packages feed

amazonka-securityhub-2.0: gen/Amazonka/SecurityHub/Types/AwsS3BucketServerSideEncryptionByDefault.hs

{-# LANGUAGE DeriveGeneric #-}
{-# LANGUAGE DuplicateRecordFields #-}
{-# LANGUAGE NamedFieldPuns #-}
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE RecordWildCards #-}
{-# LANGUAGE StrictData #-}
{-# LANGUAGE NoImplicitPrelude #-}
{-# OPTIONS_GHC -fno-warn-unused-imports #-}
{-# OPTIONS_GHC -fno-warn-unused-matches #-}

-- Derived from AWS service descriptions, licensed under Apache 2.0.

-- |
-- Module      : Amazonka.SecurityHub.Types.AwsS3BucketServerSideEncryptionByDefault
-- Copyright   : (c) 2013-2023 Brendan Hay
-- License     : Mozilla Public License, v. 2.0.
-- Maintainer  : Brendan Hay
-- Stability   : auto-generated
-- Portability : non-portable (GHC extensions)
module Amazonka.SecurityHub.Types.AwsS3BucketServerSideEncryptionByDefault where

import qualified Amazonka.Core as Core
import qualified Amazonka.Core.Lens.Internal as Lens
import qualified Amazonka.Data as Data
import qualified Amazonka.Prelude as Prelude

-- | Specifies the default server-side encryption to apply to new objects in
-- the bucket.
--
-- /See:/ 'newAwsS3BucketServerSideEncryptionByDefault' smart constructor.
data AwsS3BucketServerSideEncryptionByDefault = AwsS3BucketServerSideEncryptionByDefault'
  { -- | KMS key ID to use for the default encryption.
    kmsMasterKeyID :: Prelude.Maybe Prelude.Text,
    -- | Server-side encryption algorithm to use for the default encryption.
    -- Valid values are @aws: kms@ or @AES256@.
    sSEAlgorithm :: Prelude.Maybe Prelude.Text
  }
  deriving (Prelude.Eq, Prelude.Read, Prelude.Show, Prelude.Generic)

-- |
-- Create a value of 'AwsS3BucketServerSideEncryptionByDefault' with all optional fields omitted.
--
-- Use <https://hackage.haskell.org/package/generic-lens generic-lens> or <https://hackage.haskell.org/package/optics optics> to modify other optional fields.
--
-- The following record fields are available, with the corresponding lenses provided
-- for backwards compatibility:
--
-- 'kmsMasterKeyID', 'awsS3BucketServerSideEncryptionByDefault_kmsMasterKeyID' - KMS key ID to use for the default encryption.
--
-- 'sSEAlgorithm', 'awsS3BucketServerSideEncryptionByDefault_sSEAlgorithm' - Server-side encryption algorithm to use for the default encryption.
-- Valid values are @aws: kms@ or @AES256@.
newAwsS3BucketServerSideEncryptionByDefault ::
  AwsS3BucketServerSideEncryptionByDefault
newAwsS3BucketServerSideEncryptionByDefault =
  AwsS3BucketServerSideEncryptionByDefault'
    { kmsMasterKeyID =
        Prelude.Nothing,
      sSEAlgorithm = Prelude.Nothing
    }

-- | KMS key ID to use for the default encryption.
awsS3BucketServerSideEncryptionByDefault_kmsMasterKeyID :: Lens.Lens' AwsS3BucketServerSideEncryptionByDefault (Prelude.Maybe Prelude.Text)
awsS3BucketServerSideEncryptionByDefault_kmsMasterKeyID = Lens.lens (\AwsS3BucketServerSideEncryptionByDefault' {kmsMasterKeyID} -> kmsMasterKeyID) (\s@AwsS3BucketServerSideEncryptionByDefault' {} a -> s {kmsMasterKeyID = a} :: AwsS3BucketServerSideEncryptionByDefault)

-- | Server-side encryption algorithm to use for the default encryption.
-- Valid values are @aws: kms@ or @AES256@.
awsS3BucketServerSideEncryptionByDefault_sSEAlgorithm :: Lens.Lens' AwsS3BucketServerSideEncryptionByDefault (Prelude.Maybe Prelude.Text)
awsS3BucketServerSideEncryptionByDefault_sSEAlgorithm = Lens.lens (\AwsS3BucketServerSideEncryptionByDefault' {sSEAlgorithm} -> sSEAlgorithm) (\s@AwsS3BucketServerSideEncryptionByDefault' {} a -> s {sSEAlgorithm = a} :: AwsS3BucketServerSideEncryptionByDefault)

instance
  Data.FromJSON
    AwsS3BucketServerSideEncryptionByDefault
  where
  parseJSON =
    Data.withObject
      "AwsS3BucketServerSideEncryptionByDefault"
      ( \x ->
          AwsS3BucketServerSideEncryptionByDefault'
            Prelude.<$> (x Data..:? "KMSMasterKeyID")
            Prelude.<*> (x Data..:? "SSEAlgorithm")
      )

instance
  Prelude.Hashable
    AwsS3BucketServerSideEncryptionByDefault
  where
  hashWithSalt
    _salt
    AwsS3BucketServerSideEncryptionByDefault' {..} =
      _salt
        `Prelude.hashWithSalt` kmsMasterKeyID
        `Prelude.hashWithSalt` sSEAlgorithm

instance
  Prelude.NFData
    AwsS3BucketServerSideEncryptionByDefault
  where
  rnf AwsS3BucketServerSideEncryptionByDefault' {..} =
    Prelude.rnf kmsMasterKeyID
      `Prelude.seq` Prelude.rnf sSEAlgorithm

instance
  Data.ToJSON
    AwsS3BucketServerSideEncryptionByDefault
  where
  toJSON AwsS3BucketServerSideEncryptionByDefault' {..} =
    Data.object
      ( Prelude.catMaybes
          [ ("KMSMasterKeyID" Data..=)
              Prelude.<$> kmsMasterKeyID,
            ("SSEAlgorithm" Data..=) Prelude.<$> sSEAlgorithm
          ]
      )