Examples with AsymmetricSignResponse com.google.cloud.kms.v1.AsymmetricSignResponse used on opensource projects

Search in sources :

Example 1 with AsymmetricSignResponse

use of com.google.cloud.kms.v1.AsymmetricSignResponse in project gapic-generator-java by googleapis.

the class SyncAsymmetricSignStringDigest method syncAsymmetricSignStringDigest.

public static void syncAsymmetricSignStringDigest() throws Exception {
    // It may require modifications to work in your environment.
    try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
        String name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]").toString();
        Digest digest = Digest.newBuilder().build();
        AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(name, digest);
    }
}
Also used : Digest(com.google.cloud.kms.v1.Digest) AsymmetricSignResponse(com.google.cloud.kms.v1.AsymmetricSignResponse) KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)

Example 2 with AsymmetricSignResponse

use of com.google.cloud.kms.v1.AsymmetricSignResponse in project java-kms by googleapis.

the class SignAsymmetric method signAsymmetric.

// Get the public key associated with an asymmetric key.
public void signAsymmetric(String projectId, String locationId, String keyRingId, String keyId, String keyVersionId, String message) throws IOException, GeneralSecurityException {
    // safely clean up any remaining background resources.
    try (KeyManagementServiceClient client = KeyManagementServiceClient.create()) {
        // Build the key version name from the project, location, key ring, key,
        // and key version.
        CryptoKeyVersionName keyVersionName = CryptoKeyVersionName.of(projectId, locationId, keyRingId, keyId, keyVersionId);
        // Convert the message into bytes. Cryptographic plaintexts and
        // ciphertexts are always byte arrays.
        byte[] plaintext = message.getBytes(StandardCharsets.UTF_8);
        // Calculate the digest.
        MessageDigest sha256 = MessageDigest.getInstance("SHA-256");
        byte[] hash = sha256.digest(plaintext);
        // Build the digest object.
        Digest digest = Digest.newBuilder().setSha256(ByteString.copyFrom(hash)).build();
        // Sign the digest.
        AsymmetricSignResponse result = client.asymmetricSign(keyVersionName, digest);
        // Get the signature.
        byte[] signature = result.getSignature().toByteArray();
        System.out.printf("Signature %s%n", signature);
    }
}
Also used : CryptoKeyVersionName(com.google.cloud.kms.v1.CryptoKeyVersionName) MessageDigest(java.security.MessageDigest) Digest(com.google.cloud.kms.v1.Digest) AsymmetricSignResponse(com.google.cloud.kms.v1.AsymmetricSignResponse) MessageDigest(java.security.MessageDigest) KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)

Example 3 with AsymmetricSignResponse

use of com.google.cloud.kms.v1.AsymmetricSignResponse in project java-docs-samples by GoogleCloudPlatform.

the class SignAsymmetric method signAsymmetric.

// Get the public key associated with an asymmetric key.
public void signAsymmetric(String projectId, String locationId, String keyRingId, String keyId, String keyVersionId, String message) throws IOException, GeneralSecurityException {
    // safely clean up any remaining background resources.
    try (KeyManagementServiceClient client = KeyManagementServiceClient.create()) {
        // Build the key version name from the project, location, key ring, key,
        // and key version.
        CryptoKeyVersionName keyVersionName = CryptoKeyVersionName.of(projectId, locationId, keyRingId, keyId, keyVersionId);
        // Convert the message into bytes. Cryptographic plaintexts and
        // ciphertexts are always byte arrays.
        byte[] plaintext = message.getBytes(StandardCharsets.UTF_8);
        // Calculate the digest.
        MessageDigest sha256 = MessageDigest.getInstance("SHA-256");
        byte[] hash = sha256.digest(plaintext);
        // Build the digest object.
        Digest digest = Digest.newBuilder().setSha256(ByteString.copyFrom(hash)).build();
        // Optional, but recommended: compute digest's CRC32C. See helper below.
        long digestCrc32c = getCrc32cAsLong(hash);
        // Sign the digest.
        AsymmetricSignRequest request = AsymmetricSignRequest.newBuilder().setName(keyVersionName.toString()).setDigest(digest).setDigestCrc32C(Int64Value.newBuilder().setValue(digestCrc32c).build()).build();
        AsymmetricSignResponse response = client.asymmetricSign(request);
        // https://cloud.google.com/kms/docs/data-integrity-guidelines
        if (!response.getVerifiedDigestCrc32C()) {
            throw new IOException("AsymmetricSign: request to server corrupted");
        }
        // See helper below.
        if (!crcMatches(response.getSignatureCrc32C().getValue(), response.getSignature().toByteArray())) {
            throw new IOException("AsymmetricSign: response from server corrupted");
        }
        // Get the signature.
        byte[] signature = response.getSignature().toByteArray();
        System.out.printf("Signature %s%n", signature);
    }
}
Also used : CryptoKeyVersionName(com.google.cloud.kms.v1.CryptoKeyVersionName) MessageDigest(java.security.MessageDigest) Digest(com.google.cloud.kms.v1.Digest) AsymmetricSignResponse(com.google.cloud.kms.v1.AsymmetricSignResponse) AsymmetricSignRequest(com.google.cloud.kms.v1.AsymmetricSignRequest) IOException(java.io.IOException) MessageDigest(java.security.MessageDigest) KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)

Example 4 with AsymmetricSignResponse

use of com.google.cloud.kms.v1.AsymmetricSignResponse in project gapic-generator-java by googleapis.

the class AsyncAsymmetricSign method asyncAsymmetricSign.

public static void asyncAsymmetricSign() throws Exception {
    // It may require modifications to work in your environment.
    try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
        AsymmetricSignRequest request = AsymmetricSignRequest.newBuilder().setName(CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]").toString()).setDigest(Digest.newBuilder().build()).setDigestCrc32C(Int64Value.newBuilder().build()).build();
        ApiFuture<AsymmetricSignResponse> future = keyManagementServiceClient.asymmetricSignCallable().futureCall(request);
        // Do something.
        AsymmetricSignResponse response = future.get();
    }
}
Also used : AsymmetricSignResponse(com.google.cloud.kms.v1.AsymmetricSignResponse) AsymmetricSignRequest(com.google.cloud.kms.v1.AsymmetricSignRequest) KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)

Example 5 with AsymmetricSignResponse

use of com.google.cloud.kms.v1.AsymmetricSignResponse in project gapic-generator-java by googleapis.

the class SyncAsymmetricSign method syncAsymmetricSign.

public static void syncAsymmetricSign() throws Exception {
    // It may require modifications to work in your environment.
    try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
        AsymmetricSignRequest request = AsymmetricSignRequest.newBuilder().setName(CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]").toString()).setDigest(Digest.newBuilder().build()).setDigestCrc32C(Int64Value.newBuilder().build()).build();
        AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(request);
    }
}
Also used : AsymmetricSignResponse(com.google.cloud.kms.v1.AsymmetricSignResponse) AsymmetricSignRequest(com.google.cloud.kms.v1.AsymmetricSignRequest) KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)

Aggregations

AsymmetricSignResponse (com.google.cloud.kms.v1.AsymmetricSignResponse)6 KeyManagementServiceClient (com.google.cloud.kms.v1.KeyManagementServiceClient)6 Digest (com.google.cloud.kms.v1.Digest)4 AsymmetricSignRequest (com.google.cloud.kms.v1.AsymmetricSignRequest)3 CryptoKeyVersionName (com.google.cloud.kms.v1.CryptoKeyVersionName)3 MessageDigest (java.security.MessageDigest)2 IOException (java.io.IOException)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial