Documentation ¶
Index ¶
- func CfnDomain_CFN_RESOURCE_TYPE_NAME() *string
- func CfnDomain_IsCfnElement(x interface{}) *bool
- func CfnDomain_IsCfnResource(construct constructs.IConstruct) *bool
- func CfnDomain_IsConstruct(x interface{}) *bool
- func Domain_IsConstruct(x interface{}) *bool
- func Domain_IsResource(construct awscdk.IConstruct) *bool
- func NewCfnDomain_Override(c CfnDomain, scope awscdk.Construct, id *string, props *CfnDomainProps)
- func NewDomain_Override(d Domain, scope constructs.Construct, id *string, props *DomainProps)
- type AdvancedSecurityOptions
- type CapacityConfig
- type CfnDomain
- type CfnDomainProps
- type CfnDomain_AdvancedSecurityOptionsInputProperty
- type CfnDomain_ClusterConfigProperty
- type CfnDomain_CognitoOptionsProperty
- type CfnDomain_DomainEndpointOptionsProperty
- type CfnDomain_EBSOptionsProperty
- type CfnDomain_EncryptionAtRestOptionsProperty
- type CfnDomain_LogPublishingOptionProperty
- type CfnDomain_MasterUserOptionsProperty
- type CfnDomain_NodeToNodeEncryptionOptionsProperty
- type CfnDomain_SnapshotOptionsProperty
- type CfnDomain_VPCOptionsProperty
- type CfnDomain_ZoneAwarenessConfigProperty
- type CognitoOptions
- type CustomEndpointOptions
- type Domain
- type DomainAttributes
- type DomainProps
- type EbsOptions
- type EncryptionAtRestOptions
- type EngineVersion
- func EngineVersion_ELASTICSEARCH_1_5() EngineVersion
- func EngineVersion_ELASTICSEARCH_2_3() EngineVersion
- func EngineVersion_ELASTICSEARCH_5_1() EngineVersion
- func EngineVersion_ELASTICSEARCH_5_3() EngineVersion
- func EngineVersion_ELASTICSEARCH_5_5() EngineVersion
- func EngineVersion_ELASTICSEARCH_5_6() EngineVersion
- func EngineVersion_ELASTICSEARCH_6_0() EngineVersion
- func EngineVersion_ELASTICSEARCH_6_2() EngineVersion
- func EngineVersion_ELASTICSEARCH_6_3() EngineVersion
- func EngineVersion_ELASTICSEARCH_6_4() EngineVersion
- func EngineVersion_ELASTICSEARCH_6_5() EngineVersion
- func EngineVersion_ELASTICSEARCH_6_7() EngineVersion
- func EngineVersion_ELASTICSEARCH_6_8() EngineVersion
- func EngineVersion_ELASTICSEARCH_7_1() EngineVersion
- func EngineVersion_ELASTICSEARCH_7_10() EngineVersion
- func EngineVersion_ELASTICSEARCH_7_4() EngineVersion
- func EngineVersion_ELASTICSEARCH_7_7() EngineVersion
- func EngineVersion_ELASTICSEARCH_7_8() EngineVersion
- func EngineVersion_ELASTICSEARCH_7_9() EngineVersion
- func EngineVersion_Elasticsearch(version *string) EngineVersion
- func EngineVersion_OPENSEARCH_1_0() EngineVersion
- func EngineVersion_OpenSearch(version *string) EngineVersion
- type IDomain
- type LoggingOptions
- type TLSSecurityPolicy
- type ZoneAwarenessConfig
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func CfnDomain_CFN_RESOURCE_TYPE_NAME ¶
func CfnDomain_CFN_RESOURCE_TYPE_NAME() *string
func CfnDomain_IsCfnElement ¶
func CfnDomain_IsCfnElement(x interface{}) *bool
Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).
Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.
Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.
func CfnDomain_IsCfnResource ¶
func CfnDomain_IsCfnResource(construct constructs.IConstruct) *bool
Check whether the given construct is a CfnResource. Experimental.
func CfnDomain_IsConstruct ¶
func CfnDomain_IsConstruct(x interface{}) *bool
Return whether the given object is a Construct. Experimental.
func Domain_IsConstruct ¶
func Domain_IsConstruct(x interface{}) *bool
Return whether the given object is a Construct. Experimental.
func Domain_IsResource ¶
func Domain_IsResource(construct awscdk.IConstruct) *bool
Check whether the given construct is a Resource. Experimental.
func NewCfnDomain_Override ¶
func NewCfnDomain_Override(c CfnDomain, scope awscdk.Construct, id *string, props *CfnDomainProps)
Create a new `AWS::OpenSearchService::Domain`.
func NewDomain_Override ¶
func NewDomain_Override(d Domain, scope constructs.Construct, id *string, props *DomainProps)
Experimental.
Types ¶
type AdvancedSecurityOptions ¶
type AdvancedSecurityOptions struct { // ARN for the master user. // // Only specify this or masterUserName, but not both. // Experimental. MasterUserArn *string `json:"masterUserArn"` // Username for the master user. // // Only specify this or masterUserArn, but not both. // Experimental. MasterUserName *string `json:"masterUserName"` // Password for the master user. // // You can use `SecretValue.plainText` to specify a password in plain text or // use `secretsmanager.Secret.fromSecretAttributes` to reference a secret in // Secrets Manager. // Experimental. MasterUserPassword awscdk.SecretValue `json:"masterUserPassword"` }
Specifies options for fine-grained access control. Experimental.
type CapacityConfig ¶
type CapacityConfig struct { // The instance type for your data nodes, such as `m3.medium.search`. For valid values, see [Supported Instance Types](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/supported-instance-types.html) in the Amazon OpenSearch Service Developer Guide. // Experimental. DataNodeInstanceType *string `json:"dataNodeInstanceType"` // The number of data nodes (instances) to use in the Amazon OpenSearch Service domain. // Experimental. DataNodes *float64 `json:"dataNodes"` // The hardware configuration of the computer that hosts the dedicated master node, such as `m3.medium.search`. For valid values, see [Supported Instance Types] (https://docs.aws.amazon.com/opensearch-service/latest/developerguide/supported-instance-types.html) in the Amazon OpenSearch Service Developer Guide. // Experimental. MasterNodeInstanceType *string `json:"masterNodeInstanceType"` // The number of instances to use for the master node. // Experimental. MasterNodes *float64 `json:"masterNodes"` // The instance type for your UltraWarm node, such as `ultrawarm1.medium.search`. For valid values, see [UltraWarm Storage Limits] (https://docs.aws.amazon.com/opensearch-service/latest/developerguide/limits.html#limits-ultrawarm) in the Amazon OpenSearch Service Developer Guide. // Experimental. WarmInstanceType *string `json:"warmInstanceType"` // The number of UltraWarm nodes (instances) to use in the Amazon OpenSearch Service domain. // Experimental. WarmNodes *float64 `json:"warmNodes"` }
Configures the capacity of the cluster such as the instance type and the number of instances. Experimental.
type CfnDomain ¶
type CfnDomain interface { awscdk.CfnResource awscdk.IInspectable AccessPolicies() interface{} SetAccessPolicies(val interface{}) AdvancedOptions() interface{} SetAdvancedOptions(val interface{}) AdvancedSecurityOptions() interface{} SetAdvancedSecurityOptions(val interface{}) AttrArn() *string AttrDomainEndpoint() *string AttrId() *string CfnOptions() awscdk.ICfnResourceOptions CfnProperties() *map[string]interface{} CfnResourceType() *string ClusterConfig() interface{} SetClusterConfig(val interface{}) CognitoOptions() interface{} SetCognitoOptions(val interface{}) CreationStack() *[]*string DomainEndpointOptions() interface{} SetDomainEndpointOptions(val interface{}) DomainName() *string SetDomainName(val *string) EbsOptions() interface{} SetEbsOptions(val interface{}) EncryptionAtRestOptions() interface{} SetEncryptionAtRestOptions(val interface{}) EngineVersion() *string SetEngineVersion(val *string) LogicalId() *string LogPublishingOptions() interface{} SetLogPublishingOptions(val interface{}) Node() awscdk.ConstructNode NodeToNodeEncryptionOptions() interface{} SetNodeToNodeEncryptionOptions(val interface{}) Ref() *string SnapshotOptions() interface{} SetSnapshotOptions(val interface{}) Stack() awscdk.Stack Tags() awscdk.TagManager UpdatedProperites() *map[string]interface{} VpcOptions() interface{} SetVpcOptions(val interface{}) AddDeletionOverride(path *string) AddDependsOn(target awscdk.CfnResource) AddMetadata(key *string, value interface{}) AddOverride(path *string, value interface{}) AddPropertyDeletionOverride(propertyPath *string) AddPropertyOverride(propertyPath *string, value interface{}) ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions) GetAtt(attributeName *string) awscdk.Reference GetMetadata(key *string) interface{} Inspect(inspector awscdk.TreeInspector) OnPrepare() OnSynthesize(session constructs.ISynthesisSession) OnValidate() *[]*string OverrideLogicalId(newLogicalId *string) Prepare() RenderProperties(props *map[string]interface{}) *map[string]interface{} ShouldSynthesize() *bool Synthesize(session awscdk.ISynthesisSession) ToString() *string Validate() *[]*string ValidateProperties(_properties interface{}) }
A CloudFormation `AWS::OpenSearchService::Domain`.
func NewCfnDomain ¶
func NewCfnDomain(scope awscdk.Construct, id *string, props *CfnDomainProps) CfnDomain
Create a new `AWS::OpenSearchService::Domain`.
type CfnDomainProps ¶
type CfnDomainProps struct { // `AWS::OpenSearchService::Domain.AccessPolicies`. AccessPolicies interface{} `json:"accessPolicies"` // `AWS::OpenSearchService::Domain.AdvancedOptions`. AdvancedOptions interface{} `json:"advancedOptions"` // `AWS::OpenSearchService::Domain.AdvancedSecurityOptions`. AdvancedSecurityOptions interface{} `json:"advancedSecurityOptions"` // `AWS::OpenSearchService::Domain.ClusterConfig`. ClusterConfig interface{} `json:"clusterConfig"` // `AWS::OpenSearchService::Domain.CognitoOptions`. CognitoOptions interface{} `json:"cognitoOptions"` // `AWS::OpenSearchService::Domain.DomainEndpointOptions`. DomainEndpointOptions interface{} `json:"domainEndpointOptions"` // `AWS::OpenSearchService::Domain.DomainName`. DomainName *string `json:"domainName"` // `AWS::OpenSearchService::Domain.EBSOptions`. EbsOptions interface{} `json:"ebsOptions"` // `AWS::OpenSearchService::Domain.EncryptionAtRestOptions`. EncryptionAtRestOptions interface{} `json:"encryptionAtRestOptions"` // `AWS::OpenSearchService::Domain.EngineVersion`. EngineVersion *string `json:"engineVersion"` // `AWS::OpenSearchService::Domain.LogPublishingOptions`. LogPublishingOptions interface{} `json:"logPublishingOptions"` // `AWS::OpenSearchService::Domain.NodeToNodeEncryptionOptions`. NodeToNodeEncryptionOptions interface{} `json:"nodeToNodeEncryptionOptions"` // `AWS::OpenSearchService::Domain.SnapshotOptions`. SnapshotOptions interface{} `json:"snapshotOptions"` // `AWS::OpenSearchService::Domain.Tags`. Tags *[]*awscdk.CfnTag `json:"tags"` // `AWS::OpenSearchService::Domain.VPCOptions`. VpcOptions interface{} `json:"vpcOptions"` }
Properties for defining a `AWS::OpenSearchService::Domain`.
type CfnDomain_AdvancedSecurityOptionsInputProperty ¶
type CfnDomain_AdvancedSecurityOptionsInputProperty struct { // `CfnDomain.AdvancedSecurityOptionsInputProperty.Enabled`. Enabled interface{} `json:"enabled"` // `CfnDomain.AdvancedSecurityOptionsInputProperty.InternalUserDatabaseEnabled`. InternalUserDatabaseEnabled interface{} `json:"internalUserDatabaseEnabled"` // `CfnDomain.AdvancedSecurityOptionsInputProperty.MasterUserOptions`. MasterUserOptions interface{} `json:"masterUserOptions"` }
type CfnDomain_ClusterConfigProperty ¶
type CfnDomain_ClusterConfigProperty struct { // `CfnDomain.ClusterConfigProperty.DedicatedMasterCount`. DedicatedMasterCount *float64 `json:"dedicatedMasterCount"` // `CfnDomain.ClusterConfigProperty.DedicatedMasterEnabled`. DedicatedMasterEnabled interface{} `json:"dedicatedMasterEnabled"` // `CfnDomain.ClusterConfigProperty.DedicatedMasterType`. DedicatedMasterType *string `json:"dedicatedMasterType"` // `CfnDomain.ClusterConfigProperty.InstanceCount`. InstanceCount *float64 `json:"instanceCount"` // `CfnDomain.ClusterConfigProperty.InstanceType`. InstanceType *string `json:"instanceType"` // `CfnDomain.ClusterConfigProperty.WarmCount`. WarmCount *float64 `json:"warmCount"` // `CfnDomain.ClusterConfigProperty.WarmEnabled`. WarmEnabled interface{} `json:"warmEnabled"` // `CfnDomain.ClusterConfigProperty.WarmType`. WarmType *string `json:"warmType"` // `CfnDomain.ClusterConfigProperty.ZoneAwarenessConfig`. ZoneAwarenessConfig interface{} `json:"zoneAwarenessConfig"` // `CfnDomain.ClusterConfigProperty.ZoneAwarenessEnabled`. ZoneAwarenessEnabled interface{} `json:"zoneAwarenessEnabled"` }
type CfnDomain_CognitoOptionsProperty ¶
type CfnDomain_CognitoOptionsProperty struct { // `CfnDomain.CognitoOptionsProperty.Enabled`. Enabled interface{} `json:"enabled"` // `CfnDomain.CognitoOptionsProperty.IdentityPoolId`. IdentityPoolId *string `json:"identityPoolId"` // `CfnDomain.CognitoOptionsProperty.RoleArn`. RoleArn *string `json:"roleArn"` // `CfnDomain.CognitoOptionsProperty.UserPoolId`. UserPoolId *string `json:"userPoolId"` }
type CfnDomain_DomainEndpointOptionsProperty ¶
type CfnDomain_DomainEndpointOptionsProperty struct { // `CfnDomain.DomainEndpointOptionsProperty.CustomEndpoint`. CustomEndpoint *string `json:"customEndpoint"` // `CfnDomain.DomainEndpointOptionsProperty.CustomEndpointCertificateArn`. CustomEndpointCertificateArn *string `json:"customEndpointCertificateArn"` // `CfnDomain.DomainEndpointOptionsProperty.CustomEndpointEnabled`. CustomEndpointEnabled interface{} `json:"customEndpointEnabled"` // `CfnDomain.DomainEndpointOptionsProperty.EnforceHTTPS`. EnforceHttps interface{} `json:"enforceHttps"` // `CfnDomain.DomainEndpointOptionsProperty.TLSSecurityPolicy`. TlsSecurityPolicy *string `json:"tlsSecurityPolicy"` }
type CfnDomain_EBSOptionsProperty ¶
type CfnDomain_EBSOptionsProperty struct { // `CfnDomain.EBSOptionsProperty.EBSEnabled`. EbsEnabled interface{} `json:"ebsEnabled"` // `CfnDomain.EBSOptionsProperty.Iops`. Iops *float64 `json:"iops"` // `CfnDomain.EBSOptionsProperty.VolumeSize`. VolumeSize *float64 `json:"volumeSize"` // `CfnDomain.EBSOptionsProperty.VolumeType`. VolumeType *string `json:"volumeType"` }
type CfnDomain_EncryptionAtRestOptionsProperty ¶
type CfnDomain_EncryptionAtRestOptionsProperty struct { // `CfnDomain.EncryptionAtRestOptionsProperty.Enabled`. Enabled interface{} `json:"enabled"` // `CfnDomain.EncryptionAtRestOptionsProperty.KmsKeyId`. KmsKeyId *string `json:"kmsKeyId"` }
type CfnDomain_LogPublishingOptionProperty ¶
type CfnDomain_LogPublishingOptionProperty struct { // `CfnDomain.LogPublishingOptionProperty.CloudWatchLogsLogGroupArn`. CloudWatchLogsLogGroupArn *string `json:"cloudWatchLogsLogGroupArn"` // `CfnDomain.LogPublishingOptionProperty.Enabled`. Enabled interface{} `json:"enabled"` }
type CfnDomain_MasterUserOptionsProperty ¶
type CfnDomain_MasterUserOptionsProperty struct { // `CfnDomain.MasterUserOptionsProperty.MasterUserARN`. MasterUserArn *string `json:"masterUserArn"` // `CfnDomain.MasterUserOptionsProperty.MasterUserName`. MasterUserName *string `json:"masterUserName"` // `CfnDomain.MasterUserOptionsProperty.MasterUserPassword`. MasterUserPassword *string `json:"masterUserPassword"` }
type CfnDomain_NodeToNodeEncryptionOptionsProperty ¶
type CfnDomain_NodeToNodeEncryptionOptionsProperty struct {
// `CfnDomain.NodeToNodeEncryptionOptionsProperty.Enabled`.
Enabled interface{} `json:"enabled"`
}
type CfnDomain_SnapshotOptionsProperty ¶
type CfnDomain_SnapshotOptionsProperty struct { // `CfnDomain.SnapshotOptionsProperty.AutomatedSnapshotStartHour`. AutomatedSnapshotStartHour *float64 `json:"automatedSnapshotStartHour"` }
type CfnDomain_ZoneAwarenessConfigProperty ¶
type CfnDomain_ZoneAwarenessConfigProperty struct { // `CfnDomain.ZoneAwarenessConfigProperty.AvailabilityZoneCount`. AvailabilityZoneCount *float64 `json:"availabilityZoneCount"` }
type CognitoOptions ¶
type CognitoOptions struct { // The Amazon Cognito identity pool ID that you want Amazon OpenSearch Service to use for OpenSearch Dashboards authentication. // Experimental. IdentityPoolId *string `json:"identityPoolId"` // A role that allows Amazon OpenSearch Service to configure your user pool and identity pool. // // It must have the `AmazonESCognitoAccess` policy attached to it. // See: https://docs.aws.amazon.com/opensearch-service/latest/developerguide/cognito-auth.html#cognito-auth-prereq // // Experimental. Role awsiam.IRole `json:"role"` // The Amazon Cognito user pool ID that you want Amazon OpenSearch Service to use for OpenSearch Dashboards authentication. // Experimental. UserPoolId *string `json:"userPoolId"` }
Configures Amazon OpenSearch Service to use Amazon Cognito authentication for OpenSearch Dashboards. See: https://docs.aws.amazon.com/opensearch-service/latest/developerguide/cognito-auth.html
Experimental.
type CustomEndpointOptions ¶
type CustomEndpointOptions struct { // The custom domain name to assign. // Experimental. DomainName *string `json:"domainName"` // The certificate to use. // Experimental. Certificate awscertificatemanager.ICertificate `json:"certificate"` // The hosted zone in Route53 to create the CNAME record in. // Experimental. HostedZone awsroute53.IHostedZone `json:"hostedZone"` }
Configures a custom domain endpoint for the Amazon OpenSearch Service domain. Experimental.
type Domain ¶
type Domain interface { awscdk.Resource awsec2.IConnectable IDomain AppLogGroup() awslogs.ILogGroup AuditLogGroup() awslogs.ILogGroup Connections() awsec2.Connections DomainArn() *string DomainEndpoint() *string DomainId() *string DomainName() *string Env() *awscdk.ResourceEnvironment MasterUserPassword() awscdk.SecretValue Node() awscdk.ConstructNode PhysicalName() *string SlowIndexLogGroup() awslogs.ILogGroup SlowSearchLogGroup() awslogs.ILogGroup Stack() awscdk.Stack ApplyRemovalPolicy(policy awscdk.RemovalPolicy) GeneratePhysicalName() *string GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string GetResourceNameAttribute(nameAttr *string) *string GrantIndexRead(index *string, identity awsiam.IGrantable) awsiam.Grant GrantIndexReadWrite(index *string, identity awsiam.IGrantable) awsiam.Grant GrantIndexWrite(index *string, identity awsiam.IGrantable) awsiam.Grant GrantPathRead(path *string, identity awsiam.IGrantable) awsiam.Grant GrantPathReadWrite(path *string, identity awsiam.IGrantable) awsiam.Grant GrantPathWrite(path *string, identity awsiam.IGrantable) awsiam.Grant GrantRead(identity awsiam.IGrantable) awsiam.Grant GrantReadWrite(identity awsiam.IGrantable) awsiam.Grant GrantWrite(identity awsiam.IGrantable) awsiam.Grant Metric(metricName *string, props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricAutomatedSnapshotFailure(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricClusterIndexWritesBlocked(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricClusterStatusRed(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricClusterStatusYellow(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricCPUUtilization(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricFreeStorageSpace(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricIndexingLatency(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricJVMMemoryPressure(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricKMSKeyError(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricKMSKeyInaccessible(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricMasterCPUUtilization(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricMasterJVMMemoryPressure(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricNodes(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricSearchableDocuments(props *awscloudwatch.MetricOptions) awscloudwatch.Metric MetricSearchLatency(props *awscloudwatch.MetricOptions) awscloudwatch.Metric OnPrepare() OnSynthesize(session constructs.ISynthesisSession) OnValidate() *[]*string Prepare() Synthesize(session awscdk.ISynthesisSession) ToString() *string Validate() *[]*string }
Provides an Amazon OpenSearch Service domain. Experimental.
func NewDomain ¶
func NewDomain(scope constructs.Construct, id *string, props *DomainProps) Domain
Experimental.
type DomainAttributes ¶
type DomainAttributes struct { // The ARN of the Amazon OpenSearch Service domain. // Experimental. DomainArn *string `json:"domainArn"` // The domain endpoint of the Amazon OpenSearch Service domain. // Experimental. DomainEndpoint *string `json:"domainEndpoint"` }
Reference to an Amazon OpenSearch Service domain. Experimental.
type DomainProps ¶
type DomainProps struct { // The Elasticsearch/OpenSearch version that your domain will leverage. // Experimental. Version EngineVersion `json:"version"` // Domain access policies. // Experimental. AccessPolicies *[]awsiam.PolicyStatement `json:"accessPolicies"` // Additional options to specify for the Amazon OpenSearch Service domain. // See: https://docs.aws.amazon.com/opensearch-service/latest/developerguide/createupdatedomains.html#createdomain-configure-advanced-options // // Experimental. AdvancedOptions *map[string]*string `json:"advancedOptions"` // The hour in UTC during which the service takes an automated daily snapshot of the indices in the Amazon OpenSearch Service domain. // // Only applies for Elasticsearch versions // below 5.3. // Experimental. AutomatedSnapshotStartHour *float64 `json:"automatedSnapshotStartHour"` // The cluster capacity configuration for the Amazon OpenSearch Service domain. // Experimental. Capacity *CapacityConfig `json:"capacity"` // Configures Amazon OpenSearch Service to use Amazon Cognito authentication for OpenSearch Dashboards. // Experimental. CognitoDashboardsAuth *CognitoOptions `json:"cognitoDashboardsAuth"` // To configure a custom domain configure these options. // // If you specify a Route53 hosted zone it will create a CNAME record and use DNS validation for the certificate // Experimental. CustomEndpoint *CustomEndpointOptions `json:"customEndpoint"` // Enforces a particular physical domain name. // Experimental. DomainName *string `json:"domainName"` // The configurations of Amazon Elastic Block Store (Amazon EBS) volumes that are attached to data nodes in the Amazon OpenSearch Service domain. // Experimental. Ebs *EbsOptions `json:"ebs"` // To upgrade an Amazon OpenSearch Service domain to a new version, rather than replacing the entire domain resource, use the EnableVersionUpgrade update policy. // See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-updatepolicy.html#cfn-attributes-updatepolicy-upgradeopensearchdomain // // Experimental. EnableVersionUpgrade *bool `json:"enableVersionUpgrade"` // Encryption at rest options for the cluster. // Experimental. EncryptionAtRest *EncryptionAtRestOptions `json:"encryptionAtRest"` // True to require that all traffic to the domain arrive over HTTPS. // Experimental. EnforceHttps *bool `json:"enforceHttps"` // Specifies options for fine-grained access control. // // Requires Elasticsearch version 6.7 or later or OpenSearch version 1.0 or later. Enabling fine-grained access control // also requires encryption of data at rest and node-to-node encryption, along with // enforced HTTPS. // Experimental. FineGrainedAccessControl *AdvancedSecurityOptions `json:"fineGrainedAccessControl"` // Configuration log publishing configuration options. // Experimental. Logging *LoggingOptions `json:"logging"` // Specify true to enable node to node encryption. // // Requires Elasticsearch version 6.0 or later or OpenSearch version 1.0 or later. // Experimental. NodeToNodeEncryption *bool `json:"nodeToNodeEncryption"` // Policy to apply when the domain is removed from the stack. // Experimental. RemovalPolicy awscdk.RemovalPolicy `json:"removalPolicy"` // The list of security groups that are associated with the VPC endpoints for the domain. // // Only used if `vpc` is specified. // See: https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html // // Experimental. SecurityGroups *[]awsec2.ISecurityGroup `json:"securityGroups"` // The minimum TLS version required for traffic to the domain. // Experimental. TlsSecurityPolicy TLSSecurityPolicy `json:"tlsSecurityPolicy"` // Configures the domain so that unsigned basic auth is enabled. // // If no master user is provided a default master user // with username `admin` and a dynamically generated password stored in KMS is created. The password can be retrieved // by getting `masterUserPassword` from the domain instance. // // Setting this to true will also add an access policy that allows unsigned // access, enable node to node encryption, encryption at rest. If conflicting // settings are encountered (like disabling encryption at rest) enabling this // setting will cause a failure. // Experimental. UseUnsignedBasicAuth *bool `json:"useUnsignedBasicAuth"` // Place the domain inside this VPC. // See: https://docs.aws.amazon.com/opensearch-service/latest/developerguide/vpc.html // // Experimental. Vpc awsec2.IVpc `json:"vpc"` // The specific vpc subnets the domain will be placed in. // // You must provide one subnet for each Availability Zone // that your domain uses. For example, you must specify three subnet IDs for a three Availability Zone // domain. // // Only used if `vpc` is specified. // See: https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Subnets.html // // Experimental. VpcSubnets *[]*awsec2.SubnetSelection `json:"vpcSubnets"` // The cluster zone awareness configuration for the Amazon OpenSearch Service domain. // Experimental. ZoneAwareness *ZoneAwarenessConfig `json:"zoneAwareness"` }
Properties for an Amazon OpenSearch Service domain. Experimental.
type EbsOptions ¶
type EbsOptions struct { // Specifies whether Amazon EBS volumes are attached to data nodes in the Amazon OpenSearch Service domain. // Experimental. Enabled *bool `json:"enabled"` // The number of I/O operations per second (IOPS) that the volume supports. // // This property applies only to the Provisioned IOPS (SSD) EBS // volume type. // Experimental. Iops *float64 `json:"iops"` // The size (in GiB) of the EBS volume for each data node. // // The minimum and // maximum size of an EBS volume depends on the EBS volume type and the // instance type to which it is attached. For valid values, see // [EBS volume size limits] // (https://docs.aws.amazon.com/opensearch-service/latest/developerguide/limits.html#ebsresource) // in the Amazon OpenSearch Service Developer Guide. // Experimental. VolumeSize *float64 `json:"volumeSize"` // The EBS volume type to use with the Amazon OpenSearch Service domain, such as standard, gp2, io1. // Experimental. VolumeType awsec2.EbsDeviceVolumeType `json:"volumeType"` }
The configurations of Amazon Elastic Block Store (Amazon EBS) volumes that are attached to data nodes in the Amazon OpenSearch Service domain.
For more information, see [Amazon EBS] (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AmazonEBS.html) in the Amazon Elastic Compute Cloud Developer Guide. Experimental.
type EncryptionAtRestOptions ¶
type EncryptionAtRestOptions struct { // Specify true to enable encryption at rest. // Experimental. Enabled *bool `json:"enabled"` // Supply if using KMS key for encryption at rest. // Experimental. KmsKey awskms.IKey `json:"kmsKey"` }
Whether the domain should encrypt data at rest, and if so, the AWS Key Management Service (KMS) key to use.
Can only be used to create a new domain, not update an existing one. Requires Elasticsearch version 5.1 or later or OpenSearch version 1.0 or later. Experimental.
type EngineVersion ¶
type EngineVersion interface {
Version() *string
}
OpenSearch version. Experimental.
func EngineVersion_ELASTICSEARCH_1_5 ¶
func EngineVersion_ELASTICSEARCH_1_5() EngineVersion
func EngineVersion_ELASTICSEARCH_2_3 ¶
func EngineVersion_ELASTICSEARCH_2_3() EngineVersion
func EngineVersion_ELASTICSEARCH_5_1 ¶
func EngineVersion_ELASTICSEARCH_5_1() EngineVersion
func EngineVersion_ELASTICSEARCH_5_3 ¶
func EngineVersion_ELASTICSEARCH_5_3() EngineVersion
func EngineVersion_ELASTICSEARCH_5_5 ¶
func EngineVersion_ELASTICSEARCH_5_5() EngineVersion
func EngineVersion_ELASTICSEARCH_5_6 ¶
func EngineVersion_ELASTICSEARCH_5_6() EngineVersion
func EngineVersion_ELASTICSEARCH_6_0 ¶
func EngineVersion_ELASTICSEARCH_6_0() EngineVersion
func EngineVersion_ELASTICSEARCH_6_2 ¶
func EngineVersion_ELASTICSEARCH_6_2() EngineVersion
func EngineVersion_ELASTICSEARCH_6_3 ¶
func EngineVersion_ELASTICSEARCH_6_3() EngineVersion
func EngineVersion_ELASTICSEARCH_6_4 ¶
func EngineVersion_ELASTICSEARCH_6_4() EngineVersion
func EngineVersion_ELASTICSEARCH_6_5 ¶
func EngineVersion_ELASTICSEARCH_6_5() EngineVersion
func EngineVersion_ELASTICSEARCH_6_7 ¶
func EngineVersion_ELASTICSEARCH_6_7() EngineVersion
func EngineVersion_ELASTICSEARCH_6_8 ¶
func EngineVersion_ELASTICSEARCH_6_8() EngineVersion
func EngineVersion_ELASTICSEARCH_7_1 ¶
func EngineVersion_ELASTICSEARCH_7_1() EngineVersion
func EngineVersion_ELASTICSEARCH_7_10 ¶
func EngineVersion_ELASTICSEARCH_7_10() EngineVersion
func EngineVersion_ELASTICSEARCH_7_4 ¶
func EngineVersion_ELASTICSEARCH_7_4() EngineVersion
func EngineVersion_ELASTICSEARCH_7_7 ¶
func EngineVersion_ELASTICSEARCH_7_7() EngineVersion
func EngineVersion_ELASTICSEARCH_7_8 ¶
func EngineVersion_ELASTICSEARCH_7_8() EngineVersion
func EngineVersion_ELASTICSEARCH_7_9 ¶
func EngineVersion_ELASTICSEARCH_7_9() EngineVersion
func EngineVersion_Elasticsearch ¶
func EngineVersion_Elasticsearch(version *string) EngineVersion
Custom ElasticSearch version. Experimental.
func EngineVersion_OPENSEARCH_1_0 ¶
func EngineVersion_OPENSEARCH_1_0() EngineVersion
func EngineVersion_OpenSearch ¶
func EngineVersion_OpenSearch(version *string) EngineVersion
Custom OpenSearch version. Experimental.
type IDomain ¶
type IDomain interface { awscdk.IResource // Grant read permissions for an index in this domain to an IAM principal (Role/Group/User). // Experimental. GrantIndexRead(index *string, identity awsiam.IGrantable) awsiam.Grant // Grant read/write permissions for an index in this domain to an IAM principal (Role/Group/User). // Experimental. GrantIndexReadWrite(index *string, identity awsiam.IGrantable) awsiam.Grant // Grant write permissions for an index in this domain to an IAM principal (Role/Group/User). // Experimental. GrantIndexWrite(index *string, identity awsiam.IGrantable) awsiam.Grant // Grant read permissions for a specific path in this domain to an IAM principal (Role/Group/User). // Experimental. GrantPathRead(path *string, identity awsiam.IGrantable) awsiam.Grant // Grant read/write permissions for a specific path in this domain to an IAM principal (Role/Group/User). // Experimental. GrantPathReadWrite(path *string, identity awsiam.IGrantable) awsiam.Grant // Grant write permissions for a specific path in this domain to an IAM principal (Role/Group/User). // Experimental. GrantPathWrite(path *string, identity awsiam.IGrantable) awsiam.Grant // Grant read permissions for this domain and its contents to an IAM principal (Role/Group/User). // Experimental. GrantRead(identity awsiam.IGrantable) awsiam.Grant // Grant read/write permissions for this domain and its contents to an IAM principal (Role/Group/User). // Experimental. GrantReadWrite(identity awsiam.IGrantable) awsiam.Grant // Grant write permissions for this domain and its contents to an IAM principal (Role/Group/User). // Experimental. GrantWrite(identity awsiam.IGrantable) awsiam.Grant // Return the given named metric for this domain. // Experimental. Metric(metricName *string, props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for automated snapshot failures. // Experimental. MetricAutomatedSnapshotFailure(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for the cluster blocking index writes. // Experimental. MetricClusterIndexWritesBlocked(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for the time the cluster status is red. // Experimental. MetricClusterStatusRed(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for the time the cluster status is yellow. // Experimental. MetricClusterStatusYellow(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for CPU utilization. // Experimental. MetricCPUUtilization(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for the storage space of nodes in the cluster. // Experimental. MetricFreeStorageSpace(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for indexing latency. // Experimental. MetricIndexingLatency(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for JVM memory pressure. // Experimental. MetricJVMMemoryPressure(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for KMS key errors. // Experimental. MetricKMSKeyError(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for KMS key being inaccessible. // Experimental. MetricKMSKeyInaccessible(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for master CPU utilization. // Experimental. MetricMasterCPUUtilization(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for master JVM memory pressure. // Experimental. MetricMasterJVMMemoryPressure(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for the number of nodes. // Experimental. MetricNodes(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for number of searchable documents. // Experimental. MetricSearchableDocuments(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Metric for search latency. // Experimental. MetricSearchLatency(props *awscloudwatch.MetricOptions) awscloudwatch.Metric // Arn of the Amazon OpenSearch Service domain. // Experimental. DomainArn() *string // Endpoint of the Amazon OpenSearch Service domain. // Experimental. DomainEndpoint() *string // Identifier of the Amazon OpenSearch Service domain. // Experimental. DomainId() *string // Domain name of the Amazon OpenSearch Service domain. // Experimental. DomainName() *string }
An interface that represents an Amazon OpenSearch Service domain - either created with the CDK, or an existing one. Experimental.
func Domain_FromDomainAttributes ¶
func Domain_FromDomainAttributes(scope constructs.Construct, id *string, attrs *DomainAttributes) IDomain
Creates a domain construct that represents an external domain. Experimental.
func Domain_FromDomainEndpoint ¶
func Domain_FromDomainEndpoint(scope constructs.Construct, id *string, domainEndpoint *string) IDomain
Creates a domain construct that represents an external domain via domain endpoint. Experimental.
type LoggingOptions ¶
type LoggingOptions struct { // Specify if Amazon OpenSearch Service application logging should be set up. // // Requires Elasticsearch version 5.1 or later or OpenSearch version 1.0 or later. // Experimental. AppLogEnabled *bool `json:"appLogEnabled"` // Log Amazon OpenSearch Service application logs to this log group. // Experimental. AppLogGroup awslogs.ILogGroup `json:"appLogGroup"` // Specify if Amazon OpenSearch Service audit logging should be set up. // // Requires Elasticsearch version 6.7 or later or OpenSearch version 1.0 or later and fine grained access control to be enabled. // Experimental. AuditLogEnabled *bool `json:"auditLogEnabled"` // Log Amazon OpenSearch Service audit logs to this log group. // Experimental. AuditLogGroup awslogs.ILogGroup `json:"auditLogGroup"` // Specify if slow index logging should be set up. // // Requires Elasticsearch version 5.1 or later or OpenSearch version 1.0 or later. // Experimental. SlowIndexLogEnabled *bool `json:"slowIndexLogEnabled"` // Log slow indices to this log group. // Experimental. SlowIndexLogGroup awslogs.ILogGroup `json:"slowIndexLogGroup"` // Specify if slow search logging should be set up. // // Requires Elasticsearch version 5.1 or later or OpenSearch version 1.0 or later. // Experimental. SlowSearchLogEnabled *bool `json:"slowSearchLogEnabled"` // Log slow searches to this log group. // Experimental. SlowSearchLogGroup awslogs.ILogGroup `json:"slowSearchLogGroup"` }
Configures log settings for the domain. Experimental.
type TLSSecurityPolicy ¶
type TLSSecurityPolicy string
The minimum TLS version required for traffic to the domain. Experimental.
const ( TLSSecurityPolicy_TLS_1_0 TLSSecurityPolicy = "TLS_1_0" TLSSecurityPolicy_TLS_1_2 TLSSecurityPolicy = "TLS_1_2" )
type ZoneAwarenessConfig ¶
type ZoneAwarenessConfig struct { // If you enabled multiple Availability Zones (AZs), the number of AZs that you want the domain to use. // // Valid values are 2 and 3. // Experimental. AvailabilityZoneCount *float64 `json:"availabilityZoneCount"` // Indicates whether to enable zone awareness for the Amazon OpenSearch Service domain. // // When you enable zone awareness, Amazon OpenSearch Service allocates the nodes and replica // index shards that belong to a cluster across two Availability Zones (AZs) // in the same region to prevent data loss and minimize downtime in the event // of node or data center failure. Don't enable zone awareness if your cluster // has no replica index shards or is a single-node cluster. For more information, // see [Configuring a Multi-AZ Domain] // (https://docs.aws.amazon.com/opensearch-service/latest/developerguide/managedomains-multiaz.html) // in the Amazon OpenSearch Service Developer Guide. // Experimental. Enabled *bool `json:"enabled"` }
Specifies zone awareness configuration options. Experimental.