Docs
PackagesTry AWS Native preview for resources not in the classic version.
AWS Classic v6.42.0 published on Wednesday, Jun 26, 2024 by Pulumi
aws.msk.Cluster
Explore with Pulumi AI
Try AWS Native preview for resources not in the classic version.
AWS Classic v6.42.0 published on Wednesday, Jun 26, 2024 by Pulumi
Manages an Amazon MSK cluster.
Note: This resource manages provisioned clusters. To manage a serverless Amazon MSK cluster, use the
aws.msk.ServerlessClusterresource.
Example Usage
Basic
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const vpc = new aws.ec2.Vpc("vpc", {cidrBlock: "192.168.0.0/22"});
const azs = aws.getAvailabilityZones({
state: "available",
});
const subnetAz1 = new aws.ec2.Subnet("subnet_az1", {
availabilityZone: azs.then(azs => azs.names?.[0]),
cidrBlock: "192.168.0.0/24",
vpcId: vpc.id,
});
const subnetAz2 = new aws.ec2.Subnet("subnet_az2", {
availabilityZone: azs.then(azs => azs.names?.[1]),
cidrBlock: "192.168.1.0/24",
vpcId: vpc.id,
});
const subnetAz3 = new aws.ec2.Subnet("subnet_az3", {
availabilityZone: azs.then(azs => azs.names?.[2]),
cidrBlock: "192.168.2.0/24",
vpcId: vpc.id,
});
const sg = new aws.ec2.SecurityGroup("sg", {vpcId: vpc.id});
const kms = new aws.kms.Key("kms", {description: "example"});
const test = new aws.cloudwatch.LogGroup("test", {name: "msk_broker_logs"});
const bucket = new aws.s3.BucketV2("bucket", {bucket: "msk-broker-logs-bucket"});
const bucketAcl = new aws.s3.BucketAclV2("bucket_acl", {
bucket: bucket.id,
acl: "private",
});
const assumeRole = aws.iam.getPolicyDocument({
statements: [{
effect: "Allow",
principals: [{
type: "Service",
identifiers: ["firehose.amazonaws.com"],
}],
actions: ["sts:AssumeRole"],
}],
});
const firehoseRole = new aws.iam.Role("firehose_role", {
name: "firehose_test_role",
assumeRolePolicy: assumeRole.then(assumeRole => assumeRole.json),
});
const testStream = new aws.kinesis.FirehoseDeliveryStream("test_stream", {
name: "kinesis-firehose-msk-broker-logs-stream",
destination: "extended_s3",
extendedS3Configuration: {
roleArn: firehoseRole.arn,
bucketArn: bucket.arn,
},
tags: {
LogDeliveryEnabled: "placeholder",
},
});
const example = new aws.msk.Cluster("example", {
clusterName: "example",
kafkaVersion: "3.2.0",
numberOfBrokerNodes: 3,
brokerNodeGroupInfo: {
instanceType: "kafka.m5.large",
clientSubnets: [
subnetAz1.id,
subnetAz2.id,
subnetAz3.id,
],
storageInfo: {
ebsStorageInfo: {
volumeSize: 1000,
},
},
securityGroups: [sg.id],
},
encryptionInfo: {
encryptionAtRestKmsKeyArn: kms.arn,
},
openMonitoring: {
prometheus: {
jmxExporter: {
enabledInBroker: true,
},
nodeExporter: {
enabledInBroker: true,
},
},
},
loggingInfo: {
brokerLogs: {
cloudwatchLogs: {
enabled: true,
logGroup: test.name,
},
firehose: {
enabled: true,
deliveryStream: testStream.name,
},
s3: {
enabled: true,
bucket: bucket.id,
prefix: "logs/msk-",
},
},
},
tags: {
foo: "bar",
},
});
export const zookeeperConnectString = example.zookeeperConnectString;
export const bootstrapBrokersTls = example.bootstrapBrokersTls;
import pulumi
import pulumi_aws as aws
vpc = aws.ec2.Vpc("vpc", cidr_block="192.168.0.0/22")
azs = aws.get_availability_zones(state="available")
subnet_az1 = aws.ec2.Subnet("subnet_az1",
availability_zone=azs.names[0],
cidr_block="192.168.0.0/24",
vpc_id=vpc.id)
subnet_az2 = aws.ec2.Subnet("subnet_az2",
availability_zone=azs.names[1],
cidr_block="192.168.1.0/24",
vpc_id=vpc.id)
subnet_az3 = aws.ec2.Subnet("subnet_az3",
availability_zone=azs.names[2],
cidr_block="192.168.2.0/24",
vpc_id=vpc.id)
sg = aws.ec2.SecurityGroup("sg", vpc_id=vpc.id)
kms = aws.kms.Key("kms", description="example")
test = aws.cloudwatch.LogGroup("test", name="msk_broker_logs")
bucket = aws.s3.BucketV2("bucket", bucket="msk-broker-logs-bucket")
bucket_acl = aws.s3.BucketAclV2("bucket_acl",
bucket=bucket.id,
acl="private")
assume_role = aws.iam.get_policy_document(statements=[{
"effect": "Allow",
"principals": [{
"type": "Service",
"identifiers": ["firehose.amazonaws.com"],
}],
"actions": ["sts:AssumeRole"],
}])
firehose_role = aws.iam.Role("firehose_role",
name="firehose_test_role",
assume_role_policy=assume_role.json)
test_stream = aws.kinesis.FirehoseDeliveryStream("test_stream",
name="kinesis-firehose-msk-broker-logs-stream",
destination="extended_s3",
extended_s3_configuration={
"roleArn": firehose_role.arn,
"bucketArn": bucket.arn,
},
tags={
"LogDeliveryEnabled": "placeholder",
})
example = aws.msk.Cluster("example",
cluster_name="example",
kafka_version="3.2.0",
number_of_broker_nodes=3,
broker_node_group_info={
"instanceType": "kafka.m5.large",
"clientSubnets": [
subnet_az1.id,
subnet_az2.id,
subnet_az3.id,
],
"storageInfo": {
"ebsStorageInfo": {
"volumeSize": 1000,
},
},
"securityGroups": [sg.id],
},
encryption_info={
"encryptionAtRestKmsKeyArn": kms.arn,
},
open_monitoring={
"prometheus": {
"jmxExporter": {
"enabledInBroker": True,
},
"nodeExporter": {
"enabledInBroker": True,
},
},
},
logging_info={
"brokerLogs": {
"cloudwatchLogs": {
"enabled": True,
"logGroup": test.name,
},
"firehose": {
"enabled": True,
"deliveryStream": test_stream.name,
},
"s3": {
"enabled": True,
"bucket": bucket.id,
"prefix": "logs/msk-",
},
},
},
tags={
"foo": "bar",
})
pulumi.export("zookeeperConnectString", example.zookeeper_connect_string)
pulumi.export("bootstrapBrokersTls", example.bootstrap_brokers_tls)
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/cloudwatch"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/ec2"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/iam"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kinesis"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kms"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/s3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
vpc, err := ec2.NewVpc(ctx, "vpc", &ec2.VpcArgs{
CidrBlock: pulumi.String("192.168.0.0/22"),
})
if err != nil {
return err
}
azs, err := aws.GetAvailabilityZones(ctx, &aws.GetAvailabilityZonesArgs{
State: pulumi.StringRef("available"),
}, nil)
if err != nil {
return err
}
subnetAz1, err := ec2.NewSubnet(ctx, "subnet_az1", &ec2.SubnetArgs{
AvailabilityZone: pulumi.String(azs.Names[0]),
CidrBlock: pulumi.String("192.168.0.0/24"),
VpcId: vpc.ID(),
})
if err != nil {
return err
}
subnetAz2, err := ec2.NewSubnet(ctx, "subnet_az2", &ec2.SubnetArgs{
AvailabilityZone: pulumi.String(azs.Names[1]),
CidrBlock: pulumi.String("192.168.1.0/24"),
VpcId: vpc.ID(),
})
if err != nil {
return err
}
subnetAz3, err := ec2.NewSubnet(ctx, "subnet_az3", &ec2.SubnetArgs{
AvailabilityZone: pulumi.String(azs.Names[2]),
CidrBlock: pulumi.String("192.168.2.0/24"),
VpcId: vpc.ID(),
})
if err != nil {
return err
}
sg, err := ec2.NewSecurityGroup(ctx, "sg", &ec2.SecurityGroupArgs{
VpcId: vpc.ID(),
})
if err != nil {
return err
}
kms, err := kms.NewKey(ctx, "kms", &kms.KeyArgs{
Description: pulumi.String("example"),
})
if err != nil {
return err
}
test, err := cloudwatch.NewLogGroup(ctx, "test", &cloudwatch.LogGroupArgs{
Name: pulumi.String("msk_broker_logs"),
})
if err != nil {
return err
}
bucket, err := s3.NewBucketV2(ctx, "bucket", &s3.BucketV2Args{
Bucket: pulumi.String("msk-broker-logs-bucket"),
})
if err != nil {
return err
}
_, err = s3.NewBucketAclV2(ctx, "bucket_acl", &s3.BucketAclV2Args{
Bucket: bucket.ID(),
Acl: pulumi.String("private"),
})
if err != nil {
return err
}
assumeRole, err := iam.GetPolicyDocument(ctx, &iam.GetPolicyDocumentArgs{
Statements: []iam.GetPolicyDocumentStatement{
{
Effect: pulumi.StringRef("Allow"),
Principals: []iam.GetPolicyDocumentStatementPrincipal{
{
Type: "Service",
Identifiers: []string{
"firehose.amazonaws.com",
},
},
},
Actions: []string{
"sts:AssumeRole",
},
},
},
}, nil)
if err != nil {
return err
}
firehoseRole, err := iam.NewRole(ctx, "firehose_role", &iam.RoleArgs{
Name: pulumi.String("firehose_test_role"),
AssumeRolePolicy: pulumi.String(assumeRole.Json),
})
if err != nil {
return err
}
testStream, err := kinesis.NewFirehoseDeliveryStream(ctx, "test_stream", &kinesis.FirehoseDeliveryStreamArgs{
Name: pulumi.String("kinesis-firehose-msk-broker-logs-stream"),
Destination: pulumi.String("extended_s3"),
ExtendedS3Configuration: &kinesis.FirehoseDeliveryStreamExtendedS3ConfigurationArgs{
RoleArn: firehoseRole.Arn,
BucketArn: bucket.Arn,
},
Tags: pulumi.StringMap{
"LogDeliveryEnabled": pulumi.String("placeholder"),
},
})
if err != nil {
return err
}
example, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
ClusterName: pulumi.String("example"),
KafkaVersion: pulumi.String("3.2.0"),
NumberOfBrokerNodes: pulumi.Int(3),
BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
InstanceType: pulumi.String("kafka.m5.large"),
ClientSubnets: pulumi.StringArray{
subnetAz1.ID(),
subnetAz2.ID(),
subnetAz3.ID(),
},
StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
VolumeSize: pulumi.Int(1000),
},
},
SecurityGroups: pulumi.StringArray{
sg.ID(),
},
},
EncryptionInfo: &msk.ClusterEncryptionInfoArgs{
EncryptionAtRestKmsKeyArn: kms.Arn,
},
OpenMonitoring: &msk.ClusterOpenMonitoringArgs{
Prometheus: &msk.ClusterOpenMonitoringPrometheusArgs{
JmxExporter: &msk.ClusterOpenMonitoringPrometheusJmxExporterArgs{
EnabledInBroker: pulumi.Bool(true),
},
NodeExporter: &msk.ClusterOpenMonitoringPrometheusNodeExporterArgs{
EnabledInBroker: pulumi.Bool(true),
},
},
},
LoggingInfo: &msk.ClusterLoggingInfoArgs{
BrokerLogs: &msk.ClusterLoggingInfoBrokerLogsArgs{
CloudwatchLogs: &msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs{
Enabled: pulumi.Bool(true),
LogGroup: test.Name,
},
Firehose: &msk.ClusterLoggingInfoBrokerLogsFirehoseArgs{
Enabled: pulumi.Bool(true),
DeliveryStream: testStream.Name,
},
S3: &msk.ClusterLoggingInfoBrokerLogsS3Args{
Enabled: pulumi.Bool(true),
Bucket: bucket.ID(),
Prefix: pulumi.String("logs/msk-"),
},
},
},
Tags: pulumi.StringMap{
"foo": pulumi.String("bar"),
},
})
if err != nil {
return err
}
ctx.Export("zookeeperConnectString", example.ZookeeperConnectString)
ctx.Export("bootstrapBrokersTls", example.BootstrapBrokersTls)
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var vpc = new Aws.Ec2.Vpc("vpc", new()
{
CidrBlock = "192.168.0.0/22",
});
var azs = Aws.GetAvailabilityZones.Invoke(new()
{
State = "available",
});
var subnetAz1 = new Aws.Ec2.Subnet("subnet_az1", new()
{
AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[0]),
CidrBlock = "192.168.0.0/24",
VpcId = vpc.Id,
});
var subnetAz2 = new Aws.Ec2.Subnet("subnet_az2", new()
{
AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[1]),
CidrBlock = "192.168.1.0/24",
VpcId = vpc.Id,
});
var subnetAz3 = new Aws.Ec2.Subnet("subnet_az3", new()
{
AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[2]),
CidrBlock = "192.168.2.0/24",
VpcId = vpc.Id,
});
var sg = new Aws.Ec2.SecurityGroup("sg", new()
{
VpcId = vpc.Id,
});
var kms = new Aws.Kms.Key("kms", new()
{
Description = "example",
});
var test = new Aws.CloudWatch.LogGroup("test", new()
{
Name = "msk_broker_logs",
});
var bucket = new Aws.S3.BucketV2("bucket", new()
{
Bucket = "msk-broker-logs-bucket",
});
var bucketAcl = new Aws.S3.BucketAclV2("bucket_acl", new()
{
Bucket = bucket.Id,
Acl = "private",
});
var assumeRole = Aws.Iam.GetPolicyDocument.Invoke(new()
{
Statements = new[]
{
new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
{
Effect = "Allow",
Principals = new[]
{
new Aws.Iam.Inputs.GetPolicyDocumentStatementPrincipalInputArgs
{
Type = "Service",
Identifiers = new[]
{
"firehose.amazonaws.com",
},
},
},
Actions = new[]
{
"sts:AssumeRole",
},
},
},
});
var firehoseRole = new Aws.Iam.Role("firehose_role", new()
{
Name = "firehose_test_role",
AssumeRolePolicy = assumeRole.Apply(getPolicyDocumentResult => getPolicyDocumentResult.Json),
});
var testStream = new Aws.Kinesis.FirehoseDeliveryStream("test_stream", new()
{
Name = "kinesis-firehose-msk-broker-logs-stream",
Destination = "extended_s3",
ExtendedS3Configuration = new Aws.Kinesis.Inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs
{
RoleArn = firehoseRole.Arn,
BucketArn = bucket.Arn,
},
Tags =
{
{ "LogDeliveryEnabled", "placeholder" },
},
});
var example = new Aws.Msk.Cluster("example", new()
{
ClusterName = "example",
KafkaVersion = "3.2.0",
NumberOfBrokerNodes = 3,
BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
{
InstanceType = "kafka.m5.large",
ClientSubnets = new[]
{
subnetAz1.Id,
subnetAz2.Id,
subnetAz3.Id,
},
StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
{
EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
{
VolumeSize = 1000,
},
},
SecurityGroups = new[]
{
sg.Id,
},
},
EncryptionInfo = new Aws.Msk.Inputs.ClusterEncryptionInfoArgs
{
EncryptionAtRestKmsKeyArn = kms.Arn,
},
OpenMonitoring = new Aws.Msk.Inputs.ClusterOpenMonitoringArgs
{
Prometheus = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusArgs
{
JmxExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs
{
EnabledInBroker = true,
},
NodeExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs
{
EnabledInBroker = true,
},
},
},
LoggingInfo = new Aws.Msk.Inputs.ClusterLoggingInfoArgs
{
BrokerLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsArgs
{
CloudwatchLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
{
Enabled = true,
LogGroup = test.Name,
},
Firehose = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs
{
Enabled = true,
DeliveryStream = testStream.Name,
},
S3 = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsS3Args
{
Enabled = true,
Bucket = bucket.Id,
Prefix = "logs/msk-",
},
},
},
Tags =
{
{ "foo", "bar" },
},
});
return new Dictionary<string, object?>
{
["zookeeperConnectString"] = example.ZookeeperConnectString,
["bootstrapBrokersTls"] = example.BootstrapBrokersTls,
};
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.ec2.Vpc;
import com.pulumi.aws.ec2.VpcArgs;
import com.pulumi.aws.AwsFunctions;
import com.pulumi.aws.inputs.GetAvailabilityZonesArgs;
import com.pulumi.aws.ec2.Subnet;
import com.pulumi.aws.ec2.SubnetArgs;
import com.pulumi.aws.ec2.SecurityGroup;
import com.pulumi.aws.ec2.SecurityGroupArgs;
import com.pulumi.aws.kms.Key;
import com.pulumi.aws.kms.KeyArgs;
import com.pulumi.aws.cloudwatch.LogGroup;
import com.pulumi.aws.cloudwatch.LogGroupArgs;
import com.pulumi.aws.s3.BucketV2;
import com.pulumi.aws.s3.BucketV2Args;
import com.pulumi.aws.s3.BucketAclV2;
import com.pulumi.aws.s3.BucketAclV2Args;
import com.pulumi.aws.iam.IamFunctions;
import com.pulumi.aws.iam.inputs.GetPolicyDocumentArgs;
import com.pulumi.aws.iam.Role;
import com.pulumi.aws.iam.RoleArgs;
import com.pulumi.aws.kinesis.FirehoseDeliveryStream;
import com.pulumi.aws.kinesis.FirehoseDeliveryStreamArgs;
import com.pulumi.aws.kinesis.inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs;
import com.pulumi.aws.msk.Cluster;
import com.pulumi.aws.msk.ClusterArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterEncryptionInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs;
import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs;
import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsS3Args;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var vpc = new Vpc("vpc", VpcArgs.builder()
.cidrBlock("192.168.0.0/22")
.build());
final var azs = AwsFunctions.getAvailabilityZones(GetAvailabilityZonesArgs.builder()
.state("available")
.build());
var subnetAz1 = new Subnet("subnetAz1", SubnetArgs.builder()
.availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[0]))
.cidrBlock("192.168.0.0/24")
.vpcId(vpc.id())
.build());
var subnetAz2 = new Subnet("subnetAz2", SubnetArgs.builder()
.availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[1]))
.cidrBlock("192.168.1.0/24")
.vpcId(vpc.id())
.build());
var subnetAz3 = new Subnet("subnetAz3", SubnetArgs.builder()
.availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[2]))
.cidrBlock("192.168.2.0/24")
.vpcId(vpc.id())
.build());
var sg = new SecurityGroup("sg", SecurityGroupArgs.builder()
.vpcId(vpc.id())
.build());
var kms = new Key("kms", KeyArgs.builder()
.description("example")
.build());
var test = new LogGroup("test", LogGroupArgs.builder()
.name("msk_broker_logs")
.build());
var bucket = new BucketV2("bucket", BucketV2Args.builder()
.bucket("msk-broker-logs-bucket")
.build());
var bucketAcl = new BucketAclV2("bucketAcl", BucketAclV2Args.builder()
.bucket(bucket.id())
.acl("private")
.build());
final var assumeRole = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
.statements(GetPolicyDocumentStatementArgs.builder()
.effect("Allow")
.principals(GetPolicyDocumentStatementPrincipalArgs.builder()
.type("Service")
.identifiers("firehose.amazonaws.com")
.build())
.actions("sts:AssumeRole")
.build())
.build());
var firehoseRole = new Role("firehoseRole", RoleArgs.builder()
.name("firehose_test_role")
.assumeRolePolicy(assumeRole.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult.json()))
.build());
var testStream = new FirehoseDeliveryStream("testStream", FirehoseDeliveryStreamArgs.builder()
.name("kinesis-firehose-msk-broker-logs-stream")
.destination("extended_s3")
.extendedS3Configuration(FirehoseDeliveryStreamExtendedS3ConfigurationArgs.builder()
.roleArn(firehoseRole.arn())
.bucketArn(bucket.arn())
.build())
.tags(Map.of("LogDeliveryEnabled", "placeholder"))
.build());
var example = new Cluster("example", ClusterArgs.builder()
.clusterName("example")
.kafkaVersion("3.2.0")
.numberOfBrokerNodes(3)
.brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
.instanceType("kafka.m5.large")
.clientSubnets(
subnetAz1.id(),
subnetAz2.id(),
subnetAz3.id())
.storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
.ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
.volumeSize(1000)
.build())
.build())
.securityGroups(sg.id())
.build())
.encryptionInfo(ClusterEncryptionInfoArgs.builder()
.encryptionAtRestKmsKeyArn(kms.arn())
.build())
.openMonitoring(ClusterOpenMonitoringArgs.builder()
.prometheus(ClusterOpenMonitoringPrometheusArgs.builder()
.jmxExporter(ClusterOpenMonitoringPrometheusJmxExporterArgs.builder()
.enabledInBroker(true)
.build())
.nodeExporter(ClusterOpenMonitoringPrometheusNodeExporterArgs.builder()
.enabledInBroker(true)
.build())
.build())
.build())
.loggingInfo(ClusterLoggingInfoArgs.builder()
.brokerLogs(ClusterLoggingInfoBrokerLogsArgs.builder()
.cloudwatchLogs(ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs.builder()
.enabled(true)
.logGroup(test.name())
.build())
.firehose(ClusterLoggingInfoBrokerLogsFirehoseArgs.builder()
.enabled(true)
.deliveryStream(testStream.name())
.build())
.s3(ClusterLoggingInfoBrokerLogsS3Args.builder()
.enabled(true)
.bucket(bucket.id())
.prefix("logs/msk-")
.build())
.build())
.build())
.tags(Map.of("foo", "bar"))
.build());
ctx.export("zookeeperConnectString", example.zookeeperConnectString());
ctx.export("bootstrapBrokersTls", example.bootstrapBrokersTls());
}
}
resources:
vpc:
type: aws:ec2:Vpc
properties:
cidrBlock: 192.168.0.0/22
subnetAz1:
type: aws:ec2:Subnet
name: subnet_az1
properties:
availabilityZone: ${azs.names[0]}
cidrBlock: 192.168.0.0/24
vpcId: ${vpc.id}
subnetAz2:
type: aws:ec2:Subnet
name: subnet_az2
properties:
availabilityZone: ${azs.names[1]}
cidrBlock: 192.168.1.0/24
vpcId: ${vpc.id}
subnetAz3:
type: aws:ec2:Subnet
name: subnet_az3
properties:
availabilityZone: ${azs.names[2]}
cidrBlock: 192.168.2.0/24
vpcId: ${vpc.id}
sg:
type: aws:ec2:SecurityGroup
properties:
vpcId: ${vpc.id}
kms:
type: aws:kms:Key
properties:
description: example
test:
type: aws:cloudwatch:LogGroup
properties:
name: msk_broker_logs
bucket:
type: aws:s3:BucketV2
properties:
bucket: msk-broker-logs-bucket
bucketAcl:
type: aws:s3:BucketAclV2
name: bucket_acl
properties:
bucket: ${bucket.id}
acl: private
firehoseRole:
type: aws:iam:Role
name: firehose_role
properties:
name: firehose_test_role
assumeRolePolicy: ${assumeRole.json}
testStream:
type: aws:kinesis:FirehoseDeliveryStream
name: test_stream
properties:
name: kinesis-firehose-msk-broker-logs-stream
destination: extended_s3
extendedS3Configuration:
roleArn: ${firehoseRole.arn}
bucketArn: ${bucket.arn}
tags:
LogDeliveryEnabled: placeholder
example:
type: aws:msk:Cluster
properties:
clusterName: example
kafkaVersion: 3.2.0
numberOfBrokerNodes: 3
brokerNodeGroupInfo:
instanceType: kafka.m5.large
clientSubnets:
- ${subnetAz1.id}
- ${subnetAz2.id}
- ${subnetAz3.id}
storageInfo:
ebsStorageInfo:
volumeSize: 1000
securityGroups:
- ${sg.id}
encryptionInfo:
encryptionAtRestKmsKeyArn: ${kms.arn}
openMonitoring:
prometheus:
jmxExporter:
enabledInBroker: true
nodeExporter:
enabledInBroker: true
loggingInfo:
brokerLogs:
cloudwatchLogs:
enabled: true
logGroup: ${test.name}
firehose:
enabled: true
deliveryStream: ${testStream.name}
s3:
enabled: true
bucket: ${bucket.id}
prefix: logs/msk-
tags:
foo: bar
variables:
azs:
fn::invoke:
Function: aws:getAvailabilityZones
Arguments:
state: available
assumeRole:
fn::invoke:
Function: aws:iam:getPolicyDocument
Arguments:
statements:
- effect: Allow
principals:
- type: Service
identifiers:
- firehose.amazonaws.com
actions:
- sts:AssumeRole
outputs:
zookeeperConnectString: ${example.zookeeperConnectString}
bootstrapBrokersTls: ${example.bootstrapBrokersTls}
With volume_throughput argument
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.msk.Cluster("example", {
clusterName: "example",
kafkaVersion: "2.7.1",
numberOfBrokerNodes: 3,
brokerNodeGroupInfo: {
instanceType: "kafka.m5.4xlarge",
clientSubnets: [
subnetAz1.id,
subnetAz2.id,
subnetAz3.id,
],
storageInfo: {
ebsStorageInfo: {
provisionedThroughput: {
enabled: true,
volumeThroughput: 250,
},
volumeSize: 1000,
},
},
securityGroups: [sg.id],
},
});
import pulumi
import pulumi_aws as aws
example = aws.msk.Cluster("example",
cluster_name="example",
kafka_version="2.7.1",
number_of_broker_nodes=3,
broker_node_group_info={
"instanceType": "kafka.m5.4xlarge",
"clientSubnets": [
subnet_az1["id"],
subnet_az2["id"],
subnet_az3["id"],
],
"storageInfo": {
"ebsStorageInfo": {
"provisionedThroughput": {
"enabled": True,
"volumeThroughput": 250,
},
"volumeSize": 1000,
},
},
"securityGroups": [sg["id"]],
})
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
ClusterName: pulumi.String("example"),
KafkaVersion: pulumi.String("2.7.1"),
NumberOfBrokerNodes: pulumi.Int(3),
BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
InstanceType: pulumi.String("kafka.m5.4xlarge"),
ClientSubnets: pulumi.StringArray{
subnetAz1.Id,
subnetAz2.Id,
subnetAz3.Id,
},
StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
ProvisionedThroughput: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs{
Enabled: pulumi.Bool(true),
VolumeThroughput: pulumi.Int(250),
},
VolumeSize: pulumi.Int(1000),
},
},
SecurityGroups: pulumi.StringArray{
sg.Id,
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Msk.Cluster("example", new()
{
ClusterName = "example",
KafkaVersion = "2.7.1",
NumberOfBrokerNodes = 3,
BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
{
InstanceType = "kafka.m5.4xlarge",
ClientSubnets = new[]
{
subnetAz1.Id,
subnetAz2.Id,
subnetAz3.Id,
},
StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
{
EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
{
ProvisionedThroughput = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
{
Enabled = true,
VolumeThroughput = 250,
},
VolumeSize = 1000,
},
},
SecurityGroups = new[]
{
sg.Id,
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.msk.Cluster;
import com.pulumi.aws.msk.ClusterArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new Cluster("example", ClusterArgs.builder()
.clusterName("example")
.kafkaVersion("2.7.1")
.numberOfBrokerNodes(3)
.brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
.instanceType("kafka.m5.4xlarge")
.clientSubnets(
subnetAz1.id(),
subnetAz2.id(),
subnetAz3.id())
.storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
.ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
.provisionedThroughput(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs.builder()
.enabled(true)
.volumeThroughput(250)
.build())
.volumeSize(1000)
.build())
.build())
.securityGroups(sg.id())
.build())
.build());
}
}
resources:
example:
type: aws:msk:Cluster
properties:
clusterName: example
kafkaVersion: 2.7.1
numberOfBrokerNodes: 3
brokerNodeGroupInfo:
instanceType: kafka.m5.4xlarge
clientSubnets:
- ${subnetAz1.id}
- ${subnetAz2.id}
- ${subnetAz3.id}
storageInfo:
ebsStorageInfo:
provisionedThroughput:
enabled: true
volumeThroughput: 250
volumeSize: 1000
securityGroups:
- ${sg.id}
Create Cluster Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Cluster(name: string, args: ClusterArgs, opts?: CustomResourceOptions);@overload
def Cluster(resource_name: str,
args: ClusterArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Cluster(resource_name: str,
opts: Optional[ResourceOptions] = None,
broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
kafka_version: Optional[str] = None,
number_of_broker_nodes: Optional[int] = None,
client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
cluster_name: Optional[str] = None,
configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
enhanced_monitoring: Optional[str] = None,
logging_info: Optional[ClusterLoggingInfoArgs] = None,
open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
storage_mode: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None)func NewCluster(ctx *Context, name string, args ClusterArgs, opts ...ResourceOption) (*Cluster, error)public Cluster(string name, ClusterArgs args, CustomResourceOptions? opts = null)
public Cluster(String name, ClusterArgs args)
public Cluster(String name, ClusterArgs args, CustomResourceOptions options)
type: aws:msk:Cluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var exampleclusterResourceResourceFromMskcluster = new Aws.Msk.Cluster("exampleclusterResourceResourceFromMskcluster", new()
{
BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
{
ClientSubnets = new[]
{
"string",
},
InstanceType = "string",
SecurityGroups = new[]
{
"string",
},
AzDistribution = "string",
ConnectivityInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoArgs
{
PublicAccess = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs
{
Type = "string",
},
VpcConnectivity = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs
{
ClientAuthentication = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs
{
Sasl = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs
{
Iam = false,
Scram = false,
},
Tls = false,
},
},
},
StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
{
EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
{
ProvisionedThroughput = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
{
Enabled = false,
VolumeThroughput = 0,
},
VolumeSize = 0,
},
},
},
KafkaVersion = "string",
NumberOfBrokerNodes = 0,
ClientAuthentication = new Aws.Msk.Inputs.ClusterClientAuthenticationArgs
{
Sasl = new Aws.Msk.Inputs.ClusterClientAuthenticationSaslArgs
{
Iam = false,
Scram = false,
},
Tls = new Aws.Msk.Inputs.ClusterClientAuthenticationTlsArgs
{
CertificateAuthorityArns = new[]
{
"string",
},
},
Unauthenticated = false,
},
ClusterName = "string",
ConfigurationInfo = new Aws.Msk.Inputs.ClusterConfigurationInfoArgs
{
Arn = "string",
Revision = 0,
},
EncryptionInfo = new Aws.Msk.Inputs.ClusterEncryptionInfoArgs
{
EncryptionAtRestKmsKeyArn = "string",
EncryptionInTransit = new Aws.Msk.Inputs.ClusterEncryptionInfoEncryptionInTransitArgs
{
ClientBroker = "string",
InCluster = false,
},
},
EnhancedMonitoring = "string",
LoggingInfo = new Aws.Msk.Inputs.ClusterLoggingInfoArgs
{
BrokerLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsArgs
{
CloudwatchLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
{
Enabled = false,
LogGroup = "string",
},
Firehose = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs
{
Enabled = false,
DeliveryStream = "string",
},
S3 = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsS3Args
{
Enabled = false,
Bucket = "string",
Prefix = "string",
},
},
},
OpenMonitoring = new Aws.Msk.Inputs.ClusterOpenMonitoringArgs
{
Prometheus = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusArgs
{
JmxExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs
{
EnabledInBroker = false,
},
NodeExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs
{
EnabledInBroker = false,
},
},
},
StorageMode = "string",
Tags =
{
{ "string", "string" },
},
});
example, err := msk.NewCluster(ctx, "exampleclusterResourceResourceFromMskcluster", &msk.ClusterArgs{
BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
ClientSubnets: pulumi.StringArray{
pulumi.String("string"),
},
InstanceType: pulumi.String("string"),
SecurityGroups: pulumi.StringArray{
pulumi.String("string"),
},
AzDistribution: pulumi.String("string"),
ConnectivityInfo: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoArgs{
PublicAccess: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs{
Type: pulumi.String("string"),
},
VpcConnectivity: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs{
ClientAuthentication: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs{
Sasl: &msk.ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs{
Iam: pulumi.Bool(false),
Scram: pulumi.Bool(false),
},
Tls: pulumi.Bool(false),
},
},
},
StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
ProvisionedThroughput: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs{
Enabled: pulumi.Bool(false),
VolumeThroughput: pulumi.Int(0),
},
VolumeSize: pulumi.Int(0),
},
},
},
KafkaVersion: pulumi.String("string"),
NumberOfBrokerNodes: pulumi.Int(0),
ClientAuthentication: &msk.ClusterClientAuthenticationArgs{
Sasl: &msk.ClusterClientAuthenticationSaslArgs{
Iam: pulumi.Bool(false),
Scram: pulumi.Bool(false),
},
Tls: &msk.ClusterClientAuthenticationTlsArgs{
CertificateAuthorityArns: pulumi.StringArray{
pulumi.String("string"),
},
},
Unauthenticated: pulumi.Bool(false),
},
ClusterName: pulumi.String("string"),
ConfigurationInfo: &msk.ClusterConfigurationInfoArgs{
Arn: pulumi.String("string"),
Revision: pulumi.Int(0),
},
EncryptionInfo: &msk.ClusterEncryptionInfoArgs{
EncryptionAtRestKmsKeyArn: pulumi.String("string"),
EncryptionInTransit: &msk.ClusterEncryptionInfoEncryptionInTransitArgs{
ClientBroker: pulumi.String("string"),
InCluster: pulumi.Bool(false),
},
},
EnhancedMonitoring: pulumi.String("string"),
LoggingInfo: &msk.ClusterLoggingInfoArgs{
BrokerLogs: &msk.ClusterLoggingInfoBrokerLogsArgs{
CloudwatchLogs: &msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs{
Enabled: pulumi.Bool(false),
LogGroup: pulumi.String("string"),
},
Firehose: &msk.ClusterLoggingInfoBrokerLogsFirehoseArgs{
Enabled: pulumi.Bool(false),
DeliveryStream: pulumi.String("string"),
},
S3: &msk.ClusterLoggingInfoBrokerLogsS3Args{
Enabled: pulumi.Bool(false),
Bucket: pulumi.String("string"),
Prefix: pulumi.String("string"),
},
},
},
OpenMonitoring: &msk.ClusterOpenMonitoringArgs{
Prometheus: &msk.ClusterOpenMonitoringPrometheusArgs{
JmxExporter: &msk.ClusterOpenMonitoringPrometheusJmxExporterArgs{
EnabledInBroker: pulumi.Bool(false),
},
NodeExporter: &msk.ClusterOpenMonitoringPrometheusNodeExporterArgs{
EnabledInBroker: pulumi.Bool(false),
},
},
},
StorageMode: pulumi.String("string"),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var exampleclusterResourceResourceFromMskcluster = new Cluster("exampleclusterResourceResourceFromMskcluster", ClusterArgs.builder()
.brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
.clientSubnets("string")
.instanceType("string")
.securityGroups("string")
.azDistribution("string")
.connectivityInfo(ClusterBrokerNodeGroupInfoConnectivityInfoArgs.builder()
.publicAccess(ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs.builder()
.type("string")
.build())
.vpcConnectivity(ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs.builder()
.clientAuthentication(ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs.builder()
.sasl(ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs.builder()
.iam(false)
.scram(false)
.build())
.tls(false)
.build())
.build())
.build())
.storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
.ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
.provisionedThroughput(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs.builder()
.enabled(false)
.volumeThroughput(0)
.build())
.volumeSize(0)
.build())
.build())
.build())
.kafkaVersion("string")
.numberOfBrokerNodes(0)
.clientAuthentication(ClusterClientAuthenticationArgs.builder()
.sasl(ClusterClientAuthenticationSaslArgs.builder()
.iam(false)
.scram(false)
.build())
.tls(ClusterClientAuthenticationTlsArgs.builder()
.certificateAuthorityArns("string")
.build())
.unauthenticated(false)
.build())
.clusterName("string")
.configurationInfo(ClusterConfigurationInfoArgs.builder()
.arn("string")
.revision(0)
.build())
.encryptionInfo(ClusterEncryptionInfoArgs.builder()
.encryptionAtRestKmsKeyArn("string")
.encryptionInTransit(ClusterEncryptionInfoEncryptionInTransitArgs.builder()
.clientBroker("string")
.inCluster(false)
.build())
.build())
.enhancedMonitoring("string")
.loggingInfo(ClusterLoggingInfoArgs.builder()
.brokerLogs(ClusterLoggingInfoBrokerLogsArgs.builder()
.cloudwatchLogs(ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs.builder()
.enabled(false)
.logGroup("string")
.build())
.firehose(ClusterLoggingInfoBrokerLogsFirehoseArgs.builder()
.enabled(false)
.deliveryStream("string")
.build())
.s3(ClusterLoggingInfoBrokerLogsS3Args.builder()
.enabled(false)
.bucket("string")
.prefix("string")
.build())
.build())
.build())
.openMonitoring(ClusterOpenMonitoringArgs.builder()
.prometheus(ClusterOpenMonitoringPrometheusArgs.builder()
.jmxExporter(ClusterOpenMonitoringPrometheusJmxExporterArgs.builder()
.enabledInBroker(false)
.build())
.nodeExporter(ClusterOpenMonitoringPrometheusNodeExporterArgs.builder()
.enabledInBroker(false)
.build())
.build())
.build())
.storageMode("string")
.tags(Map.of("string", "string"))
.build());
examplecluster_resource_resource_from_mskcluster = aws.msk.Cluster("exampleclusterResourceResourceFromMskcluster",
broker_node_group_info={
"clientSubnets": ["string"],
"instanceType": "string",
"securityGroups": ["string"],
"azDistribution": "string",
"connectivityInfo": {
"publicAccess": {
"type": "string",
},
"vpcConnectivity": {
"clientAuthentication": {
"sasl": {
"iam": False,
"scram": False,
},
"tls": False,
},
},
},
"storageInfo": {
"ebsStorageInfo": {
"provisionedThroughput": {
"enabled": False,
"volumeThroughput": 0,
},
"volumeSize": 0,
},
},
},
kafka_version="string",
number_of_broker_nodes=0,
client_authentication={
"sasl": {
"iam": False,
"scram": False,
},
"tls": {
"certificateAuthorityArns": ["string"],
},
"unauthenticated": False,
},
cluster_name="string",
configuration_info={
"arn": "string",
"revision": 0,
},
encryption_info={
"encryptionAtRestKmsKeyArn": "string",
"encryptionInTransit": {
"clientBroker": "string",
"inCluster": False,
},
},
enhanced_monitoring="string",
logging_info={
"brokerLogs": {
"cloudwatchLogs": {
"enabled": False,
"logGroup": "string",
},
"firehose": {
"enabled": False,
"deliveryStream": "string",
},
"s3": {
"enabled": False,
"bucket": "string",
"prefix": "string",
},
},
},
open_monitoring={
"prometheus": {
"jmxExporter": {
"enabledInBroker": False,
},
"nodeExporter": {
"enabledInBroker": False,
},
},
},
storage_mode="string",
tags={
"string": "string",
})
const exampleclusterResourceResourceFromMskcluster = new aws.msk.Cluster("exampleclusterResourceResourceFromMskcluster", {
brokerNodeGroupInfo: {
clientSubnets: ["string"],
instanceType: "string",
securityGroups: ["string"],
azDistribution: "string",
connectivityInfo: {
publicAccess: {
type: "string",
},
vpcConnectivity: {
clientAuthentication: {
sasl: {
iam: false,
scram: false,
},
tls: false,
},
},
},
storageInfo: {
ebsStorageInfo: {
provisionedThroughput: {
enabled: false,
volumeThroughput: 0,
},
volumeSize: 0,
},
},
},
kafkaVersion: "string",
numberOfBrokerNodes: 0,
clientAuthentication: {
sasl: {
iam: false,
scram: false,
},
tls: {
certificateAuthorityArns: ["string"],
},
unauthenticated: false,
},
clusterName: "string",
configurationInfo: {
arn: "string",
revision: 0,
},
encryptionInfo: {
encryptionAtRestKmsKeyArn: "string",
encryptionInTransit: {
clientBroker: "string",
inCluster: false,
},
},
enhancedMonitoring: "string",
loggingInfo: {
brokerLogs: {
cloudwatchLogs: {
enabled: false,
logGroup: "string",
},
firehose: {
enabled: false,
deliveryStream: "string",
},
s3: {
enabled: false,
bucket: "string",
prefix: "string",
},
},
},
openMonitoring: {
prometheus: {
jmxExporter: {
enabledInBroker: false,
},
nodeExporter: {
enabledInBroker: false,
},
},
},
storageMode: "string",
tags: {
string: "string",
},
});
type: aws:msk:Cluster
properties:
brokerNodeGroupInfo:
azDistribution: string
clientSubnets:
- string
connectivityInfo:
publicAccess:
type: string
vpcConnectivity:
clientAuthentication:
sasl:
iam: false
scram: false
tls: false
instanceType: string
securityGroups:
- string
storageInfo:
ebsStorageInfo:
provisionedThroughput:
enabled: false
volumeThroughput: 0
volumeSize: 0
clientAuthentication:
sasl:
iam: false
scram: false
tls:
certificateAuthorityArns:
- string
unauthenticated: false
clusterName: string
configurationInfo:
arn: string
revision: 0
encryptionInfo:
encryptionAtRestKmsKeyArn: string
encryptionInTransit:
clientBroker: string
inCluster: false
enhancedMonitoring: string
kafkaVersion: string
loggingInfo:
brokerLogs:
cloudwatchLogs:
enabled: false
logGroup: string
firehose:
deliveryStream: string
enabled: false
s3:
bucket: string
enabled: false
prefix: string
numberOfBrokerNodes: 0
openMonitoring:
prometheus:
jmxExporter:
enabledInBroker: false
nodeExporter:
enabledInBroker: false
storageMode: string
tags:
string: string
Cluster Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Cluster resource accepts the following input properties:
- Broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- Kafka
Version string - Specify the desired Kafka software version.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Dictionary<string, string>
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- Broker
Node ClusterGroup Info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- Kafka
Version string - Specify the desired Kafka software version.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Client
Authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Configuration
Info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Encryption
Info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Logging
Info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Open
Monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - map[string]string
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- kafka
Version String - Specify the desired Kafka software version.
- number
Of IntegerBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Map<String,String>
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- kafka
Version string - Specify the desired Kafka software version.
- number
Of numberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name string - Name of the MSK cluster.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - {[key: string]: string}
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker_
node_ Clustergroup_ info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- kafka_
version str - Specify the desired Kafka software version.
- number_
of_ intbroker_ nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client_
authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- cluster_
name str - Name of the MSK cluster.
- configuration_
info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption_
info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- enhanced_
monitoring str - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging_
info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open_
monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage_
mode str - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Mapping[str, str]
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- broker
Node Property MapGroup Info - Configuration block for the broker nodes of the Kafka cluster.
- kafka
Version String - Specify the desired Kafka software version.
- number
Of NumberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- client
Authentication Property Map - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- configuration
Info Property Map - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- encryption
Info Property Map - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- logging
Info Property Map - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- open
Monitoring Property Map - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Map<String>
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
Outputs
All input properties are implicitly available as output properties. Additionally, the Cluster resource produces the following output properties:
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - Id string
- The provider-assigned unique ID for this managed resource.
- Dictionary<string, string>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - Id string
- The provider-assigned unique ID for this managed resource.
- map[string]string
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - id String
- The provider-assigned unique ID for this managed resource.
- Map<String,String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - id string
- The provider-assigned unique ID for this managed resource.
- {[key: string]: string}
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn str
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap_
brokers str - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strtls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strvpc_ connectivity_ sasl_ iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ sasl_ scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster_
uuid str - UUID of the MSK cluster, for use in IAM policies.
- current_
version str - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - id str
- The provider-assigned unique ID for this managed resource.
- Mapping[str, str]
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper_
connect_ strstring - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper_
connect_ strstring_ tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - id String
- The provider-assigned unique ID for this managed resource.
- Map<String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
Look up Existing Cluster Resource
Get an existing Cluster resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ClusterState, opts?: CustomResourceOptions): Cluster@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
arn: Optional[str] = None,
bootstrap_brokers: Optional[str] = None,
bootstrap_brokers_public_sasl_iam: Optional[str] = None,
bootstrap_brokers_public_sasl_scram: Optional[str] = None,
bootstrap_brokers_public_tls: Optional[str] = None,
bootstrap_brokers_sasl_iam: Optional[str] = None,
bootstrap_brokers_sasl_scram: Optional[str] = None,
bootstrap_brokers_tls: Optional[str] = None,
bootstrap_brokers_vpc_connectivity_sasl_iam: Optional[str] = None,
bootstrap_brokers_vpc_connectivity_sasl_scram: Optional[str] = None,
bootstrap_brokers_vpc_connectivity_tls: Optional[str] = None,
broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
cluster_name: Optional[str] = None,
cluster_uuid: Optional[str] = None,
configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
current_version: Optional[str] = None,
encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
enhanced_monitoring: Optional[str] = None,
kafka_version: Optional[str] = None,
logging_info: Optional[ClusterLoggingInfoArgs] = None,
number_of_broker_nodes: Optional[int] = None,
open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
storage_mode: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None,
tags_all: Optional[Mapping[str, str]] = None,
zookeeper_connect_string: Optional[str] = None,
zookeeper_connect_string_tls: Optional[str] = None) -> Clusterfunc GetCluster(ctx *Context, name string, id IDInput, state *ClusterState, opts ...ResourceOption) (*Cluster, error)public static Cluster Get(string name, Input<string> id, ClusterState? state, CustomResourceOptions? opts = null)public static Cluster get(String name, Output<String> id, ClusterState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- Client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - Encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Kafka
Version string - Specify the desired Kafka software version.
- Logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Dictionary<string, string>
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Dictionary<string, string>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- Bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - Bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - Bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- Broker
Node ClusterGroup Info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- Client
Authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- Cluster
Name string - Name of the MSK cluster.
- Cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- Configuration
Info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- Current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - Encryption
Info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- Enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- Kafka
Version string - Specify the desired Kafka software version.
- Logging
Info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- Number
Of intBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- Open
Monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- Storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - map[string]string
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - map[string]string
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - Zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- Zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka
Version String - Specify the desired Kafka software version.
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number
Of IntegerBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Map<String,String>
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String,String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn string
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers string - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers stringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers stringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers stringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker
Node ClusterGroup Info Broker Node Group Info - Configuration block for the broker nodes of the Kafka cluster.
- client
Authentication ClusterClient Authentication - Configuration block for specifying a client authentication. See below.
- cluster
Name string - Name of the MSK cluster.
- cluster
Uuid string - UUID of the MSK cluster, for use in IAM policies.
- configuration
Info ClusterConfiguration Info - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current
Version string - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - encryption
Info ClusterEncryption Info - Configuration block for specifying encryption. See below.
- enhanced
Monitoring string - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka
Version string - Specify the desired Kafka software version.
- logging
Info ClusterLogging Info - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number
Of numberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open
Monitoring ClusterOpen Monitoring - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode string - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - {[key: string]: string}
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - {[key: string]: string}
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper
Connect stringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect stringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn str
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap_
brokers str - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ sasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strpublic_ tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strsasl_ scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strtls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap_
brokers_ strvpc_ connectivity_ sasl_ iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ sasl_ scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap_
brokers_ strvpc_ connectivity_ tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker_
node_ Clustergroup_ info Broker Node Group Info Args - Configuration block for the broker nodes of the Kafka cluster.
- client_
authentication ClusterClient Authentication Args - Configuration block for specifying a client authentication. See below.
- cluster_
name str - Name of the MSK cluster.
- cluster_
uuid str - UUID of the MSK cluster, for use in IAM policies.
- configuration_
info ClusterConfiguration Info Args - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current_
version str - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - encryption_
info ClusterEncryption Info Args - Configuration block for specifying encryption. See below.
- enhanced_
monitoring str - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka_
version str - Specify the desired Kafka software version.
- logging_
info ClusterLogging Info Args - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number_
of_ intbroker_ nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open_
monitoring ClusterOpen Monitoring Args - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage_
mode str - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Mapping[str, str]
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Mapping[str, str]
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper_
connect_ strstring - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper_
connect_ strstring_ tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- arn String
- Amazon Resource Name (ARN) of the MSK cluster.
- bootstrap
Brokers String - Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if
encryption_info.0.encryption_in_transit.0.client_brokeris set toPLAINTEXTorTLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies. - bootstrap
Brokers StringPublic Sasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Sasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrueandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringPublic Tls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandbroker_node_group_info.0.connectivity_info.0.public_access.0.typeis set toSERVICE_PROVIDED_EIPSand the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Iam - One or more DNS names (or IP addresses) and SASL IAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.iamis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringSasl Scram - One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLSandclient_authentication.0.sasl.0.scramis set totrue. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringTls - One or more DNS names (or IP addresses) and TLS port pairs. For example,
b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value ifencryption_info.0.encryption_in_transit.0.client_brokeris set toTLS_PLAINTEXTorTLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies. - bootstrap
Brokers StringVpc Connectivity Sasl Iam - A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Sasl Scram - A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- bootstrap
Brokers StringVpc Connectivity Tls - A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
- broker
Node Property MapGroup Info - Configuration block for the broker nodes of the Kafka cluster.
- client
Authentication Property Map - Configuration block for specifying a client authentication. See below.
- cluster
Name String - Name of the MSK cluster.
- cluster
Uuid String - UUID of the MSK cluster, for use in IAM policies.
- configuration
Info Property Map - Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
- current
Version String - Current version of the MSK Cluster used for updates, e.g.,
K13V1IB3VIYZZH - encryption
Info Property Map - Configuration block for specifying encryption. See below.
- enhanced
Monitoring String - Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
- kafka
Version String - Specify the desired Kafka software version.
- logging
Info Property Map - Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
- number
Of NumberBroker Nodes - The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
- open
Monitoring Property Map - Configuration block for JMX and Node monitoring for the MSK cluster. See below.
- storage
Mode String - Controls storage mode for supported storage tiers. Valid values are:
LOCALorTIERED. - Map<String>
- A map of tags to assign to the resource. .If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block. - zookeeper
Connect StringString - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
- zookeeper
Connect StringString Tls - A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
Supporting Types
ClusterBrokerNodeGroupInfo, ClusterBrokerNodeGroupInfoArgs
- Client
Subnets List<string> - A list of subnets to connect to in client VPC (documentation).
- Instance
Type string - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- Security
Groups List<string> - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- Az
Distribution string - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT. - Connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- Storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- Client
Subnets []string - A list of subnets to connect to in client VPC (documentation).
- Instance
Type string - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- Security
Groups []string - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- Az
Distribution string - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT. - Connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- Storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client
Subnets List<String> - A list of subnets to connect to in client VPC (documentation).
- instance
Type String - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security
Groups List<String> - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az
Distribution String - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT. - connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client
Subnets string[] - A list of subnets to connect to in client VPC (documentation).
- instance
Type string - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security
Groups string[] - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az
Distribution string - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT. - connectivity
Info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage
Info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client_
subnets Sequence[str] - A list of subnets to connect to in client VPC (documentation).
- instance_
type str - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security_
groups Sequence[str] - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az_
distribution str - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT. - connectivity_
info ClusterBroker Node Group Info Connectivity Info - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage_
info ClusterBroker Node Group Info Storage Info - A block that contains information about storage volumes attached to MSK broker nodes. See below.
- client
Subnets List<String> - A list of subnets to connect to in client VPC (documentation).
- instance
Type String - Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
- security
Groups List<String> - A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
- az
Distribution String - The distribution of broker nodes across availability zones (documentation). Currently the only valid value is
DEFAULT. - connectivity
Info Property Map - Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
- storage
Info Property Map - A block that contains information about storage volumes attached to MSK broker nodes. See below.
ClusterBrokerNodeGroupInfoConnectivityInfo, ClusterBrokerNodeGroupInfoConnectivityInfoArgs
ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess, ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs
- Type string
- Type string
- type String
- type string
- type str
- type String
ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs
- Client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- Client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client
Authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client_
authentication ClusterBroker Node Group Info Connectivity Info Vpc Connectivity Client Authentication - Configuration block for specifying a client authentication. See below.
- client
Authentication Property Map - Configuration block for specifying a client authentication. See below.
ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs
- Sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls bool
- Configuration block for specifying TLS client authentication. See below.
- Sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls bool
- Configuration block for specifying TLS client authentication. See below.
- sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls Boolean
- Configuration block for specifying TLS client authentication. See below.
- sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls boolean
- Configuration block for specifying TLS client authentication. See below.
- sasl
Cluster
Broker Node Group Info Connectivity Info Vpc Connectivity Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls bool
- Configuration block for specifying TLS client authentication. See below.
- sasl Property Map
- Configuration block for specifying SASL client authentication. See below.
- tls Boolean
- Configuration block for specifying TLS client authentication. See below.
ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs
ClusterBrokerNodeGroupInfoStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoArgs
ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
- Enabled bool
- Volume
Throughput int
- Enabled bool
- Volume
Throughput int
- enabled Boolean
- volume
Throughput Integer
- enabled boolean
- volume
Throughput number
- enabled bool
- volume_
throughput int
- enabled Boolean
- volume
Throughput Number
ClusterClientAuthentication, ClusterClientAuthenticationArgs
- Sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- Unauthenticated bool
- Enables unauthenticated access.
- Sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- Tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- Unauthenticated bool
- Enables unauthenticated access.
- sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- unauthenticated Boolean
- Enables unauthenticated access.
- sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- unauthenticated boolean
- Enables unauthenticated access.
- sasl
Cluster
Client Authentication Sasl - Configuration block for specifying SASL client authentication. See below.
- tls
Cluster
Client Authentication Tls - Configuration block for specifying TLS client authentication. See below.
- unauthenticated bool
- Enables unauthenticated access.
- sasl Property Map
- Configuration block for specifying SASL client authentication. See below.
- tls Property Map
- Configuration block for specifying TLS client authentication. See below.
- unauthenticated Boolean
- Enables unauthenticated access.
ClusterClientAuthenticationSasl, ClusterClientAuthenticationSaslArgs
ClusterClientAuthenticationTls, ClusterClientAuthenticationTlsArgs
- List<string>
- []string
- List<String>
- string[]
- Sequence[str]
- List<String>
ClusterConfigurationInfo, ClusterConfigurationInfoArgs
ClusterEncryptionInfo, ClusterEncryptionInfoArgs
- Encryption
At stringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- Encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- Encryption
At stringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- Encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption
At StringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption
At stringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption
In ClusterTransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption_
at_ strrest_ kms_ key_ arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption_
in_ Clustertransit Encryption Info Encryption In Transit - Configuration block to specify encryption in transit. See below.
- encryption
At StringRest Kms Key Arn - You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
- encryption
In Property MapTransit - Configuration block to specify encryption in transit. See below.
ClusterEncryptionInfoEncryptionInTransit, ClusterEncryptionInfoEncryptionInTransitArgs
- Client
Broker string - In
Cluster bool
- Client
Broker string - In
Cluster bool
- client
Broker String - in
Cluster Boolean
- client
Broker string - in
Cluster boolean
- client_
broker str - in_
cluster bool
- client
Broker String - in
Cluster Boolean
ClusterLoggingInfo, ClusterLoggingInfoArgs
- Broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- Broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker
Logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker_
logs ClusterLogging Info Broker Logs - Configuration block for Broker Logs settings for logging info. See below.
- broker
Logs Property Map - Configuration block for Broker Logs settings for logging info. See below.
ClusterLoggingInfoBrokerLogs, ClusterLoggingInfoBrokerLogsArgs
ClusterLoggingInfoBrokerLogsCloudwatchLogs, ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
ClusterLoggingInfoBrokerLogsFirehose, ClusterLoggingInfoBrokerLogsFirehoseArgs
- Enabled bool
- Delivery
Stream string
- Enabled bool
- Delivery
Stream string
- enabled Boolean
- delivery
Stream String
- enabled boolean
- delivery
Stream string
- enabled bool
- delivery_
stream str
- enabled Boolean
- delivery
Stream String
ClusterLoggingInfoBrokerLogsS3, ClusterLoggingInfoBrokerLogsS3Args
ClusterOpenMonitoring, ClusterOpenMonitoringArgs
- Prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- Prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus
Cluster
Open Monitoring Prometheus - Configuration block for Prometheus settings for open monitoring. See below.
- prometheus Property Map
- Configuration block for Prometheus settings for open monitoring. See below.
ClusterOpenMonitoringPrometheus, ClusterOpenMonitoringPrometheusArgs
ClusterOpenMonitoringPrometheusJmxExporter, ClusterOpenMonitoringPrometheusJmxExporterArgs
- Enabled
In boolBroker
- Enabled
In boolBroker
- enabled
In BooleanBroker
- enabled
In booleanBroker
- enabled_
in_ boolbroker
- enabled
In BooleanBroker
ClusterOpenMonitoringPrometheusNodeExporter, ClusterOpenMonitoringPrometheusNodeExporterArgs
- Enabled
In boolBroker
- Enabled
In boolBroker
- enabled
In BooleanBroker
- enabled
In booleanBroker
- enabled_
in_ boolbroker
- enabled
In BooleanBroker
Import
Using pulumi import, import MSK clusters using the cluster arn. For example:
$ pulumi import aws:msk/cluster:Cluster example arn:aws:kafka:us-west-2:123456789012:cluster/example/279c0212-d057-4dba-9aa9-1c4e5a25bfc7-3
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- AWS Classic pulumi/pulumi-aws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
awsTerraform Provider.
Try AWS Native preview for resources not in the classic version.
AWS Classic v6.42.0 published on Wednesday, Jun 26, 2024 by Pulumi