DynamoDbTableEncryptionConfig

aws_db_esdk::dynamodb::types

Struct DynamoDbTableEncryptionConfig 

Source 
#[non_exhaustive]
pub struct DynamoDbTableEncryptionConfig {
    pub algorithm_suite_id: Option<DbeAlgorithmSuiteId>,
    pub allowed_unsigned_attribute_prefix: Option<String>,
    pub allowed_unsigned_attributes: Option<Vec<String>>,
    pub attribute_actions_on_encrypt: Option<HashMap<String, CryptoAction>>,
    pub cmm: Option<CryptographicMaterialsManagerRef>,
    pub keyring: Option<KeyringRef>,
    pub legacy_override: Option<LegacyOverride>,
    pub logical_table_name: Option<String>,
    pub partition_key_name: Option<String>,
    pub plaintext_override: Option<PlaintextOverride>,
    pub search: Option<SearchConfig>,
    pub sort_key_name: Option<String>,
}
Expand description

The configuration for client-side encryption for a particular DynamoDB table.

Fields (Non-exhaustive)§

This struct is marked as non-exhaustive
Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.
§algorithm_suite_id: Option<DbeAlgorithmSuiteId>

An ID for the algorithm suite to use during encryption and decryption.

§allowed_unsigned_attribute_prefix: Option<String>

A prefix such that, if during decryption any attribute has a name with this prefix, it is treated as unsigned.

§allowed_unsigned_attributes: Option<Vec<String>>

A list of attribute names such that, if encountered during decryption, those attributes are treated as unsigned.

§attribute_actions_on_encrypt: Option<HashMap<String, CryptoAction>>

A map that describes what attributes should be encrypted and/or signed on encrypt. This map must contain all attributes that might be encountered during encryption.

§cmm: Option<CryptographicMaterialsManagerRef>

The Cryptographic Materials Manager that is used to obtain materials for encryption and decryption. Either a Keyring or a Cryptographic Materials Manager must be specified.

§keyring: Option<KeyringRef>

The Keyring that should be used to wrap and unwrap data keys. If specified a Default Cryptographic Materials Manager with this Keyring is used to obtain materials for encryption and decryption. Either a Keyring or a Cryptographic Materials Manager must be specified.

§legacy_override: Option<LegacyOverride>

A configuration that override encryption and/or decryption to instead perform legacy encryption and/or decryption. Used as part of migration from version 2.x to version 3.x.

§logical_table_name: Option<String>

The logical table name for this table. This is the name that is cryptographically bound with your data. This can be the same as the actual DynamoDB table name. It’s purpose is to be distinct from the DynamoDB table name so that the data may still be authenticated if being read from different (but logically similar) tables, such as a backup table.

§partition_key_name: Option<String>

The name of the partition key on this table.

§plaintext_override: Option<PlaintextOverride>

A configuration that override encryption and/or decryption to instead passthrough and write and/or read plaintext. Used to update plaintext tables to fully use client-side encryption.

§search: Option<SearchConfig>

The configuration for searchable encryption.

§sort_key_name: Option<String>

If this table contains a sort key, the name of the sort key on this table.

Implementations§

Source§

impl DynamoDbTableEncryptionConfig

Source

pub fn algorithm_suite_id(&self) -> &Option<DbeAlgorithmSuiteId>

An ID for the algorithm suite to use during encryption and decryption.

Source

pub fn allowed_unsigned_attribute_prefix(&self) -> &Option<String>

A prefix such that, if during decryption any attribute has a name with this prefix, it is treated as unsigned.

Source

pub fn allowed_unsigned_attributes(&self) -> &Option<Vec<String>>

A list of attribute names such that, if encountered during decryption, those attributes are treated as unsigned.

Source

pub fn attribute_actions_on_encrypt( &self, ) -> &Option<HashMap<String, CryptoAction>>

A map that describes what attributes should be encrypted and/or signed on encrypt. This map must contain all attributes that might be encountered during encryption.

Source

pub fn cmm(&self) -> &Option<CryptographicMaterialsManagerRef>

The Cryptographic Materials Manager that is used to obtain materials for encryption and decryption. Either a Keyring or a Cryptographic Materials Manager must be specified.

Source

pub fn keyring(&self) -> &Option<KeyringRef>

The Keyring that should be used to wrap and unwrap data keys. If specified a Default Cryptographic Materials Manager with this Keyring is used to obtain materials for encryption and decryption. Either a Keyring or a Cryptographic Materials Manager must be specified.

Source

pub fn legacy_override(&self) -> &Option<LegacyOverride>

A configuration that override encryption and/or decryption to instead perform legacy encryption and/or decryption. Used as part of migration from version 2.x to version 3.x.

Source

pub fn logical_table_name(&self) -> &Option<String>

The logical table name for this table. This is the name that is cryptographically bound with your data. This can be the same as the actual DynamoDB table name. It’s purpose is to be distinct from the DynamoDB table name so that the data may still be authenticated if being read from different (but logically similar) tables, such as a backup table.

Source

pub fn partition_key_name(&self) -> &Option<String>

The name of the partition key on this table.

Source

pub fn plaintext_override(&self) -> &Option<PlaintextOverride>

A configuration that override encryption and/or decryption to instead passthrough and write and/or read plaintext. Used to update plaintext tables to fully use client-side encryption.

Source

pub fn search(&self) -> &Option<SearchConfig>

The configuration for searchable encryption.

Source

pub fn sort_key_name(&self) -> &Option<String>

If this table contains a sort key, the name of the sort key on this table.

Source§

impl DynamoDbTableEncryptionConfig

Source

pub fn builder() -> DynamoDbTableEncryptionConfigBuilder

Creates a new builder-style object to manufacture DynamoDbTableEncryptionConfig.

Trait Implementations§

Source§

impl Clone for DynamoDbTableEncryptionConfig

Source§

fn clone(&self) -> DynamoDbTableEncryptionConfig

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for DynamoDbTableEncryptionConfig

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl PartialEq for DynamoDbTableEncryptionConfig

Source§

fn eq(&self, other: &DynamoDbTableEncryptionConfig) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl StructuralPartialEq for DynamoDbTableEncryptionConfig

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> AnyRef for T
where T: 'static,

Source§

fn as_any_ref(&self) -> &(dyn Any + 'static)

Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

impl<Unshared, Shared> IntoShared<Shared> for Unshared
where Shared: FromUnshared<Unshared>,

Source§

fn into_shared(self) -> Shared

Creates a shared type from an unshared type.
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> Upcast<T> for T
where T: ?Sized,

Source§

fn upcast(&self) -> Ptr<T>

Source§

impl<T> UpcastObject<T> for T
where T: ?Sized,

Source§

fn upcast(&self) -> Object<T>

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> ErasedDestructor for T
where T: 'static,