@Override public KmsCryptoClient build( AbstractAuthenticationDetailsProvider authenticationDetailsProvider) { String cryptoEndpoint = getEndpoint(); return new KmsCryptoClient( authenticationDetailsProvider, configuration, clientConfigurator, requestSignerFactory, additionalClientConfigurators, cryptoEndpoint); } }
public static void decryptTest( KmsCryptoClient kmsCryptoClient, String keyId, String cipherText) { System.out.println("Decrypt Test: "); DecryptDataDetails decryptDataDetails = DecryptDataDetails.builder().ciphertext(cipherText).keyId(keyId).build(); DecryptRequest decryptRequest = DecryptRequest.builder().decryptDataDetails(decryptDataDetails).build(); DecryptResponse response = kmsCryptoClient.decrypt(decryptRequest); System.out.println("Plaintext: " + response.getDecryptedData().getPlaintext()); System.out.println(); }
public static String encryptTest(KmsCryptoClient kmsCryptoClient, String keyId) { System.out.println("Encrypt Test: "); String plaintext = "I love OCI!"; EncryptDataDetails encryptDataDetails = EncryptDataDetails.builder() .keyId(keyId) .plaintext(Base64.encodeBase64String(plaintext.getBytes())) .build(); EncryptRequest encryptRequest = EncryptRequest.builder().encryptDataDetails(encryptDataDetails).build(); EncryptResponse response = kmsCryptoClient.encrypt(encryptRequest); System.out.println("Plaintext: " + plaintext); System.out.println("Cipheretext: " + response.getEncryptedData().getCiphertext()); System.out.println(); return response.getEncryptedData().getCiphertext(); }
KmsCryptoClient kmsCryptoClient = new KmsCryptoClient(provider); kmsCryptoClient.setEndpoint(vault.getCryptoEndpoint());
setEndpoint(endpoint);
@Override public DecryptResponse decrypt(DecryptRequest request) { LOG.trace("Called decrypt"); request = DecryptConverter.interceptRequest(request); com.oracle.bmc.http.internal.WrappedInvocationBuilder ib = DecryptConverter.fromRequest(client, request); com.google.common.base.Function<javax.ws.rs.core.Response, DecryptResponse> transformer = DecryptConverter.fromResponse(); int attempts = 0; while (true) { try { javax.ws.rs.core.Response response = client.post(ib, request.getDecryptDataDetails(), request); return transformer.apply(response); } catch (com.oracle.bmc.model.BmcException e) { if (++attempts < MAX_IMMEDIATE_RETRIES_IF_USING_INSTANCE_PRINCIPALS && canRetryRequestIfRefreshableAuthTokenUsed(e)) { continue; } else { throw e; } } } }
public static void generateDataEncryptionKeyTest( KmsCryptoClient kmsCryptoClient, String keyId) { System.out.println("GenerateDataEncryptionKey Test: "); GenerateKeyDetails generateKeyDetails = GenerateKeyDetails.builder() .keyId(keyId) .keyShape(TEST_KEY_SHAPE) .includePlaintextKey(true) .build(); GenerateDataEncryptionKeyRequest generateDataEncryptionKeyRequest = GenerateDataEncryptionKeyRequest.builder() .generateKeyDetails(generateKeyDetails) .build(); GenerateDataEncryptionKeyResponse response = kmsCryptoClient.generateDataEncryptionKey(generateDataEncryptionKeyRequest); System.out.println("GenerateDataEncryptionKey Response: "); System.out.println(response.getGeneratedKey()); System.out.println(); } }
@Override public EncryptResponse encrypt(EncryptRequest request) { LOG.trace("Called encrypt"); request = EncryptConverter.interceptRequest(request); com.oracle.bmc.http.internal.WrappedInvocationBuilder ib = EncryptConverter.fromRequest(client, request); com.google.common.base.Function<javax.ws.rs.core.Response, EncryptResponse> transformer = EncryptConverter.fromResponse(); int attempts = 0; while (true) { try { javax.ws.rs.core.Response response = client.post(ib, request.getEncryptDataDetails(), request); return transformer.apply(response); } catch (com.oracle.bmc.model.BmcException e) { if (++attempts < MAX_IMMEDIATE_RETRIES_IF_USING_INSTANCE_PRINCIPALS && canRetryRequestIfRefreshableAuthTokenUsed(e)) { continue; } else { throw e; } } } }
@Override public GenerateDataEncryptionKeyResponse generateDataEncryptionKey( GenerateDataEncryptionKeyRequest request) { LOG.trace("Called generateDataEncryptionKey"); request = GenerateDataEncryptionKeyConverter.interceptRequest(request); com.oracle.bmc.http.internal.WrappedInvocationBuilder ib = GenerateDataEncryptionKeyConverter.fromRequest(client, request); com.google.common.base.Function< javax.ws.rs.core.Response, GenerateDataEncryptionKeyResponse> transformer = GenerateDataEncryptionKeyConverter.fromResponse(); int attempts = 0; while (true) { try { javax.ws.rs.core.Response response = client.post(ib, request.getGenerateKeyDetails(), request); return transformer.apply(response); } catch (com.oracle.bmc.model.BmcException e) { if (++attempts < MAX_IMMEDIATE_RETRIES_IF_USING_INSTANCE_PRINCIPALS && canRetryRequestIfRefreshableAuthTokenUsed(e)) { continue; } else { throw e; } } } }