Service Encryption Keys¶
Service Encryption Keys are used within organization services. They are used to encrypt data stored within file systems, e.g., Volumes and Shared File Systems, object-level storage, e.g., Storage Containers, back-ups, e.g., Snapshots, and other services, e.g., API Accounting Config. This class inherits from Resource and has direct access to the resource’s database object. The following attributes are directly accessible:
|The ID of the parent organization service (cloud)|
|attr key_id:||The provider id for the key|
|attr name:||The name of the key|
|The Service Region where they key is located|
|attr arn:||The Amazon Resource Name (ARN) of the encryption key|
|A description of the encryption key|
|attr state:||The state of the key, e.g., enabled|
|The number of resources using the encryption key|
|The date the key was created|
|The date the key is scheduled for deletion, if any|
|Whether key rotation is enabled or disabled|
|attr enabled:||Whether the key is enabled or not|
|The primary resource identifier that takes the form of a prefix followed by numbers and letters|
Describes a cloud provider access key within a organization service
Retrieve the time from the provider that this resource was created (if available).
Retrieve the dependencies for a particular resources. This is an override of the parent function because we need to reverse the order on our resource lookups.
Returns the ID of the access key as there is no name
Overrides parent function and returns the description field of this resource. This is required because not all resource types have a field explicitly called name.
Retrieve all the actions which are supported by this resource.
This should be called when a resource is created/discovered after the basic data is added to the database. This gives an opportunity for post-addition hooks (assignment to groups, alerts, etc)
This should be called when a resource is destroyed before the basic data is removed from the database. This gives an opportunity for pre-destruction hooks (removal from groups, alerts, etc)
handle_resource_modified(resource, *args, **kwargs)¶
This should be called when a resource is modified after the new data has been updated in the DB session This gives an opportunity for post-modification hooks