@aws-sdk/client-kms 3.35.0 → 3.36.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (421) hide show
  1. package/CHANGELOG.md +14 -0
  2. package/README.md +8 -7
  3. package/dist-cjs/KMS.js +8 -8
  4. package/dist-cjs/KMSClient.js +8 -8
  5. package/dist-cjs/commands/CancelKeyDeletionCommand.js +6 -5
  6. package/dist-cjs/commands/ConnectCustomKeyStoreCommand.js +3 -4
  7. package/dist-cjs/commands/CreateAliasCommand.js +11 -8
  8. package/dist-cjs/commands/CreateCustomKeyStoreCommand.js +0 -1
  9. package/dist-cjs/commands/CreateGrantCommand.js +14 -12
  10. package/dist-cjs/commands/CreateKeyCommand.js +16 -15
  11. package/dist-cjs/commands/DecryptCommand.js +24 -22
  12. package/dist-cjs/commands/DeleteAliasCommand.js +11 -8
  13. package/dist-cjs/commands/DeleteCustomKeyStoreCommand.js +10 -12
  14. package/dist-cjs/commands/DeleteImportedKeyMaterialCommand.js +5 -7
  15. package/dist-cjs/commands/DescribeCustomKeyStoresCommand.js +4 -5
  16. package/dist-cjs/commands/DescribeKeyCommand.js +12 -11
  17. package/dist-cjs/commands/DisableKeyCommand.js +5 -5
  18. package/dist-cjs/commands/DisableKeyRotationCommand.js +2 -2
  19. package/dist-cjs/commands/DisconnectCustomKeyStoreCommand.js +6 -5
  20. package/dist-cjs/commands/EnableKeyCommand.js +4 -3
  21. package/dist-cjs/commands/EnableKeyRotationCommand.js +2 -2
  22. package/dist-cjs/commands/EncryptCommand.js +14 -13
  23. package/dist-cjs/commands/GenerateDataKeyCommand.js +15 -13
  24. package/dist-cjs/commands/GenerateDataKeyPairCommand.js +15 -14
  25. package/dist-cjs/commands/GenerateDataKeyPairWithoutPlaintextCommand.js +16 -14
  26. package/dist-cjs/commands/GenerateDataKeyWithoutPlaintextCommand.js +11 -10
  27. package/dist-cjs/commands/GenerateRandomCommand.js +2 -2
  28. package/dist-cjs/commands/GetKeyPolicyCommand.js +0 -1
  29. package/dist-cjs/commands/GetKeyRotationStatusCommand.js +2 -2
  30. package/dist-cjs/commands/GetParametersForImportCommand.js +7 -9
  31. package/dist-cjs/commands/GetPublicKeyCommand.js +7 -6
  32. package/dist-cjs/commands/ImportKeyMaterialCommand.js +13 -14
  33. package/dist-cjs/commands/ListAliasesCommand.js +13 -11
  34. package/dist-cjs/commands/ListGrantsCommand.js +2 -3
  35. package/dist-cjs/commands/ListKeyPoliciesCommand.js +3 -4
  36. package/dist-cjs/commands/ListKeysCommand.js +1 -3
  37. package/dist-cjs/commands/ListResourceTagsCommand.js +0 -1
  38. package/dist-cjs/commands/ListRetirableGrantsCommand.js +7 -7
  39. package/dist-cjs/commands/PutKeyPolicyCommand.js +0 -1
  40. package/dist-cjs/commands/ReEncryptCommand.js +33 -28
  41. package/dist-cjs/commands/ReplicateKeyCommand.js +5 -6
  42. package/dist-cjs/commands/RetireGrantCommand.js +7 -6
  43. package/dist-cjs/commands/RevokeGrantCommand.js +1 -3
  44. package/dist-cjs/commands/ScheduleKeyDeletionCommand.js +19 -16
  45. package/dist-cjs/commands/SignCommand.js +10 -10
  46. package/dist-cjs/commands/TagResourceCommand.js +6 -5
  47. package/dist-cjs/commands/UntagResourceCommand.js +3 -4
  48. package/dist-cjs/commands/UpdateAliasCommand.js +15 -12
  49. package/dist-cjs/commands/UpdateCustomKeyStoreCommand.js +17 -18
  50. package/dist-cjs/commands/UpdateKeyDescriptionCommand.js +3 -4
  51. package/dist-cjs/commands/UpdatePrimaryRegionCommand.js +1 -2
  52. package/dist-cjs/commands/VerifyCommand.js +5 -6
  53. package/dist-cjs/endpoints.js +0 -1
  54. package/dist-cjs/index.js +0 -1
  55. package/dist-cjs/models/index.js +0 -1
  56. package/dist-cjs/models/models_0.js +0 -1
  57. package/dist-cjs/pagination/Interfaces.js +0 -1
  58. package/dist-cjs/pagination/ListAliasesPaginator.js +0 -1
  59. package/dist-cjs/pagination/ListGrantsPaginator.js +0 -1
  60. package/dist-cjs/pagination/ListKeyPoliciesPaginator.js +0 -1
  61. package/dist-cjs/pagination/ListKeysPaginator.js +0 -1
  62. package/dist-cjs/protocols/Aws_json1_1.js +0 -1
  63. package/dist-cjs/runtimeConfig.browser.js +2 -3
  64. package/dist-cjs/runtimeConfig.js +3 -4
  65. package/dist-cjs/runtimeConfig.native.js +0 -1
  66. package/dist-cjs/runtimeConfig.shared.js +0 -1
  67. package/dist-es/KMS.js +0 -1
  68. package/dist-es/KMSClient.js +0 -1
  69. package/dist-es/commands/CancelKeyDeletionCommand.js +0 -1
  70. package/dist-es/commands/ConnectCustomKeyStoreCommand.js +0 -1
  71. package/dist-es/commands/CreateAliasCommand.js +0 -1
  72. package/dist-es/commands/CreateCustomKeyStoreCommand.js +0 -1
  73. package/dist-es/commands/CreateGrantCommand.js +0 -1
  74. package/dist-es/commands/CreateKeyCommand.js +0 -1
  75. package/dist-es/commands/DecryptCommand.js +0 -1
  76. package/dist-es/commands/DeleteAliasCommand.js +0 -1
  77. package/dist-es/commands/DeleteCustomKeyStoreCommand.js +0 -1
  78. package/dist-es/commands/DeleteImportedKeyMaterialCommand.js +0 -1
  79. package/dist-es/commands/DescribeCustomKeyStoresCommand.js +0 -1
  80. package/dist-es/commands/DescribeKeyCommand.js +0 -1
  81. package/dist-es/commands/DisableKeyCommand.js +0 -1
  82. package/dist-es/commands/DisableKeyRotationCommand.js +0 -1
  83. package/dist-es/commands/DisconnectCustomKeyStoreCommand.js +0 -1
  84. package/dist-es/commands/EnableKeyCommand.js +0 -1
  85. package/dist-es/commands/EnableKeyRotationCommand.js +0 -1
  86. package/dist-es/commands/EncryptCommand.js +0 -1
  87. package/dist-es/commands/GenerateDataKeyCommand.js +0 -1
  88. package/dist-es/commands/GenerateDataKeyPairCommand.js +0 -1
  89. package/dist-es/commands/GenerateDataKeyPairWithoutPlaintextCommand.js +0 -1
  90. package/dist-es/commands/GenerateDataKeyWithoutPlaintextCommand.js +0 -1
  91. package/dist-es/commands/GenerateRandomCommand.js +0 -1
  92. package/dist-es/commands/GetKeyPolicyCommand.js +0 -1
  93. package/dist-es/commands/GetKeyRotationStatusCommand.js +0 -1
  94. package/dist-es/commands/GetParametersForImportCommand.js +0 -1
  95. package/dist-es/commands/GetPublicKeyCommand.js +0 -1
  96. package/dist-es/commands/ImportKeyMaterialCommand.js +0 -1
  97. package/dist-es/commands/ListAliasesCommand.js +0 -1
  98. package/dist-es/commands/ListGrantsCommand.js +0 -1
  99. package/dist-es/commands/ListKeyPoliciesCommand.js +0 -1
  100. package/dist-es/commands/ListKeysCommand.js +0 -1
  101. package/dist-es/commands/ListResourceTagsCommand.js +0 -1
  102. package/dist-es/commands/ListRetirableGrantsCommand.js +0 -1
  103. package/dist-es/commands/PutKeyPolicyCommand.js +0 -1
  104. package/dist-es/commands/ReEncryptCommand.js +0 -1
  105. package/dist-es/commands/ReplicateKeyCommand.js +0 -1
  106. package/dist-es/commands/RetireGrantCommand.js +0 -1
  107. package/dist-es/commands/RevokeGrantCommand.js +0 -1
  108. package/dist-es/commands/ScheduleKeyDeletionCommand.js +0 -1
  109. package/dist-es/commands/SignCommand.js +0 -1
  110. package/dist-es/commands/TagResourceCommand.js +0 -1
  111. package/dist-es/commands/UntagResourceCommand.js +0 -1
  112. package/dist-es/commands/UpdateAliasCommand.js +0 -1
  113. package/dist-es/commands/UpdateCustomKeyStoreCommand.js +0 -1
  114. package/dist-es/commands/UpdateKeyDescriptionCommand.js +0 -1
  115. package/dist-es/commands/UpdatePrimaryRegionCommand.js +0 -1
  116. package/dist-es/commands/VerifyCommand.js +0 -1
  117. package/dist-es/endpoints.js +0 -1
  118. package/dist-es/index.js +0 -1
  119. package/dist-es/models/index.js +0 -1
  120. package/dist-es/models/models_0.js +0 -1
  121. package/dist-es/pagination/Interfaces.js +0 -1
  122. package/dist-es/pagination/ListAliasesPaginator.js +0 -1
  123. package/dist-es/pagination/ListGrantsPaginator.js +0 -1
  124. package/dist-es/pagination/ListKeyPoliciesPaginator.js +0 -1
  125. package/dist-es/pagination/ListKeysPaginator.js +0 -1
  126. package/dist-es/protocols/Aws_json1_1.js +0 -1
  127. package/dist-es/runtimeConfig.browser.js +1 -2
  128. package/dist-es/runtimeConfig.js +2 -3
  129. package/dist-es/runtimeConfig.native.js +0 -1
  130. package/dist-es/runtimeConfig.shared.js +0 -1
  131. package/dist-types/KMS.d.ts +396 -334
  132. package/dist-types/KMSClient.d.ts +8 -7
  133. package/dist-types/commands/CancelKeyDeletionCommand.d.ts +6 -4
  134. package/dist-types/commands/ConnectCustomKeyStoreCommand.d.ts +3 -3
  135. package/dist-types/commands/CreateAliasCommand.d.ts +11 -7
  136. package/dist-types/commands/CreateGrantCommand.d.ts +14 -11
  137. package/dist-types/commands/CreateKeyCommand.d.ts +16 -14
  138. package/dist-types/commands/DecryptCommand.d.ts +24 -21
  139. package/dist-types/commands/DeleteAliasCommand.d.ts +11 -7
  140. package/dist-types/commands/DeleteCustomKeyStoreCommand.d.ts +10 -11
  141. package/dist-types/commands/DeleteImportedKeyMaterialCommand.d.ts +5 -6
  142. package/dist-types/commands/DescribeCustomKeyStoresCommand.d.ts +4 -4
  143. package/dist-types/commands/DescribeKeyCommand.d.ts +12 -10
  144. package/dist-types/commands/DisableKeyCommand.d.ts +5 -4
  145. package/dist-types/commands/DisableKeyRotationCommand.d.ts +2 -1
  146. package/dist-types/commands/DisconnectCustomKeyStoreCommand.d.ts +6 -4
  147. package/dist-types/commands/EnableKeyCommand.d.ts +4 -2
  148. package/dist-types/commands/EnableKeyRotationCommand.d.ts +2 -1
  149. package/dist-types/commands/EncryptCommand.d.ts +14 -12
  150. package/dist-types/commands/GenerateDataKeyCommand.d.ts +15 -12
  151. package/dist-types/commands/GenerateDataKeyPairCommand.d.ts +15 -13
  152. package/dist-types/commands/GenerateDataKeyPairWithoutPlaintextCommand.d.ts +16 -13
  153. package/dist-types/commands/GenerateDataKeyWithoutPlaintextCommand.d.ts +11 -9
  154. package/dist-types/commands/GenerateRandomCommand.d.ts +2 -1
  155. package/dist-types/commands/GetKeyRotationStatusCommand.d.ts +2 -1
  156. package/dist-types/commands/GetParametersForImportCommand.d.ts +7 -8
  157. package/dist-types/commands/GetPublicKeyCommand.d.ts +7 -5
  158. package/dist-types/commands/ImportKeyMaterialCommand.d.ts +13 -13
  159. package/dist-types/commands/ListAliasesCommand.d.ts +13 -10
  160. package/dist-types/commands/ListGrantsCommand.d.ts +2 -2
  161. package/dist-types/commands/ListKeyPoliciesCommand.d.ts +3 -3
  162. package/dist-types/commands/ListKeysCommand.d.ts +1 -2
  163. package/dist-types/commands/ListRetirableGrantsCommand.d.ts +7 -6
  164. package/dist-types/commands/ReEncryptCommand.d.ts +33 -27
  165. package/dist-types/commands/ReplicateKeyCommand.d.ts +5 -5
  166. package/dist-types/commands/RetireGrantCommand.d.ts +7 -5
  167. package/dist-types/commands/RevokeGrantCommand.d.ts +1 -2
  168. package/dist-types/commands/ScheduleKeyDeletionCommand.d.ts +19 -15
  169. package/dist-types/commands/SignCommand.d.ts +10 -9
  170. package/dist-types/commands/TagResourceCommand.d.ts +6 -4
  171. package/dist-types/commands/UntagResourceCommand.d.ts +3 -3
  172. package/dist-types/commands/UpdateAliasCommand.d.ts +15 -11
  173. package/dist-types/commands/UpdateCustomKeyStoreCommand.d.ts +17 -17
  174. package/dist-types/commands/UpdateKeyDescriptionCommand.d.ts +3 -3
  175. package/dist-types/commands/UpdatePrimaryRegionCommand.d.ts +1 -1
  176. package/dist-types/commands/VerifyCommand.d.ts +5 -5
  177. package/dist-types/models/models_0.d.ts +296 -249
  178. package/dist-types/ts3.4/KMS.d.ts +396 -334
  179. package/dist-types/ts3.4/KMSClient.d.ts +8 -7
  180. package/dist-types/ts3.4/commands/CancelKeyDeletionCommand.d.ts +6 -4
  181. package/dist-types/ts3.4/commands/ConnectCustomKeyStoreCommand.d.ts +3 -3
  182. package/dist-types/ts3.4/commands/CreateAliasCommand.d.ts +11 -7
  183. package/dist-types/ts3.4/commands/CreateGrantCommand.d.ts +14 -11
  184. package/dist-types/ts3.4/commands/CreateKeyCommand.d.ts +16 -14
  185. package/dist-types/ts3.4/commands/DecryptCommand.d.ts +24 -21
  186. package/dist-types/ts3.4/commands/DeleteAliasCommand.d.ts +11 -7
  187. package/dist-types/ts3.4/commands/DeleteCustomKeyStoreCommand.d.ts +10 -11
  188. package/dist-types/ts3.4/commands/DeleteImportedKeyMaterialCommand.d.ts +5 -6
  189. package/dist-types/ts3.4/commands/DescribeCustomKeyStoresCommand.d.ts +4 -4
  190. package/dist-types/ts3.4/commands/DescribeKeyCommand.d.ts +12 -10
  191. package/dist-types/ts3.4/commands/DisableKeyCommand.d.ts +5 -4
  192. package/dist-types/ts3.4/commands/DisableKeyRotationCommand.d.ts +2 -1
  193. package/dist-types/ts3.4/commands/DisconnectCustomKeyStoreCommand.d.ts +6 -4
  194. package/dist-types/ts3.4/commands/EnableKeyCommand.d.ts +4 -2
  195. package/dist-types/ts3.4/commands/EnableKeyRotationCommand.d.ts +2 -1
  196. package/dist-types/ts3.4/commands/EncryptCommand.d.ts +14 -12
  197. package/dist-types/ts3.4/commands/GenerateDataKeyCommand.d.ts +15 -12
  198. package/dist-types/ts3.4/commands/GenerateDataKeyPairCommand.d.ts +15 -13
  199. package/dist-types/ts3.4/commands/GenerateDataKeyPairWithoutPlaintextCommand.d.ts +16 -13
  200. package/dist-types/ts3.4/commands/GenerateDataKeyWithoutPlaintextCommand.d.ts +11 -9
  201. package/dist-types/ts3.4/commands/GenerateRandomCommand.d.ts +2 -1
  202. package/dist-types/ts3.4/commands/GetKeyRotationStatusCommand.d.ts +2 -1
  203. package/dist-types/ts3.4/commands/GetParametersForImportCommand.d.ts +7 -8
  204. package/dist-types/ts3.4/commands/GetPublicKeyCommand.d.ts +7 -5
  205. package/dist-types/ts3.4/commands/ImportKeyMaterialCommand.d.ts +13 -13
  206. package/dist-types/ts3.4/commands/ListAliasesCommand.d.ts +13 -10
  207. package/dist-types/ts3.4/commands/ListGrantsCommand.d.ts +2 -2
  208. package/dist-types/ts3.4/commands/ListKeyPoliciesCommand.d.ts +3 -3
  209. package/dist-types/ts3.4/commands/ListKeysCommand.d.ts +1 -2
  210. package/dist-types/ts3.4/commands/ListRetirableGrantsCommand.d.ts +7 -6
  211. package/dist-types/ts3.4/commands/ReEncryptCommand.d.ts +33 -27
  212. package/dist-types/ts3.4/commands/ReplicateKeyCommand.d.ts +5 -5
  213. package/dist-types/ts3.4/commands/RetireGrantCommand.d.ts +7 -5
  214. package/dist-types/ts3.4/commands/RevokeGrantCommand.d.ts +1 -2
  215. package/dist-types/ts3.4/commands/ScheduleKeyDeletionCommand.d.ts +19 -15
  216. package/dist-types/ts3.4/commands/SignCommand.d.ts +10 -9
  217. package/dist-types/ts3.4/commands/TagResourceCommand.d.ts +6 -4
  218. package/dist-types/ts3.4/commands/UntagResourceCommand.d.ts +3 -3
  219. package/dist-types/ts3.4/commands/UpdateAliasCommand.d.ts +15 -11
  220. package/dist-types/ts3.4/commands/UpdateCustomKeyStoreCommand.d.ts +17 -17
  221. package/dist-types/ts3.4/commands/UpdateKeyDescriptionCommand.d.ts +3 -3
  222. package/dist-types/ts3.4/commands/UpdatePrimaryRegionCommand.d.ts +1 -1
  223. package/dist-types/ts3.4/commands/VerifyCommand.d.ts +5 -5
  224. package/dist-types/ts3.4/models/models_0.d.ts +296 -249
  225. package/package.json +33 -30
  226. package/dist-cjs/KMS.js.map +0 -1
  227. package/dist-cjs/KMSClient.js.map +0 -1
  228. package/dist-cjs/commands/CancelKeyDeletionCommand.js.map +0 -1
  229. package/dist-cjs/commands/ConnectCustomKeyStoreCommand.js.map +0 -1
  230. package/dist-cjs/commands/CreateAliasCommand.js.map +0 -1
  231. package/dist-cjs/commands/CreateCustomKeyStoreCommand.js.map +0 -1
  232. package/dist-cjs/commands/CreateGrantCommand.js.map +0 -1
  233. package/dist-cjs/commands/CreateKeyCommand.js.map +0 -1
  234. package/dist-cjs/commands/DecryptCommand.js.map +0 -1
  235. package/dist-cjs/commands/DeleteAliasCommand.js.map +0 -1
  236. package/dist-cjs/commands/DeleteCustomKeyStoreCommand.js.map +0 -1
  237. package/dist-cjs/commands/DeleteImportedKeyMaterialCommand.js.map +0 -1
  238. package/dist-cjs/commands/DescribeCustomKeyStoresCommand.js.map +0 -1
  239. package/dist-cjs/commands/DescribeKeyCommand.js.map +0 -1
  240. package/dist-cjs/commands/DisableKeyCommand.js.map +0 -1
  241. package/dist-cjs/commands/DisableKeyRotationCommand.js.map +0 -1
  242. package/dist-cjs/commands/DisconnectCustomKeyStoreCommand.js.map +0 -1
  243. package/dist-cjs/commands/EnableKeyCommand.js.map +0 -1
  244. package/dist-cjs/commands/EnableKeyRotationCommand.js.map +0 -1
  245. package/dist-cjs/commands/EncryptCommand.js.map +0 -1
  246. package/dist-cjs/commands/GenerateDataKeyCommand.js.map +0 -1
  247. package/dist-cjs/commands/GenerateDataKeyPairCommand.js.map +0 -1
  248. package/dist-cjs/commands/GenerateDataKeyPairWithoutPlaintextCommand.js.map +0 -1
  249. package/dist-cjs/commands/GenerateDataKeyWithoutPlaintextCommand.js.map +0 -1
  250. package/dist-cjs/commands/GenerateRandomCommand.js.map +0 -1
  251. package/dist-cjs/commands/GetKeyPolicyCommand.js.map +0 -1
  252. package/dist-cjs/commands/GetKeyRotationStatusCommand.js.map +0 -1
  253. package/dist-cjs/commands/GetParametersForImportCommand.js.map +0 -1
  254. package/dist-cjs/commands/GetPublicKeyCommand.js.map +0 -1
  255. package/dist-cjs/commands/ImportKeyMaterialCommand.js.map +0 -1
  256. package/dist-cjs/commands/ListAliasesCommand.js.map +0 -1
  257. package/dist-cjs/commands/ListGrantsCommand.js.map +0 -1
  258. package/dist-cjs/commands/ListKeyPoliciesCommand.js.map +0 -1
  259. package/dist-cjs/commands/ListKeysCommand.js.map +0 -1
  260. package/dist-cjs/commands/ListResourceTagsCommand.js.map +0 -1
  261. package/dist-cjs/commands/ListRetirableGrantsCommand.js.map +0 -1
  262. package/dist-cjs/commands/PutKeyPolicyCommand.js.map +0 -1
  263. package/dist-cjs/commands/ReEncryptCommand.js.map +0 -1
  264. package/dist-cjs/commands/ReplicateKeyCommand.js.map +0 -1
  265. package/dist-cjs/commands/RetireGrantCommand.js.map +0 -1
  266. package/dist-cjs/commands/RevokeGrantCommand.js.map +0 -1
  267. package/dist-cjs/commands/ScheduleKeyDeletionCommand.js.map +0 -1
  268. package/dist-cjs/commands/SignCommand.js.map +0 -1
  269. package/dist-cjs/commands/TagResourceCommand.js.map +0 -1
  270. package/dist-cjs/commands/UntagResourceCommand.js.map +0 -1
  271. package/dist-cjs/commands/UpdateAliasCommand.js.map +0 -1
  272. package/dist-cjs/commands/UpdateCustomKeyStoreCommand.js.map +0 -1
  273. package/dist-cjs/commands/UpdateKeyDescriptionCommand.js.map +0 -1
  274. package/dist-cjs/commands/UpdatePrimaryRegionCommand.js.map +0 -1
  275. package/dist-cjs/commands/VerifyCommand.js.map +0 -1
  276. package/dist-cjs/endpoints.js.map +0 -1
  277. package/dist-cjs/index.js.map +0 -1
  278. package/dist-cjs/models/index.js.map +0 -1
  279. package/dist-cjs/models/models_0.js.map +0 -1
  280. package/dist-cjs/pagination/Interfaces.js.map +0 -1
  281. package/dist-cjs/pagination/ListAliasesPaginator.js.map +0 -1
  282. package/dist-cjs/pagination/ListGrantsPaginator.js.map +0 -1
  283. package/dist-cjs/pagination/ListKeyPoliciesPaginator.js.map +0 -1
  284. package/dist-cjs/pagination/ListKeysPaginator.js.map +0 -1
  285. package/dist-cjs/protocols/Aws_json1_1.js.map +0 -1
  286. package/dist-cjs/runtimeConfig.browser.js.map +0 -1
  287. package/dist-cjs/runtimeConfig.js.map +0 -1
  288. package/dist-cjs/runtimeConfig.native.js.map +0 -1
  289. package/dist-cjs/runtimeConfig.shared.js.map +0 -1
  290. package/dist-es/KMS.js.map +0 -1
  291. package/dist-es/KMSClient.js.map +0 -1
  292. package/dist-es/commands/CancelKeyDeletionCommand.js.map +0 -1
  293. package/dist-es/commands/ConnectCustomKeyStoreCommand.js.map +0 -1
  294. package/dist-es/commands/CreateAliasCommand.js.map +0 -1
  295. package/dist-es/commands/CreateCustomKeyStoreCommand.js.map +0 -1
  296. package/dist-es/commands/CreateGrantCommand.js.map +0 -1
  297. package/dist-es/commands/CreateKeyCommand.js.map +0 -1
  298. package/dist-es/commands/DecryptCommand.js.map +0 -1
  299. package/dist-es/commands/DeleteAliasCommand.js.map +0 -1
  300. package/dist-es/commands/DeleteCustomKeyStoreCommand.js.map +0 -1
  301. package/dist-es/commands/DeleteImportedKeyMaterialCommand.js.map +0 -1
  302. package/dist-es/commands/DescribeCustomKeyStoresCommand.js.map +0 -1
  303. package/dist-es/commands/DescribeKeyCommand.js.map +0 -1
  304. package/dist-es/commands/DisableKeyCommand.js.map +0 -1
  305. package/dist-es/commands/DisableKeyRotationCommand.js.map +0 -1
  306. package/dist-es/commands/DisconnectCustomKeyStoreCommand.js.map +0 -1
  307. package/dist-es/commands/EnableKeyCommand.js.map +0 -1
  308. package/dist-es/commands/EnableKeyRotationCommand.js.map +0 -1
  309. package/dist-es/commands/EncryptCommand.js.map +0 -1
  310. package/dist-es/commands/GenerateDataKeyCommand.js.map +0 -1
  311. package/dist-es/commands/GenerateDataKeyPairCommand.js.map +0 -1
  312. package/dist-es/commands/GenerateDataKeyPairWithoutPlaintextCommand.js.map +0 -1
  313. package/dist-es/commands/GenerateDataKeyWithoutPlaintextCommand.js.map +0 -1
  314. package/dist-es/commands/GenerateRandomCommand.js.map +0 -1
  315. package/dist-es/commands/GetKeyPolicyCommand.js.map +0 -1
  316. package/dist-es/commands/GetKeyRotationStatusCommand.js.map +0 -1
  317. package/dist-es/commands/GetParametersForImportCommand.js.map +0 -1
  318. package/dist-es/commands/GetPublicKeyCommand.js.map +0 -1
  319. package/dist-es/commands/ImportKeyMaterialCommand.js.map +0 -1
  320. package/dist-es/commands/ListAliasesCommand.js.map +0 -1
  321. package/dist-es/commands/ListGrantsCommand.js.map +0 -1
  322. package/dist-es/commands/ListKeyPoliciesCommand.js.map +0 -1
  323. package/dist-es/commands/ListKeysCommand.js.map +0 -1
  324. package/dist-es/commands/ListResourceTagsCommand.js.map +0 -1
  325. package/dist-es/commands/ListRetirableGrantsCommand.js.map +0 -1
  326. package/dist-es/commands/PutKeyPolicyCommand.js.map +0 -1
  327. package/dist-es/commands/ReEncryptCommand.js.map +0 -1
  328. package/dist-es/commands/ReplicateKeyCommand.js.map +0 -1
  329. package/dist-es/commands/RetireGrantCommand.js.map +0 -1
  330. package/dist-es/commands/RevokeGrantCommand.js.map +0 -1
  331. package/dist-es/commands/ScheduleKeyDeletionCommand.js.map +0 -1
  332. package/dist-es/commands/SignCommand.js.map +0 -1
  333. package/dist-es/commands/TagResourceCommand.js.map +0 -1
  334. package/dist-es/commands/UntagResourceCommand.js.map +0 -1
  335. package/dist-es/commands/UpdateAliasCommand.js.map +0 -1
  336. package/dist-es/commands/UpdateCustomKeyStoreCommand.js.map +0 -1
  337. package/dist-es/commands/UpdateKeyDescriptionCommand.js.map +0 -1
  338. package/dist-es/commands/UpdatePrimaryRegionCommand.js.map +0 -1
  339. package/dist-es/commands/VerifyCommand.js.map +0 -1
  340. package/dist-es/endpoints.js.map +0 -1
  341. package/dist-es/index.js.map +0 -1
  342. package/dist-es/models/index.js.map +0 -1
  343. package/dist-es/models/models_0.js.map +0 -1
  344. package/dist-es/pagination/Interfaces.js.map +0 -1
  345. package/dist-es/pagination/ListAliasesPaginator.js.map +0 -1
  346. package/dist-es/pagination/ListGrantsPaginator.js.map +0 -1
  347. package/dist-es/pagination/ListKeyPoliciesPaginator.js.map +0 -1
  348. package/dist-es/pagination/ListKeysPaginator.js.map +0 -1
  349. package/dist-es/protocols/Aws_json1_1.js.map +0 -1
  350. package/dist-es/runtimeConfig.browser.js.map +0 -1
  351. package/dist-es/runtimeConfig.js.map +0 -1
  352. package/dist-es/runtimeConfig.native.js.map +0 -1
  353. package/dist-es/runtimeConfig.shared.js.map +0 -1
  354. package/jest.config.js +0 -4
  355. package/src/KMS.ts +0 -4019
  356. package/src/KMSClient.ts +0 -516
  357. package/src/commands/CancelKeyDeletionCommand.ts +0 -106
  358. package/src/commands/ConnectCustomKeyStoreCommand.ts +0 -156
  359. package/src/commands/CreateAliasCommand.ts +0 -148
  360. package/src/commands/CreateCustomKeyStoreCommand.ts +0 -144
  361. package/src/commands/CreateGrantCommand.ts +0 -154
  362. package/src/commands/CreateKeyCommand.ts +0 -210
  363. package/src/commands/DecryptCommand.ts +0 -173
  364. package/src/commands/DeleteAliasCommand.ts +0 -138
  365. package/src/commands/DeleteCustomKeyStoreCommand.ts +0 -150
  366. package/src/commands/DeleteImportedKeyMaterialCommand.ts +0 -128
  367. package/src/commands/DescribeCustomKeyStoresCommand.ts +0 -148
  368. package/src/commands/DescribeKeyCommand.ts +0 -172
  369. package/src/commands/DisableKeyCommand.ts +0 -109
  370. package/src/commands/DisableKeyRotationCommand.ts +0 -119
  371. package/src/commands/DisconnectCustomKeyStoreCommand.ts +0 -145
  372. package/src/commands/EnableKeyCommand.ts +0 -98
  373. package/src/commands/EnableKeyRotationCommand.ts +0 -119
  374. package/src/commands/EncryptCommand.ts +0 -210
  375. package/src/commands/GenerateDataKeyCommand.ts +0 -189
  376. package/src/commands/GenerateDataKeyPairCommand.ts +0 -169
  377. package/src/commands/GenerateDataKeyPairWithoutPlaintextCommand.ts +0 -169
  378. package/src/commands/GenerateDataKeyWithoutPlaintextCommand.ts +0 -172
  379. package/src/commands/GenerateRandomCommand.ts +0 -103
  380. package/src/commands/GetKeyPolicyCommand.ts +0 -103
  381. package/src/commands/GetKeyRotationStatusCommand.ts +0 -131
  382. package/src/commands/GetParametersForImportCommand.ts +0 -130
  383. package/src/commands/GetPublicKeyCommand.ts +0 -139
  384. package/src/commands/ImportKeyMaterialCommand.ts +0 -158
  385. package/src/commands/ListAliasesCommand.ts +0 -134
  386. package/src/commands/ListGrantsCommand.ts +0 -140
  387. package/src/commands/ListKeyPoliciesCommand.ts +0 -117
  388. package/src/commands/ListKeysCommand.ts +0 -119
  389. package/src/commands/ListResourceTagsCommand.ts +0 -129
  390. package/src/commands/ListRetirableGrantsCommand.ts +0 -137
  391. package/src/commands/PutKeyPolicyCommand.ts +0 -108
  392. package/src/commands/ReEncryptCommand.ts +0 -180
  393. package/src/commands/ReplicateKeyCommand.ts +0 -172
  394. package/src/commands/RetireGrantCommand.ts +0 -139
  395. package/src/commands/RevokeGrantCommand.ts +0 -139
  396. package/src/commands/ScheduleKeyDeletionCommand.ts +0 -145
  397. package/src/commands/SignCommand.ts +0 -132
  398. package/src/commands/TagResourceCommand.ts +0 -140
  399. package/src/commands/UntagResourceCommand.ts +0 -138
  400. package/src/commands/UpdateAliasCommand.ts +0 -153
  401. package/src/commands/UpdateCustomKeyStoreCommand.ts +0 -167
  402. package/src/commands/UpdateKeyDescriptionCommand.ts +0 -118
  403. package/src/commands/UpdatePrimaryRegionCommand.ts +0 -160
  404. package/src/commands/VerifyCommand.ts +0 -118
  405. package/src/endpoints.ts +0 -62
  406. package/src/index.ts +0 -56
  407. package/src/models/index.ts +0 -1
  408. package/src/models/models_0.ts +0 -4742
  409. package/src/pagination/Interfaces.ts +0 -8
  410. package/src/pagination/ListAliasesPaginator.ts +0 -55
  411. package/src/pagination/ListGrantsPaginator.ts +0 -55
  412. package/src/pagination/ListKeyPoliciesPaginator.ts +0 -59
  413. package/src/pagination/ListKeysPaginator.ts +0 -55
  414. package/src/protocols/Aws_json1_1.ts +0 -7632
  415. package/src/runtimeConfig.browser.ts +0 -41
  416. package/src/runtimeConfig.native.ts +0 -17
  417. package/src/runtimeConfig.shared.ts +0 -17
  418. package/src/runtimeConfig.ts +0 -46
  419. package/tsconfig.es.json +0 -10
  420. package/tsconfig.json +0 -33
  421. package/tsconfig.types.json +0 -9
@@ -6,16 +6,17 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Provides detailed information about a KMS key. You can run
10
- * <code>DescribeKey</code> on a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed key</a> or an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services managed key</a>.</p>
9
+ * <p>Provides detailed information about a KMS key. You can run <code>DescribeKey</code> on a
10
+ * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed
11
+ * key</a> or an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services managed key</a>.</p>
11
12
  * <p>This detailed information includes the key ARN, creation date (and deletion date, if
12
13
  * applicable), the key state, and the origin and expiration date (if any) of the key material.
13
14
  * It includes fields, like <code>KeySpec</code>, that help you distinguish symmetric from
14
15
  * asymmetric KMS keys. It also provides information that is particularly important to asymmetric
15
16
  * keys, such as the key usage (encryption or signing) and the encryption algorithms or signing
16
- * algorithms that the KMS key supports. For KMS keys in custom key stores, it includes information about
17
- * the custom key store, such as the key store ID and the CloudHSM cluster ID. For multi-Region
18
- * keys, it displays the primary key and all related replica keys. </p>
17
+ * algorithms that the KMS key supports. For KMS keys in custom key stores, it includes
18
+ * information about the custom key store, such as the key store ID and the CloudHSM cluster ID. For
19
+ * multi-Region keys, it displays the primary key and all related replica keys. </p>
19
20
  * <p>
20
21
  * <code>DescribeKey</code> does not return the following information:</p>
21
22
  * <ul>
@@ -24,8 +25,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
24
25
  * </li>
25
26
  * <li>
26
27
  * <p>Whether automatic key rotation is enabled on the KMS key. To get this information, use
27
- * <a>GetKeyRotationStatus</a>. Also, some key states prevent a KMS key from being
28
- * automatically rotated. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#rotate-keys-how-it-works">How Automatic Key Rotation
28
+ * <a>GetKeyRotationStatus</a>. Also, some key states prevent a KMS key from
29
+ * being automatically rotated. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#rotate-keys-how-it-works">How Automatic Key Rotation
29
30
  * Works</a> in <i>Key Management Service Developer Guide</i>.</p>
30
31
  * </li>
31
32
  * <li>
@@ -35,9 +36,10 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
35
36
  * <p>Key policies and grants on the KMS key. To get this information, use <a>GetKeyPolicy</a> and <a>ListGrants</a>.</p>
36
37
  * </li>
37
38
  * </ul>
38
- * <p>If you call the <code>DescribeKey</code> operation on a <i>predefined Amazon Web Services alias</i>, that is, an Amazon Web Services alias with no key ID, KMS creates an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services managed key</a>.
39
- * Then, it associates the alias with the new KMS key, and returns the <code>KeyId</code> and
40
- * <code>Arn</code> of the new KMS key in the response.</p>
39
+ * <p>If you call the <code>DescribeKey</code> operation on a <i>predefined Amazon Web Services
40
+ * alias</i>, that is, an Amazon Web Services alias with no key ID, KMS creates an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services managed
41
+ * key</a>. Then, it associates the alias with the new KMS key, and returns the
42
+ * <code>KeyId</code> and <code>Arn</code> of the new KMS key in the response.</p>
41
43
  * <p>
42
44
  * <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
43
45
  * the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
@@ -135,4 +137,3 @@ class DescribeKeyCommand extends smithy_client_1.Command {
135
137
  }
136
138
  }
137
139
  exports.DescribeKeyCommand = DescribeKeyCommand;
138
- //# sourceMappingURL=DescribeKeyCommand.js.map
@@ -6,14 +6,15 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Sets the state of a KMS key to disabled. This change temporarily
10
- * prevents use of the KMS key for <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations">cryptographic operations</a>. </p>
11
- * <p>For more information about how key state affects the use of a KMS key, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>
9
+ * <p>Sets the state of a KMS key to disabled. This change temporarily prevents use of the KMS
10
+ * key for <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations">cryptographic operations</a>. </p>
11
+ * <p>For more information about how key state affects the use of a KMS key, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS
12
+ * key</a> in the <i>
12
13
  * <i>Key Management Service Developer Guide</i>
13
14
  * </i>.</p>
14
15
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
15
16
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
16
- * <p>
17
+ * <p>
17
18
  * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
18
19
  *
19
20
  * <p>
@@ -72,4 +73,3 @@ class DisableKeyCommand extends smithy_client_1.Command {
72
73
  }
73
74
  }
74
75
  exports.DisableKeyCommand = DisableKeyCommand;
75
- //# sourceMappingURL=DisableKeyCommand.js.map
@@ -12,7 +12,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
12
12
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
13
13
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
14
14
  * <p>
15
- * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
15
+ * <b>Cross-account
16
+ * use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
16
17
  *
17
18
  * <p>
18
19
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:DisableKeyRotation</a> (key policy)</p>
@@ -82,4 +83,3 @@ class DisableKeyRotationCommand extends smithy_client_1.Command {
82
83
  }
83
84
  }
84
85
  exports.DisableKeyRotationCommand = DisableKeyRotationCommand;
85
- //# sourceMappingURL=DisableKeyRotationCommand.js.map
@@ -7,8 +7,9 @@ const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Disconnects the <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a> from its associated CloudHSM cluster. While a custom key
10
- * store is disconnected, you can manage the custom key store and its KMS keys, but you cannot create or use KMS keys in the custom key store. You can reconnect the
11
- * custom key store at any time.</p>
10
+ * store is disconnected, you can manage the custom key store and its KMS keys, but you cannot
11
+ * create or use KMS keys in the custom key store. You can reconnect the custom key store at any
12
+ * time.</p>
12
13
  * <note>
13
14
  * <p>While a custom key store is disconnected, all attempts to create KMS keys in the custom key store or to use existing KMS keys in <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations">cryptographic operations</a> will
14
15
  * fail. This action can prevent users from storing and accessing sensitive data.</p>
@@ -22,8 +23,9 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
22
23
  * combines the convenience and extensive integration of KMS with the isolation and control of a
23
24
  * single-tenant key store.</p>
24
25
  *
25
- * <p>
26
- * <b>Cross-account use</b>: No. You cannot perform this operation on a custom key store in a different Amazon Web Services account.</p>
26
+ * <p>
27
+ * <b>Cross-account use</b>: No.
28
+ * You cannot perform this operation on a custom key store in a different Amazon Web Services account.</p>
27
29
  *
28
30
  * <p>
29
31
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:DisconnectCustomKeyStore</a> (IAM policy)</p>
@@ -108,4 +110,3 @@ class DisconnectCustomKeyStoreCommand extends smithy_client_1.Command {
108
110
  }
109
111
  }
110
112
  exports.DisconnectCustomKeyStoreCommand = DisconnectCustomKeyStoreCommand;
111
- //# sourceMappingURL=DisconnectCustomKeyStoreCommand.js.map
@@ -6,11 +6,13 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Sets the key state of a KMS key to enabled. This allows you to use the KMS key for <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations">cryptographic operations</a>. </p>
9
+ * <p>Sets the key state of a KMS key to enabled. This allows you to use the KMS key for
10
+ * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations">cryptographic operations</a>. </p>
10
11
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
11
12
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
12
13
  * <p>
13
- * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
14
+ * <b>Cross-account
15
+ * use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
14
16
  *
15
17
  * <p>
16
18
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:EnableKey</a> (key policy)</p>
@@ -68,4 +70,3 @@ class EnableKeyCommand extends smithy_client_1.Command {
68
70
  }
69
71
  }
70
72
  exports.EnableKeyCommand = EnableKeyCommand;
71
- //# sourceMappingURL=EnableKeyCommand.js.map
@@ -12,7 +12,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
12
12
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
13
13
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
14
14
  * <p>
15
- * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
15
+ * <b>Cross-account
16
+ * use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
16
17
  *
17
18
  * <p>
18
19
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:EnableKeyRotation</a> (key policy)</p>
@@ -82,4 +83,3 @@ class EnableKeyRotationCommand extends smithy_client_1.Command {
82
83
  }
83
84
  }
84
85
  exports.EnableKeyRotationCommand = EnableKeyRotationCommand;
85
- //# sourceMappingURL=EnableKeyRotationCommand.js.map
@@ -6,19 +6,20 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Encrypts plaintext into ciphertext by using a KMS key. The
10
- * <code>Encrypt</code> operation has two primary use cases:</p>
9
+ * <p>Encrypts plaintext into ciphertext by using a KMS key. The <code>Encrypt</code> operation
10
+ * has two primary use cases:</p>
11
11
  * <ul>
12
12
  * <li>
13
13
  * <p>You can encrypt small amounts of arbitrary data, such as a personal identifier or
14
14
  * database password, or other sensitive information. </p>
15
15
  * </li>
16
16
  * <li>
17
- * <p>You can use the <code>Encrypt</code> operation to move encrypted data from one Amazon Web Services Region to another. For example, in Region A, generate a data key and use the plaintext key to encrypt
18
- * your data. Then, in Region A, use the <code>Encrypt</code> operation to encrypt the
19
- * plaintext data key under a KMS key in Region B. Now, you can move the encrypted data and the
20
- * encrypted data key to Region B. When necessary, you can decrypt the encrypted data key and
21
- * the encrypted data entirely within in Region B.</p>
17
+ * <p>You can use the <code>Encrypt</code> operation to move encrypted data from one Amazon Web Services
18
+ * Region to another. For example, in Region A, generate a data key and use the plaintext key
19
+ * to encrypt your data. Then, in Region A, use the <code>Encrypt</code> operation to encrypt
20
+ * the plaintext data key under a KMS key in Region B. Now, you can move the encrypted data
21
+ * and the encrypted data key to Region B. When necessary, you can decrypt the encrypted data
22
+ * key and the encrypted data entirely within in Region B.</p>
22
23
  * </li>
23
24
  * </ul>
24
25
  *
@@ -29,10 +30,10 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
29
30
  * encryption operation. The KMS key must have a <code>KeyUsage</code> value of
30
31
  * <code>ENCRYPT_DECRYPT.</code> To find the <code>KeyUsage</code> of a KMS key, use the <a>DescribeKey</a> operation. </p>
31
32
  *
32
- * <p>If you use a symmetric KMS key, you can use an encryption context to add additional security
33
- * to your encryption operation. If you specify an <code>EncryptionContext</code> when encrypting
34
- * data, you must specify the same encryption context (a case-sensitive exact match) when
35
- * decrypting the data. Otherwise, the request to decrypt fails with an
33
+ * <p>If you use a symmetric KMS key, you can use an encryption context to add additional
34
+ * security to your encryption operation. If you specify an <code>EncryptionContext</code> when
35
+ * encrypting data, you must specify the same encryption context (a case-sensitive exact match)
36
+ * when decrypting the data. Otherwise, the request to decrypt fails with an
36
37
  * <code>InvalidCiphertextException</code>. For more information, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#encrypt_context">Encryption
37
38
  * Context</a> in the <i>Key Management Service Developer Guide</i>.</p>
38
39
  * <p>If you specify an asymmetric KMS key, you must also specify the encryption algorithm. The
@@ -104,7 +105,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
104
105
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
105
106
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
106
107
  * <p>
107
- * <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
108
+ * <b>Cross-account use</b>: Yes.
109
+ * To perform this operation with a KMS key in a different Amazon Web Services account, specify
108
110
  * the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
109
111
  *
110
112
  * <p>
@@ -180,4 +182,3 @@ class EncryptCommand extends smithy_client_1.Command {
180
182
  }
181
183
  }
182
184
  exports.EncryptCommand = EncryptCommand;
183
- //# sourceMappingURL=EncryptCommand.js.map
@@ -7,19 +7,19 @@ const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Generates a unique symmetric data key for client-side encryption. This operation returns a
10
- * plaintext copy of the data key and a copy that is encrypted under a KMS key
11
- * that you specify. You can use the plaintext key to encrypt your data outside of KMS and
12
- * store the encrypted data key with the encrypted data.</p>
10
+ * plaintext copy of the data key and a copy that is encrypted under a KMS key that you specify.
11
+ * You can use the plaintext key to encrypt your data outside of KMS and store the encrypted
12
+ * data key with the encrypted data.</p>
13
13
  *
14
14
  * <p>
15
15
  * <code>GenerateDataKey</code> returns a unique data key for each request. The bytes in the
16
16
  * plaintext key are not related to the caller or the KMS key.</p>
17
17
  *
18
- * <p>To generate a data key, specify the symmetric KMS key that will be used to encrypt the data
19
- * key. You cannot use an asymmetric KMS key to generate data keys. To get the type of your KMS key, use
20
- * the <a>DescribeKey</a> operation. You must also specify the length of the data key.
21
- * Use either the <code>KeySpec</code> or <code>NumberOfBytes</code> parameters (but not both).
22
- * For 128-bit and 256-bit data keys, use the <code>KeySpec</code> parameter. </p>
18
+ * <p>To generate a data key, specify the symmetric KMS key that will be used to encrypt the
19
+ * data key. You cannot use an asymmetric KMS key to generate data keys. To get the type of your
20
+ * KMS key, use the <a>DescribeKey</a> operation. You must also specify the length of
21
+ * the data key. Use either the <code>KeySpec</code> or <code>NumberOfBytes</code> parameters
22
+ * (but not both). For 128-bit and 256-bit data keys, use the <code>KeySpec</code> parameter. </p>
23
23
  *
24
24
  * <p>To get only an encrypted copy of the data key, use <a>GenerateDataKeyWithoutPlaintext</a>. To generate an asymmetric data key pair, use
25
25
  * the <a>GenerateDataKeyPair</a> or <a>GenerateDataKeyPairWithoutPlaintext</a> operation. To get a cryptographically secure
@@ -34,11 +34,14 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
34
34
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
35
35
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
36
36
  * <p>
37
- * <b>How to use your data key</b>
37
+ * <b>How to use your data
38
+ * key</b>
38
39
  * </p>
39
- * <p>We recommend that you use the following pattern to encrypt data locally in your application.
40
- * You can write your own code or use a client-side encryption library, such as the <a href="https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/">Amazon Web Services Encryption SDK</a>, the <a href="https://docs.aws.amazon.com/dynamodb-encryption-client/latest/devguide/">Amazon DynamoDB Encryption Client</a>, or
41
- * <a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html">Amazon S3
40
+ * <p>We recommend that you use the following pattern to encrypt data locally in your
41
+ * application. You can write your own code or use a client-side encryption library, such as the
42
+ * <a href="https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/">Amazon Web Services Encryption SDK</a>, the
43
+ * <a href="https://docs.aws.amazon.com/dynamodb-encryption-client/latest/devguide/">Amazon DynamoDB Encryption Client</a>,
44
+ * or <a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html">Amazon S3
42
45
  * client-side encryption</a> to do these tasks for you.</p>
43
46
  * <p>To encrypt data outside of KMS:</p>
44
47
  * <ol>
@@ -152,4 +155,3 @@ class GenerateDataKeyCommand extends smithy_client_1.Command {
152
155
  }
153
156
  }
154
157
  exports.GenerateDataKeyCommand = GenerateDataKeyCommand;
155
- //# sourceMappingURL=GenerateDataKeyCommand.js.map
@@ -8,20 +8,21 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Generates a unique asymmetric data key pair. The <code>GenerateDataKeyPair</code>
10
10
  * operation returns a plaintext public key, a plaintext private key, and a copy of the private
11
- * key that is encrypted under the symmetric KMS key you specify. You can use the data key pair to
12
- * perform asymmetric cryptography and implement digital signatures outside of KMS.</p>
11
+ * key that is encrypted under the symmetric KMS key you specify. You can use the data key pair
12
+ * to perform asymmetric cryptography and implement digital signatures outside of KMS.</p>
13
13
  *
14
14
  * <p>You can use the public key that <code>GenerateDataKeyPair</code> returns to encrypt data
15
15
  * or verify a signature outside of KMS. Then, store the encrypted private key with the data.
16
16
  * When you are ready to decrypt data or sign a message, you can use the <a>Decrypt</a> operation to decrypt the encrypted private key.</p>
17
17
  *
18
- * <p>To generate a data key pair, you must specify a symmetric KMS key to
19
- * encrypt the private key in a data key pair. You cannot use an asymmetric KMS key or a KMS key in a
20
- * custom key store. To get the type and origin of your KMS key, use the <a>DescribeKey</a> operation. </p>
18
+ * <p>To generate a data key pair, you must specify a symmetric KMS key to encrypt the private
19
+ * key in a data key pair. You cannot use an asymmetric KMS key or a KMS key in a custom key
20
+ * store. To get the type and origin of your KMS key, use the <a>DescribeKey</a>
21
+ * operation. </p>
21
22
  * <p>Use the <code>KeyPairSpec</code> parameter to choose an RSA or Elliptic Curve (ECC) data
22
- * key pair. KMS recommends that your use ECC key pairs for signing, and use RSA key pairs
23
- * for either encryption or signing, but not both. However, KMS cannot enforce any restrictions
24
- * on the use of data key pairs outside of KMS.</p>
23
+ * key pair. KMS recommends that your use ECC key pairs for signing, and use RSA key pairs for
24
+ * either encryption or signing, but not both. However, KMS cannot enforce any restrictions on
25
+ * the use of data key pairs outside of KMS.</p>
25
26
  *
26
27
  * <p>If you are using the data key pair to encrypt data, or for any operation where you don't
27
28
  * immediately need a private key, consider using the <a>GenerateDataKeyPairWithoutPlaintext</a> operation.
@@ -33,10 +34,10 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
33
34
  *
34
35
  * <p>
35
36
  * <code>GenerateDataKeyPair</code> returns a unique data key pair for each request. The
36
- * bytes in the keys are not related to the caller or the KMS key that is used to encrypt the private
37
- * key. The public key is a DER-encoded X.509 SubjectPublicKeyInfo, as specified in <a href="https://tools.ietf.org/html/rfc5280">RFC 5280</a>. The
38
- * private key is a DER-encoded PKCS8 PrivateKeyInfo, as specified in <a href="https://tools.ietf.org/html/rfc5958">RFC
39
- * 5958</a>.</p>
37
+ * bytes in the keys are not related to the caller or the KMS key that is used to encrypt the
38
+ * private key. The public key is a DER-encoded X.509 SubjectPublicKeyInfo, as specified in
39
+ * <a href="https://tools.ietf.org/html/rfc5280">RFC 5280</a>. The private key is a
40
+ * DER-encoded PKCS8 PrivateKeyInfo, as specified in <a href="https://tools.ietf.org/html/rfc5958">RFC 5958</a>.</p>
40
41
  *
41
42
  * <p>You can use the optional encryption context to add additional security to the encryption
42
43
  * operation. If you specify an <code>EncryptionContext</code>, you must specify the same
@@ -46,7 +47,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
46
47
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
47
48
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
48
49
  * <p>
49
- * <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
50
+ * <b>Cross-account
51
+ * use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
50
52
  * the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
51
53
  *
52
54
  * <p>
@@ -132,4 +134,3 @@ class GenerateDataKeyPairCommand extends smithy_client_1.Command {
132
134
  }
133
135
  }
134
136
  exports.GenerateDataKeyPairCommand = GenerateDataKeyPairCommand;
135
- //# sourceMappingURL=GenerateDataKeyPairCommand.js.map
@@ -8,23 +8,24 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Generates a unique asymmetric data key pair. The
10
10
  * <code>GenerateDataKeyPairWithoutPlaintext</code> operation returns a plaintext public key
11
- * and a copy of the private key that is encrypted under the symmetric KMS key you specify. Unlike
12
- * <a>GenerateDataKeyPair</a>, this operation does not return a plaintext private
13
- * key. </p>
11
+ * and a copy of the private key that is encrypted under the symmetric KMS key you specify.
12
+ * Unlike <a>GenerateDataKeyPair</a>, this operation does not return a plaintext
13
+ * private key. </p>
14
14
  * <p>You can use the public key that <code>GenerateDataKeyPairWithoutPlaintext</code> returns
15
15
  * to encrypt data or verify a signature outside of KMS. Then, store the encrypted private key
16
16
  * with the data. When you are ready to decrypt data or sign a message, you can use the <a>Decrypt</a> operation to decrypt the encrypted private key.</p>
17
- * <p>To generate a data key pair, you must specify a symmetric KMS key to
18
- * encrypt the private key in a data key pair. You cannot use an asymmetric KMS key or a KMS key in a
19
- * custom key store. To get the type and origin of your KMS key, use the <a>DescribeKey</a> operation. </p>
17
+ * <p>To generate a data key pair, you must specify a symmetric KMS key to encrypt the private
18
+ * key in a data key pair. You cannot use an asymmetric KMS key or a KMS key in a custom key
19
+ * store. To get the type and origin of your KMS key, use the <a>DescribeKey</a>
20
+ * operation. </p>
20
21
  * <p>Use the <code>KeyPairSpec</code> parameter to choose an RSA or Elliptic Curve (ECC) data
21
- * key pair. KMS recommends that your use ECC key pairs for signing, and use RSA key pairs
22
- * for either encryption or signing, but not both. However, KMS cannot enforce any restrictions
23
- * on the use of data key pairs outside of KMS.</p>
22
+ * key pair. KMS recommends that your use ECC key pairs for signing, and use RSA key pairs for
23
+ * either encryption or signing, but not both. However, KMS cannot enforce any restrictions on
24
+ * the use of data key pairs outside of KMS.</p>
24
25
  * <p>
25
26
  * <code>GenerateDataKeyPairWithoutPlaintext</code> returns a unique data key pair for each
26
- * request. The bytes in the key are not related to the caller or KMS key that is used to encrypt the
27
- * private key. The public key is a DER-encoded X.509 SubjectPublicKeyInfo, as specified in
27
+ * request. The bytes in the key are not related to the caller or KMS key that is used to encrypt
28
+ * the private key. The public key is a DER-encoded X.509 SubjectPublicKeyInfo, as specified in
28
29
  * <a href="https://tools.ietf.org/html/rfc5280">RFC 5280</a>.</p>
29
30
  *
30
31
  * <p>You can use the optional encryption context to add additional security to the encryption
@@ -35,11 +36,13 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
35
36
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
36
37
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
37
38
  * <p>
38
- * <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
39
+ * <b>Cross-account
40
+ * use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
39
41
  * the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
40
42
  *
41
43
  * <p>
42
- * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:GenerateDataKeyPairWithoutPlaintext</a> (key policy)</p>
44
+ * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:GenerateDataKeyPairWithoutPlaintext</a> (key
45
+ * policy)</p>
43
46
  * <p>
44
47
  * <b>Related operations:</b>
45
48
  * </p>
@@ -121,4 +124,3 @@ class GenerateDataKeyPairWithoutPlaintextCommand extends smithy_client_1.Command
121
124
  }
122
125
  }
123
126
  exports.GenerateDataKeyPairWithoutPlaintextCommand = GenerateDataKeyPairWithoutPlaintextCommand;
124
- //# sourceMappingURL=GenerateDataKeyPairWithoutPlaintextCommand.js.map
@@ -7,8 +7,8 @@ const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Generates a unique symmetric data key. This operation returns a data key that is encrypted
10
- * under a KMS key that you specify. To request an asymmetric data key pair,
11
- * use the <a>GenerateDataKeyPair</a> or <a>GenerateDataKeyPairWithoutPlaintext</a> operations.</p>
10
+ * under a KMS key that you specify. To request an asymmetric data key pair, use the <a>GenerateDataKeyPair</a> or <a>GenerateDataKeyPairWithoutPlaintext</a>
11
+ * operations.</p>
12
12
  * <p>
13
13
  * <code>GenerateDataKeyWithoutPlaintext</code> is identical to the <a>GenerateDataKey</a> operation except that returns only the encrypted copy of the
14
14
  * data key. This operation is useful for systems that need to encrypt data at some point, but
@@ -23,12 +23,12 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
23
23
  * plaintext data key.</p>
24
24
  * <p>
25
25
  * <code>GenerateDataKeyWithoutPlaintext</code> returns a unique data key for each request.
26
- * The bytes in the keys are not related to the caller or KMS key that is used to encrypt the private
27
- * key.</p>
26
+ * The bytes in the keys are not related to the caller or KMS key that is used to encrypt the
27
+ * private key.</p>
28
28
  *
29
- * <p>To generate a data key, you must specify the symmetric KMS key that is
30
- * used to encrypt the data key. You cannot use an asymmetric KMS key to generate a data key. To get
31
- * the type of your KMS key, use the <a>DescribeKey</a> operation.</p>
29
+ * <p>To generate a data key, you must specify the symmetric KMS key that is used to encrypt the
30
+ * data key. You cannot use an asymmetric KMS key to generate a data key. To get the type of your
31
+ * KMS key, use the <a>DescribeKey</a> operation.</p>
32
32
  *
33
33
  * <p>If the operation succeeds, you will find the encrypted copy of the data key in the
34
34
  * <code>CiphertextBlob</code> field.</p>
@@ -41,11 +41,13 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
41
41
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
42
42
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
43
43
  * <p>
44
- * <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
44
+ * <b>Cross-account
45
+ * use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
45
46
  * the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
46
47
  *
47
48
  * <p>
48
- * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:GenerateDataKeyWithoutPlaintext</a> (key policy)</p>
49
+ * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:GenerateDataKeyWithoutPlaintext</a> (key
50
+ * policy)</p>
49
51
  * <p>
50
52
  * <b>Related operations:</b>
51
53
  * </p>
@@ -127,4 +129,3 @@ class GenerateDataKeyWithoutPlaintextCommand extends smithy_client_1.Command {
127
129
  }
128
130
  }
129
131
  exports.GenerateDataKeyWithoutPlaintextCommand = GenerateDataKeyWithoutPlaintextCommand;
130
- //# sourceMappingURL=GenerateDataKeyWithoutPlaintextCommand.js.map
@@ -11,7 +11,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
11
11
  * the CloudHSM cluster that is associated with a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a>, specify the custom key store
12
12
  * ID.</p>
13
13
  * <p>Applications in Amazon Web Services Nitro Enclaves can call this operation by using the <a href="https://github.com/aws/aws-nitro-enclaves-sdk-c">Amazon Web Services Nitro Enclaves Development Kit</a>. For information about the supporting parameters, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html">How Amazon Web Services Nitro Enclaves use KMS</a> in the <i>Key Management Service Developer Guide</i>.</p>
14
- * <p>For more information about entropy and random number generation, see <a href="https://docs.aws.amazon.com/kms/latest/cryptographic-details/">Key Management Service Cryptographic Details</a>.</p>
14
+ * <p>For more information about entropy and random number generation, see
15
+ * <a href="https://docs.aws.amazon.com/kms/latest/cryptographic-details/">Key Management Service Cryptographic Details</a>.</p>
15
16
  *
16
17
  * <p>
17
18
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:GenerateRandom</a> (IAM policy)</p>
@@ -66,4 +67,3 @@ class GenerateRandomCommand extends smithy_client_1.Command {
66
67
  }
67
68
  }
68
69
  exports.GenerateRandomCommand = GenerateRandomCommand;
69
- //# sourceMappingURL=GenerateRandomCommand.js.map
@@ -66,4 +66,3 @@ class GetKeyPolicyCommand extends smithy_client_1.Command {
66
66
  }
67
67
  }
68
68
  exports.GetKeyPolicyCommand = GetKeyPolicyCommand;
69
- //# sourceMappingURL=GetKeyPolicyCommand.js.map
@@ -8,7 +8,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Gets a Boolean value that indicates whether <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html">automatic rotation of the key material</a> is
10
10
  * enabled for the specified KMS key.</p>
11
- * <p>You cannot enable automatic rotation of <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symm-asymm-concepts.html#asymmetric-cmks">asymmetric KMS keys</a>, KMS keys with <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">imported key material</a>, or KMS keys in a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a>. To enable or disable automatic rotation of a set of related <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html#mrk-replica-key">multi-Region keys</a>, set the property on the primary key. The key rotation status for these KMS keys is always <code>false</code>.</p>
11
+ * <p>You cannot enable automatic rotation of <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symm-asymm-concepts.html#asymmetric-cmks">asymmetric KMS keys</a>, KMS keys with <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">imported key material</a>, or KMS keys in a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a>. To enable or disable automatic rotation of a set of related <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html#mrk-replica-key">multi-Region keys</a>, set the property on the primary key. The key rotation status for these KMS keys is always
12
+ * <code>false</code>.</p>
12
13
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
13
14
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
14
15
  * <ul>
@@ -94,4 +95,3 @@ class GetKeyRotationStatusCommand extends smithy_client_1.Command {
94
95
  }
95
96
  }
96
97
  exports.GetKeyRotationStatusCommand = GetKeyRotationStatusCommand;
97
- //# sourceMappingURL=GetKeyRotationStatusCommand.js.map
@@ -6,16 +6,15 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Returns the items you need to import key material into a symmetric, customer managed
10
- * KMS key. For more information about importing key material into KMS, see
11
- * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing Key
12
- * Material</a> in the <i>Key Management Service Developer Guide</i>.</p>
9
+ * <p>Returns the items you need to import key material into a symmetric, customer managed KMS
10
+ * key. For more information about importing key material into KMS, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing Key Material</a>
11
+ * in the <i>Key Management Service Developer Guide</i>.</p>
13
12
  * <p>This operation returns a public key and an import token. Use the public key to encrypt the
14
13
  * symmetric key material. Store the import token to send with a subsequent <a>ImportKeyMaterial</a> request.</p>
15
- * <p>You must specify the key ID of the symmetric KMS key into which you will import key material.
16
- * This KMS key's <code>Origin</code> must be <code>EXTERNAL</code>. You must also specify the
17
- * wrapping algorithm and type of wrapping key (public key) that you will use to encrypt the key
18
- * material. You cannot perform this operation on an asymmetric KMS key or on any KMS key in a different Amazon Web Services account.</p>
14
+ * <p>You must specify the key ID of the symmetric KMS key into which you will import key
15
+ * material. This KMS key's <code>Origin</code> must be <code>EXTERNAL</code>. You must also
16
+ * specify the wrapping algorithm and type of wrapping key (public key) that you will use to
17
+ * encrypt the key material. You cannot perform this operation on an asymmetric KMS key or on any KMS key in a different Amazon Web Services account.</p>
19
18
  * <p>To import key material, you must use the public key and import token from the same
20
19
  * response. These items are valid for 24 hours. The expiration date and time appear in the
21
20
  * <code>GetParametersForImport</code> response. You cannot use an expired token in an <a>ImportKeyMaterial</a> request. If your key and token expire, send another
@@ -93,4 +92,3 @@ class GetParametersForImportCommand extends smithy_client_1.Command {
93
92
  }
94
93
  }
95
94
  exports.GetParametersForImportCommand = GetParametersForImportCommand;
96
- //# sourceMappingURL=GetParametersForImportCommand.js.map
@@ -6,10 +6,11 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Returns the public key of an asymmetric KMS key. Unlike the private key of a asymmetric KMS key,
10
- * which never leaves KMS unencrypted, callers with <code>kms:GetPublicKey</code> permission
11
- * can download the public key of an asymmetric KMS key. You can share the public key to allow others
12
- * to encrypt messages and verify signatures outside of KMS. For information about symmetric and asymmetric KMS keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">Using Symmetric and Asymmetric KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
9
+ * <p>Returns the public key of an asymmetric KMS key. Unlike the private key of a asymmetric
10
+ * KMS key, which never leaves KMS unencrypted, callers with <code>kms:GetPublicKey</code>
11
+ * permission can download the public key of an asymmetric KMS key. You can share the public key
12
+ * to allow others to encrypt messages and verify signatures outside of KMS.
13
+ * For information about symmetric and asymmetric KMS keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">Using Symmetric and Asymmetric KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
13
14
  * <p>You do not need to download the public key. Instead, you can use the public key within
14
15
  * KMS by calling the <a>Encrypt</a>, <a>ReEncrypt</a>, or <a>Verify</a> operations with the identifier of an asymmetric KMS key. When you use the
15
16
  * public key within KMS, you benefit from the authentication, authorization, and logging that
@@ -43,7 +44,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
43
44
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
44
45
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
45
46
  * <p>
46
- * <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
47
+ * <b>Cross-account use</b>:
48
+ * Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
47
49
  * the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
48
50
  *
49
51
  * <p>
@@ -102,4 +104,3 @@ class GetPublicKeyCommand extends smithy_client_1.Command {
102
104
  }
103
105
  }
104
106
  exports.GetPublicKeyCommand = GetPublicKeyCommand;
105
- //# sourceMappingURL=GetPublicKeyCommand.js.map