google-cloud-kms-v1 0.6.2 → 0.10.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/google/cloud/kms/v1/iam_policy/client.rb +38 -39
- data/lib/google/cloud/kms/v1/key_management_service/client.rb +535 -168
- data/lib/google/cloud/kms/v1/resources_pb.rb +14 -2
- data/lib/google/cloud/kms/v1/service_pb.rb +65 -14
- data/lib/google/cloud/kms/v1/service_services_pb.rb +37 -24
- data/lib/google/cloud/kms/v1/version.rb +1 -1
- data/proto_docs/google/cloud/kms/v1/resources.rb +56 -4
- data/proto_docs/google/cloud/kms/v1/service.rb +290 -59
- metadata +4 -4
|
@@ -52,13 +52,12 @@ module Google
|
|
|
52
52
|
# See {::Google::Cloud::Kms::V1::KeyManagementService::Client::Configuration}
|
|
53
53
|
# for a description of the configuration fields.
|
|
54
54
|
#
|
|
55
|
-
#
|
|
55
|
+
# @example
|
|
56
56
|
#
|
|
57
|
-
#
|
|
58
|
-
#
|
|
59
|
-
#
|
|
60
|
-
#
|
|
61
|
-
# end
|
|
57
|
+
# # Modify the configuration for all KeyManagementService clients
|
|
58
|
+
# ::Google::Cloud::Kms::V1::KeyManagementService::Client.configure do |config|
|
|
59
|
+
# config.timeout = 10.0
|
|
60
|
+
# end
|
|
62
61
|
#
|
|
63
62
|
# @yield [config] Configure the Client client.
|
|
64
63
|
# @yieldparam config [Client::Configuration]
|
|
@@ -150,6 +149,21 @@ module Google
|
|
|
150
149
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
151
150
|
}
|
|
152
151
|
|
|
152
|
+
default_config.rpcs.update_crypto_key_primary_version.timeout = 60.0
|
|
153
|
+
default_config.rpcs.update_crypto_key_primary_version.retry_policy = {
|
|
154
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
155
|
+
}
|
|
156
|
+
|
|
157
|
+
default_config.rpcs.destroy_crypto_key_version.timeout = 60.0
|
|
158
|
+
default_config.rpcs.destroy_crypto_key_version.retry_policy = {
|
|
159
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
160
|
+
}
|
|
161
|
+
|
|
162
|
+
default_config.rpcs.restore_crypto_key_version.timeout = 60.0
|
|
163
|
+
default_config.rpcs.restore_crypto_key_version.retry_policy = {
|
|
164
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
165
|
+
}
|
|
166
|
+
|
|
153
167
|
default_config.rpcs.encrypt.timeout = 60.0
|
|
154
168
|
default_config.rpcs.encrypt.retry_policy = {
|
|
155
169
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
@@ -170,18 +184,18 @@ module Google
|
|
|
170
184
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
171
185
|
}
|
|
172
186
|
|
|
173
|
-
default_config.rpcs.
|
|
174
|
-
default_config.rpcs.
|
|
187
|
+
default_config.rpcs.mac_sign.timeout = 60.0
|
|
188
|
+
default_config.rpcs.mac_sign.retry_policy = {
|
|
175
189
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
176
190
|
}
|
|
177
191
|
|
|
178
|
-
default_config.rpcs.
|
|
179
|
-
default_config.rpcs.
|
|
192
|
+
default_config.rpcs.mac_verify.timeout = 60.0
|
|
193
|
+
default_config.rpcs.mac_verify.retry_policy = {
|
|
180
194
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
181
195
|
}
|
|
182
196
|
|
|
183
|
-
default_config.rpcs.
|
|
184
|
-
default_config.rpcs.
|
|
197
|
+
default_config.rpcs.generate_random_bytes.timeout = 60.0
|
|
198
|
+
default_config.rpcs.generate_random_bytes.retry_policy = {
|
|
185
199
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
186
200
|
}
|
|
187
201
|
|
|
@@ -214,19 +228,15 @@ module Google
|
|
|
214
228
|
##
|
|
215
229
|
# Create a new KeyManagementService client object.
|
|
216
230
|
#
|
|
217
|
-
#
|
|
218
|
-
#
|
|
219
|
-
# To create a new KeyManagementService client with the default
|
|
220
|
-
# configuration:
|
|
231
|
+
# @example
|
|
221
232
|
#
|
|
222
|
-
#
|
|
233
|
+
# # Create a client using the default configuration
|
|
234
|
+
# client = ::Google::Cloud::Kms::V1::KeyManagementService::Client.new
|
|
223
235
|
#
|
|
224
|
-
#
|
|
225
|
-
#
|
|
226
|
-
#
|
|
227
|
-
#
|
|
228
|
-
# config.timeout = 10.0
|
|
229
|
-
# end
|
|
236
|
+
# # Create a client using a custom configuration
|
|
237
|
+
# client = ::Google::Cloud::Kms::V1::KeyManagementService::Client.new do |config|
|
|
238
|
+
# config.timeout = 10.0
|
|
239
|
+
# end
|
|
230
240
|
#
|
|
231
241
|
# @yield [config] Configure the KeyManagementService client.
|
|
232
242
|
# @yieldparam config [Client::Configuration]
|
|
@@ -246,10 +256,9 @@ module Google
|
|
|
246
256
|
|
|
247
257
|
# Create credentials
|
|
248
258
|
credentials = @config.credentials
|
|
249
|
-
# Use self-signed JWT if the
|
|
259
|
+
# Use self-signed JWT if the endpoint is unchanged from default,
|
|
250
260
|
# but only if the default endpoint does not have a region prefix.
|
|
251
|
-
enable_self_signed_jwt = @config.
|
|
252
|
-
@config.endpoint == Client.configure.endpoint &&
|
|
261
|
+
enable_self_signed_jwt = @config.endpoint == Client.configure.endpoint &&
|
|
253
262
|
!@config.endpoint.split(".").first.include?("-")
|
|
254
263
|
credentials ||= Credentials.default scope: @config.scope,
|
|
255
264
|
enable_self_signed_jwt: enable_self_signed_jwt
|
|
@@ -344,7 +353,9 @@ module Google
|
|
|
344
353
|
options.apply_defaults timeout: @config.rpcs.list_key_rings.timeout,
|
|
345
354
|
metadata: metadata,
|
|
346
355
|
retry_policy: @config.rpcs.list_key_rings.retry_policy
|
|
347
|
-
|
|
356
|
+
|
|
357
|
+
options.apply_defaults timeout: @config.timeout,
|
|
358
|
+
metadata: @config.metadata,
|
|
348
359
|
retry_policy: @config.retry_policy
|
|
349
360
|
|
|
350
361
|
@key_management_service_stub.call_rpc :list_key_rings, request, options: options do |response, operation|
|
|
@@ -432,7 +443,9 @@ module Google
|
|
|
432
443
|
options.apply_defaults timeout: @config.rpcs.list_crypto_keys.timeout,
|
|
433
444
|
metadata: metadata,
|
|
434
445
|
retry_policy: @config.rpcs.list_crypto_keys.retry_policy
|
|
435
|
-
|
|
446
|
+
|
|
447
|
+
options.apply_defaults timeout: @config.timeout,
|
|
448
|
+
metadata: @config.metadata,
|
|
436
449
|
retry_policy: @config.retry_policy
|
|
437
450
|
|
|
438
451
|
@key_management_service_stub.call_rpc :list_crypto_keys, request, options: options do |response, operation|
|
|
@@ -521,7 +534,9 @@ module Google
|
|
|
521
534
|
options.apply_defaults timeout: @config.rpcs.list_crypto_key_versions.timeout,
|
|
522
535
|
metadata: metadata,
|
|
523
536
|
retry_policy: @config.rpcs.list_crypto_key_versions.retry_policy
|
|
524
|
-
|
|
537
|
+
|
|
538
|
+
options.apply_defaults timeout: @config.timeout,
|
|
539
|
+
metadata: @config.metadata,
|
|
525
540
|
retry_policy: @config.retry_policy
|
|
526
541
|
|
|
527
542
|
@key_management_service_stub.call_rpc :list_crypto_key_versions, request, options: options do |response, operation|
|
|
@@ -607,7 +622,9 @@ module Google
|
|
|
607
622
|
options.apply_defaults timeout: @config.rpcs.list_import_jobs.timeout,
|
|
608
623
|
metadata: metadata,
|
|
609
624
|
retry_policy: @config.rpcs.list_import_jobs.retry_policy
|
|
610
|
-
|
|
625
|
+
|
|
626
|
+
options.apply_defaults timeout: @config.timeout,
|
|
627
|
+
metadata: @config.metadata,
|
|
611
628
|
retry_policy: @config.retry_policy
|
|
612
629
|
|
|
613
630
|
@key_management_service_stub.call_rpc :list_import_jobs, request, options: options do |response, operation|
|
|
@@ -674,7 +691,9 @@ module Google
|
|
|
674
691
|
options.apply_defaults timeout: @config.rpcs.get_key_ring.timeout,
|
|
675
692
|
metadata: metadata,
|
|
676
693
|
retry_policy: @config.rpcs.get_key_ring.retry_policy
|
|
677
|
-
|
|
694
|
+
|
|
695
|
+
options.apply_defaults timeout: @config.timeout,
|
|
696
|
+
metadata: @config.metadata,
|
|
678
697
|
retry_policy: @config.retry_policy
|
|
679
698
|
|
|
680
699
|
@key_management_service_stub.call_rpc :get_key_ring, request, options: options do |response, operation|
|
|
@@ -741,7 +760,9 @@ module Google
|
|
|
741
760
|
options.apply_defaults timeout: @config.rpcs.get_crypto_key.timeout,
|
|
742
761
|
metadata: metadata,
|
|
743
762
|
retry_policy: @config.rpcs.get_crypto_key.retry_policy
|
|
744
|
-
|
|
763
|
+
|
|
764
|
+
options.apply_defaults timeout: @config.timeout,
|
|
765
|
+
metadata: @config.metadata,
|
|
745
766
|
retry_policy: @config.retry_policy
|
|
746
767
|
|
|
747
768
|
@key_management_service_stub.call_rpc :get_crypto_key, request, options: options do |response, operation|
|
|
@@ -807,7 +828,9 @@ module Google
|
|
|
807
828
|
options.apply_defaults timeout: @config.rpcs.get_crypto_key_version.timeout,
|
|
808
829
|
metadata: metadata,
|
|
809
830
|
retry_policy: @config.rpcs.get_crypto_key_version.retry_policy
|
|
810
|
-
|
|
831
|
+
|
|
832
|
+
options.apply_defaults timeout: @config.timeout,
|
|
833
|
+
metadata: @config.metadata,
|
|
811
834
|
retry_policy: @config.retry_policy
|
|
812
835
|
|
|
813
836
|
@key_management_service_stub.call_rpc :get_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -877,7 +900,9 @@ module Google
|
|
|
877
900
|
options.apply_defaults timeout: @config.rpcs.get_public_key.timeout,
|
|
878
901
|
metadata: metadata,
|
|
879
902
|
retry_policy: @config.rpcs.get_public_key.retry_policy
|
|
880
|
-
|
|
903
|
+
|
|
904
|
+
options.apply_defaults timeout: @config.timeout,
|
|
905
|
+
metadata: @config.metadata,
|
|
881
906
|
retry_policy: @config.retry_policy
|
|
882
907
|
|
|
883
908
|
@key_management_service_stub.call_rpc :get_public_key, request, options: options do |response, operation|
|
|
@@ -943,7 +968,9 @@ module Google
|
|
|
943
968
|
options.apply_defaults timeout: @config.rpcs.get_import_job.timeout,
|
|
944
969
|
metadata: metadata,
|
|
945
970
|
retry_policy: @config.rpcs.get_import_job.retry_policy
|
|
946
|
-
|
|
971
|
+
|
|
972
|
+
options.apply_defaults timeout: @config.timeout,
|
|
973
|
+
metadata: @config.metadata,
|
|
947
974
|
retry_policy: @config.retry_policy
|
|
948
975
|
|
|
949
976
|
@key_management_service_stub.call_rpc :get_import_job, request, options: options do |response, operation|
|
|
@@ -1015,7 +1042,9 @@ module Google
|
|
|
1015
1042
|
options.apply_defaults timeout: @config.rpcs.create_key_ring.timeout,
|
|
1016
1043
|
metadata: metadata,
|
|
1017
1044
|
retry_policy: @config.rpcs.create_key_ring.retry_policy
|
|
1018
|
-
|
|
1045
|
+
|
|
1046
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1047
|
+
metadata: @config.metadata,
|
|
1019
1048
|
retry_policy: @config.retry_policy
|
|
1020
1049
|
|
|
1021
1050
|
@key_management_service_stub.call_rpc :create_key_ring, request, options: options do |response, operation|
|
|
@@ -1097,7 +1126,9 @@ module Google
|
|
|
1097
1126
|
options.apply_defaults timeout: @config.rpcs.create_crypto_key.timeout,
|
|
1098
1127
|
metadata: metadata,
|
|
1099
1128
|
retry_policy: @config.rpcs.create_crypto_key.retry_policy
|
|
1100
|
-
|
|
1129
|
+
|
|
1130
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1131
|
+
metadata: @config.metadata,
|
|
1101
1132
|
retry_policy: @config.retry_policy
|
|
1102
1133
|
|
|
1103
1134
|
@key_management_service_stub.call_rpc :create_crypto_key, request, options: options do |response, operation|
|
|
@@ -1170,7 +1201,9 @@ module Google
|
|
|
1170
1201
|
options.apply_defaults timeout: @config.rpcs.create_crypto_key_version.timeout,
|
|
1171
1202
|
metadata: metadata,
|
|
1172
1203
|
retry_policy: @config.rpcs.create_crypto_key_version.retry_policy
|
|
1173
|
-
|
|
1204
|
+
|
|
1205
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1206
|
+
metadata: @config.metadata,
|
|
1174
1207
|
retry_policy: @config.retry_policy
|
|
1175
1208
|
|
|
1176
1209
|
@key_management_service_stub.call_rpc :create_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -1182,11 +1215,12 @@ module Google
|
|
|
1182
1215
|
end
|
|
1183
1216
|
|
|
1184
1217
|
##
|
|
1185
|
-
#
|
|
1186
|
-
# wrapped key material provided in the request.
|
|
1218
|
+
# Import wrapped key material into a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}.
|
|
1187
1219
|
#
|
|
1188
|
-
#
|
|
1189
|
-
#
|
|
1220
|
+
# All requests must specify a {::Google::Cloud::Kms::V1::CryptoKey CryptoKey}. If a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} is
|
|
1221
|
+
# additionally specified in the request, key material will be reimported into
|
|
1222
|
+
# that version. Otherwise, a new version will be created, and will be
|
|
1223
|
+
# assigned the next sequential id within the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey}.
|
|
1190
1224
|
#
|
|
1191
1225
|
# @overload import_crypto_key_version(request, options = nil)
|
|
1192
1226
|
# Pass arguments to `import_crypto_key_version` via a request object, either of type
|
|
@@ -1198,14 +1232,32 @@ module Google
|
|
|
1198
1232
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1199
1233
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1200
1234
|
#
|
|
1201
|
-
# @overload import_crypto_key_version(parent: nil, algorithm: nil, import_job: nil, rsa_aes_wrapped_key: nil)
|
|
1235
|
+
# @overload import_crypto_key_version(parent: nil, crypto_key_version: nil, algorithm: nil, import_job: nil, rsa_aes_wrapped_key: nil)
|
|
1202
1236
|
# Pass arguments to `import_crypto_key_version` via keyword arguments. Note that at
|
|
1203
1237
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1204
1238
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1205
1239
|
#
|
|
1206
1240
|
# @param parent [::String]
|
|
1207
|
-
# Required. The {::Google::Cloud::Kms::V1::CryptoKey#name name} of the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} to
|
|
1208
|
-
#
|
|
1241
|
+
# Required. The {::Google::Cloud::Kms::V1::CryptoKey#name name} of the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} to be imported into.
|
|
1242
|
+
#
|
|
1243
|
+
# The create permission is only required on this key when creating a new
|
|
1244
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}.
|
|
1245
|
+
# @param crypto_key_version [::String]
|
|
1246
|
+
# Optional. The optional {::Google::Cloud::Kms::V1::CryptoKeyVersion#name name} of an existing
|
|
1247
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to target for an import operation.
|
|
1248
|
+
# If this field is not present, a new {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} containing the
|
|
1249
|
+
# supplied key material is created.
|
|
1250
|
+
#
|
|
1251
|
+
# If this field is present, the supplied key material is imported into
|
|
1252
|
+
# the existing {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}. To import into an existing
|
|
1253
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}, the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} must be a child of
|
|
1254
|
+
# {::Google::Cloud::Kms::V1::ImportCryptoKeyVersionRequest#parent ImportCryptoKeyVersionRequest.parent}, have been previously created via
|
|
1255
|
+
# [ImportCryptoKeyVersion][], and be in
|
|
1256
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROYED DESTROYED} or
|
|
1257
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::IMPORT_FAILED IMPORT_FAILED}
|
|
1258
|
+
# state. The key material and algorithm must match the previous
|
|
1259
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} exactly if the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} has ever contained
|
|
1260
|
+
# key material.
|
|
1209
1261
|
# @param algorithm [::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionAlgorithm]
|
|
1210
1262
|
# Required. The {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionAlgorithm algorithm} of
|
|
1211
1263
|
# the key being imported. This does not need to match the
|
|
@@ -1273,7 +1325,9 @@ module Google
|
|
|
1273
1325
|
options.apply_defaults timeout: @config.rpcs.import_crypto_key_version.timeout,
|
|
1274
1326
|
metadata: metadata,
|
|
1275
1327
|
retry_policy: @config.rpcs.import_crypto_key_version.retry_policy
|
|
1276
|
-
|
|
1328
|
+
|
|
1329
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1330
|
+
metadata: @config.metadata,
|
|
1277
1331
|
retry_policy: @config.retry_policy
|
|
1278
1332
|
|
|
1279
1333
|
@key_management_service_stub.call_rpc :import_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -1347,7 +1401,9 @@ module Google
|
|
|
1347
1401
|
options.apply_defaults timeout: @config.rpcs.create_import_job.timeout,
|
|
1348
1402
|
metadata: metadata,
|
|
1349
1403
|
retry_policy: @config.rpcs.create_import_job.retry_policy
|
|
1350
|
-
|
|
1404
|
+
|
|
1405
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1406
|
+
metadata: @config.metadata,
|
|
1351
1407
|
retry_policy: @config.retry_policy
|
|
1352
1408
|
|
|
1353
1409
|
@key_management_service_stub.call_rpc :create_import_job, request, options: options do |response, operation|
|
|
@@ -1415,7 +1471,9 @@ module Google
|
|
|
1415
1471
|
options.apply_defaults timeout: @config.rpcs.update_crypto_key.timeout,
|
|
1416
1472
|
metadata: metadata,
|
|
1417
1473
|
retry_policy: @config.rpcs.update_crypto_key.retry_policy
|
|
1418
|
-
|
|
1474
|
+
|
|
1475
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1476
|
+
metadata: @config.metadata,
|
|
1419
1477
|
retry_policy: @config.retry_policy
|
|
1420
1478
|
|
|
1421
1479
|
@key_management_service_stub.call_rpc :update_crypto_key, request, options: options do |response, operation|
|
|
@@ -1489,7 +1547,9 @@ module Google
|
|
|
1489
1547
|
options.apply_defaults timeout: @config.rpcs.update_crypto_key_version.timeout,
|
|
1490
1548
|
metadata: metadata,
|
|
1491
1549
|
retry_policy: @config.rpcs.update_crypto_key_version.retry_policy
|
|
1492
|
-
|
|
1550
|
+
|
|
1551
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1552
|
+
metadata: @config.metadata,
|
|
1493
1553
|
retry_policy: @config.retry_policy
|
|
1494
1554
|
|
|
1495
1555
|
@key_management_service_stub.call_rpc :update_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -1500,6 +1560,233 @@ module Google
|
|
|
1500
1560
|
raise ::Google::Cloud::Error.from_error(e)
|
|
1501
1561
|
end
|
|
1502
1562
|
|
|
1563
|
+
##
|
|
1564
|
+
# Update the version of a {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} that will be used in {::Google::Cloud::Kms::V1::KeyManagementService::Client#encrypt Encrypt}.
|
|
1565
|
+
#
|
|
1566
|
+
# Returns an error if called on a key whose purpose is not
|
|
1567
|
+
# {::Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ENCRYPT_DECRYPT ENCRYPT_DECRYPT}.
|
|
1568
|
+
#
|
|
1569
|
+
# @overload update_crypto_key_primary_version(request, options = nil)
|
|
1570
|
+
# Pass arguments to `update_crypto_key_primary_version` via a request object, either of type
|
|
1571
|
+
# {::Google::Cloud::Kms::V1::UpdateCryptoKeyPrimaryVersionRequest} or an equivalent Hash.
|
|
1572
|
+
#
|
|
1573
|
+
# @param request [::Google::Cloud::Kms::V1::UpdateCryptoKeyPrimaryVersionRequest, ::Hash]
|
|
1574
|
+
# A request object representing the call parameters. Required. To specify no
|
|
1575
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1576
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1577
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1578
|
+
#
|
|
1579
|
+
# @overload update_crypto_key_primary_version(name: nil, crypto_key_version_id: nil)
|
|
1580
|
+
# Pass arguments to `update_crypto_key_primary_version` via keyword arguments. Note that at
|
|
1581
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1582
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1583
|
+
#
|
|
1584
|
+
# @param name [::String]
|
|
1585
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} to update.
|
|
1586
|
+
# @param crypto_key_version_id [::String]
|
|
1587
|
+
# Required. The id of the child {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use as primary.
|
|
1588
|
+
#
|
|
1589
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
|
1590
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::CryptoKey]
|
|
1591
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1592
|
+
#
|
|
1593
|
+
# @return [::Google::Cloud::Kms::V1::CryptoKey]
|
|
1594
|
+
#
|
|
1595
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1596
|
+
#
|
|
1597
|
+
def update_crypto_key_primary_version request, options = nil
|
|
1598
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1599
|
+
|
|
1600
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::UpdateCryptoKeyPrimaryVersionRequest
|
|
1601
|
+
|
|
1602
|
+
# Converts hash and nil to an options object
|
|
1603
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1604
|
+
|
|
1605
|
+
# Customize the options with defaults
|
|
1606
|
+
metadata = @config.rpcs.update_crypto_key_primary_version.metadata.to_h
|
|
1607
|
+
|
|
1608
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
|
1609
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
1610
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
|
1611
|
+
gapic_version: ::Google::Cloud::Kms::V1::VERSION
|
|
1612
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
1613
|
+
|
|
1614
|
+
header_params = {
|
|
1615
|
+
"name" => request.name
|
|
1616
|
+
}
|
|
1617
|
+
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1618
|
+
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1619
|
+
|
|
1620
|
+
options.apply_defaults timeout: @config.rpcs.update_crypto_key_primary_version.timeout,
|
|
1621
|
+
metadata: metadata,
|
|
1622
|
+
retry_policy: @config.rpcs.update_crypto_key_primary_version.retry_policy
|
|
1623
|
+
|
|
1624
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1625
|
+
metadata: @config.metadata,
|
|
1626
|
+
retry_policy: @config.retry_policy
|
|
1627
|
+
|
|
1628
|
+
@key_management_service_stub.call_rpc :update_crypto_key_primary_version, request, options: options do |response, operation|
|
|
1629
|
+
yield response, operation if block_given?
|
|
1630
|
+
return response
|
|
1631
|
+
end
|
|
1632
|
+
rescue ::GRPC::BadStatus => e
|
|
1633
|
+
raise ::Google::Cloud::Error.from_error(e)
|
|
1634
|
+
end
|
|
1635
|
+
|
|
1636
|
+
##
|
|
1637
|
+
# Schedule a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} for destruction.
|
|
1638
|
+
#
|
|
1639
|
+
# Upon calling this method, {::Google::Cloud::Kms::V1::CryptoKeyVersion#state CryptoKeyVersion.state} will be set to
|
|
1640
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROY_SCHEDULED DESTROY_SCHEDULED},
|
|
1641
|
+
# and {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} will be set to the time
|
|
1642
|
+
# {::Google::Cloud::Kms::V1::CryptoKey#destroy_scheduled_duration destroy_scheduled_duration} in the
|
|
1643
|
+
# future. At that time, the {::Google::Cloud::Kms::V1::CryptoKeyVersion#state state} will
|
|
1644
|
+
# automatically change to
|
|
1645
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROYED DESTROYED}, and the key
|
|
1646
|
+
# material will be irrevocably destroyed.
|
|
1647
|
+
#
|
|
1648
|
+
# Before the {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} is reached,
|
|
1649
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client#restore_crypto_key_version RestoreCryptoKeyVersion} may be called to reverse the process.
|
|
1650
|
+
#
|
|
1651
|
+
# @overload destroy_crypto_key_version(request, options = nil)
|
|
1652
|
+
# Pass arguments to `destroy_crypto_key_version` via a request object, either of type
|
|
1653
|
+
# {::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest} or an equivalent Hash.
|
|
1654
|
+
#
|
|
1655
|
+
# @param request [::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest, ::Hash]
|
|
1656
|
+
# A request object representing the call parameters. Required. To specify no
|
|
1657
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1658
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1659
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1660
|
+
#
|
|
1661
|
+
# @overload destroy_crypto_key_version(name: nil)
|
|
1662
|
+
# Pass arguments to `destroy_crypto_key_version` via keyword arguments. Note that at
|
|
1663
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1664
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1665
|
+
#
|
|
1666
|
+
# @param name [::String]
|
|
1667
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to destroy.
|
|
1668
|
+
#
|
|
1669
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
|
1670
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1671
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1672
|
+
#
|
|
1673
|
+
# @return [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1674
|
+
#
|
|
1675
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1676
|
+
#
|
|
1677
|
+
def destroy_crypto_key_version request, options = nil
|
|
1678
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1679
|
+
|
|
1680
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest
|
|
1681
|
+
|
|
1682
|
+
# Converts hash and nil to an options object
|
|
1683
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1684
|
+
|
|
1685
|
+
# Customize the options with defaults
|
|
1686
|
+
metadata = @config.rpcs.destroy_crypto_key_version.metadata.to_h
|
|
1687
|
+
|
|
1688
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
|
1689
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
1690
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
|
1691
|
+
gapic_version: ::Google::Cloud::Kms::V1::VERSION
|
|
1692
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
1693
|
+
|
|
1694
|
+
header_params = {
|
|
1695
|
+
"name" => request.name
|
|
1696
|
+
}
|
|
1697
|
+
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1698
|
+
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1699
|
+
|
|
1700
|
+
options.apply_defaults timeout: @config.rpcs.destroy_crypto_key_version.timeout,
|
|
1701
|
+
metadata: metadata,
|
|
1702
|
+
retry_policy: @config.rpcs.destroy_crypto_key_version.retry_policy
|
|
1703
|
+
|
|
1704
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1705
|
+
metadata: @config.metadata,
|
|
1706
|
+
retry_policy: @config.retry_policy
|
|
1707
|
+
|
|
1708
|
+
@key_management_service_stub.call_rpc :destroy_crypto_key_version, request, options: options do |response, operation|
|
|
1709
|
+
yield response, operation if block_given?
|
|
1710
|
+
return response
|
|
1711
|
+
end
|
|
1712
|
+
rescue ::GRPC::BadStatus => e
|
|
1713
|
+
raise ::Google::Cloud::Error.from_error(e)
|
|
1714
|
+
end
|
|
1715
|
+
|
|
1716
|
+
##
|
|
1717
|
+
# Restore a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} in the
|
|
1718
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROY_SCHEDULED DESTROY_SCHEDULED}
|
|
1719
|
+
# state.
|
|
1720
|
+
#
|
|
1721
|
+
# Upon restoration of the CryptoKeyVersion, {::Google::Cloud::Kms::V1::CryptoKeyVersion#state state}
|
|
1722
|
+
# will be set to {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DISABLED DISABLED},
|
|
1723
|
+
# and {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} will be cleared.
|
|
1724
|
+
#
|
|
1725
|
+
# @overload restore_crypto_key_version(request, options = nil)
|
|
1726
|
+
# Pass arguments to `restore_crypto_key_version` via a request object, either of type
|
|
1727
|
+
# {::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest} or an equivalent Hash.
|
|
1728
|
+
#
|
|
1729
|
+
# @param request [::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest, ::Hash]
|
|
1730
|
+
# A request object representing the call parameters. Required. To specify no
|
|
1731
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1732
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1733
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1734
|
+
#
|
|
1735
|
+
# @overload restore_crypto_key_version(name: nil)
|
|
1736
|
+
# Pass arguments to `restore_crypto_key_version` via keyword arguments. Note that at
|
|
1737
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1738
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1739
|
+
#
|
|
1740
|
+
# @param name [::String]
|
|
1741
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to restore.
|
|
1742
|
+
#
|
|
1743
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
|
1744
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1745
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1746
|
+
#
|
|
1747
|
+
# @return [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1748
|
+
#
|
|
1749
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1750
|
+
#
|
|
1751
|
+
def restore_crypto_key_version request, options = nil
|
|
1752
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1753
|
+
|
|
1754
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest
|
|
1755
|
+
|
|
1756
|
+
# Converts hash and nil to an options object
|
|
1757
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1758
|
+
|
|
1759
|
+
# Customize the options with defaults
|
|
1760
|
+
metadata = @config.rpcs.restore_crypto_key_version.metadata.to_h
|
|
1761
|
+
|
|
1762
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
|
1763
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
1764
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
|
1765
|
+
gapic_version: ::Google::Cloud::Kms::V1::VERSION
|
|
1766
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
1767
|
+
|
|
1768
|
+
header_params = {
|
|
1769
|
+
"name" => request.name
|
|
1770
|
+
}
|
|
1771
|
+
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1772
|
+
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1773
|
+
|
|
1774
|
+
options.apply_defaults timeout: @config.rpcs.restore_crypto_key_version.timeout,
|
|
1775
|
+
metadata: metadata,
|
|
1776
|
+
retry_policy: @config.rpcs.restore_crypto_key_version.retry_policy
|
|
1777
|
+
|
|
1778
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1779
|
+
metadata: @config.metadata,
|
|
1780
|
+
retry_policy: @config.retry_policy
|
|
1781
|
+
|
|
1782
|
+
@key_management_service_stub.call_rpc :restore_crypto_key_version, request, options: options do |response, operation|
|
|
1783
|
+
yield response, operation if block_given?
|
|
1784
|
+
return response
|
|
1785
|
+
end
|
|
1786
|
+
rescue ::GRPC::BadStatus => e
|
|
1787
|
+
raise ::Google::Cloud::Error.from_error(e)
|
|
1788
|
+
end
|
|
1789
|
+
|
|
1503
1790
|
##
|
|
1504
1791
|
# Encrypts data, so that it can only be recovered by a call to {::Google::Cloud::Kms::V1::KeyManagementService::Client#decrypt Decrypt}.
|
|
1505
1792
|
# The {::Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey.purpose} must be
|
|
@@ -1559,8 +1846,6 @@ module Google
|
|
|
1559
1846
|
# different languages. However, it is a non-negative integer, which will
|
|
1560
1847
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1561
1848
|
# that support this type.
|
|
1562
|
-
#
|
|
1563
|
-
# NOTE: This field is in Beta.
|
|
1564
1849
|
# @param additional_authenticated_data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
1565
1850
|
# Optional. An optional CRC32C checksum of the
|
|
1566
1851
|
# {::Google::Cloud::Kms::V1::EncryptRequest#additional_authenticated_data EncryptRequest.additional_authenticated_data}. If specified,
|
|
@@ -1577,8 +1862,6 @@ module Google
|
|
|
1577
1862
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1578
1863
|
# that support this type.
|
|
1579
1864
|
#
|
|
1580
|
-
# NOTE: This field is in Beta.
|
|
1581
|
-
#
|
|
1582
1865
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1583
1866
|
# @yieldparam response [::Google::Cloud::Kms::V1::EncryptResponse]
|
|
1584
1867
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
@@ -1613,7 +1896,9 @@ module Google
|
|
|
1613
1896
|
options.apply_defaults timeout: @config.rpcs.encrypt.timeout,
|
|
1614
1897
|
metadata: metadata,
|
|
1615
1898
|
retry_policy: @config.rpcs.encrypt.retry_policy
|
|
1616
|
-
|
|
1899
|
+
|
|
1900
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1901
|
+
metadata: @config.metadata,
|
|
1617
1902
|
retry_policy: @config.retry_policy
|
|
1618
1903
|
|
|
1619
1904
|
@key_management_service_stub.call_rpc :encrypt, request, options: options do |response, operation|
|
|
@@ -1666,8 +1951,6 @@ module Google
|
|
|
1666
1951
|
# different languages. However, it is a non-negative integer, which will
|
|
1667
1952
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1668
1953
|
# that support this type.
|
|
1669
|
-
#
|
|
1670
|
-
# NOTE: This field is in Beta.
|
|
1671
1954
|
# @param additional_authenticated_data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
1672
1955
|
# Optional. An optional CRC32C checksum of the
|
|
1673
1956
|
# {::Google::Cloud::Kms::V1::DecryptRequest#additional_authenticated_data DecryptRequest.additional_authenticated_data}. If specified,
|
|
@@ -1684,8 +1967,6 @@ module Google
|
|
|
1684
1967
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1685
1968
|
# that support this type.
|
|
1686
1969
|
#
|
|
1687
|
-
# NOTE: This field is in Beta.
|
|
1688
|
-
#
|
|
1689
1970
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1690
1971
|
# @yieldparam response [::Google::Cloud::Kms::V1::DecryptResponse]
|
|
1691
1972
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
@@ -1720,7 +2001,9 @@ module Google
|
|
|
1720
2001
|
options.apply_defaults timeout: @config.rpcs.decrypt.timeout,
|
|
1721
2002
|
metadata: metadata,
|
|
1722
2003
|
retry_policy: @config.rpcs.decrypt.retry_policy
|
|
1723
|
-
|
|
2004
|
+
|
|
2005
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2006
|
+
metadata: @config.metadata,
|
|
1724
2007
|
retry_policy: @config.retry_policy
|
|
1725
2008
|
|
|
1726
2009
|
@key_management_service_stub.call_rpc :decrypt, request, options: options do |response, operation|
|
|
@@ -1746,7 +2029,7 @@ module Google
|
|
|
1746
2029
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1747
2030
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1748
2031
|
#
|
|
1749
|
-
# @overload asymmetric_sign(name: nil, digest: nil, digest_crc32c: nil)
|
|
2032
|
+
# @overload asymmetric_sign(name: nil, digest: nil, digest_crc32c: nil, data: nil, data_crc32c: nil)
|
|
1750
2033
|
# Pass arguments to `asymmetric_sign` via keyword arguments. Note that at
|
|
1751
2034
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1752
2035
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
@@ -1754,7 +2037,7 @@ module Google
|
|
|
1754
2037
|
# @param name [::String]
|
|
1755
2038
|
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for signing.
|
|
1756
2039
|
# @param digest [::Google::Cloud::Kms::V1::Digest, ::Hash]
|
|
1757
|
-
#
|
|
2040
|
+
# Optional. The digest of the data to sign. The digest must be produced with
|
|
1758
2041
|
# the same digest algorithm as specified by the key version's
|
|
1759
2042
|
# {::Google::Cloud::Kms::V1::CryptoKeyVersion#algorithm algorithm}.
|
|
1760
2043
|
# @param digest_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
@@ -1771,8 +2054,24 @@ module Google
|
|
|
1771
2054
|
# different languages. However, it is a non-negative integer, which will
|
|
1772
2055
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1773
2056
|
# that support this type.
|
|
1774
|
-
#
|
|
1775
|
-
#
|
|
2057
|
+
# @param data [::String]
|
|
2058
|
+
# Optional. This field will only be honored for RAW_PKCS1 keys.
|
|
2059
|
+
# The data to sign. A digest is computed over the data that will be signed,
|
|
2060
|
+
# PKCS #1 padding is applied to the digest directly and then encrypted.
|
|
2061
|
+
# @param data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2062
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::AsymmetricSignRequest#data AsymmetricSignRequest.data}. If
|
|
2063
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2064
|
+
# received {::Google::Cloud::Kms::V1::AsymmetricSignRequest#data AsymmetricSignRequest.data} using this checksum.
|
|
2065
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2066
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2067
|
+
# CRC32C({::Google::Cloud::Kms::V1::AsymmetricSignRequest#data AsymmetricSignRequest.data}) is equal to
|
|
2068
|
+
# {::Google::Cloud::Kms::V1::AsymmetricSignRequest#data_crc32c AsymmetricSignRequest.data_crc32c}, and if so, perform a limited
|
|
2069
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2070
|
+
# computation of the CRC32C checksum.
|
|
2071
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2072
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2073
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2074
|
+
# that support this type.
|
|
1776
2075
|
#
|
|
1777
2076
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1778
2077
|
# @yieldparam response [::Google::Cloud::Kms::V1::AsymmetricSignResponse]
|
|
@@ -1808,7 +2107,9 @@ module Google
|
|
|
1808
2107
|
options.apply_defaults timeout: @config.rpcs.asymmetric_sign.timeout,
|
|
1809
2108
|
metadata: metadata,
|
|
1810
2109
|
retry_policy: @config.rpcs.asymmetric_sign.retry_policy
|
|
1811
|
-
|
|
2110
|
+
|
|
2111
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2112
|
+
metadata: @config.metadata,
|
|
1812
2113
|
retry_policy: @config.retry_policy
|
|
1813
2114
|
|
|
1814
2115
|
@key_management_service_stub.call_rpc :asymmetric_sign, request, options: options do |response, operation|
|
|
@@ -1860,8 +2161,6 @@ module Google
|
|
|
1860
2161
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1861
2162
|
# that support this type.
|
|
1862
2163
|
#
|
|
1863
|
-
# NOTE: This field is in Beta.
|
|
1864
|
-
#
|
|
1865
2164
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1866
2165
|
# @yieldparam response [::Google::Cloud::Kms::V1::AsymmetricDecryptResponse]
|
|
1867
2166
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
@@ -1896,7 +2195,9 @@ module Google
|
|
|
1896
2195
|
options.apply_defaults timeout: @config.rpcs.asymmetric_decrypt.timeout,
|
|
1897
2196
|
metadata: metadata,
|
|
1898
2197
|
retry_policy: @config.rpcs.asymmetric_decrypt.retry_policy
|
|
1899
|
-
|
|
2198
|
+
|
|
2199
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2200
|
+
metadata: @config.metadata,
|
|
1900
2201
|
retry_policy: @config.retry_policy
|
|
1901
2202
|
|
|
1902
2203
|
@key_management_service_stub.call_rpc :asymmetric_decrypt, request, options: options do |response, operation|
|
|
@@ -1908,49 +2209,63 @@ module Google
|
|
|
1908
2209
|
end
|
|
1909
2210
|
|
|
1910
2211
|
##
|
|
1911
|
-
#
|
|
1912
|
-
#
|
|
1913
|
-
#
|
|
1914
|
-
# {::Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ENCRYPT_DECRYPT ENCRYPT_DECRYPT}.
|
|
2212
|
+
# Signs data using a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with {::Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey.purpose}
|
|
2213
|
+
# MAC, producing a tag that can be verified by another source with the
|
|
2214
|
+
# same key.
|
|
1915
2215
|
#
|
|
1916
|
-
# @overload
|
|
1917
|
-
# Pass arguments to `
|
|
1918
|
-
# {::Google::Cloud::Kms::V1::
|
|
2216
|
+
# @overload mac_sign(request, options = nil)
|
|
2217
|
+
# Pass arguments to `mac_sign` via a request object, either of type
|
|
2218
|
+
# {::Google::Cloud::Kms::V1::MacSignRequest} or an equivalent Hash.
|
|
1919
2219
|
#
|
|
1920
|
-
# @param request [::Google::Cloud::Kms::V1::
|
|
2220
|
+
# @param request [::Google::Cloud::Kms::V1::MacSignRequest, ::Hash]
|
|
1921
2221
|
# A request object representing the call parameters. Required. To specify no
|
|
1922
2222
|
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1923
2223
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1924
2224
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1925
2225
|
#
|
|
1926
|
-
# @overload
|
|
1927
|
-
# Pass arguments to `
|
|
2226
|
+
# @overload mac_sign(name: nil, data: nil, data_crc32c: nil)
|
|
2227
|
+
# Pass arguments to `mac_sign` via keyword arguments. Note that at
|
|
1928
2228
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1929
2229
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1930
2230
|
#
|
|
1931
2231
|
# @param name [::String]
|
|
1932
|
-
# Required. The resource name of the {::Google::Cloud::Kms::V1::
|
|
1933
|
-
# @param
|
|
1934
|
-
# Required. The
|
|
2232
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for signing.
|
|
2233
|
+
# @param data [::String]
|
|
2234
|
+
# Required. The data to sign. The MAC tag is computed over this data field based on
|
|
2235
|
+
# the specific algorithm.
|
|
2236
|
+
# @param data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2237
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data}. If
|
|
2238
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2239
|
+
# received {::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data} using this checksum.
|
|
2240
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2241
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2242
|
+
# CRC32C({::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data}) is equal to
|
|
2243
|
+
# {::Google::Cloud::Kms::V1::MacSignRequest#data_crc32c MacSignRequest.data_crc32c}, and if so, perform a limited
|
|
2244
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2245
|
+
# computation of the CRC32C checksum.
|
|
2246
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2247
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2248
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2249
|
+
# that support this type.
|
|
1935
2250
|
#
|
|
1936
2251
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1937
|
-
# @yieldparam response [::Google::Cloud::Kms::V1::
|
|
2252
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::MacSignResponse]
|
|
1938
2253
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1939
2254
|
#
|
|
1940
|
-
# @return [::Google::Cloud::Kms::V1::
|
|
2255
|
+
# @return [::Google::Cloud::Kms::V1::MacSignResponse]
|
|
1941
2256
|
#
|
|
1942
2257
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1943
2258
|
#
|
|
1944
|
-
def
|
|
2259
|
+
def mac_sign request, options = nil
|
|
1945
2260
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1946
2261
|
|
|
1947
|
-
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::
|
|
2262
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::MacSignRequest
|
|
1948
2263
|
|
|
1949
2264
|
# Converts hash and nil to an options object
|
|
1950
2265
|
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1951
2266
|
|
|
1952
2267
|
# Customize the options with defaults
|
|
1953
|
-
metadata = @config.rpcs.
|
|
2268
|
+
metadata = @config.rpcs.mac_sign.metadata.to_h
|
|
1954
2269
|
|
|
1955
2270
|
# Set x-goog-api-client and x-goog-user-project headers
|
|
1956
2271
|
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
@@ -1964,13 +2279,15 @@ module Google
|
|
|
1964
2279
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1965
2280
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1966
2281
|
|
|
1967
|
-
options.apply_defaults timeout: @config.rpcs.
|
|
2282
|
+
options.apply_defaults timeout: @config.rpcs.mac_sign.timeout,
|
|
1968
2283
|
metadata: metadata,
|
|
1969
|
-
retry_policy: @config.rpcs.
|
|
1970
|
-
|
|
2284
|
+
retry_policy: @config.rpcs.mac_sign.retry_policy
|
|
2285
|
+
|
|
2286
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2287
|
+
metadata: @config.metadata,
|
|
1971
2288
|
retry_policy: @config.retry_policy
|
|
1972
2289
|
|
|
1973
|
-
@key_management_service_stub.call_rpc :
|
|
2290
|
+
@key_management_service_stub.call_rpc :mac_sign, request, options: options do |response, operation|
|
|
1974
2291
|
yield response, operation if block_given?
|
|
1975
2292
|
return response
|
|
1976
2293
|
end
|
|
@@ -1979,55 +2296,79 @@ module Google
|
|
|
1979
2296
|
end
|
|
1980
2297
|
|
|
1981
2298
|
##
|
|
1982
|
-
#
|
|
2299
|
+
# Verifies MAC tag using a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with {::Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey.purpose}
|
|
2300
|
+
# MAC, and returns a response that indicates whether or not the verification
|
|
2301
|
+
# was successful.
|
|
1983
2302
|
#
|
|
1984
|
-
#
|
|
1985
|
-
#
|
|
1986
|
-
#
|
|
1987
|
-
# hours in the future, at which point the {::Google::Cloud::Kms::V1::CryptoKeyVersion#state state}
|
|
1988
|
-
# will be changed to
|
|
1989
|
-
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROYED DESTROYED}, and the key
|
|
1990
|
-
# material will be irrevocably destroyed.
|
|
1991
|
-
#
|
|
1992
|
-
# Before the {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} is reached,
|
|
1993
|
-
# {::Google::Cloud::Kms::V1::KeyManagementService::Client#restore_crypto_key_version RestoreCryptoKeyVersion} may be called to reverse the process.
|
|
2303
|
+
# @overload mac_verify(request, options = nil)
|
|
2304
|
+
# Pass arguments to `mac_verify` via a request object, either of type
|
|
2305
|
+
# {::Google::Cloud::Kms::V1::MacVerifyRequest} or an equivalent Hash.
|
|
1994
2306
|
#
|
|
1995
|
-
#
|
|
1996
|
-
# Pass arguments to `destroy_crypto_key_version` via a request object, either of type
|
|
1997
|
-
# {::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest} or an equivalent Hash.
|
|
1998
|
-
#
|
|
1999
|
-
# @param request [::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest, ::Hash]
|
|
2307
|
+
# @param request [::Google::Cloud::Kms::V1::MacVerifyRequest, ::Hash]
|
|
2000
2308
|
# A request object representing the call parameters. Required. To specify no
|
|
2001
2309
|
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
2002
2310
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
2003
2311
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
2004
2312
|
#
|
|
2005
|
-
# @overload
|
|
2006
|
-
# Pass arguments to `
|
|
2313
|
+
# @overload mac_verify(name: nil, data: nil, data_crc32c: nil, mac: nil, mac_crc32c: nil)
|
|
2314
|
+
# Pass arguments to `mac_verify` via keyword arguments. Note that at
|
|
2007
2315
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
2008
2316
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
2009
2317
|
#
|
|
2010
2318
|
# @param name [::String]
|
|
2011
|
-
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to
|
|
2319
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for verification.
|
|
2320
|
+
# @param data [::String]
|
|
2321
|
+
# Required. The data used previously as a {::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data} to generate the MAC
|
|
2322
|
+
# tag.
|
|
2323
|
+
# @param data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2324
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::MacVerifyRequest#data MacVerifyRequest.data}. If
|
|
2325
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2326
|
+
# received {::Google::Cloud::Kms::V1::MacVerifyRequest#data MacVerifyRequest.data} using this checksum.
|
|
2327
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2328
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2329
|
+
# CRC32C({::Google::Cloud::Kms::V1::MacVerifyRequest#data MacVerifyRequest.data}) is equal to
|
|
2330
|
+
# {::Google::Cloud::Kms::V1::MacVerifyRequest#data_crc32c MacVerifyRequest.data_crc32c}, and if so, perform a limited
|
|
2331
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2332
|
+
# computation of the CRC32C checksum.
|
|
2333
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2334
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2335
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2336
|
+
# that support this type.
|
|
2337
|
+
# @param mac [::String]
|
|
2338
|
+
# Required. The signature to verify.
|
|
2339
|
+
# @param mac_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2340
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::MacVerifyRequest#mac MacVerifyRequest.mac}. If
|
|
2341
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2342
|
+
# received {::Google::Cloud::Kms::V1::MacVerifyRequest#mac MacVerifyRequest.mac} using this checksum.
|
|
2343
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2344
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2345
|
+
# CRC32C([MacVerifyRequest.tag][]) is equal to
|
|
2346
|
+
# {::Google::Cloud::Kms::V1::MacVerifyRequest#mac_crc32c MacVerifyRequest.mac_crc32c}, and if so, perform a limited
|
|
2347
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2348
|
+
# computation of the CRC32C checksum.
|
|
2349
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2350
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2351
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2352
|
+
# that support this type.
|
|
2012
2353
|
#
|
|
2013
2354
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
2014
|
-
# @yieldparam response [::Google::Cloud::Kms::V1::
|
|
2355
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::MacVerifyResponse]
|
|
2015
2356
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
2016
2357
|
#
|
|
2017
|
-
# @return [::Google::Cloud::Kms::V1::
|
|
2358
|
+
# @return [::Google::Cloud::Kms::V1::MacVerifyResponse]
|
|
2018
2359
|
#
|
|
2019
2360
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
2020
2361
|
#
|
|
2021
|
-
def
|
|
2362
|
+
def mac_verify request, options = nil
|
|
2022
2363
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
2023
2364
|
|
|
2024
|
-
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::
|
|
2365
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::MacVerifyRequest
|
|
2025
2366
|
|
|
2026
2367
|
# Converts hash and nil to an options object
|
|
2027
2368
|
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
2028
2369
|
|
|
2029
2370
|
# Customize the options with defaults
|
|
2030
|
-
metadata = @config.rpcs.
|
|
2371
|
+
metadata = @config.rpcs.mac_verify.metadata.to_h
|
|
2031
2372
|
|
|
2032
2373
|
# Set x-goog-api-client and x-goog-user-project headers
|
|
2033
2374
|
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
@@ -2041,13 +2382,15 @@ module Google
|
|
|
2041
2382
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
2042
2383
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
2043
2384
|
|
|
2044
|
-
options.apply_defaults timeout: @config.rpcs.
|
|
2385
|
+
options.apply_defaults timeout: @config.rpcs.mac_verify.timeout,
|
|
2045
2386
|
metadata: metadata,
|
|
2046
|
-
retry_policy: @config.rpcs.
|
|
2047
|
-
|
|
2387
|
+
retry_policy: @config.rpcs.mac_verify.retry_policy
|
|
2388
|
+
|
|
2389
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2390
|
+
metadata: @config.metadata,
|
|
2048
2391
|
retry_policy: @config.retry_policy
|
|
2049
2392
|
|
|
2050
|
-
@key_management_service_stub.call_rpc :
|
|
2393
|
+
@key_management_service_stub.call_rpc :mac_verify, request, options: options do |response, operation|
|
|
2051
2394
|
yield response, operation if block_given?
|
|
2052
2395
|
return response
|
|
2053
2396
|
end
|
|
@@ -2056,50 +2399,52 @@ module Google
|
|
|
2056
2399
|
end
|
|
2057
2400
|
|
|
2058
2401
|
##
|
|
2059
|
-
#
|
|
2060
|
-
#
|
|
2061
|
-
# state.
|
|
2402
|
+
# Generate random bytes using the Cloud KMS randomness source in the provided
|
|
2403
|
+
# location.
|
|
2062
2404
|
#
|
|
2063
|
-
#
|
|
2064
|
-
#
|
|
2065
|
-
#
|
|
2066
|
-
#
|
|
2067
|
-
# @overload restore_crypto_key_version(request, options = nil)
|
|
2068
|
-
# Pass arguments to `restore_crypto_key_version` via a request object, either of type
|
|
2069
|
-
# {::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest} or an equivalent Hash.
|
|
2405
|
+
# @overload generate_random_bytes(request, options = nil)
|
|
2406
|
+
# Pass arguments to `generate_random_bytes` via a request object, either of type
|
|
2407
|
+
# {::Google::Cloud::Kms::V1::GenerateRandomBytesRequest} or an equivalent Hash.
|
|
2070
2408
|
#
|
|
2071
|
-
# @param request [::Google::Cloud::Kms::V1::
|
|
2409
|
+
# @param request [::Google::Cloud::Kms::V1::GenerateRandomBytesRequest, ::Hash]
|
|
2072
2410
|
# A request object representing the call parameters. Required. To specify no
|
|
2073
2411
|
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
2074
2412
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
2075
2413
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
2076
2414
|
#
|
|
2077
|
-
# @overload
|
|
2078
|
-
# Pass arguments to `
|
|
2415
|
+
# @overload generate_random_bytes(location: nil, length_bytes: nil, protection_level: nil)
|
|
2416
|
+
# Pass arguments to `generate_random_bytes` via keyword arguments. Note that at
|
|
2079
2417
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
2080
2418
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
2081
2419
|
#
|
|
2082
|
-
# @param
|
|
2083
|
-
#
|
|
2420
|
+
# @param location [::String]
|
|
2421
|
+
# The project-specific location in which to generate random bytes.
|
|
2422
|
+
# For example, "projects/my-project/locations/us-central1".
|
|
2423
|
+
# @param length_bytes [::Integer]
|
|
2424
|
+
# The length in bytes of the amount of randomness to retrieve. Minimum 8
|
|
2425
|
+
# bytes, maximum 1024 bytes.
|
|
2426
|
+
# @param protection_level [::Google::Cloud::Kms::V1::ProtectionLevel]
|
|
2427
|
+
# The {::Google::Cloud::Kms::V1::ProtectionLevel ProtectionLevel} to use when generating the random data. Defaults to
|
|
2428
|
+
# {::Google::Cloud::Kms::V1::ProtectionLevel::SOFTWARE SOFTWARE}.
|
|
2084
2429
|
#
|
|
2085
2430
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
2086
|
-
# @yieldparam response [::Google::Cloud::Kms::V1::
|
|
2431
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::GenerateRandomBytesResponse]
|
|
2087
2432
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
2088
2433
|
#
|
|
2089
|
-
# @return [::Google::Cloud::Kms::V1::
|
|
2434
|
+
# @return [::Google::Cloud::Kms::V1::GenerateRandomBytesResponse]
|
|
2090
2435
|
#
|
|
2091
2436
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
2092
2437
|
#
|
|
2093
|
-
def
|
|
2438
|
+
def generate_random_bytes request, options = nil
|
|
2094
2439
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
2095
2440
|
|
|
2096
|
-
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::
|
|
2441
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::GenerateRandomBytesRequest
|
|
2097
2442
|
|
|
2098
2443
|
# Converts hash and nil to an options object
|
|
2099
2444
|
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
2100
2445
|
|
|
2101
2446
|
# Customize the options with defaults
|
|
2102
|
-
metadata = @config.rpcs.
|
|
2447
|
+
metadata = @config.rpcs.generate_random_bytes.metadata.to_h
|
|
2103
2448
|
|
|
2104
2449
|
# Set x-goog-api-client and x-goog-user-project headers
|
|
2105
2450
|
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
@@ -2108,18 +2453,20 @@ module Google
|
|
|
2108
2453
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
2109
2454
|
|
|
2110
2455
|
header_params = {
|
|
2111
|
-
"
|
|
2456
|
+
"location" => request.location
|
|
2112
2457
|
}
|
|
2113
2458
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
2114
2459
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
2115
2460
|
|
|
2116
|
-
options.apply_defaults timeout: @config.rpcs.
|
|
2461
|
+
options.apply_defaults timeout: @config.rpcs.generate_random_bytes.timeout,
|
|
2117
2462
|
metadata: metadata,
|
|
2118
|
-
retry_policy: @config.rpcs.
|
|
2119
|
-
|
|
2463
|
+
retry_policy: @config.rpcs.generate_random_bytes.retry_policy
|
|
2464
|
+
|
|
2465
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2466
|
+
metadata: @config.metadata,
|
|
2120
2467
|
retry_policy: @config.retry_policy
|
|
2121
2468
|
|
|
2122
|
-
@key_management_service_stub.call_rpc :
|
|
2469
|
+
@key_management_service_stub.call_rpc :generate_random_bytes, request, options: options do |response, operation|
|
|
2123
2470
|
yield response, operation if block_given?
|
|
2124
2471
|
return response
|
|
2125
2472
|
end
|
|
@@ -2140,22 +2487,21 @@ module Google
|
|
|
2140
2487
|
# Configuration can be applied globally to all clients, or to a single client
|
|
2141
2488
|
# on construction.
|
|
2142
2489
|
#
|
|
2143
|
-
#
|
|
2144
|
-
#
|
|
2145
|
-
# To modify the global config, setting the timeout for list_key_rings
|
|
2146
|
-
# to 20 seconds, and all remaining timeouts to 10 seconds:
|
|
2490
|
+
# @example
|
|
2147
2491
|
#
|
|
2148
|
-
#
|
|
2149
|
-
#
|
|
2150
|
-
#
|
|
2151
|
-
#
|
|
2492
|
+
# # Modify the global config, setting the timeout for
|
|
2493
|
+
# # list_key_rings to 20 seconds,
|
|
2494
|
+
# # and all remaining timeouts to 10 seconds.
|
|
2495
|
+
# ::Google::Cloud::Kms::V1::KeyManagementService::Client.configure do |config|
|
|
2496
|
+
# config.timeout = 10.0
|
|
2497
|
+
# config.rpcs.list_key_rings.timeout = 20.0
|
|
2498
|
+
# end
|
|
2152
2499
|
#
|
|
2153
|
-
#
|
|
2154
|
-
#
|
|
2155
|
-
#
|
|
2156
|
-
#
|
|
2157
|
-
#
|
|
2158
|
-
# end
|
|
2500
|
+
# # Apply the above configuration only to a new client.
|
|
2501
|
+
# client = ::Google::Cloud::Kms::V1::KeyManagementService::Client.new do |config|
|
|
2502
|
+
# config.timeout = 10.0
|
|
2503
|
+
# config.rpcs.list_key_rings.timeout = 20.0
|
|
2504
|
+
# end
|
|
2159
2505
|
#
|
|
2160
2506
|
# @!attribute [rw] endpoint
|
|
2161
2507
|
# The hostname or hostname:port of the service endpoint.
|
|
@@ -2344,6 +2690,21 @@ module Google
|
|
|
2344
2690
|
#
|
|
2345
2691
|
attr_reader :update_crypto_key_version
|
|
2346
2692
|
##
|
|
2693
|
+
# RPC-specific configuration for `update_crypto_key_primary_version`
|
|
2694
|
+
# @return [::Gapic::Config::Method]
|
|
2695
|
+
#
|
|
2696
|
+
attr_reader :update_crypto_key_primary_version
|
|
2697
|
+
##
|
|
2698
|
+
# RPC-specific configuration for `destroy_crypto_key_version`
|
|
2699
|
+
# @return [::Gapic::Config::Method]
|
|
2700
|
+
#
|
|
2701
|
+
attr_reader :destroy_crypto_key_version
|
|
2702
|
+
##
|
|
2703
|
+
# RPC-specific configuration for `restore_crypto_key_version`
|
|
2704
|
+
# @return [::Gapic::Config::Method]
|
|
2705
|
+
#
|
|
2706
|
+
attr_reader :restore_crypto_key_version
|
|
2707
|
+
##
|
|
2347
2708
|
# RPC-specific configuration for `encrypt`
|
|
2348
2709
|
# @return [::Gapic::Config::Method]
|
|
2349
2710
|
#
|
|
@@ -2364,20 +2725,20 @@ module Google
|
|
|
2364
2725
|
#
|
|
2365
2726
|
attr_reader :asymmetric_decrypt
|
|
2366
2727
|
##
|
|
2367
|
-
# RPC-specific configuration for `
|
|
2728
|
+
# RPC-specific configuration for `mac_sign`
|
|
2368
2729
|
# @return [::Gapic::Config::Method]
|
|
2369
2730
|
#
|
|
2370
|
-
attr_reader :
|
|
2731
|
+
attr_reader :mac_sign
|
|
2371
2732
|
##
|
|
2372
|
-
# RPC-specific configuration for `
|
|
2733
|
+
# RPC-specific configuration for `mac_verify`
|
|
2373
2734
|
# @return [::Gapic::Config::Method]
|
|
2374
2735
|
#
|
|
2375
|
-
attr_reader :
|
|
2736
|
+
attr_reader :mac_verify
|
|
2376
2737
|
##
|
|
2377
|
-
# RPC-specific configuration for `
|
|
2738
|
+
# RPC-specific configuration for `generate_random_bytes`
|
|
2378
2739
|
# @return [::Gapic::Config::Method]
|
|
2379
2740
|
#
|
|
2380
|
-
attr_reader :
|
|
2741
|
+
attr_reader :generate_random_bytes
|
|
2381
2742
|
|
|
2382
2743
|
# @private
|
|
2383
2744
|
def initialize parent_rpcs = nil
|
|
@@ -2413,6 +2774,12 @@ module Google
|
|
|
2413
2774
|
@update_crypto_key = ::Gapic::Config::Method.new update_crypto_key_config
|
|
2414
2775
|
update_crypto_key_version_config = parent_rpcs.update_crypto_key_version if parent_rpcs.respond_to? :update_crypto_key_version
|
|
2415
2776
|
@update_crypto_key_version = ::Gapic::Config::Method.new update_crypto_key_version_config
|
|
2777
|
+
update_crypto_key_primary_version_config = parent_rpcs.update_crypto_key_primary_version if parent_rpcs.respond_to? :update_crypto_key_primary_version
|
|
2778
|
+
@update_crypto_key_primary_version = ::Gapic::Config::Method.new update_crypto_key_primary_version_config
|
|
2779
|
+
destroy_crypto_key_version_config = parent_rpcs.destroy_crypto_key_version if parent_rpcs.respond_to? :destroy_crypto_key_version
|
|
2780
|
+
@destroy_crypto_key_version = ::Gapic::Config::Method.new destroy_crypto_key_version_config
|
|
2781
|
+
restore_crypto_key_version_config = parent_rpcs.restore_crypto_key_version if parent_rpcs.respond_to? :restore_crypto_key_version
|
|
2782
|
+
@restore_crypto_key_version = ::Gapic::Config::Method.new restore_crypto_key_version_config
|
|
2416
2783
|
encrypt_config = parent_rpcs.encrypt if parent_rpcs.respond_to? :encrypt
|
|
2417
2784
|
@encrypt = ::Gapic::Config::Method.new encrypt_config
|
|
2418
2785
|
decrypt_config = parent_rpcs.decrypt if parent_rpcs.respond_to? :decrypt
|
|
@@ -2421,12 +2788,12 @@ module Google
|
|
|
2421
2788
|
@asymmetric_sign = ::Gapic::Config::Method.new asymmetric_sign_config
|
|
2422
2789
|
asymmetric_decrypt_config = parent_rpcs.asymmetric_decrypt if parent_rpcs.respond_to? :asymmetric_decrypt
|
|
2423
2790
|
@asymmetric_decrypt = ::Gapic::Config::Method.new asymmetric_decrypt_config
|
|
2424
|
-
|
|
2425
|
-
@
|
|
2426
|
-
|
|
2427
|
-
@
|
|
2428
|
-
|
|
2429
|
-
@
|
|
2791
|
+
mac_sign_config = parent_rpcs.mac_sign if parent_rpcs.respond_to? :mac_sign
|
|
2792
|
+
@mac_sign = ::Gapic::Config::Method.new mac_sign_config
|
|
2793
|
+
mac_verify_config = parent_rpcs.mac_verify if parent_rpcs.respond_to? :mac_verify
|
|
2794
|
+
@mac_verify = ::Gapic::Config::Method.new mac_verify_config
|
|
2795
|
+
generate_random_bytes_config = parent_rpcs.generate_random_bytes if parent_rpcs.respond_to? :generate_random_bytes
|
|
2796
|
+
@generate_random_bytes = ::Gapic::Config::Method.new generate_random_bytes_config
|
|
2430
2797
|
|
|
2431
2798
|
yield self if block_given?
|
|
2432
2799
|
end
|