-
Notifications
You must be signed in to change notification settings - Fork 17
/
Copy pathACS-KMS-BulkyUpdateRotationPolicy.json
83 lines (83 loc) · 1.9 KB
/
ACS-KMS-BulkyUpdateRotationPolicy.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
{
"FormatVersion": "OOS-2019-06-01",
"Description": {
"en": "Update rotation policy",
"zh-cn": "更新密钥轮转策略",
"name-en": "ACS-KMS-BulkyUpdateRotationPolicy",
"name-zh-cn": "更新密钥轮转策略",
"categories": [
"security"
]
},
"Parameters": {
"regionId": {
"Type": "String",
"Label": {
"en": "RegionId",
"zh-cn": "地域ID"
},
"AssociationProperty": "RegionId",
"Default": "{{ ACS::RegionId }}"
},
"keyIds": {
"Label": {
"en": "KeyIds",
"zh-cn": "密钥ID列表"
},
"Type": "List"
},
"rotationInterval": {
"Label": {
"en": "RotationInterval",
"zh-cn": "自动轮转的时间周期"
},
"Type": "String"
},
"rateControl": {
"Label": {
"en": "RateControl",
"zh-cn": "任务执行的并发比率"
},
"Type": "Json",
"AssociationProperty": "RateControl",
"Default": {
"Mode": "Concurrency",
"MaxErrors": 0,
"Concurrency": 10
}
},
"OOSAssumeRole": {
"Label": {
"en": "OOSAssumeRole",
"zh-cn": "OOS扮演的RAM角色"
},
"Type": "String",
"Default": ""
}
},
"RamRole": "{{ OOSAssumeRole }}",
"Tasks": [
{
"Name": "updateRotationPolicy",
"Action": "ACS::ExecuteAPI",
"Description": {
"en": "Update rotation policy",
"zh-cn": "更新密钥轮转策略"
},
"Properties": {
"Service": "KMS",
"API": "UpdateRotationPolicy",
"Parameters": {
"RegionId": "{{ regionId }}",
"KeyId": "{{ ACS::TaskLoopItem }}",
"EnableAutomaticRotation": true,
"RotationInterval": "{{ rotationInterval }}"
}
},
"Loop": {
"RateControl": "{{ rateControl }}",
"Items": "{{ keyIds }}"
}
}
]
}