enum BucketEncryption
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.S3.BucketEncryption |
 Java | software.amazon.awscdk.services.s3.BucketEncryption |
 Python | aws_cdk.aws_s3.BucketEncryption |
 TypeScript (source) | @aws-cdk/aws-s3 » BucketEncryption |
What kind of server-side encryption to apply to this bucket.
Example
const bucket = new s3.Bucket(this, 'MyEncryptedBucket', {
encryption: s3.BucketEncryption.KMS,
});
// you can access the encryption key:
assert(bucket.encryptionKey instanceof kms.Key);
Members
| Name | Description |
|---|---|
| UNENCRYPTED | Objects in the bucket are not encrypted. |
| KMS_MANAGED | Server-side KMS encryption with a master key managed by KMS. |
| S3_MANAGED | Server-side encryption with a master key managed by S3. |
| KMS | Server-side encryption with a KMS key managed by the user. |
UNENCRYPTED
Objects in the bucket are not encrypted.
KMS_MANAGED
Server-side KMS encryption with a master key managed by KMS.
S3_MANAGED
Server-side encryption with a master key managed by S3.
KMS
Server-side encryption with a KMS key managed by the user.
If encryptionKey is specified, this key will be used, otherwise, one will be defined.