Example 51 with KeyManagementServiceClient
use of com.google.cloud.kms.v1.KeyManagementServiceClient in project java-docs-samples by GoogleCloudPlatform.
the class SnippetsIT method createKeyRing.
private static KeyRing createKeyRing(String keyRingId) throws IOException {
try (KeyManagementServiceClient client = KeyManagementServiceClient.create()) {
KeyRing keyRing = KeyRing.newBuilder().build();
KeyRing createdKeyRing = client.createKeyRing(getLocationName(), keyRingId, keyRing);
return createdKeyRing;
}
}
Also used :
KeyRing(com.google.cloud.kms.v1.KeyRing)
KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)
Example 52 with KeyManagementServiceClient
use of com.google.cloud.kms.v1.KeyManagementServiceClient in project java-docs-samples by GoogleCloudPlatform.
the class SnippetsIT method createKeyVersion.
private static CryptoKeyVersion createKeyVersion(String keyId) throws IOException, InterruptedException, TimeoutException {
try (KeyManagementServiceClient client = KeyManagementServiceClient.create()) {
CryptoKeyName keyName = CryptoKeyName.of(PROJECT_ID, LOCATION_ID, KEY_RING_ID, keyId);
CryptoKeyVersion keyVersion = CryptoKeyVersion.newBuilder().build();
CryptoKeyVersion createdVersion = client.createCryptoKeyVersion(keyName, keyVersion);
for (int i = 1; i <= 5; i++) {
CryptoKeyVersion gotVersion = client.getCryptoKeyVersion(createdVersion.getName());
if (gotVersion.getState() == CryptoKeyVersionState.ENABLED) {
return gotVersion;
}
Thread.sleep(500 * i);
}
throw new TimeoutException("key version not ready in timeout");
}
}
Also used :
CryptoKeyName(com.google.cloud.kms.v1.CryptoKeyName)
CryptoKeyVersion(com.google.cloud.kms.v1.CryptoKeyVersion)
KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)
TimeoutException(java.util.concurrent.TimeoutException)
Example 53 with KeyManagementServiceClient
use of com.google.cloud.kms.v1.KeyManagementServiceClient in project java-docs-samples by GoogleCloudPlatform.
the class SnippetsIT method createAsymmetricSignEcKey.
private static CryptoKey createAsymmetricSignEcKey(String keyId) throws IOException {
try (KeyManagementServiceClient client = KeyManagementServiceClient.create()) {
CryptoKey key = CryptoKey.newBuilder().setPurpose(CryptoKeyPurpose.ASYMMETRIC_SIGN).setVersionTemplate(CryptoKeyVersionTemplate.newBuilder().setAlgorithm(CryptoKeyVersionAlgorithm.EC_SIGN_P256_SHA256).build()).putLabels("foo", "bar").putLabels("zip", "zap").build();
CryptoKey createdKey = client.createCryptoKey(getKeyRingName(), keyId, key);
return createdKey;
}
}
Also used :
CryptoKey(com.google.cloud.kms.v1.CryptoKey)
KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)
Example 54 with KeyManagementServiceClient
use of com.google.cloud.kms.v1.KeyManagementServiceClient in project java-docs-samples by GoogleCloudPlatform.
the class SnippetsIT method createHsmKey.
private static CryptoKey createHsmKey(String keyId) throws IOException {
try (KeyManagementServiceClient client = KeyManagementServiceClient.create()) {
CryptoKey key = CryptoKey.newBuilder().setPurpose(CryptoKeyPurpose.ENCRYPT_DECRYPT).setVersionTemplate(CryptoKeyVersionTemplate.newBuilder().setAlgorithm(CryptoKeyVersionAlgorithm.GOOGLE_SYMMETRIC_ENCRYPTION).setProtectionLevel(ProtectionLevel.HSM).build()).putLabels("foo", "bar").putLabels("zip", "zap").build();
CryptoKey createdKey = client.createCryptoKey(getKeyRingName(), keyId, key);
return createdKey;
}
}
Also used :
CryptoKey(com.google.cloud.kms.v1.CryptoKey)
KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)
Example 55 with KeyManagementServiceClient
use of com.google.cloud.kms.v1.KeyManagementServiceClient in project java-docs-samples by GoogleCloudPlatform.
the class CreateKeyAsymmetricDecrypt method createKeyAsymmetricDecrypt.
// Create a new asymmetric key for the purpose of encrypting and decrypting
// data.
public void createKeyAsymmetricDecrypt(String projectId, String locationId, String keyRingId, String id) throws IOException {
// safely clean up any remaining background resources.
try (KeyManagementServiceClient client = KeyManagementServiceClient.create()) {
// Build the parent name from the project, location, and key ring.
KeyRingName keyRingName = KeyRingName.of(projectId, locationId, keyRingId);
// Build the asymmetric key to create.
CryptoKey key = CryptoKey.newBuilder().setPurpose(CryptoKeyPurpose.ASYMMETRIC_DECRYPT).setVersionTemplate(CryptoKeyVersionTemplate.newBuilder().setAlgorithm(CryptoKeyVersionAlgorithm.RSA_DECRYPT_OAEP_2048_SHA256)).build();
// Create the key.
CryptoKey createdKey = client.createCryptoKey(keyRingName, id, key);
System.out.printf("Created asymmetric key %s%n", createdKey.getName());
}
}
Also used :
CryptoKey(com.google.cloud.kms.v1.CryptoKey)
KeyRingName(com.google.cloud.kms.v1.KeyRingName)
KeyManagementServiceClient(com.google.cloud.kms.v1.KeyManagementServiceClient)
Aggregations
KeyManagementServiceClient (com.google.cloud.kms.v1.KeyManagementServiceClient)185
CryptoKey (com.google.cloud.kms.v1.CryptoKey)56
CryptoKeyVersion (com.google.cloud.kms.v1.CryptoKeyVersion)39
CryptoKeyVersionName (com.google.cloud.kms.v1.CryptoKeyVersionName)37
CryptoKeyName (com.google.cloud.kms.v1.CryptoKeyName)33
ByteString (com.google.protobuf.ByteString)20
KeyRingName (com.google.cloud.kms.v1.KeyRingName)17
KeyRing (com.google.cloud.kms.v1.KeyRing)16
FieldMask (com.google.protobuf.FieldMask)16
PublicKey (com.google.cloud.kms.v1.PublicKey)14
ImportJob (com.google.cloud.kms.v1.ImportJob)10
Test (org.junit.Test)10
Digest (com.google.cloud.kms.v1.Digest)8
EncryptResponse (com.google.cloud.kms.v1.EncryptResponse)8
Policy (com.google.iam.v1.Policy)8
X509EncodedKeySpec (java.security.spec.X509EncodedKeySpec)8
DecryptResponse (com.google.cloud.kms.v1.DecryptResponse)7
AsymmetricDecryptResponse (com.google.cloud.kms.v1.AsymmetricDecryptResponse)6
AsymmetricSignResponse (com.google.cloud.kms.v1.AsymmetricSignResponse)6
LocationName (com.google.cloud.kms.v1.LocationName)6
