pulumi-aws-kotlin/com.pulumi.aws.lambda.kotlin/CodeSigningConfig

CodeSigningConfig

class CodeSigningConfig : KotlinCustomResource

Provides a Lambda Code Signing Config resource. A code signing configuration defines a list of allowed signing profiles and defines the code-signing validation policy (action to be taken if deployment validation checks fail). For information about Lambda code signing configurations and how to use them, see configuring code signing for Lambda functions

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const newCsc = new aws.lambda.CodeSigningConfig("new_csc", {
    allowedPublishers: {
        signingProfileVersionArns: [
            example1.arn,
            example2.arn,
        ],
    },
    policies: {
        untrustedArtifactOnDeployment: "Warn",
    },
    description: "My awesome code signing config.",
    tags: {
        Name: "dynamodb",
    },
});
Content copied to clipboard
import pulumi
import pulumi_aws as aws
new_csc = aws.lambda_.CodeSigningConfig("new_csc",
    allowed_publishers={
        "signing_profile_version_arns": [
            example1["arn"],
            example2["arn"],
        ],
    },
    policies={
        "untrusted_artifact_on_deployment": "Warn",
    },
    description="My awesome code signing config.",
    tags={
        "Name": "dynamodb",
    })
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
    var newCsc = new Aws.Lambda.CodeSigningConfig("new_csc", new()
    {
        AllowedPublishers = new Aws.Lambda.Inputs.CodeSigningConfigAllowedPublishersArgs
        {
            SigningProfileVersionArns = new[]
            {
                example1.Arn,
                example2.Arn,
            },
        },
        Policies = new Aws.Lambda.Inputs.CodeSigningConfigPoliciesArgs
        {
            UntrustedArtifactOnDeployment = "Warn",
        },
        Description = "My awesome code signing config.",
        Tags =
        {
            { "Name", "dynamodb" },
        },
    });
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/lambda"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := lambda.NewCodeSigningConfig(ctx, "new_csc", &lambda.CodeSigningConfigArgs{
			AllowedPublishers: &lambda.CodeSigningConfigAllowedPublishersArgs{
				SigningProfileVersionArns: pulumi.StringArray{
					example1.Arn,
					example2.Arn,
				},
			},
			Policies: &lambda.CodeSigningConfigPoliciesArgs{
				UntrustedArtifactOnDeployment: pulumi.String("Warn"),
			},
			Description: pulumi.String("My awesome code signing config."),
			Tags: pulumi.StringMap{
				"Name": pulumi.String("dynamodb"),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.lambda.CodeSigningConfig;
import com.pulumi.aws.lambda.CodeSigningConfigArgs;
import com.pulumi.aws.lambda.inputs.CodeSigningConfigAllowedPublishersArgs;
import com.pulumi.aws.lambda.inputs.CodeSigningConfigPoliciesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var newCsc = new CodeSigningConfig("newCsc", CodeSigningConfigArgs.builder()
            .allowedPublishers(CodeSigningConfigAllowedPublishersArgs.builder()
                .signingProfileVersionArns(
                    example1.arn(),
                    example2.arn())
                .build())
            .policies(CodeSigningConfigPoliciesArgs.builder()
                .untrustedArtifactOnDeployment("Warn")
                .build())
            .description("My awesome code signing config.")
            .tags(Map.of("Name", "dynamodb"))
            .build());
    }
}
Content copied to clipboard
resources:
  newCsc:
    type: aws:lambda:CodeSigningConfig
    name: new_csc
    properties:
      allowedPublishers:
        signingProfileVersionArns:
          - ${example1.arn}
          - ${example2.arn}
      policies:
        untrustedArtifactOnDeployment: Warn
      description: My awesome code signing config.
      tags:
        Name: dynamodb
Content copied to clipboard

Import

Using pulumi import, import Code Signing Configs using their ARN. For example:

$ pulumi import aws:lambda/codeSigningConfig:CodeSigningConfig imported_csc arn:aws:lambda:us-west-2:123456789012:code-signing-config:csc-0f6c334abcdea4d8b
Content copied to clipboard

Properties

Link copied to clipboard
val allowedPublishers: Output<CodeSigningConfigAllowedPublishers>

A configuration block of allowed publishers as signing profiles for this code signing configuration. Detailed below.

Link copied to clipboard
val arn: Output<String>

The Amazon Resource Name (ARN) of the code signing configuration.

Link copied to clipboard
val configId: Output<String>

Unique identifier for the code signing configuration.

Link copied to clipboard
val description: Output<String>?

Descriptive name for this code signing configuration.

Link copied to clipboard
val id: Output<String>
Link copied to clipboard
val lastModified: Output<String>

The date and time that the code signing configuration was last modified.

Link copied to clipboard
val policies: Output<CodeSigningConfigPolicies>

A configuration block of code signing policies that define the actions to take if the validation checks fail. Detailed below.

Link copied to clipboard
val pulumiChildResources: Set<KotlinResource>
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
val tags: Output<Map<String, String>>?

Map of tags to assign to the object. If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

Link copied to clipboard
val tagsAll: Output<Map<String, String>>

A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

Link copied to clipboard
val urn: Output<String>