/AWS1/CL_FNTORIGINACCCTLCONFIG¶

A CloudFront origin access control configuration.

`CONSTRUCTOR`¶

IMPORTING¶

Required arguments:¶

`IV_NAME` `TYPE /AWS1/FNTSTRING` `/AWS1/FNTSTRING`¶

A name to identify the origin access control. You can specify up to 64 characters.

`IV_SIGNINGPROTOCOL` `TYPE /AWS1/FNTORIGINACCCTLSIGNING00` `/AWS1/FNTORIGINACCCTLSIGNING00`¶

The signing protocol of the origin access control, which determines how CloudFront signs (authenticates) requests. The only valid value is sigv4.

`IV_SIGNINGBEHAVIOR` `TYPE /AWS1/FNTORIGINACCCTLSIGNING01` `/AWS1/FNTORIGINACCCTLSIGNING01`¶

Specifies which requests CloudFront signs (adds authentication information to). Specify always for the most common use case. For more information, see origin access control advanced settings in the Amazon CloudFront Developer Guide.

This field can have one of the following values:

always – CloudFront signs all origin requests, overwriting the Authorization header from the viewer request if one exists.

never – CloudFront doesn't sign any origin requests. This value turns off origin access control for all origins in all distributions that use this origin access control.

no-override – If the viewer request doesn't contain the Authorization header, then CloudFront signs the origin request. If the viewer request contains the Authorization header, then CloudFront doesn't sign the origin request and instead passes along the Authorization header from the viewer request. WARNING: To pass along the Authorization header from the viewer request, you must add the Authorization header to a cache policy for all cache behaviors that use origins associated with this origin access control.

`IV_ORIGINACCESSCTLORIGINTYPE` `TYPE /AWS1/FNTORIGINACCCTLORIGINT00` `/AWS1/FNTORIGINACCCTLORIGINT00`¶

The type of origin that this origin access control is for.

Optional arguments:¶

`IV_DESCRIPTION` `TYPE /AWS1/FNTSTRING` `/AWS1/FNTSTRING`¶

A description of the origin access control.

Queryable Attributes¶

Name¶

A name to identify the origin access control. You can specify up to 64 characters.

Accessible with the following methods¶

Method	Description
`GET_NAME()`	Getter for NAME, with configurable default
`ASK_NAME()`	Getter for NAME w/ exceptions if field has no value
`HAS_NAME()`	Determine if NAME has a value

Description¶

A description of the origin access control.

Accessible with the following methods¶

Method	Description
`GET_DESCRIPTION()`	Getter for DESCRIPTION, with configurable default
`ASK_DESCRIPTION()`	Getter for DESCRIPTION w/ exceptions if field has no value
`HAS_DESCRIPTION()`	Determine if DESCRIPTION has a value

SigningProtocol¶

The signing protocol of the origin access control, which determines how CloudFront signs (authenticates) requests. The only valid value is sigv4.

Accessible with the following methods¶

Method	Description
`GET_SIGNINGPROTOCOL()`	Getter for SIGNINGPROTOCOL, with configurable default
`ASK_SIGNINGPROTOCOL()`	Getter for SIGNINGPROTOCOL w/ exceptions if field has no val
`HAS_SIGNINGPROTOCOL()`	Determine if SIGNINGPROTOCOL has a value

SigningBehavior¶

Specifies which requests CloudFront signs (adds authentication information to). Specify always for the most common use case. For more information, see origin access control advanced settings in the Amazon CloudFront Developer Guide.

This field can have one of the following values:

always – CloudFront signs all origin requests, overwriting the Authorization header from the viewer request if one exists.

never – CloudFront doesn't sign any origin requests. This value turns off origin access control for all origins in all distributions that use this origin access control.

no-override – If the viewer request doesn't contain the Authorization header, then CloudFront signs the origin request. If the viewer request contains the Authorization header, then CloudFront doesn't sign the origin request and instead passes along the Authorization header from the viewer request. WARNING: To pass along the Authorization header from the viewer request, you must add the Authorization header to a cache policy for all cache behaviors that use origins associated with this origin access control.

Accessible with the following methods¶

Method	Description
`GET_SIGNINGBEHAVIOR()`	Getter for SIGNINGBEHAVIOR, with configurable default
`ASK_SIGNINGBEHAVIOR()`	Getter for SIGNINGBEHAVIOR w/ exceptions if field has no val
`HAS_SIGNINGBEHAVIOR()`	Determine if SIGNINGBEHAVIOR has a value

OriginAccessControlOriginType¶

The type of origin that this origin access control is for.

Accessible with the following methods¶

Method	Description
`GET_ORIGINACCCTLORIGINTYPE()`	Getter for ORIGINACCESSCTLORIGINTYPE, with configurable defa
`ASK_ORIGINACCCTLORIGINTYPE()`	Getter for ORIGINACCESSCTLORIGINTYPE w/ exceptions if field
`HAS_ORIGINACCCTLORIGINTYPE()`	Determine if ORIGINACCESSCTLORIGINTYPE has a value

/AWS1/CL_FNTORIGINACCCTLCONFIG¶

CONSTRUCTOR¶

IMPORTING¶

Required arguments:¶

IV_NAME TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING¶

IV_SIGNINGPROTOCOL TYPE /AWS1/FNTORIGINACCCTLSIGNING00 /AWS1/FNTORIGINACCCTLSIGNING00¶

IV_SIGNINGBEHAVIOR TYPE /AWS1/FNTORIGINACCCTLSIGNING01 /AWS1/FNTORIGINACCCTLSIGNING01¶

IV_ORIGINACCESSCTLORIGINTYPE TYPE /AWS1/FNTORIGINACCCTLORIGINT00 /AWS1/FNTORIGINACCCTLORIGINT00¶

Optional arguments:¶

IV_DESCRIPTION TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING¶

Queryable Attributes¶

Name¶

Accessible with the following methods¶

Description¶

Accessible with the following methods¶

SigningProtocol¶

Accessible with the following methods¶

SigningBehavior¶

Accessible with the following methods¶

OriginAccessControlOriginType¶

Accessible with the following methods¶

`CONSTRUCTOR`¶

`IV_NAME` `TYPE /AWS1/FNTSTRING` `/AWS1/FNTSTRING`¶

`IV_SIGNINGPROTOCOL` `TYPE /AWS1/FNTORIGINACCCTLSIGNING00` `/AWS1/FNTORIGINACCCTLSIGNING00`¶

`IV_SIGNINGBEHAVIOR` `TYPE /AWS1/FNTORIGINACCCTLSIGNING01` `/AWS1/FNTORIGINACCCTLSIGNING01`¶

`IV_ORIGINACCESSCTLORIGINTYPE` `TYPE /AWS1/FNTORIGINACCCTLORIGINT00` `/AWS1/FNTORIGINACCCTLORIGINT00`¶

`IV_DESCRIPTION` `TYPE /AWS1/FNTSTRING` `/AWS1/FNTSTRING`¶