aws_key_gen

command

v0.0.0-...-8c592ef Latest Latest Go to latest Published: Jan 19, 2021 License: Apache-2.0 Imports: 12 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/subscriptions-project/encryption

Links

Open Source Insights

README ¶

Script to Create Tink Hybrid Keys using Envelope Encryption with AWS

This script creates a Tink Hybrid (ECIES with AEAD) key and outputs the public key in plaintext to an output file, as well as the encrypted private key to another output file. The private key is encrypted using a key hosted on Amazon Web Services (AWS). This method is commonly referred to as Envelope Encryption.

This script was inspired by the Medium post Google Cloud KMS & Tink. Please read that post for more information.

Installation:

# Go get the script
go get -u github.com/subscriptions-project/encryption/golang/cmd/aws_key_gen

Example Usage:

For AWS credentials make sure you have awscli installed and you have configured it by running aws configure NOT aws configure --profile my-profile

go run github.com/subscriptions-project/encryption/golang/cmd/aws_key_gen \
    --region=$AWS_KMS_REGION \
    --account=$AWS_ACCOUNT_ID \
    --key=$AWS_KMS_KEY_ID \
    --outfilePrivate=$PRIVATE_KEY_FILE \
    --outfilePublic=$PUBLIC_KEY_FILE

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

script.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL