@Generated(value="jsii-pacmak/1.67.0 (build 2c027f5)", date="2022-09-19T20:26:38.463Z") @Stability(value=Stable) public interface InterfaceVpcEndpointOptions extends software.amazon.jsii.JsiiSerializable
Example:
// Add gateway endpoints when creating the VPC
Vpc vpc = Vpc.Builder.create(this, "MyVpc")
.gatewayEndpoints(Map.of(
"S3", GatewayVpcEndpointOptions.builder()
.service(GatewayVpcEndpointAwsService.S3)
.build()))
.build();
// Alternatively gateway endpoints can be added on the VPC
GatewayVpcEndpoint dynamoDbEndpoint = vpc.addGatewayEndpoint("DynamoDbEndpoint", GatewayVpcEndpointOptions.builder()
.service(GatewayVpcEndpointAwsService.DYNAMODB)
.build());
// This allows to customize the endpoint policy
dynamoDbEndpoint.addToPolicy(
PolicyStatement.Builder.create() // Restrict to listing and describing tables
.principals(List.of(new AnyPrincipal()))
.actions(List.of("dynamodb:DescribeTable", "dynamodb:ListTables"))
.resources(List.of("*")).build());
// Add an interface endpoint
vpc.addInterfaceEndpoint("EcrDockerEndpoint", InterfaceVpcEndpointOptions.builder()
.service(InterfaceVpcEndpointAwsService.ECR_DOCKER)
.build());
| Modifier and Type | Interface and Description |
|---|---|
static class |
InterfaceVpcEndpointOptions.Builder
A builder for
InterfaceVpcEndpointOptions |
static class |
InterfaceVpcEndpointOptions.Jsii$Proxy
An implementation for
InterfaceVpcEndpointOptions |
| Modifier and Type | Method and Description |
|---|---|
static InterfaceVpcEndpointOptions.Builder |
builder() |
default Boolean |
getLookupSupportedAzs()
Limit to only those availability zones where the endpoint service can be created.
|
default Boolean |
getOpen()
Whether to automatically allow VPC traffic to the endpoint.
|
default Boolean |
getPrivateDnsEnabled()
Whether to associate a private hosted zone with the specified VPC.
|
default List<ISecurityGroup> |
getSecurityGroups()
The security groups to associate with this interface VPC endpoint.
|
IInterfaceVpcEndpointService |
getService()
The service to use for this interface VPC endpoint.
|
default SubnetSelection |
getSubnets()
The subnets in which to create an endpoint network interface.
|
@Stability(value=Stable) @NotNull IInterfaceVpcEndpointService getService()
@Stability(value=Stable) @Nullable default Boolean getLookupSupportedAzs()
Setting this to 'true' requires a lookup to be performed at synthesis time. Account and region must be set on the containing stack for this to work.
Default: false
@Stability(value=Stable) @Nullable default Boolean getOpen()
If enabled, all traffic to the endpoint from within the VPC will be automatically allowed. This is done based on the VPC's CIDR range.
Default: true
@Stability(value=Stable) @Nullable default Boolean getPrivateDnsEnabled()
This allows you to make requests to the service using its default DNS hostname.
Default: set by the instance of IInterfaceVpcEndpointService, or true if not defined by the instance of IInterfaceVpcEndpointService
@Stability(value=Stable) @Nullable default List<ISecurityGroup> getSecurityGroups()
Default: - a new security group is created
@Stability(value=Stable) @Nullable default SubnetSelection getSubnets()
At most one per availability zone.
Default: - private subnets
@Stability(value=Stable) static InterfaceVpcEndpointOptions.Builder builder()
Copyright © 2022. All rights reserved.