Uses of Annotation Interface
com.cloudforge.core.annotation.ConfigField

Packages that use ConfigField

Package	Description
com.cloudforge.core.config

Uses of ConfigField in com.cloudforge.core.config

Fields in com.cloudforge.core.config with annotations of type ConfigField

Modifier and Type	Field	Description
Boolean	DeploymentConfig.albAccessLogging	Enable ALB access logs to S3
Boolean	DeploymentConfig.antiMalwareEnabled	Enable anti-malware scanning
String	DeploymentConfig.applicationId	Application identifier (e.g., "jenkins", "gitlab", "vault")
String	DeploymentConfig.applicationName	Human-readable application name
String	DeploymentConfig.artifactsBucket	S3 bucket for artifacts
String	DeploymentConfig.artifactsPrefix	S3 prefix for artifacts
Boolean	DeploymentConfig.auditManagerEnabled	Enable AWS Audit Manager
AuthMode	DeploymentConfig.authMode	Authentication mode
Boolean	DeploymentConfig.automatedBackupEnabled	Enable automated backups (null = use security profile default)
Boolean	DeploymentConfig.autoProvisionIdentityCenter	Auto-provision SAML application in IAM Identity Center
String[]	DeploymentConfig.availabilityZones	Availability zones for deployment
Boolean	DeploymentConfig.awsConfigEnabled	Enable AWS Config
String	DeploymentConfig.bastionCidr	CIDR for bastion/VPN SSH access
Boolean	DeploymentConfig.certificateExpirationMonitoring	Certificate expiration monitoring enabled
Boolean	DeploymentConfig.cloudfrontEnabled	Enable CloudFront CDN
Boolean	DeploymentConfig.cloudTrailEnabled	Enable CloudTrail for API audit logging
Boolean	DeploymentConfig.cloudTrailInsightsEnabled	Enable CloudTrail Insights
Boolean	DeploymentConfig.cloudWatchLogsKmsEncryptionEnabled	Enable CloudWatch Logs KMS encryption
String	DeploymentConfig.cognitoAdminGroupName	Admin group name
String	DeploymentConfig.cognitoAppClientId	Existing Cognito App Client ID
Boolean	DeploymentConfig.cognitoAutoProvision	Auto-provision new Cognito User Pool
Boolean	DeploymentConfig.cognitoCreateGroups	Create admin and user groups in Cognito
String	DeploymentConfig.cognitoDomainPrefix	Cognito domain prefix (must be globally unique)
String	DeploymentConfig.cognitoInitialAdminEmail	Initial admin email address
String	DeploymentConfig.cognitoInitialAdminPhone	Initial admin phone number (E.164 format)
Boolean	DeploymentConfig.cognitoMfaEnabled	Enable MFA for Cognito
String	DeploymentConfig.cognitoMfaMethod	Cognito MFA method
String	DeploymentConfig.cognitoUserGroupName	User group name
String	DeploymentConfig.cognitoUserPoolId	Existing Cognito User Pool ID
String	DeploymentConfig.cognitoUserPoolName	Cognito User Pool name
List<ComplianceFrameworkType>	DeploymentConfig.complianceFrameworks	Compliance frameworks to enable.
ComplianceMode	DeploymentConfig.complianceMode	Compliance validation mode controlling how validation failures are handled.
String	DeploymentConfig.containerImage	Override container image tag
Boolean	DeploymentConfig.containerImageScanning	Enable container image vulnerability scanning
Boolean	DeploymentConfig.containerRuntimeSecurity	Enable container runtime security monitoring
int	DeploymentConfig.cpu	Fargate CPU units (256, 512, 1024, 2048, 4096)
int	DeploymentConfig.cpuTargetUtilization	CPU target utilization percentage for auto-scaling
Boolean	DeploymentConfig.createConfigInfrastructure	Create AWS Config infrastructure
Boolean	DeploymentConfig.createGuardDutyDetector	Create GuardDuty detector (account-region singleton)
Boolean	DeploymentConfig.createZone	Create Route53 hosted zone
Boolean	DeploymentConfig.crossRegionBackupEnabled	Enable cross-region backups (null = use security profile default)
Integer	DeploymentConfig.databaseAllocatedStorageGB	Allocated storage in GB.
Integer	DeploymentConfig.databaseBackupRetentionDays	Backup retention period in days.
String	DeploymentConfig.databaseEngine	Database engine (e.g., postgres, mysql, mariadb).
String	DeploymentConfig.databaseInstanceClass	RDS instance class (e.g., db.t3.small, db.m5.large).
Boolean	DeploymentConfig.databaseMultiAz	Enable Multi-AZ deployment for high availability.
String	DeploymentConfig.databaseName	Database name.
String	DeploymentConfig.databaseVersion	Database engine version.
String	DeploymentConfig.domain	Primary domain (e.g., "example.com")
Boolean	DeploymentConfig.efsEncryptionInTransitEnabled	Enable EFS encryption in transit
boolean	DeploymentConfig.enableAgents	Enable JNLP build agent port (Jenkins: 50000)
Boolean	DeploymentConfig.enableAutoScaling	Enable auto-scaling
Boolean	DeploymentConfig.enableCloudTrailBucketAccessRemediation	Enable CloudTrail bucket access logging remediation
boolean	DeploymentConfig.enableCluster	Enable Redis Cluster bus port (Redis: 16379)
boolean	DeploymentConfig.enableClustering	Enable clustering ports (Mattermost: 8074-8075, Vault: 8201)
boolean	DeploymentConfig.enableDockerRegistry	Enable container registry port (GitLab: 5050, Nexus: 5000-5002)
Boolean	DeploymentConfig.enableEncryption	Enable encryption at rest
Boolean	DeploymentConfig.enableFlowlogs	Enable VPC flow logs
boolean	DeploymentConfig.enableMetrics	Enable Prometheus metrics port (GitLab: 9090)
Boolean	DeploymentConfig.enableMonitoring	Enable CloudWatch monitoring
boolean	DeploymentConfig.enableNotary	Enable Notary content trust port (Harbor: 4443)
Boolean	DeploymentConfig.enableRdsAutoMinorVersionUpgradeRemediation	Enable RDS auto minor version upgrade remediation
Boolean	DeploymentConfig.enableRdsDeletionProtectionRemediation	Enable RDS deletion protection remediation
Boolean	DeploymentConfig.enableS3VersioningRemediation	Enable S3 versioning remediation
boolean	DeploymentConfig.enableSentinel	Enable Redis Sentinel port (Redis: 26379)
boolean	DeploymentConfig.enableSmtp	Enable SMTP email port (Mattermost: 587)
boolean	DeploymentConfig.enableSmtps	Enable SMTP TLS email port (Mattermost: 465)
boolean	DeploymentConfig.enableSsh	Enable Git SSH port (GitLab: 22, Gitea: 2222)
Boolean	DeploymentConfig.enableSsl	Enable SSL certificate via ACM
boolean	DeploymentConfig.enableTrivy	Enable Trivy vulnerability scanner port (Harbor: 8080)
String	DeploymentConfig.environment	Environment name (e.g., "dev", "staging", "production")
String	DeploymentConfig.existingFileSystemId	Reuse existing EFS by ID (for disaster recovery workflows)
Boolean	DeploymentConfig.fileIntegrityMonitoring	Enable file integrity monitoring
String	DeploymentConfig.fqdn	Fully qualified domain name (computed from domain+subdomain if not provided)
Boolean	DeploymentConfig.gdprDataTransferApproved	GDPR data transfer approval flag for non-EU deployments.
Boolean	DeploymentConfig.guardDutyAlertsConfigured	GuardDuty alerts configured (EventBridge to SNS/SIEM)
Boolean	DeploymentConfig.guardDutyEnabled	Enable GuardDuty threat detection
int	DeploymentConfig.healthCheckGracePeriod
int	DeploymentConfig.healthCheckInterval
int	DeploymentConfig.healthCheckTimeout
int	DeploymentConfig.healthyThreshold
Boolean	DeploymentConfig.httpsStrictEnabled	HTTPS-only mode (no HTTP listener when SSL enabled)
String	DeploymentConfig.identityCenterGroupName	Identity Center group name for user assignment
Boolean	DeploymentConfig.inspectorEnabled	Enable Amazon Inspector for vulnerability scanning
String	DeploymentConfig.instanceType	EC2 instance type (e.g., "t3.micro", "t3.small")
LoadBalancerType	DeploymentConfig.lbType	Load balancer type
String	DeploymentConfig.logRetentionDays	CloudWatch Logs retention days
Boolean	DeploymentConfig.macieAutomatedDiscovery	Enable Macie automated discovery jobs
Boolean	DeploymentConfig.macieEnabled	Enable Amazon Macie for PII/PHI discovery (HIPAA/GDPR)
int	DeploymentConfig.maxInstanceCapacity	Maximum instance capacity for auto-scaling
int	DeploymentConfig.memory	Fargate memory in MB
int	DeploymentConfig.minInstanceCapacity	Minimum instance capacity for auto-scaling
NetworkMode	DeploymentConfig.networkMode	Network mode for VPC topology
String	DeploymentConfig.oidcAuthorizationEndpoint	OIDC authorization endpoint
String	DeploymentConfig.oidcClientId	OIDC client ID
String	DeploymentConfig.oidcClientSecretName	OIDC client secret name in Secrets Manager
String	DeploymentConfig.oidcIssuer	OIDC issuer URL
String	DeploymentConfig.oidcProvider	OIDC provider (none, cognito, identity-center, external-idp)
String	DeploymentConfig.oidcTokenEndpoint	OIDC token endpoint
String	DeploymentConfig.oidcUserInfoEndpoint	OIDC user info endpoint
Boolean	DeploymentConfig.provisionDatabase	Provision RDS database for application.
String	DeploymentConfig.region	AWS region (e.g., "us-east-1", "us-west-2")
Boolean	DeploymentConfig.restrictSecurityGroupEgress	Restrict security group egress to VPC CIDR only (requires VPC endpoints for AWS service access)
Boolean	DeploymentConfig.retainStorage	Retain EFS/EBS volumes on stack deletion
Boolean	DeploymentConfig.route53QueryLoggingEnabled	Enable Route53 Query Logging
RuntimeType	DeploymentConfig.runtime	Runtime type (FARGATE or EC2)
Boolean	DeploymentConfig.s3ObjectLockEnabled	Enable S3 Object Lock for audit buckets (HIPAA/PCI-DSS immutability requirement)
Boolean	DeploymentConfig.securityHubEnabled	Enable AWS Security Hub for centralized security findings
Boolean	DeploymentConfig.securityMonitoringEnabled	Enable security monitoring
SecurityProfile	DeploymentConfig.securityProfile	Security profile (DEV, STAGING, PRODUCTION)
String	DeploymentConfig.ssoGroupId	SSO Group ID
String	DeploymentConfig.ssoInstanceArn	IAM Identity Center (SSO) Instance ARN
String	DeploymentConfig.ssoTargetAccountId	SSO Target Account ID
String	DeploymentConfig.stackName	CloudFormation stack name
String	DeploymentConfig.subdomain	Subdomain prefix (e.g., "ci", "gitlab")
TopologyType	DeploymentConfig.topology	Topology type (APPLICATION_SERVICE, etc.)
int	DeploymentConfig.unhealthyThreshold
Boolean	DeploymentConfig.wafEnabled	Enable AWS WAF