oci.Kms.getKey
Explore with Pulumi AI
This data source provides details about a specific Key resource in Oracle Cloud Infrastructure Kms service.
Gets information about the specified master encryption key.
As a management operation, this call is subject to a Key Management limit that applies to the total number of requests across all management read operations. Key Management might throttle this call to reject an otherwise valid request when the total rate of management read operations exceeds 10 requests per second for a given tenancy.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testKey = oci.Kms.getKey({
    keyId: testKeyOciKmsKey.id,
    managementEndpoint: keyManagementEndpoint,
});
import pulumi
import pulumi_oci as oci
test_key = oci.Kms.get_key(key_id=test_key_oci_kms_key["id"],
    management_endpoint=key_management_endpoint)
package main
import (
	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/kms"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := kms.GetKey(ctx, &kms.GetKeyArgs{
			KeyId:              testKeyOciKmsKey.Id,
			ManagementEndpoint: keyManagementEndpoint,
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() => 
{
    var testKey = Oci.Kms.GetKey.Invoke(new()
    {
        KeyId = testKeyOciKmsKey.Id,
        ManagementEndpoint = keyManagementEndpoint,
    });
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Kms.KmsFunctions;
import com.pulumi.oci.Kms.inputs.GetKeyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var testKey = KmsFunctions.getKey(GetKeyArgs.builder()
            .keyId(testKeyOciKmsKey.id())
            .managementEndpoint(keyManagementEndpoint)
            .build());
    }
}
variables:
  testKey:
    fn::invoke:
      function: oci:Kms:getKey
      arguments:
        keyId: ${testKeyOciKmsKey.id}
        managementEndpoint: ${keyManagementEndpoint}
Using getKey
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getKey(args: GetKeyArgs, opts?: InvokeOptions): Promise<GetKeyResult>
function getKeyOutput(args: GetKeyOutputArgs, opts?: InvokeOptions): Output<GetKeyResult>def get_key(key_id: Optional[str] = None,
            management_endpoint: Optional[str] = None,
            opts: Optional[InvokeOptions] = None) -> GetKeyResult
def get_key_output(key_id: Optional[pulumi.Input[str]] = None,
            management_endpoint: Optional[pulumi.Input[str]] = None,
            opts: Optional[InvokeOptions] = None) -> Output[GetKeyResult]func LookupKey(ctx *Context, args *LookupKeyArgs, opts ...InvokeOption) (*LookupKeyResult, error)
func LookupKeyOutput(ctx *Context, args *LookupKeyOutputArgs, opts ...InvokeOption) LookupKeyResultOutput> Note: This function is named LookupKey in the Go SDK.
public static class GetKey 
{
    public static Task<GetKeyResult> InvokeAsync(GetKeyArgs args, InvokeOptions? opts = null)
    public static Output<GetKeyResult> Invoke(GetKeyInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetKeyResult> getKey(GetKeyArgs args, InvokeOptions options)
public static Output<GetKeyResult> getKey(GetKeyArgs args, InvokeOptions options)
fn::invoke:
  function: oci:Kms/getKey:getKey
  arguments:
    # arguments dictionaryThe following arguments are supported:
- KeyId string
- The OCID of the key.
- ManagementEndpoint string
- The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- KeyId string
- The OCID of the key.
- ManagementEndpoint string
- The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- keyId String
- The OCID of the key.
- managementEndpoint String
- The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- keyId string
- The OCID of the key.
- managementEndpoint string
- The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- key_id str
- The OCID of the key.
- management_endpoint str
- The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- keyId String
- The OCID of the key.
- managementEndpoint String
- The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
getKey Result
The following output properties are available:
- AutoKey List<GetRotation Details Key Auto Key Rotation Detail> 
- The details of auto rotation schedule for the Key being create updated or imported.
- CompartmentId string
- The OCID of the compartment that contains this master encryption key.
- CurrentKey stringVersion 
- The OCID of the key version used in cryptographic operations. During key rotation, the service might be in a transitional state where this or a newer key version are used intermittently. The currentKeyVersionproperty is updated when the service is guaranteed to use the new key version for all subsequent encryption operations.
- Dictionary<string, string>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
- DesiredState string
- DisplayName string
- A user-friendly name for the key. It does not have to be unique, and it is changeable. Avoid entering confidential information.
- ExternalKey List<GetReference Details Key External Key Reference Detail> 
- Key reference data to be returned to the customer as a response.
- ExternalKey List<GetReferences Key External Key Reference> 
- Dictionary<string, string>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
- Id string
- The OCID of the key.
- IsAuto boolRotation Enabled 
- A parameter specifying whether the auto key rotation is enabled or not.
- IsPrimary bool
- A Boolean value that indicates whether the Key belongs to primary Vault or replica vault.
- KeyId string
- KeyShapes List<GetKey Key Shape> 
- The cryptographic properties of a key.
- ManagementEndpoint string
- ProtectionMode string
- The key's protection mode indicates how the key persists and where cryptographic operations that use the key are performed. A protection mode of HSMmeans that the key persists on a hardware security module (HSM) and all cryptographic operations are performed inside the HSM. A protection mode ofSOFTWAREmeans that the key persists on the server, protected by the vault's RSA wrapping key which persists on the HSM. All cryptographic operations that use a key with a protection mode ofSOFTWAREare performed on the server. By default, a key's protection mode is set toHSM. You can't change a key's protection mode after the key is created or imported. A protection mode ofEXTERNALmean that the key persists on the customer's external key manager which is hosted externally outside of oracle. Oracle only hold a reference to that key. All cryptographic operations that use a key with a protection mode ofEXTERNALare performed by external key manager.
- ReplicaDetails List<GetKey Replica Detail> 
- Key replica details
- RestoreFrom List<GetFiles Key Restore From File> 
- Details where key was backed up.
- RestoreFrom List<GetObject Stores Key Restore From Object Store> 
- Details where key was backed up
- RestoreTrigger bool
- When flipped, triggers restore if restore options are provided. Values of 0 or 1 are supported.
- RestoredFrom stringKey Id 
- The OCID of the key from which this key was restored.
- State string
- The key's current lifecycle state. Example: ENABLED
- TimeCreated string
- The date and time the key was created, expressed in RFC 3339 timestamp format. Example: 2018-04-03T21:10:29.600Z
- TimeOf stringDeletion 
- An optional property indicating when to delete the key, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
- VaultId string
- The OCID of the vault that contains this key.
- AutoKey []GetRotation Details Key Auto Key Rotation Detail 
- The details of auto rotation schedule for the Key being create updated or imported.
- CompartmentId string
- The OCID of the compartment that contains this master encryption key.
- CurrentKey stringVersion 
- The OCID of the key version used in cryptographic operations. During key rotation, the service might be in a transitional state where this or a newer key version are used intermittently. The currentKeyVersionproperty is updated when the service is guaranteed to use the new key version for all subsequent encryption operations.
- map[string]string
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
- DesiredState string
- DisplayName string
- A user-friendly name for the key. It does not have to be unique, and it is changeable. Avoid entering confidential information.
- ExternalKey []GetReference Details Key External Key Reference Detail 
- Key reference data to be returned to the customer as a response.
- ExternalKey []GetReferences Key External Key Reference 
- map[string]string
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
- Id string
- The OCID of the key.
- IsAuto boolRotation Enabled 
- A parameter specifying whether the auto key rotation is enabled or not.
- IsPrimary bool
- A Boolean value that indicates whether the Key belongs to primary Vault or replica vault.
- KeyId string
- KeyShapes []GetKey Key Shape 
- The cryptographic properties of a key.
- ManagementEndpoint string
- ProtectionMode string
- The key's protection mode indicates how the key persists and where cryptographic operations that use the key are performed. A protection mode of HSMmeans that the key persists on a hardware security module (HSM) and all cryptographic operations are performed inside the HSM. A protection mode ofSOFTWAREmeans that the key persists on the server, protected by the vault's RSA wrapping key which persists on the HSM. All cryptographic operations that use a key with a protection mode ofSOFTWAREare performed on the server. By default, a key's protection mode is set toHSM. You can't change a key's protection mode after the key is created or imported. A protection mode ofEXTERNALmean that the key persists on the customer's external key manager which is hosted externally outside of oracle. Oracle only hold a reference to that key. All cryptographic operations that use a key with a protection mode ofEXTERNALare performed by external key manager.
- ReplicaDetails []GetKey Replica Detail 
- Key replica details
- RestoreFrom []GetFiles Key Restore From File 
- Details where key was backed up.
- RestoreFrom []GetObject Stores Key Restore From Object Store 
- Details where key was backed up
- RestoreTrigger bool
- When flipped, triggers restore if restore options are provided. Values of 0 or 1 are supported.
- RestoredFrom stringKey Id 
- The OCID of the key from which this key was restored.
- State string
- The key's current lifecycle state. Example: ENABLED
- TimeCreated string
- The date and time the key was created, expressed in RFC 3339 timestamp format. Example: 2018-04-03T21:10:29.600Z
- TimeOf stringDeletion 
- An optional property indicating when to delete the key, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
- VaultId string
- The OCID of the vault that contains this key.
- autoKey List<GetRotation Details Key Auto Key Rotation Detail> 
- The details of auto rotation schedule for the Key being create updated or imported.
- compartmentId String
- The OCID of the compartment that contains this master encryption key.
- currentKey StringVersion 
- The OCID of the key version used in cryptographic operations. During key rotation, the service might be in a transitional state where this or a newer key version are used intermittently. The currentKeyVersionproperty is updated when the service is guaranteed to use the new key version for all subsequent encryption operations.
- Map<String,String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
- desiredState String
- displayName String
- A user-friendly name for the key. It does not have to be unique, and it is changeable. Avoid entering confidential information.
- externalKey List<GetReference Details Key External Key Reference Detail> 
- Key reference data to be returned to the customer as a response.
- externalKey List<GetReferences Key External Key Reference> 
- Map<String,String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
- id String
- The OCID of the key.
- isAuto BooleanRotation Enabled 
- A parameter specifying whether the auto key rotation is enabled or not.
- isPrimary Boolean
- A Boolean value that indicates whether the Key belongs to primary Vault or replica vault.
- keyId String
- keyShapes List<GetKey Key Shape> 
- The cryptographic properties of a key.
- managementEndpoint String
- protectionMode String
- The key's protection mode indicates how the key persists and where cryptographic operations that use the key are performed. A protection mode of HSMmeans that the key persists on a hardware security module (HSM) and all cryptographic operations are performed inside the HSM. A protection mode ofSOFTWAREmeans that the key persists on the server, protected by the vault's RSA wrapping key which persists on the HSM. All cryptographic operations that use a key with a protection mode ofSOFTWAREare performed on the server. By default, a key's protection mode is set toHSM. You can't change a key's protection mode after the key is created or imported. A protection mode ofEXTERNALmean that the key persists on the customer's external key manager which is hosted externally outside of oracle. Oracle only hold a reference to that key. All cryptographic operations that use a key with a protection mode ofEXTERNALare performed by external key manager.
- replicaDetails List<GetKey Replica Detail> 
- Key replica details
- restoreFrom List<GetFiles Key Restore From File> 
- Details where key was backed up.
- restoreFrom List<GetObject Stores Key Restore From Object Store> 
- Details where key was backed up
- restoreTrigger Boolean
- When flipped, triggers restore if restore options are provided. Values of 0 or 1 are supported.
- restoredFrom StringKey Id 
- The OCID of the key from which this key was restored.
- state String
- The key's current lifecycle state. Example: ENABLED
- timeCreated String
- The date and time the key was created, expressed in RFC 3339 timestamp format. Example: 2018-04-03T21:10:29.600Z
- timeOf StringDeletion 
- An optional property indicating when to delete the key, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
- vaultId String
- The OCID of the vault that contains this key.
- autoKey GetRotation Details Key Auto Key Rotation Detail[] 
- The details of auto rotation schedule for the Key being create updated or imported.
- compartmentId string
- The OCID of the compartment that contains this master encryption key.
- currentKey stringVersion 
- The OCID of the key version used in cryptographic operations. During key rotation, the service might be in a transitional state where this or a newer key version are used intermittently. The currentKeyVersionproperty is updated when the service is guaranteed to use the new key version for all subsequent encryption operations.
- {[key: string]: string}
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
- desiredState string
- displayName string
- A user-friendly name for the key. It does not have to be unique, and it is changeable. Avoid entering confidential information.
- externalKey GetReference Details Key External Key Reference Detail[] 
- Key reference data to be returned to the customer as a response.
- externalKey GetReferences Key External Key Reference[] 
- {[key: string]: string}
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
- id string
- The OCID of the key.
- isAuto booleanRotation Enabled 
- A parameter specifying whether the auto key rotation is enabled or not.
- isPrimary boolean
- A Boolean value that indicates whether the Key belongs to primary Vault or replica vault.
- keyId string
- keyShapes GetKey Key Shape[] 
- The cryptographic properties of a key.
- managementEndpoint string
- protectionMode string
- The key's protection mode indicates how the key persists and where cryptographic operations that use the key are performed. A protection mode of HSMmeans that the key persists on a hardware security module (HSM) and all cryptographic operations are performed inside the HSM. A protection mode ofSOFTWAREmeans that the key persists on the server, protected by the vault's RSA wrapping key which persists on the HSM. All cryptographic operations that use a key with a protection mode ofSOFTWAREare performed on the server. By default, a key's protection mode is set toHSM. You can't change a key's protection mode after the key is created or imported. A protection mode ofEXTERNALmean that the key persists on the customer's external key manager which is hosted externally outside of oracle. Oracle only hold a reference to that key. All cryptographic operations that use a key with a protection mode ofEXTERNALare performed by external key manager.
- replicaDetails GetKey Replica Detail[] 
- Key replica details
- restoreFrom GetFiles Key Restore From File[] 
- Details where key was backed up.
- restoreFrom GetObject Stores Key Restore From Object Store[] 
- Details where key was backed up
- restoreTrigger boolean
- When flipped, triggers restore if restore options are provided. Values of 0 or 1 are supported.
- restoredFrom stringKey Id 
- The OCID of the key from which this key was restored.
- state string
- The key's current lifecycle state. Example: ENABLED
- timeCreated string
- The date and time the key was created, expressed in RFC 3339 timestamp format. Example: 2018-04-03T21:10:29.600Z
- timeOf stringDeletion 
- An optional property indicating when to delete the key, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
- vaultId string
- The OCID of the vault that contains this key.
- auto_key_ Sequence[Getrotation_ details Key Auto Key Rotation Detail] 
- The details of auto rotation schedule for the Key being create updated or imported.
- compartment_id str
- The OCID of the compartment that contains this master encryption key.
- current_key_ strversion 
- The OCID of the key version used in cryptographic operations. During key rotation, the service might be in a transitional state where this or a newer key version are used intermittently. The currentKeyVersionproperty is updated when the service is guaranteed to use the new key version for all subsequent encryption operations.
- Mapping[str, str]
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
- desired_state str
- display_name str
- A user-friendly name for the key. It does not have to be unique, and it is changeable. Avoid entering confidential information.
- external_key_ Sequence[Getreference_ details Key External Key Reference Detail] 
- Key reference data to be returned to the customer as a response.
- external_key_ Sequence[Getreferences Key External Key Reference] 
- Mapping[str, str]
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
- id str
- The OCID of the key.
- is_auto_ boolrotation_ enabled 
- A parameter specifying whether the auto key rotation is enabled or not.
- is_primary bool
- A Boolean value that indicates whether the Key belongs to primary Vault or replica vault.
- key_id str
- key_shapes Sequence[GetKey Key Shape] 
- The cryptographic properties of a key.
- management_endpoint str
- protection_mode str
- The key's protection mode indicates how the key persists and where cryptographic operations that use the key are performed. A protection mode of HSMmeans that the key persists on a hardware security module (HSM) and all cryptographic operations are performed inside the HSM. A protection mode ofSOFTWAREmeans that the key persists on the server, protected by the vault's RSA wrapping key which persists on the HSM. All cryptographic operations that use a key with a protection mode ofSOFTWAREare performed on the server. By default, a key's protection mode is set toHSM. You can't change a key's protection mode after the key is created or imported. A protection mode ofEXTERNALmean that the key persists on the customer's external key manager which is hosted externally outside of oracle. Oracle only hold a reference to that key. All cryptographic operations that use a key with a protection mode ofEXTERNALare performed by external key manager.
- replica_details Sequence[GetKey Replica Detail] 
- Key replica details
- restore_from_ Sequence[Getfiles Key Restore From File] 
- Details where key was backed up.
- restore_from_ Sequence[Getobject_ stores Key Restore From Object Store] 
- Details where key was backed up
- restore_trigger bool
- When flipped, triggers restore if restore options are provided. Values of 0 or 1 are supported.
- restored_from_ strkey_ id 
- The OCID of the key from which this key was restored.
- state str
- The key's current lifecycle state. Example: ENABLED
- time_created str
- The date and time the key was created, expressed in RFC 3339 timestamp format. Example: 2018-04-03T21:10:29.600Z
- time_of_ strdeletion 
- An optional property indicating when to delete the key, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
- vault_id str
- The OCID of the vault that contains this key.
- autoKey List<Property Map>Rotation Details 
- The details of auto rotation schedule for the Key being create updated or imported.
- compartmentId String
- The OCID of the compartment that contains this master encryption key.
- currentKey StringVersion 
- The OCID of the key version used in cryptographic operations. During key rotation, the service might be in a transitional state where this or a newer key version are used intermittently. The currentKeyVersionproperty is updated when the service is guaranteed to use the new key version for all subsequent encryption operations.
- Map<String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
- desiredState String
- displayName String
- A user-friendly name for the key. It does not have to be unique, and it is changeable. Avoid entering confidential information.
- externalKey List<Property Map>Reference Details 
- Key reference data to be returned to the customer as a response.
- externalKey List<Property Map>References 
- Map<String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
- id String
- The OCID of the key.
- isAuto BooleanRotation Enabled 
- A parameter specifying whether the auto key rotation is enabled or not.
- isPrimary Boolean
- A Boolean value that indicates whether the Key belongs to primary Vault or replica vault.
- keyId String
- keyShapes List<Property Map>
- The cryptographic properties of a key.
- managementEndpoint String
- protectionMode String
- The key's protection mode indicates how the key persists and where cryptographic operations that use the key are performed. A protection mode of HSMmeans that the key persists on a hardware security module (HSM) and all cryptographic operations are performed inside the HSM. A protection mode ofSOFTWAREmeans that the key persists on the server, protected by the vault's RSA wrapping key which persists on the HSM. All cryptographic operations that use a key with a protection mode ofSOFTWAREare performed on the server. By default, a key's protection mode is set toHSM. You can't change a key's protection mode after the key is created or imported. A protection mode ofEXTERNALmean that the key persists on the customer's external key manager which is hosted externally outside of oracle. Oracle only hold a reference to that key. All cryptographic operations that use a key with a protection mode ofEXTERNALare performed by external key manager.
- replicaDetails List<Property Map>
- Key replica details
- restoreFrom List<Property Map>Files 
- Details where key was backed up.
- restoreFrom List<Property Map>Object Stores 
- Details where key was backed up
- restoreTrigger Boolean
- When flipped, triggers restore if restore options are provided. Values of 0 or 1 are supported.
- restoredFrom StringKey Id 
- The OCID of the key from which this key was restored.
- state String
- The key's current lifecycle state. Example: ENABLED
- timeCreated String
- The date and time the key was created, expressed in RFC 3339 timestamp format. Example: 2018-04-03T21:10:29.600Z
- timeOf StringDeletion 
- An optional property indicating when to delete the key, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
- vaultId String
- The OCID of the vault that contains this key.
Supporting Types
GetKeyAutoKeyRotationDetail     
- LastRotation stringMessage 
- The last execution status message of auto key rotation.
- LastRotation stringStatus 
- The status of last execution of auto key rotation.
- RotationInterval intIn Days 
- The interval of auto key rotation. For auto key rotation the interval should between 60 day and 365 days (1 year). Note: User must specify this parameter when creating a new schedule.
- TimeOf stringLast Rotation 
- A property indicating Last rotation Date. Example: 2023-04-04T00:00:00Z.
- TimeOf stringNext Rotation 
- A property indicating Next estimated scheduled Time, as per the interval, expressed as date YYYY-MM-DD String. Example: 2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z.
- TimeOf stringSchedule Start 
- A property indicating scheduled start date expressed as date YYYY-MM-DD String. Example: `2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z . Note : Today’s date will be used if not specified by customer.
- LastRotation stringMessage 
- The last execution status message of auto key rotation.
- LastRotation stringStatus 
- The status of last execution of auto key rotation.
- RotationInterval intIn Days 
- The interval of auto key rotation. For auto key rotation the interval should between 60 day and 365 days (1 year). Note: User must specify this parameter when creating a new schedule.
- TimeOf stringLast Rotation 
- A property indicating Last rotation Date. Example: 2023-04-04T00:00:00Z.
- TimeOf stringNext Rotation 
- A property indicating Next estimated scheduled Time, as per the interval, expressed as date YYYY-MM-DD String. Example: 2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z.
- TimeOf stringSchedule Start 
- A property indicating scheduled start date expressed as date YYYY-MM-DD String. Example: `2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z . Note : Today’s date will be used if not specified by customer.
- lastRotation StringMessage 
- The last execution status message of auto key rotation.
- lastRotation StringStatus 
- The status of last execution of auto key rotation.
- rotationInterval IntegerIn Days 
- The interval of auto key rotation. For auto key rotation the interval should between 60 day and 365 days (1 year). Note: User must specify this parameter when creating a new schedule.
- timeOf StringLast Rotation 
- A property indicating Last rotation Date. Example: 2023-04-04T00:00:00Z.
- timeOf StringNext Rotation 
- A property indicating Next estimated scheduled Time, as per the interval, expressed as date YYYY-MM-DD String. Example: 2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z.
- timeOf StringSchedule Start 
- A property indicating scheduled start date expressed as date YYYY-MM-DD String. Example: `2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z . Note : Today’s date will be used if not specified by customer.
- lastRotation stringMessage 
- The last execution status message of auto key rotation.
- lastRotation stringStatus 
- The status of last execution of auto key rotation.
- rotationInterval numberIn Days 
- The interval of auto key rotation. For auto key rotation the interval should between 60 day and 365 days (1 year). Note: User must specify this parameter when creating a new schedule.
- timeOf stringLast Rotation 
- A property indicating Last rotation Date. Example: 2023-04-04T00:00:00Z.
- timeOf stringNext Rotation 
- A property indicating Next estimated scheduled Time, as per the interval, expressed as date YYYY-MM-DD String. Example: 2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z.
- timeOf stringSchedule Start 
- A property indicating scheduled start date expressed as date YYYY-MM-DD String. Example: `2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z . Note : Today’s date will be used if not specified by customer.
- last_rotation_ strmessage 
- The last execution status message of auto key rotation.
- last_rotation_ strstatus 
- The status of last execution of auto key rotation.
- rotation_interval_ intin_ days 
- The interval of auto key rotation. For auto key rotation the interval should between 60 day and 365 days (1 year). Note: User must specify this parameter when creating a new schedule.
- time_of_ strlast_ rotation 
- A property indicating Last rotation Date. Example: 2023-04-04T00:00:00Z.
- time_of_ strnext_ rotation 
- A property indicating Next estimated scheduled Time, as per the interval, expressed as date YYYY-MM-DD String. Example: 2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z.
- time_of_ strschedule_ start 
- A property indicating scheduled start date expressed as date YYYY-MM-DD String. Example: `2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z . Note : Today’s date will be used if not specified by customer.
- lastRotation StringMessage 
- The last execution status message of auto key rotation.
- lastRotation StringStatus 
- The status of last execution of auto key rotation.
- rotationInterval NumberIn Days 
- The interval of auto key rotation. For auto key rotation the interval should between 60 day and 365 days (1 year). Note: User must specify this parameter when creating a new schedule.
- timeOf StringLast Rotation 
- A property indicating Last rotation Date. Example: 2023-04-04T00:00:00Z.
- timeOf StringNext Rotation 
- A property indicating Next estimated scheduled Time, as per the interval, expressed as date YYYY-MM-DD String. Example: 2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z.
- timeOf StringSchedule Start 
- A property indicating scheduled start date expressed as date YYYY-MM-DD String. Example: `2023-04-04T00:00:00Z. The time has no significance when scheduling an auto key rotation as this can be done anytime approximately the scheduled day, KMS ignores the time and replaces it with 00:00, for example 2023-04-04T15:14:13Z will be used as 2023-04-04T00:00:00Z . Note : Today’s date will be used if not specified by customer.
GetKeyExternalKeyReference    
- ExternalKey stringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- ExternalKey stringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- externalKey StringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- externalKey stringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- external_key_ strid 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- externalKey StringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
GetKeyExternalKeyReferenceDetail     
- ExternalKey stringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- ExternalKey stringVersion Id 
- Key version ID associated with the external key.
- ExternalKey stringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- ExternalKey stringVersion Id 
- Key version ID associated with the external key.
- externalKey StringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- externalKey StringVersion Id 
- Key version ID associated with the external key.
- externalKey stringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- externalKey stringVersion Id 
- Key version ID associated with the external key.
- external_key_ strid 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- external_key_ strversion_ id 
- Key version ID associated with the external key.
- externalKey StringId 
- ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- externalKey StringVersion Id 
- Key version ID associated with the external key.
GetKeyKeyShape   
- Algorithm string
- The algorithm used by a key's key versions to encrypt or decrypt. Only AES algorithm is supported for Externalkeys.
- CurveId string
- Supported curve IDs for ECDSA keys.
- Length int
- The length of the key in bytes, expressed as an integer. Supported values include the following:- AES: 16, 24, or 32
- RSA: 256, 384, or 512
- ECDSA: 32, 48, or 66
 
- Algorithm string
- The algorithm used by a key's key versions to encrypt or decrypt. Only AES algorithm is supported for Externalkeys.
- CurveId string
- Supported curve IDs for ECDSA keys.
- Length int
- The length of the key in bytes, expressed as an integer. Supported values include the following:- AES: 16, 24, or 32
- RSA: 256, 384, or 512
- ECDSA: 32, 48, or 66
 
- algorithm String
- The algorithm used by a key's key versions to encrypt or decrypt. Only AES algorithm is supported for Externalkeys.
- curveId String
- Supported curve IDs for ECDSA keys.
- length Integer
- The length of the key in bytes, expressed as an integer. Supported values include the following:- AES: 16, 24, or 32
- RSA: 256, 384, or 512
- ECDSA: 32, 48, or 66
 
- algorithm string
- The algorithm used by a key's key versions to encrypt or decrypt. Only AES algorithm is supported for Externalkeys.
- curveId string
- Supported curve IDs for ECDSA keys.
- length number
- The length of the key in bytes, expressed as an integer. Supported values include the following:- AES: 16, 24, or 32
- RSA: 256, 384, or 512
- ECDSA: 32, 48, or 66
 
- algorithm str
- The algorithm used by a key's key versions to encrypt or decrypt. Only AES algorithm is supported for Externalkeys.
- curve_id str
- Supported curve IDs for ECDSA keys.
- length int
- The length of the key in bytes, expressed as an integer. Supported values include the following:- AES: 16, 24, or 32
- RSA: 256, 384, or 512
- ECDSA: 32, 48, or 66
 
- algorithm String
- The algorithm used by a key's key versions to encrypt or decrypt. Only AES algorithm is supported for Externalkeys.
- curveId String
- Supported curve IDs for ECDSA keys.
- length Number
- The length of the key in bytes, expressed as an integer. Supported values include the following:- AES: 16, 24, or 32
- RSA: 256, 384, or 512
- ECDSA: 32, 48, or 66
 
GetKeyReplicaDetail   
- ReplicationId string
- ReplicationId associated with a key operation
- ReplicationId string
- ReplicationId associated with a key operation
- replicationId String
- ReplicationId associated with a key operation
- replicationId string
- ReplicationId associated with a key operation
- replication_id str
- ReplicationId associated with a key operation
- replicationId String
- ReplicationId associated with a key operation
GetKeyRestoreFromFile    
- ContentLength string
- content length of key's backup binary file
- ContentMd5 string
- content md5 hashed value of key's backup file
- RestoreKey stringFrom File Details 
- Key backup file content
- ContentLength string
- content length of key's backup binary file
- ContentMd5 string
- content md5 hashed value of key's backup file
- RestoreKey stringFrom File Details 
- Key backup file content
- contentLength String
- content length of key's backup binary file
- contentMd5 String
- content md5 hashed value of key's backup file
- restoreKey StringFrom File Details 
- Key backup file content
- contentLength string
- content length of key's backup binary file
- contentMd5 string
- content md5 hashed value of key's backup file
- restoreKey stringFrom File Details 
- Key backup file content
- content_length str
- content length of key's backup binary file
- content_md5 str
- content md5 hashed value of key's backup file
- restore_key_ strfrom_ file_ details 
- Key backup file content
- contentLength String
- content length of key's backup binary file
- contentMd5 String
- content md5 hashed value of key's backup file
- restoreKey StringFrom File Details 
- Key backup file content
GetKeyRestoreFromObjectStore     
- Bucket string
- Name of the bucket where key was backed up
- Destination string
- Type of backup to restore from. Values of "BUCKET", "PRE_AUTHENTICATED_REQUEST_URI" are supported
- Namespace string
- Namespace of the bucket where key was backed up
- Object string
- Object containing the backup
- Uri string
- Pre-authenticated-request-uri of the backup
- Bucket string
- Name of the bucket where key was backed up
- Destination string
- Type of backup to restore from. Values of "BUCKET", "PRE_AUTHENTICATED_REQUEST_URI" are supported
- Namespace string
- Namespace of the bucket where key was backed up
- Object string
- Object containing the backup
- Uri string
- Pre-authenticated-request-uri of the backup
- bucket String
- Name of the bucket where key was backed up
- destination String
- Type of backup to restore from. Values of "BUCKET", "PRE_AUTHENTICATED_REQUEST_URI" are supported
- namespace String
- Namespace of the bucket where key was backed up
- object String
- Object containing the backup
- uri String
- Pre-authenticated-request-uri of the backup
- bucket string
- Name of the bucket where key was backed up
- destination string
- Type of backup to restore from. Values of "BUCKET", "PRE_AUTHENTICATED_REQUEST_URI" are supported
- namespace string
- Namespace of the bucket where key was backed up
- object string
- Object containing the backup
- uri string
- Pre-authenticated-request-uri of the backup
- bucket str
- Name of the bucket where key was backed up
- destination str
- Type of backup to restore from. Values of "BUCKET", "PRE_AUTHENTICATED_REQUEST_URI" are supported
- namespace str
- Namespace of the bucket where key was backed up
- object str
- Object containing the backup
- uri str
- Pre-authenticated-request-uri of the backup
- bucket String
- Name of the bucket where key was backed up
- destination String
- Type of backup to restore from. Values of "BUCKET", "PRE_AUTHENTICATED_REQUEST_URI" are supported
- namespace String
- Namespace of the bucket where key was backed up
- object String
- Object containing the backup
- uri String
- Pre-authenticated-request-uri of the backup
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the ociTerraform Provider.