/*
* Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License").
* You may not use this file except in compliance with the License.
* A copy of the License is located at
*
* http://aws.amazon.com/apache2.0
*
* or in the "license" file accompanying this file. This file is distributed
* on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
* express or implied. See the License for the specific language governing
* permissions and limitations under the License.
*/
/*
* Do not modify this file. This file is generated from the glue-2017-03-31.normal.json service model.
*/
using System;
using System.Collections.Generic;
using System.Xml.Serialization;
using System.Text;
using System.IO;
using System.Net;
using Amazon.Runtime;
using Amazon.Runtime.Internal;
namespace Amazon.Glue.Model
{
///
/// The data structure used by the Data Catalog to encrypt the password as part of CreateConnection
/// or UpdateConnection and store it in the ENCRYPTED_PASSWORD
/// field in the connection properties. You can enable catalog encryption or only password
/// encryption.
///
///
///
/// When a CreationConnection request arrives containing a password, the
/// Data Catalog first encrypts the password using your KMS key. It then encrypts the
/// whole connection object again if catalog encryption is also enabled.
///
///
///
/// This encryption requires that you set KMS key permissions to enable or restrict access
/// on the password key according to your security requirements. For example, you might
/// want only administrators to have decrypt permission on the password key.
///
///
public partial class ConnectionPasswordEncryption
{
private string _awsKmsKeyId;
private bool? _returnConnectionPasswordEncrypted;
///
/// Gets and sets the property AwsKmsKeyId.
///
/// An KMS key that is used to encrypt the connection password.
///
///
///
/// If connection password protection is enabled, the caller of CreateConnection
/// and UpdateConnection needs at least kms:Encrypt permission
/// on the specified KMS key, to encrypt passwords before storing them in the Data Catalog.
///
///
///
///
/// You can set the decrypt permission to enable or restrict access on the password key
/// according to your security requirements.
///
///
[AWSProperty(Min=1, Max=255)]
public string AwsKmsKeyId
{
get { return this._awsKmsKeyId; }
set { this._awsKmsKeyId = value; }
}
// Check to see if AwsKmsKeyId property is set
internal bool IsSetAwsKmsKeyId()
{
return this._awsKmsKeyId != null;
}
///
/// Gets and sets the property ReturnConnectionPasswordEncrypted.
///
/// When the ReturnConnectionPasswordEncrypted flag is set to "true", passwords
/// remain encrypted in the responses of GetConnection and GetConnections.
/// This encryption takes effect independently from catalog encryption.
///
///
[AWSProperty(Required=true)]
public bool ReturnConnectionPasswordEncrypted
{
get { return this._returnConnectionPasswordEncrypted.GetValueOrDefault(); }
set { this._returnConnectionPasswordEncrypted = value; }
}
// Check to see if ReturnConnectionPasswordEncrypted property is set
internal bool IsSetReturnConnectionPasswordEncrypted()
{
return this._returnConnectionPasswordEncrypted.HasValue;
}
}
}