Reputation: 1329
aws-cdk kms multi-region key. What constructors use to setup regions?
Using AWS CDK we could create multi-region KMS keys by
- Creating the principal key(pk) with the level 1 constructor CfnKey
- Creating the replica of the principal key using the level 1 constructor CfnReplicaKey, which takes as one of its parameters the pk_arn
Those constructors however do not specify the regions, where I want to make those keys available.
My question is:
What aws-CDK constructor or pattern should I use to make the replicas available in certain regions, using aws-CDK?
Thanks in advance
Upvotes: 0
Views: 2028
Answers (1)
Reputation: 25639
CfnReplicaKey will be created in the parent stack's region (see a CloudFormation example in the docs).
For the CDK (and CloudFormation), the unit of deployment is [Edit:] the Stack, which is tied to one environment:
Each Stack instance in your AWS CDK app is explicitly or implicitly associated with an environment (env). An environment is the target AWS account and region into which the stack is intended to be deployed.
This logic applies generally to all CDK resources - the account/region is defined at the stack level, not the construct level. Stacks can be replicated across regions and accounts in several ways, including directly in a CDK app:
# replicate the stack in several regions using CDK
app = core.App()
for region in ["us-east-1". "us-west-1", "us-central-1", "eu-west-1"]:
MyStack(app, "MyStack_" + region, env=Environment(
region=region,
account="555599931100"
))
Upvotes: 1
Related Questions
- How to read parameter store from a different region in CDK?
- AWS regional service availability
- AWS KMS Multi region
- AWS Cross Region replication and AWS KMS Customer Managed Keys
- Deploy AWS-CDK stack on other Regions
- How do I configure CDK to deploy to the correct region?
- aws-cdk documentation - elbv2
- AWS Default Region?
- withRegion(Regions) of AmazonS3ClientBuilder takes what parameter?
- How does the AWS java SDK determine it's default region