How EventBridge should format the log records.
- *
- * json: JSON
- * plain: Plain text
- * w3c: W3C extended
- * logging file format
- *
EventBridge currently only supports json formatting.
Specifies the security groups associated with the stream. These security groups must all - * be in the same VPC. You can specify as many as five security groups. If you do not specify - * a security group, the default security group for the VPC is used.
+ * be in the same VPC. You can specify as many as five security groups. * @public */ SecurityGroup?: string[]; @@ -2736,6 +2720,18 @@ export interface CreatePipeRequest { * @public */ LogConfiguration?: PipeLogConfigurationParameters; + + /** + *The identifier of the KMS + * customer managed key for EventBridge to use, if you choose to use a customer managed key to encrypt pipe data. The identifier can be the key + * Amazon Resource Name (ARN), KeyId, key alias, or key alias ARN.
+ *If you do not specify a customer managed key identifier, EventBridge uses an + * Amazon Web Services owned key to encrypt pipe data.
+ *For more information, see Managing keys in the Key Management Service + * Developer Guide.
+ * @public + */ + KmsKeyIdentifier?: string; } /** @@ -3109,22 +3105,7 @@ export interface S3LogDestination { /** *The format EventBridge uses for the log records.
- *
- * json: JSON
- * plain: Plain text
- * w3c: W3C extended
- * logging file format
- *
EventBridge currently only supports json formatting.
The identifier of the KMS + * customer managed key for EventBridge to use to encrypt pipe data, if one has been specified.
+ *For more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
+ * @public + */ + KmsKeyIdentifier?: string; } /** @@ -3899,6 +3888,19 @@ export interface UpdatePipeRequest { * @public */ LogConfiguration?: PipeLogConfigurationParameters; + + /** + *The identifier of the KMS + * customer managed key for EventBridge to use, if you choose to use a customer managed key to encrypt pipe data. The identifier can be the key + * Amazon Resource Name (ARN), KeyId, key alias, or key alias ARN.
+ *To update a pipe that is using the default Amazon Web Services owned key to use a customer managed key instead, or update a pipe that is using a customer managed key to use a + * different customer managed key, specify a customer managed key identifier.
+ *To update a pipe that is using a customer managed key to use the default Amazon Web Services owned key, specify an empty string.
+ *For more information, see Managing keys in the Key Management Service + * Developer Guide.
+ * @public + */ + KmsKeyIdentifier?: string; } /** diff --git a/clients/client-pipes/src/protocols/Aws_restJson1.ts b/clients/client-pipes/src/protocols/Aws_restJson1.ts index 8aa2cc98fd2fe..4647d8c7e4287 100644 --- a/clients/client-pipes/src/protocols/Aws_restJson1.ts +++ b/clients/client-pipes/src/protocols/Aws_restJson1.ts @@ -136,6 +136,7 @@ export const se_CreatePipeCommand = async ( DesiredState: [], Enrichment: [], EnrichmentParameters: (_) => _json(_), + KmsKeyIdentifier: [], LogConfiguration: (_) => _json(_), RoleArn: [], Source: [], @@ -318,6 +319,7 @@ export const se_UpdatePipeCommand = async ( DesiredState: [], Enrichment: [], EnrichmentParameters: (_) => _json(_), + KmsKeyIdentifier: [], LogConfiguration: (_) => _json(_), RoleArn: [], SourceParameters: (_) => _json(_), @@ -403,6 +405,7 @@ export const de_DescribePipeCommand = async ( DesiredState: __expectString, Enrichment: __expectString, EnrichmentParameters: _json, + KmsKeyIdentifier: __expectString, LastModifiedTime: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))), LogConfiguration: _json, Name: __expectString, diff --git a/codegen/sdk-codegen/aws-models/pipes.json b/codegen/sdk-codegen/aws-models/pipes.json index c8f548554a1bd..e65943aae6ff1 100644 --- a/codegen/sdk-codegen/aws-models/pipes.json +++ b/codegen/sdk-codegen/aws-models/pipes.json @@ -547,6 +547,12 @@ "aws.cloudformation#cfnMutability": "write", "smithy.api#documentation": "The logging configuration settings for the pipe.
" } + }, + "KmsKeyIdentifier": { + "target": "com.amazonaws.pipes#KmsKeyIdentifier", + "traits": { + "smithy.api#documentation": "The identifier of the KMS\n customer managed key for EventBridge to use, if you choose to use a customer managed key to encrypt pipe data. The identifier can be the key \n Amazon Resource Name (ARN), KeyId, key alias, or key alias ARN.
\nIf you do not specify a customer managed key identifier, EventBridge uses an\n Amazon Web Services owned key to encrypt pipe data.
\nFor more information, see Managing keys in the Key Management Service\n Developer Guide.
" + } } }, "traits": { @@ -887,6 +893,12 @@ "aws.cloudformation#cfnMutability": "read", "smithy.api#documentation": "The logging configuration settings for the pipe.
" } + }, + "KmsKeyIdentifier": { + "target": "com.amazonaws.pipes#KmsKeyIdentifier", + "traits": { + "smithy.api#documentation": "The identifier of the KMS\n customer managed key for EventBridge to use to encrypt pipe data, if one has been specified.
\nFor more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
" + } } }, "traits": { @@ -1563,6 +1575,16 @@ ] } }, + "com.amazonaws.pipes#KmsKeyIdentifier": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 0, + "max": 2048 + }, + "smithy.api#pattern": "^[a-zA-Z0-9_\\-/:]*$" + } + }, "com.amazonaws.pipes#LaunchType": { "type": "string", "traits": { @@ -4383,7 +4405,7 @@ "OutputFormat": { "target": "com.amazonaws.pipes#S3OutputFormat", "traits": { - "smithy.api#documentation": "The format EventBridge uses for the log records.
\n\n json: JSON
\n plain: Plain text
\n w3c: W3C extended\n logging file format\n
The format EventBridge uses for the log records.
\nEventBridge currently only supports json formatting.
How EventBridge should format the log records.
\n\n json: JSON
\n plain: Plain text
\n w3c: W3C extended\n logging file format\n
How EventBridge should format the log records.
\nEventBridge currently only supports json formatting.
Specifies the security groups associated with the stream. These security groups must all\n be in the same VPC. You can specify as many as five security groups. If you do not specify\n a security group, the default security group for the VPC is used.
" + "smithy.api#documentation": "Specifies the security groups associated with the stream. These security groups must all\n be in the same VPC. You can specify as many as five security groups.
" } } }, @@ -5402,6 +5424,12 @@ "aws.cloudformation#cfnMutability": "write", "smithy.api#documentation": "The logging configuration settings for the pipe.
" } + }, + "KmsKeyIdentifier": { + "target": "com.amazonaws.pipes#KmsKeyIdentifier", + "traits": { + "smithy.api#documentation": "The identifier of the KMS\n customer managed key for EventBridge to use, if you choose to use a customer managed key to encrypt pipe data. The identifier can be the key \n Amazon Resource Name (ARN), KeyId, key alias, or key alias ARN.
\nTo update a pipe that is using the default Amazon Web Services owned key to use a customer managed key instead, or update a pipe that is using a customer managed key to use a\n different customer managed key, specify a customer managed key identifier.
\nTo update a pipe that is using a customer managed key to use the default Amazon Web Services owned key, specify an empty string.
\nFor more information, see Managing keys in the Key Management Service\n Developer Guide.
" + } } }, "traits": {