Contents

require 'base64'

module Aws
  module S3
    module Encryption
      class Materials

        # @option options [required, OpenSSL::PKey::RSA, String] :encryption_key
        #   The master key to use for encrypting/decrypting all objects.
        #
        # @option options [String<JSON>] :materials_description ('{}')
        #   The encryption materials description. This is must be
        #   a JSON document string.
        #
        # @option options [Symbol] :materials_location (:metadata) Where to
        #   store the envelope encryption keys. This must be one of
        #   the following values:
        #
        #   * `:metadata`
        #   * `:instruction_file`
        #
        # @option options [String] :instruction_file_suffix ('.instruction')
        #
        def initialize(options = {})
          @key = validate_key(options[:key])
          @description = validate_desc(options[:description])
        end

        # @return [OpenSSL::PKey::RSA, String]
        attr_reader :key

        # @return [String<JSON>]
        attr_reader :description

        private

        def validate_key(key)
          case key
          when OpenSSL::PKey::RSA then key
          when String
            if [32, 24, 16].include?(key.bytesize)
              key
            else
              msg = "invalid key, symmetric key required to be 16, 24, or "
              msg << "32 bytes in length, saw length 31"
              raise ArgumentError, msg
            end
          else
            msg = "invalid encryption key, expected an OpenSSL::PKey::RSA key "
            msg << "(for asymmetric encryption) or a String (for symmetric "
            msg << "encryption)."
            raise ArgumentError, msg
          end
        end

        def validate_desc(description)
          MultiJson.load(description)
          description
        rescue MultiJson::ParseError
          msg = "expected description to be a valid JSON document string"
          raise ArgumentError, msg
        end

      end
    end
  end
end

Version data entries

19 entries across 19 versions & 1 rubygems

Version	Path
aws-sdk-resources-2.0.33	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.32	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.31	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.30	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.29	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.28	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.27	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.26	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.25	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.24	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.23	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.22	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.21.pre	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.20.pre	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.19.pre	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.18.pre	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.17.pre	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.16.pre	lib/aws-sdk-resources/services/s3/encryption/materials.rb
aws-sdk-resources-2.0.15.pre	lib/aws-sdk-resources/services/s3/encryption/materials.rb