KmsEncryptionState - Amazon Verified Permissions
ContentsSee Also
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

KmsEncryptionState

A structure that contains the Amazon KMS encryption configuration for the policy store. The encryption state shows what customer-managed KMS key is being used to encrypt all resources within the policy store, and any user-defined context key-value pairs added during encryption processes.

This data type is used as a field that is part of the EncryptionState type.

Contents

Note

In the following list, the required parameters are described first.

encryptionContext

User-defined, additional context added to encryption processes.

Type: String to string map

Map Entries: Minimum number of 0 items. Maximum number of 8192 items.

Key Length Constraints: Minimum length of 1.

Value Length Constraints: Minimum length of 1.

Required: Yes

key

The customer-managed KMS key Amazon Resource Name (ARN) being used for encryption processes.

Type: String

Pattern: [a-zA-Z0-9:/_-]+

Required: Yes

See Also

For more information about using this API in one of the language-specific Amazon SDKs, see the following: