Commit 2f16415

authored

feat(lambda): support for customer managed encryption (CMCMK) (#32072)

### Issue # (if applicable) NA ### Reason for this change AWS Lambda is adding a new feature that allows customers to use their own AWS KMS keys to encrypt their Lambda function code stored in Amazon S3. This gives customers greater control and flexibility over the encryption of their sensitive data and code. The new SourceKMSKeyArn field in the Lambda function's Code object enables customers to specify the ARN of the KMS key to be used for encryption. ### Description of how you validated changes Have added unit tests and integration test to verify the feature. ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

1 parent f598885 commit 2f16415Copy full SHA for 2f16415

23 files changed

+2935

-2

lines changed

packages
- @aws-cdk-testing/framework-integ/test/aws-lambda/test
  - integ.lambda-sourceKMSKeyArn.js.snapshot
    - CMCMK-Stack.assets.json
    - CMCMK-Stack.template.json
    - SourceKMSKeyArnDefaultTestDeployAssertA9940761.assets.json
    - SourceKMSKeyArnDefaultTestDeployAssertA9940761.template.json
    - asset.285f23e3fdafa13515eca3640773e339319628e600ff07e6a6f228748a1ac3e8
      - python-lambda-handler.zip
    - asset.44e9c4d7a5d3fd2d677e1a7e416b2b56f6b0104bd5eff9cac5557b4c65a9dc61
      - index.js
    - asset.bfb85829d4e929cc311029ef8f4408970030d737cc6d4c1911f7abd2991fa051.zip
    - asset.c6358465bf49dfae556bb430bf9c81fa578c221b82c308e3707901b1dd654762
      - index.py
    - asset.cab53c59addd4362c71a39b96e04505d5f53fa854b2ff7cbc6cd5925f5afca9d
      - index.py
      - requirements.txt
    - asset.f24ba5e516d9d80b64bc7b0f406eedd12c36b20e7461f3e7719b7ffbdad72410.zip
    - cdk.out
    - integ.json
    - manifest.json
    - tree.json
  - integ.lambda-sourceKMSKeyArn.ts
  - lambda-zip
    - python-lambda-handler.zip
- aws-cdk-lib
  - aws-lambda
    - README.md
    - lib
      - code.ts
      - function.ts
    - test
      - function.test.ts
  - aws-s3-assets/lib
    - asset.ts
  - awslint.json

23 files changed

+2935

-2

lines changed

`‎packages/@aws-cdk-testing/framework-integ/test/aws-lambda/test/integ.lambda-sourceKMSKeyArn.js.snapshot/CMCMK-Stack.assets.json`

+97

Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

Comments

(0)