@Generated(value="software.amazon.awssdk:codegen") public final class ConnectionPasswordEncryption extends Object implements SdkPojo, Serializable, ToCopyableBuilder<ConnectionPasswordEncryption.Builder,ConnectionPasswordEncryption>
The data structure used by the Data Catalog to encrypt the password as part of CreateConnection or
UpdateConnection and store it in the ENCRYPTED_PASSWORD field in the connection properties.
You can enable catalog encryption or only password encryption.
When a CreationConnection request arrives containing a password, the Data Catalog first encrypts the
password using your KMS key. It then encrypts the whole connection object again if catalog encryption is also
enabled.
This encryption requires that you set KMS key permissions to enable or restrict access on the password key according to your security requirements. For example, you might want only administrators to have decrypt permission on the password key.
| Modifier and Type | Class and Description |
|---|---|
static interface |
ConnectionPasswordEncryption.Builder |
| Modifier and Type | Method and Description |
|---|---|
String |
awsKmsKeyId()
An KMS key that is used to encrypt the connection password.
|
static ConnectionPasswordEncryption.Builder |
builder() |
boolean |
equals(Object obj) |
boolean |
equalsBySdkFields(Object obj) |
<T> Optional<T> |
getValueForField(String fieldName,
Class<T> clazz) |
int |
hashCode() |
Boolean |
returnConnectionPasswordEncrypted()
When the
ReturnConnectionPasswordEncrypted flag is set to "true", passwords remain encrypted in the
responses of GetConnection and GetConnections. |
List<SdkField<?>> |
sdkFields() |
static Class<? extends ConnectionPasswordEncryption.Builder> |
serializableBuilderClass() |
ConnectionPasswordEncryption.Builder |
toBuilder() |
String |
toString()
Returns a string representation of this object.
|
clone, finalize, getClass, notify, notifyAll, wait, wait, waitcopypublic final Boolean returnConnectionPasswordEncrypted()
When the ReturnConnectionPasswordEncrypted flag is set to "true", passwords remain encrypted in the
responses of GetConnection and GetConnections. This encryption takes effect
independently from catalog encryption.
ReturnConnectionPasswordEncrypted flag is set to "true", passwords remain encrypted
in the responses of GetConnection and GetConnections. This encryption takes
effect independently from catalog encryption.public final String awsKmsKeyId()
An KMS key that is used to encrypt the connection password.
If connection password protection is enabled, the caller of CreateConnection and
UpdateConnection needs at least kms:Encrypt permission on the specified KMS key, to
encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
If connection password protection is enabled, the caller of CreateConnection and
UpdateConnection needs at least kms:Encrypt permission on the specified KMS
key, to encrypt passwords before storing them in the Data Catalog.
You can set the decrypt permission to enable or restrict access on the password key according to your security requirements.
public ConnectionPasswordEncryption.Builder toBuilder()
toBuilder in interface ToCopyableBuilder<ConnectionPasswordEncryption.Builder,ConnectionPasswordEncryption>public static ConnectionPasswordEncryption.Builder builder()
public static Class<? extends ConnectionPasswordEncryption.Builder> serializableBuilderClass()
public final boolean equalsBySdkFields(Object obj)
equalsBySdkFields in interface SdkPojopublic final String toString()
Copyright © 2023. All rights reserved.