google_api_cloud_kms v0.6.0 GoogleApi.CloudKMS.V1.Model.CryptoKeyVersion View Source

A CryptoKeyVersion represents an individual cryptographic key, and the associated key material. An ENABLED version can be used for cryptographic operations. For security reasons, the raw cryptographic key material represented by a CryptoKeyVersion can never be viewed or exported. It can only be used to encrypt, decrypt, or sign data when an authorized user or application invokes Cloud KMS.

Attributes

  • algorithm (String.t): Output only. The CryptoKeyVersionAlgorithm that this CryptoKeyVersion supports. Defaults to: null.

    • Enum - one of [CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED, GOOGLE_SYMMETRIC_ENCRYPTION, RSA_SIGN_PSS_2048_SHA256, RSA_SIGN_PSS_3072_SHA256, RSA_SIGN_PSS_4096_SHA256, RSA_SIGN_PSS_4096_SHA512, RSA_SIGN_PKCS1_2048_SHA256, RSA_SIGN_PKCS1_3072_SHA256, RSA_SIGN_PKCS1_4096_SHA256, RSA_SIGN_PKCS1_4096_SHA512, RSA_DECRYPT_OAEP_2048_SHA256, RSA_DECRYPT_OAEP_3072_SHA256, RSA_DECRYPT_OAEP_4096_SHA256, RSA_DECRYPT_OAEP_4096_SHA512, EC_SIGN_P256_SHA256, EC_SIGN_P384_SHA384]
  • attestation (KeyOperationAttestation): Output only. Statement that was generated and signed by the HSM at key creation time. Use this statement to verify attributes of the key as stored on the HSM, independently of Google. Only provided for key versions with protection_level HSM. Defaults to: null.
  • createTime (DateTime.t): Output only. The time at which this CryptoKeyVersion was created. Defaults to: null.
  • destroyEventTime (DateTime.t): Output only. The time this CryptoKeyVersion's key material was destroyed. Only present if state is DESTROYED. Defaults to: null.
  • destroyTime (DateTime.t): Output only. The time this CryptoKeyVersion's key material is scheduled for destruction. Only present if state is DESTROY_SCHEDULED. Defaults to: null.
  • generateTime (DateTime.t): Output only. The time this CryptoKeyVersion's key material was generated. Defaults to: null.
  • name (String.t): Output only. The resource name for this CryptoKeyVersion in the format `projects//locations//keyRings//cryptoKeys//cryptoKeyVersions/*`. Defaults to: null.
  • protectionLevel (String.t): Output only. The ProtectionLevel describing how crypto operations are performed with this CryptoKeyVersion. Defaults to: null.

    • Enum - one of [PROTECTION_LEVEL_UNSPECIFIED, SOFTWARE, HSM]
  • state (String.t): The current state of the CryptoKeyVersion. Defaults to: null.

    • Enum - one of [CRYPTO_KEY_VERSION_STATE_UNSPECIFIED, PENDING_GENERATION, ENABLED, DISABLED, DESTROYED, DESTROY_SCHEDULED]

Link to this section Summary

Functions

Unwrap a decoded JSON object into its complex fields.

Link to this section Types

Link to this type

t() View Source
t() :: %GoogleApi.CloudKMS.V1.Model.CryptoKeyVersion{
  algorithm: any(),
  attestation: GoogleApi.CloudKMS.V1.Model.KeyOperationAttestation.t(),
  createTime: DateTime.t(),
  destroyEventTime: DateTime.t(),
  destroyTime: DateTime.t(),
  generateTime: DateTime.t(),
  name: any(),
  protectionLevel: any(),
  state: any()
}

Link to this section Functions

Link to this function

decode(value, options) View Source
decode(struct(), keyword()) :: struct()

Unwrap a decoded JSON object into its complex fields.