/*
* Copyright 2015 herd contributors
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.finra.herd.dao.helper;
import org.apache.commons.lang3.StringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.finra.herd.core.helper.ConfigurationHelper;
import org.finra.herd.dao.KmsDao;
import org.finra.herd.model.dto.ConfigurationValue;
/**
* A helper class for KMS functionality.
*/
@Component
public class KmsHelper
{
@Autowired
private ConfigurationHelper configurationHelper;
@Autowired
private AwsHelper awsHelper;
@Autowired
private KmsDao kmsDao;
/**
* Gets the decrypted value for the given configuration option.
*
* @param configurationValue - The configuration which contains the encrypted value.
*
* @return decrypted value
*/
public String getDecryptedConfigurationValue(ConfigurationValue configurationValue)
{
String encryptedValue = configurationHelper.getProperty(configurationValue);
if (StringUtils.isBlank(encryptedValue))
{
throw new IllegalStateException("Unable to decrypt configuration value \"" + configurationValue.getKey() + "\" since it is not configured.");
}
try
{
return kmsDao.decrypt(awsHelper.getAwsParamsDto(), encryptedValue);
}
catch (Exception e)
{
throw new IllegalStateException("Error decrypting configuration value \"" + configurationValue.getKey() + "\".", e);
}
}
}