com.amazonaws.services.kms.model.Tag Java Examples
The following examples show how to use
com.amazonaws.services.kms.model.Tag.
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example #1
| Source File: LocalstackContainerTest.java From testcontainers-java with MIT License | 5 votes |
|
@Test
public void kmsKeyCreationTest() {
AWSKMS awskms = AWSKMSClientBuilder.standard()
.withEndpointConfiguration(localstack.getEndpointConfiguration(KMS))
.withCredentials(localstack.getDefaultCredentialsProvider())
.build();
String desc = String.format("AWS CMK Description");
Tag createdByTag = new Tag().withTagKey("CreatedBy").withTagValue("StorageService");
CreateKeyRequest req = new CreateKeyRequest().withDescription(desc).withTags(createdByTag);
CreateKeyResult key = awskms.createKey(req);
assertEquals("AWS KMS Customer Managed Key should be created ", key.getKeyMetadata().getDescription(), desc);
}
Example #2
| Source File: KmsServiceTest.java From cerberus with Apache License 2.0 | 4 votes |
|
@Test
public void test_provisionKmsKey() {
String iamRoleId = "role-id";
String awsRegion = "aws-region";
String user = "user";
OffsetDateTime dateTime = OffsetDateTime.now();
String policy = "policy";
String arn = "arn:aws:iam::12345678901234:role/some-role";
String awsIamRoleKmsKeyId = "awsIamRoleKmsKeyId";
when(uuidSupplier.get()).thenReturn(awsIamRoleKmsKeyId);
when(kmsPolicyService.generateStandardKmsPolicy(arn)).thenReturn(policy);
AWSKMSClient client = mock(AWSKMSClient.class);
when(kmsClientFactory.getClient(awsRegion)).thenReturn(client);
CreateKeyRequest request = new CreateKeyRequest();
request.setKeyUsage(KeyUsageType.ENCRYPT_DECRYPT);
request.setDescription("Key used by Cerberus fakeEnv for IAM role authentication. " + arn);
request.setPolicy(policy);
request.setTags(
Lists.newArrayList(
new Tag().withTagKey("created_by").withTagValue(ARTIFACT + VERSION),
new Tag().withTagKey("created_for").withTagValue("cerberus_auth"),
new Tag().withTagKey("auth_principal").withTagValue(arn),
new Tag().withTagKey("cerberus_env").withTagValue(ENV)));
CreateKeyResult createKeyResult = mock(CreateKeyResult.class);
KeyMetadata metadata = mock(KeyMetadata.class);
when(metadata.getArn()).thenReturn(arn);
when(createKeyResult.getKeyMetadata()).thenReturn(metadata);
when(client.createKey(any())).thenReturn(createKeyResult);
// invoke method under test
String actualResult =
kmsService.provisionKmsKey(iamRoleId, arn, awsRegion, user, dateTime).getAwsKmsKeyId();
assertEquals(arn, actualResult);
CreateAliasRequest aliasRequest = new CreateAliasRequest();
aliasRequest.setAliasName(kmsService.getAliasName(awsIamRoleKmsKeyId, arn));
aliasRequest.setTargetKeyId(arn);
verify(client).createAlias(aliasRequest);
AwsIamRoleKmsKeyRecord awsIamRoleKmsKeyRecord = new AwsIamRoleKmsKeyRecord();
awsIamRoleKmsKeyRecord.setId(awsIamRoleKmsKeyId);
awsIamRoleKmsKeyRecord.setAwsIamRoleId(iamRoleId);
awsIamRoleKmsKeyRecord.setAwsKmsKeyId(arn);
awsIamRoleKmsKeyRecord.setAwsRegion(awsRegion);
awsIamRoleKmsKeyRecord.setCreatedBy(user);
awsIamRoleKmsKeyRecord.setLastUpdatedBy(user);
awsIamRoleKmsKeyRecord.setCreatedTs(dateTime);
awsIamRoleKmsKeyRecord.setLastUpdatedTs(dateTime);
awsIamRoleKmsKeyRecord.setLastValidatedTs(dateTime);
verify(awsIamRoleDao).createIamRoleKmsKey(awsIamRoleKmsKeyRecord);
}
Example #3
| Source File: KMSKeyVH.java From pacbot with Apache License 2.0 | 2 votes |
|
/**
* Gets the tags.
*
* @return the tags
*/
public List<Tag> getTags() {
return tags;
}
Example #4
| Source File: KMSKeyVH.java From pacbot with Apache License 2.0 | 2 votes |
|
/**
* Sets the tags.
*
* @param tags the new tags
*/
public void setTags(List<Tag> tags) {
this.tags = tags;
}
