README
¶
Amazon Kinesis Data Firehose Construct Library
All classes with the
Cfnprefix in this module (CFN Resources) are always stable and safe to use.
The APIs of higher level constructs in this module are experimental and under active development. They are subject to non-backward compatible changes or removal in any future version. These are not subject to the Semantic Versioning model and breaking changes will be announced in the release notes. This means that while you may use them, you may need to update your source code when upgrading to a newer version of this package.
Amazon Kinesis Data Firehose is a service for fully-managed delivery of real-time streaming data to storage services such as Amazon S3, Amazon Redshift, Amazon Elasticsearch, Splunk, or any custom HTTP endpoint or third-party services such as Datadog, Dynatrace, LogicMonitor, MongoDB, New Relic, and Sumo Logic.
Kinesis Data Firehose delivery streams are distinguished from Kinesis data streams in their models of consumtpion. Whereas consumers read from a data stream by actively pulling data from the stream, a delivery stream pushes data to its destination on a regular cadence. This means that data streams are intended to have consumers that do on-demand processing, like AWS Lambda or Amazon EC2. On the other hand, delivery streams are intended to have destinations that are sources for offline processing and analytics, such as Amazon S3 and Amazon Redshift.
This module is part of the AWS Cloud Development Kit project. It allows you to define Kinesis Data Firehose delivery streams.
Defining a Delivery Stream
In order to define a Delivery Stream, you must specify a destination. An S3 bucket can be used as a destination. More supported destinations are covered below.
import * as destinations from '@aws-cdk/aws-kinesisfirehose-destinations';
import * as s3 from '@aws-cdk/aws-s3';
const bucket = new s3.Bucket(this, 'Bucket');
new DeliveryStream(this, 'Delivery Stream', {
destinations: [new destinations.S3Bucket(bucket)],
});
The above example defines the following resources:
- An S3 bucket
- A Kinesis Data Firehose delivery stream with Direct PUT as the source and CloudWatch error logging turned on.
- An IAM role which gives the delivery stream permission to write to the S3 bucket.
Sources
There are two main methods of sourcing input data: Kinesis Data Streams and via a "direct put".
See: Sending Data to a Delivery Stream in the Kinesis Data Firehose Developer Guide.
Kinesis Data Stream
A delivery stream can read directly from a Kinesis data stream as a consumer of the data
stream. Configure this behaviour by providing a data stream in the sourceStream
property when constructing a delivery stream:
import * as kinesis from '@aws-cdk/aws-kinesis';
const sourceStream = new kinesis.Stream(this, 'Source Stream');
new DeliveryStream(this, 'Delivery Stream', {
sourceStream: sourceStream,
destinations: [destination],
});
Direct Put
Data must be provided via "direct put", ie., by using a PutRecord or PutRecordBatch API call. There are a number of ways of doing
so, such as:
- Kinesis Agent: a standalone Java application that monitors and delivers files while handling file rotation, checkpointing, and retries. See: Writing to Kinesis Data Firehose Using Kinesis Agent in the Kinesis Data Firehose Developer Guide.
- AWS SDK: a general purpose solution that allows you to deliver data to a delivery stream from anywhere using Java, .NET, Node.js, Python, or Ruby. See: Writing to Kinesis Data Firehose Using the AWS SDK in the Kinesis Data Firehose Developer Guide.
- CloudWatch Logs: subscribe to a log group and receive filtered log events directly into a delivery stream. See: logs-destinations.
- Eventbridge: add an event rule target to send events to a delivery stream based on the rule filtering. See: events-targets.
- SNS: add a subscription to send all notifications from the topic to a delivery stream. See: sns-subscriptions.
- IoT: add an action to an IoT rule to send various IoT information to a delivery stream
Destinations
The following destinations are supported. See kinesisfirehose-destinations for the implementations of these destinations.
S3
Defining a delivery stream with an S3 bucket destination:
import * as s3 from '@aws-cdk/aws-s3';
import * as destinations from '@aws-cdk/aws-kinesisfirehose-destinations';
const bucket = new s3.Bucket(this, 'Bucket');
const s3Destination = new destinations.S3Bucket(bucket);
new DeliveryStream(this, 'Delivery Stream', {
destinations: [s3Destination],
});
The S3 destination also supports custom dynamic prefixes. prefix will be used for files
successfully delivered to S3. errorOutputPrefix will be added to failed records before
writing them to S3.
const s3Destination = new destinations.S3Bucket(bucket, {
dataOutputPrefix: 'myFirehose/DeliveredYear=!{timestamp:yyyy}/anyMonth/rand=!{firehose:random-string}',
errorOutputPrefix: 'myFirehoseFailures/!{firehose:error-output-type}/!{timestamp:yyyy}/anyMonth/!{timestamp:dd}',
});
See: Custom S3 Prefixes in the Kinesis Data Firehose Developer Guide.
Server-side Encryption
Enabling server-side encryption (SSE) requires Kinesis Data Firehose to encrypt all data sent to delivery stream when it is stored at rest. This means that data is encrypted before being written to the service's internal storage layer and decrypted after it is received from the internal storage layer. The service manages keys and cryptographic operations so that sources and destinations do not need to, as the data is encrypted and decrypted at the boundaries of the service (ie., before the data is delivered to a destination). By default, delivery streams do not have SSE enabled.
The Key Management Service (KMS) Customer Managed Key (CMK) used for SSE can either be AWS-owned or customer-managed. AWS-owned CMKs are keys that an AWS service (in this case Kinesis Data Firehose) owns and manages for use in multiple AWS accounts. As a customer, you cannot view, use, track, or manage these keys, and you are not charged for their use. On the other hand, customer-managed CMKs are keys that are created and owned within your account and managed entirely by you. As a customer, you are responsible for managing access, rotation, aliases, and deletion for these keys, and you are changed for their use. See: Customer master keys in the KMS Developer Guide.
import * as kms from '@aws-cdk/aws-kms';
// SSE with an AWS-owned CMK
new DeliveryStream(this, 'Delivery Stream AWS Owned', {
encryption: StreamEncryption.AWS_OWNED,
destinations: [destination],
});
// SSE with an customer-managed CMK that is created automatically by the CDK
new DeliveryStream(this, 'Delivery Stream Implicit Customer Managed', {
encryption: StreamEncryption.CUSTOMER_MANAGED,
destinations: [destination],
});
// SSE with an customer-managed CMK that is explicitly specified
const key = new kms.Key(this, 'Key');
new DeliveryStream(this, 'Delivery Stream Explicit Customer Managed', {
encryptionKey: key,
destinations: [destination],
});
See: Data Protection in the Kinesis Data Firehose Developer Guide.
Monitoring
Kinesis Data Firehose is integrated with CloudWatch, so you can monitor the performance of your delivery streams via logs and metrics.
Logs
Kinesis Data Firehose will send logs to CloudWatch when data transformation or data delivery fails. The CDK will enable logging by default and create a CloudWatch LogGroup and LogStream for your Delivery Stream.
You can provide a specific log group to specify where the CDK will create the log streams where log events will be sent:
import * as destinations from '@aws-cdk/aws-kinesisfirehose-destinations';
import * as logs from '@aws-cdk/aws-logs';
const logGroup = new logs.LogGroup(this, 'Log Group');
const destination = new destinations.S3Bucket(bucket, {
logGroup: logGroup,
});
new DeliveryStream(this, 'Delivery Stream', {
destinations: [destination],
});
Logging can also be disabled:
import * as destinations from '@aws-cdk/aws-kinesisfirehose-destinations';
const destination = new destinations.S3Bucket(bucket, {
logging: false,
});
new DeliveryStream(this, 'Delivery Stream', {
destinations: [destination],
});
See: Monitoring using CloudWatch Logs in the Kinesis Data Firehose Developer Guide.
Metrics
Kinesis Data Firehose sends metrics to CloudWatch so that you can collect and analyze the performance of the delivery stream, including data delivery, data ingestion, data transformation, format conversion, API usage, encryption, and resource usage. You can then use CloudWatch alarms to alert you, for example, when data freshness (the age of the oldest record in the delivery stream) exceeds the buffering limit (indicating that data is not being delivered to your destination), or when the rate of incoming records exceeds the limit of records per second (indicating data is flowing into your delivery stream faster than it is configured to process).
CDK provides methods for accessing delivery stream metrics with default configuration,
such as metricIncomingBytes, and metricIncomingRecords (see IDeliveryStream
for a full list). CDK also provides a generic metric method that can be used to produce
metric configurations for any metric provided by Kinesis Data Firehose; the configurations
are pre-populated with the correct dimensions for the delivery stream.
import * as cloudwatch from '@aws-cdk/aws-cloudwatch';
// Alarm that triggers when the per-second average of incoming bytes exceeds 90% of the current service limit
const incomingBytesPercentOfLimit = new cloudwatch.MathExpression({
expression: 'incomingBytes / 300 / bytePerSecLimit',
usingMetrics: {
incomingBytes: deliveryStream.metricIncomingBytes({ statistic: cloudwatch.Statistic.SUM }),
bytePerSecLimit: deliveryStream.metric('BytesPerSecondLimit'),
},
});
new cloudwatch.Alarm(this, 'Alarm', {
metric: incomingBytesPercentOfLimit,
threshold: 0.9,
evaluationPeriods: 3,
});
See: Monitoring Using CloudWatch Metrics in the Kinesis Data Firehose Developer Guide.
Compression
Your data can automatically be compressed when it is delivered to S3 as either a final or an intermediary/backup destination. Supported compression formats are: gzip, Snappy, Hadoop-compatible Snappy, and ZIP, except for Redshift destinations, where Snappy (regardless of Hadoop-compatibility) and ZIP are not supported. By default, data is delivered to S3 without compression.
// Compress data delivered to S3 using Snappy
const s3Destination = new destinations.S3Bucket(bucket, {
compression: Compression.SNAPPY,
});
new DeliveryStream(this, 'Delivery Stream', {
destinations: [destination],
});
Buffering
Incoming data is buffered before it is delivered to the specified destination. The delivery stream will wait until the amount of incoming data has exceeded some threshold (the "buffer size") or until the time since the last data delivery occurred exceeds some threshold (the "buffer interval"), whichever happens first. You can configure these thresholds based on the capabilities of the destination and your use-case. By default, the buffer size is 5 MiB and the buffer interval is 5 minutes.
import * as cdk from '@aws-cdk/core';
// Increase the buffer interval and size to 10 minutes and 8 MiB, respectively
const destination = new destinations.S3Bucket(bucket, {
bufferingInterval: cdk.Duration.minutes(10),
bufferingSize: cdk.Size.mebibytes(8),
});
new DeliveryStream(this, 'Delivery Stream', {
destinations: [destination],
});
See: Data Delivery Frequency in the Kinesis Data Firehose Developer Guide.
Destination Encryption
Your data can be automatically encrypted when it is delivered to S3 as a final or an intermediary/backup destination. Kinesis Data Firehose supports Amazon S3 server-side encryption with AWS Key Management Service (AWS KMS) for encrypting delivered data in Amazon S3. You can choose to not encrypt the data or to encrypt with a key from the list of AWS KMS keys that you own. For more information, see Protecting Data Using Server-Side Encryption with AWS KMS–Managed Keys (SSE-KMS). Data is not encrypted by default.
import * as cdk from '@aws-cdk/core';
import * as kms from '@aws-cdk/aws-kms';
const destination = new destinations.S3Bucket(bucket, {
encryptionKey: new kms.Key(this, 'MyKey'),
});
new DeliveryStream(this, 'Delivery Stream', {
destinations: [destination],
});
Backup
A delivery stream can be configured to backup data to S3 that it attempted to deliver to the configured destination. Backed up data can be all the data that the delivery stream attempted to deliver or just data that it failed to deliver (Redshift and S3 destinations can only backup all data). CDK can create a new S3 bucket where it will back up data or you can provide a bucket where data will be backed up. You can also provide a prefix under which your backed-up data will be placed within the bucket. By default, source data is not backed up to S3.
import * as destinations from '@aws-cdk/aws-kinesisfirehose-destinations';
import * as s3 from '@aws-cdk/aws-s3';
// Enable backup of all source records (to an S3 bucket created by CDK).
new DeliveryStream(this, 'Delivery Stream Backup All', {
destinations: [
new destinations.S3Bucket(bucket, {
s3Backup: {
mode: BackupMode.ALL,
}
}),
],
});
// Explicitly provide an S3 bucket to which all source records will be backed up.
const backupBucket = new s3.Bucket(this, 'Bucket');
new DeliveryStream(this, 'Delivery Stream Backup All Explicit Bucket', {
destinations: [
new destinations.S3Bucket(bucket, {
s3Backup: {
bucket: backupBucket,
}
}),
],
});
// Explicitly provide an S3 prefix under which all source records will be backed up.
new DeliveryStream(this, 'Delivery Stream Backup All Explicit Prefix', {
destinations: [
new destinations.S3Bucket(bucket, {
s3Backup: {
mode: BackupMode.ALL,
dataOutputPrefix: 'mybackup',
},
}),
],
});
If any Data Processing or Transformation is configured on your Delivery Stream, the source records will be backed up in their original format.
Data Processing/Transformation
Data can be transformed before being delivered to destinations. There are two types of data processing for delivery streams: record transformation with AWS Lambda, and record format conversion using a schema stored in an AWS Glue table. If both types of data processing are configured, then the Lambda transformation is performed first. By default, no data processing occurs. This construct library currently only supports data transformation with AWS Lambda. See #15501 to track the status of adding support for record format conversion.
Data transformation with AWS Lambda
To transform the data, Kinesis Data Firehose will call a Lambda function that you provide and deliver the data returned in place of the source record. The function must return a result that contains records in a specific format, including the following fields:
recordId-- the ID of the input record that corresponds the results.result-- the status of the transformation of the record: "Ok" (success), "Dropped" (not processed intentionally), or "ProcessingFailed" (not processed due to an error).data-- the transformed data, Base64-encoded.
The data is buffered up to 1 minute and up to 3 MiB by default before being sent to the
function, but can be configured using bufferInterval and bufferSize in the processor
configuration (see: Buffering). If the function invocation fails due to a
network timeout or because of hitting an invocation limit, the invocation is retried 3
times by default, but can be configured using retries in the processor configuration.
import * as cdk from '@aws-cdk/core';
import * as lambda from '@aws-cdk/aws-lambda';
// Provide a Lambda function that will transform records before delivery, with custom
// buffering and retry configuration
const lambdaFunction = new lambda.Function(this, 'Processor', {
runtime: lambda.Runtime.NODEJS_12_X,
handler: 'index.handler',
code: lambda.Code.fromAsset(path.join(__dirname, 'process-records')),
});
const lambdaProcessor = new LambdaFunctionProcessor(lambdaFunction, {
bufferingInterval: cdk.Duration.minutes(5),
bufferingSize: cdk.Size.mebibytes(5),
retries: 5,
});
const s3Destination = new destinations.S3Bucket(bucket, {
processor: lambdaProcessor,
});
new DeliveryStream(this, 'Delivery Stream', {
destinations: [destination],
});
#!/usr/bin/env node
!cdk-integ pragma:ignore-assets
import * as path from 'path';
import * as firehose from '@aws-cdk/aws-kinesisfirehose-alpha';
import * as kms from 'aws-cdk-lib/aws-kms';
import * as lambdanodejs from 'aws-cdk-lib/aws-lambda-nodejs';
import * as logs from 'aws-cdk-lib/aws-logs';
import * as s3 from 'aws-cdk-lib/aws-s3';
import * as cdk from 'aws-cdk-lib';
import * as destinations from '../lib';
const app = new cdk.App();
const stack = new cdk.Stack(app, 'aws-cdk-firehose-delivery-stream-s3-all-properties');
const bucket = new s3.Bucket(stack, 'Bucket', {
removalPolicy: cdk.RemovalPolicy.DESTROY,
autoDeleteObjects: true,
});
const backupBucket = new s3.Bucket(stack, 'BackupBucket', {
removalPolicy: cdk.RemovalPolicy.DESTROY,
autoDeleteObjects: true,
});
const logGroup = new logs.LogGroup(stack, 'LogGroup', {
removalPolicy: cdk.RemovalPolicy.DESTROY,
});
const dataProcessorFunction = new lambdanodejs.NodejsFunction(stack, 'DataProcessorFunction', {
entry: path.join(__dirname, 'lambda-data-processor.js'),
timeout: cdk.Duration.minutes(1),
});
const processor = new firehose.LambdaFunctionProcessor(dataProcessorFunction, {
bufferInterval: cdk.Duration.seconds(60),
bufferSize: cdk.Size.mebibytes(1),
retries: 1,
});
const key = new kms.Key(stack, 'Key', {
removalPolicy: cdk.RemovalPolicy.DESTROY,
});
const backupKey = new kms.Key(stack, 'BackupKey', {
removalPolicy: cdk.RemovalPolicy.DESTROY,
});
new firehose.DeliveryStream(stack, 'Delivery Stream', {
destinations: [new destinations.S3Bucket(bucket, {
logging: true,
logGroup: logGroup,
processor: processor,
compression: destinations.Compression.GZIP,
dataOutputPrefix: 'regularPrefix',
errorOutputPrefix: 'errorPrefix',
bufferingInterval: cdk.Duration.seconds(60),
bufferingSize: cdk.Size.mebibytes(1),
encryptionKey: key,
s3Backup: {
mode: destinations.BackupMode.ALL,
bucket: backupBucket,
compression: destinations.Compression.ZIP,
dataOutputPrefix: 'backupPrefix',
errorOutputPrefix: 'backupErrorPrefix',
bufferingInterval: cdk.Duration.seconds(60),
bufferingSize: cdk.Size.mebibytes(1),
encryptionKey: backupKey,
},
})],
});
app.synth();
See: Data Transformation in the Kinesis Data Firehose Developer Guide.
Specifying an IAM role
The DeliveryStream class automatically creates IAM service roles with all the minimum necessary permissions for Kinesis Data Firehose to access the resources referenced by your delivery stream. One service role is created for the delivery stream that allows Kinesis Data Firehose to read from a Kinesis data stream (if one is configured as the delivery stream source) and for server-side encryption. Another service role is created for each destination, which gives Kinesis Data Firehose write access to the destination resource, as well as the ability to invoke data transformers and read schemas for record format conversion. If you wish, you may specify your own IAM role for either the delivery stream or the destination service role, or both. It must have the correct trust policy (it must allow Kinesis Data Firehose to assume it) or delivery stream creation or data delivery will fail. Other required permissions to destination resources, encryption keys, etc., will be provided automatically.
import * as destinations from '@aws-cdk/aws-kinesisfirehose-destinations';
import * as iam from '@aws-cdk/aws-iam';
// Create service roles for the delivery stream and destination.
// These can be used for other purposes and granted access to different resources.
// They must include the Kinesis Data Firehose service principal in their trust policies.
// Two separate roles are shown below, but the same role can be used for both purposes.
const deliveryStreamRole = new iam.Role(this, 'Delivery Stream Role', {
assumedBy: new iam.ServicePrincipal('firehose.amazonaws.com'),
});
const destinationRole = new iam.Role(this, 'Destination Role', {
assumedBy: new iam.ServicePrincipal('firehose.amazonaws.com'),
});
// Specify the roles created above when defining the destination and delivery stream.
const destination = new destinations.S3Bucket(bucket, { role: destinationRole });
new DeliveryStream(this, 'Delivery Stream', {
destinations: [destination],
role: deliveryStreamRole,
});
See Controlling Access in the Kinesis Data Firehose Developer Guide.
Granting application access to a delivery stream
IAM roles, users or groups which need to be able to work with delivery streams should be granted IAM permissions.
Any object that implements the IGrantable interface (ie., has an associated principal)
can be granted permissions to a delivery stream by calling:
grantPutRecords(principal)- grants the principal the ability to put records onto the delivery streamgrant(principal, ...actions)- grants the principal permission to a custom set of actions
import * as iam from '@aws-cdk/aws-iam';
const lambdaRole = new iam.Role(this, 'Role', {
assumedBy: new iam.ServicePrincipal('lambda.amazonaws.com'),
});
// Give the role permissions to write data to the delivery stream
deliveryStream.grantPutRecords(lambdaRole);
The following write permissions are provided to a service principal by the grantPutRecords() method:
firehose:PutRecordfirehose:PutRecordBatch
Granting a delivery stream access to a resource
Conversely to the above, Kinesis Data Firehose requires permissions in order for delivery
streams to interact with resources that you own. For example, if an S3 bucket is specified
as a destination of a delivery stream, the delivery stream must be granted permissions to
put and get objects from the bucket. When using the built-in AWS service destinations
found in the @aws-cdk/aws-kinesisfirehose-destinations module, the CDK grants the
permissions automatically. However, custom or third-party destinations may require custom
permissions. In this case, use the delivery stream as an IGrantable, as follows:
import * as lambda from '@aws-cdk/aws-lambda';
const fn = new lambda.Function(this, 'Function', {
code: lambda.Code.fromInline('exports.handler = (event) => {}'),
runtime: lambda.Runtime.NODEJS_14_X,
handler: 'index.handler',
});
fn.grantInvoke(deliveryStream);
Multiple destinations
Though the delivery stream allows specifying an array of destinations, only one destination per delivery stream is currently allowed. This limitation is enforced at CDK synthesis time and will throw an error.
Documentation
¶
Overview ¶
The CDK Construct Library for AWS::KinesisFirehose
Index ¶
- func DeliveryStream_IsConstruct(x interface{}) *bool
- func DeliveryStream_IsResource(construct constructs.IConstruct) *bool
- func NewDeliveryStream_Override(d DeliveryStream, scope constructs.Construct, id *string, ...)
- func NewLambdaFunctionProcessor_Override(l LambdaFunctionProcessor, lambdaFunction awslambda.IFunction, ...)
- type DataProcessorBindOptions
- type DataProcessorConfig
- type DataProcessorIdentifier
- type DataProcessorProps
- type DeliveryStream
- type DeliveryStreamAttributes
- type DeliveryStreamProps
- type DestinationBindOptions
- type DestinationConfig
- type IDataProcessor
- type IDeliveryStream
- func DeliveryStream_FromDeliveryStreamArn(scope constructs.Construct, id *string, deliveryStreamArn *string) IDeliveryStream
- func DeliveryStream_FromDeliveryStreamAttributes(scope constructs.Construct, id *string, attrs *DeliveryStreamAttributes) IDeliveryStream
- func DeliveryStream_FromDeliveryStreamName(scope constructs.Construct, id *string, deliveryStreamName *string) IDeliveryStream
- type IDestination
- type LambdaFunctionProcessor
- type StreamEncryption
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func DeliveryStream_IsConstruct ¶
func DeliveryStream_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead
func DeliveryStream_IsResource ¶
func DeliveryStream_IsResource(construct constructs.IConstruct) *bool
Check whether the given construct is a Resource. Experimental.
func NewDeliveryStream_Override ¶
func NewDeliveryStream_Override(d DeliveryStream, scope constructs.Construct, id *string, props *DeliveryStreamProps)
Experimental.
func NewLambdaFunctionProcessor_Override ¶
func NewLambdaFunctionProcessor_Override(l LambdaFunctionProcessor, lambdaFunction awslambda.IFunction, props *DataProcessorProps)
Experimental.
Types ¶
type DataProcessorBindOptions ¶
type DataProcessorBindOptions struct {
// The IAM role assumed by Kinesis Data Firehose to write to the destination that this DataProcessor will bind to.
// Experimental.
Role awsiam.IRole `json:"role"`
}
Options when binding a DataProcessor to a delivery stream destination. Experimental.
type DataProcessorConfig ¶
type DataProcessorConfig struct {
// The key-value pair that identifies the underlying processor resource.
// Experimental.
ProcessorIdentifier *DataProcessorIdentifier `json:"processorIdentifier"`
// The type of the underlying processor resource.
//
// Must be an accepted value in `CfnDeliveryStream.ProcessorProperty.Type`.
//
// TODO: EXAMPLE
//
// See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-kinesisfirehose-deliverystream-processor.html#cfn-kinesisfirehose-deliverystream-processor-type
//
// Experimental.
ProcessorType *string `json:"processorType"`
}
The full configuration of a data processor. Experimental.
type DataProcessorIdentifier ¶
type DataProcessorIdentifier struct {
// The parameter name that corresponds to the processor resource's identifier.
//
// Must be an accepted value in `CfnDeliveryStream.ProcessoryParameterProperty.ParameterName`.
// Experimental.
ParameterName *string `json:"parameterName"`
// The identifier of the underlying processor resource.
// Experimental.
ParameterValue *string `json:"parameterValue"`
}
The key-value pair that identifies the underlying processor resource. See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-kinesisfirehose-deliverystream-processorparameter.html
Experimental.
type DataProcessorProps ¶
type DataProcessorProps struct {
// The length of time Kinesis Data Firehose will buffer incoming data before calling the processor.
//
// s
// Experimental.
BufferInterval awscdk.Duration `json:"bufferInterval"`
// The amount of incoming data Kinesis Data Firehose will buffer before calling the processor.
// Experimental.
BufferSize awscdk.Size `json:"bufferSize"`
// The number of times Kinesis Data Firehose will retry the processor invocation after a failure due to network timeout or invocation limits.
// Experimental.
Retries *float64 `json:"retries"`
}
Configure the data processor. Experimental.
type DeliveryStream ¶
type DeliveryStream interface {
awscdk.Resource
IDeliveryStream
Connections() awsec2.Connections
DeliveryStreamArn() *string
DeliveryStreamName() *string
Env() *awscdk.ResourceEnvironment
GrantPrincipal() awsiam.IPrincipal
Node() constructs.Node
PhysicalName() *string
Stack() awscdk.Stack
ApplyRemovalPolicy(policy awscdk.RemovalPolicy)
GeneratePhysicalName() *string
GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string
GetResourceNameAttribute(nameAttr *string) *string
Grant(grantee awsiam.IGrantable, actions ...*string) awsiam.Grant
GrantPutRecords(grantee awsiam.IGrantable) awsiam.Grant
Metric(metricName *string, props *awscloudwatch.MetricOptions) awscloudwatch.Metric
MetricBackupToS3Bytes(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
MetricBackupToS3DataFreshness(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
MetricBackupToS3Records(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
MetricIncomingBytes(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
MetricIncomingRecords(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
ToString() *string
}
Create a Kinesis Data Firehose delivery stream. Experimental.
func NewDeliveryStream ¶
func NewDeliveryStream(scope constructs.Construct, id *string, props *DeliveryStreamProps) DeliveryStream
Experimental.
type DeliveryStreamAttributes ¶
type DeliveryStreamAttributes struct {
// The ARN of the delivery stream.
//
// At least one of deliveryStreamArn and deliveryStreamName must be provided.
// Experimental.
DeliveryStreamArn *string `json:"deliveryStreamArn"`
// The name of the delivery stream.
//
// At least one of deliveryStreamName and deliveryStreamArn must be provided.
// Experimental.
DeliveryStreamName *string `json:"deliveryStreamName"`
// The IAM role associated with this delivery stream.
//
// Assumed by Kinesis Data Firehose to read from sources and encrypt data server-side.
// Experimental.
Role awsiam.IRole `json:"role"`
}
A full specification of a delivery stream that can be used to import it fluently into the CDK application. Experimental.
type DeliveryStreamProps ¶
type DeliveryStreamProps struct {
// The destinations that this delivery stream will deliver data to.
//
// Only a singleton array is supported at this time.
// Experimental.
Destinations *[]IDestination `json:"destinations"`
// A name for the delivery stream.
// Experimental.
DeliveryStreamName *string `json:"deliveryStreamName"`
// Indicates the type of customer master key (CMK) to use for server-side encryption, if any.
// Experimental.
Encryption StreamEncryption `json:"encryption"`
// Customer managed key to server-side encrypt data in the stream.
// Experimental.
EncryptionKey awskms.IKey `json:"encryptionKey"`
// The IAM role associated with this delivery stream.
//
// Assumed by Kinesis Data Firehose to read from sources and encrypt data server-side.
// Experimental.
Role awsiam.IRole `json:"role"`
// The Kinesis data stream to use as a source for this delivery stream.
// Experimental.
SourceStream awskinesis.IStream `json:"sourceStream"`
}
Properties for a new delivery stream. Experimental.
type DestinationBindOptions ¶
type DestinationBindOptions struct {
}
Options when binding a destination to a delivery stream. Experimental.
type DestinationConfig ¶
type DestinationConfig struct {
// Any resources that were created by the destination when binding it to the stack that must be deployed before the delivery stream is deployed.
// Experimental.
Dependables *[]constructs.IDependable `json:"dependables"`
// S3 destination configuration properties.
// Experimental.
ExtendedS3DestinationConfiguration *awskinesisfirehose.CfnDeliveryStream_ExtendedS3DestinationConfigurationProperty `json:"extendedS3DestinationConfiguration"`
}
A Kinesis Data Firehose delivery stream destination configuration. Experimental.
type IDataProcessor ¶
type IDataProcessor interface {
// Binds this processor to a destination of a delivery stream.
//
// Implementers should use this method to grant processor invocation permissions to the provided stream and return the
// necessary configuration to register as a processor.
// Experimental.
Bind(scope constructs.Construct, options *DataProcessorBindOptions) *DataProcessorConfig
// The constructor props of the DataProcessor.
// Experimental.
Props() *DataProcessorProps
}
A data processor that Kinesis Data Firehose will call to transform records before delivering data. Experimental.
type IDeliveryStream ¶
type IDeliveryStream interface {
awsec2.IConnectable
awsiam.IGrantable
awscdk.IResource
// Grant the `grantee` identity permissions to perform `actions`.
// Experimental.
Grant(grantee awsiam.IGrantable, actions ...*string) awsiam.Grant
// Grant the `grantee` identity permissions to perform `firehose:PutRecord` and `firehose:PutRecordBatch` actions on this delivery stream.
// Experimental.
GrantPutRecords(grantee awsiam.IGrantable) awsiam.Grant
// Return the given named metric for this delivery stream.
// Experimental.
Metric(metricName *string, props *awscloudwatch.MetricOptions) awscloudwatch.Metric
// Metric for the number of bytes delivered to Amazon S3 for backup over the specified time period.
//
// By default, this metric will be calculated as an average over a period of 5 minutes.
// Experimental.
MetricBackupToS3Bytes(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
// Metric for the age (from getting into Kinesis Data Firehose to now) of the oldest record in Kinesis Data Firehose.
//
// Any record older than this age has been delivered to the Amazon S3 bucket for backup.
//
// By default, this metric will be calculated as an average over a period of 5 minutes.
// Experimental.
MetricBackupToS3DataFreshness(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
// Metric for the number of records delivered to Amazon S3 for backup over the specified time period.
//
// By default, this metric will be calculated as an average over a period of 5 minutes.
// Experimental.
MetricBackupToS3Records(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
// Metric for the number of bytes ingested successfully into the delivery stream over the specified time period after throttling.
//
// By default, this metric will be calculated as an average over a period of 5 minutes.
// Experimental.
MetricIncomingBytes(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
// Metric for the number of records ingested successfully into the delivery stream over the specified time period after throttling.
//
// By default, this metric will be calculated as an average over a period of 5 minutes.
// Experimental.
MetricIncomingRecords(props *awscloudwatch.MetricOptions) awscloudwatch.Metric
// The ARN of the delivery stream.
// Experimental.
DeliveryStreamArn() *string
// The name of the delivery stream.
// Experimental.
DeliveryStreamName() *string
}
Represents a Kinesis Data Firehose delivery stream. Experimental.
func DeliveryStream_FromDeliveryStreamArn ¶
func DeliveryStream_FromDeliveryStreamArn(scope constructs.Construct, id *string, deliveryStreamArn *string) IDeliveryStream
Import an existing delivery stream from its ARN. Experimental.
func DeliveryStream_FromDeliveryStreamAttributes ¶
func DeliveryStream_FromDeliveryStreamAttributes(scope constructs.Construct, id *string, attrs *DeliveryStreamAttributes) IDeliveryStream
Import an existing delivery stream from its attributes. Experimental.
func DeliveryStream_FromDeliveryStreamName ¶
func DeliveryStream_FromDeliveryStreamName(scope constructs.Construct, id *string, deliveryStreamName *string) IDeliveryStream
Import an existing delivery stream from its name. Experimental.
type IDestination ¶
type IDestination interface {
// Binds this destination to the Kinesis Data Firehose delivery stream.
//
// Implementers should use this method to bind resources to the stack and initialize values using the provided stream.
// Experimental.
Bind(scope constructs.Construct, options *DestinationBindOptions) *DestinationConfig
}
A Kinesis Data Firehose delivery stream destination. Experimental.
type LambdaFunctionProcessor ¶
type LambdaFunctionProcessor interface {
IDataProcessor
Props() *DataProcessorProps
Bind(_scope constructs.Construct, options *DataProcessorBindOptions) *DataProcessorConfig
}
Use an AWS Lambda function to transform records. Experimental.
func NewLambdaFunctionProcessor ¶
func NewLambdaFunctionProcessor(lambdaFunction awslambda.IFunction, props *DataProcessorProps) LambdaFunctionProcessor
Experimental.
type StreamEncryption ¶
type StreamEncryption string
Options for server-side encryption of a delivery stream. Experimental.
const ( StreamEncryption_UNENCRYPTED StreamEncryption = "UNENCRYPTED" StreamEncryption_CUSTOMER_MANAGED StreamEncryption = "CUSTOMER_MANAGED" StreamEncryption_AWS_OWNED StreamEncryption = "AWS_OWNED" )
Source Files
Directories