pulumi-aws-kotlin/com.pulumi.aws.lambda.kotlin/CodeSigningConfigArgs

CodeSigningConfigArgs

data class CodeSigningConfigArgs(val allowedPublishers: Output<CodeSigningConfigAllowedPublishersArgs>? = null, val description: Output<String>? = null, val policies: Output<CodeSigningConfigPoliciesArgs>? = null) : ConvertibleToJava<CodeSigningConfigArgs>

Provides a Lambda Code Signing Config resource. A code signing configuration defines a list of allowed signing profiles and defines the code-signing validation policy (action to be taken if deployment validation checks fail). For information about Lambda code signing configurations and how to use them, see configuring code signing for Lambda functions

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const newCsc = new aws.lambda.CodeSigningConfig("new_csc", {
    allowedPublishers: {
        signingProfileVersionArns: [
            example1.arn,
            example2.arn,
        ],
    },
    policies: {
        untrustedArtifactOnDeployment: "Warn",
    },
    description: "My awesome code signing config.",
});
Content copied to clipboard
import pulumi
import pulumi_aws as aws
new_csc = aws.lambda_.CodeSigningConfig("new_csc",
    allowed_publishers=aws.lambda_.CodeSigningConfigAllowedPublishersArgs(
        signing_profile_version_arns=[
            example1["arn"],
            example2["arn"],
        ],
    ),
    policies=aws.lambda_.CodeSigningConfigPoliciesArgs(
        untrusted_artifact_on_deployment="Warn",
    ),
    description="My awesome code signing config.")
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
    var newCsc = new Aws.Lambda.CodeSigningConfig("new_csc", new()
    {
        AllowedPublishers = new Aws.Lambda.Inputs.CodeSigningConfigAllowedPublishersArgs
        {
            SigningProfileVersionArns = new[]
            {
                example1.Arn,
                example2.Arn,
            },
        },
        Policies = new Aws.Lambda.Inputs.CodeSigningConfigPoliciesArgs
        {
            UntrustedArtifactOnDeployment = "Warn",
        },
        Description = "My awesome code signing config.",
    });
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/lambda"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := lambda.NewCodeSigningConfig(ctx, "new_csc", &lambda.CodeSigningConfigArgs{
			AllowedPublishers: &lambda.CodeSigningConfigAllowedPublishersArgs{
				SigningProfileVersionArns: pulumi.StringArray{
					example1.Arn,
					example2.Arn,
				},
			},
			Policies: &lambda.CodeSigningConfigPoliciesArgs{
				UntrustedArtifactOnDeployment: pulumi.String("Warn"),
			},
			Description: pulumi.String("My awesome code signing config."),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.lambda.CodeSigningConfig;
import com.pulumi.aws.lambda.CodeSigningConfigArgs;
import com.pulumi.aws.lambda.inputs.CodeSigningConfigAllowedPublishersArgs;
import com.pulumi.aws.lambda.inputs.CodeSigningConfigPoliciesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var newCsc = new CodeSigningConfig("newCsc", CodeSigningConfigArgs.builder()
            .allowedPublishers(CodeSigningConfigAllowedPublishersArgs.builder()
                .signingProfileVersionArns(
                    example1.arn(),
                    example2.arn())
                .build())
            .policies(CodeSigningConfigPoliciesArgs.builder()
                .untrustedArtifactOnDeployment("Warn")
                .build())
            .description("My awesome code signing config.")
            .build());
    }
}
Content copied to clipboard
resources:
  newCsc:
    type: aws:lambda:CodeSigningConfig
    name: new_csc
    properties:
      allowedPublishers:
        signingProfileVersionArns:
          - ${example1.arn}
          - ${example2.arn}
      policies:
        untrustedArtifactOnDeployment: Warn
      description: My awesome code signing config.
Content copied to clipboard

Import

Using pulumi import, import Code Signing Configs using their ARN. For example:

$ pulumi import aws:lambda/codeSigningConfig:CodeSigningConfig imported_csc arn:aws:lambda:us-west-2:123456789012:code-signing-config:csc-0f6c334abcdea4d8b
Content copied to clipboard

Constructors

Link copied to clipboard
fun CodeSigningConfigArgs(allowedPublishers: Output<CodeSigningConfigAllowedPublishersArgs>? = null, description: Output<String>? = null, policies: Output<CodeSigningConfigPoliciesArgs>? = null)

Functions

Link copied to clipboard
open override fun toJava(): CodeSigningConfigArgs

Properties

Link copied to clipboard
val allowedPublishers: Output<CodeSigningConfigAllowedPublishersArgs>? = null

A configuration block of allowed publishers as signing profiles for this code signing configuration. Detailed below.

Link copied to clipboard
val description: Output<String>? = null

Descriptive name for this code signing configuration.

Link copied to clipboard
val policies: Output<CodeSigningConfigPoliciesArgs>? = null

A configuration block of code signing policies that define the actions to take if the validation checks fail. Detailed below.