ServiceConnectTlsConfiguration

class aws_cdk.aws_ecs.ServiceConnectTlsConfiguration(*, aws_pca_authority_arn=None, kms_key=None, role=None)

Bases: object

TLS configuration for Service Connect service.

Parameters:

• aws_pca_authority_arn (Optional[str]) – The ARN of the certificate root authority that secures your service. Default: - none

• kms_key (Optional[IKey]) – The KMS key used for encryption and decryption. Default: - none

• role (Optional[IRole]) – The IAM role that’s associated with the Service Connect TLS. Default: - none

ExampleMetadata:

infused

Example:

# cluster: ecs.Cluster
# task_definition: ecs.TaskDefinition
# kms_key: kms.IKey
# role: iam.IRole


service = ecs.FargateService(self, "FargateService",
    cluster=cluster,
    task_definition=task_definition,
    service_connect_configuration=ecs.ServiceConnectProps(
        services=[ecs.ServiceConnectService(
            tls=ecs.ServiceConnectTlsConfiguration(
                role=role,
                kms_key=kms_key,
                aws_pca_authority_arn="arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/123456789012"
            ),
            port_mapping_name="api"
        )
        ],
        namespace="sample namespace"
    )
)

Attributes

aws_pca_authority_arn

The ARN of the certificate root authority that secures your service.

Default:

• none

kms_key

The KMS key used for encryption and decryption.

Default:

• none

role

The IAM role that’s associated with the Service Connect TLS.

Default:

• none