• Home
• io.streamnative.connectors
• pulsar-flink-connector-2.12-1.12
• 2.7.6
• source code
• MessageCrypto.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.apache.pulsar.client.api.MessageCrypto Maven / Gradle / Ivy

/**
 * Licensed to the Apache Software Foundation (ASF) under one
 * or more contributor license agreements.  See the NOTICE file
 * distributed with this work for additional information
 * regarding copyright ownership.  The ASF licenses this file
 * to you under the Apache License, Version 2.0 (the
 * "License"); you may not use this file except in compliance
 * with the License.  You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing,
 * software distributed under the License is distributed on an
 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 * KIND, either express or implied.  See the License for the
 * specific language governing permissions and limitations
 * under the License.
 */
package org.apache.pulsar.client.api;

import io.netty.buffer.ByteBuf;
import java.util.Set;
import java.util.function.Supplier;
import org.apache.pulsar.client.api.PulsarClientException.CryptoException;
import org.apache.pulsar.common.classification.InterfaceAudience;
import org.apache.pulsar.common.classification.InterfaceStability;

/**
 * Interface that abstracts the method to encrypt/decrypt message for End to End Encryption.
 */
@InterfaceAudience.Public
@InterfaceStability.Stable
public interface MessageCrypto {

    int IV_LEN = 12;

    /*
     * Encrypt data key using the public key(s) in the argument. 
 If more than one key name is specified, data key is
     * encrypted using each of those keys. If the public key is expired or changed, application is responsible to remove
     * the old key and add the new key 

     *
     * @param keyNames List of public keys to encrypt data key
     *
     * @param keyReader Implementation to read the key values
     *
     */
    void addPublicKeyCipher(Set keyNames, CryptoKeyReader keyReader) throws CryptoException;


    /*
     * Remove a key 
 Remove the key identified by the keyName from the list of keys.

     *
     * @param keyName Unique name to identify the key
     *
     * @return true if succeeded, false otherwise
     */
    boolean removeKeyCipher(String keyName);

    /*
     * Encrypt the payload using the data key and update message metadata with the keyname & encrypted data key
     *
     * @param encKeys One or more public keys to encrypt data key
     *
     * @param msgMetadata Message Metadata
     *
     * @param payload Message which needs to be encrypted
     *
     * @return encryptedData if success
     */
    ByteBuf encrypt(Set encKeys, CryptoKeyReader keyReader,
                    Supplier messageMetadataBuilderSupplier, ByteBuf payload) throws PulsarClientException;

    /*
     * Decrypt the payload using the data key. Keys used to encrypt data key can be retrieved from msgMetadata
     *
     * @param msgMetadata Message Metadata
     *
     * @param payload Message which needs to be decrypted
     *
     * @param keyReader KeyReader implementation to retrieve key value
     *
     * @return decryptedData if success, null otherwise
     */
    ByteBuf decrypt(Supplier messageMetadataSupplier, ByteBuf payload, CryptoKeyReader keyReader);
}