/AWS1/CL_LMD=>CREATEFUNCTION()
¶
About CreateFunction¶
Creates a Lambda function. To create a function, you need a deployment package and an execution role. The deployment package is a .zip file archive or container image that contains your function code. The execution role grants the function permission to use Amazon Web Services, such as Amazon CloudWatch Logs for log streaming and X-Ray for request tracing.
If the deployment package is a container
image, then you set the package type to Image
. For a container image, the code property
must include the URI of a container image in the Amazon ECR registry. You do not need to specify the
handler and runtime properties.
If the deployment package is a .zip file archive, then
you set the package type to Zip
. For a .zip file archive, the code property specifies the location of
the .zip file. You must also specify the handler and runtime properties. The code in the deployment package must
be compatible with the target instruction set architecture of the function (x86-64
or
arm64
). If you do not specify the architecture, then the default value is
x86-64
.
When you create a function, Lambda provisions an instance of the function and its supporting
resources. If your function connects to a VPC, this process can take a minute or so. During this time, you can't
invoke or modify the function. The State
, StateReason
, and StateReasonCode
fields in the response from GetFunctionConfiguration indicate when the function is ready to
invoke. For more information, see Lambda function states.
A function has an unpublished version, and can have published versions and aliases. The unpublished version
changes when you update your function's code and configuration. A published version is a snapshot of your function
code and configuration that can't be changed. An alias is a named resource that maps to a version, and can be
changed to map to a different version. Use the Publish
parameter to create version 1
of
your function from its initial configuration.
The other parameters let you configure version-specific and function-level settings. You can modify version-specific settings later with UpdateFunctionConfiguration. Function-level settings apply to both the unpublished and published versions of the function, and include tags (TagResource) and per-function concurrency limits (PutFunctionConcurrency).
You can use code signing if your deployment package is a .zip file archive. To enable code signing for this function, specify the ARN of a code-signing configuration. When a user attempts to deploy a code package with UpdateFunctionCode, Lambda checks that the code package has a valid signature from a trusted publisher. The code-signing configuration includes set of signing profiles, which define the trusted publishers for this function.
If another Amazon Web Services account or an Amazon Web Service invokes your function, use AddPermission to grant permission by creating a resource-based Identity and Access Management (IAM) policy. You can grant permissions at the function level, on a version, or on an alias.
To invoke your function directly, use Invoke. To invoke your function in response to events in other Amazon Web Services, create an event source mapping (CreateEventSourceMapping), or configure a function trigger in the other service. For more information, see Invoking Lambda functions.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_FUNCTIONNAME
TYPE /AWS1/LMDFUNCTIONNAME
/AWS1/LMDFUNCTIONNAME
¶
The name or ARN of the Lambda function.
Name formats
Function name –
my-function
.Function ARN –
arn:aws:lambda:us-west-2:123456789012:function:my-function
.Partial ARN –
123456789012:function:my-function
.The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length.
IV_ROLE
TYPE /AWS1/LMDROLEARN
/AWS1/LMDROLEARN
¶
The Amazon Resource Name (ARN) of the function's execution role.
IO_CODE
TYPE REF TO /AWS1/CL_LMDFUNCTIONCODE
/AWS1/CL_LMDFUNCTIONCODE
¶
The code for the function.
Optional arguments:¶
IV_RUNTIME
TYPE /AWS1/LMDRUNTIME
/AWS1/LMDRUNTIME
¶
The identifier of the function's runtime. Runtime is required if the deployment package is a .zip file archive.
The following list includes deprecated runtimes. For more information, see Runtime deprecation policy.
IV_HANDLER
TYPE /AWS1/LMDHANDLER
/AWS1/LMDHANDLER
¶
The name of the method within your code that Lambda calls to run your function. Handler is required if the deployment package is a .zip file archive. The format includes the file name. It can also include namespaces and other qualifiers, depending on the runtime. For more information, see Lambda programming model.
IV_DESCRIPTION
TYPE /AWS1/LMDDESCRIPTION
/AWS1/LMDDESCRIPTION
¶
A description of the function.
IV_TIMEOUT
TYPE /AWS1/LMDTIMEOUT
/AWS1/LMDTIMEOUT
¶
The amount of time (in seconds) that Lambda allows a function to run before stopping it. The default is 3 seconds. The maximum allowed value is 900 seconds. For more information, see Lambda execution environment.
IV_MEMORYSIZE
TYPE /AWS1/LMDMEMORYSIZE
/AWS1/LMDMEMORYSIZE
¶
The amount of memory available to the function at runtime. Increasing the function memory also increases its CPU allocation. The default value is 128 MB. The value can be any multiple of 1 MB.
IV_PUBLISH
TYPE /AWS1/LMDBOOLEAN
/AWS1/LMDBOOLEAN
¶
Set to true to publish the first version of the function during creation.
IO_VPCCONFIG
TYPE REF TO /AWS1/CL_LMDVPCCONFIG
/AWS1/CL_LMDVPCCONFIG
¶
For network connectivity to Amazon Web Services resources in a VPC, specify a list of security groups and subnets in the VPC. When you connect a function to a VPC, it can access resources and the internet only through that VPC. For more information, see Configuring a Lambda function to access resources in a VPC.
IV_PACKAGETYPE
TYPE /AWS1/LMDPACKAGETYPE
/AWS1/LMDPACKAGETYPE
¶
The type of deployment package. Set to
Image
for container image and set toZip
for .zip file archive.
IO_DEADLETTERCONFIG
TYPE REF TO /AWS1/CL_LMDDEADLETTERCONFIG
/AWS1/CL_LMDDEADLETTERCONFIG
¶
A dead-letter queue configuration that specifies the queue or topic where Lambda sends asynchronous events when they fail processing. For more information, see Dead-letter queues.
IO_ENVIRONMENT
TYPE REF TO /AWS1/CL_LMDENVIRONMENT
/AWS1/CL_LMDENVIRONMENT
¶
Environment variables that are accessible from function code during execution.
IV_KMSKEYARN
TYPE /AWS1/LMDKMSKEYARN
/AWS1/LMDKMSKEYARN
¶
The ARN of the Key Management Service (KMS) customer managed key that's used to encrypt your function's environment variables. When Lambda SnapStart is activated, Lambda also uses this key is to encrypt your function's snapshot. If you deploy your function using a container image, Lambda also uses this key to encrypt your function when it's deployed. Note that this is not the same key that's used to protect your container image in the Amazon Elastic Container Registry (Amazon ECR). If you don't provide a customer managed key, Lambda uses a default service key.
IO_TRACINGCONFIG
TYPE REF TO /AWS1/CL_LMDTRACINGCONFIG
/AWS1/CL_LMDTRACINGCONFIG
¶
Set
Mode
toActive
to sample and trace a subset of incoming requests with X-Ray.
IT_TAGS
TYPE /AWS1/CL_LMDTAGS_W=>TT_TAGS
TT_TAGS
¶
A list of tags to apply to the function.
IT_LAYERS
TYPE /AWS1/CL_LMDLAYERLIST_W=>TT_LAYERLIST
TT_LAYERLIST
¶
A list of function layers to add to the function's execution environment. Specify each layer by its ARN, including the version.
IT_FILESYSTEMCONFIGS
TYPE /AWS1/CL_LMDFILESYSTEMCONFIG=>TT_FILESYSTEMCONFIGLIST
TT_FILESYSTEMCONFIGLIST
¶
Connection settings for an Amazon EFS file system.
IO_IMAGECONFIG
TYPE REF TO /AWS1/CL_LMDIMAGECONFIG
/AWS1/CL_LMDIMAGECONFIG
¶
Container image configuration values that override the values in the container image Dockerfile.
IV_CODESIGNINGCONFIGARN
TYPE /AWS1/LMDCODESIGNINGCONFIGARN
/AWS1/LMDCODESIGNINGCONFIGARN
¶
To enable code signing for this function, specify the ARN of a code-signing configuration. A code-signing configuration includes a set of signing profiles, which define the trusted publishers for this function.
IT_ARCHITECTURES
TYPE /AWS1/CL_LMDARCHITECTURESLST_W=>TT_ARCHITECTURESLIST
TT_ARCHITECTURESLIST
¶
The instruction set architecture that the function supports. Enter a string array with one of the valid values (arm64 or x86_64). The default value is
x86_64
.
IO_EPHEMERALSTORAGE
TYPE REF TO /AWS1/CL_LMDEPHEMERALSTORAGE
/AWS1/CL_LMDEPHEMERALSTORAGE
¶
The size of the function's
/tmp
directory in MB. The default value is 512, but can be any whole number between 512 and 10,240 MB. For more information, see Configuring ephemeral storage (console).
IO_SNAPSTART
TYPE REF TO /AWS1/CL_LMDSNAPSTART
/AWS1/CL_LMDSNAPSTART
¶
The function's SnapStart setting.
IO_LOGGINGCONFIG
TYPE REF TO /AWS1/CL_LMDLOGGINGCONFIG
/AWS1/CL_LMDLOGGINGCONFIG
¶
The function's Amazon CloudWatch Logs configuration settings.