AWS::MediaPackage::OriginEndpoint SpekeKeyProvider

The Amazon Resource Name (ARN) for the certificate that you imported to Amazon Certificate Manager to add content key encryption to this endpoint. For this feature to work, your DRM key provider must support content key encryption.

Required: No

Type: String

Update requires: No interruption

Use encryptionContractConfiguration to configure one or more content encryption keys for your endpoints that use SPEKE Version 2.0. The encryption contract defines which content keys are used to encrypt the audio and video tracks in your stream. To configure the encryption contract, specify which audio and video encryption presets to use.

Required: No

Type: EncryptionContractConfiguration

Update requires: No interruption

Unique identifier for this endpoint, as it is configured in the key provider service.

Required: Yes

Type: String

Update requires: No interruption

The ARN for the IAM role that's granted by the key provider to provide access to the key provider API. This role must have a trust policy that allows AWS Elemental MediaPackage to assume the role, and it must have a sufficient permissions policy to allow access to the specific key retrieval URL. Valid format: arn:aws:iam::{accountID}:role/{name}

Required: Yes

Type: String

Update requires: No interruption

List of unique identifiers for the DRM systems to use, as defined in the CPIX specification.

Required: Yes

Type: Array of String

Update requires: No interruption

URL for the key provider’s key retrieval API endpoint. Must start with https://.

Required: Yes

Type: String

Update requires: No interruption