Package io.quarkus.vault.runtime.config

Class TransitKeyConfig

java.lang.Object

io.quarkus.vault.runtime.config.TransitKeyConfig

public class TransitKeyConfig
extends Object

Field Summary

Fields

Modifier and Type	Field	Description
Optional<String>	convergentEncryption	If enabled, the key will support convergent encryption, where the same plaintext creates the same ciphertext.
Optional<String>	hashAlgorithm	Specifies the hash algorithm to use for supporting key types.
Optional<String>	name	Specifies the name of the key to use.
Optional<Boolean>	prehashed	Set to true when the input is already hashed.
Optional<String>	signatureAlgorithm	When using a RSA key, specifies the RSA signature algorithm.
Optional<String>	type	Specifies the type of key to create for the encrypt operation.

Constructor Summary

Constructors

Constructor	Description
TransitKeyConfig()

Method Summary

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

name

@ConfigItem
public Optional<String> name

Specifies the name of the key to use. By default this will be the property key alias. Used when the same transit key is used with different configurations. Such as in: ``` quarkus.vault.transit.key.my-foo-key.name=foo quarkus.vault.transit.key.my-foo-key-with-prehashed.name=foo quarkus.vault.transit.key.my-foo-key-with-prehashed.prehashed=true ... transitSecretEngine.sign("my-foo-key", "my raw content"); or transitSecretEngine.sign("my-foo-key-with-prehashed", "my already hashed content"); ```

prehashed

@ConfigItem
public Optional<Boolean> prehashed

Set to true when the input is already hashed. Applies to sign operations.

See Also:

api documentation for prehashed

signatureAlgorithm

@ConfigItem
public Optional<String> signatureAlgorithm

When using a RSA key, specifies the RSA signature algorithm. Applies to sign operations.

See Also:

api documentation for signature_algorithm

hashAlgorithm

@ConfigItem
public Optional<String> hashAlgorithm

Specifies the hash algorithm to use for supporting key types. Applies to sign operations.

See Also:

api documentation for hash_algorithm

type

@ConfigItem
public Optional<String> type

Specifies the type of key to create for the encrypt operation. Applies to encrypt operations.

See Also:

api documentation for type

convergentEncryption

@ConfigItem
public Optional<String> convergentEncryption

If enabled, the key will support convergent encryption, where the same plaintext creates the same ciphertext. Applies to encrypt operations.

See Also:

api documentation for convergent_encryption

Constructor Detail

TransitKeyConfig

public TransitKeyConfig()