Examples with KeyInvalidForAuthException com.nike.cerberus.error.KeyInvalidForAuthException used on opensource projects

Search in sources :

Example 1 with KeyInvalidForAuthException

use of com.nike.cerberus.error.KeyInvalidForAuthException in project cerberus by Nike-Inc.

the class AuthenticationService method encrypt.

/**
 * Encrypts the data provided using KMS based on the provided region and key id.
 *
 * @param regionName Region where key is located
 * @param keyId Key id
 * @param data Data to be encrypted
 * @return encrypted data
 */
private byte[] encrypt(final String regionName, final String keyId, final byte[] data) {
    Region region;
    try {
        region = Region.getRegion(Regions.fromName(regionName));
    } catch (IllegalArgumentException iae) {
        throw ApiException.newBuilder().withApiErrors(DefaultApiError.AUTH_IAM_ROLE_AWS_REGION_INVALID).withExceptionCause(iae).build();
    }
    final AWSKMSClient kmsClient = kmsClientFactory.getClient(region);
    try {
        final EncryptResult encryptResult = kmsClient.encrypt(new EncryptRequest().withKeyId(keyId).withPlaintext(ByteBuffer.wrap(data)));
        return encryptResult.getCiphertextBlob().array();
    } catch (NotFoundException | KMSInvalidStateException keyNotUsableException) {
        throw new KeyInvalidForAuthException(String.format("Failed to encrypt token using KMS key with id: %s", keyId), keyNotUsableException);
    } catch (AmazonClientException ace) {
        String msg = String.format("Unexpected error communicating with AWS KMS for region %s.", regionName);
        throw ApiException.newBuilder().withApiErrors(CustomApiError.createCustomApiError(DefaultApiError.INTERNAL_SERVER_ERROR, msg)).withExceptionCause(ace).withExceptionMessage(msg).build();
    }
}
Also used : AmazonClientException(com.amazonaws.AmazonClientException) AWSKMSClient(com.amazonaws.services.kms.AWSKMSClient) Region(com.amazonaws.regions.Region) NotFoundException(com.amazonaws.services.kms.model.NotFoundException) KeyInvalidForAuthException(com.nike.cerberus.error.KeyInvalidForAuthException) EncryptResult(com.amazonaws.services.kms.model.EncryptResult) KMSInvalidStateException(com.amazonaws.services.kms.model.KMSInvalidStateException) EncryptRequest(com.amazonaws.services.kms.model.EncryptRequest)

Aggregations

AmazonClientException (com.amazonaws.AmazonClientException)1 Region (com.amazonaws.regions.Region)1 AWSKMSClient (com.amazonaws.services.kms.AWSKMSClient)1 EncryptRequest (com.amazonaws.services.kms.model.EncryptRequest)1 EncryptResult (com.amazonaws.services.kms.model.EncryptResult)1 KMSInvalidStateException (com.amazonaws.services.kms.model.KMSInvalidStateException)1 NotFoundException (com.amazonaws.services.kms.model.NotFoundException)1 KeyInvalidForAuthException (com.nike.cerberus.error.KeyInvalidForAuthException)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial