Key Management Service
Overview
SCP에서 제공하는 IaaS/PaaS 상품을 프로그램적으로 이용할 수 있도록 지원하는 응용 프로그램 인터페이스(Application Programming Interface, API)를 제공합니다.
본 가이드는 Key Management Service(KMS)에 대한 간략한 설명 및 API를 호출하는 방법을 제공합니다.
API는 RESTful API 방식으로 제공되며, JSON 형식으로 응답합니다.
Version
| Version | Status | Supported Until |
|---|
| 1.0 | DEPRECATED | 20251231 |
| 1.1 | CURRENT | - |
OpenAPI URL
https://kms.{region}.{environment}.samsungsdscloud.com
Environment and Region List
| environment | region |
|---|
| s | kr-west1 |
| s | kr-east1 |
| g | kr-south1 |
| g | kr-south2 |
| g | kr-south3 |
| e | kr-west1 |
| e | kr-east1 |
1 - APIs
1.1 - Change Rotate Info
1.1.1 - 1.1
put /v1/kms/transit/{key_id}/rotate-info
Description
키 회전정보를 변경한다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| KeyRotateInfoRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/rotate-info
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"auto_rotate": "Y",
"rotate_cycle": 7
}
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.1.2 - 1.0
put /v1/kms/transit/{key_id}/rotate-info
Description
키 회전정보를 변경한다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| KeyRotateInfoRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/rotate-info
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"auto_rotate": "Y",
"rotate_cycle": 7
}
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.2 - Change State Of Key
1.2.1 - 1.1
put /v1/kms/transit/{key_id}/state
Description
키 상태를 변경한다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| KeyStateRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/state
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.2.2 - 1.0
put /v1/kms/transit/{key_id}/state
Description
키 상태를 변경한다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| KeyStateRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/state
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.3 - Check Duplicate Name
1.3.1 - 1.1
get /v1/kms/transit/duplicate
Description
키 이름 중복을 체크한다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| query | name
required | 키 이름
Example : testkey
| string | None |
Responses
Example HTTP request
Request path
/v1/kms/transit/duplicate?name={name}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Example HTTP response
Response 200
{
"isDuplicateName": true
}
1.3.2 - 1.0
get /v1/kms/transit/duplicate
Description
키 이름 중복을 체크한다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| query | name
required | 키 이름
Example : testkey
| string | None |
Responses
Example HTTP request
Request path
/v1/kms/transit/duplicate?name={name}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Example HTTP response
Response 200
{
"isDuplicateName": true
}
1.4 - Create Datakey
1.4.1 - 1.1
post /v1/kms/openapi/datakey/{key_id}
Description
새 데이터키를 생성하고, 키(용도:암호화/복호화)로 암호화된 값을 생성합니다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| DatakeyRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | DatakeyResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/datakey/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"key_type": "plaintext"
}
Example HTTP response
Response 200
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK",
"key_version": 1,
"plaintext": "oTvvEkE7q0WM2S5yfGFz5nqe32QMlrCVnqssmDPu6fA="
}
1.4.2 - 1.0
post /v1/kms/openapi/datakey/{key_id}
Description
새 데이터키를 생성하고, 키(용도:암호화/복호화)로 암호화된 값을 생성합니다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| DatakeyRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | DatakeyResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/datakey/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"key_type": "plaintext"
}
Example HTTP response
Response 200
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK",
"key_version": 1,
"plaintext": "oTvvEkE7q0WM2S5yfGFz5nqe32QMlrCVnqssmDPu6fA="
}
1.5 - Create Key
1.5.1 - 1.1
post /v1/kms/transit
Description
키를 생성한다.
상태
ACTIVE (CURRENT)
Parameters
Responses
| HTTP Code | Description | Schema |
|---|
| 201 | Created | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"auto_rotate": "Y",
"description": "description1",
"key_type": "advanced",
"name": "testkey",
"purpose": "rsa-2048",
"rotate_cycle": 7,
"tags": []
}
Example HTTP response
Response 201
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.5.2 - 1.0
post /v1/kms/transit
Description
키를 생성한다.
상태
ACTIVE (DEPRECATED)
Parameters
Responses
| HTTP Code | Description | Schema |
|---|
| 201 | Created | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"auto_rotate": "Y",
"description": "description1",
"key_type": "advanced",
"name": "testkey",
"purpose": "rsa-2048",
"rotate_cycle": 7,
"tags": []
}
Example HTTP response
Response 201
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.6 - Decrypt Data
1.6.1 - 1.1
post /v1/kms/openapi/decrypt/{key_id}
Description
키(용도:암호화/복호화)를 사용하여 제공된 암호문을 해독합니다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| DecryptRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | DecryptResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/decrypt/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR332Qpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK"
}
Example HTTP response
Response 200
{
"plaintext": "dGhlIHF1aWNrIGJyb3duIGZveAo="
}
1.6.2 - 1.0
post /v1/kms/openapi/decrypt/{key_id}
Description
키(용도:암호화/복호화)를 사용하여 제공된 암호문을 해독합니다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| DecryptRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | DecryptResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/decrypt/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR332Qpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK"
}
Example HTTP response
Response 200
{
"plaintext": "dGhlIHF1aWNrIGJyb3duIGZveAo="
}
1.7 - Delete Key
1.7.1 - 1.1
delete /v1/kms/transit/{key_id}
Description
키를 지금 또는 나중에 삭제한다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| query | is_directly
optional | 즉시삭제 여부
Example : True
| boolean | False |
Responses
| HTTP Code | Description | Schema |
|---|
| 204 | No Content | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Example HTTP response
Response 204
1.7.2 - 1.0
delete /v1/kms/transit/{key_id}
Description
키를 지금 또는 나중에 삭제한다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| query | is_directly
optional | 즉시삭제 여부
Example : True
| boolean | False |
Responses
| HTTP Code | Description | Schema |
|---|
| 204 | No Content | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Example HTTP response
Response 204
1.8 - Encrypt Data
1.8.1 - 1.1
post /v1/kms/openapi/encrypt/{key_id}
Description
제공된 일반 텍스트(base64 인코딩)를 키(용도:암호화/복호화)를 사용하여 암호화합니다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| EncryptRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | EncryptResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/encrypt/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"plaintext": "dGhlIHF1aWNrIGJyb3duIGZveAo="
}
Example HTTP response
Response 200
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VRh3aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK",
"key_version": 1
}
1.8.2 - 1.0
post /v1/kms/openapi/encrypt/{key_id}
Description
제공된 일반 텍스트(base64 인코딩)를 키(용도:암호화/복호화)를 사용하여 암호화합니다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| EncryptRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | EncryptResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/encrypt/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"plaintext": "dGhlIHF1aWNrIGJyb3duIGZveAo="
}
Example HTTP response
Response 200
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VRh3aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK",
"key_version": 1
}
1.9 - List Keys
1.9.1 - 1.1
get /v1/kms/transit
Description
키 리스트 조회하기
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| query | size
optional | size
Example : 20
| any of [integer, null] | 20 |
| query | page
optional | page
Example : 0
| any of [integer, null] | 0 |
| query | sort
optional | sort
Example : created_at:desc
| any of [string, null] | None |
| query | name
optional | 키 이름
Example : testkey
| any of [string, null] | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyPageResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Example HTTP response
Response 200
{
"count": 20,
"keys": [
{
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
],
"page": 0,
"size": 20,
"sort": [
"created_at:asc"
]
}
1.9.2 - 1.0
get /v1/kms/transit
Description
키 리스트 조회하기
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| query | size
optional | size
Example : 20
| any of [integer, null] | 20 |
| query | page
optional | page
Example : 0
| any of [integer, null] | 0 |
| query | sort
optional | sort
Example : created_at:desc
| any of [string, null] | None |
| query | name
optional | 키 이름
Example : testkey
| any of [string, null] | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyPageResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Example HTTP response
Response 200
{
"count": 20,
"keys": [
{
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
],
"page": 0,
"size": 20,
"sort": [
"created_at:asc"
]
}
1.10 - List Users
1.10.1 - 1.1
get /v1/kms/transit/{key_id}/users
Description
키를 사용한 사람 목록을 보여준다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyUserResponse |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/users
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Example HTTP response
Response 200
{
"user": [
{
"user_id": "138c2fc8c29a449dbfa8681f8f1d78e2",
"user_name": "kimsamsung"
}
]
}
1.10.2 - 1.0
get /v1/kms/transit/{key_id}/users
Description
키를 사용한 사람 목록을 보여준다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyUserResponse |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/users
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Example HTTP response
Response 200
{
"user": [
{
"user_id": "138c2fc8c29a449dbfa8681f8f1d78e2",
"user_name": "kimsamsung"
}
]
}
1.11 - Make hmac
1.11.1 - 1.1
post /v1/kms/openapi/hmac/{key_id}
Description
HMAC 키를 사용해 생성합니다.( 용도: 생성/확인 )
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| HmacRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | HmacResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/hmac/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"input": "dGVzdCBpbnB1dA=="
}
Example HTTP response
Response 200
{
"hmac": "vault:v1:/IHSD+Rg9BHNkmIiEunAPVj6IVaJqkjSO4GGvALHcVQ="
}
1.11.2 - 1.0
post /v1/kms/openapi/hmac/{key_id}
Description
HMAC 키를 사용해 생성합니다.( 용도: 생성/확인 )
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| HmacRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | HmacResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/hmac/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"input": "dGVzdCBpbnB1dA=="
}
Example HTTP response
Response 200
{
"hmac": "vault:v1:/IHSD+Rg9BHNkmIiEunAPVj6IVaJqkjSO4GGvALHcVQ="
}
1.12 - Rewrap Data
1.12.1 - 1.1
post /v1/kms/openapi/rewrap/{key_id}
Description
최신 버전의 키(용도:암호화/복호화)를 사용하여 제공된 암호문을 다시 래핑합니다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| RewrapRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | RewrapResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/rewrap/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK"
}
Example HTTP response
Response 200
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK",
"key_version": 1
}
1.12.2 - 1.0
post /v1/kms/openapi/rewrap/{key_id}
Description
최신 버전의 키(용도:암호화/복호화)를 사용하여 제공된 암호문을 다시 래핑합니다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| RewrapRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | RewrapResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/rewrap/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK"
}
Example HTTP response
Response 200
{
"ciphertext": "vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK",
"key_version": 1
}
1.13 - Rotate Key
1.13.1 - 1.1
post /v1/kms/transit/{key_id}/rotate
Description
키를 회전한다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/rotate
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.13.2 - 1.0
post /v1/kms/transit/{key_id}/rotate
Description
키를 회전한다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/rotate
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.14 - Show Key
1.14.1 - 1.1
get /v1/kms/transit/{key_id}
Description
키 정보를 보여준다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.14.2 - 1.0
get /v1/kms/transit/{key_id}
Description
키 정보를 보여준다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.15 - Sign Data
1.15.1 - 1.1
post /v1/kms/openapi/sign/{key_id}
Description
키(용도:서명/검증)를 사용하여 주어진 데이터의 암호화 서명을 반환합니다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| SignRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | SignResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/sign/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"input": "dGVzdCBpbnB1dA=="
}
Example HTTP response
Response 200
{
"key_version": 1,
"signature": "vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg="
}
1.15.2 - 1.0
post /v1/kms/openapi/sign/{key_id}
Description
키(용도:서명/검증)를 사용하여 주어진 데이터의 암호화 서명을 반환합니다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| SignRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | SignResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/sign/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"input": "dGVzdCBpbnB1dA=="
}
Example HTTP response
Response 200
{
"key_version": 1,
"signature": "vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg="
}
1.16 - Update Description
1.16.1 - 1.1
put /v1/kms/transit/{key_id}/description
Description
설명을 업데이트한다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| KeyDescriptionRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/description
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.16.2 - 1.0
put /v1/kms/transit/{key_id}/description
Description
설명을 업데이트한다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| KeyDescriptionRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | KeyShowResponse |
| 400 | Bad Request | None |
| 403 | Forbidden | None |
| 404 | Not Found | None |
Example HTTP request
Request path
/v1/kms/transit/{key_id}/description
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
Example HTTP response
Response 200
{
"key": {
"account_id": "3265ab469f0d406d83073da3e11e7a6c",
"auto_rotate": "Y",
"created_at": "2024-05-17T00:23:17Z",
"created_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"current_version": 7,
"delete_at": "20251008",
"delete_target_yn": "Y",
"description": "description1",
"id": "0fdd87aab8cb46f59b7c1f81ed03fb3e",
"key_type": "advanced",
"modified_at": "2024-05-17T00:23:17Z",
"modified_by": "90dddfc2b1e04edba54ba2b41539a9ac",
"name": "testkey",
"next_rotate_at": "20241008",
"order_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"purpose": "rsa-2048",
"region": "kr-west1",
"rotate_cycle": 7,
"secret_ref": "0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01",
"state": "Active",
"use_count": 1004
}
}
1.17 - Verify Data
1.17.1 - 1.1
post /v1/kms/openapi/verify/{key_id}
Description
제공된 서명이 서명 데이터 중 하나에서 지정된 데이터에 대해 유효한지 여부를 키(용도:서명/검증)를 사용해 반환합니다.
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| VerifyRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | VerifyResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/verify/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"input": "dGVzdCBpbnB1dA==",
"signature": "vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg="
}
Example HTTP response
Response 200
1.17.2 - 1.0
post /v1/kms/openapi/verify/{key_id}
Description
제공된 서명이 서명 데이터 중 하나에서 지정된 데이터에 대해 유효한지 여부를 키(용도:서명/검증)를 사용해 반환합니다.
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| VerifyRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | VerifyResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/verify/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"input": "dGVzdCBpbnB1dA==",
"signature": "vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg="
}
Example HTTP response
Response 200
1.18 - Verify hmac with input
1.18.1 - 1.1
post /v1/kms/openapi/hmac/verify/{key_id}
Description
INPUT이 유효한지 아닌지 키를 사용해 확인합니다(용도: 생성/확인)
상태
ACTIVE (CURRENT)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| HmacVerifyRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | HmacVerifyResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/hmac/verify/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.1"
Request body
{
"hmac": "vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg=",
"input": "dGVzdCBpbnB1dA=="
}
Example HTTP response
Response 200
1.18.2 - 1.0
post /v1/kms/openapi/hmac/verify/{key_id}
Description
INPUT이 유효한지 아닌지 키를 사용해 확인합니다(용도: 생성/확인)
상태
ACTIVE (DEPRECATED)
Parameters
| Type | Name | Description | Schema | Default |
|---|
| path | key_id
required | KMS 키 자원 아이디
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | None |
| body | body
required |
| HmacVerifyRequest | |
Responses
| HTTP Code | Description | Schema |
|---|
| 200 | OK | HmacVerifyResponse |
| 400 | Bad Request | None |
| 401 | Unauthorized | None |
| 403 | Forbidden | None |
Example HTTP request
Request path
/v1/kms/openapi/hmac/verify/{key_id}
"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = kms 1.0"
Request body
{
"hmac": "vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg=",
"input": "dGVzdCBpbnB1dA=="
}
Example HTTP response
Response 200
2 - Models
2.1 - DatakeyRequest
| Name | Description | Schema | Default |
|---|
key_type
required | 키 타입( plaintext or wrapped )
Example : plaintext
| string | |
2.2 - DatakeyResponse
| Name | Description | Schema | Default |
|---|
ciphertext
required | 암호화된 데이터 키
Example : vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK
| string | |
key_version
required | KMS 키 버전
Example : 1
| integer | |
plaintext
required | 데이터키 (base64로 인코딩된)
Example : oTvvEkE7q0WM2S5yfGFz5nqe32QMlrCVnqssmDPu6fA=
| any of [string, null] | |
2.3 - DecryptRequest
| Name | Description | Schema | Default |
|---|
ciphertext
required | KMS에 의해 암호화된 데이터
Example : vault:v283:YiUpW1bpF2fMY0VR332Qpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK
| string | |
2.4 - DecryptResponse
| Name | Description | Schema | Default |
|---|
plaintext
required | 데이터키 (base64로 인코딩된 )
Example : dGhlIHF1aWNrIGJyb3duIGZveAo=
| string | |
2.5 - EncryptRequest
| Name | Description | Schema | Default |
|---|
plaintext
required | base64로 인코딩된 확인하기 위한 데이터
Example : dGhlIHF1aWNrIGJyb3duIGZveAo=
| string | |
2.6 - EncryptResponse
| Name | Description | Schema | Default |
|---|
ciphertext
required | KMS에 의해 암호화된 데이터
Example : vault:v283:YiUpW1bpF2fMY0VRh3aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK
| string | |
key_version
required | KMS 키 버전
Example : 1
| integer | |
2.7 - HmacRequest
| Name | Description | Schema | Default |
|---|
input
required | base64로 인코딩된 확인하기 위한 데이터
Example : dGVzdCBpbnB1dA==
| string | |
2.8 - HmacResponse
| Name | Description | Schema | Default |
|---|
hmac
required | HMAC 데이터
Example : vault:v1:/IHSD+Rg9BHNkmIiEunAPVj6IVaJqkjSO4GGvALHcVQ=
| string | |
2.9 - HmacVerifyRequest
| Name | Description | Schema | Default |
|---|
hmac
required | 확인을 위한 시그니쳐
Example : vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg=
| string | |
input
required | base64로 인코딩된 확인하기 위한 데이터
Example : dGVzdCBpbnB1dA==
| string | |
2.10 - HmacVerifyResponse
| Name | Description | Schema | Default |
|---|
valid
required | 확인결과
Example : True
| boolean | |
2.11 - Key
| Name | Description | Schema | Default |
|---|
account_id
required | 계정 id
Example : 3265ab469f0d406d83073da3e11e7a6c
| string | |
auto_rotate
required | 자동회전 Y 또는 N
Example : Y
| string | |
created_at
required | 생성 시간
Example : 2024-05-17T00:23:17Z
| string (date-time) | |
created_by
required | 생성자
Example : 90dddfc2b1e04edba54ba2b41539a9ac
| string | |
current_version
required | KMS키 현재 버전
Example : 7
| integer | |
delete_at
required | Date of deletion
Example : 20251008
| any of [string (date-time), null] | |
delete_target_yn
required | 키 삭제예정 여부
Example : Y
| any of [string, null] | |
description
required | 키 설명
Example : description1
Maximum length : 100
| string | |
id
required | ID
Example : 0fdd87aab8cb46f59b7c1f81ed03fb3e
| string | |
key_type
required | 기본 또는 고급
Example : advanced
| any of [string, null] | |
modified_at
required | 수정 시간
Example : 2024-05-17T00:23:17Z
| string (date-time) | |
modified_by
required | 수정자
Example : 90dddfc2b1e04edba54ba2b41539a9ac
| string | |
name
required | 키 이름
Example : testkey
Pattern : ^[a-z0-9]*$
Minimum length : 3
Maximum length : 63
| string | |
next_rotate_at
required | 다음 회전일
Example : 20241008
| any of [string (date-time), null] | |
order_ref
required | 오더 참조
Example : 0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01
| any of [string, null] | |
purpose
required | 키 용도
Example : rsa-2048
| string | |
region
required | 리즌 이름
Example : kr-west1
| string | |
rotate_cycle
required | 회전 주기
Example : 7
| integer | |
secret_ref
required | 시크릿 참조
Example : 0e1bfdf8-a7da-43d3-8e8c-c9f34024ba01
| any of [string, null] | |
state
required | 키 상태(Creating, Active, Error, Stop, To_Be_Terminated)
Example : Active
| any of [string, null] | |
use_count
required | KMS키 사용횟수
Example : 1004
| integer | |
2.12 - KeyCreateMasterKeyRequest
| Name | Description | Schema | Default |
|---|
auto_rotate
required | 자동회전 Y 또는 N
Example : Y
| string | |
description
required | 키 설명
Example : description1
Maximum length : 100
| string | |
key_type
optional | 기본 또는 고급
Example : advanced
| enum (basic, advanced) | advanced |
name
required | 키 이름
Example : testkey
Pattern : ^[a-z0-9]*$
Minimum length : 3
Maximum length : 63
| string | |
purpose
required | 키 용도
Example : rsa-2048
| string | |
rotate_cycle
required | 회전 주기
Example : 7
| integer | |
tags
optional | 태그 리스트
| array[Tag] | |
2.13 - KeyDescriptionRequest
| Name | Description | Schema | Default |
|---|
description
required | 키 설명
Example :
Maximum length : 100
| string | |
2.14 - KeyNameDuplicateResponse
| Name | Description | Schema | Default |
|---|
isDuplicateName
optional |
Example : True
| boolean | Duplicate check result |
2.15 - KeyPageResponse
| Name | Description | Schema | Default |
|---|
count
required | count
Example : 20
| integer | |
keys
required |
| array[Key] | |
page
required | page
Example : 0
| integer | |
size
required | size
Example : 20
| integer | |
sort
optional | sort
Example : ['created_at:asc']
| any of [array[string], null] | |
2.16 - KeyRotateInfoRequest
| Name | Description | Schema | Default |
|---|
auto_rotate
required | 자동회전 Y 또는 N
Example : Y
Pattern : ^[YN]$
| string | |
rotate_cycle
required | 회전 주기
Example : 7
| any of [integer, null] | |
2.17 - KeyShowResponse
| Name | Description | Schema | Default |
|---|
key
required |
| Key | |
2.18 - KeyStateRequest
| Name | Description | Schema | Default |
|---|
state
required | 키 상태(Active, Stop)
Example : Active
Pattern : ^(Active|Stop)$
| string | |
2.19 - KeyUserResponse
| Name | Description | Schema | Default |
|---|
user
required |
| array[User] | |
2.20 - RewrapRequest
| Name | Description | Schema | Default |
|---|
ciphertext
required | KMS에 의해 암호화된 데이터
Example : vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK
| string | |
2.21 - RewrapResponse
| Name | Description | Schema | Default |
|---|
ciphertext
required | KMS에 의해 암호화된 재래핑할 데이터
Example : vault:v283:YiUpW1bpF2fMY0VR33aQpik781Ul2gFPsfdwsypwouccHtPSfRaE40wTHHl4a5AK
| string | |
key_version
required | KMS 키 버전
Example : 1
| integer | |
2.22 - SignRequest
| Name | Description | Schema | Default |
|---|
input
required | base64로 인코딩된 확인하기 위한 데이터
Example : dGVzdCBpbnB1dA==
| string | |
2.23 - SignResponse
| Name | Description | Schema | Default |
|---|
key_version
required | KMS 키 버전
Example : 1
| integer | |
signature
required | 확인을 위한 시그니쳐
Example : vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg=
| string | |
2.24 - Tag
| Name | Description | Schema | Default |
|---|
key
required | tag key
Example :
| string | |
value
required | tag value
Example :
| string | |
2.25 - User
| Name | Description | Schema | Default |
|---|
user_id
required | 사용자 id
Example : 138c2fc8c29a449dbfa8681f8f1d78e2
| string | |
user_name
required | 사용자 이름
Example : kimsamsung
| string | |
2.26 - VerifyRequest
| Name | Description | Schema | Default |
|---|
input
required | base64로 인코딩된 확인하기 위한 데이터
Example : dGVzdCBpbnB1dA==
| string | |
signature
required | 확인을 위한 시그니쳐
Example : vault:v142:MEUCIQDt+iM27ZENLTxFCKH2krlvn2xRRuoqt8aU+xP/RYEJpgIgN6V6QjhpK4dA/vwgX95UW140ge167ECnLjccXDPbZAg=
| string | |
2.27 - VerifyResponse
| Name | Description | Schema | Default |
|---|
valid
required | 확인결과
Example : True
| boolean | |