• Home
• com.mastercard.developer
• client-encryption
• 1.0.1
• source code
• FieldLevelEncryptionConfig.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.mastercard.developer.encryption.FieldLevelEncryptionConfig Maven / Gradle / Ivy

package com.mastercard.developer.encryption;

import java.security.PrivateKey;
import java.security.cert.Certificate;
import java.util.Collections;
import java.util.Map;

/**
 * A POJO for storing the encryption/decryption configuration.
 */
public class FieldLevelEncryptionConfig {

    /**
     * The different ways of encoding the field values.
     */
    public enum FieldValueEncoding {
        BASE64,
        HEX
    }

    protected FieldLevelEncryptionConfig() {
    }

    /**
     * A certificate object whose public key will be used for encryption.
     */
    protected Certificate encryptionCertificate;

    /**
     * The SHA-256 digest of the certificate used for encryption (optional, the digest will be
     * automatically computed if this field is null or empty).
     */
    protected String encryptionCertificateFingerprint;

    /**
     * The SHA-256 digest of the key used for encryption (optional, the digest will be
     * automatically computed if this field is null or empty).
     */
    protected String encryptionKeyFingerprint;

    /**
     * A private key object to be used for decryption.
     */
    protected PrivateKey decryptionKey;

    /**
     * A list of JSON paths to encrypt in request payloads.
     * Example:
     * 
     * new HashMap<>() {
     *     {
     *         put("$.path.to.element.to.be.encrypted", "$.path.to.object.where.to.store.encryption.fields");
     *     }
     * }
     * 
     */
    protected Map encryptionPaths = Collections.emptyMap();

    /**
     * A list of JSON paths to decrypt in response payloads.
     * Example:
     * 
     * new HashMap<>() {
     *     {
     *         put("$.path.to.object.with.encryption.fields", "$.path.where.to.write.decrypted.element");
     *     }
     * }
     * 
     */
    protected Map decryptionPaths = Collections.emptyMap();

    /**
     * The digest algorithm to be used for the RSA OAEP padding. Example: "SHA-512".
     */
    protected String oaepPaddingDigestAlgorithm = null;

    /**
     * The name of the payload field where to write/read the digest algorithm used for
     * the RSA OAEP padding (optional, the field won't be set if the name is null or empty).
     */
    protected String oaepPaddingDigestAlgorithmFieldName = null;

    /**
     * The name of the payload field where to write/read the initialization vector value.
     */
    protected String ivFieldName = null;

    /**
     * The name of the payload field where to write/read the encrypted symmetric key.
     */
    protected String encryptedKeyFieldName = null;

    /**
     * The name of the payload field where to write/read the encrypted data value.
     */
    protected String encryptedValueFieldName = null;

    /**
     * The name of the payload field where to write/read the digest of the encryption
     * certificate (optional, the field won't be set if the name is null or empty).
     */
    protected String encryptionCertificateFingerprintFieldName = null;

    /**
     * The name of the payload field where to write/read the digest of the encryption
     * key (optional, the field won't be set if the name is null or empty).
     */
    protected String encryptionKeyFingerprintFieldName = null;

    /**
     * How the field values have to be encoded.
     */
    protected FieldValueEncoding fieldValueEncoding;
}