Class: Aws::KMS::Types::GetPublicKeyResponse

Inherits:
Struct
  • Object
show all
Includes:
Structure
Defined in:
lib/aws-sdk-kms/types.rb

Overview

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#customer_master_key_specString

Instead, use the ‘KeySpec` field in the `GetPublicKey` response.

The ‘KeySpec` and `CustomerMasterKeySpec` fields have the same value. We recommend that you use the `KeySpec` field in your code. However, to avoid breaking changes, KMS supports both fields.

Returns:

  • (String)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end

#encryption_algorithmsArray<String>

The encryption algorithms that KMS supports for this key.

This information is critical. If a public key encrypts data outside of KMS by using an unsupported encryption algorithm, the ciphertext cannot be decrypted.

This field appears in the response only when the ‘KeyUsage` of the public key is `ENCRYPT_DECRYPT`.

Returns:

  • (Array<String>)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end

#key_agreement_algorithmsArray<String>

The key agreement algorithm used to derive a shared secret. This field is present only when the KMS key has a ‘KeyUsage` value of `KEY_AGREEMENT`.

Returns:

  • (Array<String>)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end

#key_idString

The Amazon Resource Name ([key ARN]) of the asymmetric KMS key from which the public key was downloaded.

[1]: docs.aws.amazon.com/kms/latest/developerguide/concepts.html#key-id-key-ARN

Returns:

  • (String)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end

#key_specString

The type of the of the public key that was downloaded.

Returns:

  • (String)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end

#key_usageString

The permitted use of the public key. Valid values for asymmetric key pairs are ‘ENCRYPT_DECRYPT`, `SIGN_VERIFY`, and `KEY_AGREEMENT`.

This information is critical. For example, if a public key with ‘SIGN_VERIFY` key usage encrypts data outside of KMS, the ciphertext cannot be decrypted.

Returns:

  • (String)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end

#public_keyString

The exported public key.

The value is a DER-encoded X.509 public key, also known as ‘SubjectPublicKeyInfo` (SPKI), as defined in [RFC 5280]. When you use the HTTP API or the Amazon Web Services CLI, the value is Base64-encoded. Otherwise, it is not Base64-encoded.

[1]: tools.ietf.org/html/rfc5280

Returns:

  • (String)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end

#signing_algorithmsArray<String>

The signing algorithms that KMS supports for this key.

This field appears in the response only when the ‘KeyUsage` of the public key is `SIGN_VERIFY`.

Returns:

  • (Array<String>)


3624
3625
3626
3627
3628
3629
3630
3631
3632
3633
3634
3635
# File 'lib/aws-sdk-kms/types.rb', line 3624

class GetPublicKeyResponse < Struct.new(
  :key_id,
  :public_key,
  :customer_master_key_spec,
  :key_spec,
  :key_usage,
  :encryption_algorithms,
  :signing_algorithms,
  :key_agreement_algorithms)
  SENSITIVE = []
  include Aws::Structure
end