平安云|Ping An Cloud- Building Your Smart Future

GetParametersForImport

<section class="section" id="getparameters__section_o3b_ydj_mlb"><h2 class="doc-tairway">GetParametersForImport </h2> Description Getting the parameters for importing key material. The data returned is used as parameters for the ImportKeyMaterial API. <div class="note note note_note">Note: <ol class="ol" id="getparameters__ol_kdl_wcj_mlb"> <li class="li">The origin of the key material must be EXTERNAL; </li> <li class="li">Each API call returns a different public key and import token; </li> <li class="li">The API returns a public key, an import token, and the expiration time of the import token. The public key and the import token are hexadecimal strings. The import token is valid for 24 hours; </li> <li class="li">You need to specify the type of the public key used to encrypt the key material (supporting type: RSA_2048). You also need to specify the encryption algorithm (supporting encryption algorithms: RSAES_PKCS1_V1_5, RSAES_OAEP_SHA_1, and RSAES_OAEP_SHA_256); </li> <li class="li">You must use the public key and import token returned from the same API call in combination. You can only use them for the CMK specified in that call; </li> <li class="li">The algorithm you specify when getting the parameters for importing the key material must be the same as the one you use to encrypt the key material. </li> </ol> </div> Request Parameters <table class="table" id="getparameters__table_ldl_wcj_mlb"><caption></caption><colgroup><col><col><col><col></colgroup><thead class="thead"> <tr class="row"> <th class="entry" id="getparameters__table_ldl_wcj_mlb__entry__1"> Name </th> <th class="entry" id="getparameters__table_ldl_wcj_mlb__entry__2"> Type </th> <th class="entry" id="getparameters__table_ldl_wcj_mlb__entry__3"> Necessary or Not </th> <th class="entry" id="getparameters__table_ldl_wcj_mlb__entry__4"> Description </th> </tr> </thead><tbody class="tbody"> <tr class="row"> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__1 "> keyId </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__3 "> Yes </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__4 "> Globally unique identifier of the CMK. The origin of the key material must be EXTERNAL. </td> </tr> <tr class="row"> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__1 "> wrappingAlgorithm </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__3 "> Yes </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__4 "> Algorithm used to encrypt the key material. </td> </tr> <tr class="row"> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__1 "> wrappingKeySpec </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__3 "> Yes </td> <td class="entry" headers="getparameters__table_ldl_wcj_mlb__entry__4 "> Type (RSA) of the public key used to encrypt the key material. </td> </tr> </tbody></table> Return Parameters <table class="table" id="getparameters__table_mdl_wcj_mlb"><caption></caption><colgroup><col><col><col></colgroup><thead class="thead"> <tr class="row"> <th class="entry" id="getparameters__table_mdl_wcj_mlb__entry__1"> Name </th> <th class="entry" id="getparameters__table_mdl_wcj_mlb__entry__2"> Type </th> <th class="entry" id="getparameters__table_mdl_wcj_mlb__entry__3"> Description </th> </tr> </thead><tbody class="tbody"> <tr class="row"> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__1 "> code </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__3 "> Return code. “SUCCESS” will be returned if the request is succeeded. </td> </tr> <tr class="row"> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__1 "> keyId </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__3 "> Globally unique identifier of the CMK. You need to specify this parameter when calling ImportKeyMaterial. </td> </tr> <tr class="row"> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__1 "> importToken </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__3 "> Import token needed when calling ImportKeyMaterial. </td> </tr> <tr class="row"> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__1 "> publicKey </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__3 "> Before importing the key material, you need to encrypt it with the public key. </td> </tr> <tr class="row"> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__1 "> tokenExpireTime </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__2 "> String </td> <td class="entry" headers="getparameters__table_mdl_wcj_mlb__entry__3 "> Expiration time of the imported token. </td> </tr> </tbody></table> Request Example <pre class="pre codeblock"><code>https://kms-cn-shanghai.yun.pingan.com/?action=GetParametersForImport &wrappingKeySpec=RSA &keyId=<cmkid> &wrappingAlgorithm=<wrapping algorithm> &<公共请求参数> </code></pre> Return Example <pre class="pre codeblock"><code>{ "code": "SUCCESS", "importToken": "import token", "keyId": "your key id", "publicKey": "public key", "tokenExpireTime": "2018-12-05 15:58:27", "requestId": "2ef5c013-0662-453c-9f63-ed43c1c20f63" } </code></pre> </section>

Did the above content solve your problem? Yes No