do not allow `key=` on decrypt with aws-kms master key provider

## Problem
When decrypting with the AWS KMS master key provider,  specifying the master key does not functionally do anything useful because the master key provider mirrors the KMS service behavior in decrypting any encrypted data key protected by a KMS CMK for which the calling identity has appropriate access. Accepting key values in an AWS KMS master key provider configuration on decrypt creates the false image that only those keys will be used for decrypt.

## Solution
Raise an argument parsing error if a key value is provided with an AWS KMS master key provider on decrypt.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

do not allow `key=` on decrypt with aws-kms master key provider #80

Problem

Solution

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

do not allow key= on decrypt with aws-kms master key provider #80

Description

Problem

Solution

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

do not allow `key=` on decrypt with aws-kms master key provider #80