yc kms symmetric-crypto generate-data-key
Статья создана
Обновлена 2 декабря 2024 г.
Generate data key and encrypt it with specified symmetric key
Command Usage
Syntax:
yc kms symmetric-crypto generate-data-key <SYMMETRIC-KEY> [Flags][Global Flags...]
Flags
| Flag | Description |
|---|---|
--id |
stringSymmetric key id. |
--name |
stringSymmetric key name. |
--version-id |
stringSymmetric key version id to encrypt data key. Otherwise primary version of symmetric key will be used. |
--aad-context-file |
stringAdditional authenticated data file. Otherwise encrypt data key without aad context. |
--data-key-spec |
stringRequired. Encryption algorithm and key length for the generated data key. Values: 'aes-128', 'aes-192', 'aes-256', 'aes-256-hsm' |
--skip-plaintext |
Won't write generated data key as plaintext. |
--data-key-plaintext-file |
stringFile to write generated data key as plaintext. |
--data-key-ciphertext-file |
stringRequired. File to write encrypted data key. |
Global Flags
| Flag | Description |
|---|---|
--profile |
stringSet the custom configuration file. |
--debug |
Debug logging. |
--debug-grpc |
Debug gRPC logging. Very verbose, used for debugging connection problems. |
--no-user-output |
Disable printing user intended output to stderr. |
--retry |
intEnable gRPC retries. By default, retries are enabled with maximum 5 attempts. Pass 0 to disable retries. Pass any negative value for infinite retries. Even infinite retries are capped with 2 minutes timeout. |
--cloud-id |
stringSet the ID of the cloud to use. |
--folder-id |
stringSet the ID of the folder to use. |
--folder-name |
stringSet the name of the folder to use (will be resolved to id). |
--endpoint |
stringSet the Cloud API endpoint (host:port). |
--token |
stringSet the OAuth token to use. |
--impersonate-service-account-id |
stringSet the ID of the service account to impersonate. |
--no-browser |
Disable opening browser for authentication. |
--format |
stringSet the output format: text (default), yaml, json, json-rest. |
--jq |
stringQuery to select values from the response using jq syntax |
-h,--help |
Display help for the command. |