-
Notifications
You must be signed in to change notification settings - Fork 63
/
Copy pathfixtures.ts
101 lines (93 loc) · 4.34 KB
/
fixtures.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
// Copyright Amazon.com Inc. or its affiliates. All Rights Reserved.
// SPDX-License-Identifier: Apache-2.0
import { BranchKeyRecord } from '../src/branch_keystore_structures'
import { EncryptedHierarchicalKey, BranchKeyVersionType } from '../src/types'
import {
BRANCH_KEY_ACTIVE_TYPE,
BRANCH_KEY_ACTIVE_VERSION_FIELD,
BRANCH_KEY_FIELD,
BRANCH_KEY_IDENTIFIER_FIELD,
HIERARCHY_VERSION_FIELD,
KEY_CREATE_TIME_FIELD,
KMS_FIELD,
TYPE_FIELD,
TABLE_FIELD,
} from '../src/constants'
export const DDB_TABLE_NAME = 'KeyStoreDdbTable'
export const LOGICAL_KEYSTORE_NAME = DDB_TABLE_NAME
export const BRANCH_KEY_ID = '3f43a9af-08c5-4317-b694-3d3e883dcaef'
export const BRANCH_KEY_ACTIVE_VERSION = 'a4905627-4b7f-4272-a847-f50dae245737'
export const BRANCH_KEY_ID_WITH_EC = '4bb57643-07c1-419e-92ad-0df0df149d7c'
export const BRANCH_KEY_ACTIVE_VERSION_UTF8_BYTES = Buffer.from(
BRANCH_KEY_ACTIVE_VERSION,
'utf-8'
)
export const KEY_ARN =
'arn:aws:kms:us-west-2:370957321024:key/9d989aa2-2f9c-438c-a745-cc57d3ad0126'
export const KEY_ID = '9d989aa2-2f9c-438c-a745-cc57d3ad0126'
export const POSTAL_HORN_BRANCH_KEY_ID = '682dfba7-4c35-491d-8d6a-5a9c56194061'
export const KMS_KEY_ALIAS =
'arn:aws:kms:us-west-2:370957321024:alias/postalHorn'
export const INCORRECT_LOGICAL_NAME = 'MySuperAwesomeTableName'
export const POSTAL_HORN_KEY_ARN =
'arn:aws:kms:us-west-2:370957321024:key/bc127593-f7da-452c-a1f3-cd34c46f81f8'
export const LYING_BRANCH_KEY_ID = 'kms-arn-attribute-is-lying'
export const LYING_BRANCH_KEY_DECRYPT_ONLY_VERSION =
'129c5c87-308a-41c9-8b9d-a27f66e915f4'
// may not be active currently, but serves structural purpose
const ENCRYPTED_ACTIVE_BRANCH_KEY_CIPHERTEXT_BASE64 =
'AQICAHhTIzkciiF5TDB8qaCjctFmv6Dx+AQICAHhTIzkciiF5TDB8qaCjctFmv6Dx+4yjarauOA4MtH0jwgFHXGFS6janEEbpRnd0qbBJAAAAfjB8BgkqhkiG9w0BBwagbzBtAgEAMGgGCSqGSIb3DQEHATAeBglghkgBZQMEAS4wEQQMQLI9FLotey+qbs/CAgEQgDtqHnL1epEEpixeJCOG16V4cozeww9wMc82h7SSvXHP9PHTycAScLYZi2YICMka+QnZmPj4qP/9mb1xWQ==/7VWpSPAgEQgDuxKdGTboqxDhxBV1FQUVia8OFaQsLlPkuhwgc82tMhH9T2vAvsHGZPyPoK8zCG2xEjo3KIos8N1YK7mA=='
const ENCRYPTED_ACTIVE_BRANCH_KEY_CIPHERTEXT = new Uint8Array(
// @ts-ignore
Buffer.from(ENCRYPTED_ACTIVE_BRANCH_KEY_CIPHERTEXT_BASE64, 'base64')
)
export const ENCRYPTED_ACTIVE_BRANCH_KEY = new EncryptedHierarchicalKey(
{
[BRANCH_KEY_IDENTIFIER_FIELD]: BRANCH_KEY_ID,
[TYPE_FIELD]: BRANCH_KEY_ACTIVE_TYPE,
[BRANCH_KEY_ACTIVE_VERSION_FIELD]:
`branch:version:${BRANCH_KEY_ACTIVE_VERSION}` as BranchKeyVersionType,
[KEY_CREATE_TIME_FIELD]: '2025-04-04T22:29:59.000549Z',
[HIERARCHY_VERSION_FIELD]: '1',
[KMS_FIELD]: KEY_ARN,
[TABLE_FIELD]: LOGICAL_KEYSTORE_NAME,
},
ENCRYPTED_ACTIVE_BRANCH_KEY_CIPHERTEXT
)
const ENCRYPTED_VERSION_BRANCH_KEY_CIPHERTEXT_BASE64 =
'AQIBAHhTIzkciiF5TDB8qaCjctFmv6Dx+4yjarauOA4MtH0jwgHZhG1KfZ/k1VQMBZzo0X+GAAAAfjB8BgkqhkiG9w0BBwagbzBtAgEAMGgGCSqGSIb3DQEHATAeBglghkgBZQMEAS4wEQQMG5wDTuB2qzfR/mOKAgEQgDtbcAO39/bHj6BGaqgZTd3DSKHmpORsoaHLilWhAHryOlSjAiXK1NZxil7hOLcxjBzKE0QsMAaWJVtwag=='
const ENCRYPTED_VERSION_BRANCH_KEY_CIPHERTEXT = new Uint8Array(
// @ts-ignore
Buffer.from(ENCRYPTED_VERSION_BRANCH_KEY_CIPHERTEXT_BASE64, 'base64')
)
export const ENCRYPTED_VERSION_BRANCH_KEY = new EncryptedHierarchicalKey(
{
[BRANCH_KEY_IDENTIFIER_FIELD]: BRANCH_KEY_ID,
[TYPE_FIELD]:
`branch:version:${BRANCH_KEY_ACTIVE_VERSION}` as BranchKeyVersionType,
[KEY_CREATE_TIME_FIELD]: '2025-04-04T22:29:59.000549Z',
[HIERARCHY_VERSION_FIELD]: '1',
[KMS_FIELD]: KEY_ARN,
[TABLE_FIELD]: LOGICAL_KEYSTORE_NAME,
},
ENCRYPTED_VERSION_BRANCH_KEY_CIPHERTEXT
)
export const ACTIVE_BRANCH_KEY: BranchKeyRecord = {
[BRANCH_KEY_IDENTIFIER_FIELD]: BRANCH_KEY_ID,
[TYPE_FIELD]: BRANCH_KEY_ACTIVE_TYPE,
[BRANCH_KEY_ACTIVE_VERSION_FIELD]:
`branch:version:${BRANCH_KEY_ACTIVE_VERSION}` as BranchKeyVersionType,
[KEY_CREATE_TIME_FIELD]: '2025-04-04T22:29:59.000549Z',
[HIERARCHY_VERSION_FIELD]: 1,
[KMS_FIELD]: KEY_ARN,
[BRANCH_KEY_FIELD]: ENCRYPTED_ACTIVE_BRANCH_KEY_CIPHERTEXT,
}
export const VERSION_BRANCH_KEY: BranchKeyRecord = {
[BRANCH_KEY_IDENTIFIER_FIELD]: BRANCH_KEY_ID,
[TYPE_FIELD]:
`branch:version:${BRANCH_KEY_ACTIVE_VERSION}` as BranchKeyVersionType,
[KEY_CREATE_TIME_FIELD]: '2025-04-04T22:29:59.000549Z',
[HIERARCHY_VERSION_FIELD]: 1,
[KMS_FIELD]: KEY_ARN,
[BRANCH_KEY_FIELD]: ENCRYPTED_VERSION_BRANCH_KEY_CIPHERTEXT,
}