aws-cdk-lib.aws_glue.CfnDataCatalogEncryptionSettings.DataCatalogEncryptionSettingsProperty

interface DataCatalogEncryptionSettingsProperty

LanguageType name
.NETAmazon.CDK.AWS.Glue.CfnDataCatalogEncryptionSettings.DataCatalogEncryptionSettingsProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsglue#CfnDataCatalogEncryptionSettings_DataCatalogEncryptionSettingsProperty
Javasoftware.amazon.awscdk.services.glue.CfnDataCatalogEncryptionSettings.DataCatalogEncryptionSettingsProperty
Pythonaws_cdk.aws_glue.CfnDataCatalogEncryptionSettings.DataCatalogEncryptionSettingsProperty
TypeScript aws-cdk-lib » aws_glue » CfnDataCatalogEncryptionSettings » DataCatalogEncryptionSettingsProperty

Contains configuration information for maintaining Data Catalog security.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_glue as glue } from 'aws-cdk-lib';
const dataCatalogEncryptionSettingsProperty: glue.CfnDataCatalogEncryptionSettings.DataCatalogEncryptionSettingsProperty = {
  connectionPasswordEncryption: {
    kmsKeyId: 'kmsKeyId',
    returnConnectionPasswordEncrypted: false,
  },
  encryptionAtRest: {
    catalogEncryptionMode: 'catalogEncryptionMode',
    sseAwsKmsKeyId: 'sseAwsKmsKeyId',
  },
};

Properties

NameTypeDescription
connectionPasswordEncryption?IResolvable | ConnectionPasswordEncryptionPropertyWhen connection password protection is enabled, the Data Catalog uses a customer-provided key to encrypt the password as part of CreateConnection or UpdateConnection and store it in the ENCRYPTED_PASSWORD field in the connection properties.
encryptionAtRest?IResolvable | EncryptionAtRestPropertySpecifies the encryption-at-rest configuration for the Data Catalog.

connectionPasswordEncryption?

Type: IResolvable | ConnectionPasswordEncryptionProperty (optional)

When connection password protection is enabled, the Data Catalog uses a customer-provided key to encrypt the password as part of CreateConnection or UpdateConnection and store it in the ENCRYPTED_PASSWORD field in the connection properties.

You can enable catalog encryption or only password encryption.


encryptionAtRest?

Type: IResolvable | EncryptionAtRestProperty (optional)

Specifies the encryption-at-rest configuration for the Data Catalog.