Interface CfnDomain.AdvancedSecurityOptionsInputProperty

All Superinterfaces:
software.amazon.jsii.JsiiSerializable
All Known Implementing Classes:
CfnDomain.AdvancedSecurityOptionsInputProperty.Jsii$Proxy
Enclosing class:
CfnDomain

@Stability(Stable) public static interface CfnDomain.AdvancedSecurityOptionsInputProperty extends software.amazon.jsii.JsiiSerializable
Specifies options for fine-grained access control.

If you specify advanced security options, you must also enable node-to-node encryption ( NodeToNodeEncryptionOptions ) and encryption at rest ( EncryptionAtRestOptions ). You must also enable EnforceHTTPS within DomainEndpointOptions , which requires HTTPS for all traffic to the domain.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.opensearchservice.*;
 AdvancedSecurityOptionsInputProperty advancedSecurityOptionsInputProperty = AdvancedSecurityOptionsInputProperty.builder()
         .anonymousAuthDisableDate("anonymousAuthDisableDate")
         .anonymousAuthEnabled(false)
         .enabled(false)
         .internalUserDatabaseEnabled(false)
         .jwtOptions(JWTOptionsProperty.builder()
                 .enabled(false)
                 .publicKey("publicKey")
                 .rolesKey("rolesKey")
                 .subjectKey("subjectKey")
                 .build())
         .masterUserOptions(MasterUserOptionsProperty.builder()
                 .masterUserArn("masterUserArn")
                 .masterUserName("masterUserName")
                 .masterUserPassword("masterUserPassword")
                 .build())
         .samlOptions(SAMLOptionsProperty.builder()
                 .enabled(false)
                 .idp(IdpProperty.builder()
                         .entityId("entityId")
                         .metadataContent("metadataContent")
                         .build())
                 .masterBackendRole("masterBackendRole")
                 .masterUserName("masterUserName")
                 .rolesKey("rolesKey")
                 .sessionTimeoutMinutes(123)
                 .subjectKey("subjectKey")
                 .build())
         .build();
 

See Also: