Module: AWSCDK::DynamoDB::TableEncryption
- Defined in:
- dynamo_db/table_encryption.rb
Overview
What kind of server-side encryption to apply to this table.
Constant Summary collapse
- DEFAULT =
Deprecated.Note:
Default:
Server-side KMS encryption with a master key owned by AWS.
Jsii::Enum.new("aws-cdk-lib.aws_dynamodb.TableEncryption", "DEFAULT")
- CUSTOMER_MANAGED =
Deprecated.Note:
Default:
Server-side KMS encryption with a customer master key managed by customer.
If
encryption_keyis specified, this key will be used, otherwise, one will be defined.NOTE: if
encryption_keyis not specified and theTableconstruct creates a KMS key for you, the key will be created with default permissions. If you are using CDKv2, these permissions will be sufficient to enable the key for use with DynamoDB tables. If you are using CDKv1, make sure the feature flag@aws-cdk/aws-kms:defaultKeyPoliciesis set totruein yourcdk.json. Jsii::Enum.new("aws-cdk-lib.aws_dynamodb.TableEncryption", "CUSTOMER_MANAGED")
- AWS_MANAGED =
Deprecated.Note:
Default:
Server-side KMS encryption with a master key managed by AWS.
Jsii::Enum.new("aws-cdk-lib.aws_dynamodb.TableEncryption", "AWS_MANAGED")