We recommend new projects start with resources from the AWS provider.
aws-native.logs.getLogGroup
Explore with Pulumi AI
We recommend new projects start with resources from the AWS provider.
The AWS::Logs::LogGroup
resource specifies a log group. A log group defines common properties for log streams, such as their retention and access control rules. Each log stream must belong to one log group.
You can create up to 1,000,000 log groups per Region per account. You must use the following guidelines when naming a log group:
- Log group names must be unique within a Region for an AWS account.
- Log group names can be between 1 and 512 characters long.
- Log group names consist of the following characters: a-z, A-Z, 0-9, ‘_’ (underscore), ‘-’ (hyphen), ‘/’ (forward slash), and ‘.’ (period).
Using getLogGroup
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getLogGroup(args: GetLogGroupArgs, opts?: InvokeOptions): Promise<GetLogGroupResult>
function getLogGroupOutput(args: GetLogGroupOutputArgs, opts?: InvokeOptions): Output<GetLogGroupResult>
def get_log_group(log_group_name: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetLogGroupResult
def get_log_group_output(log_group_name: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetLogGroupResult]
func LookupLogGroup(ctx *Context, args *LookupLogGroupArgs, opts ...InvokeOption) (*LookupLogGroupResult, error)
func LookupLogGroupOutput(ctx *Context, args *LookupLogGroupOutputArgs, opts ...InvokeOption) LookupLogGroupResultOutput
> Note: This function is named LookupLogGroup
in the Go SDK.
public static class GetLogGroup
{
public static Task<GetLogGroupResult> InvokeAsync(GetLogGroupArgs args, InvokeOptions? opts = null)
public static Output<GetLogGroupResult> Invoke(GetLogGroupInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetLogGroupResult> getLogGroup(GetLogGroupArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: aws-native:logs:getLogGroup
arguments:
# arguments dictionary
The following arguments are supported:
- Log
Group stringName - The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.
- Log
Group stringName - The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.
- log
Group StringName - The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.
- log
Group stringName - The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.
- log_
group_ strname - The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.
- log
Group StringName - The name of the log group. If you don't specify a name, CFNlong generates a unique ID for the log group.
getLogGroup Result
The following output properties are available:
- Arn string
- The ARN of the log group, such as
arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*
- Data
Protection objectPolicy Creates a data protection policy and assigns it to the log group. A data protection policy can help safeguard sensitive data that's ingested by the log group by auditing and masking the sensitive log data. When a user who does not have permission to view masked data views a log event that includes masked data, the sensitive data is replaced by asterisks. For more information, including a list of types of data that can be audited and masked, see Protect sensitive log data with masking.
Search the CloudFormation User Guide for
AWS::Logs::LogGroup
for more information about the expected schema for this property.- Kms
Key stringId - The Amazon Resource Name (ARN) of the KMS key to use when encrypting log data.
To associate an KMS key with the log group, specify the ARN of that KMS key here. If you do so, ingested data is encrypted using this key. This association is stored as long as the data encrypted with the KMS key is still within CWL. This enables CWL to decrypt this data whenever it is requested.
If you attempt to associate a KMS key with the log group but the KMS key doesn't exist or is deactivated, you will receive an
InvalidParameterException
error. Log group data is always encrypted in CWL. If you omit this key, the encryption does not use KMS. For more information, see Encrypt log data in using - Log
Group Pulumi.Class Aws Native. Logs. Log Group Class Specifies the log group class for this log group. There are two classes:
- The
Standard
log class supports all CWL features. - The
Infrequent Access
log class supports a subset of CWL features and incurs lower costs.
For details about the features supported by each class, see Log classes
- The
- Retention
In intDays - The number of days to retain the log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1096, 1827, 2192, 2557, 2922, 3288, and 3653. To set a log group so that its log events do not expire, use DeleteRetentionPolicy.
- List<Pulumi.
Aws Native. Outputs. Tag> - An array of key-value pairs to apply to the log group. For more information, see Tag.
- Arn string
- The ARN of the log group, such as
arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*
- Data
Protection interface{}Policy Creates a data protection policy and assigns it to the log group. A data protection policy can help safeguard sensitive data that's ingested by the log group by auditing and masking the sensitive log data. When a user who does not have permission to view masked data views a log event that includes masked data, the sensitive data is replaced by asterisks. For more information, including a list of types of data that can be audited and masked, see Protect sensitive log data with masking.
Search the CloudFormation User Guide for
AWS::Logs::LogGroup
for more information about the expected schema for this property.- Kms
Key stringId - The Amazon Resource Name (ARN) of the KMS key to use when encrypting log data.
To associate an KMS key with the log group, specify the ARN of that KMS key here. If you do so, ingested data is encrypted using this key. This association is stored as long as the data encrypted with the KMS key is still within CWL. This enables CWL to decrypt this data whenever it is requested.
If you attempt to associate a KMS key with the log group but the KMS key doesn't exist or is deactivated, you will receive an
InvalidParameterException
error. Log group data is always encrypted in CWL. If you omit this key, the encryption does not use KMS. For more information, see Encrypt log data in using - Log
Group LogClass Group Class Specifies the log group class for this log group. There are two classes:
- The
Standard
log class supports all CWL features. - The
Infrequent Access
log class supports a subset of CWL features and incurs lower costs.
For details about the features supported by each class, see Log classes
- The
- Retention
In intDays - The number of days to retain the log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1096, 1827, 2192, 2557, 2922, 3288, and 3653. To set a log group so that its log events do not expire, use DeleteRetentionPolicy.
- Tag
- An array of key-value pairs to apply to the log group. For more information, see Tag.
- arn String
- The ARN of the log group, such as
arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*
- data
Protection ObjectPolicy Creates a data protection policy and assigns it to the log group. A data protection policy can help safeguard sensitive data that's ingested by the log group by auditing and masking the sensitive log data. When a user who does not have permission to view masked data views a log event that includes masked data, the sensitive data is replaced by asterisks. For more information, including a list of types of data that can be audited and masked, see Protect sensitive log data with masking.
Search the CloudFormation User Guide for
AWS::Logs::LogGroup
for more information about the expected schema for this property.- kms
Key StringId - The Amazon Resource Name (ARN) of the KMS key to use when encrypting log data.
To associate an KMS key with the log group, specify the ARN of that KMS key here. If you do so, ingested data is encrypted using this key. This association is stored as long as the data encrypted with the KMS key is still within CWL. This enables CWL to decrypt this data whenever it is requested.
If you attempt to associate a KMS key with the log group but the KMS key doesn't exist or is deactivated, you will receive an
InvalidParameterException
error. Log group data is always encrypted in CWL. If you omit this key, the encryption does not use KMS. For more information, see Encrypt log data in using - log
Group LogClass Group Class Specifies the log group class for this log group. There are two classes:
- The
Standard
log class supports all CWL features. - The
Infrequent Access
log class supports a subset of CWL features and incurs lower costs.
For details about the features supported by each class, see Log classes
- The
- retention
In IntegerDays - The number of days to retain the log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1096, 1827, 2192, 2557, 2922, 3288, and 3653. To set a log group so that its log events do not expire, use DeleteRetentionPolicy.
- List<Tag>
- An array of key-value pairs to apply to the log group. For more information, see Tag.
- arn string
- The ARN of the log group, such as
arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*
- data
Protection anyPolicy Creates a data protection policy and assigns it to the log group. A data protection policy can help safeguard sensitive data that's ingested by the log group by auditing and masking the sensitive log data. When a user who does not have permission to view masked data views a log event that includes masked data, the sensitive data is replaced by asterisks. For more information, including a list of types of data that can be audited and masked, see Protect sensitive log data with masking.
Search the CloudFormation User Guide for
AWS::Logs::LogGroup
for more information about the expected schema for this property.- kms
Key stringId - The Amazon Resource Name (ARN) of the KMS key to use when encrypting log data.
To associate an KMS key with the log group, specify the ARN of that KMS key here. If you do so, ingested data is encrypted using this key. This association is stored as long as the data encrypted with the KMS key is still within CWL. This enables CWL to decrypt this data whenever it is requested.
If you attempt to associate a KMS key with the log group but the KMS key doesn't exist or is deactivated, you will receive an
InvalidParameterException
error. Log group data is always encrypted in CWL. If you omit this key, the encryption does not use KMS. For more information, see Encrypt log data in using - log
Group LogClass Group Class Specifies the log group class for this log group. There are two classes:
- The
Standard
log class supports all CWL features. - The
Infrequent Access
log class supports a subset of CWL features and incurs lower costs.
For details about the features supported by each class, see Log classes
- The
- retention
In numberDays - The number of days to retain the log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1096, 1827, 2192, 2557, 2922, 3288, and 3653. To set a log group so that its log events do not expire, use DeleteRetentionPolicy.
- Tag[]
- An array of key-value pairs to apply to the log group. For more information, see Tag.
- arn str
- The ARN of the log group, such as
arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*
- data_
protection_ Anypolicy Creates a data protection policy and assigns it to the log group. A data protection policy can help safeguard sensitive data that's ingested by the log group by auditing and masking the sensitive log data. When a user who does not have permission to view masked data views a log event that includes masked data, the sensitive data is replaced by asterisks. For more information, including a list of types of data that can be audited and masked, see Protect sensitive log data with masking.
Search the CloudFormation User Guide for
AWS::Logs::LogGroup
for more information about the expected schema for this property.- kms_
key_ strid - The Amazon Resource Name (ARN) of the KMS key to use when encrypting log data.
To associate an KMS key with the log group, specify the ARN of that KMS key here. If you do so, ingested data is encrypted using this key. This association is stored as long as the data encrypted with the KMS key is still within CWL. This enables CWL to decrypt this data whenever it is requested.
If you attempt to associate a KMS key with the log group but the KMS key doesn't exist or is deactivated, you will receive an
InvalidParameterException
error. Log group data is always encrypted in CWL. If you omit this key, the encryption does not use KMS. For more information, see Encrypt log data in using - log_
group_ Logclass Group Class Specifies the log group class for this log group. There are two classes:
- The
Standard
log class supports all CWL features. - The
Infrequent Access
log class supports a subset of CWL features and incurs lower costs.
For details about the features supported by each class, see Log classes
- The
- retention_
in_ intdays - The number of days to retain the log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1096, 1827, 2192, 2557, 2922, 3288, and 3653. To set a log group so that its log events do not expire, use DeleteRetentionPolicy.
- Sequence[root_Tag]
- An array of key-value pairs to apply to the log group. For more information, see Tag.
- arn String
- The ARN of the log group, such as
arn:aws:logs:us-west-1:123456789012:log-group:/mystack-testgroup-12ABC1AB12A1:*
- data
Protection AnyPolicy Creates a data protection policy and assigns it to the log group. A data protection policy can help safeguard sensitive data that's ingested by the log group by auditing and masking the sensitive log data. When a user who does not have permission to view masked data views a log event that includes masked data, the sensitive data is replaced by asterisks. For more information, including a list of types of data that can be audited and masked, see Protect sensitive log data with masking.
Search the CloudFormation User Guide for
AWS::Logs::LogGroup
for more information about the expected schema for this property.- kms
Key StringId - The Amazon Resource Name (ARN) of the KMS key to use when encrypting log data.
To associate an KMS key with the log group, specify the ARN of that KMS key here. If you do so, ingested data is encrypted using this key. This association is stored as long as the data encrypted with the KMS key is still within CWL. This enables CWL to decrypt this data whenever it is requested.
If you attempt to associate a KMS key with the log group but the KMS key doesn't exist or is deactivated, you will receive an
InvalidParameterException
error. Log group data is always encrypted in CWL. If you omit this key, the encryption does not use KMS. For more information, see Encrypt log data in using - log
Group "STANDARD" | "INFREQUENT_ACCESS"Class Specifies the log group class for this log group. There are two classes:
- The
Standard
log class supports all CWL features. - The
Infrequent Access
log class supports a subset of CWL features and incurs lower costs.
For details about the features supported by each class, see Log classes
- The
- retention
In NumberDays - The number of days to retain the log events in the specified log group. Possible values are: 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1096, 1827, 2192, 2557, 2922, 3288, and 3653. To set a log group so that its log events do not expire, use DeleteRetentionPolicy.
- List<Property Map>
- An array of key-value pairs to apply to the log group. For more information, see Tag.
Supporting Types
LogGroupClass
Tag
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.