GoogleCloudKmsV1CryptoKeyVersionTemplate
import type { GoogleCloudKmsV1CryptoKeyVersionTemplate } from "https://googleapis.deno.dev/v1/kmsinventory:v1.ts";
A CryptoKeyVersionTemplate specifies the properties to use when creating a new CryptoKeyVersion, either manually with CreateCryptoKeyVersion or automatically as a result of auto-rotation.
interface GoogleCloudKmsV1CryptoKeyVersionTemplate {
algorithm?:
| "CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED"
| "GOOGLE_SYMMETRIC_ENCRYPTION"
| "AES_128_GCM"
| "AES_256_GCM"
| "AES_128_CBC"
| "AES_256_CBC"
| "AES_128_CTR"
| "AES_256_CTR"
| "RSA_SIGN_PSS_2048_SHA256"
| "RSA_SIGN_PSS_3072_SHA256"
| "RSA_SIGN_PSS_4096_SHA256"
| "RSA_SIGN_PSS_4096_SHA512"
| "RSA_SIGN_PKCS1_2048_SHA256"
| "RSA_SIGN_PKCS1_3072_SHA256"
| "RSA_SIGN_PKCS1_4096_SHA256"
| "RSA_SIGN_PKCS1_4096_SHA512"
| "RSA_SIGN_RAW_PKCS1_2048"
| "RSA_SIGN_RAW_PKCS1_3072"
| "RSA_SIGN_RAW_PKCS1_4096"
| "RSA_DECRYPT_OAEP_2048_SHA256"
| "RSA_DECRYPT_OAEP_3072_SHA256"
| "RSA_DECRYPT_OAEP_4096_SHA256"
| "RSA_DECRYPT_OAEP_4096_SHA512"
| "RSA_DECRYPT_OAEP_2048_SHA1"
| "RSA_DECRYPT_OAEP_3072_SHA1"
| "RSA_DECRYPT_OAEP_4096_SHA1"
| "EC_SIGN_P256_SHA256"
| "EC_SIGN_P384_SHA384"
| "EC_SIGN_SECP256K1_SHA256"
| "EC_SIGN_ED25519"
| "HMAC_SHA256"
| "HMAC_SHA1"
| "HMAC_SHA384"
| "HMAC_SHA512"
| "HMAC_SHA224"
| "EXTERNAL_SYMMETRIC_ENCRYPTION";
protectionLevel?:
} | "PROTECTION_LEVEL_UNSPECIFIED"
| "SOFTWARE"
| "HSM"
| "EXTERNAL"
| "EXTERNAL_VPC";
§Properties
§
algorithm?: "CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED" | "GOOGLE_SYMMETRIC_ENCRYPTION" | "AES_128_GCM" | "AES_256_GCM" | "AES_128_CBC" | "AES_256_CBC" | "AES_128_CTR" | "AES_256_CTR" | "RSA_SIGN_PSS_2048_SHA256" | "RSA_SIGN_PSS_3072_SHA256" | "RSA_SIGN_PSS_4096_SHA256" | "RSA_SIGN_PSS_4096_SHA512" | "RSA_SIGN_PKCS1_2048_SHA256" | "RSA_SIGN_PKCS1_3072_SHA256" | "RSA_SIGN_PKCS1_4096_SHA256" | "RSA_SIGN_PKCS1_4096_SHA512" | "RSA_SIGN_RAW_PKCS1_2048" | "RSA_SIGN_RAW_PKCS1_3072" | "RSA_SIGN_RAW_PKCS1_4096" | "RSA_DECRYPT_OAEP_2048_SHA256" | "RSA_DECRYPT_OAEP_3072_SHA256" | "RSA_DECRYPT_OAEP_4096_SHA256" | "RSA_DECRYPT_OAEP_4096_SHA512" | "RSA_DECRYPT_OAEP_2048_SHA1" | "RSA_DECRYPT_OAEP_3072_SHA1" | "RSA_DECRYPT_OAEP_4096_SHA1" | "EC_SIGN_P256_SHA256" | "EC_SIGN_P384_SHA384" | "EC_SIGN_SECP256K1_SHA256" | "EC_SIGN_ED25519" | "HMAC_SHA256" | "HMAC_SHA1" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "EXTERNAL_SYMMETRIC_ENCRYPTION"
[src]Required. Algorithm to use when creating a CryptoKeyVersion based on this template. For backwards compatibility, GOOGLE_SYMMETRIC_ENCRYPTION is implied if both this field is omitted and CryptoKey.purpose is ENCRYPT_DECRYPT.