npm - @aws-sdk/client-kms - Versions diffs - 3.332.0 → 3.334.0 - Mend

@aws-sdk/client-kms 3.332.0 → 3.334.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist-types/commands/DecryptCommand.d.ts CHANGED Viewed

@@ -140,6 +140,7 @@ export interface DecryptCommandOutput extends DecryptResponse, __MetadataBearer
  * //   KeyId: "STRING_VALUE",
  * //   Plaintext: "BLOB_VALUE",
  * //   EncryptionAlgorithm: "SYMMETRIC_DEFAULT" || "RSAES_OAEP_SHA_1" || "RSAES_OAEP_SHA_256" || "SM2PKE",
+ * //   CiphertextForRecipient: "BLOB_VALUE",
  * // };
  *
  * ```
@@ -290,49 +291,6 @@ export interface DecryptCommandOutput extends DecryptResponse, __MetadataBearer
  * // example id: to-decrypt-data-for-a-nitro-enclave-2
  * ```
  *
- * @example To decrypt data with an asymmetric encryption KMS key
- * ```javascript
- * // The following example decrypts data that was encrypted with an asymmetric encryption KMS key. When the KMS encryption key is asymmetric, you must specify the KMS key ID and the encryption algorithm that was used to encrypt the data.
- * const input = {
- *   "CiphertextBlob": "<binary data>",
- *   "EncryptionAlgorithm": "RSAES_OAEP_SHA_256",
- *   "KeyId": "0987dcba-09fe-87dc-65ba-ab0987654321"
- * };
- * const command = new DecryptCommand(input);
- * const response = await client.send(command);
- * /* response ==
- * {
- *   "EncryptionAlgorithm": "RSAES_OAEP_SHA_256",
- *   "KeyId": "arn:aws:kms:us-west-2:111122223333:key/0987dcba-09fe-87dc-65ba-ab0987654321",
- *   "Plaintext": "<binary data>"
- * }
- * *\/
- * // example id: to-decrypt-data-2
- * ```
- *
- * @example To decrypt data for a Nitro enclave
- * ```javascript
- * // The following Decrypt example includes the Recipient parameter with a signed attestation document from an AWS Nitro enclave. Instead of returning the decrypted data in plaintext (Plaintext), the operation returns the decrypted data encrypted by the public key from the attestation document (CiphertextForRecipient).
- * const input = {
- *   "CiphertextBlob": "<binary data>",
- *   "KeyId": "arn:aws:kms:us-west-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab",
- *   "Recipient": {
- *     "AttestationDocument": "<attestation document>",
- *     "KeyEncryptionAlgorithm": "RSAES_OAEP_SHA_256"
- *   }
- * };
- * const command = new DecryptCommand(input);
- * const response = await client.send(command);
- * /* response ==
- * {
- *   "CiphertextForRecipient": "<binary data>",
- *   "KeyId": "arn:aws:kms:us-west-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab",
- *   "Plaintext": ""
- * }
- * *\/
- * // example id: to-decrypt-data-for-a-nitro-enclave-2
- * ```
- *
  */
 export declare class DecryptCommand extends $Command<DecryptCommandInput, DecryptCommandOutput, KMSClientResolvedConfig> {
     readonly input: DecryptCommandInput;

package/dist-types/commands/DisconnectCustomKeyStoreCommand.d.ts CHANGED Viewed

@@ -150,17 +150,6 @@ export interface DisconnectCustomKeyStoreCommandOutput extends DisconnectCustomK
  * // example id: to-disconnect-a-custom-key-store-from-its-cloudhsm-cluster-234abcdefABC
  * ```
  *
- * @example To disconnect a custom key store from its CloudHSM cluster
- * ```javascript
- * // This example disconnects an AWS KMS custom key store from its backing key store. For an AWS CloudHSM key store, it disconnects the key store from its AWS CloudHSM cluster. For an external key store, it disconnects the key store from the external key store proxy that communicates with your external key manager. This operation doesn't return any data. To verify that the custom key store is disconnected, use the <code>DescribeCustomKeyStores</code> operation.
- * const input = {
- *   "CustomKeyStoreId": "cks-1234567890abcdef0"
- * };
- * const command = new DisconnectCustomKeyStoreCommand(input);
- * await client.send(command);
- * // example id: to-disconnect-a-custom-key-store-from-its-cloudhsm-cluster-234abcdefABC
- * ```
- *
  */
 export declare class DisconnectCustomKeyStoreCommand extends $Command<DisconnectCustomKeyStoreCommandInput, DisconnectCustomKeyStoreCommandOutput, KMSClientResolvedConfig> {
     readonly input: DisconnectCustomKeyStoreCommandInput;

package/dist-types/commands/EncryptCommand.d.ts CHANGED Viewed

@@ -265,26 +265,6 @@ export interface EncryptCommandOutput extends EncryptResponse, __MetadataBearer
  * // example id: to-encrypt-data-2
  * ```
  *
- * @example To encrypt data with an asymmetric encryption KMS key
- * ```javascript
- * // The following example encrypts data with the specified RSA asymmetric KMS key. When you encrypt with an asymmetric key, you must specify the encryption algorithm.
- * const input = {
- *   "EncryptionAlgorithm": "RSAES_OAEP_SHA_256",
- *   "KeyId": "0987dcba-09fe-87dc-65ba-ab0987654321",
- *   "Plaintext": "<binary data>"
- * };
- * const command = new EncryptCommand(input);
- * const response = await client.send(command);
- * /* response ==
- * {
- *   "CiphertextBlob": "<binary data>",
- *   "EncryptionAlgorithm": "RSAES_OAEP_SHA_256",
- *   "KeyId": "arn:aws:kms:us-west-2:111122223333:key/0987dcba-09fe-87dc-65ba-ab0987654321"
- * }
- * *\/
- * // example id: to-encrypt-data-2
- * ```
- *
  */
 export declare class EncryptCommand extends $Command<EncryptCommandInput, EncryptCommandOutput, KMSClientResolvedConfig> {
     readonly input: EncryptCommandInput;

package/dist-types/commands/GenerateDataKeyCommand.d.ts CHANGED Viewed

@@ -148,6 +148,7 @@ export interface GenerateDataKeyCommandOutput extends GenerateDataKeyResponse, _
  * //   CiphertextBlob: "BLOB_VALUE",
  * //   Plaintext: "BLOB_VALUE",
  * //   KeyId: "STRING_VALUE",
+ * //   CiphertextForRecipient: "BLOB_VALUE",
  * // };
  *
  * ```
@@ -265,30 +266,6 @@ export interface GenerateDataKeyCommandOutput extends GenerateDataKeyResponse, _
  * // example id: to-generate-a-data-key-for-a-nitro-enclave-2
  * ```
  *
- * @example To generate a data key pair for a Nitro enclave
- * ```javascript
- * // The following example includes the Recipient parameter with a signed attestation document from an AWS Nitro enclave. Instead of returning a copy of the data key encrypted by the KMS key and a plaintext copy of the data key, GenerateDataKey returns one copy of the data key encrypted by the KMS key (CiphertextBlob) and one copy of the data key encrypted by the public key from the attestation document (CiphertextForRecipient). The operation doesn't return a plaintext data key.
- * const input = {
- *   "KeyId": "arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab",
- *   "KeySpec": "AES_256",
- *   "Recipient": {
- *     "AttestationDocument": "<attestation document>",
- *     "KeyEncryptionAlgorithm": "RSAES_OAEP_SHA_256"
- *   }
- * };
- * const command = new GenerateDataKeyCommand(input);
- * const response = await client.send(command);
- * /* response ==
- * {
- *   "CiphertextBlob": "<binary data>",
- *   "CiphertextForRecipient": "<binary data>",
- *   "KeyId": "arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab",
- *   "Plaintext": ""
- * }
- * *\/
- * // example id: to-generate-a-data-key-for-a-nitro-enclave-2
- * ```
- *
  */
 export declare class GenerateDataKeyCommand extends $Command<GenerateDataKeyCommandInput, GenerateDataKeyCommandOutput, KMSClientResolvedConfig> {
     readonly input: GenerateDataKeyCommandInput;

package/dist-types/commands/GenerateDataKeyPairCommand.d.ts CHANGED Viewed

@@ -127,6 +127,7 @@ export interface GenerateDataKeyPairCommandOutput extends GenerateDataKeyPairRes
  * //   PublicKey: "BLOB_VALUE",
  * //   KeyId: "STRING_VALUE",
  * //   KeyPairSpec: "RSA_2048" || "RSA_3072" || "RSA_4096" || "ECC_NIST_P256" || "ECC_NIST_P384" || "ECC_NIST_P521" || "ECC_SECG_P256K1" || "SM2",
+ * //   CiphertextForRecipient: "BLOB_VALUE",
  * // };
  *
  * ```
@@ -252,32 +253,6 @@ export interface GenerateDataKeyPairCommandOutput extends GenerateDataKeyPairRes
  * // example id: to-generate-a-data-key-pair-for-a-nitro-enclave-2
  * ```
  *
- * @example To generate a data key pair for a Nitro enclave
- * ```javascript
- * // The following example includes the Recipient parameter with a signed attestation document from an AWS Nitro enclave. Instead of returning a plaintext copy of the private data key, GenerateDataKeyPair returns a copy of the private data key encrypted by the public key from the attestation document (CiphertextForRecipient). It returns the public data key (PublicKey) and a copy of private data key encrypted under the specified KMS key (PrivateKeyCiphertextBlob), as usual, but plaintext private data key field (PrivateKeyPlaintext) is null or empty.
- * const input = {
- *   "KeyId": "arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab",
- *   "KeyPairSpec": "RSA_3072",
- *   "Recipient": {
- *     "AttestationDocument": "<attestation document>",
- *     "KeyEncryptionAlgorithm": "RSAES_OAEP_SHA_256"
- *   }
- * };
- * const command = new GenerateDataKeyPairCommand(input);
- * const response = await client.send(command);
- * /* response ==
- * {
- *   "CiphertextForRecipient": "<binary data>",
- *   "KeyId": "arn:aws:kms:us-west-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab",
- *   "KeyPairSpec": "RSA_3072",
- *   "PrivateKeyCiphertextBlob": "<binary data>",
- *   "PrivateKeyPlaintext": "",
- *   "PublicKey": "<binary data>"
- * }
- * *\/
- * // example id: to-generate-a-data-key-pair-for-a-nitro-enclave-2
- * ```
- *
  */
 export declare class GenerateDataKeyPairCommand extends $Command<GenerateDataKeyPairCommandInput, GenerateDataKeyPairCommandOutput, KMSClientResolvedConfig> {
     readonly input: GenerateDataKeyPairCommandInput;

package/dist-types/commands/GenerateRandomCommand.d.ts CHANGED Viewed

@@ -58,6 +58,7 @@ export interface GenerateRandomCommandOutput extends GenerateRandomResponse, __M
  * const response = await client.send(command);
  * // { // GenerateRandomResponse
  * //   Plaintext: "BLOB_VALUE",
+ * //   CiphertextForRecipient: "BLOB_VALUE",
  * // };
  *
  * ```
@@ -160,27 +161,6 @@ export interface GenerateRandomCommandOutput extends GenerateRandomResponse, __M
  * // example id: to-generate-random-data-2
  * ```
  *
- * @example To generate random data
- * ```javascript
- * // The following example includes the Recipient parameter with a signed attestation document from an AWS Nitro enclave. Instead of returning a plaintext (unencrypted) byte string, GenerateRandom returns the byte string encrypted by the public key from the enclave's attestation document.
- * const input = {
- *   "NumberOfBytes": 1024,
- *   "Recipient": {
- *     "AttestationDocument": "<attestation document>",
- *     "KeyEncryptionAlgorithm": "RSAES_OAEP_SHA_256"
- *   }
- * };
- * const command = new GenerateRandomCommand(input);
- * const response = await client.send(command);
- * /* response ==
- * {
- *   "CiphertextForRecipient": "<binary data>",
- *   "Plaintext": ""
- * }
- * *\/
- * // example id: to-generate-random-data-2
- * ```
- *
  */
 export declare class GenerateRandomCommand extends $Command<GenerateRandomCommandInput, GenerateRandomCommandOutput, KMSClientResolvedConfig> {
     readonly input: GenerateRandomCommandInput;

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-kms",
   "description": "AWS SDK for JavaScript Kms Client for Node.js, Browser and React Native",
-  "version": "3.332.0",
+  "version": "3.334.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "tsc -p tsconfig.cjs.json",