UNPKG

@aws-sdk/client-eks

Version:

AWS SDK for JavaScript Eks Client for Node.js, Browser and React Native

github.com/aws/aws-sdk-js-v3/tree/main/clients/client-eks

aws/aws-sdk-js-v3

131 lines (130 loc) 7.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
import { Command as $Command } from "@smithy/smithy-client"; import { MetadataBearer as __MetadataBearer } from "@smithy/types"; import { EKSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EKSClient"; import { AssociateEncryptionConfigRequest, AssociateEncryptionConfigResponse } from "../models/models_0"; /** * @public */ export type { __MetadataBearer }; export { $Command }; /** * @public * * The input for {@link AssociateEncryptionConfigCommand}. */ export interface AssociateEncryptionConfigCommandInput extends AssociateEncryptionConfigRequest { } /** * @public * * The output of {@link AssociateEncryptionConfigCommand}. */ export interface AssociateEncryptionConfigCommandOutput extends AssociateEncryptionConfigResponse, __MetadataBearer { } declare const AssociateEncryptionConfigCommand_base: { new (input: AssociateEncryptionConfigCommandInput): import("@smithy/smithy-client").CommandImpl<AssociateEncryptionConfigCommandInput, AssociateEncryptionConfigCommandOutput, EKSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>; new (__0_0: AssociateEncryptionConfigCommandInput): import("@smithy/smithy-client").CommandImpl<AssociateEncryptionConfigCommandInput, AssociateEncryptionConfigCommandOutput, EKSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>; getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions; }; /** * <p>Associates an encryption configuration to an existing cluster.</p> * <p>Use this API to enable encryption on existing clusters that don't already have * encryption enabled. This allows you to implement a defense-in-depth security strategy * without migrating applications to new Amazon EKS clusters.</p> * @example * Use a bare-bones client and the command you need to make an API call. * ```javascript * import { EKSClient, AssociateEncryptionConfigCommand } from "@aws-sdk/client-eks"; // ES Modules import * // const { EKSClient, AssociateEncryptionConfigCommand } = require("@aws-sdk/client-eks"); // CommonJS import * const client = new EKSClient(config); * const input = { // AssociateEncryptionConfigRequest * clusterName: "STRING_VALUE", // required * encryptionConfig: [ // EncryptionConfigList // required * { // EncryptionConfig * resources: [ // StringList * "STRING_VALUE", * ], * provider: { // Provider * keyArn: "STRING_VALUE", * }, * }, * ], * clientRequestToken: "STRING_VALUE", * }; * const command = new AssociateEncryptionConfigCommand(input); * const response = await client.send(command); * // { // AssociateEncryptionConfigResponse * // update: { // Update * // id: "STRING_VALUE", * // status: "InProgress" || "Failed" || "Cancelled" || "Successful", * // type: "VersionUpdate" || "EndpointAccessUpdate" || "LoggingUpdate" || "ConfigUpdate" || "AssociateIdentityProviderConfig" || "DisassociateIdentityProviderConfig" || "AssociateEncryptionConfig" || "AddonUpdate" || "VpcConfigUpdate" || "AccessConfigUpdate" || "UpgradePolicyUpdate" || "ZonalShiftConfigUpdate" || "AutoModeUpdate", * // params: [ // UpdateParams * // { // UpdateParam * // type: "Version" || "PlatformVersion" || "EndpointPrivateAccess" || "EndpointPublicAccess" || "ClusterLogging" || "DesiredSize" || "LabelsToAdd" || "LabelsToRemove" || "TaintsToAdd" || "TaintsToRemove" || "MaxSize" || "MinSize" || "ReleaseVersion" || "PublicAccessCidrs" || "LaunchTemplateName" || "LaunchTemplateVersion" || "IdentityProviderConfig" || "EncryptionConfig" || "AddonVersion" || "ServiceAccountRoleArn" || "ResolveConflicts" || "MaxUnavailable" || "MaxUnavailablePercentage" || "NodeRepairEnabled" || "UpdateStrategy" || "ConfigurationValues" || "SecurityGroups" || "Subnets" || "AuthenticationMode" || "PodIdentityAssociations" || "UpgradePolicy" || "ZonalShiftConfig" || "ComputeConfig" || "StorageConfig" || "KubernetesNetworkConfig", * // value: "STRING_VALUE", * // }, * // ], * // createdAt: new Date("TIMESTAMP"), * // errors: [ // ErrorDetails * // { // ErrorDetail * // errorCode: "SubnetNotFound" || "SecurityGroupNotFound" || "EniLimitReached" || "IpNotAvailable" || "AccessDenied" || "OperationNotPermitted" || "VpcIdNotFound" || "Unknown" || "NodeCreationFailure" || "PodEvictionFailure" || "InsufficientFreeAddresses" || "ClusterUnreachable" || "InsufficientNumberOfReplicas" || "ConfigurationConflict" || "AdmissionRequestDenied" || "UnsupportedAddonModification" || "K8sResourceNotFound", * // errorMessage: "STRING_VALUE", * // resourceIds: [ // StringList * // "STRING_VALUE", * // ], * // }, * // ], * // }, * // }; * * ``` * * @param AssociateEncryptionConfigCommandInput - {@link AssociateEncryptionConfigCommandInput} * @returns {@link AssociateEncryptionConfigCommandOutput} * @see {@link AssociateEncryptionConfigCommandInput} for command's `input` shape. * @see {@link AssociateEncryptionConfigCommandOutput} for command's `response` shape. * @see {@link EKSClientResolvedConfig | config} for EKSClient's `config` shape. * * @throws {@link ClientException} (client fault) * <p>These errors are usually caused by a client action. Actions can include using an * action or resource on behalf of an <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_terms-and-concepts.html">IAM principal</a> that doesn't have permissions to use * the action or resource or specifying an identifier that is not valid.</p> * * @throws {@link InvalidParameterException} (client fault) * <p>The specified parameter is invalid. Review the available parameters for the API * request.</p> * * @throws {@link InvalidRequestException} (client fault) * <p>The request is invalid given the state of the cluster. Check the state of the cluster * and the associated operations.</p> * * @throws {@link ResourceInUseException} (client fault) * <p>The specified resource is in use.</p> * * @throws {@link ResourceNotFoundException} (client fault) * <p>The specified resource could not be found. You can view your available clusters with * <code>ListClusters</code>. You can view your available managed node groups with * <code>ListNodegroups</code>. Amazon EKS clusters and node groups are Amazon Web Services Region * specific.</p> * * @throws {@link ServerException} (server fault) * <p>These errors are usually caused by a server-side issue.</p> * * @throws {@link EKSServiceException} * <p>Base exception class for all service exceptions from EKS service.</p> * * @public */ export declare class AssociateEncryptionConfigCommand extends AssociateEncryptionConfigCommand_base { /** @internal type navigation helper, not in runtime. */ protected static __types: { api: { input: AssociateEncryptionConfigRequest; output: AssociateEncryptionConfigResponse; }; sdk: { input: AssociateEncryptionConfigCommandInput; output: AssociateEncryptionConfigCommandOutput; }; }; }