Use Either monad to back KMSProviders

XMLWordPrintableJSON

    • Type: Improvement
    • Resolution: Won't Do
    • Priority: Major - P3
    • None
    • Affects Version/s: None
    • Component/s: Field Level Encryption
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      Currently our KMS providers are backed with a  IReadOnlyDictionary<string, IReadOnlyDictionary<string, object>>

      We use the following method to ensure that the values in the subdictionaries are strings or byte arrays.

      public static void EnsureKmsProvidersAreValid(IReadOnlyDictionary<string, IReadOnlyDictionary<string, object>> kmsProviders)
      {
          foreach (var kmsProvider in kmsProviders)
          {
              foreach (var option in Ensure.IsNotNull(kmsProvider.Value, nameof(kmsProvider)))
              {
                  var optionValue = Ensure.IsNotNull(option.Value, "kmsProviderOption");
                  var isValid = optionValue is byte[] || optionValue is string;
                  if (!isValid)
                  {
                      throw new ArgumentException($"Invalid kms provider option type: {optionValue.GetType().Name}.");
                  }
              }
          }
      }
      

      We could make this restriction more explicit by using the Either monadto back the KMS providers internally:

      IReadOnlyDictionary<string, IReadOnlyDictionary<string, Either<string, byte[]>>

              Assignee:
              Unassigned
              Reporter:
              Vincent Kam (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: