hadoop-tools/hadoop-aws/src/main/java/org/apache/hadoop/fs/s3a/S3AEncryptionMethods.java - hadoop - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  * <p>
  * http://www.apache.org/licenses/LICENSE-2.0
  * <p>
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package org.apache.hadoop.fs.s3a;

 import java.io.IOException;

 import org.apache.commons.lang3.StringUtils;

 /**
  * This enum is to centralize the encryption methods and
  * the value required in the configuration.
  */
 public enum S3AEncryptionMethods {

   NONE("", false, false),
   SSE_S3("AES256", true, false),
   SSE_KMS("SSE-KMS", true, false),
   SSE_C("SSE-C", true, true),
   CSE_KMS("CSE-KMS", false, true),
   CSE_CUSTOM("CSE-CUSTOM", false, true);

   /**
    * Error string when {@link #getMethod(String)} fails.
    * Used in tests.
    */
   static final String UNKNOWN_ALGORITHM
       = "Unknown encryption algorithm ";

   /**
    * What is the encryption method?
    */
   private final String method;

   /**
    * Is this server side?
    */
   private final boolean serverSide;

   /**
    * Does the encryption method require a
    * secret in the encryption.key property?
    */
   private final boolean requiresSecret;

   S3AEncryptionMethods(String method,
       final boolean serverSide,
       final boolean requiresSecret) {
     this.method = method;
     this.serverSide = serverSide;
     this.requiresSecret = requiresSecret;
   }

   public String getMethod() {
     return method;
   }

   /**
    * Flag to indicate this is a server-side encryption option.
    * @return true if this is server side.
    */
   public boolean isServerSide() {
     return serverSide;
   }

   /**
    * Does this encryption algorithm require a secret?
    * @return true if a secret must be retrieved.
    */
   public boolean requiresSecret() {
     return requiresSecret;
   }

   /**
    * Get the encryption mechanism from the value provided.
    * @param name algorithm name
    * @return the method
    * @throws IOException if the algorithm is unknown
    */
   public static S3AEncryptionMethods getMethod(String name) throws IOException {
     if(StringUtils.isBlank(name)) {
       return NONE;
     }
     for (S3AEncryptionMethods v : values()) {
       if (v.getMethod().equalsIgnoreCase(name)) {
         return v;
       }
     }
     throw new IOException(UNKNOWN_ALGORITHM + name);
   }

 }
	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	* <p>
	* http://www.apache.org/licenses/LICENSE-2.0
	* <p>
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package org.apache.hadoop.fs.s3a;

	import java.io.IOException;

	import org.apache.commons.lang3.StringUtils;

	/**
	* This enum is to centralize the encryption methods and
	* the value required in the configuration.
	*/
	public enum S3AEncryptionMethods {

	NONE("", false, false),
	SSE_S3("AES256", true, false),
	SSE_KMS("SSE-KMS", true, false),
	SSE_C("SSE-C", true, true),
	CSE_KMS("CSE-KMS", false, true),
	CSE_CUSTOM("CSE-CUSTOM", false, true);

	/**
	* Error string when {@link #getMethod(String)} fails.
	* Used in tests.
	*/
	static final String UNKNOWN_ALGORITHM
	= "Unknown encryption algorithm ";

	/**
	* What is the encryption method?
	*/
	private final String method;

	/**
	* Is this server side?
	*/
	private final boolean serverSide;

	/**
	* Does the encryption method require a
	* secret in the encryption.key property?
	*/
	private final boolean requiresSecret;

	S3AEncryptionMethods(String method,
	final boolean serverSide,
	final boolean requiresSecret) {
	this.method = method;
	this.serverSide = serverSide;
	this.requiresSecret = requiresSecret;
	}

	public String getMethod() {
	return method;
	}

	/**
	* Flag to indicate this is a server-side encryption option.
	* @return true if this is server side.
	*/
	public boolean isServerSide() {
	return serverSide;
	}

	/**
	* Does this encryption algorithm require a secret?
	* @return true if a secret must be retrieved.
	*/
	public boolean requiresSecret() {
	return requiresSecret;
	}

	/**
	* Get the encryption mechanism from the value provided.
	* @param name algorithm name
	* @return the method
	* @throws IOException if the algorithm is unknown
	*/
	public static S3AEncryptionMethods getMethod(String name) throws IOException {
	if(StringUtils.isBlank(name)) {
	return NONE;
	}
	for (S3AEncryptionMethods v : values()) {
	if (v.getMethod().equalsIgnoreCase(name)) {
	return v;
	}
	}
	throw new IOException(UNKNOWN_ALGORITHM + name);
	}

	}