gcp

package
v0.1.2 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Oct 7, 2024 License: AGPL-3.0 Imports: 8 Imported by: 0

Documentation

Overview

Package gcp implements a KMS backend for Google Cloud KMS.

The following permissions are required for the service account used to authenticate with GCP:

  • cloudkms.cryptoKeys.get
  • cloudkms.cryptoKeys.encrypt
  • cloudkms.cryptoKeys.decrypt

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type KMSClient 

type KMSClient struct {
	// contains filtered or unexported fields
}

KMSClient implements the CloudKMS interface for Google Cloud Platform.

func New 

func New(_ context.Context, store kmsInterface.Storage, cfg uri.GCPConfig) (*KMSClient, error)

New initializes a KMS client for Google Cloud Platform.

func (*KMSClient) Close 

func (c *KMSClient) Close()

Close closes the KMS client.

func (*KMSClient) GetDEK 

func (c *KMSClient) GetDEK(ctx context.Context, keyID string, dekSize int) ([]byte, error)

GetDEK fetches an encrypted Data Encryption Key from storage and decrypts it using a KEK stored in Google's KMS.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.