Exemplos de KmsDataKeyProvider em C# (CSharp)

Exemplo n.º 1

        public void GenerateKey_Ok(int bits, string keySpec, bool throws)
        {
            var kmsClientMock = new Mock <IAmazonKeyManagementService>();
            var provider      = new KmsDataKeyProvider(kmsClientMock.Object, "myKey");

            GenerateDataKeyRequest requestSent = null;

            kmsClientMock.Setup(x => x.GenerateDataKey(It.IsAny <GenerateDataKeyRequest>()))
            .Returns((GenerateDataKeyRequest req) =>
            {
                requestSent = req;
                return(new GenerateDataKeyResponse
                {
                    CiphertextBlob = new MemoryStream(Bytes(1, 2, 3)),
                    Plaintext = new MemoryStream(Bytes(4, 5, 6)),
                });
            });

            byte[] key        = null, encryptedKey = null;
            Action invocation = provider.Invoking(p => p.GenerateKey(bits, out key, out encryptedKey));

            if (throws)
            {
                invocation.ShouldThrow <ArgumentException>();
            }
            else
            {
                invocation.ShouldNotThrow();
                key.Should().Equal(Bytes(4, 5, 6));
                encryptedKey.Should().Equal(Bytes(1, 2, 3));
                requestSent.KeyId.Should().Be("myKey");
                requestSent.KeySpec.ToString().Should().Be(keySpec);
                requestSent.EncryptionContext.Should().BeEmpty();
            }
        }

Exemplo n.º 2

        public void EncryptKey_Context_Ok()
        {
            var kmsClientMock = new Mock <IAmazonKeyManagementService>();
            var provider      = new KmsDataKeyProvider(kmsClientMock.Object, "myKey");

            EncryptRequest sentRequest = null;

            kmsClientMock.Setup(x => x.Encrypt(It.IsAny <EncryptRequest>()))
            .Returns((EncryptRequest req) =>
            {
                sentRequest = req;
                return(new EncryptResponse
                {
                    CiphertextBlob = DoubleValues(req.Plaintext),
                });
            });

            var context = new Dictionary <string, string> {
                { "purpose", "doubling" }
            };

            provider.EncryptKey(Bytes(1, 2, 3), context).Should().Equal(Bytes(2, 4, 6));
            sentRequest.Plaintext.ToArray().Should().Equal(Bytes(1, 2, 3));
            sentRequest.EncryptionContext["purpose"].Should().Be("doubling");
            sentRequest.KeyId.Should().Be("myKey");

            provider.EncryptKey(Bytes(2, 3, 4), context).Should().Equal(Bytes(4, 6, 8));
        }

Exemplo n.º 3

Arquivo: KmsDataKeyProviderTests.cs Projeto: ica-carealign/AwsContrib.EnvelopeCrypto

		public void GenerateKey_Context_Ok(int bits, string keySpec, bool throws)
		{
			var kmsClientMock = new Mock<IAmazonKeyManagementService>();
			var provider = new KmsDataKeyProvider(kmsClientMock.Object, "myKey");

			GenerateDataKeyRequest requestSent = null;
			kmsClientMock.Setup(x => x.GenerateDataKey(It.IsAny<GenerateDataKeyRequest>()))
			             .Returns((GenerateDataKeyRequest req) =>
			             {
				             requestSent = req;
				             return new GenerateDataKeyResponse
				             {
					             CiphertextBlob = new MemoryStream(Bytes(1, 2, 3)),
					             Plaintext = new MemoryStream(Bytes(4, 5, 6)),
				             };
			             });

			byte[] key = null, encryptedKey = null;
			var context = new Dictionary<string, string> {{"bits", bits.ToString(CultureInfo.InvariantCulture)}};
			Action invocation = provider.Invoking(p => p.GenerateKey(bits, out key, out encryptedKey, context));
			if (throws)
			{
				invocation.ShouldThrow<ArgumentException>();
			}
			else
			{
				invocation.ShouldNotThrow();
				key.Should().Equal(Bytes(4, 5, 6));
				encryptedKey.Should().Equal(Bytes(1, 2, 3));
				requestSent.KeyId.Should().Be("myKey");
				requestSent.KeySpec.ToString().Should().Be(keySpec);
				requestSent.EncryptionContext["bits"].Should().Be(bits.ToString(CultureInfo.InvariantCulture));
			}
		}

Exemplo n.º 4

Arquivo: KmsDataKeyProviderTests.cs Projeto: ica-carealign/AwsContrib.EnvelopeCrypto

		public void EncryptKey_Ok()
		{
			var kmsClientMock = new Mock<IAmazonKeyManagementService>();
			var provider = new KmsDataKeyProvider(kmsClientMock.Object, "myKey");

			EncryptRequest sentRequest = null;
			kmsClientMock.Setup(x => x.Encrypt(It.IsAny<EncryptRequest>()))
			             .Returns((EncryptRequest req) =>
			             {
				             sentRequest = req;
				             return new EncryptResponse
				             {
					             CiphertextBlob = DoubleValues(req.Plaintext),
				             };
			             });

			provider.EncryptKey(Bytes(1, 2, 3)).Should().Equal(Bytes(2, 4, 6));
			sentRequest.Plaintext.ToArray().Should().Equal(Bytes(1, 2, 3));
			sentRequest.KeyId.Should().Be("myKey");
			sentRequest.EncryptionContext.Should().BeEmpty();

			provider.EncryptKey(Bytes(2, 3, 4)).Should().Equal(Bytes(4, 6, 8));
		}

Exemplo n.º 5

Arquivo: KmsDataKeyProviderTests.cs Projeto: ica-carealign/AwsContrib.EnvelopeCrypto

		public void DecryptKey_Ok()
		{
			var kmsClientMock = new Mock<IAmazonKeyManagementService>();
			var provider = new KmsDataKeyProvider(kmsClientMock.Object, "myKey");

			DecryptRequest sentRequest = null;
			kmsClientMock.Setup(x => x.Decrypt(It.IsAny<DecryptRequest>()))
			             .Returns((DecryptRequest req) =>
			             {
				             sentRequest = req;
				             return new DecryptResponse
				             {
					             Plaintext = DoubleValues(req.CiphertextBlob)
				             };
			             });

			var context = new Dictionary<string, string> {{"purpose", "doubling"}};
			provider.DecryptKey(Bytes(1, 2, 3)).Should().Equal(Bytes(2, 4, 6));
			sentRequest.CiphertextBlob.ToArray().Should().Equal(Bytes(1, 2, 3));
			sentRequest.EncryptionContext.Should().BeEmpty();

			provider.DecryptKey(Bytes(2, 3, 4)).Should().Equal(Bytes(4, 6, 8));
		}