@Generated(value="OracleSDKGenerator", comments="API Version: release") public interface KmsCrypto extends AutoCloseable
Use the Key Management API to manage vaults and keys. For more information, see Managing Vaults and Managing Keys.
This service client uses CircuitBreakerUtils.DEFAULT_CIRCUIT_BREAKER for all the operations by default if no circuit breaker configuration is defined by the user.
Modifier and Type | Method and Description |
---|---|
DecryptResponse |
decrypt(DecryptRequest request)
Decrypts data using the given
DecryptDataDetails
resource.
|
EncryptResponse |
encrypt(EncryptRequest request)
Encrypts data using the given
EncryptDataDetails
resource.
|
ExportKeyResponse |
exportKey(ExportKeyRequest request)
Exports a specific version of a master encryption key according to the details of the
request.
|
GenerateDataEncryptionKeyResponse |
generateDataEncryptionKey(GenerateDataEncryptionKeyRequest request)
Generates a key that you can use to encrypt or decrypt data.
|
String |
getEndpoint()
Gets the set endpoint for REST call (ex, https://www.example.com)
|
void |
refreshClient()
Rebuilds the client from scratch.
|
void |
setEndpoint(String endpoint)
Sets the endpoint to call (ex, https://www.example.com).
|
SignResponse |
sign(SignRequest request)
Creates a digital signature for a message or message digest by using the private key of a
public-private key pair, also known as an asymmetric key.
|
VerifyResponse |
verify(VerifyRequest request)
Verifies a digital signature that was generated by the
Sign operation by using
the public key of the same asymmetric key that was used to sign the data.
|
close
void refreshClient()
Rebuilds the client from scratch. Useful to refresh certificates.
void setEndpoint(String endpoint)
Sets the endpoint to call (ex, https://www.example.com).
endpoint
- The endpoint of the service.String getEndpoint()
Gets the set endpoint for REST call (ex, https://www.example.com)
DecryptResponse decrypt(DecryptRequest request)
Decrypts data using the given DecryptDataDetails resource.
request
- The request object containing the details to sendBmcException
- when an error occurs. This operation will not retry by default, users
can also use RetryConfiguration.SDK_DEFAULT_RETRY_CONFIGURATION provided by the SDK to
enable retries for it. The specifics of the default retry strategy are described here
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/javasdkconcepts.htm#javasdkconcepts_topic_Retries
Example: Click here to see how to use Decrypt API.
EncryptResponse encrypt(EncryptRequest request)
Encrypts data using the given EncryptDataDetails resource. Plaintext included in the example request is a base64-encoded value of a UTF-8 string.
request
- The request object containing the details to sendBmcException
- when an error occurs. This operation will not retry by default, users
can also use RetryConfiguration.SDK_DEFAULT_RETRY_CONFIGURATION provided by the SDK to
enable retries for it. The specifics of the default retry strategy are described here
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/javasdkconcepts.htm#javasdkconcepts_topic_Retries
Example: Click here to see how to use Encrypt API.
ExportKeyResponse exportKey(ExportKeyRequest request)
Exports a specific version of a master encryption key according to the details of the
request. For their protection, keys that you create and store on a hardware security module
(HSM) can never leave the HSM. You can only export keys stored on the server. For export, the
key version is encrypted by an RSA public key that you provide. This operation is not
supported for keys having protection mode EXTERNAL
.
request
- The request object containing the details to sendBmcException
- when an error occurs. This operation will not retry by default, users
can also use RetryConfiguration.SDK_DEFAULT_RETRY_CONFIGURATION provided by the SDK to
enable retries for it. The specifics of the default retry strategy are described here
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/javasdkconcepts.htm#javasdkconcepts_topic_Retries
Example: Click here to see how to use ExportKey API.
GenerateDataEncryptionKeyResponse generateDataEncryptionKey(GenerateDataEncryptionKeyRequest request)
Generates a key that you can use to encrypt or decrypt data.
request
- The request object containing the details to sendBmcException
- when an error occurs. This operation will not retry by default, users
can also use RetryConfiguration.SDK_DEFAULT_RETRY_CONFIGURATION provided by the SDK to
enable retries for it. The specifics of the default retry strategy are described here
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/javasdkconcepts.htm#javasdkconcepts_topic_Retries
Example: Click here to see how to use GenerateDataEncryptionKey API.
SignResponse sign(SignRequest request)
Creates a digital signature for a message or message digest by using the private key of a
public-private key pair, also known as an asymmetric key. To verify the generated signature,
you can use the
Verify operation.
Or, if you want to validate the signature outside of the service, you can do so by using the
public key of the same asymmetric key. This operation is not supported for keys having
protection mode EXTERNAL
.
request
- The request object containing the details to sendBmcException
- when an error occurs. This operation will not retry by default, users
can also use RetryConfiguration.SDK_DEFAULT_RETRY_CONFIGURATION provided by the SDK to
enable retries for it. The specifics of the default retry strategy are described here
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/javasdkconcepts.htm#javasdkconcepts_topic_Retries
Example: Click here to see how to use Sign API.
VerifyResponse verify(VerifyRequest request)
Verifies a digital signature that was generated by the
Sign operation by using
the public key of the same asymmetric key that was used to sign the data. If you want to
validate the digital signature outside of the service, you can do so by using the public key
of the asymmetric key. This operation is not supported for keys having protection mode
EXTERNAL
.
request
- The request object containing the details to sendBmcException
- when an error occurs. This operation will not retry by default, users
can also use RetryConfiguration.SDK_DEFAULT_RETRY_CONFIGURATION provided by the SDK to
enable retries for it. The specifics of the default retry strategy are described here
https://docs.oracle.com/en-us/iaas/Content/API/SDKDocs/javasdkconcepts.htm#javasdkconcepts_topic_Retries
Example: Click here to see how to use Verify API.
Copyright © 2016–2025. All rights reserved.