New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →

@aws-cdk/aws-dynamodb

Package Overview

Dependencies

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies

Install

@aws-cdk/aws-dynamodb

The CDK Construct Library for AWS::DynamoDB

1.130.0
Source
npm

Version published: 3 years ago

Weekly downloads: 28K; decreased by-21.75%

Maintainers: 5

Weekly downloads

Created: 7 years ago

Source

Amazon DynamoDB Construct Library

Here is a minimal deployable DynamoDB table definition:

import * as dynamodb from '@aws-cdk/aws-dynamodb';

const table = new dynamodb.Table(this, 'Table', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING }
});

Importing existing tables

To import an existing table into your CDK application, use the Table.fromTableName, Table.fromTableArn or Table.fromTableAttributes factory method. This method accepts table name or table ARN which describes the properties of an already existing table:

const table = Table.fromTableArn(this, 'ImportedTable', 'arn:aws:dynamodb:us-east-1:111111111:table/my-table');
// now you can just call methods on the table
table.grantReadWriteData(user);

If you intend to use the tableStreamArn (including indirectly, for example by creating an @aws-cdk/aws-lambda-event-source.DynamoEventSource on the imported table), you must use the Table.fromTableAttributes method and the tableStreamArn property must be populated.

Keys

When a table is defined, you must define it's schema using the partitionKey (required) and sortKey (optional) properties.

Billing Mode

DynamoDB supports two billing modes:

PROVISIONED - the default mode where the table and global secondary indexes have configured read and write capacity.
PAY_PER_REQUEST - on-demand pricing and scaling. You only pay for what you use and there is no read and write capacity for the table or its global secondary indexes.

import * as dynamodb from '@aws-cdk/aws-dynamodb';

const table = new dynamodb.Table(this, 'Table', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  billingMode: dynamodb.BillingMode.PAY_PER_REQUEST
});

Further reading: https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/HowItWorks.ReadWriteCapacityMode.

Configure AutoScaling for your table

You can have DynamoDB automatically raise and lower the read and write capacities of your table by setting up autoscaling. You can use this to either keep your tables at a desired utilization level, or by scaling up and down at pre-configured times of the day:

Auto-scaling is only relevant for tables with the billing mode, PROVISIONED.

Example of configuring autoscaling

Further reading: https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/AutoScaling.html https://aws.amazon.com/blogs/database/how-to-use-aws-cloudformation-to-configure-auto-scaling-for-amazon-dynamodb-tables-and-indexes/

Amazon DynamoDB Global Tables

You can create DynamoDB Global Tables by setting the replicationRegions property on a Table:

import * as dynamodb from '@aws-cdk/aws-dynamodb';

const globalTable = new dynamodb.Table(this, 'Table', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  replicationRegions: ['us-east-1', 'us-east-2', 'us-west-2'],
});

When doing so, a CloudFormation Custom Resource will be added to the stack in order to create the replica tables in the selected regions.

The default billing mode for Global Tables is PAY_PER_REQUEST. If you want to use PROVISIONED, you have to make sure write auto-scaling is enabled for that Table:

const globalTable = new dynamodb.Table(this, 'Table', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  replicationRegions: ['us-east-1', 'us-east-2', 'us-west-2'],
  billingMode: BillingMode.PROVISIONED,
});

globalTable.autoScaleWriteCapacity({
  minCapacity: 1,
  maxCapacity: 10,
}).scaleOnUtilization({ targetUtilizationPercent: 75 });

When adding a replica region for a large table, you might want to increase the timeout for the replication operation:

const globalTable = new dynamodb.Table(this, 'Table', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  replicationRegions: ['us-east-1', 'us-east-2', 'us-west-2'],
  replicationTimeout: Duration.hours(2), // defaults to Duration.minutes(30)
});

Encryption

All user data stored in Amazon DynamoDB is fully encrypted at rest. When creating a new table, you can choose to encrypt using the following customer master keys (CMK) to encrypt your table:

AWS owned CMK - By default, all tables are encrypted under an AWS owned customer master key (CMK) in the DynamoDB service account (no additional charges apply).
AWS managed CMK - AWS KMS keys (one per region) are created in your account, managed, and used on your behalf by AWS DynamoDB (AWS KMS charges apply).
Customer managed CMK - You have full control over the KMS key used to encrypt the DynamoDB Table (AWS KMS charges apply).

Creating a Table encrypted with a customer managed CMK:

import dynamodb = require('@aws-cdk/aws-dynamodb');

const table = new dynamodb.Table(stack, 'MyTable', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  encryption: TableEncryption.CUSTOMER_MANAGED,
});

// You can access the CMK that was added to the stack on your behalf by the Table construct via:
const tableEncryptionKey = table.encryptionKey;

You can also supply your own key:

import dynamodb = require('@aws-cdk/aws-dynamodb');
import kms = require('@aws-cdk/aws-kms');

const encryptionKey = new kms.Key(stack, 'Key', {
  enableKeyRotation: true
});
const table = new dynamodb.Table(stack, 'MyTable', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  encryption: TableEncryption.CUSTOMER_MANAGED,
  encryptionKey, // This will be exposed as table.encryptionKey
});

In order to use the AWS managed CMK instead, change the code to:

import dynamodb = require('@aws-cdk/aws-dynamodb');

const table = new dynamodb.Table(stack, 'MyTable', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  encryption: TableEncryption.AWS_MANAGED,
});

// In this case, the CMK _cannot_ be accessed through table.encryptionKey.

Get schema of table or secondary indexes

To get the partition key and sort key of the table or indexes you have configured:

const { partitionKey, sortKey } = table.schema();

// In case you want to get schema details for any secondary index

const { partitionKey, sortKey } = table.schema(INDEX_NAME);

Kinesis Stream

A Kinesis Data Stream can be configured on the DynamoDB table to capture item-level changes.

import * as dynamodb from '@aws-cdk/aws-dynamodb';
import * as kinesis from '@aws-cdk/aws-kinesis';

const stream = new kinesis.Stream(this, 'Stream');

const table = new dynamodb.Table(this, 'Table', {
  partitionKey: { name: 'id', type: dynamodb.AttributeType.STRING },
  kinesisStream: stream,
});

1.130.0 (2021-10-29)

Features

amplify: Add support for custom headers in the App (#17102) (9f3abd7), closes #17084
aws-route53-targets: Support for Elastic Beanstalk environment URLs (#16305) (bc07cb0)
cli: deployment progress shows stack name (#16604) (322cf10)
cloudfront: add amplify managed cache policy (#16880) (8d0c555)
codebuild: add fromEcrRepository to LinuxGpuBuildImage (#17170) (7585680), closes #16500
core: Docker tags can be prefixed (#17028) (d298696)
core: subtract Durations (#16734) (7a333b0), closes #16535
ec2: add c5ad instances (#16428) (0318253)
ec2: add region parameter for UserData via addS3DownloadCommand (#16667) (691d377), closes #8287
ec2: add vpcArn to IVpc and Vpc (#16666) (7b31376), closes #16493
ec2: add X2g instances (for RDS) (#17081) (443a23e), closes /github.com/aws/aws-cdk/issues/16948#issuecomment-946254267 #16948
ec2: include p4d instance class (#17147) (6e13adc)
ec2: look up VPC from different regions (#16728) (f1e244b), closes #10208
ec2: VPC endpoint for AWS Xray (#16788) (c24af54), closes #16306
events: DLQ support for EventBus target (#16383) (dbb3f25), closes #15954
iot: add the TopicRule L2 construct (#16681) (86f85ce), closes #16602
iot: allow setting Actions of TopicRule (#17110) (0cabb9f), closes #16681 /github.com/aws/aws-cdk/pull/16681#discussion_r733912215
iot: create new aws-iot-actions module (#17112) (06838e6), closes #16681 /github.com/aws/aws-cdk/pull/16681#discussion_r733912215
lambda-nodejs: esbuild charset option (#16726) (56033a2), closes #16668
lambda-nodejs: typescript emitDecoratorMetadata support (#16543) (55d3c50), closes #13767
rds: support backtrackWindow in DatabaseCluster (#17160) (fcd17e9), closes #9369 #9369
route53: Expose VpcEndpointServiceDomainName domain name as a property (#16458) (e063fbd)
sns: addSubscription returns the created Subscription (#16785) (62f389e)
synthetics: add syn-nodejs-puppeteer-3.3 runtime (#17132) (8343bec)

Bug Fixes

cli: downgrade bootstrap stack error message needs a hint for new-style synthesis (#16237) (e55301b)
core: DefaultSynthesizer deployments are never skipped (#17099) (c74b012), closes #16959
core: SecretValue.secretsManager fails for tokenized secret-id (#16230) (5831456), closes #16166
custom-resources: invalid service name leads to unhelpful error message (#16718) (354686b), closes #7312
custom-resources: Role Session Name can exceed maximum size (#16680) (3617b70)
elasticloadbalancingv2: always set stickiness (#17111) (0a23953), closes #16620
lambda-event-sources: dynamo batch size cannot be a CfnParameter (#16540) (56974ac), closes #16221
logs: Apply tags to log retention Lambda (#17029) (a6aaa64), closes #15032
rds: using both Instance imports & exports for Postgres fails deployment (#17060) (ab627c6), closes #16757
redshift: cluster uses key ARN instead of key ID (#17108) (bdf30c6), closes #17032

Keywords

FAQs

What is @aws-cdk/aws-dynamodb?

Is @aws-cdk/aws-dynamodb popular?

Is @aws-cdk/aws-dynamodb well maintained?

Package last updated on 29 Oct 2021

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install