本文整理汇总了Java中com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider类的典型用法代码示例。如果您正苦于以下问题:Java KMSEncryptionMaterialsProvider类的具体用法?Java KMSEncryptionMaterialsProvider怎么用?Java KMSEncryptionMaterialsProvider使用的例子?那么恭喜您, 这里精选的类代码示例或许可以为您提供帮助。
KMSEncryptionMaterialsProvider类属于com.amazonaws.services.s3.model包,在下文中一共展示了KMSEncryptionMaterialsProvider类的7个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于我们的系统推荐出更棒的Java代码示例。
示例1: encryptionOnly_KmsManagedKey
import com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider; //导入依赖的package包/类
/**
* This uses the V2 metadata schema with a key wrap algorithm of 'kms' and a CEK algorithm of AES/CBC/PKCS5Padding.
*/
public void encryptionOnly_KmsManagedKey() throws NoSuchAlgorithmException {
AmazonS3Encryption s3Encryption = AmazonS3EncryptionClientBuilder
.standard()
.withRegion(Regions.US_WEST_2)
.withCryptoConfiguration(new CryptoConfiguration(CryptoMode.EncryptionOnly))
// Can either be Key ID or alias (prefixed with 'alias/')
.withEncryptionMaterials(new KMSEncryptionMaterialsProvider("alias/s3-kms-key"))
.build();
AmazonS3 s3NonEncrypt = AmazonS3ClientBuilder.defaultClient();
s3Encryption.putObject(BUCKET_NAME, ENCRYPTED_KEY, "some contents");
s3NonEncrypt.putObject(BUCKET_NAME, NON_ENCRYPTED_KEY, "some other contents");
System.out.println(s3Encryption.getObjectAsString(BUCKET_NAME, ENCRYPTED_KEY));
System.out.println(s3Encryption.getObjectAsString(BUCKET_NAME, NON_ENCRYPTED_KEY));
}
开发者ID:awsdocs,项目名称:aws-doc-sdk-examples,代码行数:20,代码来源:S3Encrypt.java
示例2: authenticatedEncryption_KmsManagedKey
import com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider; //导入依赖的package包/类
/**
* This uses the V2 metadata schema with a key wrap algorithm of 'kms' and a CEK algorithm of AES/GCM/NoPadding.
*/
public void authenticatedEncryption_KmsManagedKey() throws NoSuchAlgorithmException {
AmazonS3Encryption s3Encryption = AmazonS3EncryptionClientBuilder
.standard()
.withRegion(Regions.US_WEST_2)
.withCryptoConfiguration(new CryptoConfiguration(CryptoMode.AuthenticatedEncryption))
// Can either be Key ID or alias (prefixed with 'alias/')
.withEncryptionMaterials(new KMSEncryptionMaterialsProvider("alias/s3-kms-key"))
.build();
AmazonS3 s3NonEncrypt = AmazonS3ClientBuilder.defaultClient();
s3Encryption.putObject(BUCKET_NAME, ENCRYPTED_KEY, "some contents");
s3NonEncrypt.putObject(BUCKET_NAME, NON_ENCRYPTED_KEY, "some other contents");
System.out.println(s3Encryption.getObjectAsString(BUCKET_NAME, ENCRYPTED_KEY));
System.out.println(s3Encryption.getObjectAsString(BUCKET_NAME, NON_ENCRYPTED_KEY));
}
开发者ID:awsdocs,项目名称:aws-doc-sdk-examples,代码行数:20,代码来源:S3Encrypt.java
示例3: strictAuthenticatedEncryption_KmsManagedKey
import com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider; //导入依赖的package包/类
/**
* Same as authenticatedEncryption_KmsManagedKey except throws an exception when trying to get objects not encrypted with
* AES/GCM.
*/
public void strictAuthenticatedEncryption_KmsManagedKey() throws NoSuchAlgorithmException {
AmazonS3Encryption s3Encryption = AmazonS3EncryptionClientBuilder
.standard()
.withRegion(Regions.US_WEST_2)
.withCryptoConfiguration(new CryptoConfiguration(CryptoMode.AuthenticatedEncryption))
// Can either be Key ID or alias (prefixed with 'alias/')
.withEncryptionMaterials(new KMSEncryptionMaterialsProvider("alias/s3-kms-key"))
.build();
AmazonS3 s3NonEncrypt = AmazonS3ClientBuilder.defaultClient();
s3Encryption.putObject(BUCKET_NAME, ENCRYPTED_KEY, "some contents");
s3NonEncrypt.putObject(BUCKET_NAME, NON_ENCRYPTED_KEY, "some other contents");
try {
s3Encryption.getObjectAsString(BUCKET_NAME, NON_ENCRYPTED_KEY);
} catch (SecurityException e) {
// Strict authenticated encryption will throw an exception if an object is not encrypted with AES/GCM
System.err.println(NON_ENCRYPTED_KEY + " was not encrypted with AES/GCM");
}
}
开发者ID:awsdocs,项目名称:aws-doc-sdk-examples,代码行数:25,代码来源:S3Encrypt.java
示例4: getEncryptedStoreServiceForRegion
import com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider; //导入依赖的package包/类
private S3StoreService getEncryptedStoreServiceForRegion(String region) {
Optional<BackupRegionInfo> backupRegionInfo = configStore.getBackupInfoForRegion(region);
if (! backupRegionInfo.isPresent()) {
String kmsCmkId = provisionKmsCmkForBackupRegion(region);
String backupBucket = provisionBackupBucketForRegion(region);
configStore.storeBackupInfoForRegion(region, backupBucket, kmsCmkId);
backupRegionInfo = Optional.of(new BackupRegionInfo(backupBucket, kmsCmkId));
}
KMSEncryptionMaterialsProvider materialProvider =
new KMSEncryptionMaterialsProvider(backupRegionInfo.get().getKmsCmkId());
AmazonS3Encryption encryptionClient =
AmazonS3EncryptionClientBuilder.standard()
.withCredentials(getAWSCredentialsProviderChain())
.withEncryptionMaterials(materialProvider)
.withCryptoConfiguration(new CryptoConfiguration()
.withAwsKmsRegion(Region.getRegion(Regions.fromName(region))))
.withRegion(region)
.build();
S3StoreService storeService = new S3StoreService(encryptionClient, backupRegionInfo.get().getS3Bucket(), "");
regionToEncryptedStoreServiceMap.put(region, storeService);
return storeService;
}
开发者ID:Nike-Inc,项目名称:cerberus-lifecycle-cli,代码行数:27,代码来源:CreateCerberusBackupOperation.java
示例5: initEncryptedConfigStoreService
import com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider; //导入依赖的package包/类
private void initEncryptedConfigStoreService() {
if (encryptedConfigStoreService == null) {
final Environment environment = getEnvironmentData();
KMSEncryptionMaterialsProvider materialProvider =
new KMSEncryptionMaterialsProvider(environment.getConfigKeyId());
AmazonS3EncryptionClient encryptionClient =
new AmazonS3EncryptionClient(
new DefaultAWSCredentialsProviderChain(),
materialProvider,
new CryptoConfiguration()
.withAwsKmsRegion(Region.getRegion(environmentMetadata.getRegions())))
.withRegion(Region.getRegion(environmentMetadata.getRegions()));
encryptedConfigStoreService = new S3StoreService(encryptionClient, environmentMetadata.getBucketName(), "");
}
}
开发者ID:Nike-Inc,项目名称:cerberus-lifecycle-cli,代码行数:19,代码来源:ConfigStore.java
示例6: CmsEnvPropertiesLoader
import com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider; //导入依赖的package包/类
public CmsEnvPropertiesLoader(final String bucketName, final String region, final String kmsKeyId) {
final KMSEncryptionMaterialsProvider materialProvider =
new KMSEncryptionMaterialsProvider(kmsKeyId);
this.s3Client =
new AmazonS3EncryptionClient(
new DefaultAWSCredentialsProviderChain(),
materialProvider,
new CryptoConfiguration()
.withAwsKmsRegion(Region.getRegion(
Regions.fromName(region))))
.withRegion(Region.getRegion(Regions.fromName(region)));
this.bucketName = bucketName;
}
开发者ID:Nike-Inc,项目名称:cerberus-management-service,代码行数:16,代码来源:CmsEnvPropertiesLoader.java
示例7: getS3EncryptionStoreService
import com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider; //导入依赖的package包/类
private S3StoreService getS3EncryptionStoreService(String cmkId,
RestoreCerberusBackupCommand command) {
Region region = Region.getRegion(Regions.fromName(command.getS3Region()));
KMSEncryptionMaterialsProvider materialProvider = new KMSEncryptionMaterialsProvider(cmkId);
AmazonS3EncryptionClient encryptionClient =
new AmazonS3EncryptionClient(
new DefaultAWSCredentialsProviderChain(),
materialProvider,
new CryptoConfiguration()
.withAwsKmsRegion(region))
.withRegion(region);
return new S3StoreService(encryptionClient, command.getS3Bucket(), command.getS3Prefix());
}
开发者ID:Nike-Inc,项目名称:cerberus-lifecycle-cli,代码行数:16,代码来源:RestoreCerberusBackupOperation.java
注:本文中的com.amazonaws.services.s3.model.KMSEncryptionMaterialsProvider类示例整理自Github/MSDocs等源码及文档管理平台,相关代码片段筛选自各路编程大神贡献的开源项目,源码版权归原作者所有,传播和使用请参考对应项目的License;未经允许,请勿转载。 |
请发表评论