google-cloud-kms-v1 0.6.2 → 0.10.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/google/cloud/kms/v1/iam_policy/client.rb +38 -39
- data/lib/google/cloud/kms/v1/key_management_service/client.rb +535 -168
- data/lib/google/cloud/kms/v1/resources_pb.rb +14 -2
- data/lib/google/cloud/kms/v1/service_pb.rb +65 -14
- data/lib/google/cloud/kms/v1/service_services_pb.rb +37 -24
- data/lib/google/cloud/kms/v1/version.rb +1 -1
- data/proto_docs/google/cloud/kms/v1/resources.rb +56 -4
- data/proto_docs/google/cloud/kms/v1/service.rb +290 -59
- metadata +4 -4
|
@@ -52,13 +52,12 @@ module Google
|
|
|
52
52
|
# See {::Google::Cloud::Kms::V1::KeyManagementService::Client::Configuration}
|
|
53
53
|
# for a description of the configuration fields.
|
|
54
54
|
#
|
|
55
|
-
#
|
|
55
|
+
# @example
|
|
56
56
|
#
|
|
57
|
-
#
|
|
58
|
-
#
|
|
59
|
-
#
|
|
60
|
-
#
|
|
61
|
-
# end
|
|
57
|
+
# # Modify the configuration for all KeyManagementService clients
|
|
58
|
+
# ::Google::Cloud::Kms::V1::KeyManagementService::Client.configure do |config|
|
|
59
|
+
# config.timeout = 10.0
|
|
60
|
+
# end
|
|
62
61
|
#
|
|
63
62
|
# @yield [config] Configure the Client client.
|
|
64
63
|
# @yieldparam config [Client::Configuration]
|
|
@@ -150,6 +149,21 @@ module Google
|
|
|
150
149
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
151
150
|
}
|
|
152
151
|
|
|
152
|
+
default_config.rpcs.update_crypto_key_primary_version.timeout = 60.0
|
|
153
|
+
default_config.rpcs.update_crypto_key_primary_version.retry_policy = {
|
|
154
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
155
|
+
}
|
|
156
|
+
|
|
157
|
+
default_config.rpcs.destroy_crypto_key_version.timeout = 60.0
|
|
158
|
+
default_config.rpcs.destroy_crypto_key_version.retry_policy = {
|
|
159
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
160
|
+
}
|
|
161
|
+
|
|
162
|
+
default_config.rpcs.restore_crypto_key_version.timeout = 60.0
|
|
163
|
+
default_config.rpcs.restore_crypto_key_version.retry_policy = {
|
|
164
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
165
|
+
}
|
|
166
|
+
|
|
153
167
|
default_config.rpcs.encrypt.timeout = 60.0
|
|
154
168
|
default_config.rpcs.encrypt.retry_policy = {
|
|
155
169
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
@@ -170,18 +184,18 @@ module Google
|
|
|
170
184
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
171
185
|
}
|
|
172
186
|
|
|
173
|
-
default_config.rpcs.
|
|
174
|
-
default_config.rpcs.
|
|
187
|
+
default_config.rpcs.mac_sign.timeout = 60.0
|
|
188
|
+
default_config.rpcs.mac_sign.retry_policy = {
|
|
175
189
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
176
190
|
}
|
|
177
191
|
|
|
178
|
-
default_config.rpcs.
|
|
179
|
-
default_config.rpcs.
|
|
192
|
+
default_config.rpcs.mac_verify.timeout = 60.0
|
|
193
|
+
default_config.rpcs.mac_verify.retry_policy = {
|
|
180
194
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
181
195
|
}
|
|
182
196
|
|
|
183
|
-
default_config.rpcs.
|
|
184
|
-
default_config.rpcs.
|
|
197
|
+
default_config.rpcs.generate_random_bytes.timeout = 60.0
|
|
198
|
+
default_config.rpcs.generate_random_bytes.retry_policy = {
|
|
185
199
|
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [14, 4]
|
|
186
200
|
}
|
|
187
201
|
|
|
@@ -214,19 +228,15 @@ module Google
|
|
|
214
228
|
##
|
|
215
229
|
# Create a new KeyManagementService client object.
|
|
216
230
|
#
|
|
217
|
-
#
|
|
218
|
-
#
|
|
219
|
-
# To create a new KeyManagementService client with the default
|
|
220
|
-
# configuration:
|
|
231
|
+
# @example
|
|
221
232
|
#
|
|
222
|
-
#
|
|
233
|
+
# # Create a client using the default configuration
|
|
234
|
+
# client = ::Google::Cloud::Kms::V1::KeyManagementService::Client.new
|
|
223
235
|
#
|
|
224
|
-
#
|
|
225
|
-
#
|
|
226
|
-
#
|
|
227
|
-
#
|
|
228
|
-
# config.timeout = 10.0
|
|
229
|
-
# end
|
|
236
|
+
# # Create a client using a custom configuration
|
|
237
|
+
# client = ::Google::Cloud::Kms::V1::KeyManagementService::Client.new do |config|
|
|
238
|
+
# config.timeout = 10.0
|
|
239
|
+
# end
|
|
230
240
|
#
|
|
231
241
|
# @yield [config] Configure the KeyManagementService client.
|
|
232
242
|
# @yieldparam config [Client::Configuration]
|
|
@@ -246,10 +256,9 @@ module Google
|
|
|
246
256
|
|
|
247
257
|
# Create credentials
|
|
248
258
|
credentials = @config.credentials
|
|
249
|
-
# Use self-signed JWT if the
|
|
259
|
+
# Use self-signed JWT if the endpoint is unchanged from default,
|
|
250
260
|
# but only if the default endpoint does not have a region prefix.
|
|
251
|
-
enable_self_signed_jwt = @config.
|
|
252
|
-
@config.endpoint == Client.configure.endpoint &&
|
|
261
|
+
enable_self_signed_jwt = @config.endpoint == Client.configure.endpoint &&
|
|
253
262
|
!@config.endpoint.split(".").first.include?("-")
|
|
254
263
|
credentials ||= Credentials.default scope: @config.scope,
|
|
255
264
|
enable_self_signed_jwt: enable_self_signed_jwt
|
|
@@ -344,7 +353,9 @@ module Google
|
|
|
344
353
|
options.apply_defaults timeout: @config.rpcs.list_key_rings.timeout,
|
|
345
354
|
metadata: metadata,
|
|
346
355
|
retry_policy: @config.rpcs.list_key_rings.retry_policy
|
|
347
|
-
|
|
356
|
+
|
|
357
|
+
options.apply_defaults timeout: @config.timeout,
|
|
358
|
+
metadata: @config.metadata,
|
|
348
359
|
retry_policy: @config.retry_policy
|
|
349
360
|
|
|
350
361
|
@key_management_service_stub.call_rpc :list_key_rings, request, options: options do |response, operation|
|
|
@@ -432,7 +443,9 @@ module Google
|
|
|
432
443
|
options.apply_defaults timeout: @config.rpcs.list_crypto_keys.timeout,
|
|
433
444
|
metadata: metadata,
|
|
434
445
|
retry_policy: @config.rpcs.list_crypto_keys.retry_policy
|
|
435
|
-
|
|
446
|
+
|
|
447
|
+
options.apply_defaults timeout: @config.timeout,
|
|
448
|
+
metadata: @config.metadata,
|
|
436
449
|
retry_policy: @config.retry_policy
|
|
437
450
|
|
|
438
451
|
@key_management_service_stub.call_rpc :list_crypto_keys, request, options: options do |response, operation|
|
|
@@ -521,7 +534,9 @@ module Google
|
|
|
521
534
|
options.apply_defaults timeout: @config.rpcs.list_crypto_key_versions.timeout,
|
|
522
535
|
metadata: metadata,
|
|
523
536
|
retry_policy: @config.rpcs.list_crypto_key_versions.retry_policy
|
|
524
|
-
|
|
537
|
+
|
|
538
|
+
options.apply_defaults timeout: @config.timeout,
|
|
539
|
+
metadata: @config.metadata,
|
|
525
540
|
retry_policy: @config.retry_policy
|
|
526
541
|
|
|
527
542
|
@key_management_service_stub.call_rpc :list_crypto_key_versions, request, options: options do |response, operation|
|
|
@@ -607,7 +622,9 @@ module Google
|
|
|
607
622
|
options.apply_defaults timeout: @config.rpcs.list_import_jobs.timeout,
|
|
608
623
|
metadata: metadata,
|
|
609
624
|
retry_policy: @config.rpcs.list_import_jobs.retry_policy
|
|
610
|
-
|
|
625
|
+
|
|
626
|
+
options.apply_defaults timeout: @config.timeout,
|
|
627
|
+
metadata: @config.metadata,
|
|
611
628
|
retry_policy: @config.retry_policy
|
|
612
629
|
|
|
613
630
|
@key_management_service_stub.call_rpc :list_import_jobs, request, options: options do |response, operation|
|
|
@@ -674,7 +691,9 @@ module Google
|
|
|
674
691
|
options.apply_defaults timeout: @config.rpcs.get_key_ring.timeout,
|
|
675
692
|
metadata: metadata,
|
|
676
693
|
retry_policy: @config.rpcs.get_key_ring.retry_policy
|
|
677
|
-
|
|
694
|
+
|
|
695
|
+
options.apply_defaults timeout: @config.timeout,
|
|
696
|
+
metadata: @config.metadata,
|
|
678
697
|
retry_policy: @config.retry_policy
|
|
679
698
|
|
|
680
699
|
@key_management_service_stub.call_rpc :get_key_ring, request, options: options do |response, operation|
|
|
@@ -741,7 +760,9 @@ module Google
|
|
|
741
760
|
options.apply_defaults timeout: @config.rpcs.get_crypto_key.timeout,
|
|
742
761
|
metadata: metadata,
|
|
743
762
|
retry_policy: @config.rpcs.get_crypto_key.retry_policy
|
|
744
|
-
|
|
763
|
+
|
|
764
|
+
options.apply_defaults timeout: @config.timeout,
|
|
765
|
+
metadata: @config.metadata,
|
|
745
766
|
retry_policy: @config.retry_policy
|
|
746
767
|
|
|
747
768
|
@key_management_service_stub.call_rpc :get_crypto_key, request, options: options do |response, operation|
|
|
@@ -807,7 +828,9 @@ module Google
|
|
|
807
828
|
options.apply_defaults timeout: @config.rpcs.get_crypto_key_version.timeout,
|
|
808
829
|
metadata: metadata,
|
|
809
830
|
retry_policy: @config.rpcs.get_crypto_key_version.retry_policy
|
|
810
|
-
|
|
831
|
+
|
|
832
|
+
options.apply_defaults timeout: @config.timeout,
|
|
833
|
+
metadata: @config.metadata,
|
|
811
834
|
retry_policy: @config.retry_policy
|
|
812
835
|
|
|
813
836
|
@key_management_service_stub.call_rpc :get_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -877,7 +900,9 @@ module Google
|
|
|
877
900
|
options.apply_defaults timeout: @config.rpcs.get_public_key.timeout,
|
|
878
901
|
metadata: metadata,
|
|
879
902
|
retry_policy: @config.rpcs.get_public_key.retry_policy
|
|
880
|
-
|
|
903
|
+
|
|
904
|
+
options.apply_defaults timeout: @config.timeout,
|
|
905
|
+
metadata: @config.metadata,
|
|
881
906
|
retry_policy: @config.retry_policy
|
|
882
907
|
|
|
883
908
|
@key_management_service_stub.call_rpc :get_public_key, request, options: options do |response, operation|
|
|
@@ -943,7 +968,9 @@ module Google
|
|
|
943
968
|
options.apply_defaults timeout: @config.rpcs.get_import_job.timeout,
|
|
944
969
|
metadata: metadata,
|
|
945
970
|
retry_policy: @config.rpcs.get_import_job.retry_policy
|
|
946
|
-
|
|
971
|
+
|
|
972
|
+
options.apply_defaults timeout: @config.timeout,
|
|
973
|
+
metadata: @config.metadata,
|
|
947
974
|
retry_policy: @config.retry_policy
|
|
948
975
|
|
|
949
976
|
@key_management_service_stub.call_rpc :get_import_job, request, options: options do |response, operation|
|
|
@@ -1015,7 +1042,9 @@ module Google
|
|
|
1015
1042
|
options.apply_defaults timeout: @config.rpcs.create_key_ring.timeout,
|
|
1016
1043
|
metadata: metadata,
|
|
1017
1044
|
retry_policy: @config.rpcs.create_key_ring.retry_policy
|
|
1018
|
-
|
|
1045
|
+
|
|
1046
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1047
|
+
metadata: @config.metadata,
|
|
1019
1048
|
retry_policy: @config.retry_policy
|
|
1020
1049
|
|
|
1021
1050
|
@key_management_service_stub.call_rpc :create_key_ring, request, options: options do |response, operation|
|
|
@@ -1097,7 +1126,9 @@ module Google
|
|
|
1097
1126
|
options.apply_defaults timeout: @config.rpcs.create_crypto_key.timeout,
|
|
1098
1127
|
metadata: metadata,
|
|
1099
1128
|
retry_policy: @config.rpcs.create_crypto_key.retry_policy
|
|
1100
|
-
|
|
1129
|
+
|
|
1130
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1131
|
+
metadata: @config.metadata,
|
|
1101
1132
|
retry_policy: @config.retry_policy
|
|
1102
1133
|
|
|
1103
1134
|
@key_management_service_stub.call_rpc :create_crypto_key, request, options: options do |response, operation|
|
|
@@ -1170,7 +1201,9 @@ module Google
|
|
|
1170
1201
|
options.apply_defaults timeout: @config.rpcs.create_crypto_key_version.timeout,
|
|
1171
1202
|
metadata: metadata,
|
|
1172
1203
|
retry_policy: @config.rpcs.create_crypto_key_version.retry_policy
|
|
1173
|
-
|
|
1204
|
+
|
|
1205
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1206
|
+
metadata: @config.metadata,
|
|
1174
1207
|
retry_policy: @config.retry_policy
|
|
1175
1208
|
|
|
1176
1209
|
@key_management_service_stub.call_rpc :create_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -1182,11 +1215,12 @@ module Google
|
|
|
1182
1215
|
end
|
|
1183
1216
|
|
|
1184
1217
|
##
|
|
1185
|
-
#
|
|
1186
|
-
# wrapped key material provided in the request.
|
|
1218
|
+
# Import wrapped key material into a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}.
|
|
1187
1219
|
#
|
|
1188
|
-
#
|
|
1189
|
-
#
|
|
1220
|
+
# All requests must specify a {::Google::Cloud::Kms::V1::CryptoKey CryptoKey}. If a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} is
|
|
1221
|
+
# additionally specified in the request, key material will be reimported into
|
|
1222
|
+
# that version. Otherwise, a new version will be created, and will be
|
|
1223
|
+
# assigned the next sequential id within the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey}.
|
|
1190
1224
|
#
|
|
1191
1225
|
# @overload import_crypto_key_version(request, options = nil)
|
|
1192
1226
|
# Pass arguments to `import_crypto_key_version` via a request object, either of type
|
|
@@ -1198,14 +1232,32 @@ module Google
|
|
|
1198
1232
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1199
1233
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1200
1234
|
#
|
|
1201
|
-
# @overload import_crypto_key_version(parent: nil, algorithm: nil, import_job: nil, rsa_aes_wrapped_key: nil)
|
|
1235
|
+
# @overload import_crypto_key_version(parent: nil, crypto_key_version: nil, algorithm: nil, import_job: nil, rsa_aes_wrapped_key: nil)
|
|
1202
1236
|
# Pass arguments to `import_crypto_key_version` via keyword arguments. Note that at
|
|
1203
1237
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1204
1238
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1205
1239
|
#
|
|
1206
1240
|
# @param parent [::String]
|
|
1207
|
-
# Required. The {::Google::Cloud::Kms::V1::CryptoKey#name name} of the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} to
|
|
1208
|
-
#
|
|
1241
|
+
# Required. The {::Google::Cloud::Kms::V1::CryptoKey#name name} of the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} to be imported into.
|
|
1242
|
+
#
|
|
1243
|
+
# The create permission is only required on this key when creating a new
|
|
1244
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}.
|
|
1245
|
+
# @param crypto_key_version [::String]
|
|
1246
|
+
# Optional. The optional {::Google::Cloud::Kms::V1::CryptoKeyVersion#name name} of an existing
|
|
1247
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to target for an import operation.
|
|
1248
|
+
# If this field is not present, a new {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} containing the
|
|
1249
|
+
# supplied key material is created.
|
|
1250
|
+
#
|
|
1251
|
+
# If this field is present, the supplied key material is imported into
|
|
1252
|
+
# the existing {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}. To import into an existing
|
|
1253
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion}, the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} must be a child of
|
|
1254
|
+
# {::Google::Cloud::Kms::V1::ImportCryptoKeyVersionRequest#parent ImportCryptoKeyVersionRequest.parent}, have been previously created via
|
|
1255
|
+
# [ImportCryptoKeyVersion][], and be in
|
|
1256
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROYED DESTROYED} or
|
|
1257
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::IMPORT_FAILED IMPORT_FAILED}
|
|
1258
|
+
# state. The key material and algorithm must match the previous
|
|
1259
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} exactly if the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} has ever contained
|
|
1260
|
+
# key material.
|
|
1209
1261
|
# @param algorithm [::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionAlgorithm]
|
|
1210
1262
|
# Required. The {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionAlgorithm algorithm} of
|
|
1211
1263
|
# the key being imported. This does not need to match the
|
|
@@ -1273,7 +1325,9 @@ module Google
|
|
|
1273
1325
|
options.apply_defaults timeout: @config.rpcs.import_crypto_key_version.timeout,
|
|
1274
1326
|
metadata: metadata,
|
|
1275
1327
|
retry_policy: @config.rpcs.import_crypto_key_version.retry_policy
|
|
1276
|
-
|
|
1328
|
+
|
|
1329
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1330
|
+
metadata: @config.metadata,
|
|
1277
1331
|
retry_policy: @config.retry_policy
|
|
1278
1332
|
|
|
1279
1333
|
@key_management_service_stub.call_rpc :import_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -1347,7 +1401,9 @@ module Google
|
|
|
1347
1401
|
options.apply_defaults timeout: @config.rpcs.create_import_job.timeout,
|
|
1348
1402
|
metadata: metadata,
|
|
1349
1403
|
retry_policy: @config.rpcs.create_import_job.retry_policy
|
|
1350
|
-
|
|
1404
|
+
|
|
1405
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1406
|
+
metadata: @config.metadata,
|
|
1351
1407
|
retry_policy: @config.retry_policy
|
|
1352
1408
|
|
|
1353
1409
|
@key_management_service_stub.call_rpc :create_import_job, request, options: options do |response, operation|
|
|
@@ -1415,7 +1471,9 @@ module Google
|
|
|
1415
1471
|
options.apply_defaults timeout: @config.rpcs.update_crypto_key.timeout,
|
|
1416
1472
|
metadata: metadata,
|
|
1417
1473
|
retry_policy: @config.rpcs.update_crypto_key.retry_policy
|
|
1418
|
-
|
|
1474
|
+
|
|
1475
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1476
|
+
metadata: @config.metadata,
|
|
1419
1477
|
retry_policy: @config.retry_policy
|
|
1420
1478
|
|
|
1421
1479
|
@key_management_service_stub.call_rpc :update_crypto_key, request, options: options do |response, operation|
|
|
@@ -1489,7 +1547,9 @@ module Google
|
|
|
1489
1547
|
options.apply_defaults timeout: @config.rpcs.update_crypto_key_version.timeout,
|
|
1490
1548
|
metadata: metadata,
|
|
1491
1549
|
retry_policy: @config.rpcs.update_crypto_key_version.retry_policy
|
|
1492
|
-
|
|
1550
|
+
|
|
1551
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1552
|
+
metadata: @config.metadata,
|
|
1493
1553
|
retry_policy: @config.retry_policy
|
|
1494
1554
|
|
|
1495
1555
|
@key_management_service_stub.call_rpc :update_crypto_key_version, request, options: options do |response, operation|
|
|
@@ -1500,6 +1560,233 @@ module Google
|
|
|
1500
1560
|
raise ::Google::Cloud::Error.from_error(e)
|
|
1501
1561
|
end
|
|
1502
1562
|
|
|
1563
|
+
##
|
|
1564
|
+
# Update the version of a {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} that will be used in {::Google::Cloud::Kms::V1::KeyManagementService::Client#encrypt Encrypt}.
|
|
1565
|
+
#
|
|
1566
|
+
# Returns an error if called on a key whose purpose is not
|
|
1567
|
+
# {::Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ENCRYPT_DECRYPT ENCRYPT_DECRYPT}.
|
|
1568
|
+
#
|
|
1569
|
+
# @overload update_crypto_key_primary_version(request, options = nil)
|
|
1570
|
+
# Pass arguments to `update_crypto_key_primary_version` via a request object, either of type
|
|
1571
|
+
# {::Google::Cloud::Kms::V1::UpdateCryptoKeyPrimaryVersionRequest} or an equivalent Hash.
|
|
1572
|
+
#
|
|
1573
|
+
# @param request [::Google::Cloud::Kms::V1::UpdateCryptoKeyPrimaryVersionRequest, ::Hash]
|
|
1574
|
+
# A request object representing the call parameters. Required. To specify no
|
|
1575
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1576
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1577
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1578
|
+
#
|
|
1579
|
+
# @overload update_crypto_key_primary_version(name: nil, crypto_key_version_id: nil)
|
|
1580
|
+
# Pass arguments to `update_crypto_key_primary_version` via keyword arguments. Note that at
|
|
1581
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1582
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1583
|
+
#
|
|
1584
|
+
# @param name [::String]
|
|
1585
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKey CryptoKey} to update.
|
|
1586
|
+
# @param crypto_key_version_id [::String]
|
|
1587
|
+
# Required. The id of the child {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use as primary.
|
|
1588
|
+
#
|
|
1589
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
|
1590
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::CryptoKey]
|
|
1591
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1592
|
+
#
|
|
1593
|
+
# @return [::Google::Cloud::Kms::V1::CryptoKey]
|
|
1594
|
+
#
|
|
1595
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1596
|
+
#
|
|
1597
|
+
def update_crypto_key_primary_version request, options = nil
|
|
1598
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1599
|
+
|
|
1600
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::UpdateCryptoKeyPrimaryVersionRequest
|
|
1601
|
+
|
|
1602
|
+
# Converts hash and nil to an options object
|
|
1603
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1604
|
+
|
|
1605
|
+
# Customize the options with defaults
|
|
1606
|
+
metadata = @config.rpcs.update_crypto_key_primary_version.metadata.to_h
|
|
1607
|
+
|
|
1608
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
|
1609
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
1610
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
|
1611
|
+
gapic_version: ::Google::Cloud::Kms::V1::VERSION
|
|
1612
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
1613
|
+
|
|
1614
|
+
header_params = {
|
|
1615
|
+
"name" => request.name
|
|
1616
|
+
}
|
|
1617
|
+
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1618
|
+
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1619
|
+
|
|
1620
|
+
options.apply_defaults timeout: @config.rpcs.update_crypto_key_primary_version.timeout,
|
|
1621
|
+
metadata: metadata,
|
|
1622
|
+
retry_policy: @config.rpcs.update_crypto_key_primary_version.retry_policy
|
|
1623
|
+
|
|
1624
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1625
|
+
metadata: @config.metadata,
|
|
1626
|
+
retry_policy: @config.retry_policy
|
|
1627
|
+
|
|
1628
|
+
@key_management_service_stub.call_rpc :update_crypto_key_primary_version, request, options: options do |response, operation|
|
|
1629
|
+
yield response, operation if block_given?
|
|
1630
|
+
return response
|
|
1631
|
+
end
|
|
1632
|
+
rescue ::GRPC::BadStatus => e
|
|
1633
|
+
raise ::Google::Cloud::Error.from_error(e)
|
|
1634
|
+
end
|
|
1635
|
+
|
|
1636
|
+
##
|
|
1637
|
+
# Schedule a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} for destruction.
|
|
1638
|
+
#
|
|
1639
|
+
# Upon calling this method, {::Google::Cloud::Kms::V1::CryptoKeyVersion#state CryptoKeyVersion.state} will be set to
|
|
1640
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROY_SCHEDULED DESTROY_SCHEDULED},
|
|
1641
|
+
# and {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} will be set to the time
|
|
1642
|
+
# {::Google::Cloud::Kms::V1::CryptoKey#destroy_scheduled_duration destroy_scheduled_duration} in the
|
|
1643
|
+
# future. At that time, the {::Google::Cloud::Kms::V1::CryptoKeyVersion#state state} will
|
|
1644
|
+
# automatically change to
|
|
1645
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROYED DESTROYED}, and the key
|
|
1646
|
+
# material will be irrevocably destroyed.
|
|
1647
|
+
#
|
|
1648
|
+
# Before the {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} is reached,
|
|
1649
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client#restore_crypto_key_version RestoreCryptoKeyVersion} may be called to reverse the process.
|
|
1650
|
+
#
|
|
1651
|
+
# @overload destroy_crypto_key_version(request, options = nil)
|
|
1652
|
+
# Pass arguments to `destroy_crypto_key_version` via a request object, either of type
|
|
1653
|
+
# {::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest} or an equivalent Hash.
|
|
1654
|
+
#
|
|
1655
|
+
# @param request [::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest, ::Hash]
|
|
1656
|
+
# A request object representing the call parameters. Required. To specify no
|
|
1657
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1658
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1659
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1660
|
+
#
|
|
1661
|
+
# @overload destroy_crypto_key_version(name: nil)
|
|
1662
|
+
# Pass arguments to `destroy_crypto_key_version` via keyword arguments. Note that at
|
|
1663
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1664
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1665
|
+
#
|
|
1666
|
+
# @param name [::String]
|
|
1667
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to destroy.
|
|
1668
|
+
#
|
|
1669
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
|
1670
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1671
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1672
|
+
#
|
|
1673
|
+
# @return [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1674
|
+
#
|
|
1675
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1676
|
+
#
|
|
1677
|
+
def destroy_crypto_key_version request, options = nil
|
|
1678
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1679
|
+
|
|
1680
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest
|
|
1681
|
+
|
|
1682
|
+
# Converts hash and nil to an options object
|
|
1683
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1684
|
+
|
|
1685
|
+
# Customize the options with defaults
|
|
1686
|
+
metadata = @config.rpcs.destroy_crypto_key_version.metadata.to_h
|
|
1687
|
+
|
|
1688
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
|
1689
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
1690
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
|
1691
|
+
gapic_version: ::Google::Cloud::Kms::V1::VERSION
|
|
1692
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
1693
|
+
|
|
1694
|
+
header_params = {
|
|
1695
|
+
"name" => request.name
|
|
1696
|
+
}
|
|
1697
|
+
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1698
|
+
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1699
|
+
|
|
1700
|
+
options.apply_defaults timeout: @config.rpcs.destroy_crypto_key_version.timeout,
|
|
1701
|
+
metadata: metadata,
|
|
1702
|
+
retry_policy: @config.rpcs.destroy_crypto_key_version.retry_policy
|
|
1703
|
+
|
|
1704
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1705
|
+
metadata: @config.metadata,
|
|
1706
|
+
retry_policy: @config.retry_policy
|
|
1707
|
+
|
|
1708
|
+
@key_management_service_stub.call_rpc :destroy_crypto_key_version, request, options: options do |response, operation|
|
|
1709
|
+
yield response, operation if block_given?
|
|
1710
|
+
return response
|
|
1711
|
+
end
|
|
1712
|
+
rescue ::GRPC::BadStatus => e
|
|
1713
|
+
raise ::Google::Cloud::Error.from_error(e)
|
|
1714
|
+
end
|
|
1715
|
+
|
|
1716
|
+
##
|
|
1717
|
+
# Restore a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} in the
|
|
1718
|
+
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROY_SCHEDULED DESTROY_SCHEDULED}
|
|
1719
|
+
# state.
|
|
1720
|
+
#
|
|
1721
|
+
# Upon restoration of the CryptoKeyVersion, {::Google::Cloud::Kms::V1::CryptoKeyVersion#state state}
|
|
1722
|
+
# will be set to {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DISABLED DISABLED},
|
|
1723
|
+
# and {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} will be cleared.
|
|
1724
|
+
#
|
|
1725
|
+
# @overload restore_crypto_key_version(request, options = nil)
|
|
1726
|
+
# Pass arguments to `restore_crypto_key_version` via a request object, either of type
|
|
1727
|
+
# {::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest} or an equivalent Hash.
|
|
1728
|
+
#
|
|
1729
|
+
# @param request [::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest, ::Hash]
|
|
1730
|
+
# A request object representing the call parameters. Required. To specify no
|
|
1731
|
+
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1732
|
+
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1733
|
+
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1734
|
+
#
|
|
1735
|
+
# @overload restore_crypto_key_version(name: nil)
|
|
1736
|
+
# Pass arguments to `restore_crypto_key_version` via keyword arguments. Note that at
|
|
1737
|
+
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1738
|
+
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1739
|
+
#
|
|
1740
|
+
# @param name [::String]
|
|
1741
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to restore.
|
|
1742
|
+
#
|
|
1743
|
+
# @yield [response, operation] Access the result along with the RPC operation
|
|
1744
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1745
|
+
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1746
|
+
#
|
|
1747
|
+
# @return [::Google::Cloud::Kms::V1::CryptoKeyVersion]
|
|
1748
|
+
#
|
|
1749
|
+
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1750
|
+
#
|
|
1751
|
+
def restore_crypto_key_version request, options = nil
|
|
1752
|
+
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1753
|
+
|
|
1754
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest
|
|
1755
|
+
|
|
1756
|
+
# Converts hash and nil to an options object
|
|
1757
|
+
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1758
|
+
|
|
1759
|
+
# Customize the options with defaults
|
|
1760
|
+
metadata = @config.rpcs.restore_crypto_key_version.metadata.to_h
|
|
1761
|
+
|
|
1762
|
+
# Set x-goog-api-client and x-goog-user-project headers
|
|
1763
|
+
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
1764
|
+
lib_name: @config.lib_name, lib_version: @config.lib_version,
|
|
1765
|
+
gapic_version: ::Google::Cloud::Kms::V1::VERSION
|
|
1766
|
+
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
1767
|
+
|
|
1768
|
+
header_params = {
|
|
1769
|
+
"name" => request.name
|
|
1770
|
+
}
|
|
1771
|
+
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1772
|
+
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1773
|
+
|
|
1774
|
+
options.apply_defaults timeout: @config.rpcs.restore_crypto_key_version.timeout,
|
|
1775
|
+
metadata: metadata,
|
|
1776
|
+
retry_policy: @config.rpcs.restore_crypto_key_version.retry_policy
|
|
1777
|
+
|
|
1778
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1779
|
+
metadata: @config.metadata,
|
|
1780
|
+
retry_policy: @config.retry_policy
|
|
1781
|
+
|
|
1782
|
+
@key_management_service_stub.call_rpc :restore_crypto_key_version, request, options: options do |response, operation|
|
|
1783
|
+
yield response, operation if block_given?
|
|
1784
|
+
return response
|
|
1785
|
+
end
|
|
1786
|
+
rescue ::GRPC::BadStatus => e
|
|
1787
|
+
raise ::Google::Cloud::Error.from_error(e)
|
|
1788
|
+
end
|
|
1789
|
+
|
|
1503
1790
|
##
|
|
1504
1791
|
# Encrypts data, so that it can only be recovered by a call to {::Google::Cloud::Kms::V1::KeyManagementService::Client#decrypt Decrypt}.
|
|
1505
1792
|
# The {::Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey.purpose} must be
|
|
@@ -1559,8 +1846,6 @@ module Google
|
|
|
1559
1846
|
# different languages. However, it is a non-negative integer, which will
|
|
1560
1847
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1561
1848
|
# that support this type.
|
|
1562
|
-
#
|
|
1563
|
-
# NOTE: This field is in Beta.
|
|
1564
1849
|
# @param additional_authenticated_data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
1565
1850
|
# Optional. An optional CRC32C checksum of the
|
|
1566
1851
|
# {::Google::Cloud::Kms::V1::EncryptRequest#additional_authenticated_data EncryptRequest.additional_authenticated_data}. If specified,
|
|
@@ -1577,8 +1862,6 @@ module Google
|
|
|
1577
1862
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1578
1863
|
# that support this type.
|
|
1579
1864
|
#
|
|
1580
|
-
# NOTE: This field is in Beta.
|
|
1581
|
-
#
|
|
1582
1865
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1583
1866
|
# @yieldparam response [::Google::Cloud::Kms::V1::EncryptResponse]
|
|
1584
1867
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
@@ -1613,7 +1896,9 @@ module Google
|
|
|
1613
1896
|
options.apply_defaults timeout: @config.rpcs.encrypt.timeout,
|
|
1614
1897
|
metadata: metadata,
|
|
1615
1898
|
retry_policy: @config.rpcs.encrypt.retry_policy
|
|
1616
|
-
|
|
1899
|
+
|
|
1900
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1901
|
+
metadata: @config.metadata,
|
|
1617
1902
|
retry_policy: @config.retry_policy
|
|
1618
1903
|
|
|
1619
1904
|
@key_management_service_stub.call_rpc :encrypt, request, options: options do |response, operation|
|
|
@@ -1666,8 +1951,6 @@ module Google
|
|
|
1666
1951
|
# different languages. However, it is a non-negative integer, which will
|
|
1667
1952
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1668
1953
|
# that support this type.
|
|
1669
|
-
#
|
|
1670
|
-
# NOTE: This field is in Beta.
|
|
1671
1954
|
# @param additional_authenticated_data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
1672
1955
|
# Optional. An optional CRC32C checksum of the
|
|
1673
1956
|
# {::Google::Cloud::Kms::V1::DecryptRequest#additional_authenticated_data DecryptRequest.additional_authenticated_data}. If specified,
|
|
@@ -1684,8 +1967,6 @@ module Google
|
|
|
1684
1967
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1685
1968
|
# that support this type.
|
|
1686
1969
|
#
|
|
1687
|
-
# NOTE: This field is in Beta.
|
|
1688
|
-
#
|
|
1689
1970
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1690
1971
|
# @yieldparam response [::Google::Cloud::Kms::V1::DecryptResponse]
|
|
1691
1972
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
@@ -1720,7 +2001,9 @@ module Google
|
|
|
1720
2001
|
options.apply_defaults timeout: @config.rpcs.decrypt.timeout,
|
|
1721
2002
|
metadata: metadata,
|
|
1722
2003
|
retry_policy: @config.rpcs.decrypt.retry_policy
|
|
1723
|
-
|
|
2004
|
+
|
|
2005
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2006
|
+
metadata: @config.metadata,
|
|
1724
2007
|
retry_policy: @config.retry_policy
|
|
1725
2008
|
|
|
1726
2009
|
@key_management_service_stub.call_rpc :decrypt, request, options: options do |response, operation|
|
|
@@ -1746,7 +2029,7 @@ module Google
|
|
|
1746
2029
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1747
2030
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1748
2031
|
#
|
|
1749
|
-
# @overload asymmetric_sign(name: nil, digest: nil, digest_crc32c: nil)
|
|
2032
|
+
# @overload asymmetric_sign(name: nil, digest: nil, digest_crc32c: nil, data: nil, data_crc32c: nil)
|
|
1750
2033
|
# Pass arguments to `asymmetric_sign` via keyword arguments. Note that at
|
|
1751
2034
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1752
2035
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
@@ -1754,7 +2037,7 @@ module Google
|
|
|
1754
2037
|
# @param name [::String]
|
|
1755
2038
|
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for signing.
|
|
1756
2039
|
# @param digest [::Google::Cloud::Kms::V1::Digest, ::Hash]
|
|
1757
|
-
#
|
|
2040
|
+
# Optional. The digest of the data to sign. The digest must be produced with
|
|
1758
2041
|
# the same digest algorithm as specified by the key version's
|
|
1759
2042
|
# {::Google::Cloud::Kms::V1::CryptoKeyVersion#algorithm algorithm}.
|
|
1760
2043
|
# @param digest_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
@@ -1771,8 +2054,24 @@ module Google
|
|
|
1771
2054
|
# different languages. However, it is a non-negative integer, which will
|
|
1772
2055
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1773
2056
|
# that support this type.
|
|
1774
|
-
#
|
|
1775
|
-
#
|
|
2057
|
+
# @param data [::String]
|
|
2058
|
+
# Optional. This field will only be honored for RAW_PKCS1 keys.
|
|
2059
|
+
# The data to sign. A digest is computed over the data that will be signed,
|
|
2060
|
+
# PKCS #1 padding is applied to the digest directly and then encrypted.
|
|
2061
|
+
# @param data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2062
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::AsymmetricSignRequest#data AsymmetricSignRequest.data}. If
|
|
2063
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2064
|
+
# received {::Google::Cloud::Kms::V1::AsymmetricSignRequest#data AsymmetricSignRequest.data} using this checksum.
|
|
2065
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2066
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2067
|
+
# CRC32C({::Google::Cloud::Kms::V1::AsymmetricSignRequest#data AsymmetricSignRequest.data}) is equal to
|
|
2068
|
+
# {::Google::Cloud::Kms::V1::AsymmetricSignRequest#data_crc32c AsymmetricSignRequest.data_crc32c}, and if so, perform a limited
|
|
2069
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2070
|
+
# computation of the CRC32C checksum.
|
|
2071
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2072
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2073
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2074
|
+
# that support this type.
|
|
1776
2075
|
#
|
|
1777
2076
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1778
2077
|
# @yieldparam response [::Google::Cloud::Kms::V1::AsymmetricSignResponse]
|
|
@@ -1808,7 +2107,9 @@ module Google
|
|
|
1808
2107
|
options.apply_defaults timeout: @config.rpcs.asymmetric_sign.timeout,
|
|
1809
2108
|
metadata: metadata,
|
|
1810
2109
|
retry_policy: @config.rpcs.asymmetric_sign.retry_policy
|
|
1811
|
-
|
|
2110
|
+
|
|
2111
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2112
|
+
metadata: @config.metadata,
|
|
1812
2113
|
retry_policy: @config.retry_policy
|
|
1813
2114
|
|
|
1814
2115
|
@key_management_service_stub.call_rpc :asymmetric_sign, request, options: options do |response, operation|
|
|
@@ -1860,8 +2161,6 @@ module Google
|
|
|
1860
2161
|
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
1861
2162
|
# that support this type.
|
|
1862
2163
|
#
|
|
1863
|
-
# NOTE: This field is in Beta.
|
|
1864
|
-
#
|
|
1865
2164
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1866
2165
|
# @yieldparam response [::Google::Cloud::Kms::V1::AsymmetricDecryptResponse]
|
|
1867
2166
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
@@ -1896,7 +2195,9 @@ module Google
|
|
|
1896
2195
|
options.apply_defaults timeout: @config.rpcs.asymmetric_decrypt.timeout,
|
|
1897
2196
|
metadata: metadata,
|
|
1898
2197
|
retry_policy: @config.rpcs.asymmetric_decrypt.retry_policy
|
|
1899
|
-
|
|
2198
|
+
|
|
2199
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2200
|
+
metadata: @config.metadata,
|
|
1900
2201
|
retry_policy: @config.retry_policy
|
|
1901
2202
|
|
|
1902
2203
|
@key_management_service_stub.call_rpc :asymmetric_decrypt, request, options: options do |response, operation|
|
|
@@ -1908,49 +2209,63 @@ module Google
|
|
|
1908
2209
|
end
|
|
1909
2210
|
|
|
1910
2211
|
##
|
|
1911
|
-
#
|
|
1912
|
-
#
|
|
1913
|
-
#
|
|
1914
|
-
# {::Google::Cloud::Kms::V1::CryptoKey::CryptoKeyPurpose::ENCRYPT_DECRYPT ENCRYPT_DECRYPT}.
|
|
2212
|
+
# Signs data using a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with {::Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey.purpose}
|
|
2213
|
+
# MAC, producing a tag that can be verified by another source with the
|
|
2214
|
+
# same key.
|
|
1915
2215
|
#
|
|
1916
|
-
# @overload
|
|
1917
|
-
# Pass arguments to `
|
|
1918
|
-
# {::Google::Cloud::Kms::V1::
|
|
2216
|
+
# @overload mac_sign(request, options = nil)
|
|
2217
|
+
# Pass arguments to `mac_sign` via a request object, either of type
|
|
2218
|
+
# {::Google::Cloud::Kms::V1::MacSignRequest} or an equivalent Hash.
|
|
1919
2219
|
#
|
|
1920
|
-
# @param request [::Google::Cloud::Kms::V1::
|
|
2220
|
+
# @param request [::Google::Cloud::Kms::V1::MacSignRequest, ::Hash]
|
|
1921
2221
|
# A request object representing the call parameters. Required. To specify no
|
|
1922
2222
|
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
1923
2223
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
1924
2224
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
1925
2225
|
#
|
|
1926
|
-
# @overload
|
|
1927
|
-
# Pass arguments to `
|
|
2226
|
+
# @overload mac_sign(name: nil, data: nil, data_crc32c: nil)
|
|
2227
|
+
# Pass arguments to `mac_sign` via keyword arguments. Note that at
|
|
1928
2228
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
1929
2229
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
1930
2230
|
#
|
|
1931
2231
|
# @param name [::String]
|
|
1932
|
-
# Required. The resource name of the {::Google::Cloud::Kms::V1::
|
|
1933
|
-
# @param
|
|
1934
|
-
# Required. The
|
|
2232
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for signing.
|
|
2233
|
+
# @param data [::String]
|
|
2234
|
+
# Required. The data to sign. The MAC tag is computed over this data field based on
|
|
2235
|
+
# the specific algorithm.
|
|
2236
|
+
# @param data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2237
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data}. If
|
|
2238
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2239
|
+
# received {::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data} using this checksum.
|
|
2240
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2241
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2242
|
+
# CRC32C({::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data}) is equal to
|
|
2243
|
+
# {::Google::Cloud::Kms::V1::MacSignRequest#data_crc32c MacSignRequest.data_crc32c}, and if so, perform a limited
|
|
2244
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2245
|
+
# computation of the CRC32C checksum.
|
|
2246
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2247
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2248
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2249
|
+
# that support this type.
|
|
1935
2250
|
#
|
|
1936
2251
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
1937
|
-
# @yieldparam response [::Google::Cloud::Kms::V1::
|
|
2252
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::MacSignResponse]
|
|
1938
2253
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
1939
2254
|
#
|
|
1940
|
-
# @return [::Google::Cloud::Kms::V1::
|
|
2255
|
+
# @return [::Google::Cloud::Kms::V1::MacSignResponse]
|
|
1941
2256
|
#
|
|
1942
2257
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
1943
2258
|
#
|
|
1944
|
-
def
|
|
2259
|
+
def mac_sign request, options = nil
|
|
1945
2260
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
1946
2261
|
|
|
1947
|
-
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::
|
|
2262
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::MacSignRequest
|
|
1948
2263
|
|
|
1949
2264
|
# Converts hash and nil to an options object
|
|
1950
2265
|
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
1951
2266
|
|
|
1952
2267
|
# Customize the options with defaults
|
|
1953
|
-
metadata = @config.rpcs.
|
|
2268
|
+
metadata = @config.rpcs.mac_sign.metadata.to_h
|
|
1954
2269
|
|
|
1955
2270
|
# Set x-goog-api-client and x-goog-user-project headers
|
|
1956
2271
|
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
@@ -1964,13 +2279,15 @@ module Google
|
|
|
1964
2279
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
1965
2280
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
1966
2281
|
|
|
1967
|
-
options.apply_defaults timeout: @config.rpcs.
|
|
2282
|
+
options.apply_defaults timeout: @config.rpcs.mac_sign.timeout,
|
|
1968
2283
|
metadata: metadata,
|
|
1969
|
-
retry_policy: @config.rpcs.
|
|
1970
|
-
|
|
2284
|
+
retry_policy: @config.rpcs.mac_sign.retry_policy
|
|
2285
|
+
|
|
2286
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2287
|
+
metadata: @config.metadata,
|
|
1971
2288
|
retry_policy: @config.retry_policy
|
|
1972
2289
|
|
|
1973
|
-
@key_management_service_stub.call_rpc :
|
|
2290
|
+
@key_management_service_stub.call_rpc :mac_sign, request, options: options do |response, operation|
|
|
1974
2291
|
yield response, operation if block_given?
|
|
1975
2292
|
return response
|
|
1976
2293
|
end
|
|
@@ -1979,55 +2296,79 @@ module Google
|
|
|
1979
2296
|
end
|
|
1980
2297
|
|
|
1981
2298
|
##
|
|
1982
|
-
#
|
|
2299
|
+
# Verifies MAC tag using a {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} with {::Google::Cloud::Kms::V1::CryptoKey#purpose CryptoKey.purpose}
|
|
2300
|
+
# MAC, and returns a response that indicates whether or not the verification
|
|
2301
|
+
# was successful.
|
|
1983
2302
|
#
|
|
1984
|
-
#
|
|
1985
|
-
#
|
|
1986
|
-
#
|
|
1987
|
-
# hours in the future, at which point the {::Google::Cloud::Kms::V1::CryptoKeyVersion#state state}
|
|
1988
|
-
# will be changed to
|
|
1989
|
-
# {::Google::Cloud::Kms::V1::CryptoKeyVersion::CryptoKeyVersionState::DESTROYED DESTROYED}, and the key
|
|
1990
|
-
# material will be irrevocably destroyed.
|
|
1991
|
-
#
|
|
1992
|
-
# Before the {::Google::Cloud::Kms::V1::CryptoKeyVersion#destroy_time destroy_time} is reached,
|
|
1993
|
-
# {::Google::Cloud::Kms::V1::KeyManagementService::Client#restore_crypto_key_version RestoreCryptoKeyVersion} may be called to reverse the process.
|
|
2303
|
+
# @overload mac_verify(request, options = nil)
|
|
2304
|
+
# Pass arguments to `mac_verify` via a request object, either of type
|
|
2305
|
+
# {::Google::Cloud::Kms::V1::MacVerifyRequest} or an equivalent Hash.
|
|
1994
2306
|
#
|
|
1995
|
-
#
|
|
1996
|
-
# Pass arguments to `destroy_crypto_key_version` via a request object, either of type
|
|
1997
|
-
# {::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest} or an equivalent Hash.
|
|
1998
|
-
#
|
|
1999
|
-
# @param request [::Google::Cloud::Kms::V1::DestroyCryptoKeyVersionRequest, ::Hash]
|
|
2307
|
+
# @param request [::Google::Cloud::Kms::V1::MacVerifyRequest, ::Hash]
|
|
2000
2308
|
# A request object representing the call parameters. Required. To specify no
|
|
2001
2309
|
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
2002
2310
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
2003
2311
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
2004
2312
|
#
|
|
2005
|
-
# @overload
|
|
2006
|
-
# Pass arguments to `
|
|
2313
|
+
# @overload mac_verify(name: nil, data: nil, data_crc32c: nil, mac: nil, mac_crc32c: nil)
|
|
2314
|
+
# Pass arguments to `mac_verify` via keyword arguments. Note that at
|
|
2007
2315
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
2008
2316
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
2009
2317
|
#
|
|
2010
2318
|
# @param name [::String]
|
|
2011
|
-
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to
|
|
2319
|
+
# Required. The resource name of the {::Google::Cloud::Kms::V1::CryptoKeyVersion CryptoKeyVersion} to use for verification.
|
|
2320
|
+
# @param data [::String]
|
|
2321
|
+
# Required. The data used previously as a {::Google::Cloud::Kms::V1::MacSignRequest#data MacSignRequest.data} to generate the MAC
|
|
2322
|
+
# tag.
|
|
2323
|
+
# @param data_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2324
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::MacVerifyRequest#data MacVerifyRequest.data}. If
|
|
2325
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2326
|
+
# received {::Google::Cloud::Kms::V1::MacVerifyRequest#data MacVerifyRequest.data} using this checksum.
|
|
2327
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2328
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2329
|
+
# CRC32C({::Google::Cloud::Kms::V1::MacVerifyRequest#data MacVerifyRequest.data}) is equal to
|
|
2330
|
+
# {::Google::Cloud::Kms::V1::MacVerifyRequest#data_crc32c MacVerifyRequest.data_crc32c}, and if so, perform a limited
|
|
2331
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2332
|
+
# computation of the CRC32C checksum.
|
|
2333
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2334
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2335
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2336
|
+
# that support this type.
|
|
2337
|
+
# @param mac [::String]
|
|
2338
|
+
# Required. The signature to verify.
|
|
2339
|
+
# @param mac_crc32c [::Google::Protobuf::Int64Value, ::Hash]
|
|
2340
|
+
# Optional. An optional CRC32C checksum of the {::Google::Cloud::Kms::V1::MacVerifyRequest#mac MacVerifyRequest.mac}. If
|
|
2341
|
+
# specified, {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will verify the integrity of the
|
|
2342
|
+
# received {::Google::Cloud::Kms::V1::MacVerifyRequest#mac MacVerifyRequest.mac} using this checksum.
|
|
2343
|
+
# {::Google::Cloud::Kms::V1::KeyManagementService::Client KeyManagementService} will report an error if the checksum verification
|
|
2344
|
+
# fails. If you receive a checksum error, your client should verify that
|
|
2345
|
+
# CRC32C([MacVerifyRequest.tag][]) is equal to
|
|
2346
|
+
# {::Google::Cloud::Kms::V1::MacVerifyRequest#mac_crc32c MacVerifyRequest.mac_crc32c}, and if so, perform a limited
|
|
2347
|
+
# number of retries. A persistent mismatch may indicate an issue in your
|
|
2348
|
+
# computation of the CRC32C checksum.
|
|
2349
|
+
# Note: This field is defined as int64 for reasons of compatibility across
|
|
2350
|
+
# different languages. However, it is a non-negative integer, which will
|
|
2351
|
+
# never exceed 2^32-1, and can be safely downconverted to uint32 in languages
|
|
2352
|
+
# that support this type.
|
|
2012
2353
|
#
|
|
2013
2354
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
2014
|
-
# @yieldparam response [::Google::Cloud::Kms::V1::
|
|
2355
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::MacVerifyResponse]
|
|
2015
2356
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
2016
2357
|
#
|
|
2017
|
-
# @return [::Google::Cloud::Kms::V1::
|
|
2358
|
+
# @return [::Google::Cloud::Kms::V1::MacVerifyResponse]
|
|
2018
2359
|
#
|
|
2019
2360
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
2020
2361
|
#
|
|
2021
|
-
def
|
|
2362
|
+
def mac_verify request, options = nil
|
|
2022
2363
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
2023
2364
|
|
|
2024
|
-
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::
|
|
2365
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::MacVerifyRequest
|
|
2025
2366
|
|
|
2026
2367
|
# Converts hash and nil to an options object
|
|
2027
2368
|
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
2028
2369
|
|
|
2029
2370
|
# Customize the options with defaults
|
|
2030
|
-
metadata = @config.rpcs.
|
|
2371
|
+
metadata = @config.rpcs.mac_verify.metadata.to_h
|
|
2031
2372
|
|
|
2032
2373
|
# Set x-goog-api-client and x-goog-user-project headers
|
|
2033
2374
|
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
@@ -2041,13 +2382,15 @@ module Google
|
|
|
2041
2382
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
2042
2383
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
2043
2384
|
|
|
2044
|
-
options.apply_defaults timeout: @config.rpcs.
|
|
2385
|
+
options.apply_defaults timeout: @config.rpcs.mac_verify.timeout,
|
|
2045
2386
|
metadata: metadata,
|
|
2046
|
-
retry_policy: @config.rpcs.
|
|
2047
|
-
|
|
2387
|
+
retry_policy: @config.rpcs.mac_verify.retry_policy
|
|
2388
|
+
|
|
2389
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2390
|
+
metadata: @config.metadata,
|
|
2048
2391
|
retry_policy: @config.retry_policy
|
|
2049
2392
|
|
|
2050
|
-
@key_management_service_stub.call_rpc :
|
|
2393
|
+
@key_management_service_stub.call_rpc :mac_verify, request, options: options do |response, operation|
|
|
2051
2394
|
yield response, operation if block_given?
|
|
2052
2395
|
return response
|
|
2053
2396
|
end
|
|
@@ -2056,50 +2399,52 @@ module Google
|
|
|
2056
2399
|
end
|
|
2057
2400
|
|
|
2058
2401
|
##
|
|
2059
|
-
#
|
|
2060
|
-
#
|
|
2061
|
-
# state.
|
|
2402
|
+
# Generate random bytes using the Cloud KMS randomness source in the provided
|
|
2403
|
+
# location.
|
|
2062
2404
|
#
|
|
2063
|
-
#
|
|
2064
|
-
#
|
|
2065
|
-
#
|
|
2066
|
-
#
|
|
2067
|
-
# @overload restore_crypto_key_version(request, options = nil)
|
|
2068
|
-
# Pass arguments to `restore_crypto_key_version` via a request object, either of type
|
|
2069
|
-
# {::Google::Cloud::Kms::V1::RestoreCryptoKeyVersionRequest} or an equivalent Hash.
|
|
2405
|
+
# @overload generate_random_bytes(request, options = nil)
|
|
2406
|
+
# Pass arguments to `generate_random_bytes` via a request object, either of type
|
|
2407
|
+
# {::Google::Cloud::Kms::V1::GenerateRandomBytesRequest} or an equivalent Hash.
|
|
2070
2408
|
#
|
|
2071
|
-
# @param request [::Google::Cloud::Kms::V1::
|
|
2409
|
+
# @param request [::Google::Cloud::Kms::V1::GenerateRandomBytesRequest, ::Hash]
|
|
2072
2410
|
# A request object representing the call parameters. Required. To specify no
|
|
2073
2411
|
# parameters, or to keep all the default parameter values, pass an empty Hash.
|
|
2074
2412
|
# @param options [::Gapic::CallOptions, ::Hash]
|
|
2075
2413
|
# Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
|
|
2076
2414
|
#
|
|
2077
|
-
# @overload
|
|
2078
|
-
# Pass arguments to `
|
|
2415
|
+
# @overload generate_random_bytes(location: nil, length_bytes: nil, protection_level: nil)
|
|
2416
|
+
# Pass arguments to `generate_random_bytes` via keyword arguments. Note that at
|
|
2079
2417
|
# least one keyword argument is required. To specify no parameters, or to keep all
|
|
2080
2418
|
# the default parameter values, pass an empty Hash as a request object (see above).
|
|
2081
2419
|
#
|
|
2082
|
-
# @param
|
|
2083
|
-
#
|
|
2420
|
+
# @param location [::String]
|
|
2421
|
+
# The project-specific location in which to generate random bytes.
|
|
2422
|
+
# For example, "projects/my-project/locations/us-central1".
|
|
2423
|
+
# @param length_bytes [::Integer]
|
|
2424
|
+
# The length in bytes of the amount of randomness to retrieve. Minimum 8
|
|
2425
|
+
# bytes, maximum 1024 bytes.
|
|
2426
|
+
# @param protection_level [::Google::Cloud::Kms::V1::ProtectionLevel]
|
|
2427
|
+
# The {::Google::Cloud::Kms::V1::ProtectionLevel ProtectionLevel} to use when generating the random data. Defaults to
|
|
2428
|
+
# {::Google::Cloud::Kms::V1::ProtectionLevel::SOFTWARE SOFTWARE}.
|
|
2084
2429
|
#
|
|
2085
2430
|
# @yield [response, operation] Access the result along with the RPC operation
|
|
2086
|
-
# @yieldparam response [::Google::Cloud::Kms::V1::
|
|
2431
|
+
# @yieldparam response [::Google::Cloud::Kms::V1::GenerateRandomBytesResponse]
|
|
2087
2432
|
# @yieldparam operation [::GRPC::ActiveCall::Operation]
|
|
2088
2433
|
#
|
|
2089
|
-
# @return [::Google::Cloud::Kms::V1::
|
|
2434
|
+
# @return [::Google::Cloud::Kms::V1::GenerateRandomBytesResponse]
|
|
2090
2435
|
#
|
|
2091
2436
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
2092
2437
|
#
|
|
2093
|
-
def
|
|
2438
|
+
def generate_random_bytes request, options = nil
|
|
2094
2439
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
2095
2440
|
|
|
2096
|
-
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::
|
|
2441
|
+
request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::Kms::V1::GenerateRandomBytesRequest
|
|
2097
2442
|
|
|
2098
2443
|
# Converts hash and nil to an options object
|
|
2099
2444
|
options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
|
|
2100
2445
|
|
|
2101
2446
|
# Customize the options with defaults
|
|
2102
|
-
metadata = @config.rpcs.
|
|
2447
|
+
metadata = @config.rpcs.generate_random_bytes.metadata.to_h
|
|
2103
2448
|
|
|
2104
2449
|
# Set x-goog-api-client and x-goog-user-project headers
|
|
2105
2450
|
metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
|
|
@@ -2108,18 +2453,20 @@ module Google
|
|
|
2108
2453
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
2109
2454
|
|
|
2110
2455
|
header_params = {
|
|
2111
|
-
"
|
|
2456
|
+
"location" => request.location
|
|
2112
2457
|
}
|
|
2113
2458
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
2114
2459
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
2115
2460
|
|
|
2116
|
-
options.apply_defaults timeout: @config.rpcs.
|
|
2461
|
+
options.apply_defaults timeout: @config.rpcs.generate_random_bytes.timeout,
|
|
2117
2462
|
metadata: metadata,
|
|
2118
|
-
retry_policy: @config.rpcs.
|
|
2119
|
-
|
|
2463
|
+
retry_policy: @config.rpcs.generate_random_bytes.retry_policy
|
|
2464
|
+
|
|
2465
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2466
|
+
metadata: @config.metadata,
|
|
2120
2467
|
retry_policy: @config.retry_policy
|
|
2121
2468
|
|
|
2122
|
-
@key_management_service_stub.call_rpc :
|
|
2469
|
+
@key_management_service_stub.call_rpc :generate_random_bytes, request, options: options do |response, operation|
|
|
2123
2470
|
yield response, operation if block_given?
|
|
2124
2471
|
return response
|
|
2125
2472
|
end
|
|
@@ -2140,22 +2487,21 @@ module Google
|
|
|
2140
2487
|
# Configuration can be applied globally to all clients, or to a single client
|
|
2141
2488
|
# on construction.
|
|
2142
2489
|
#
|
|
2143
|
-
#
|
|
2144
|
-
#
|
|
2145
|
-
# To modify the global config, setting the timeout for list_key_rings
|
|
2146
|
-
# to 20 seconds, and all remaining timeouts to 10 seconds:
|
|
2490
|
+
# @example
|
|
2147
2491
|
#
|
|
2148
|
-
#
|
|
2149
|
-
#
|
|
2150
|
-
#
|
|
2151
|
-
#
|
|
2492
|
+
# # Modify the global config, setting the timeout for
|
|
2493
|
+
# # list_key_rings to 20 seconds,
|
|
2494
|
+
# # and all remaining timeouts to 10 seconds.
|
|
2495
|
+
# ::Google::Cloud::Kms::V1::KeyManagementService::Client.configure do |config|
|
|
2496
|
+
# config.timeout = 10.0
|
|
2497
|
+
# config.rpcs.list_key_rings.timeout = 20.0
|
|
2498
|
+
# end
|
|
2152
2499
|
#
|
|
2153
|
-
#
|
|
2154
|
-
#
|
|
2155
|
-
#
|
|
2156
|
-
#
|
|
2157
|
-
#
|
|
2158
|
-
# end
|
|
2500
|
+
# # Apply the above configuration only to a new client.
|
|
2501
|
+
# client = ::Google::Cloud::Kms::V1::KeyManagementService::Client.new do |config|
|
|
2502
|
+
# config.timeout = 10.0
|
|
2503
|
+
# config.rpcs.list_key_rings.timeout = 20.0
|
|
2504
|
+
# end
|
|
2159
2505
|
#
|
|
2160
2506
|
# @!attribute [rw] endpoint
|
|
2161
2507
|
# The hostname or hostname:port of the service endpoint.
|
|
@@ -2344,6 +2690,21 @@ module Google
|
|
|
2344
2690
|
#
|
|
2345
2691
|
attr_reader :update_crypto_key_version
|
|
2346
2692
|
##
|
|
2693
|
+
# RPC-specific configuration for `update_crypto_key_primary_version`
|
|
2694
|
+
# @return [::Gapic::Config::Method]
|
|
2695
|
+
#
|
|
2696
|
+
attr_reader :update_crypto_key_primary_version
|
|
2697
|
+
##
|
|
2698
|
+
# RPC-specific configuration for `destroy_crypto_key_version`
|
|
2699
|
+
# @return [::Gapic::Config::Method]
|
|
2700
|
+
#
|
|
2701
|
+
attr_reader :destroy_crypto_key_version
|
|
2702
|
+
##
|
|
2703
|
+
# RPC-specific configuration for `restore_crypto_key_version`
|
|
2704
|
+
# @return [::Gapic::Config::Method]
|
|
2705
|
+
#
|
|
2706
|
+
attr_reader :restore_crypto_key_version
|
|
2707
|
+
##
|
|
2347
2708
|
# RPC-specific configuration for `encrypt`
|
|
2348
2709
|
# @return [::Gapic::Config::Method]
|
|
2349
2710
|
#
|
|
@@ -2364,20 +2725,20 @@ module Google
|
|
|
2364
2725
|
#
|
|
2365
2726
|
attr_reader :asymmetric_decrypt
|
|
2366
2727
|
##
|
|
2367
|
-
# RPC-specific configuration for `
|
|
2728
|
+
# RPC-specific configuration for `mac_sign`
|
|
2368
2729
|
# @return [::Gapic::Config::Method]
|
|
2369
2730
|
#
|
|
2370
|
-
attr_reader :
|
|
2731
|
+
attr_reader :mac_sign
|
|
2371
2732
|
##
|
|
2372
|
-
# RPC-specific configuration for `
|
|
2733
|
+
# RPC-specific configuration for `mac_verify`
|
|
2373
2734
|
# @return [::Gapic::Config::Method]
|
|
2374
2735
|
#
|
|
2375
|
-
attr_reader :
|
|
2736
|
+
attr_reader :mac_verify
|
|
2376
2737
|
##
|
|
2377
|
-
# RPC-specific configuration for `
|
|
2738
|
+
# RPC-specific configuration for `generate_random_bytes`
|
|
2378
2739
|
# @return [::Gapic::Config::Method]
|
|
2379
2740
|
#
|
|
2380
|
-
attr_reader :
|
|
2741
|
+
attr_reader :generate_random_bytes
|
|
2381
2742
|
|
|
2382
2743
|
# @private
|
|
2383
2744
|
def initialize parent_rpcs = nil
|
|
@@ -2413,6 +2774,12 @@ module Google
|
|
|
2413
2774
|
@update_crypto_key = ::Gapic::Config::Method.new update_crypto_key_config
|
|
2414
2775
|
update_crypto_key_version_config = parent_rpcs.update_crypto_key_version if parent_rpcs.respond_to? :update_crypto_key_version
|
|
2415
2776
|
@update_crypto_key_version = ::Gapic::Config::Method.new update_crypto_key_version_config
|
|
2777
|
+
update_crypto_key_primary_version_config = parent_rpcs.update_crypto_key_primary_version if parent_rpcs.respond_to? :update_crypto_key_primary_version
|
|
2778
|
+
@update_crypto_key_primary_version = ::Gapic::Config::Method.new update_crypto_key_primary_version_config
|
|
2779
|
+
destroy_crypto_key_version_config = parent_rpcs.destroy_crypto_key_version if parent_rpcs.respond_to? :destroy_crypto_key_version
|
|
2780
|
+
@destroy_crypto_key_version = ::Gapic::Config::Method.new destroy_crypto_key_version_config
|
|
2781
|
+
restore_crypto_key_version_config = parent_rpcs.restore_crypto_key_version if parent_rpcs.respond_to? :restore_crypto_key_version
|
|
2782
|
+
@restore_crypto_key_version = ::Gapic::Config::Method.new restore_crypto_key_version_config
|
|
2416
2783
|
encrypt_config = parent_rpcs.encrypt if parent_rpcs.respond_to? :encrypt
|
|
2417
2784
|
@encrypt = ::Gapic::Config::Method.new encrypt_config
|
|
2418
2785
|
decrypt_config = parent_rpcs.decrypt if parent_rpcs.respond_to? :decrypt
|
|
@@ -2421,12 +2788,12 @@ module Google
|
|
|
2421
2788
|
@asymmetric_sign = ::Gapic::Config::Method.new asymmetric_sign_config
|
|
2422
2789
|
asymmetric_decrypt_config = parent_rpcs.asymmetric_decrypt if parent_rpcs.respond_to? :asymmetric_decrypt
|
|
2423
2790
|
@asymmetric_decrypt = ::Gapic::Config::Method.new asymmetric_decrypt_config
|
|
2424
|
-
|
|
2425
|
-
@
|
|
2426
|
-
|
|
2427
|
-
@
|
|
2428
|
-
|
|
2429
|
-
@
|
|
2791
|
+
mac_sign_config = parent_rpcs.mac_sign if parent_rpcs.respond_to? :mac_sign
|
|
2792
|
+
@mac_sign = ::Gapic::Config::Method.new mac_sign_config
|
|
2793
|
+
mac_verify_config = parent_rpcs.mac_verify if parent_rpcs.respond_to? :mac_verify
|
|
2794
|
+
@mac_verify = ::Gapic::Config::Method.new mac_verify_config
|
|
2795
|
+
generate_random_bytes_config = parent_rpcs.generate_random_bytes if parent_rpcs.respond_to? :generate_random_bytes
|
|
2796
|
+
@generate_random_bytes = ::Gapic::Config::Method.new generate_random_bytes_config
|
|
2430
2797
|
|
|
2431
2798
|
yield self if block_given?
|
|
2432
2799
|
end
|