStackThe stack in which this resource is defined.

configRuleArn

Type: string

The arn of the rule.


configRuleComplianceType

Type: string

The compliance status of the rule.


configRuleId

Type: string

The id of the rule.


configRuleName

Type: string

The name of the rule.


env

Type: ResourceEnvironment

The environment this resource belongs to.

For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), this is always the same as the environment of the stack they belong to; however, for imported resources (those obtained from static methods like fromRoleArn, fromBucketName, etc.), that might be different than the stack they were imported into.


node

Type: Node

The tree node.


stack

Type: Stack

The stack in which this resource is defined.

Methods

NameDescription
applyRemovalPolicy(policy)Apply the given removal policy to this resource.
onComplianceChange(id, options?)Defines an EventBridge event rule which triggers for rule compliance events.
onEvent(id, options?)Defines an EventBridge event rule which triggers for rule events.
onReEvaluationStatus(id, options?)Defines an EventBridge event rule which triggers for rule re-evaluation status events.
toString()Returns a string representation of this construct.

applyRemovalPolicy(policy)

public applyRemovalPolicy(policy: RemovalPolicy): void

Parameters

  • policy RemovalPolicy

Apply the given removal policy to this resource.

The Removal Policy controls what happens to this resource when it stops being managed by CloudFormation, either because you've removed it from the CDK application or because you've made a change that requires the resource to be replaced.

The resource can be deleted (RemovalPolicy.DESTROY), or left in your AWS account for data recovery and cleanup later (RemovalPolicy.RETAIN).


onComplianceChange(id, options?)

public onComplianceChange(id: string, options?: OnEventOptions): Rule

Parameters

  • id string
  • options OnEventOptions

Returns

  • Rule

Defines an EventBridge event rule which triggers for rule compliance events.


onEvent(id, options?)

public onEvent(id: string, options?: OnEventOptions): Rule

Parameters

  • id string
  • options OnEventOptions

Returns

  • Rule

Defines an EventBridge event rule which triggers for rule events.

Use rule.addEventPattern(pattern) to specify a filter.


onReEvaluationStatus(id, options?)

public onReEvaluationStatus(id: string, options?: OnEventOptions): Rule

Parameters

  • id string
  • options OnEventOptions

Returns

  • Rule

Defines an EventBridge event rule which triggers for rule re-evaluation status events.


toString()

public toString(): string

Returns

  • string

Returns a string representation of this construct.