PyPI - pangea-sdk - Versions diffs - 3.8.0__py3-none-any.whl → 5.3.0__py3-none-any.whl - Mend

pangea-sdk 3.8.0py3-none-any.whl → 5.3.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (51) hide show

pangea/__init__.py +2 -1
pangea/asyncio/__init__.py +1 -0
pangea/asyncio/file_uploader.py +39 -0
pangea/asyncio/request.py +46 -23
pangea/asyncio/services/__init__.py +2 -0
pangea/asyncio/services/audit.py +46 -20
pangea/asyncio/services/authn.py +123 -61
pangea/asyncio/services/authz.py +57 -31
pangea/asyncio/services/base.py +21 -2
pangea/asyncio/services/embargo.py +2 -2
pangea/asyncio/services/file_scan.py +24 -9
pangea/asyncio/services/intel.py +104 -30
pangea/asyncio/services/redact.py +52 -3
pangea/asyncio/services/sanitize.py +217 -0
pangea/asyncio/services/share.py +733 -0
pangea/asyncio/services/vault.py +1709 -766
pangea/crypto/rsa.py +135 -0
pangea/deep_verify.py +7 -1
pangea/dump_audit.py +9 -8
pangea/file_uploader.py +35 -0
pangea/request.py +70 -49
pangea/response.py +36 -17
pangea/services/__init__.py +2 -0
pangea/services/audit/audit.py +57 -29
pangea/services/audit/models.py +12 -3
pangea/services/audit/signing.py +6 -5
pangea/services/audit/util.py +3 -3
pangea/services/authn/authn.py +120 -66
pangea/services/authn/models.py +167 -11
pangea/services/authz.py +53 -30
pangea/services/base.py +16 -2
pangea/services/embargo.py +2 -2
pangea/services/file_scan.py +32 -15
pangea/services/intel.py +155 -30
pangea/services/redact.py +132 -3
pangea/services/sanitize.py +388 -0
pangea/services/share/file_format.py +170 -0
pangea/services/share/share.py +1440 -0
pangea/services/vault/models/asymmetric.py +120 -18
pangea/services/vault/models/common.py +439 -141
pangea/services/vault/models/keys.py +94 -0
pangea/services/vault/models/secret.py +27 -3
pangea/services/vault/models/symmetric.py +68 -22
pangea/services/vault/vault.py +1690 -766
pangea/tools.py +6 -7
pangea/utils.py +94 -33
pangea/verify_audit.py +270 -83
{pangea_sdk-3.8.0.dist-info → pangea_sdk-5.3.0.dist-info}/METADATA +21 -29
pangea_sdk-5.3.0.dist-info/RECORD +56 -0
{pangea_sdk-3.8.0.dist-info → pangea_sdk-5.3.0.dist-info}/WHEEL +1 -1
pangea_sdk-3.8.0.dist-info/RECORD +0 -46

pangea/services/vault/models/common.py CHANGED Viewed

@@ -1,10 +1,11 @@
 # Copyright 2022 Pangea Cyber Corporation
 # Author: Pangea Cyber Corporation
-import datetime
+from __future__ import annotations
 import enum
-from typing import Dict, Generic, List, NewType, Optional, TypeVar, Union
+from typing import Dict, Generic, List, Literal, Mapping, NewType, Optional, TypeVar, Union
-from pangea.response import APIRequestModel, PangeaResponseResult
+from pangea.response import APIRequestModel, PangeaDateTime, PangeaResponseResult
 # EncodedPublicKey is a PEM public key, with no further encoding (i.e. no base64)
 # It may be used for example in openssh with no further processing
@@ -18,80 +19,6 @@ EncodedPrivateKey = NewType("EncodedPrivateKey", str)
 EncodedSymmetricKey = NewType("EncodedSymmetricKey", str)
-class KeyPurpose(str, enum.Enum):
-    SIGNING = "signing"
-    ENCRYPTION = "encryption"
-    JWT = "jwt"
-    def __str__(self):
-        return str(self.value)
-    def __repr__(self):
-        return str(self.value)
-class AsymmetricAlgorithm(str, enum.Enum):
-    Ed25519 = "ED25519"
-    RSA2048_PKCS1V15_SHA256 = "RSA-PKCS1V15-2048-SHA256"
-    RSA2048_OAEP_SHA256 = "RSA-OAEP-2048-SHA256"
-    ES256 = "ES256"
-    ES384 = "ES384"
-    ES512 = "ES512"
-    ES256K = "ES256K"
-    RSA2048_OAEP_SHA1 = "RSA-OAEP-2048-SHA1"
-    RSA2048_OAEP_SHA512 = "RSA-OAEP-2048-SHA512"
-    RSA3072_OAEP_SHA1 = "RSA-OAEP-3072-SHA1"
-    RSA3072_OAEP_SHA256 = "RSA-OAEP-3072-SHA256"
-    RSA3072_OAEP_SHA512 = "RSA-OAEP-3072-SHA512"
-    RSA4096_OAEP_SHA1 = "RSA-OAEP-4096-SHA1"
-    RSA4096_OAEP_SHA256 = "RSA-OAEP-4096-SHA256"
-    RSA4096_OAEP_SHA512 = "RSA-OAEP-4096-SHA512"
-    RSA2048_PSS_SHA256 = "RSA-PSS-2048-SHA256"
-    RSA3072_PSS_SHA256 = "RSA-PSS-3072-SHA256"
-    RSA4096_PSS_SHA256 = "RSA-PSS-4096-SHA256"
-    RSA4096_PSS_SHA512 = "RSA-PSS-4096-SHA512"
-    RSA = "RSA-PKCS1V15-2048-SHA256"  # deprecated, use RSA2048_PKCS1V15_SHA256 instead
-    Ed25519_DILITHIUM2_BETA = "ED25519-DILITHIUM2-BETA"
-    Ed448_DILITHIUM3_BETA = "ED448-DILITHIUM3-BETA"
-    SPHINCSPLUS_128F_SHAKE256_SIMPLE_BETA = "SPHINCSPLUS-128F-SHAKE256-SIMPLE-BETA"
-    SPHINCSPLUS_128F_SHAKE256_ROBUST_BETA = "SPHINCSPLUS-128F-SHAKE256-ROBUST-BETA"
-    SPHINCSPLUS_192F_SHAKE256_SIMPLE_BETA = "SPHINCSPLUS-192F-SHAKE256-SIMPLE-BETA"
-    SPHINCSPLUS_192F_SHAKE256_ROBUST_BETA = "SPHINCSPLUS-192F-SHAKE256-ROBUST-BETA"
-    SPHINCSPLUS_256F_SHAKE256_SIMPLE_BETA = "SPHINCSPLUS-256F-SHAKE256-SIMPLE-BETA"
-    SPHINCSPLUS_256F_SHAKE256_ROBUST_BETA = "SPHINCSPLUS-256F-SHAKE256-ROBUST-BETA"
-    SPHINCSPLUS_128F_SHA256_SIMPLE_BETA = "SPHINCSPLUS-128F-SHA256-SIMPLE-BETA"
-    SPHINCSPLUS_128F_SHA256_ROBUST_BETA = "SPHINCSPLUS-128F-SHA256-ROBUST-BETA"
-    SPHINCSPLUS_192F_SHA256_SIMPLE_BETA = "SPHINCSPLUS-192F-SHA256-SIMPLE-BETA"
-    SPHINCSPLUS_192F_SHA256_ROBUST_BETA = "SPHINCSPLUS-192F-SHA256-ROBUST-BETA"
-    SPHINCSPLUS_256F_SHA256_SIMPLE_BETA = "SPHINCSPLUS-256F-SHA256-SIMPLE-BETA"
-    SPHINCSPLUS_256F_SHA256_ROBUST_BETA = "SPHINCSPLUS-256F-SHA256-ROBUST-BETA"
-    FALCON_1024_BETA = "FALCON-1024-BETA"
-    def __str__(self):
-        return str(self.value)
-    def __repr__(self):
-        return str(self.value)
-class SymmetricAlgorithm(str, enum.Enum):
-    HS256 = "HS256"
-    HS384 = "HS384"
-    HS512 = "HS512"
-    AES128_CFB = "AES-CFB-128"
-    AES256_CFB = "AES-CFB-256"
-    AES256_GCM = "AES-GCM-256"
-    AES128_CBC = "AES-CBC-128"
-    AES256_CBC = "AES-CBC-256"
-    AES = "AES-CFB-128"  # deprecated, use AES128_CFB instead
-    def __str__(self):
-        return str(self.value)
-    def __repr__(self):
-        return str(self.value)
 Metadata = NewType("Metadata", Dict[str, str])
 Tags = NewType("Tags", List[str])
@@ -132,12 +59,11 @@ class ItemType(str, enum.Enum):
     SYMMETRIC_KEY = "symmetric_key"
     SECRET = "secret"
     PANGEA_TOKEN = "pangea_token"
-    def __str__(self):
-        return str(self.value)
-    def __repr__(self):
-        return str(self.value)
+    PANGEA_CLIENT_SECRET = "pangea_client_secret"
+    FOLDER = "folder"
+    CERTIFICATE = "certificate"
+    CERTIFICATE_AUTHORITY = "ca"
+    CERTIFICATE_REVOCATION_LIST = "crl"
 class ItemVersionState(str, enum.Enum):
@@ -148,33 +74,45 @@ class ItemVersionState(str, enum.Enum):
     DESTROYED = "destroyed"
     INHERITED = "inherited"
-    def __str__(self):
-        return str(self.value)
-    def __repr__(self):
-        return str(self.value)
+class RotationState(str, enum.Enum):
+    DEACTIVATED = "deactivated"
+    DESTROYED = "destroyed"
+class RequestRotationState(str, enum.Enum):
+    DEACTIVATED = "deactivated"
+    DESTROYED = "destroyed"
+    INHERITED = "inherited"
+class RequestManualRotationState(str, enum.Enum):
+    DEACTIVATED = "deactivated"
+    SUSPENDED = "suspended"
+    DESTROYED = "destroyed"
+    INHERITED = "inherited"
 class ItemState(str, enum.Enum):
     ENABLED = "enabled"
     DISABLED = "disabled"
-    def __str__(self):
-        return str(self.value)
+    value: str
-    def __repr__(self):
-        return str(self.value)
+class ExportEncryptionType(str, enum.Enum):
+    NONE = "none"
+    ASYMMETRIC = "asymmetric"
+    KEM = "kem"
-class CommonStoreRequest(APIRequestModel):
-    type: ItemType
-    name: str
-    folder: Optional[str] = None
-    metadata: Optional[Metadata] = None
-    tags: Optional[Tags] = None
-    rotation_frequency: Optional[str] = None
-    rotation_state: Optional[ItemVersionState] = None
-    expiration: Optional[datetime.datetime] = None
+class ExportEncryptionAlgorithm(str, enum.Enum):
+    """Algorithm of an exported public key."""
+    RSA4096_OAEP_SHA512 = "RSA-OAEP-4096-SHA512"
+    """RSA 4096-bit key, OAEP padding, SHA512 digest."""
+    RSA_NO_PADDING_4096_KEM = "RSA-NO-PADDING-4096-KEM"
 class CommonStoreResult(PangeaResponseResult):
@@ -183,17 +121,6 @@ class CommonStoreResult(PangeaResponseResult):
     version: int
-class CommonGenerateRequest(APIRequestModel):
-    type: ItemType
-    name: str
-    folder: Optional[str] = None
-    metadata: Optional[Metadata] = None
-    tags: Optional[Tags] = None
-    rotation_frequency: Optional[str] = None
-    rotation_state: Optional[ItemVersionState] = None
-    expiration: Optional[datetime.datetime] = None
 class CommonGenerateResult(PangeaResponseResult):
     type: str
     version: int
@@ -202,25 +129,40 @@ class CommonGenerateResult(PangeaResponseResult):
 class GetRequest(APIRequestModel):
     id: str
-    version: Optional[Union[str, int]] = None
-    verbose: Optional[bool] = None
-    version_state: Optional[ItemVersionState] = None
+    version: Union[Literal["all"], int, None] = None
+class GetBulkRequest(APIRequestModel):
+    filter: Mapping[str, str]
+    """Filters to customize a search."""
+    size: Optional[int] = None
+    """Maximum number of items in the response."""
+    order: Optional[ItemOrder] = None
+    """Direction for ordering the results."""
+    order_by: Optional[ItemOrderBy] = None
+    """Property by which to order the results."""
+    last: Optional[str] = None
+    """
+    Internal ID returned in the previous look up response. Used for pagination.
+    """
-class ItemVersionData(PangeaResponseResult):
+class ItemVersion(PangeaResponseResult):
     version: int
-    state: str
     created_at: str
-    destroy_at: Optional[str] = None
-    public_key: Optional[EncodedPublicKey] = None
-    secret: Optional[str] = None
+    state: ItemVersionState
+    destroyed_at: Optional[str] = None
 class ItemData(PangeaResponseResult):
     type: str
     id: Optional[str] = None
     item_state: Optional[str] = None
-    current_version: Optional[ItemVersionData] = None
+    current_version: Optional[ItemVersion] = None
     name: Optional[str] = None
     folder: Optional[str] = None
     metadata: Optional[Metadata] = None
@@ -233,6 +175,8 @@ class ItemData(PangeaResponseResult):
     created_at: Optional[str] = None
     algorithm: Optional[str] = None
     purpose: Optional[str] = None
+    exportable: Optional[bool] = None
+    """Whether the key is exportable or not."""
 class InheritedSettings(PangeaResponseResult):
@@ -241,24 +185,105 @@ class InheritedSettings(PangeaResponseResult):
     rotation_grace_period: Optional[str] = None
-class GetResult(ItemData):
-    versions: List[ItemVersionData] = []
-    rotation_grace_period: Optional[str] = None
-    inherited_settings: Optional[InheritedSettings] = None
+class Key(PangeaResponseResult):
+    id: str
+    type: ItemType
+    item_state: Optional[ItemState] = None
+    enabled: bool
+    current_version: Optional[ItemVersion] = None
+    name: str
+    folder: str
+    metadata: Optional[Metadata] = None
+    tags: Optional[Tags] = None
+    rotation_frequency: str
+    rotation_state: RotationState
+    last_rotated: Optional[str] = None
+    next_rotation: str
+    disabled_at: Optional[str] = None
+    created_at: str
+    algorithm: str
+    purpose: str
+    encrypting_item_id: Optional[str] = None
+    inherited_settings: InheritedSettings
+    exportable: bool
+    """Whether the key is exportable or not."""
-class ListItemData(ItemData):
-    compromised_versions: Optional[List[ItemVersionData]] = None
+class SecretVersion(ItemVersion):
+    secret: Optional[str] = None
+class Secret(PangeaResponseResult):
+    id: str
+    type: Literal[ItemType.SECRET] = ItemType.SECRET
+    enabled: bool
+    name: str
+    folder: str
+    metadata: Optional[Metadata] = None
+    tags: Optional[Tags] = None
+    expiration: Optional[str] = None
+    created_at: str
+    encrypting_item_id: Optional[str] = None
+    item_versions: List[SecretVersion]
+class ClientSecret(PangeaResponseResult):
+    id: str
+    type: Literal[ItemType.PANGEA_CLIENT_SECRET] = ItemType.PANGEA_CLIENT_SECRET
+    enabled: bool
+    name: str
+    folder: str
+    metadata: Metadata
+    tags: Tags
+    expiration: str
+    created_at: str
+    encrypting_item_id: str
+    rotation_frequency: str
+    rotation_state: RotationState
+    rotation_grace_period: str
+    inherited_settings: InheritedSettings
+    item_versions: List[SecretVersion]
+class Folder(PangeaResponseResult):
+    id: str
+    type: Literal[ItemType.FOLDER] = ItemType.FOLDER
+    name: str
+    folder: str
+    metadata: Metadata
+    tags: Tags
+    created_at: str
+    inherited_settings: InheritedSettings
+class ListItemData(PangeaResponseResult):
+    id: str
+    type: ItemType
+    name: str
+    folder: str
+    created_at: str
+    tags: Optional[Tags] = None
+    metadata: Optional[Metadata] = None
+    last_rotated: Optional[str] = None
+    next_rotation: Optional[str] = None
+    disabled_at: Optional[str] = None
+    rotation_frequency: Optional[str] = None
+    rotation_state: Optional[RotationState] = None
+    algorithm: Optional[str] = None
+    purpose: Optional[str] = None
+    inherited_settings: Optional[InheritedSettings] = None
+    compromised_versions: Optional[List[ItemVersion]] = None
 class ListResult(PangeaResponseResult):
-    items: List[ListItemData] = []
-    count: int
-    last: Optional[str]
+    items: List[ListItemData]
+    last: Optional[str] = None
+    """Internal ID returned in the previous look up response. Used for pagination."""
 class ListRequest(APIRequestModel):
-    filter: Optional[Dict[str, str]] = None
+    filter: Optional[Mapping[str, str]] = None
     size: Optional[int] = None
     order: Optional[ItemOrder] = None
     order_by: Optional[ItemOrderBy] = None
@@ -267,7 +292,7 @@ class ListRequest(APIRequestModel):
 class CommonRotateRequest(APIRequestModel):
     id: str
-    rotation_state: Optional[ItemVersionState] = None
+    rotation_state: RequestManualRotationState = RequestManualRotationState.DEACTIVATED
 class CommonRotateResult(PangeaResponseResult):
@@ -276,12 +301,6 @@ class CommonRotateResult(PangeaResponseResult):
     type: str
-class KeyRotateRequest(CommonRotateRequest):
-    key: Optional[str] = None
-    public_key: Optional[EncodedPublicKey] = None
-    private_key: Optional[EncodedPrivateKey] = None
 class KeyRotateResult(CommonRotateResult):
     public_key: Optional[EncodedPublicKey] = None
     algorithm: str
@@ -290,10 +309,12 @@ class KeyRotateResult(CommonRotateResult):
 class DeleteRequest(APIRequestModel):
     id: str
+    recursive: bool = False
 class DeleteResult(PangeaResponseResult):
     id: str
+    """The ID of the item."""
 class UpdateRequest(APIRequestModel):
@@ -302,11 +323,11 @@ class UpdateRequest(APIRequestModel):
     folder: Optional[str] = None
     metadata: Optional[Metadata] = None
     tags: Optional[Tags] = None
+    disabled_at: Optional[str] = None
+    enabled: Optional[bool] = None
     rotation_frequency: Optional[str] = None
-    rotation_state: Optional[ItemVersionState] = None
+    rotation_state: RequestRotationState = RequestRotationState.INHERITED
     rotation_grace_period: Optional[str] = None
-    expiration: Optional[datetime.datetime] = None
-    item_state: Optional[ItemState] = None
 class UpdateResult(PangeaResponseResult):
@@ -355,6 +376,7 @@ class JWTVerifyRequest(APIRequestModel):
 class JWTVerifyResult(PangeaResponseResult):
     valid_signature: bool
+    """Indicates if messages have been verified."""
 class JWTSignRequest(APIRequestModel):
@@ -364,6 +386,7 @@ class JWTSignRequest(APIRequestModel):
 class JWTSignResult(PangeaResponseResult):
     jws: str
+    """The signed JSON Web Token (JWS)."""
 class StateChangeRequest(APIRequestModel):
@@ -386,12 +409,38 @@ class FolderCreateRequest(APIRequestModel):
     metadata: Optional[Metadata] = None
     tags: Optional[Tags] = None
     rotation_frequency: Optional[str] = None
-    rotation_state: Optional[ItemVersionState] = None
+    rotation_state: Optional[RequestRotationState] = None
     rotation_grace_period: Optional[str] = None
+    disabled_at: Optional[PangeaDateTime] = None
 class FolderCreateResult(PangeaResponseResult):
     id: str
+    """The ID of the item."""
+    type: str
+    """The type of the folder."""
+    name: str
+    """The name of this item."""
+    folder: str
+    """The folder where this item is stored."""
+    metadata: Optional[Metadata] = None
+    """User-provided metadata."""
+    tags: Optional[Tags] = None
+    """A list of user-defined tags."""
+    created_at: str
+    """Timestamp indicating when the item was created."""
+    inherited_settings: InheritedSettings
+    """
+    For settings that inherit a value from a parent folder, the full path of the
+    folder where the value is set.
+    """
 TDict = TypeVar("TDict", bound=Dict)
@@ -427,3 +476,252 @@ class EncryptStructuredResult(PangeaResponseResult, Generic[TDict]):
     structured_data: TDict
     """Encrypted structured data."""
+class TransformAlphabet(str, enum.Enum):
+    """Set of characters to use for format-preserving encryption (FPE)."""
+    NUMERIC = "numeric"
+    """Numeric (0-9)."""
+    ALPHA_LOWER = "alphalower"
+    """Lowercase alphabet (a-z)."""
+    ALPHA_UPPER = "alphaupper"
+    """Uppercase alphabet (A-Z)."""
+    ALPHANUMERIC_LOWER = "alphanumericlower"
+    """Lowercase alphabet with numbers (a-z, 0-9)."""
+    ALPHANUMERIC_UPPER = "alphanumericupper"
+    """Uppercase alphabet with numbers (A-Z, 0-9)."""
+    ALPHANUMERIC = "alphanumeric"
+    """Alphanumeric (a-z, A-Z, 0-9)."""
+class EncryptTransformRequest(APIRequestModel):
+    id: str
+    """The item ID."""
+    plain_text: str
+    """A message to be encrypted."""
+    alphabet: TransformAlphabet
+    """Set of characters to use for format-preserving encryption (FPE)."""
+    tweak: Optional[str] = None
+    """
+    User provided tweak string. If not provided, a random string will be
+    generated and returned. The user must securely store the tweak source which
+    will be needed to decrypt the data.
+    """
+    version: Optional[int] = None
+    """The item version."""
+class EncryptTransformResult(PangeaResponseResult):
+    id: str
+    """The item ID."""
+    version: int
+    """The item version."""
+    algorithm: str
+    """The algorithm of the key."""
+    cipher_text: str
+    """The encrypted message."""
+    tweak: str
+    """
+    User provided tweak string. If not provided, a random string will be
+    generated and returned. The user must securely store the tweak source which
+    will be needed to decrypt the data.
+    """
+    alphabet: str
+    """Set of characters to use for format-preserving encryption (FPE)."""
+class DecryptTransformRequest(APIRequestModel):
+    id: str
+    """The item ID."""
+    cipher_text: str
+    """A message encrypted by Vault."""
+    tweak: str
+    """
+    User provided tweak string. If not provided, a random string will be
+    generated and returned. The user must securely store the tweak source which
+    will be needed to decrypt the data.
+    """
+    alphabet: TransformAlphabet
+    """Set of characters to use for format-preserving encryption (FPE)."""
+    version: Optional[int] = None
+    """The item version."""
+class DecryptTransformResult(PangeaResponseResult):
+    id: str
+    """The item ID."""
+    version: int
+    """The item version."""
+    algorithm: str
+    """The algorithm of the key."""
+    plain_text: str
+    """Decrypted message."""
+class ExportRequest(APIRequestModel):
+    id: str
+    """The ID of the item."""
+    version: Optional[int] = None
+    """The item version."""
+    kem_password: Optional[str] = None
+    """
+    This is the password that will be used along with a salt to derive the
+    symmetric key that is used to encrypt the exported key material.
+    """
+    asymmetric_public_key: Optional[str] = None
+    """Public key in pem format used to encrypt exported key(s)."""
+    asymmetric_algorithm: Optional[ExportEncryptionAlgorithm] = None
+    """The algorithm of the public key."""
+class ExportResult(PangeaResponseResult):
+    id: str
+    """The ID of the key."""
+    type: ItemType
+    """The type of the key."""
+    version: int
+    """The item version."""
+    enabled: bool
+    """True if the item is enabled."""
+    algorithm: str
+    """The algorithm of the key."""
+    asymmetric_algorithm: Optional[ExportEncryptionAlgorithm] = None
+    """The algorithm of the public key used to encrypt exported material."""
+    symmetric_algorithm: Optional[str] = None
+    encryption_type: ExportEncryptionType
+    """
+    Encryption format of the exported key(s). It could be `none` if returned in
+    plain text, `asymmetric` if it is encrypted just with the public key sent in
+    `encryption_public_key`, or `kem` if it was encrypted using KEM protocol.
+    """
+    kdf: Optional[str] = None
+    """
+    Key derivation function used to derivate the symmetric key when
+    `encryption_type` is `kem`.
+    """
+    hash_algorithm: Optional[str] = None
+    """
+    Hash algorithm used to derivate the symmetric key when `encryption_type` is
+    `kem`.
+    """
+    iteration_count: Optional[int] = None
+    """
+    Iteration count used to derivate the symmetric key when `encryption_type` is
+    `kem`.
+    """
+    encrypted_salt: Optional[str] = None
+    """
+    Salt used to derivate the symmetric key when `encryption_type` is `kem`,
+    encrypted with the public key provided in `asymmetric_key`.
+    """
+    public_key: Optional[str] = None
+    """The public key (in PEM format)."""
+    private_key: Optional[str] = None
+    """The private key (in PEM format)."""
+    key: Optional[str] = None
+    """The key material."""
+class PangeaTokenVersion(ItemVersion):
+    token: Optional[str] = None
+    """Pangea token value."""
+class PangeaToken(PangeaResponseResult):
+    id: str
+    """ID of the token."""
+    type: Literal[ItemType.PANGEA_TOKEN] = ItemType.PANGEA_TOKEN
+    """Type of the Vault item."""
+    item_versions: List[PangeaTokenVersion]
+    metadata: Optional[Metadata] = None
+    """Metadata provided by the user."""
+    num_versions: int
+    """Total number of versions of the item."""
+    enabled: bool
+    """`true` if the item is enabled."""
+    name: str
+    """Name of the item."""
+    folder: str
+    """Folder where the item is stored."""
+    tags: Tags
+    """List of user-defined tags."""
+    last_rotated: Optional[str] = None
+    """Timestamp of the last rotation."""
+    next_rotation: Optional[str] = None
+    """Timestamp of the next rotation if auto-rotation is enabled."""
+    disabled_at: Optional[str] = None
+    """Timestamp indicating when the item will be disabled."""
+    created_at: str
+    """Timestamp indicating when the item was created."""
+    rotation_frequency: str
+    """Time interval between item rotations."""
+    rotation_state: RotationState
+    """Target state for the previous version after rotation."""
+    rotation_grace_period: str
+    """Grace period for the previous version."""
+    inherited_settings: InheritedSettings
+    """Full paths of the parent folders from which settings inherit their values."""
+class PangeaTokenRotateRequest(CommonRotateRequest):
+    rotation_grace_period: Optional[str] = None
+class ClientSecretRotateRequest(CommonRotateRequest):
+    rotation_grace_period: Optional[str] = None

pangea-sdk 3.8.0__py3-none-any.whl → 5.3.0__py3-none-any.whl

pangea-sdk 3.8.0py3-none-any.whl → 5.3.0py3-none-any.whl