atoti.config.aws module

class atoti.config.aws.AwsClientSideEncryptionConfig(key_pair=None, kms=None)

The client side encryption configuration to use when loading data from AWS.

key_pair: Optional[atoti.config.key_pair.KeyPairConfig] = None

The key pair to use for client side encryption.

Example

>>> config = {
...     "aws": {
...         "client_side_encryption": {
...             "key_pair": {
...                 "public_key": "some public key",
...                 "private_key": "some private key",
...             }
...         },
...         "region": "us-east-1",
...     }
... }

kms: Optional[atoti.config.aws.AwsKmsConfig] = None

class atoti.config.aws.AwsConfig(region, client_side_encryption=None)

The AWS configuration.

Note

This requires the atoti-aws plugin.

Warning

Deprecated, use create_aws_key_pair() or create_aws_kms_config() instead.

client_side_encryption: Optional[atoti.config.aws.AwsClientSideEncryptionConfig] = None

region: str

The AWS region to interact with.

class atoti.config.aws.AwsKmsConfig(key_id)

The KMS configuration to use for client side encryption.

The AWS KMS CMK must have been created in the same AWS region as the destination bucket (Cf. AWS documentation).

Example

>>> config = {
...     "aws": {
...         "client_side_encryption": {"kms": {"key_id": "some key ID"}},
...         "region": "us-east-1",
...     }
... }

key_id: str

The ID to identify the key in KMS.