libZSservicesZSamazonka-maciev2ZSamazonka-maciev2
Copyright(c) 2013-2021 Brendan Hay
LicenseMozilla Public License, v. 2.0.
MaintainerBrendan Hay <brendan.g.hay+amazonka@gmail.com>
Stabilityauto-generated
Portabilitynon-portable (GHC extensions)
Safe HaskellNone

Amazonka.MacieV2.Types.BucketServerSideEncryption

Description

 
Synopsis

Documentation

data BucketServerSideEncryption Source #

Provides information about the default server-side encryption settings for an S3 bucket. For detailed information about these settings, see Setting default server-side encryption behavior for Amazon S3 buckets in the Amazon Simple Storage Service User Guide.

See: newBucketServerSideEncryption smart constructor.

Constructors

BucketServerSideEncryption' 

Fields

  • kmsMasterKeyId :: Maybe Text

    The Amazon Resource Name (ARN) or unique identifier (key ID) for the KMS key that's used by default to encrypt objects that are added to the bucket. This value is null if the bucket uses an Amazon S3 managed key to encrypt new objects or the bucket doesn't encrypt new objects by default.

  • type' :: Maybe Type

    The type of server-side encryption that's used by default when storing new objects in the bucket. Possible values are:

    • AES256 - New objects are encrypted with an Amazon S3 managed key. They use SSE-S3 encryption.
    • aws:kms - New objects are encrypted with an KMS key (kmsMasterKeyId), either an Amazon Web Services managed key or a customer managed key. They use SSE-KMS encryption.
    • NONE - New objects aren't encrypted by default. Default encryption is disabled for the bucket.

Instances

Instances details
Eq BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

Read BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

Show BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

Generic BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

Associated Types

type Rep BucketServerSideEncryption :: Type -> Type #

NFData BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

Hashable BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

FromJSON BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

type Rep BucketServerSideEncryption Source # 
Instance details

Defined in Amazonka.MacieV2.Types.BucketServerSideEncryption

type Rep BucketServerSideEncryption = D1 ('MetaData "BucketServerSideEncryption" "Amazonka.MacieV2.Types.BucketServerSideEncryption" "libZSservicesZSamazonka-maciev2ZSamazonka-maciev2" 'False) (C1 ('MetaCons "BucketServerSideEncryption'" 'PrefixI 'True) (S1 ('MetaSel ('Just "kmsMasterKeyId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "type'") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Type))))

newBucketServerSideEncryption :: BucketServerSideEncryption Source #

Create a value of BucketServerSideEncryption with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:kmsMasterKeyId:BucketServerSideEncryption', bucketServerSideEncryption_kmsMasterKeyId - The Amazon Resource Name (ARN) or unique identifier (key ID) for the KMS key that's used by default to encrypt objects that are added to the bucket. This value is null if the bucket uses an Amazon S3 managed key to encrypt new objects or the bucket doesn't encrypt new objects by default.

$sel:type':BucketServerSideEncryption', bucketServerSideEncryption_type - The type of server-side encryption that's used by default when storing new objects in the bucket. Possible values are:

  • AES256 - New objects are encrypted with an Amazon S3 managed key. They use SSE-S3 encryption.
  • aws:kms - New objects are encrypted with an KMS key (kmsMasterKeyId), either an Amazon Web Services managed key or a customer managed key. They use SSE-KMS encryption.
  • NONE - New objects aren't encrypted by default. Default encryption is disabled for the bucket.

bucketServerSideEncryption_kmsMasterKeyId :: Lens' BucketServerSideEncryption (Maybe Text) Source #

The Amazon Resource Name (ARN) or unique identifier (key ID) for the KMS key that's used by default to encrypt objects that are added to the bucket. This value is null if the bucket uses an Amazon S3 managed key to encrypt new objects or the bucket doesn't encrypt new objects by default.

bucketServerSideEncryption_type :: Lens' BucketServerSideEncryption (Maybe Type) Source #

The type of server-side encryption that's used by default when storing new objects in the bucket. Possible values are:

  • AES256 - New objects are encrypted with an Amazon S3 managed key. They use SSE-S3 encryption.
  • aws:kms - New objects are encrypted with an KMS key (kmsMasterKeyId), either an Amazon Web Services managed key or a customer managed key. They use SSE-KMS encryption.
  • NONE - New objects aren't encrypted by default. Default encryption is disabled for the bucket.