libZSservicesZSamazonka-dynamodbZSamazonka-dynamodb
Copyright(c) 2013-2021 Brendan Hay
LicenseMozilla Public License, v. 2.0.
MaintainerBrendan Hay <brendan.g.hay+amazonka@gmail.com>
Stabilityauto-generated
Portabilitynon-portable (GHC extensions)
Safe HaskellNone

Amazonka.DynamoDB.Types.SSESpecification

Description

 
Synopsis

Documentation

data SSESpecification Source #

Represents the settings used to enable server-side encryption.

See: newSSESpecification smart constructor.

Constructors

SSESpecification' 

Fields

  • enabled :: Maybe Bool

    Indicates whether server-side encryption is done using an AWS managed CMK or an AWS owned CMK. If enabled (true), server-side encryption type is set to KMS and an AWS managed CMK is used (AWS KMS charges apply). If disabled (false) or not specified, server-side encryption is set to AWS owned CMK.

  • kmsMasterKeyId :: Maybe Text

    The AWS KMS customer master key (CMK) that should be used for the AWS KMS encryption. To specify a CMK, use its key ID, Amazon Resource Name (ARN), alias name, or alias ARN. Note that you should only provide this parameter if the key is different from the default DynamoDB customer master key alias/aws/dynamodb.

  • sSEType :: Maybe SSEType

    Server-side encryption type. The only supported value is:

    • KMS - Server-side encryption that uses AWS Key Management Service. The key is stored in your account and is managed by AWS KMS (AWS KMS charges apply).

Instances

Instances details
Eq SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

Read SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

Show SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

Generic SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

Associated Types

type Rep SSESpecification :: Type -> Type #

NFData SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

Methods

rnf :: SSESpecification -> () #

Hashable SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

ToJSON SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

type Rep SSESpecification Source # 
Instance details

Defined in Amazonka.DynamoDB.Types.SSESpecification

type Rep SSESpecification = D1 ('MetaData "SSESpecification" "Amazonka.DynamoDB.Types.SSESpecification" "libZSservicesZSamazonka-dynamodbZSamazonka-dynamodb" 'False) (C1 ('MetaCons "SSESpecification'" 'PrefixI 'True) (S1 ('MetaSel ('Just "enabled") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool)) :*: (S1 ('MetaSel ('Just "kmsMasterKeyId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "sSEType") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe SSEType)))))

newSSESpecification :: SSESpecification Source #

Create a value of SSESpecification with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:enabled:SSESpecification', sSESpecification_enabled - Indicates whether server-side encryption is done using an AWS managed CMK or an AWS owned CMK. If enabled (true), server-side encryption type is set to KMS and an AWS managed CMK is used (AWS KMS charges apply). If disabled (false) or not specified, server-side encryption is set to AWS owned CMK.

$sel:kmsMasterKeyId:SSESpecification', sSESpecification_kmsMasterKeyId - The AWS KMS customer master key (CMK) that should be used for the AWS KMS encryption. To specify a CMK, use its key ID, Amazon Resource Name (ARN), alias name, or alias ARN. Note that you should only provide this parameter if the key is different from the default DynamoDB customer master key alias/aws/dynamodb.

$sel:sSEType:SSESpecification', sSESpecification_sSEType - Server-side encryption type. The only supported value is:

  • KMS - Server-side encryption that uses AWS Key Management Service. The key is stored in your account and is managed by AWS KMS (AWS KMS charges apply).

sSESpecification_enabled :: Lens' SSESpecification (Maybe Bool) Source #

Indicates whether server-side encryption is done using an AWS managed CMK or an AWS owned CMK. If enabled (true), server-side encryption type is set to KMS and an AWS managed CMK is used (AWS KMS charges apply). If disabled (false) or not specified, server-side encryption is set to AWS owned CMK.

sSESpecification_kmsMasterKeyId :: Lens' SSESpecification (Maybe Text) Source #

The AWS KMS customer master key (CMK) that should be used for the AWS KMS encryption. To specify a CMK, use its key ID, Amazon Resource Name (ARN), alias name, or alias ARN. Note that you should only provide this parameter if the key is different from the default DynamoDB customer master key alias/aws/dynamodb.

sSESpecification_sSEType :: Lens' SSESpecification (Maybe SSEType) Source #

Server-side encryption type. The only supported value is:

  • KMS - Server-side encryption that uses AWS Key Management Service. The key is stored in your account and is managed by AWS KMS (AWS KMS charges apply).