Skip to main content

Initializer 

import cdktn

cdktn.OssBackendConfig(
  bucket: str,
  access_key: str = None,
  acl: str = None,
  assume_role: OssAssumeRole = None,
  assume_role_policy: str = None,
  assume_role_role_arn: str = None,
  assume_role_session_expiration: typing.Union[int, float] = None,
  assume_role_session_name: str = None,
  ecs_role_name: str = None,
  encrypt: bool = None,
  endpoint: str = None,
  key: str = None,
  prefix: str = None,
  profile: str = None,
  region: str = None,
  secret_key: str = None,
  security_token: str = None,
  shared_credentials_file: str = None,
  sts_endpoint: str = None,
  tablestore_endpoint: str = None,
  tablestore_table: str = None
)

Properties

NameTypeDescription
bucketstr(Required) The name of the OSS bucket.
access_keystr(Optional) Alibaba Cloud access key.
aclstr(Optional) Object ACL to be applied to the state file.
assume_roleOssAssumeRoleNo description.
assume_role_policystr(Optional, Available in 1.1.0+) A more restrictive policy to apply to the temporary credentials. This gives you a way to further restrict the permissions for the resulting temporary security credentials. You cannot use this policy to grant permissions that exceed those of the role that is being assumed.
assume_role_role_arnstr(Optional, Available in 1.1.0+) The ARN of the role to assume. If ARN is set to an empty string, it does not perform role switching. It supports the environment variable ALICLOUD_ASSUME_ROLE_ARN. Terraform executes configuration on account with provided credentials.
assume_role_session_expirationtyping.Union[int, float](Optional, Available in 1.1.0+) The time after which the established session for assuming role expires. Valid value range: [900-3600] seconds. Default to 3600 (in this case Alibaba Cloud uses its own default value). It supports environment variable ALICLOUD_ASSUME_ROLE_SESSION_EXPIRATION.
assume_role_session_namestr(Optional, Available in 1.1.0+) The session name to use when assuming the role. If omitted, ‘terraform’ is passed to the AssumeRole call as session name. It supports environment variable ALICLOUD_ASSUME_ROLE_SESSION_NAME.
ecs_role_namestr(Optional, Available in 0.12.14+) The RAM Role Name attached on a ECS instance for API operations. You can retrieve this from the ‘Access Control’ section of the Alibaba Cloud console.
encryptbool(Optional) Whether to enable server side encryption of the state file.
endpointstr(Optional) A custom endpoint for the OSS API.
keystr(Optional) The name of the state file.
prefixstr(Optional) The path directory of the state file will be stored.
profilestr(Optional, Available in 0.12.8+) This is the Alibaba Cloud profile name as set in the shared credentials file. It can also be sourced from the ALICLOUD_PROFILE environment variable.
regionstr(Optional) The region of the OSS bucket.
secret_keystr(Optional) Alibaba Cloud secret access key.
security_tokenstr(Optional) STS access token.
shared_credentials_filestr(Optional, Available in 0.12.8+) This is the path to the shared credentials file. It can also be sourced from the ALICLOUD_SHARED_CREDENTIALS_FILE environment variable. If this is not set and a profile is specified, ~/.aliyun/config.json will be used.
sts_endpointstr(Optional, Available in 1.0.11+) Custom endpoint for the AliCloud Security Token Service (STS) API. It supports environment variable ALICLOUD_STS_ENDPOINT.
tablestore_endpointstr(Optional) A custom endpoint for the TableStore API.
tablestore_tablestr(Optional) A TableStore table for state locking and consistency.

bucketRequired 

bucket: str
  • Type: str
(Required) The name of the OSS bucket.

access_keyOptional 

access_key: str
  • Type: str
(Optional) Alibaba Cloud access key. It supports environment variables ALICLOUD_ACCESS_KEY and ALICLOUD_ACCESS_KEY_ID.

aclOptional 

acl: str
  • Type: str
(Optional) Object ACL to be applied to the state file.

assume_roleOptional

  • Deprecated: Use flattened assume role options
assume_role: OssAssumeRole

assume_role_policyOptional 

assume_role_policy: str
  • Type: str
(Optional, Available in 1.1.0+) A more restrictive policy to apply to the temporary credentials. This gives you a way to further restrict the permissions for the resulting temporary security credentials. You cannot use this policy to grant permissions that exceed those of the role that is being assumed.

assume_role_role_arnOptional 

assume_role_role_arn: str
  • Type: str
(Optional, Available in 1.1.0+) The ARN of the role to assume. If ARN is set to an empty string, it does not perform role switching. It supports the environment variable ALICLOUD_ASSUME_ROLE_ARN. Terraform executes configuration on account with provided credentials.

assume_role_session_expirationOptional 

assume_role_session_expiration: typing.Union[int, float]
  • Type: typing.Union[int, float]
(Optional, Available in 1.1.0+) The time after which the established session for assuming role expires. Valid value range: [900-3600] seconds. Default to 3600 (in this case Alibaba Cloud uses its own default value). It supports environment variable ALICLOUD_ASSUME_ROLE_SESSION_EXPIRATION.

assume_role_session_nameOptional 

assume_role_session_name: str
  • Type: str
(Optional, Available in 1.1.0+) The session name to use when assuming the role. If omitted, ‘terraform’ is passed to the AssumeRole call as session name. It supports environment variable ALICLOUD_ASSUME_ROLE_SESSION_NAME.

ecs_role_nameOptional 

ecs_role_name: str
  • Type: str
(Optional, Available in 0.12.14+) The RAM Role Name attached on a ECS instance for API operations. You can retrieve this from the ‘Access Control’ section of the Alibaba Cloud console.

encryptOptional 

encrypt: bool
  • Type: bool
(Optional) Whether to enable server side encryption of the state file. If it is true, OSS will use ‘AES256’ encryption algorithm to encrypt state file.

endpointOptional 

endpoint: str
  • Type: str
(Optional) A custom endpoint for the OSS API. It supports environment variables ALICLOUD_OSS_ENDPOINT and OSS_ENDPOINT.

keyOptional 

key: str
  • Type: str
(Optional) The name of the state file. Defaults to terraform.tfstate.

prefixOptional 

prefix: str
  • Type: str
(Optional) The path directory of the state file will be stored. Default to “env:”.

profileOptional 

profile: str
  • Type: str
(Optional, Available in 0.12.8+) This is the Alibaba Cloud profile name as set in the shared credentials file. It can also be sourced from the ALICLOUD_PROFILE environment variable.

regionOptional 

region: str
  • Type: str
(Optional) The region of the OSS bucket. It supports environment variables ALICLOUD_REGION and ALICLOUD_DEFAULT_REGION.

secret_keyOptional 

secret_key: str
  • Type: str
(Optional) Alibaba Cloud secret access key. It supports environment variables ALICLOUD_SECRET_KEY and ALICLOUD_ACCESS_KEY_SECRET.

security_tokenOptional 

security_token: str
  • Type: str
(Optional) STS access token. It supports environment variable ALICLOUD_SECURITY_TOKEN.

shared_credentials_fileOptional 

shared_credentials_file: str
  • Type: str
(Optional, Available in 0.12.8+) This is the path to the shared credentials file. It can also be sourced from the ALICLOUD_SHARED_CREDENTIALS_FILE environment variable. If this is not set and a profile is specified, ~/.aliyun/config.json will be used.

sts_endpointOptional 

sts_endpoint: str
  • Type: str
(Optional, Available in 1.0.11+) Custom endpoint for the AliCloud Security Token Service (STS) API. It supports environment variable ALICLOUD_STS_ENDPOINT.

tablestore_endpointOptional 

tablestore_endpoint: str
  • Type: str
(Optional) A custom endpoint for the TableStore API.

tablestore_tableOptional 

tablestore_table: str
  • Type: str
(Optional) A TableStore table for state locking and consistency. The table must have a primary key named LockID of type String.