Key Management Service API, gRPC: SymmetricCryptoService.ReEncrypt
Re-encrypts a ciphertext with the specified KMS key.
gRPC request
rpc ReEncrypt (SymmetricReEncryptRequest) returns (SymmetricReEncryptResponse)
SymmetricReEncryptRequest
{
"key_id": "string",
"version_id": "string",
"aad_context": "bytes",
"source_key_id": "string",
"source_aad_context": "bytes",
"ciphertext": "bytes"
}
|
Field |
Description |
|
key_id |
string Required field. ID of the new key to be used for encryption. The maximum string length in characters is 50. |
|
version_id |
string ID of the version of the new key to be used for encryption. The maximum string length in characters is 50. |
|
aad_context |
bytes Additional authenticated data to be required for decryption. The maximum string length in characters is 8192. |
|
source_key_id |
string Required field. ID of the key that the ciphertext is currently encrypted with. May be the same as for the new key. The maximum string length in characters is 50. |
|
source_aad_context |
bytes Additional authenticated data provided with the initial encryption request. The maximum string length in characters is 8192. |
|
ciphertext |
bytes Required field. Ciphertext to re-encrypt. |
SymmetricReEncryptResponse
{
"key_id": "string",
"version_id": "string",
"source_key_id": "string",
"source_version_id": "string",
"ciphertext": "bytes"
}
|
Field |
Description |
|
key_id |
string ID of the key that the ciphertext is encrypted with now. |
|
version_id |
string ID of key version that was used for encryption. |
|
source_key_id |
string ID of the key that the ciphertext was encrypted with previously. |
|
source_version_id |
string ID of the key version that was used to decrypt the re-encrypted ciphertext. |
|
ciphertext |
bytes Resulting re-encrypted ciphertext. |