Comments (3)
Related Java Issue: aws/aws-dynamodb-encryption-java#151
from aws-dynamodb-encryption-python.
Thanks @lavaleri - do you have any suggestions for us while using the library in its current state to enforce the key_id? Is there some further validation we could do?
from aws-dynamodb-encryption-python.
Hi @nappelson,
Unfortunately there isn't a workaround to enforce the use of a key_id
in the current release. While we do have plans to provide a CryptographicMaterialsProvider
that performs the behavior you want, we do not have a timeline we can share for its release.
CryptographicMaterialsProviders
were designed as a point of custom configuration to suite customer's key management needs. If it is necessary for you to have this behavior now, you may implement your own CryptographicMaterialsProvider which does the same thing as your changes in #171, and use that in your application. However, if you go this route you will not pick up any future improvements we make to AwsKmsCryptographicMaterialsProvider
, and we cannot guarantee a smooth migration to new or upgraded CryptographicMaterialsProviders
we may provide in the future.
from aws-dynamodb-encryption-python.
Related Issues (20)
- downstream tests in upstream library failing but upstream tests passing HOT 1
- AwsKmsCryptographicMaterialsProvider - __attrs_post_init__ overrides custom regional clients HOT 2
- Creation of regional clients modifies default botocore session's region
- Add repr=False to attributes in EncryptionContext
- Unable to use dynamodb-encryption-sdk as layer HOT 5
- CPython 3.4 support HOT 1
- Migrate CI/CD to GitHub Actions
- aws_kms_encrypted_table.py giving "Failed to generate materials using AWS KMS" HOT 4
- what should the metastore do if the material type version is not present?
- refine hypothesis strategies
- Invalid transformation format:AES/256/CBC/PKCS5Padding : Interoperabilty between Python and Java SDKs HOT 3
- Add Attested Materials provider HOT 2
- Upgrading "Do Nothing" model to one with a single action fails to decrypt old items
- Compatibility with AWS' automatic KMS key rotation? HOT 2
- Getting null values in `desc` and `sign` fields when I fetch the item using get_item function in boto3 HOT 2
- Support transactional methods in EncryptionClient HOT 2
- Wrong formatting in the deprecated python warning HOT 3
- typehints and imports HOT 2
- /lib64/libc.so.6: version `GLIBC_2.28' not found (required by /var/task/cryptography/hazmat/bindings/_rust.abi3.so)" HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from aws-dynamodb-encryption-python.