feat: add support for bucket encryption enforcement config by rajeevpodar · Pull Request #1742 · googleapis/python-storage
This change introduces support for configuring bucket encryption enforcement, including: - `defaultKmsKeyName` (via `BucketEncryption`) - `googleManagedEncryptionEnforcementConfig` - `customerManagedEncryptionEnforcementConfig` - `customerSuppliedEncryptionEnforcementConfig` New classes `EncryptionEnforcementConfig` and `BucketEncryption` are added to `google/cloud/storage/bucket.py` to wrap the API configuration. The `Bucket` class now exposes an `encryption` property. Tests are added in `tests/unit/test_bucket.py`. Co-authored-by: rajeevpodar <3637722+rajeevpodar@users.noreply.github.com>
This change introduces support for configuring bucket encryption enforcement, including: - `defaultKmsKeyName` (via `BucketEncryption`) - `googleManagedEncryptionEnforcementConfig` - `customerManagedEncryptionEnforcementConfig` - `customerSuppliedEncryptionEnforcementConfig` New classes `EncryptionEnforcementConfig` and `BucketEncryption` are added to `google/cloud/storage/bucket.py` to wrap the API configuration. The `Bucket` class now exposes an `encryption` property. Tests are added in `tests/unit/test_bucket.py` and `tests/system/test_bucket.py`. Co-authored-by: rajeevpodar <3637722+rajeevpodar@users.noreply.github.com>
This change introduces support for configuring bucket encryption enforcement, including: - `defaultKmsKeyName` (via `BucketEncryption`) - `googleManagedEncryptionEnforcementConfig` - `customerManagedEncryptionEnforcementConfig` - `customerSuppliedEncryptionEnforcementConfig` New classes `EncryptionEnforcementConfig` and `BucketEncryption` are added to `google/cloud/storage/bucket.py` to wrap the API configuration. The `Bucket` class now exposes an `encryption` property. Tests are added in `tests/unit/test_bucket.py` and `tests/system/test_bucket.py`. Addressed review comments regarding kwargs handling, constants usage in tests, and null safety in getters. Co-authored-by: rajeevpodar <3637722+rajeevpodar@users.noreply.github.com>
This change introduces support for configuring bucket encryption enforcement, including: - `defaultKmsKeyName` (via `BucketEncryption`) - `googleManagedEncryptionEnforcementConfig` - `customerManagedEncryptionEnforcementConfig` - `customerSuppliedEncryptionEnforcementConfig` New classes `EncryptionEnforcementConfig` and `BucketEncryption` are added to `google/cloud/storage/bucket.py` to wrap the API configuration. The `Bucket` class now exposes an `encryption` property. Tests are added in `tests/unit/test_bucket.py` and `tests/system/test_bucket.py`. Addressed review comments: - Handling `**kw` in `EncryptionEnforcementConfig.__init__` for forward compatibility. - Using constants for restriction modes in tests. - Improving test robustness. - Formatting with black. Co-authored-by: rajeevpodar <3637722+rajeevpodar@users.noreply.github.com>
nidhiii-27
deleted the
feat/bucket-encryption-config-10151670798613550332
branch
chandra-siri added a commit that referenced this pull request
Mar 18, 2026
PR created by the Librarian CLI to initialize a release. Merging this PR will auto trigger a release. Librarian Version: v1.0.2-0.20251119154421-36c3e21ad3ac Language Image: us-central1-docker.pkg.dev/cloud-sdk-librarian-prod/images-prod/python-librarian-generator@sha256:8e2c32496077054105bd06c54a59d6a6694287bc053588e24debe6da6920ad91 <details><summary>google-cloud-storage: 3.10.0</summary> ## [3.10.0](v3.9.0...v3.10.0) (2026-03-18) ### Features * [Bucket Encryption Enforcement] add support for bucket encryption enforcement config (#1742) ([2a6e8b0](2a6e8b0)) ### Perf Improvments * [Rapid Buckets Reads] Use raw proto access for read resumption strategy (#1764) ([14cfd61](14cfd61)) * [Rapid Buckets Benchmarks] init mp pool & grpc client once, use os.sched_setaffinity (#1751) ([a9eb82c](a9eb82c)) * [Rapid Buckets Writes] don't flush at every append, results in bad perf (#1746) ([ab62d72](ab62d72)) ### Bug Fixes * [Windows] skip downloading blobs whose name contain `":" ` eg: `C:` `D:` etc when application runs in Windows. (#1774) ([5581988](5581988)) * [Path Traversal] Prevent path traversal in `download_many_to_path` (#1768) ([700fec3](700fec3)) * [Rapid Buckets] pass token correctly, '&' instead of ',' (#1756) ([d8dd1e0](d8dd1e0)) </details>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode characters