Manages cryptographic keys and operations using those keys. Implements a REST model with the * following objects: * - *
* [KeyRing][google.cloud.kms.v1.KeyRing] * [CryptoKey][google.cloud.kms.v1.CryptoKey] - * * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] * - * [ImportJob][google.cloud.kms.v1.ImportJob] + *
If you are using manual gRPC libraries, see [Using gRPC with Cloud * KMS](https://cloud.google.com/kms/docs/grpc). @@ -58,23 +62,15 @@ *
This class provides the ability to make remote calls to the backing service through method * calls that map to API methods. Sample code to get started: * - *
- *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String importJobId = "my-import-job";
- * ImportJob.ImportMethod importMethod = ImportJob.ImportMethod.RSA_OAEP_3072_SHA1_AES_256;
- * ProtectionLevel protectionLevel = ProtectionLevel.HSM;
- * ImportJob importJob = ImportJob.newBuilder()
- * .setImportMethod(importMethod)
- * .setProtectionLevel(protectionLevel)
- * .build();
- * ImportJob response = keyManagementServiceClient.createImportJob(parent, importJobId, importJob);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * KeyRingName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * KeyRing response = keyManagementServiceClient.getKeyRing(name);
* }
- *
- *
+ * }
*
- * Note: close() needs to be called on the keyManagementServiceClient object to clean up + *
Note: close() needs to be called on the KeyManagementServiceClient object to clean up * resources such as threads. In the example above, try-with-resources is used, which automatically * calls close(). * @@ -103,30 +99,27 @@ * *
To customize credentials: * - *
- *
+ * {@code
* KeyManagementServiceSettings keyManagementServiceSettings =
* KeyManagementServiceSettings.newBuilder()
* .setCredentialsProvider(FixedCredentialsProvider.create(myCredentials))
* .build();
* KeyManagementServiceClient keyManagementServiceClient =
* KeyManagementServiceClient.create(keyManagementServiceSettings);
- *
- *
+ * }
*
- * To customize the endpoint:
+ * To customize the endpoint: * - *
- *
+ * {@code
* KeyManagementServiceSettings keyManagementServiceSettings =
* KeyManagementServiceSettings.newBuilder().setEndpoint(myEndpoint).build();
* KeyManagementServiceClient keyManagementServiceClient =
* KeyManagementServiceClient.create(keyManagementServiceSettings);
- *
- *
+ * }
+ *
+ * Please refer to the GitHub repository's samples for more quickstart code snippets. */ -@Generated("by gapic-generator") -@BetaApi +@Generated("by gapic-generator-java") public class KeyManagementServiceClient implements BackgroundResource { private final KeyManagementServiceSettings settings; private final KeyManagementServiceStub stub; @@ -147,7 +140,7 @@ public static final KeyManagementServiceClient create(KeyManagementServiceSettin /** * Constructs an instance of KeyManagementServiceClient, using the given stub for making calls. - * This is for advanced usage - prefer to use KeyManagementServiceSettings}. + * This is for advanced usage - prefer using create(KeyManagementServiceSettings). */ @BetaApi("A restructuring of stub classes is planned, so this may break in the future") public static final KeyManagementServiceClient create(KeyManagementServiceStub stub) { @@ -179,3103 +172,3359 @@ public KeyManagementServiceStub getStub() { return stub; } - // AUTO-GENERATED DOCUMENTATION AND METHOD + // AUTO-GENERATED DOCUMENTATION AND METHOD. /** - * Create a new [ImportJob][google.cloud.kms.v1.ImportJob] within a - * [KeyRing][google.cloud.kms.v1.KeyRing]. - * - *
[ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. + * Lists [KeyRings][google.cloud.kms.v1.KeyRing]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String importJobId = "my-import-job";
- * ImportJob.ImportMethod importMethod = ImportJob.ImportMethod.RSA_OAEP_3072_SHA1_AES_256;
- * ProtectionLevel protectionLevel = ProtectionLevel.HSM;
- * ImportJob importJob = ImportJob.newBuilder()
- * .setImportMethod(importMethod)
- * .setProtectionLevel(protectionLevel)
- * .build();
- * ImportJob response = keyManagementServiceClient.createImportJob(parent, importJobId, importJob);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
+ * for (KeyRing element : keyManagementServiceClient.listKeyRings(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * [ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. + * Lists [KeyRings][google.cloud.kms.v1.KeyRing]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String importJobId = "my-import-job";
- * ImportJob.ImportMethod importMethod = ImportJob.ImportMethod.RSA_OAEP_3072_SHA1_AES_256;
- * ProtectionLevel protectionLevel = ProtectionLevel.HSM;
- * ImportJob importJob = ImportJob.newBuilder()
- * .setImportMethod(importMethod)
- * .setProtectionLevel(protectionLevel)
- * .build();
- * ImportJob response = keyManagementServiceClient.createImportJob(parent.toString(), importJobId, importJob);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent = LocationName.of("[PROJECT]", "[LOCATION]").toString();
+ * for (KeyRing element : keyManagementServiceClient.listKeyRings(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * [ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. + * Lists [KeyRings][google.cloud.kms.v1.KeyRing]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String importJobId = "my-import-job";
- * ImportJob.ImportMethod importMethod = ImportJob.ImportMethod.RSA_OAEP_3072_SHA1_AES_256;
- * ProtectionLevel protectionLevel = ProtectionLevel.HSM;
- * ImportJob importJob = ImportJob.newBuilder()
- * .setImportMethod(importMethod)
- * .setProtectionLevel(protectionLevel)
- * .build();
- * CreateImportJobRequest request = CreateImportJobRequest.newBuilder()
- * .setParent(parent.toString())
- * .setImportJobId(importJobId)
- * .setImportJob(importJob)
- * .build();
- * ImportJob response = keyManagementServiceClient.createImportJob(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListKeyRingsRequest request =
+ * ListKeyRingsRequest.newBuilder()
+ * .setParent(LocationName.of("[PROJECT]", "[LOCATION]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * for (KeyRing element : keyManagementServiceClient.listKeyRings(request).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * [ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. + * Lists [KeyRings][google.cloud.kms.v1.KeyRing]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String importJobId = "my-import-job";
- * ImportJob.ImportMethod importMethod = ImportJob.ImportMethod.RSA_OAEP_3072_SHA1_AES_256;
- * ProtectionLevel protectionLevel = ProtectionLevel.HSM;
- * ImportJob importJob = ImportJob.newBuilder()
- * .setImportMethod(importMethod)
- * .setProtectionLevel(protectionLevel)
- * .build();
- * CreateImportJobRequest request = CreateImportJobRequest.newBuilder()
- * .setParent(parent.toString())
- * .setImportJobId(importJobId)
- * .setImportJob(importJob)
- * .build();
- * ApiFuture<ImportJob> future = keyManagementServiceClient.createImportJobCallable().futureCall(request);
- * // Do something
- * ImportJob response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListKeyRingsRequest request =
+ * ListKeyRingsRequest.newBuilder()
+ * .setParent(LocationName.of("[PROJECT]", "[LOCATION]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.listKeyRingsPagedCallable().futureCall(request);
+ * // Do something.
+ * for (KeyRing element : future.get().iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and - * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] - * are required. + *
Sample code: + * + *
{@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListKeyRingsRequest request =
+ * ListKeyRingsRequest.newBuilder()
+ * .setParent(LocationName.of("[PROJECT]", "[LOCATION]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * while (true) {
+ * ListKeyRingsResponse response =
+ * keyManagementServiceClient.listKeyRingsCallable().call(request);
+ * for (KeyRing element : response.getResponsesList()) {
+ * // doThingsWith(element);
+ * }
+ * String nextPageToken = response.getNextPageToken();
+ * if (!Strings.isNullOrEmpty(nextPageToken)) {
+ * request = request.toBuilder().setPageToken(nextPageToken).build();
+ * } else {
+ * break;
+ * }
+ * }
+ * }
+ * }
+ */
+ public final UnaryCallableSample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
* KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String cryptoKeyId = "my-app-key";
- * CryptoKey.CryptoKeyPurpose purpose = CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT;
- * long seconds = 2147483647L;
- * Timestamp nextRotationTime = Timestamp.newBuilder()
- * .setSeconds(seconds)
- * .build();
- * long seconds2 = 604800L;
- * Duration rotationPeriod = Duration.newBuilder()
- * .setSeconds(seconds2)
- * .build();
- * CryptoKey cryptoKey = CryptoKey.newBuilder()
- * .setPurpose(purpose)
- * .setNextRotationTime(nextRotationTime)
- * .setRotationPeriod(rotationPeriod)
- * .build();
- * CryptoKey response = keyManagementServiceClient.createCryptoKey(parent, cryptoKeyId, cryptoKey);
+ * for (CryptoKey element : keyManagementServiceClient.listCryptoKeys(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and - * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] - * are required. + * Lists [CryptoKeys][google.cloud.kms.v1.CryptoKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String cryptoKeyId = "my-app-key";
- * CryptoKey.CryptoKeyPurpose purpose = CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT;
- * long seconds = 2147483647L;
- * Timestamp nextRotationTime = Timestamp.newBuilder()
- * .setSeconds(seconds)
- * .build();
- * long seconds2 = 604800L;
- * Duration rotationPeriod = Duration.newBuilder()
- * .setSeconds(seconds2)
- * .build();
- * CryptoKey cryptoKey = CryptoKey.newBuilder()
- * .setPurpose(purpose)
- * .setNextRotationTime(nextRotationTime)
- * .setRotationPeriod(rotationPeriod)
- * .build();
- * CryptoKey response = keyManagementServiceClient.createCryptoKey(parent.toString(), cryptoKeyId, cryptoKey);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString();
+ * for (CryptoKey element : keyManagementServiceClient.listCryptoKeys(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and - * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] - * are required. + * Lists [CryptoKeys][google.cloud.kms.v1.CryptoKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String cryptoKeyId = "my-app-key";
- * CryptoKey.CryptoKeyPurpose purpose = CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT;
- * long seconds = 2147483647L;
- * Timestamp nextRotationTime = Timestamp.newBuilder()
- * .setSeconds(seconds)
- * .build();
- * long seconds2 = 604800L;
- * Duration rotationPeriod = Duration.newBuilder()
- * .setSeconds(seconds2)
- * .build();
- * CryptoKey cryptoKey = CryptoKey.newBuilder()
- * .setPurpose(purpose)
- * .setNextRotationTime(nextRotationTime)
- * .setRotationPeriod(rotationPeriod)
- * .build();
- * CreateCryptoKeyRequest request = CreateCryptoKeyRequest.newBuilder()
- * .setParent(parent.toString())
- * .setCryptoKeyId(cryptoKeyId)
- * .setCryptoKey(cryptoKey)
- * .build();
- * CryptoKey response = keyManagementServiceClient.createCryptoKey(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListCryptoKeysRequest request =
+ * ListCryptoKeysRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * for (CryptoKey element : keyManagementServiceClient.listCryptoKeys(request).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and - * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] - * are required. + * Lists [CryptoKeys][google.cloud.kms.v1.CryptoKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String cryptoKeyId = "my-app-key";
- * CryptoKey.CryptoKeyPurpose purpose = CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT;
- * long seconds = 2147483647L;
- * Timestamp nextRotationTime = Timestamp.newBuilder()
- * .setSeconds(seconds)
- * .build();
- * long seconds2 = 604800L;
- * Duration rotationPeriod = Duration.newBuilder()
- * .setSeconds(seconds2)
- * .build();
- * CryptoKey cryptoKey = CryptoKey.newBuilder()
- * .setPurpose(purpose)
- * .setNextRotationTime(nextRotationTime)
- * .setRotationPeriod(rotationPeriod)
- * .build();
- * CreateCryptoKeyRequest request = CreateCryptoKeyRequest.newBuilder()
- * .setParent(parent.toString())
- * .setCryptoKeyId(cryptoKeyId)
- * .setCryptoKey(cryptoKey)
- * .build();
- * ApiFuture<CryptoKey> future = keyManagementServiceClient.createCryptoKeyCallable().futureCall(request);
- * // Do something
- * CryptoKey response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListCryptoKeysRequest request =
+ * ListCryptoKeysRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.listCryptoKeysPagedCallable().futureCall(request);
+ * // Do something.
+ * for (CryptoKey element : future.get().iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. + * Lists [CryptoKeys][google.cloud.kms.v1.CryptoKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName resource = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * Policy policy = Policy.newBuilder().build();
- * SetIamPolicyRequest request = SetIamPolicyRequest.newBuilder()
- * .setResource(resource.toString())
- * .setPolicy(policy)
- * .build();
- * Policy response = keyManagementServiceClient.setIamPolicy(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListCryptoKeysRequest request =
+ * ListCryptoKeysRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * while (true) {
+ * ListCryptoKeysResponse response =
+ * keyManagementServiceClient.listCryptoKeysCallable().call(request);
+ * for (CryptoKey element : response.getResponsesList()) {
+ * // doThingsWith(element);
+ * }
+ * String nextPageToken = response.getNextPageToken();
+ * if (!Strings.isNullOrEmpty(nextPageToken)) {
+ * request = request.toBuilder().setPageToken(nextPageToken).build();
+ * } else {
+ * break;
+ * }
+ * }
* }
- * Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED + * Lists [CryptoKeyVersions][google.cloud.kms.v1.CryptoKeyVersion]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * Policy policy = Policy.newBuilder().build();
- * Policy response = keyManagementServiceClient.setIamPolicy(resource, policy);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyName parent =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
+ * for (CryptoKeyVersion element :
+ * keyManagementServiceClient.listCryptoKeyVersions(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED + * Lists [CryptoKeyVersions][google.cloud.kms.v1.CryptoKeyVersion]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * Policy policy = Policy.newBuilder().build();
- * Policy response = keyManagementServiceClient.setIamPolicy(resource.toString(), policy);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]").toString();
+ * for (CryptoKeyVersion element :
+ * keyManagementServiceClient.listCryptoKeyVersions(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. + * Lists [CryptoKeyVersions][google.cloud.kms.v1.CryptoKeyVersion]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName resource = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * Policy policy = Policy.newBuilder().build();
- * SetIamPolicyRequest request = SetIamPolicyRequest.newBuilder()
- * .setResource(resource.toString())
- * .setPolicy(policy)
- * .build();
- * ApiFuture<Policy> future = keyManagementServiceClient.setIamPolicyCallable().futureCall(request);
- * // Do something
- * Policy response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListCryptoKeyVersionsRequest request =
+ * ListCryptoKeyVersionsRequest.newBuilder()
+ * .setParent(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * for (CryptoKeyVersion element :
+ * keyManagementServiceClient.listCryptoKeyVersions(request).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName resource = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * GetIamPolicyRequest request = GetIamPolicyRequest.newBuilder()
- * .setResource(resource.toString())
- * .build();
- * Policy response = keyManagementServiceClient.getIamPolicy(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListCryptoKeyVersionsRequest request =
+ * ListCryptoKeyVersionsRequest.newBuilder()
+ * .setParent(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.listCryptoKeyVersionsPagedCallable().futureCall(request);
+ * // Do something.
+ * for (CryptoKeyVersion element : future.get().iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * Policy response = keyManagementServiceClient.getIamPolicy(resource);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListCryptoKeyVersionsRequest request =
+ * ListCryptoKeyVersionsRequest.newBuilder()
+ * .setParent(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * while (true) {
+ * ListCryptoKeyVersionsResponse response =
+ * keyManagementServiceClient.listCryptoKeyVersionsCallable().call(request);
+ * for (CryptoKeyVersion element : response.getResponsesList()) {
+ * // doThingsWith(element);
+ * }
+ * String nextPageToken = response.getNextPageToken();
+ * if (!Strings.isNullOrEmpty(nextPageToken)) {
+ * request = request.toBuilder().setPageToken(nextPageToken).build();
+ * } else {
+ * break;
+ * }
+ * }
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * Policy response = keyManagementServiceClient.getIamPolicy(resource.toString());
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * for (ImportJob element : keyManagementServiceClient.listImportJobs(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName resource = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * GetIamPolicyRequest request = GetIamPolicyRequest.newBuilder()
- * .setResource(resource.toString())
- * .build();
- * ApiFuture<Policy> future = keyManagementServiceClient.getIamPolicyCallable().futureCall(request);
- * // Do something
- * Policy response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString();
+ * for (ImportJob element : keyManagementServiceClient.listImportJobs(parent).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Note: This operation is designed to be used for building permission-aware UIs and - * command-line tools, not for authorization checking. This operation may "fail open" without - * warning. + * Lists [ImportJobs][google.cloud.kms.v1.ImportJob]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName resource = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * List<String> permissions = new ArrayList<>();
- * TestIamPermissionsRequest request = TestIamPermissionsRequest.newBuilder()
- * .setResource(resource.toString())
- * .addAllPermissions(permissions)
- * .build();
- * TestIamPermissionsResponse response = keyManagementServiceClient.testIamPermissions(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListImportJobsRequest request =
+ * ListImportJobsRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * for (ImportJob element : keyManagementServiceClient.listImportJobs(request).iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Note: This operation is designed to be used for building permission-aware UIs and - * command-line tools, not for authorization checking. This operation may "fail open" without - * warning. + * Lists [ImportJobs][google.cloud.kms.v1.ImportJob]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * List<String> permissions = new ArrayList<>();
- * TestIamPermissionsResponse response = keyManagementServiceClient.testIamPermissions(resource, permissions);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListImportJobsRequest request =
+ * ListImportJobsRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.listImportJobsPagedCallable().futureCall(request);
+ * // Do something.
+ * for (ImportJob element : future.get().iterateAll()) {
+ * // doThingsWith(element);
+ * }
* }
- * Note: This operation is designed to be used for building permission-aware UIs and - * command-line tools, not for authorization checking. This operation may "fail open" without - * warning. + *
Sample code: + * + *
{@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ListImportJobsRequest request =
+ * ListImportJobsRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPageSize(883849137)
+ * .setPageToken("pageToken873572522")
+ * .setFilter("filter-1274492040")
+ * .setOrderBy("orderBy-1207110587")
+ * .build();
+ * while (true) {
+ * ListImportJobsResponse response =
+ * keyManagementServiceClient.listImportJobsCallable().call(request);
+ * for (ImportJob element : response.getResponsesList()) {
+ * // doThingsWith(element);
+ * }
+ * String nextPageToken = response.getNextPageToken();
+ * if (!Strings.isNullOrEmpty(nextPageToken)) {
+ * request = request.toBuilder().setPageToken(nextPageToken).build();
+ * } else {
+ * break;
+ * }
+ * }
+ * }
+ * }
+ */
+ public final UnaryCallableSample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * List<String> permissions = new ArrayList<>();
- * TestIamPermissionsResponse response = keyManagementServiceClient.testIamPermissions(resource.toString(), permissions);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * KeyRingName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * KeyRing response = keyManagementServiceClient.getKeyRing(name);
* }
- * Note: This operation is designed to be used for building permission-aware UIs and - * command-line tools, not for authorization checking. This operation may "fail open" without - * warning. + * Returns metadata for a given [KeyRing][google.cloud.kms.v1.KeyRing]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName resource = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * List<String> permissions = new ArrayList<>();
- * TestIamPermissionsRequest request = TestIamPermissionsRequest.newBuilder()
- * .setResource(resource.toString())
- * .addAllPermissions(permissions)
- * .build();
- * ApiFuture<TestIamPermissionsResponse> future = keyManagementServiceClient.testIamPermissionsCallable().futureCall(request);
- * // Do something
- * TestIamPermissionsResponse response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString();
+ * KeyRing response = keyManagementServiceClient.getKeyRing(name);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * for (KeyRing element : keyManagementServiceClient.listKeyRings(parent).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetKeyRingRequest request =
+ * GetKeyRingRequest.newBuilder()
+ * .setName(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .build();
+ * KeyRing response = keyManagementServiceClient.getKeyRing(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * for (KeyRing element : keyManagementServiceClient.listKeyRings(parent.toString()).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetKeyRingRequest request =
+ * GetKeyRingRequest.newBuilder()
+ * .setName(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.getKeyRingCallable().futureCall(request);
+ * // Do something.
+ * KeyRing response = future.get();
* }
- * Sample code: + * + *
{@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyName name =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
+ * CryptoKey response = keyManagementServiceClient.getCryptoKey(name);
+ * }
+ * }
+ *
+ * @param name Required. The [name][google.cloud.kms.v1.CryptoKey.name] of the
+ * [CryptoKey][google.cloud.kms.v1.CryptoKey] to get.
* @throws com.google.api.gax.rpc.ApiException if the remote call fails
*/
- public final ListKeyRingsPagedResponse listKeyRings(String parent) {
- ListKeyRingsRequest request = ListKeyRingsRequest.newBuilder().setParent(parent).build();
- return listKeyRings(request);
+ public final CryptoKey getCryptoKey(CryptoKeyName name) {
+ GetCryptoKeyRequest request =
+ GetCryptoKeyRequest.newBuilder().setName(name == null ? null : name.toString()).build();
+ return getCryptoKey(request);
}
- // AUTO-GENERATED DOCUMENTATION AND METHOD
+ // AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Lists [KeyRings][google.cloud.kms.v1.KeyRing].
+ * Returns metadata for a given [CryptoKey][google.cloud.kms.v1.CryptoKey], as well as its
+ * [primary][google.cloud.kms.v1.CryptoKey.primary]
+ * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion].
*
* Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * ListKeyRingsRequest request = ListKeyRingsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * for (KeyRing element : keyManagementServiceClient.listKeyRings(request).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]").toString();
+ * CryptoKey response = keyManagementServiceClient.getCryptoKey(name);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * ListKeyRingsRequest request = ListKeyRingsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * ApiFuture<ListKeyRingsPagedResponse> future = keyManagementServiceClient.listKeyRingsPagedCallable().futureCall(request);
- * // Do something
- * for (KeyRing element : future.get().iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetCryptoKeyRequest request =
+ * GetCryptoKeyRequest.newBuilder()
+ * .setName(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .build();
+ * CryptoKey response = keyManagementServiceClient.getCryptoKey(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * ListKeyRingsRequest request = ListKeyRingsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * while (true) {
- * ListKeyRingsResponse response = keyManagementServiceClient.listKeyRingsCallable().call(request);
- * for (KeyRing element : response.getKeyRingsList()) {
- * // doThingsWith(element);
- * }
- * String nextPageToken = response.getNextPageToken();
- * if (!Strings.isNullOrEmpty(nextPageToken)) {
- * request = request.toBuilder().setPageToken(nextPageToken).build();
- * } else {
- * break;
- * }
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetCryptoKeyRequest request =
+ * GetCryptoKeyRequest.newBuilder()
+ * .setName(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.getCryptoKeyCallable().futureCall(request);
+ * // Do something.
+ * CryptoKey response = future.get();
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * for (CryptoKey element : keyManagementServiceClient.listCryptoKeys(parent).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyVersionName name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
+ * CryptoKeyVersion response = keyManagementServiceClient.getCryptoKeyVersion(name);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * for (CryptoKey element : keyManagementServiceClient.listCryptoKeys(parent.toString()).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
+ * .toString();
+ * CryptoKeyVersion response = keyManagementServiceClient.getCryptoKeyVersion(name);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * ListCryptoKeysRequest request = ListCryptoKeysRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * for (CryptoKey element : keyManagementServiceClient.listCryptoKeys(request).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetCryptoKeyVersionRequest request =
+ * GetCryptoKeyVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * CryptoKeyVersion response = keyManagementServiceClient.getCryptoKeyVersion(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * ListCryptoKeysRequest request = ListCryptoKeysRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * ApiFuture<ListCryptoKeysPagedResponse> future = keyManagementServiceClient.listCryptoKeysPagedCallable().futureCall(request);
- * // Do something
- * for (CryptoKey element : future.get().iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetCryptoKeyVersionRequest request =
+ * GetCryptoKeyVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.getCryptoKeyVersionCallable().futureCall(request);
+ * // Do something.
+ * CryptoKeyVersion response = future.get();
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * ListCryptoKeysRequest request = ListCryptoKeysRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * while (true) {
- * ListCryptoKeysResponse response = keyManagementServiceClient.listCryptoKeysCallable().call(request);
- * for (CryptoKey element : response.getCryptoKeysList()) {
- * // doThingsWith(element);
- * }
- * String nextPageToken = response.getNextPageToken();
- * if (!Strings.isNullOrEmpty(nextPageToken)) {
- * request = request.toBuilder().setPageToken(nextPageToken).build();
- * } else {
- * break;
- * }
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyVersionName name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
+ * PublicKey response = keyManagementServiceClient.getPublicKey(name);
* }
- * Sample code: - * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * for (CryptoKeyVersion element : keyManagementServiceClient.listCryptoKeyVersions(parent).iterateAll()) {
- * // doThingsWith(element);
- * }
- * }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * for (CryptoKeyVersion element : keyManagementServiceClient.listCryptoKeyVersions(parent.toString()).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
+ * .toString();
+ * PublicKey response = keyManagementServiceClient.getPublicKey(name);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ListCryptoKeyVersionsRequest request = ListCryptoKeyVersionsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * for (CryptoKeyVersion element : keyManagementServiceClient.listCryptoKeyVersions(request).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetPublicKeyRequest request =
+ * GetPublicKeyRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * PublicKey response = keyManagementServiceClient.getPublicKey(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ListCryptoKeyVersionsRequest request = ListCryptoKeyVersionsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * ApiFuture<ListCryptoKeyVersionsPagedResponse> future = keyManagementServiceClient.listCryptoKeyVersionsPagedCallable().futureCall(request);
- * // Do something
- * for (CryptoKeyVersion element : future.get().iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetPublicKeyRequest request =
+ * GetPublicKeyRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.getPublicKeyCallable().futureCall(request);
+ * // Do something.
+ * PublicKey response = future.get();
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ListCryptoKeyVersionsRequest request = ListCryptoKeyVersionsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * while (true) {
- * ListCryptoKeyVersionsResponse response = keyManagementServiceClient.listCryptoKeyVersionsCallable().call(request);
- * for (CryptoKeyVersion element : response.getCryptoKeyVersionsList()) {
- * // doThingsWith(element);
- * }
- * String nextPageToken = response.getNextPageToken();
- * if (!Strings.isNullOrEmpty(nextPageToken)) {
- * request = request.toBuilder().setPageToken(nextPageToken).build();
- * } else {
- * break;
- * }
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ImportJobName name =
+ * ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]");
+ * ImportJob response = keyManagementServiceClient.getImportJob(name);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * for (ImportJob element : keyManagementServiceClient.listImportJobs(parent).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]").toString();
+ * ImportJob response = keyManagementServiceClient.getImportJob(name);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * for (ImportJob element : keyManagementServiceClient.listImportJobs(parent.toString()).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetImportJobRequest request =
+ * GetImportJobRequest.newBuilder()
+ * .setName(
+ * ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]")
+ * .toString())
+ * .build();
+ * ImportJob response = keyManagementServiceClient.getImportJob(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * ListImportJobsRequest request = ListImportJobsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * for (ImportJob element : keyManagementServiceClient.listImportJobs(request).iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetImportJobRequest request =
+ * GetImportJobRequest.newBuilder()
+ * .setName(
+ * ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]")
+ * .toString())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.getImportJobCallable().futureCall(request);
+ * // Do something.
+ * ImportJob response = future.get();
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * ListImportJobsRequest request = ListImportJobsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * ApiFuture<ListImportJobsPagedResponse> future = keyManagementServiceClient.listImportJobsPagedCallable().futureCall(request);
- * // Do something
- * for (ImportJob element : future.get().iterateAll()) {
- * // doThingsWith(element);
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
+ * String keyRingId = "keyRingId-2027180374";
+ * KeyRing keyRing = KeyRing.newBuilder().build();
+ * KeyRing response = keyManagementServiceClient.createKeyRing(parent, keyRingId, keyRing);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * ListImportJobsRequest request = ListImportJobsRequest.newBuilder()
- * .setParent(parent.toString())
- * .build();
- * while (true) {
- * ListImportJobsResponse response = keyManagementServiceClient.listImportJobsCallable().call(request);
- * for (ImportJob element : response.getImportJobsList()) {
- * // doThingsWith(element);
- * }
- * String nextPageToken = response.getNextPageToken();
- * if (!Strings.isNullOrEmpty(nextPageToken)) {
- * request = request.toBuilder().setPageToken(nextPageToken).build();
- * } else {
- * break;
- * }
- * }
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent = LocationName.of("[PROJECT]", "[LOCATION]").toString();
+ * String keyRingId = "keyRingId-2027180374";
+ * KeyRing keyRing = KeyRing.newBuilder().build();
+ * KeyRing response = keyManagementServiceClient.createKeyRing(parent, keyRingId, keyRing);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * KeyRing response = keyManagementServiceClient.getKeyRing(name);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateKeyRingRequest request =
+ * CreateKeyRingRequest.newBuilder()
+ * .setParent(LocationName.of("[PROJECT]", "[LOCATION]").toString())
+ * .setKeyRingId("keyRingId-2027180374")
+ * .setKeyRing(KeyRing.newBuilder().build())
+ * .build();
+ * KeyRing response = keyManagementServiceClient.createKeyRing(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * KeyRing response = keyManagementServiceClient.getKeyRing(name.toString());
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateKeyRingRequest request =
+ * CreateKeyRingRequest.newBuilder()
+ * .setParent(LocationName.of("[PROJECT]", "[LOCATION]").toString())
+ * .setKeyRingId("keyRingId-2027180374")
+ * .setKeyRing(KeyRing.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.createKeyRingCallable().futureCall(request);
+ * // Do something.
+ * KeyRing response = future.get();
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and + * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] + * are required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * GetKeyRingRequest request = GetKeyRingRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * KeyRing response = keyManagementServiceClient.getKeyRing(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * String cryptoKeyId = "cryptoKeyId-1643185255";
+ * CryptoKey cryptoKey = CryptoKey.newBuilder().build();
+ * CryptoKey response =
+ * keyManagementServiceClient.createCryptoKey(parent, cryptoKeyId, cryptoKey);
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and + * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] + * are required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * GetKeyRingRequest request = GetKeyRingRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ApiFuture<KeyRing> future = keyManagementServiceClient.getKeyRingCallable().futureCall(request);
- * // Do something
- * KeyRing response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString();
+ * String cryptoKeyId = "cryptoKeyId-1643185255";
+ * CryptoKey cryptoKey = CryptoKey.newBuilder().build();
+ * CryptoKey response =
+ * keyManagementServiceClient.createCryptoKey(parent, cryptoKeyId, cryptoKey);
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and + * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] + * are required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKey response = keyManagementServiceClient.getCryptoKey(name);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateCryptoKeyRequest request =
+ * CreateCryptoKeyRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setCryptoKeyId("cryptoKeyId-1643185255")
+ * .setCryptoKey(CryptoKey.newBuilder().build())
+ * .setSkipInitialVersionCreation(true)
+ * .build();
+ * CryptoKey response = keyManagementServiceClient.createCryptoKey(request);
* }
- * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] and + * [CryptoKey.version_template.algorithm][google.cloud.kms.v1.CryptoKeyVersionTemplate.algorithm] + * are required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKey response = keyManagementServiceClient.getCryptoKey(name.toString());
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateCryptoKeyRequest request =
+ * CreateCryptoKeyRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setCryptoKeyId("cryptoKeyId-1643185255")
+ * .setCryptoKey(CryptoKey.newBuilder().build())
+ * .setSkipInitialVersionCreation(true)
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.createCryptoKeyCallable().futureCall(request);
+ * // Do something.
+ * CryptoKey response = future.get();
* }
- * The server will assign the next sequential id. If unset, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * GetCryptoKeyRequest request = GetCryptoKeyRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * CryptoKey response = keyManagementServiceClient.getCryptoKey(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyName parent =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
+ * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
+ * CryptoKeyVersion response =
+ * keyManagementServiceClient.createCryptoKeyVersion(parent, cryptoKeyVersion);
* }
- * The server will assign the next sequential id. If unset, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * GetCryptoKeyRequest request = GetCryptoKeyRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ApiFuture<CryptoKey> future = keyManagementServiceClient.getCryptoKeyCallable().futureCall(request);
- * // Do something
- * CryptoKey response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]").toString();
+ * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
+ * CryptoKeyVersion response =
+ * keyManagementServiceClient.createCryptoKeyVersion(parent, cryptoKeyVersion);
* }
- * The server will assign the next sequential id. If unset, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * CryptoKeyVersion response = keyManagementServiceClient.getCryptoKeyVersion(name);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateCryptoKeyVersionRequest request =
+ * CreateCryptoKeyVersionRequest.newBuilder()
+ * .setParent(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setCryptoKeyVersion(CryptoKeyVersion.newBuilder().build())
+ * .build();
+ * CryptoKeyVersion response = keyManagementServiceClient.createCryptoKeyVersion(request);
* }
- * The server will assign the next sequential id. If unset, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * CryptoKeyVersion response = keyManagementServiceClient.getCryptoKeyVersion(name.toString());
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateCryptoKeyVersionRequest request =
+ * CreateCryptoKeyVersionRequest.newBuilder()
+ * .setParent(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setCryptoKeyVersion(CryptoKeyVersion.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.createCryptoKeyVersionCallable().futureCall(request);
+ * // Do something.
+ * CryptoKeyVersion response = future.get();
* }
- * The version ID will be assigned the next sequential id within the + * [CryptoKey][google.cloud.kms.v1.CryptoKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * GetCryptoKeyVersionRequest request = GetCryptoKeyVersionRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * CryptoKeyVersion response = keyManagementServiceClient.getCryptoKeyVersion(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ImportCryptoKeyVersionRequest request =
+ * ImportCryptoKeyVersionRequest.newBuilder()
+ * .setParent(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setImportJob("importJob-208547368")
+ * .build();
+ * CryptoKeyVersion response = keyManagementServiceClient.importCryptoKeyVersion(request);
* }
- * The version ID will be assigned the next sequential id within the + * [CryptoKey][google.cloud.kms.v1.CryptoKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * GetCryptoKeyVersionRequest request = GetCryptoKeyVersionRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ApiFuture<CryptoKeyVersion> future = keyManagementServiceClient.getCryptoKeyVersionCallable().futureCall(request);
- * // Do something
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ImportCryptoKeyVersionRequest request =
+ * ImportCryptoKeyVersionRequest.newBuilder()
+ * .setParent(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setImportJob("importJob-208547368")
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.importCryptoKeyVersionCallable().futureCall(request);
+ * // Do something.
* CryptoKeyVersion response = future.get();
* }
- * [ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * PublicKey response = keyManagementServiceClient.getPublicKey(name);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * String importJobId = "importJobId1449444627";
+ * ImportJob importJob = ImportJob.newBuilder().build();
+ * ImportJob response =
+ * keyManagementServiceClient.createImportJob(parent, importJobId, importJob);
* }
- * [ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * PublicKey response = keyManagementServiceClient.getPublicKey(name.toString());
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString();
+ * String importJobId = "importJobId1449444627";
+ * ImportJob importJob = ImportJob.newBuilder().build();
+ * ImportJob response =
+ * keyManagementServiceClient.createImportJob(parent, importJobId, importJob);
* }
- * [ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * GetPublicKeyRequest request = GetPublicKeyRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * PublicKey response = keyManagementServiceClient.getPublicKey(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateImportJobRequest request =
+ * CreateImportJobRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setImportJobId("importJobId1449444627")
+ * .setImportJob(ImportJob.newBuilder().build())
+ * .build();
+ * ImportJob response = keyManagementServiceClient.createImportJob(request);
* }
- * [ImportJob.import_method][google.cloud.kms.v1.ImportJob.import_method] is required. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * GetPublicKeyRequest request = GetPublicKeyRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ApiFuture<PublicKey> future = keyManagementServiceClient.getPublicKeyCallable().futureCall(request);
- * // Do something
- * PublicKey response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CreateImportJobRequest request =
+ * CreateImportJobRequest.newBuilder()
+ * .setParent(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setImportJobId("importJobId1449444627")
+ * .setImportJob(ImportJob.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.createImportJobCallable().futureCall(request);
+ * // Do something.
+ * ImportJob response = future.get();
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ImportJobName name = ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]");
- * ImportJob response = keyManagementServiceClient.getImportJob(name);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKey cryptoKey = CryptoKey.newBuilder().build();
+ * FieldMask updateMask = FieldMask.newBuilder().build();
+ * CryptoKey response = keyManagementServiceClient.updateCryptoKey(cryptoKey, updateMask);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ImportJobName name = ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]");
- * ImportJob response = keyManagementServiceClient.getImportJob(name.toString());
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * UpdateCryptoKeyRequest request =
+ * UpdateCryptoKeyRequest.newBuilder()
+ * .setCryptoKey(CryptoKey.newBuilder().build())
+ * .setUpdateMask(FieldMask.newBuilder().build())
+ * .build();
+ * CryptoKey response = keyManagementServiceClient.updateCryptoKey(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ImportJobName name = ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]");
- * GetImportJobRequest request = GetImportJobRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ImportJob response = keyManagementServiceClient.getImportJob(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * UpdateCryptoKeyRequest request =
+ * UpdateCryptoKeyRequest.newBuilder()
+ * .setCryptoKey(CryptoKey.newBuilder().build())
+ * .setUpdateMask(FieldMask.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.updateCryptoKeyCallable().futureCall(request);
+ * // Do something.
+ * CryptoKey response = future.get();
* }
- * [state][google.cloud.kms.v1.CryptoKeyVersion.state] may be changed between + * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] and + * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED] using this + * method. See + * [DestroyCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.DestroyCryptoKeyVersion] and + * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] to + * move between other states. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ImportJobName name = ImportJobName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[IMPORT_JOB]");
- * GetImportJobRequest request = GetImportJobRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ApiFuture<ImportJob> future = keyManagementServiceClient.getImportJobCallable().futureCall(request);
- * // Do something
- * ImportJob response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
+ * FieldMask updateMask = FieldMask.newBuilder().build();
+ * CryptoKeyVersion response =
+ * keyManagementServiceClient.updateCryptoKeyVersion(cryptoKeyVersion, updateMask);
* }
- * [state][google.cloud.kms.v1.CryptoKeyVersion.state] may be changed between + * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] and + * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED] using this + * method. See + * [DestroyCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.DestroyCryptoKeyVersion] and + * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] to + * move between other states. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * String keyRingId = "";
- * KeyRing keyRing = KeyRing.newBuilder().build();
- * KeyRing response = keyManagementServiceClient.createKeyRing(parent, keyRingId, keyRing);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * UpdateCryptoKeyVersionRequest request =
+ * UpdateCryptoKeyVersionRequest.newBuilder()
+ * .setCryptoKeyVersion(CryptoKeyVersion.newBuilder().build())
+ * .setUpdateMask(FieldMask.newBuilder().build())
+ * .build();
+ * CryptoKeyVersion response = keyManagementServiceClient.updateCryptoKeyVersion(request);
* }
- * [state][google.cloud.kms.v1.CryptoKeyVersion.state] may be changed between + * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] and + * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED] using this + * method. See + * [DestroyCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.DestroyCryptoKeyVersion] and + * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] to + * move between other states. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * String keyRingId = "";
- * KeyRing keyRing = KeyRing.newBuilder().build();
- * KeyRing response = keyManagementServiceClient.createKeyRing(parent.toString(), keyRingId, keyRing);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * UpdateCryptoKeyVersionRequest request =
+ * UpdateCryptoKeyVersionRequest.newBuilder()
+ * .setCryptoKeyVersion(CryptoKeyVersion.newBuilder().build())
+ * .setUpdateMask(FieldMask.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.updateCryptoKeyVersionCallable().futureCall(request);
+ * // Do something.
+ * CryptoKeyVersion response = future.get();
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * String keyRingId = "";
- * KeyRing keyRing = KeyRing.newBuilder().build();
- * CreateKeyRingRequest request = CreateKeyRingRequest.newBuilder()
- * .setParent(parent.toString())
- * .setKeyRingId(keyRingId)
- * .setKeyRing(keyRing)
- * .build();
- * KeyRing response = keyManagementServiceClient.createKeyRing(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * ResourceName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * ByteString plaintext = ByteString.EMPTY;
+ * EncryptResponse response = keyManagementServiceClient.encrypt(name, plaintext);
* }
- * If a [CryptoKey][google.cloud.kms.v1.CryptoKey] is specified, the server will use its + * [primary version][google.cloud.kms.v1.CryptoKey.primary]. + * @param plaintext Required. The data to encrypt. Must be no larger than 64KiB. + *
The maximum size depends on the key version's + * [protection_level][google.cloud.kms.v1.CryptoKeyVersionTemplate.protection_level]. For + * [SOFTWARE][google.cloud.kms.v1.ProtectionLevel.SOFTWARE] keys, the plaintext must be no + * larger than 64KiB. For [HSM][google.cloud.kms.v1.ProtectionLevel.HSM] keys, the combined + * length of the plaintext and additional_authenticated_data fields must be no larger than + * 8KiB. * @throws com.google.api.gax.rpc.ApiException if the remote call fails */ - public final KeyRing createKeyRing(CreateKeyRingRequest request) { - return createKeyRingCallable().call(request); - } - - // AUTO-GENERATED DOCUMENTATION AND METHOD - /** - * Create a new [KeyRing][google.cloud.kms.v1.KeyRing] in a given Project and Location. - * - *
Sample code: - * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * LocationName parent = LocationName.of("[PROJECT]", "[LOCATION]");
- * String keyRingId = "";
- * KeyRing keyRing = KeyRing.newBuilder().build();
- * CreateKeyRingRequest request = CreateKeyRingRequest.newBuilder()
- * .setParent(parent.toString())
- * .setKeyRingId(keyRingId)
- * .setKeyRing(keyRing)
- * .build();
- * ApiFuture<KeyRing> future = keyManagementServiceClient.createKeyRingCallable().futureCall(request);
- * // Do something
- * KeyRing response = future.get();
- * }
- * The server will assign the next sequential id. If unset, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. + * Encrypts data, so that it can only be recovered by a call to + * [Decrypt][google.cloud.kms.v1.KeyManagementService.Decrypt]. The + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] must be + * [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT]. * *
Sample code: * *
* try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
- * CryptoKeyVersion response = keyManagementServiceClient.createCryptoKeyVersion(parent, cryptoKeyVersion);
+ * CryptoKeyPathName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
+ * ByteString plaintext = ByteString.copyFromUtf8("");
+ * EncryptResponse response = keyManagementServiceClient.encrypt(name, plaintext);
* }
* If a [CryptoKey][google.cloud.kms.v1.CryptoKey] is specified, the server will use its + * [primary version][google.cloud.kms.v1.CryptoKey.primary]. + * @param plaintext Required. The data to encrypt. Must be no larger than 64KiB. + *
The maximum size depends on the key version's + * [protection_level][google.cloud.kms.v1.CryptoKeyVersionTemplate.protection_level]. For + * [SOFTWARE][google.cloud.kms.v1.ProtectionLevel.SOFTWARE] keys, the plaintext must be no + * larger than 64KiB. For [HSM][google.cloud.kms.v1.ProtectionLevel.HSM] keys, the combined + * length of the plaintext and additional_authenticated_data fields must be no larger than + * 8KiB. * @throws com.google.api.gax.rpc.ApiException if the remote call fails */ - public final CryptoKeyVersion createCryptoKeyVersion( - CryptoKeyName parent, CryptoKeyVersion cryptoKeyVersion) { - CreateCryptoKeyVersionRequest request = - CreateCryptoKeyVersionRequest.newBuilder() - .setParent(parent == null ? null : parent.toString()) - .setCryptoKeyVersion(cryptoKeyVersion) + public final EncryptResponse encrypt(CryptoKeyPathName name, ByteString plaintext) { + EncryptRequest request = + EncryptRequest.newBuilder() + .setName(name == null ? null : name.toString()) + .setPlaintext(plaintext) .build(); - return createCryptoKeyVersion(request); + return encrypt(request); } - // AUTO-GENERATED DOCUMENTATION AND METHOD + // AUTO-GENERATED DOCUMENTATION AND METHOD. /** - * Create a new [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] in a - * [CryptoKey][google.cloud.kms.v1.CryptoKey]. - * - *
The server will assign the next sequential id. If unset, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. + * Encrypts data, so that it can only be recovered by a call to + * [Decrypt][google.cloud.kms.v1.KeyManagementService.Decrypt]. The + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] must be + * [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
- * CryptoKeyVersion response = keyManagementServiceClient.createCryptoKeyVersion(parent.toString(), cryptoKeyVersion);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString();
+ * ByteString plaintext = ByteString.EMPTY;
+ * EncryptResponse response = keyManagementServiceClient.encrypt(name, plaintext);
* }
- * If a [CryptoKey][google.cloud.kms.v1.CryptoKey] is specified, the server will use its + * [primary version][google.cloud.kms.v1.CryptoKey.primary]. + * @param plaintext Required. The data to encrypt. Must be no larger than 64KiB. + *
The maximum size depends on the key version's + * [protection_level][google.cloud.kms.v1.CryptoKeyVersionTemplate.protection_level]. For + * [SOFTWARE][google.cloud.kms.v1.ProtectionLevel.SOFTWARE] keys, the plaintext must be no + * larger than 64KiB. For [HSM][google.cloud.kms.v1.ProtectionLevel.HSM] keys, the combined + * length of the plaintext and additional_authenticated_data fields must be no larger than + * 8KiB. * @throws com.google.api.gax.rpc.ApiException if the remote call fails */ - public final CryptoKeyVersion createCryptoKeyVersion( - String parent, CryptoKeyVersion cryptoKeyVersion) { - CreateCryptoKeyVersionRequest request = - CreateCryptoKeyVersionRequest.newBuilder() - .setParent(parent) - .setCryptoKeyVersion(cryptoKeyVersion) - .build(); - return createCryptoKeyVersion(request); + public final EncryptResponse encrypt(String name, ByteString plaintext) { + EncryptRequest request = + EncryptRequest.newBuilder().setName(name).setPlaintext(plaintext).build(); + return encrypt(request); } - // AUTO-GENERATED DOCUMENTATION AND METHOD + // AUTO-GENERATED DOCUMENTATION AND METHOD. /** - * Create a new [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] in a - * [CryptoKey][google.cloud.kms.v1.CryptoKey]. - * - *
The server will assign the next sequential id. If unset, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. + * Encrypts data, so that it can only be recovered by a call to + * [Decrypt][google.cloud.kms.v1.KeyManagementService.Decrypt]. The + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] must be + * [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
- * CreateCryptoKeyVersionRequest request = CreateCryptoKeyVersionRequest.newBuilder()
- * .setParent(parent.toString())
- * .setCryptoKeyVersion(cryptoKeyVersion)
- * .build();
- * CryptoKeyVersion response = keyManagementServiceClient.createCryptoKeyVersion(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * EncryptRequest request =
+ * EncryptRequest.newBuilder()
+ * .setName(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPlaintext(ByteString.EMPTY)
+ * .setAdditionalAuthenticatedData(ByteString.EMPTY)
+ * .setPlaintextCrc32C(Int64Value.newBuilder().build())
+ * .setAdditionalAuthenticatedDataCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * EncryptResponse response = keyManagementServiceClient.encrypt(request);
* }
- * The server will assign the next sequential id. If unset, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED]. + * Encrypts data, so that it can only be recovered by a call to + * [Decrypt][google.cloud.kms.v1.KeyManagementService.Decrypt]. The + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] must be + * [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
- * CreateCryptoKeyVersionRequest request = CreateCryptoKeyVersionRequest.newBuilder()
- * .setParent(parent.toString())
- * .setCryptoKeyVersion(cryptoKeyVersion)
- * .build();
- * ApiFuture<CryptoKeyVersion> future = keyManagementServiceClient.createCryptoKeyVersionCallable().futureCall(request);
- * // Do something
- * CryptoKeyVersion response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * EncryptRequest request =
+ * EncryptRequest.newBuilder()
+ * .setName(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPlaintext(ByteString.EMPTY)
+ * .setAdditionalAuthenticatedData(ByteString.EMPTY)
+ * .setPlaintextCrc32C(Int64Value.newBuilder().build())
+ * .setAdditionalAuthenticatedDataCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.encryptCallable().futureCall(request);
+ * // Do something.
+ * EncryptResponse response = future.get();
* }
- * The version ID will be assigned the next sequential id within the - * [CryptoKey][google.cloud.kms.v1.CryptoKey]. + * Decrypts data that was protected by + * [Encrypt][google.cloud.kms.v1.KeyManagementService.Encrypt]. The + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] must be + * [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKeyVersion.CryptoKeyVersionAlgorithm algorithm = CryptoKeyVersion.CryptoKeyVersionAlgorithm.CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED;
- * String importJob = "";
- * ImportCryptoKeyVersionRequest request = ImportCryptoKeyVersionRequest.newBuilder()
- * .setParent(parent.toString())
- * .setAlgorithm(algorithm)
- * .setImportJob(importJob)
- * .build();
- * CryptoKeyVersion response = keyManagementServiceClient.importCryptoKeyVersion(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyName name =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
+ * ByteString ciphertext = ByteString.EMPTY;
+ * DecryptResponse response = keyManagementServiceClient.decrypt(name, ciphertext);
* }
- * The version ID will be assigned the next sequential id within the - * [CryptoKey][google.cloud.kms.v1.CryptoKey]. - * - *
Sample code: - * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName parent = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * CryptoKeyVersion.CryptoKeyVersionAlgorithm algorithm = CryptoKeyVersion.CryptoKeyVersionAlgorithm.CRYPTO_KEY_VERSION_ALGORITHM_UNSPECIFIED;
- * String importJob = "";
- * ImportCryptoKeyVersionRequest request = ImportCryptoKeyVersionRequest.newBuilder()
- * .setParent(parent.toString())
- * .setAlgorithm(algorithm)
- * .setImportJob(importJob)
- * .build();
- * ApiFuture<CryptoKeyVersion> future = keyManagementServiceClient.importCryptoKeyVersionCallable().futureCall(request);
- * // Do something
- * CryptoKeyVersion response = future.get();
- * }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKey cryptoKey = CryptoKey.newBuilder().build();
- * FieldMask updateMask = FieldMask.newBuilder().build();
- * CryptoKey response = keyManagementServiceClient.updateCryptoKey(cryptoKey, updateMask);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]").toString();
+ * ByteString ciphertext = ByteString.EMPTY;
+ * DecryptResponse response = keyManagementServiceClient.decrypt(name, ciphertext);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKey cryptoKey = CryptoKey.newBuilder().build();
- * FieldMask updateMask = FieldMask.newBuilder().build();
- * UpdateCryptoKeyRequest request = UpdateCryptoKeyRequest.newBuilder()
- * .setCryptoKey(cryptoKey)
- * .setUpdateMask(updateMask)
- * .build();
- * CryptoKey response = keyManagementServiceClient.updateCryptoKey(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * DecryptRequest request =
+ * DecryptRequest.newBuilder()
+ * .setName(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setCiphertext(ByteString.EMPTY)
+ * .setAdditionalAuthenticatedData(ByteString.EMPTY)
+ * .setCiphertextCrc32C(Int64Value.newBuilder().build())
+ * .setAdditionalAuthenticatedDataCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * DecryptResponse response = keyManagementServiceClient.decrypt(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKey cryptoKey = CryptoKey.newBuilder().build();
- * FieldMask updateMask = FieldMask.newBuilder().build();
- * UpdateCryptoKeyRequest request = UpdateCryptoKeyRequest.newBuilder()
- * .setCryptoKey(cryptoKey)
- * .setUpdateMask(updateMask)
- * .build();
- * ApiFuture<CryptoKey> future = keyManagementServiceClient.updateCryptoKeyCallable().futureCall(request);
- * // Do something
- * CryptoKey response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * DecryptRequest request =
+ * DecryptRequest.newBuilder()
+ * .setName(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setCiphertext(ByteString.EMPTY)
+ * .setAdditionalAuthenticatedData(ByteString.EMPTY)
+ * .setCiphertextCrc32C(Int64Value.newBuilder().build())
+ * .setAdditionalAuthenticatedDataCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.decryptCallable().futureCall(request);
+ * // Do something.
+ * DecryptResponse response = future.get();
* }
- * [state][google.cloud.kms.v1.CryptoKeyVersion.state] may be changed between - * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] and - * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED] using this - * method. See - * [DestroyCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.DestroyCryptoKeyVersion] and - * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] to - * move between other states. + * Signs data using a [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] with + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] ASYMMETRIC_SIGN, producing a + * signature that can be verified with the public key retrieved from + * [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
- * FieldMask updateMask = FieldMask.newBuilder().build();
- * CryptoKeyVersion response = keyManagementServiceClient.updateCryptoKeyVersion(cryptoKeyVersion, updateMask);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyVersionName name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
+ * Digest digest = Digest.newBuilder().build();
+ * AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(name, digest);
* }
- * [state][google.cloud.kms.v1.CryptoKeyVersion.state] may be changed between - * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] and - * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED] using this - * method. See - * [DestroyCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.DestroyCryptoKeyVersion] and - * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] to - * move between other states. + * Signs data using a [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] with + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] ASYMMETRIC_SIGN, producing a + * signature that can be verified with the public key retrieved from + * [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
- * FieldMask updateMask = FieldMask.newBuilder().build();
- * UpdateCryptoKeyVersionRequest request = UpdateCryptoKeyVersionRequest.newBuilder()
- * .setCryptoKeyVersion(cryptoKeyVersion)
- * .setUpdateMask(updateMask)
- * .build();
- * CryptoKeyVersion response = keyManagementServiceClient.updateCryptoKeyVersion(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
+ * .toString();
+ * Digest digest = Digest.newBuilder().build();
+ * AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(name, digest);
* }
- * [state][google.cloud.kms.v1.CryptoKeyVersion.state] may be changed between - * [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.ENABLED] and - * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED] using this - * method. See - * [DestroyCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.DestroyCryptoKeyVersion] and - * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] to - * move between other states. + * Signs data using a [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] with + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] ASYMMETRIC_SIGN, producing a + * signature that can be verified with the public key retrieved from + * [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey]. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersion cryptoKeyVersion = CryptoKeyVersion.newBuilder().build();
- * FieldMask updateMask = FieldMask.newBuilder().build();
- * UpdateCryptoKeyVersionRequest request = UpdateCryptoKeyVersionRequest.newBuilder()
- * .setCryptoKeyVersion(cryptoKeyVersion)
- * .setUpdateMask(updateMask)
- * .build();
- * ApiFuture<CryptoKeyVersion> future = keyManagementServiceClient.updateCryptoKeyVersionCallable().futureCall(request);
- * // Do something
- * CryptoKeyVersion response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * AsymmetricSignRequest request =
+ * AsymmetricSignRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .setDigest(Digest.newBuilder().build())
+ * .setDigestCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString plaintext = ByteString.copyFromUtf8("");
- * EncryptResponse response = keyManagementServiceClient.encrypt(name, plaintext);
- * }
- * If a [CryptoKey][google.cloud.kms.v1.CryptoKey] is specified, the server will use its - * [primary version][google.cloud.kms.v1.CryptoKey.primary]. - * @param plaintext Required. The data to encrypt. Must be no larger than 64KiB. - *
The maximum size depends on the key version's - * [protection_level][google.cloud.kms.v1.CryptoKeyVersionTemplate.protection_level]. For - * [SOFTWARE][google.cloud.kms.v1.ProtectionLevel.SOFTWARE] keys, the plaintext must be no - * larger than 64KiB. For [HSM][google.cloud.kms.v1.ProtectionLevel.HSM] keys, the combined - * length of the plaintext and additional_authenticated_data fields must be no larger than - * 8KiB. - * @throws com.google.api.gax.rpc.ApiException if the remote call fails + *
{@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * AsymmetricSignRequest request =
+ * AsymmetricSignRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .setDigest(Digest.newBuilder().build())
+ * .setDigestCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.asymmetricSignCallable().futureCall(request);
+ * // Do something.
+ * AsymmetricSignResponse response = future.get();
+ * }
+ * }
*/
- public final EncryptResponse encrypt(ResourceName name, ByteString plaintext) {
- EncryptRequest request =
- EncryptRequest.newBuilder()
- .setName(name == null ? null : name.toString())
- .setPlaintext(plaintext)
- .build();
- return encrypt(request);
+ public final UnaryCallableSample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyPathName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString plaintext = ByteString.copyFromUtf8("");
- * EncryptResponse response = keyManagementServiceClient.encrypt(name, plaintext);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyVersionName name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
+ * ByteString ciphertext = ByteString.EMPTY;
+ * AsymmetricDecryptResponse response =
+ * keyManagementServiceClient.asymmetricDecrypt(name, ciphertext);
* }
- * If a [CryptoKey][google.cloud.kms.v1.CryptoKey] is specified, the server will use its - * [primary version][google.cloud.kms.v1.CryptoKey.primary]. - * @param plaintext Required. The data to encrypt. Must be no larger than 64KiB. - *
The maximum size depends on the key version's - * [protection_level][google.cloud.kms.v1.CryptoKeyVersionTemplate.protection_level]. For - * [SOFTWARE][google.cloud.kms.v1.ProtectionLevel.SOFTWARE] keys, the plaintext must be no - * larger than 64KiB. For [HSM][google.cloud.kms.v1.ProtectionLevel.HSM] keys, the combined - * length of the plaintext and additional_authenticated_data fields must be no larger than - * 8KiB. + * @param name Required. The resource name of the + * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] to use for decryption. + * @param ciphertext Required. The data encrypted with the named + * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]'s public key using OAEP. * @throws com.google.api.gax.rpc.ApiException if the remote call fails */ - public final EncryptResponse encrypt(CryptoKeyPathName name, ByteString plaintext) { - EncryptRequest request = - EncryptRequest.newBuilder() + public final AsymmetricDecryptResponse asymmetricDecrypt( + CryptoKeyVersionName name, ByteString ciphertext) { + AsymmetricDecryptRequest request = + AsymmetricDecryptRequest.newBuilder() .setName(name == null ? null : name.toString()) - .setPlaintext(plaintext) + .setCiphertext(ciphertext) .build(); - return encrypt(request); + return asymmetricDecrypt(request); } - // AUTO-GENERATED DOCUMENTATION AND METHOD + // AUTO-GENERATED DOCUMENTATION AND METHOD. /** - * Encrypts data, so that it can only be recovered by a call to - * [Decrypt][google.cloud.kms.v1.KeyManagementService.Decrypt]. The - * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] must be - * [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT]. + * Decrypts data that was encrypted with a public key retrieved from + * [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey] corresponding to a + * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] with + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] ASYMMETRIC_DECRYPT. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString plaintext = ByteString.copyFromUtf8("");
- * EncryptResponse response = keyManagementServiceClient.encrypt(name.toString(), plaintext);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
+ * .toString();
+ * ByteString ciphertext = ByteString.EMPTY;
+ * AsymmetricDecryptResponse response =
+ * keyManagementServiceClient.asymmetricDecrypt(name, ciphertext);
* }
- * If a [CryptoKey][google.cloud.kms.v1.CryptoKey] is specified, the server will use its - * [primary version][google.cloud.kms.v1.CryptoKey.primary]. - * @param plaintext Required. The data to encrypt. Must be no larger than 64KiB. - *
The maximum size depends on the key version's - * [protection_level][google.cloud.kms.v1.CryptoKeyVersionTemplate.protection_level]. For - * [SOFTWARE][google.cloud.kms.v1.ProtectionLevel.SOFTWARE] keys, the plaintext must be no - * larger than 64KiB. For [HSM][google.cloud.kms.v1.ProtectionLevel.HSM] keys, the combined - * length of the plaintext and additional_authenticated_data fields must be no larger than - * 8KiB. + * @param name Required. The resource name of the + * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] to use for decryption. + * @param ciphertext Required. The data encrypted with the named + * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion]'s public key using OAEP. * @throws com.google.api.gax.rpc.ApiException if the remote call fails */ - public final EncryptResponse encrypt(String name, ByteString plaintext) { - EncryptRequest request = - EncryptRequest.newBuilder().setName(name).setPlaintext(plaintext).build(); - return encrypt(request); + public final AsymmetricDecryptResponse asymmetricDecrypt(String name, ByteString ciphertext) { + AsymmetricDecryptRequest request = + AsymmetricDecryptRequest.newBuilder().setName(name).setCiphertext(ciphertext).build(); + return asymmetricDecrypt(request); } - // AUTO-GENERATED DOCUMENTATION AND METHOD + // AUTO-GENERATED DOCUMENTATION AND METHOD. /** - * Encrypts data, so that it can only be recovered by a call to - * [Decrypt][google.cloud.kms.v1.KeyManagementService.Decrypt]. The - * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] must be - * [ENCRYPT_DECRYPT][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose.ENCRYPT_DECRYPT]. + * Decrypts data that was encrypted with a public key retrieved from + * [GetPublicKey][google.cloud.kms.v1.KeyManagementService.GetPublicKey] corresponding to a + * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] with + * [CryptoKey.purpose][google.cloud.kms.v1.CryptoKey.purpose] ASYMMETRIC_DECRYPT. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString plaintext = ByteString.copyFromUtf8("");
- * EncryptRequest request = EncryptRequest.newBuilder()
- * .setName(name.toString())
- * .setPlaintext(plaintext)
- * .build();
- * EncryptResponse response = keyManagementServiceClient.encrypt(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * AsymmetricDecryptRequest request =
+ * AsymmetricDecryptRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .setCiphertext(ByteString.EMPTY)
+ * .setCiphertextCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * AsymmetricDecryptResponse response = keyManagementServiceClient.asymmetricDecrypt(request);
* }
- * Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * ResourceName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString plaintext = ByteString.copyFromUtf8("");
- * EncryptRequest request = EncryptRequest.newBuilder()
- * .setName(name.toString())
- * .setPlaintext(plaintext)
- * .build();
- * ApiFuture<EncryptResponse> future = keyManagementServiceClient.encryptCallable().futureCall(request);
- * // Do something
- * EncryptResponse response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * AsymmetricDecryptRequest request =
+ * AsymmetricDecryptRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .setCiphertext(ByteString.EMPTY)
+ * .setCiphertextCrc32C(Int64Value.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.asymmetricDecryptCallable().futureCall(request);
+ * // Do something.
+ * AsymmetricDecryptResponse response = future.get();
* }
- * Returns an error if called on an asymmetric key. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * DecryptResponse response = keyManagementServiceClient.decrypt(name, ciphertext);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyName name =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
+ * String cryptoKeyVersionId = "cryptoKeyVersionId987674581";
+ * CryptoKey response =
+ * keyManagementServiceClient.updateCryptoKeyPrimaryVersion(name, cryptoKeyVersionId);
* }
- * Returns an error if called on an asymmetric key. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * DecryptResponse response = keyManagementServiceClient.decrypt(name.toString(), ciphertext);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]").toString();
+ * String cryptoKeyVersionId = "cryptoKeyVersionId987674581";
+ * CryptoKey response =
+ * keyManagementServiceClient.updateCryptoKeyPrimaryVersion(name, cryptoKeyVersionId);
* }
- * Returns an error if called on an asymmetric key. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * DecryptRequest request = DecryptRequest.newBuilder()
- * .setName(name.toString())
- * .setCiphertext(ciphertext)
- * .build();
- * DecryptResponse response = keyManagementServiceClient.decrypt(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * UpdateCryptoKeyPrimaryVersionRequest request =
+ * UpdateCryptoKeyPrimaryVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setCryptoKeyVersionId("cryptoKeyVersionId987674581")
+ * .build();
+ * CryptoKey response = keyManagementServiceClient.updateCryptoKeyPrimaryVersion(request);
* }
- * Returns an error if called on an asymmetric key. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * DecryptRequest request = DecryptRequest.newBuilder()
- * .setName(name.toString())
- * .setCiphertext(ciphertext)
- * .build();
- * ApiFuture<DecryptResponse> future = keyManagementServiceClient.decryptCallable().futureCall(request);
- * // Do something
- * DecryptResponse response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * UpdateCryptoKeyPrimaryVersionRequest request =
+ * UpdateCryptoKeyPrimaryVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]")
+ * .toString())
+ * .setCryptoKeyVersionId("cryptoKeyVersionId987674581")
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.updateCryptoKeyPrimaryVersionCallable().futureCall(request);
+ * // Do something.
+ * CryptoKey response = future.get();
* }
- * Upon calling this method, + * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] + * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 + * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] + * will be changed to + * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key + * material will be irrevocably destroyed. + * + *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, + * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may + * be called to reverse the process. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * Digest digest = Digest.newBuilder().build();
- * AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(name, digest);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyVersionName name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
+ * CryptoKeyVersion response = keyManagementServiceClient.destroyCryptoKeyVersion(name);
* }
- * Upon calling this method, + * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] + * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 + * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] + * will be changed to + * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key + * material will be irrevocably destroyed. + * + *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, + * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may + * be called to reverse the process. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * Digest digest = Digest.newBuilder().build();
- * AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(name.toString(), digest);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
+ * .toString();
+ * CryptoKeyVersion response = keyManagementServiceClient.destroyCryptoKeyVersion(name);
* }
- * Upon calling this method, + * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] + * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 + * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] + * will be changed to + * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key + * material will be irrevocably destroyed. + * + *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, + * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may + * be called to reverse the process. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * Digest digest = Digest.newBuilder().build();
- * AsymmetricSignRequest request = AsymmetricSignRequest.newBuilder()
- * .setName(name.toString())
- * .setDigest(digest)
- * .build();
- * AsymmetricSignResponse response = keyManagementServiceClient.asymmetricSign(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * DestroyCryptoKeyVersionRequest request =
+ * DestroyCryptoKeyVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * CryptoKeyVersion response = keyManagementServiceClient.destroyCryptoKeyVersion(request);
* }
- * Upon calling this method, + * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] + * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 + * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] + * will be changed to + * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key + * material will be irrevocably destroyed. + * + *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, + * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may + * be called to reverse the process. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * Digest digest = Digest.newBuilder().build();
- * AsymmetricSignRequest request = AsymmetricSignRequest.newBuilder()
- * .setName(name.toString())
- * .setDigest(digest)
- * .build();
- * ApiFuture<AsymmetricSignResponse> future = keyManagementServiceClient.asymmetricSignCallable().futureCall(request);
- * // Do something
- * AsymmetricSignResponse response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * DestroyCryptoKeyVersionRequest request =
+ * DestroyCryptoKeyVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.destroyCryptoKeyVersionCallable().futureCall(request);
+ * // Do something.
+ * CryptoKeyVersion response = future.get();
* }
- * Upon restoration of the CryptoKeyVersion, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and + * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * AsymmetricDecryptResponse response = keyManagementServiceClient.asymmetricDecrypt(name, ciphertext);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * CryptoKeyVersionName name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
+ * CryptoKeyVersion response = keyManagementServiceClient.restoreCryptoKeyVersion(name);
* }
- * Upon restoration of the CryptoKeyVersion, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and + * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * AsymmetricDecryptResponse response = keyManagementServiceClient.asymmetricDecrypt(name.toString(), ciphertext);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * String name =
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]")
+ * .toString();
+ * CryptoKeyVersion response = keyManagementServiceClient.restoreCryptoKeyVersion(name);
* }
- * Upon restoration of the CryptoKeyVersion, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and + * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * AsymmetricDecryptRequest request = AsymmetricDecryptRequest.newBuilder()
- * .setName(name.toString())
- * .setCiphertext(ciphertext)
- * .build();
- * AsymmetricDecryptResponse response = keyManagementServiceClient.asymmetricDecrypt(request);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * RestoreCryptoKeyVersionRequest request =
+ * RestoreCryptoKeyVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * CryptoKeyVersion response = keyManagementServiceClient.restoreCryptoKeyVersion(request);
* }
- * Upon restoration of the CryptoKeyVersion, + * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to + * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and + * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * ByteString ciphertext = ByteString.copyFromUtf8("");
- * AsymmetricDecryptRequest request = AsymmetricDecryptRequest.newBuilder()
- * .setName(name.toString())
- * .setCiphertext(ciphertext)
- * .build();
- * ApiFuture<AsymmetricDecryptResponse> future = keyManagementServiceClient.asymmetricDecryptCallable().futureCall(request);
- * // Do something
- * AsymmetricDecryptResponse response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * RestoreCryptoKeyVersionRequest request =
+ * RestoreCryptoKeyVersionRequest.newBuilder()
+ * .setName(
+ * CryptoKeyVersionName.of(
+ * "[PROJECT]",
+ * "[LOCATION]",
+ * "[KEY_RING]",
+ * "[CRYPTO_KEY]",
+ * "[CRYPTO_KEY_VERSION]")
+ * .toString())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.restoreCryptoKeyVersionCallable().futureCall(request);
+ * // Do something.
+ * CryptoKeyVersion response = future.get();
* }
- * Returns an error if called on an asymmetric key. + *
Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED`errors. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * String cryptoKeyVersionId = "";
- * CryptoKey response = keyManagementServiceClient.updateCryptoKeyPrimaryVersion(name, cryptoKeyVersionId);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * SetIamPolicyRequest request =
+ * SetIamPolicyRequest.newBuilder()
+ * .setResource(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPolicy(Policy.newBuilder().build())
+ * .build();
+ * Policy response = keyManagementServiceClient.setIamPolicy(request);
* }
- * Returns an error if called on an asymmetric key. + *
Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED * *
Sample code: * *
* try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * String cryptoKeyVersionId = "";
- * CryptoKey response = keyManagementServiceClient.updateCryptoKeyPrimaryVersion(name.toString(), cryptoKeyVersionId);
+ * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * Policy policy = Policy.newBuilder().build();
+ * Policy response = keyManagementServiceClient.setIamPolicy(resource, policy);
* }
* Returns an error if called on an asymmetric key. + *
Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED * *
Sample code: * *
* try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * String cryptoKeyVersionId = "";
- * UpdateCryptoKeyPrimaryVersionRequest request = UpdateCryptoKeyPrimaryVersionRequest.newBuilder()
- * .setName(name.toString())
- * .setCryptoKeyVersionId(cryptoKeyVersionId)
- * .build();
- * CryptoKey response = keyManagementServiceClient.updateCryptoKeyPrimaryVersion(request);
+ * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * Policy policy = Policy.newBuilder().build();
+ * Policy response = keyManagementServiceClient.setIamPolicy(resource.toString(), policy);
* }
* Returns an error if called on an asymmetric key. + *
Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED`errors. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyName name = CryptoKeyName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]");
- * String cryptoKeyVersionId = "";
- * UpdateCryptoKeyPrimaryVersionRequest request = UpdateCryptoKeyPrimaryVersionRequest.newBuilder()
- * .setName(name.toString())
- * .setCryptoKeyVersionId(cryptoKeyVersionId)
- * .build();
- * ApiFuture<CryptoKey> future = keyManagementServiceClient.updateCryptoKeyPrimaryVersionCallable().futureCall(request);
- * // Do something
- * CryptoKey response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * SetIamPolicyRequest request =
+ * SetIamPolicyRequest.newBuilder()
+ * .setResource(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setPolicy(Policy.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.setIamPolicyCallable().futureCall(request);
+ * // Do something.
+ * Policy response = future.get();
* }
- * Upon calling this method, - * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] - * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 - * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] - * will be changed to - * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key - * material will be irrevocably destroyed. - * - *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, - * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may - * be called to reverse the process. + * Gets the access control policy for a resource. Returns an empty policyif the resource exists + * and does not have a policy set. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * CryptoKeyVersion response = keyManagementServiceClient.destroyCryptoKeyVersion(name);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetIamPolicyRequest request =
+ * GetIamPolicyRequest.newBuilder()
+ * .setResource(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setOptions(GetPolicyOptions.newBuilder().build())
+ * .build();
+ * Policy response = keyManagementServiceClient.getIamPolicy(request);
* }
- * Upon calling this method, - * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] - * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 - * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] - * will be changed to - * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key - * material will be irrevocably destroyed. - * - *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, - * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may - * be called to reverse the process. + * Gets the access control policy for a resource. Returns an empty policy if the resource exists + * and does not have a policy set. * *
Sample code: * *
* try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * CryptoKeyVersion response = keyManagementServiceClient.destroyCryptoKeyVersion(name.toString());
+ * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * Policy response = keyManagementServiceClient.getIamPolicy(resource);
* }
* Upon calling this method, - * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] - * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 - * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] - * will be changed to - * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key - * material will be irrevocably destroyed. - * - *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, - * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may - * be called to reverse the process. + * Gets the access control policy for a resource. Returns an empty policy if the resource exists + * and does not have a policy set. * *
Sample code: * *
* try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * DestroyCryptoKeyVersionRequest request = DestroyCryptoKeyVersionRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * CryptoKeyVersion response = keyManagementServiceClient.destroyCryptoKeyVersion(request);
+ * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * Policy response = keyManagementServiceClient.getIamPolicy(resource.toString());
* }
* Upon calling this method, - * [CryptoKeyVersion.state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DESTROY_SCHEDULED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROY_SCHEDULED] - * and [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be set to a time 24 - * hours in the future, at which point the [state][google.cloud.kms.v1.CryptoKeyVersion.state] - * will be changed to - * [DESTROYED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DESTROYED], and the key - * material will be irrevocably destroyed. - * - *
Before the [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] is reached, - * [RestoreCryptoKeyVersion][google.cloud.kms.v1.KeyManagementService.RestoreCryptoKeyVersion] may - * be called to reverse the process. + * Gets the access control policy for a resource. Returns an empty policyif the resource exists + * and does not have a policy set. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * DestroyCryptoKeyVersionRequest request = DestroyCryptoKeyVersionRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ApiFuture<CryptoKeyVersion> future = keyManagementServiceClient.destroyCryptoKeyVersionCallable().futureCall(request);
- * // Do something
- * CryptoKeyVersion response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * GetIamPolicyRequest request =
+ * GetIamPolicyRequest.newBuilder()
+ * .setResource(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .setOptions(GetPolicyOptions.newBuilder().build())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.getIamPolicyCallable().futureCall(request);
+ * // Do something.
+ * Policy response = future.get();
* }
- * Upon restoration of the CryptoKeyVersion, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and - * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. + *
Note: This operation is designed to be used for buildingpermission-aware UIs and + * command-line tools, not for authorizationchecking. This operation may "fail open" without + * warning. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * CryptoKeyVersion response = keyManagementServiceClient.restoreCryptoKeyVersion(name);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * TestIamPermissionsRequest request =
+ * TestIamPermissionsRequest.newBuilder()
+ * .setResource(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .addAllPermissions(new ArrayList())
+ * .build();
+ * TestIamPermissionsResponse response = keyManagementServiceClient.testIamPermissions(request);
* }
- * Upon restoration of the CryptoKeyVersion, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and - * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. + *
Note: This operation is designed to be used for building permission-aware UIs and + * command-line tools, not for authorization checking. This operation may "fail open" without + * warning. * *
Sample code: * *
* try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * CryptoKeyVersion response = keyManagementServiceClient.restoreCryptoKeyVersion(name.toString());
+ * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * List<String> permissions = new ArrayList<>();
+ * TestIamPermissionsResponse response = keyManagementServiceClient.testIamPermissions(resource, permissions);
* }
* Upon restoration of the CryptoKeyVersion, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and - * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. + *
Note: This operation is designed to be used for building permission-aware UIs and + * command-line tools, not for authorization checking. This operation may "fail open" without + * warning. * *
Sample code: * *
* try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * RestoreCryptoKeyVersionRequest request = RestoreCryptoKeyVersionRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * CryptoKeyVersion response = keyManagementServiceClient.restoreCryptoKeyVersion(request);
+ * KeyName resource = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * List<String> permissions = new ArrayList<>();
+ * TestIamPermissionsResponse response = keyManagementServiceClient.testIamPermissions(resource.toString(), permissions);
* }
* Upon restoration of the CryptoKeyVersion, - * [state][google.cloud.kms.v1.CryptoKeyVersion.state] will be set to - * [DISABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.DISABLED], and - * [destroy_time][google.cloud.kms.v1.CryptoKeyVersion.destroy_time] will be cleared. + *
Note: This operation is designed to be used for buildingpermission-aware UIs and + * command-line tools, not for authorizationchecking. This operation may "fail open" without + * warning. * *
Sample code: * - *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * CryptoKeyVersionName name = CryptoKeyVersionName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]", "[CRYPTO_KEY]", "[CRYPTO_KEY_VERSION]");
- * RestoreCryptoKeyVersionRequest request = RestoreCryptoKeyVersionRequest.newBuilder()
- * .setName(name.toString())
- * .build();
- * ApiFuture<CryptoKeyVersion> future = keyManagementServiceClient.restoreCryptoKeyVersionCallable().futureCall(request);
- * // Do something
- * CryptoKeyVersion response = future.get();
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * TestIamPermissionsRequest request =
+ * TestIamPermissionsRequest.newBuilder()
+ * .setResource(KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]").toString())
+ * .addAllPermissions(new ArrayList())
+ * .build();
+ * ApiFuture future =
+ * keyManagementServiceClient.testIamPermissionsCallable().futureCall(request);
+ * // Do something.
+ * TestIamPermissionsResponse response = future.get();
* }
- * The builder of this class is recursive, so contained classes are themselves builders. When * build() is called, the tree of builders is called to create the complete settings object. * - *
For example, to set the total timeout of createImportJob to 30 seconds: + *
For example, to set the total timeout of getKeyRing to 30 seconds: * - *
- *
+ * {@code
* KeyManagementServiceSettings.Builder keyManagementServiceSettingsBuilder =
* KeyManagementServiceSettings.newBuilder();
* keyManagementServiceSettingsBuilder
- * .createImportJobSettings()
+ * .getKeyRingSettings()
* .setRetrySettings(
- * keyManagementServiceSettingsBuilder.createImportJobSettings().getRetrySettings().toBuilder()
+ * keyManagementServiceSettingsBuilder
+ * .getKeyRingSettings()
+ * .getRetrySettings()
+ * .toBuilder()
* .setTotalTimeout(Duration.ofSeconds(30))
* .build());
- * KeyManagementServiceSettings keyManagementServiceSettings = keyManagementServiceSettingsBuilder.build();
- *
- *
+ * KeyManagementServiceSettings keyManagementServiceSettings =
+ * keyManagementServiceSettingsBuilder.build();
+ * }
*/
-@Generated("by gapic-generator")
-@BetaApi
+@Generated("by gapic-generator-java")
public class KeyManagementServiceSettings extends ClientSettingsThe interfaces provided are listed below, along with usage samples. * - *
========================== KeyManagementServiceClient ========================== + *
======================= KeyManagementServiceClient ======================= * *
Service Description: Google Cloud Key Management Service * *
Manages cryptographic keys and operations using those keys. Implements a REST model with the * following objects: * - *
* [KeyRing][google.cloud.kms.v1.KeyRing] * [CryptoKey][google.cloud.kms.v1.CryptoKey] - * * [CryptoKeyVersion][google.cloud.kms.v1.CryptoKeyVersion] * - * [ImportJob][google.cloud.kms.v1.ImportJob] + *
If you are using manual gRPC libraries, see [Using gRPC with Cloud * KMS](https://cloud.google.com/kms/docs/grpc). * *
Sample for KeyManagementServiceClient: * - *
- *
- * try (KeyManagementServiceClient keyManagementServiceClient = KeyManagementServiceClient.create()) {
- * KeyRingName parent = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
- * String importJobId = "my-import-job";
- * ImportJob.ImportMethod importMethod = ImportJob.ImportMethod.RSA_OAEP_3072_SHA1_AES_256;
- * ProtectionLevel protectionLevel = ProtectionLevel.HSM;
- * ImportJob importJob = ImportJob.newBuilder()
- * .setImportMethod(importMethod)
- * .setProtectionLevel(protectionLevel)
- * .build();
- * ImportJob response = keyManagementServiceClient.createImportJob(parent, importJobId, importJob);
+ * {@code
+ * try (KeyManagementServiceClient keyManagementServiceClient =
+ * KeyManagementServiceClient.create()) {
+ * KeyRingName name = KeyRingName.of("[PROJECT]", "[LOCATION]", "[KEY_RING]");
+ * KeyRing response = keyManagementServiceClient.getKeyRing(name);
* }
- *
- *
+ * }
*/
-@Generated("by gapic-generator")
+@Generated("by gapic-generator-java")
package com.google.cloud.kms.v1;
import javax.annotation.Generated;
diff --git a/google-cloud-kms/src/main/java/com/google/cloud/kms/v1/stub/GrpcKeyManagementServiceCallableFactory.java b/google-cloud-kms/src/main/java/com/google/cloud/kms/v1/stub/GrpcKeyManagementServiceCallableFactory.java
index a286206e..2b94e5ff 100644
--- a/google-cloud-kms/src/main/java/com/google/cloud/kms/v1/stub/GrpcKeyManagementServiceCallableFactory.java
+++ b/google-cloud-kms/src/main/java/com/google/cloud/kms/v1/stub/GrpcKeyManagementServiceCallableFactory.java
@@ -1,11 +1,11 @@
/*
- * Copyright 2020 Google LLC
+ * Copyright 2021 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
- * https://www.apache.org/licenses/LICENSE-2.0
+ * https://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
@@ -13,9 +13,9 @@
* See the License for the specific language governing permissions and
* limitations under the License.
*/
+
package com.google.cloud.kms.v1.stub;
-import com.google.api.core.BetaApi;
import com.google.api.gax.grpc.GrpcCallSettings;
import com.google.api.gax.grpc.GrpcCallableFactory;
import com.google.api.gax.grpc.GrpcStubCallableFactory;
@@ -31,18 +31,19 @@
import com.google.api.gax.rpc.StreamingCallSettings;
import com.google.api.gax.rpc.UnaryCallSettings;
import com.google.api.gax.rpc.UnaryCallable;
+import com.google.longrunning.Operation;
import com.google.longrunning.stub.OperationsStub;
import javax.annotation.Generated;
-// AUTO-GENERATED DOCUMENTATION AND CLASS
+// AUTO-GENERATED DOCUMENTATION AND CLASS.
/**
- * gRPC callable factory implementation for Cloud Key Management Service (KMS) API.
+ * gRPC callable factory implementation for the KeyManagementService service API.
*
* This class is for advanced usage.
*/
-@Generated("by gapic-generator")
-@BetaApi("The surface for use by generated code is not stable yet and may change in the future.")
+@Generated("by gapic-generator-java")
public class GrpcKeyManagementServiceCallableFactory implements GrpcStubCallableFactory {
+
@Override
public This class is for advanced usage and reflects the underlying API directly.
*/
-@Generated("by gapic-generator")
-@BetaApi("A restructuring of stub classes is planned, so this may break in the future")
+@Generated("by gapic-generator-java")
public class GrpcKeyManagementServiceStub extends KeyManagementServiceStub {
-
- private static final MethodDescriptor