Package io.quarkus.vault.runtime.config
Interface TransitKeyConfig
-
public interface TransitKeyConfig
-
-
Method Summary
All Methods Instance Methods Abstract Methods Modifier and Type Method Description Optional<String>convergentEncryption()If enabled, the key will support convergent encryption, where the same plaintext creates the same ciphertext.Optional<String>hashAlgorithm()Specifies the hash algorithm to use for supporting key types.Optional<String>name()Specifies the name of the key to use.Optional<Boolean>prehashed()Set to true when the input is already hashed.Optional<String>signatureAlgorithm()When using a RSA key, specifies the RSA signature algorithm.Optional<String>type()Specifies the type of key to create for the encrypt operation.
-
-
-
Method Detail
-
name
Optional<String> name()
Specifies the name of the key to use. By default this will be the property key alias. Used when the same transit key is used with different configurations. Such as in: ``` quarkus.vault.transit.key.my-foo-key.name=foo quarkus.vault.transit.key.my-foo-key-with-prehashed.name=foo quarkus.vault.transit.key.my-foo-key-with-prehashed.prehashed=true ... transitSecretEngine.sign("my-foo-key", "my raw content"); or transitSecretEngine.sign("my-foo-key-with-prehashed", "my already hashed content"); ```
-
prehashed
Optional<Boolean> prehashed()
Set to true when the input is already hashed. Applies to sign operations.- See Also:
- api documentation for prehashed
-
signatureAlgorithm
Optional<String> signatureAlgorithm()
When using a RSA key, specifies the RSA signature algorithm. Applies to sign operations.
-
hashAlgorithm
Optional<String> hashAlgorithm()
Specifies the hash algorithm to use for supporting key types. Applies to sign operations.- See Also:
- api documentation for hash_algorithm
-
type
Optional<String> type()
Specifies the type of key to create for the encrypt operation. Applies to encrypt operations.- See Also:
- api documentation for type
-
-