Framework
Provides an AWS Backup Framework resource.
Note: For the Deployment Status of the Framework to be successful, please turn on resource tracking to enable AWS Config recording to track configuration changes of your backup resources. This can be done from the AWS Console.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.backup.Framework("Example", {
name: "exampleFramework",
description: "this is an example framework",
controls: [
{
name: "BACKUP_RECOVERY_POINT_MINIMUM_RETENTION_CHECK",
inputParameters: [{
name: "requiredRetentionDays",
value: "35",
}],
},
{
name: "BACKUP_PLAN_MIN_FREQUENCY_AND_MIN_RETENTION_CHECK",
inputParameters: [
{
name: "requiredFrequencyUnit",
value: "hours",
},
{
name: "requiredRetentionDays",
value: "35",
},
{
name: "requiredFrequencyValue",
value: "1",
},
],
},
{
name: "BACKUP_RECOVERY_POINT_ENCRYPTED",
},
{
name: "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_PLAN",
scope: {
complianceResourceTypes: ["EBS"],
},
},
{
name: "BACKUP_RECOVERY_POINT_MANUAL_DELETION_DISABLED",
},
{
name: "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_VAULT_LOCK",
inputParameters: [
{
name: "maxRetentionDays",
value: "100",
},
{
name: "minRetentionDays",
value: "1",
},
],
scope: {
complianceResourceTypes: ["EBS"],
},
},
{
name: "BACKUP_LAST_RECOVERY_POINT_CREATED",
inputParameters: [
{
name: "recoveryPointAgeUnit",
value: "days",
},
{
name: "recoveryPointAgeValue",
value: "1",
},
],
scope: {
complianceResourceTypes: ["EBS"],
},
},
],
tags: {
Name: "Example Framework",
},
});Content copied to clipboard
import pulumi
import pulumi_aws as aws
example = aws.backup.Framework("Example",
name="exampleFramework",
description="this is an example framework",
controls=[
{
"name": "BACKUP_RECOVERY_POINT_MINIMUM_RETENTION_CHECK",
"input_parameters": [{
"name": "requiredRetentionDays",
"value": "35",
}],
},
{
"name": "BACKUP_PLAN_MIN_FREQUENCY_AND_MIN_RETENTION_CHECK",
"input_parameters": [
{
"name": "requiredFrequencyUnit",
"value": "hours",
},
{
"name": "requiredRetentionDays",
"value": "35",
},
{
"name": "requiredFrequencyValue",
"value": "1",
},
],
},
{
"name": "BACKUP_RECOVERY_POINT_ENCRYPTED",
},
{
"name": "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_PLAN",
"scope": {
"compliance_resource_types": ["EBS"],
},
},
{
"name": "BACKUP_RECOVERY_POINT_MANUAL_DELETION_DISABLED",
},
{
"name": "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_VAULT_LOCK",
"input_parameters": [
{
"name": "maxRetentionDays",
"value": "100",
},
{
"name": "minRetentionDays",
"value": "1",
},
],
"scope": {
"compliance_resource_types": ["EBS"],
},
},
{
"name": "BACKUP_LAST_RECOVERY_POINT_CREATED",
"input_parameters": [
{
"name": "recoveryPointAgeUnit",
"value": "days",
},
{
"name": "recoveryPointAgeValue",
"value": "1",
},
],
"scope": {
"compliance_resource_types": ["EBS"],
},
},
],
tags={
"Name": "Example Framework",
})Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Backup.Framework("Example", new()
{
Name = "exampleFramework",
Description = "this is an example framework",
Controls = new[]
{
new Aws.Backup.Inputs.FrameworkControlArgs
{
Name = "BACKUP_RECOVERY_POINT_MINIMUM_RETENTION_CHECK",
InputParameters = new[]
{
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "requiredRetentionDays",
Value = "35",
},
},
},
new Aws.Backup.Inputs.FrameworkControlArgs
{
Name = "BACKUP_PLAN_MIN_FREQUENCY_AND_MIN_RETENTION_CHECK",
InputParameters = new[]
{
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "requiredFrequencyUnit",
Value = "hours",
},
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "requiredRetentionDays",
Value = "35",
},
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "requiredFrequencyValue",
Value = "1",
},
},
},
new Aws.Backup.Inputs.FrameworkControlArgs
{
Name = "BACKUP_RECOVERY_POINT_ENCRYPTED",
},
new Aws.Backup.Inputs.FrameworkControlArgs
{
Name = "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_PLAN",
Scope = new Aws.Backup.Inputs.FrameworkControlScopeArgs
{
ComplianceResourceTypes = new[]
{
"EBS",
},
},
},
new Aws.Backup.Inputs.FrameworkControlArgs
{
Name = "BACKUP_RECOVERY_POINT_MANUAL_DELETION_DISABLED",
},
new Aws.Backup.Inputs.FrameworkControlArgs
{
Name = "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_VAULT_LOCK",
InputParameters = new[]
{
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "maxRetentionDays",
Value = "100",
},
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "minRetentionDays",
Value = "1",
},
},
Scope = new Aws.Backup.Inputs.FrameworkControlScopeArgs
{
ComplianceResourceTypes = new[]
{
"EBS",
},
},
},
new Aws.Backup.Inputs.FrameworkControlArgs
{
Name = "BACKUP_LAST_RECOVERY_POINT_CREATED",
InputParameters = new[]
{
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "recoveryPointAgeUnit",
Value = "days",
},
new Aws.Backup.Inputs.FrameworkControlInputParameterArgs
{
Name = "recoveryPointAgeValue",
Value = "1",
},
},
Scope = new Aws.Backup.Inputs.FrameworkControlScopeArgs
{
ComplianceResourceTypes = new[]
{
"EBS",
},
},
},
},
Tags =
{
{ "Name", "Example Framework" },
},
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/backup"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := backup.NewFramework(ctx, "Example", &backup.FrameworkArgs{
Name: pulumi.String("exampleFramework"),
Description: pulumi.String("this is an example framework"),
Controls: backup.FrameworkControlArray{
&backup.FrameworkControlArgs{
Name: pulumi.String("BACKUP_RECOVERY_POINT_MINIMUM_RETENTION_CHECK"),
InputParameters: backup.FrameworkControlInputParameterArray{
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("requiredRetentionDays"),
Value: pulumi.String("35"),
},
},
},
&backup.FrameworkControlArgs{
Name: pulumi.String("BACKUP_PLAN_MIN_FREQUENCY_AND_MIN_RETENTION_CHECK"),
InputParameters: backup.FrameworkControlInputParameterArray{
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("requiredFrequencyUnit"),
Value: pulumi.String("hours"),
},
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("requiredRetentionDays"),
Value: pulumi.String("35"),
},
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("requiredFrequencyValue"),
Value: pulumi.String("1"),
},
},
},
&backup.FrameworkControlArgs{
Name: pulumi.String("BACKUP_RECOVERY_POINT_ENCRYPTED"),
},
&backup.FrameworkControlArgs{
Name: pulumi.String("BACKUP_RESOURCES_PROTECTED_BY_BACKUP_PLAN"),
Scope: &backup.FrameworkControlScopeArgs{
ComplianceResourceTypes: pulumi.StringArray{
pulumi.String("EBS"),
},
},
},
&backup.FrameworkControlArgs{
Name: pulumi.String("BACKUP_RECOVERY_POINT_MANUAL_DELETION_DISABLED"),
},
&backup.FrameworkControlArgs{
Name: pulumi.String("BACKUP_RESOURCES_PROTECTED_BY_BACKUP_VAULT_LOCK"),
InputParameters: backup.FrameworkControlInputParameterArray{
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("maxRetentionDays"),
Value: pulumi.String("100"),
},
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("minRetentionDays"),
Value: pulumi.String("1"),
},
},
Scope: &backup.FrameworkControlScopeArgs{
ComplianceResourceTypes: pulumi.StringArray{
pulumi.String("EBS"),
},
},
},
&backup.FrameworkControlArgs{
Name: pulumi.String("BACKUP_LAST_RECOVERY_POINT_CREATED"),
InputParameters: backup.FrameworkControlInputParameterArray{
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("recoveryPointAgeUnit"),
Value: pulumi.String("days"),
},
&backup.FrameworkControlInputParameterArgs{
Name: pulumi.String("recoveryPointAgeValue"),
Value: pulumi.String("1"),
},
},
Scope: &backup.FrameworkControlScopeArgs{
ComplianceResourceTypes: pulumi.StringArray{
pulumi.String("EBS"),
},
},
},
},
Tags: pulumi.StringMap{
"Name": pulumi.String("Example Framework"),
},
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.backup.Framework;
import com.pulumi.aws.backup.FrameworkArgs;
import com.pulumi.aws.backup.inputs.FrameworkControlArgs;
import com.pulumi.aws.backup.inputs.FrameworkControlScopeArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new Framework("example", FrameworkArgs.builder()
.name("exampleFramework")
.description("this is an example framework")
.controls(
FrameworkControlArgs.builder()
.name("BACKUP_RECOVERY_POINT_MINIMUM_RETENTION_CHECK")
.inputParameters(FrameworkControlInputParameterArgs.builder()
.name("requiredRetentionDays")
.value("35")
.build())
.build(),
FrameworkControlArgs.builder()
.name("BACKUP_PLAN_MIN_FREQUENCY_AND_MIN_RETENTION_CHECK")
.inputParameters(
FrameworkControlInputParameterArgs.builder()
.name("requiredFrequencyUnit")
.value("hours")
.build(),
FrameworkControlInputParameterArgs.builder()
.name("requiredRetentionDays")
.value("35")
.build(),
FrameworkControlInputParameterArgs.builder()
.name("requiredFrequencyValue")
.value("1")
.build())
.build(),
FrameworkControlArgs.builder()
.name("BACKUP_RECOVERY_POINT_ENCRYPTED")
.build(),
FrameworkControlArgs.builder()
.name("BACKUP_RESOURCES_PROTECTED_BY_BACKUP_PLAN")
.scope(FrameworkControlScopeArgs.builder()
.complianceResourceTypes("EBS")
.build())
.build(),
FrameworkControlArgs.builder()
.name("BACKUP_RECOVERY_POINT_MANUAL_DELETION_DISABLED")
.build(),
FrameworkControlArgs.builder()
.name("BACKUP_RESOURCES_PROTECTED_BY_BACKUP_VAULT_LOCK")
.inputParameters(
FrameworkControlInputParameterArgs.builder()
.name("maxRetentionDays")
.value("100")
.build(),
FrameworkControlInputParameterArgs.builder()
.name("minRetentionDays")
.value("1")
.build())
.scope(FrameworkControlScopeArgs.builder()
.complianceResourceTypes("EBS")
.build())
.build(),
FrameworkControlArgs.builder()
.name("BACKUP_LAST_RECOVERY_POINT_CREATED")
.inputParameters(
FrameworkControlInputParameterArgs.builder()
.name("recoveryPointAgeUnit")
.value("days")
.build(),
FrameworkControlInputParameterArgs.builder()
.name("recoveryPointAgeValue")
.value("1")
.build())
.scope(FrameworkControlScopeArgs.builder()
.complianceResourceTypes("EBS")
.build())
.build())
.tags(Map.of("Name", "Example Framework"))
.build());
}
}Content copied to clipboard
resources:
example:
type: aws:backup:Framework
name: Example
properties:
name: exampleFramework
description: this is an example framework
controls:
- name: BACKUP_RECOVERY_POINT_MINIMUM_RETENTION_CHECK
inputParameters:
- name: requiredRetentionDays
value: '35'
- name: BACKUP_PLAN_MIN_FREQUENCY_AND_MIN_RETENTION_CHECK
inputParameters:
- name: requiredFrequencyUnit
value: hours
- name: requiredRetentionDays
value: '35'
- name: requiredFrequencyValue
value: '1'
- name: BACKUP_RECOVERY_POINT_ENCRYPTED
- name: BACKUP_RESOURCES_PROTECTED_BY_BACKUP_PLAN
scope:
complianceResourceTypes:
- EBS
- name: BACKUP_RECOVERY_POINT_MANUAL_DELETION_DISABLED
- name: BACKUP_RESOURCES_PROTECTED_BY_BACKUP_VAULT_LOCK
inputParameters:
- name: maxRetentionDays
value: '100'
- name: minRetentionDays
value: '1'
scope:
complianceResourceTypes:
- EBS
- name: BACKUP_LAST_RECOVERY_POINT_CREATED
inputParameters:
- name: recoveryPointAgeUnit
value: days
- name: recoveryPointAgeValue
value: '1'
scope:
complianceResourceTypes:
- EBS
tags:
Name: Example FrameworkContent copied to clipboard
Import
Using pulumi import, import Backup Framework using the id which corresponds to the name of the Backup Framework. For example:
$ pulumi import aws:backup/framework:Framework test <id>Content copied to clipboard
Properties
Link copied to clipboard
One or more control blocks that make up the framework. Each control in the list has a name, input parameters, and scope. Detailed below.
Link copied to clipboard
The date and time that a framework is created, in Unix format and Coordinated Universal Time (UTC).
Link copied to clipboard
The deployment status of a framework. The statuses are: CREATE_IN_PROGRESS | UPDATE_IN_PROGRESS | DELETE_IN_PROGRESS | COMPLETED | FAILED.
Link copied to clipboard
The description of the framework with a maximum of 1,024 characters
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
A framework consists of one or more controls. Each control governs a resource, such as backup plans, backup selections, backup vaults, or recovery points. You can also turn AWS Config recording on or off for each resource. For more information refer to the AWS documentation for Framework Status