@Generated(value="com.amazonaws:aws-java-sdk-code-generator") public class ConnectionPasswordEncryption extends Object implements Serializable, Cloneable, StructuredPojo
The data structure used by the Data Catalog to encrypt the password as part of CreateConnection
or
UpdateConnection
and store it in the ENCRYPTED_PASSWORD
field in the connection properties.
You can enable catalog encryption or only password encryption.
When a CreationConnection
request arrives containing a password, the Data Catalog first encrypts the
password using your KMS key. It then encrypts the whole connection object again if catalog encryption is also
enabled.
This encryption requires that you set KMS key permissions to enable or restrict access on the password key according to your security requirements. For example, you might want only administrators to have decrypt permission on the password key.
Constructor and Description |
---|
ConnectionPasswordEncryption() |
Modifier and Type | Method and Description |
---|---|
ConnectionPasswordEncryption |
clone() |
boolean |
equals(Object obj) |
String |
getAwsKmsKeyId()
An KMS key that is used to encrypt the connection password.
|
Boolean |
getReturnConnectionPasswordEncrypted()
When the
ReturnConnectionPasswordEncrypted flag is set to "true", passwords remain encrypted in the
responses of GetConnection and GetConnections . |
int |
hashCode() |
Boolean |
isReturnConnectionPasswordEncrypted()
When the
ReturnConnectionPasswordEncrypted flag is set to "true", passwords remain encrypted in the
responses of GetConnection and GetConnections . |
void |
marshall(ProtocolMarshaller protocolMarshaller)
Marshalls this structured data using the given
ProtocolMarshaller . |
void |
setAwsKmsKeyId(String awsKmsKeyId)
An KMS key that is used to encrypt the connection password.
|
void |
setReturnConnectionPasswordEncrypted(Boolean returnConnectionPasswordEncrypted)
When the
ReturnConnectionPasswordEncrypted flag is set to "true", passwords remain encrypted in the
responses of GetConnection and GetConnections . |
String |
toString()
Returns a string representation of this object.
|
ConnectionPasswordEncryption |
withAwsKmsKeyId(String awsKmsKeyId)
An KMS key that is used to encrypt the connection password.
|
ConnectionPasswordEncryption |
withReturnConnectionPasswordEncrypted(Boolean returnConnectionPasswordEncrypted)
When the
ReturnConnectionPasswordEncrypted flag is set to "true", passwords remain encrypted in the
responses of GetConnection and GetConnections . |
public void setReturnConnectionPasswordEncrypted(Boolean returnConnectionPasswordEncrypted)
When the ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted in the
responses of GetConnection
and GetConnections
. This encryption takes effect
independently from catalog encryption.
returnConnectionPasswordEncrypted
- When the ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted
in the responses of GetConnection
and GetConnections
. This encryption takes
effect independently from catalog encryption.public Boolean getReturnConnectionPasswordEncrypted()
When the ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted in the
responses of GetConnection
and GetConnections
. This encryption takes effect
independently from catalog encryption.
ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted
in the responses of GetConnection
and GetConnections
. This encryption takes
effect independently from catalog encryption.public ConnectionPasswordEncryption withReturnConnectionPasswordEncrypted(Boolean returnConnectionPasswordEncrypted)
When the ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted in the
responses of GetConnection
and GetConnections
. This encryption takes effect
independently from catalog encryption.
returnConnectionPasswordEncrypted
- When the ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted
in the responses of GetConnection
and GetConnections
. This encryption takes
effect independently from catalog encryption.public Boolean isReturnConnectionPasswordEncrypted()
When the ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted in the
responses of GetConnection
and GetConnections
. This encryption takes effect
independently from catalog encryption.
ReturnConnectionPasswordEncrypted
flag is set to "true", passwords remain encrypted
in the responses of GetConnection
and GetConnections
. This encryption takes
effect independently from catalog encryption.public void setAwsKmsKeyId(String awsKmsKeyId)
An KMS key that is used to encrypt the connection password.
If connection password protection is enabled, the caller of CreateConnection
and
UpdateConnection
needs at least kms:Encrypt
permission on the specified KMS key, to
encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
awsKmsKeyId
- An KMS key that is used to encrypt the connection password.
If connection password protection is enabled, the caller of CreateConnection
and
UpdateConnection
needs at least kms:Encrypt
permission on the specified KMS key,
to encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
public String getAwsKmsKeyId()
An KMS key that is used to encrypt the connection password.
If connection password protection is enabled, the caller of CreateConnection
and
UpdateConnection
needs at least kms:Encrypt
permission on the specified KMS key, to
encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
If connection password protection is enabled, the caller of CreateConnection
and
UpdateConnection
needs at least kms:Encrypt
permission on the specified KMS
key, to encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
public ConnectionPasswordEncryption withAwsKmsKeyId(String awsKmsKeyId)
An KMS key that is used to encrypt the connection password.
If connection password protection is enabled, the caller of CreateConnection
and
UpdateConnection
needs at least kms:Encrypt
permission on the specified KMS key, to
encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
awsKmsKeyId
- An KMS key that is used to encrypt the connection password.
If connection password protection is enabled, the caller of CreateConnection
and
UpdateConnection
needs at least kms:Encrypt
permission on the specified KMS key,
to encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
public String toString()
toString
in class Object
Object.toString()
public ConnectionPasswordEncryption clone()
public void marshall(ProtocolMarshaller protocolMarshaller)
StructuredPojo
ProtocolMarshaller
.marshall
in interface StructuredPojo
protocolMarshaller
- Implementation of ProtocolMarshaller
used to marshall this object's data.