/*
* Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License").
* You may not use this file except in compliance with the License.
* A copy of the License is located at
*
* http://aws.amazon.com/apache2.0
*
* or in the "license" file accompanying this file. This file is distributed
* on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
* express or implied. See the License for the specific language governing
* permissions and limitations under the License.
*/
/*
* Do not modify this file. This file is generated from the ecr-2015-09-21.normal.json service model.
*/
using System;
using System.Collections.Generic;
using System.Xml.Serialization;
using System.Text;
using System.IO;
using System.Net;
using Amazon.Runtime;
using Amazon.Runtime.Internal;
namespace Amazon.ECR.Model
{
///
/// The encryption configuration for the repository. This determines how the contents
/// of your repository are encrypted at rest.
///
///
///
/// By default, when no encryption configuration is set or the AES256 encryption
/// type is used, Amazon ECR uses server-side encryption with Amazon S3-managed encryption
/// keys which encrypts your data at rest using an AES-256 encryption algorithm. This
/// does not require any action on your part.
///
///
///
/// For more control over the encryption of the contents of your repository, you can use
/// server-side encryption with Key Management Service key stored in Key Management Service
/// (KMS) to encrypt your images. For more information, see Amazon
/// ECR encryption at rest in the Amazon Elastic Container Registry User Guide.
///
///
public partial class EncryptionConfiguration
{
private EncryptionType _encryptionType;
private string _kmsKey;
///
/// Gets and sets the property EncryptionType.
///
/// The encryption type to use.
///
///
///
/// If you use the KMS encryption type, the contents of the repository will
/// be encrypted using server-side encryption with Key Management Service key stored in
/// KMS. When you use KMS to encrypt your data, you can either use the default Amazon
/// Web Services managed KMS key for Amazon ECR, or specify your own KMS key, which you
/// already created. For more information, see Protecting
/// data using server-side encryption with an KMS key stored in Key Management Service
/// (SSE-KMS) in the Amazon Simple Storage Service Console Developer Guide.
///
///
///
/// If you use the AES256 encryption type, Amazon ECR uses server-side encryption
/// with Amazon S3-managed encryption keys which encrypts the images in the repository
/// using an AES-256 encryption algorithm. For more information, see Protecting
/// data using server-side encryption with Amazon S3-managed encryption keys (SSE-S3)
/// in the Amazon Simple Storage Service Console Developer Guide.
///
///
[AWSProperty(Required=true)]
public EncryptionType EncryptionType
{
get { return this._encryptionType; }
set { this._encryptionType = value; }
}
// Check to see if EncryptionType property is set
internal bool IsSetEncryptionType()
{
return this._encryptionType != null;
}
///
/// Gets and sets the property KmsKey.
///
/// If you use the KMS encryption type, specify the KMS key to use for encryption.
/// The alias, key ID, or full ARN of the KMS key can be specified. The key must exist
/// in the same Region as the repository. If no key is specified, the default Amazon Web
/// Services managed KMS key for Amazon ECR will be used.
///
///
[AWSProperty(Min=1, Max=2048)]
public string KmsKey
{
get { return this._kmsKey; }
set { this._kmsKey = value; }
}
// Check to see if KmsKey property is set
internal bool IsSetKmsKey()
{
return this._kmsKey != null;
}
}
}