Copyright	(c) 2013-2021 Brendan Hay
License	Mozilla Public License, v. 2.0.
Maintainer	Brendan Hay <brendan.g.hay+amazonka@gmail.com>
Stability	auto-generated
Portability	non-portable (GHC extensions)
Safe Haskell	None

Amazonka.DynamoDB.Types.SSESpecification

Description

Documentation

data SSESpecification Source #

Represents the settings used to enable server-side encryption.

See: newSSESpecification smart constructor.

Constructors

SSESpecification'

Fields

enabled :: Maybe Bool
Indicates whether server-side encryption is done using an AWS managed CMK or an AWS owned CMK. If enabled (true), server-side encryption type is set to KMS and an AWS managed CMK is used (AWS KMS charges apply). If disabled (false) or not specified, server-side encryption is set to AWS owned CMK.
kmsMasterKeyId :: Maybe Text
The AWS KMS customer master key (CMK) that should be used for the AWS KMS encryption. To specify a CMK, use its key ID, Amazon Resource Name (ARN), alias name, or alias ARN. Note that you should only provide this parameter if the key is different from the default DynamoDB customer master key alias/aws/dynamodb.
sSEType :: Maybe SSEType
Server-side encryption type. The only supported value is:
- KMS - Server-side encryption that uses AWS Key Management Service. The key is stored in your account and is managed by AWS KMS (AWS KMS charges apply).

Instances

Instances details

Eq SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification Methods (==) :: SSESpecification -> SSESpecification -> Bool # (/=) :: SSESpecification -> SSESpecification -> Bool #
Read SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification Methods readsPrec :: Int -> ReadS SSESpecification # readList :: ReadS [SSESpecification] # readPrec :: ReadPrec SSESpecification # readListPrec :: ReadPrec [SSESpecification] #
Show SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification Methods showsPrec :: Int -> SSESpecification -> ShowS # show :: SSESpecification -> String # showList :: [SSESpecification] -> ShowS #
Generic SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification Associated Types type Rep SSESpecification :: Type -> Type # Methods from :: SSESpecification -> Rep SSESpecification x # to :: Rep SSESpecification x -> SSESpecification #
NFData SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification Methods rnf :: SSESpecification -> () #
Hashable SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification Methods hashWithSalt :: Int -> SSESpecification -> Int # hash :: SSESpecification -> Int #
ToJSON SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification Methods toJSON :: SSESpecification -> Value # toEncoding :: SSESpecification -> Encoding # toJSONList :: [SSESpecification] -> Value # toEncodingList :: [SSESpecification] -> Encoding #
type Rep SSESpecification Source #
Instance details Defined in Amazonka.DynamoDB.Types.SSESpecification type Rep SSESpecification = D1 ('MetaData "SSESpecification" "Amazonka.DynamoDB.Types.SSESpecification" "libZSservicesZSamazonka-dynamodbZSamazonka-dynamodb" 'False) (C1 ('MetaCons "SSESpecification'" 'PrefixI 'True) (S1 ('MetaSel ('Just "enabled") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool)) :: (S1 ('MetaSel ('Just "kmsMasterKeyId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :: S1 ('MetaSel ('Just "sSEType") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe SSEType)))))

newSSESpecification :: SSESpecification Source #

Create a value of SSESpecification with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:enabled:SSESpecification', sSESpecification_enabled - Indicates whether server-side encryption is done using an AWS managed CMK or an AWS owned CMK. If enabled (true), server-side encryption type is set to KMS and an AWS managed CMK is used (AWS KMS charges apply). If disabled (false) or not specified, server-side encryption is set to AWS owned CMK.

$sel:kmsMasterKeyId:SSESpecification', sSESpecification_kmsMasterKeyId - The AWS KMS customer master key (CMK) that should be used for the AWS KMS encryption. To specify a CMK, use its key ID, Amazon Resource Name (ARN), alias name, or alias ARN. Note that you should only provide this parameter if the key is different from the default DynamoDB customer master key alias/aws/dynamodb.

$sel:sSEType:SSESpecification', sSESpecification_sSEType - Server-side encryption type. The only supported value is:

KMS - Server-side encryption that uses AWS Key Management Service. The key is stored in your account and is managed by AWS KMS (AWS KMS charges apply).

sSESpecification_enabled :: Lens' SSESpecification (Maybe Bool) Source #

Indicates whether server-side encryption is done using an AWS managed CMK or an AWS owned CMK. If enabled (true), server-side encryption type is set to KMS and an AWS managed CMK is used (AWS KMS charges apply). If disabled (false) or not specified, server-side encryption is set to AWS owned CMK.

sSESpecification_kmsMasterKeyId :: Lens' SSESpecification (Maybe Text) Source #

The AWS KMS customer master key (CMK) that should be used for the AWS KMS encryption. To specify a CMK, use its key ID, Amazon Resource Name (ARN), alias name, or alias ARN. Note that you should only provide this parameter if the key is different from the default DynamoDB customer master key alias/aws/dynamodb.

sSESpecification_sSEType :: Lens' SSESpecification (Maybe SSEType) Source #

Server-side encryption type. The only supported value is:

KMS - Server-side encryption that uses AWS Key Management Service. The key is stored in your account and is managed by AWS KMS (AWS KMS charges apply).