Multiple [aws] clients

[d-kononov]

Any chance you can add support for multiple [aws] clients?

Use-case: project has multiple AWS configs (credentials) and record should be encoded/decoded with using specified AWS config/client.

eg: pass AWS config/client as a param to has_kms_key method.

[ankane]

Hey @d-kononov, I added support in the client branch if you want to try it out.

gem 'kms_encrypted', github: 'ankane/kms_encrypted', branch: 'client'

And

class User < ApplicationRecord
  has_kms_key client: Aws::KMS::Client.new
end

If you use previous_versions, you should specify the client there as well (or else it'll use the global client).

This adds a bit of complexity, so I'm not sure if it'll be merged.

[d-kononov]

Thank you @ankane !

[d-kononov]

Thanks!

[jshirley]

Hi @ankane -- I also would eventually like to have support for multiple AWS clients for a bring-your-own-KMS. Is there anything further you'd like to see before merging this PR?

[gmocellin]

Hi, like @jshirley, I think this would be a great addition.
My use case was a bit different. I needed to use localstack for testing and the only way I could was using this branch and configuring the endpoint. Would be great to have this feature.

What I did: has_kms_key client: Aws::KMS::Client.new({ endpoint: 'http://localhost:4566' })

[lucashungaro]

Would be awesome to see this merged. With new data regulations being adopted, there's a lot of demand for "bring your own key" nowadays, and this feature is a perfect fit for that use case.

How would we be able to help with that?

[elkesrio]

Hey @ankane ! It would be great to have a such feature. Is it planned? Are there any blockers preventing its implementation ? I can help on that :)