mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-18 04:27:02 +02:00
6b4b0f7aaf
* VAULT-15547 First pass at agent/proxy decoupling * VAULT-15547 Fix some imports * VAULT-15547 cases instead of string.Title * VAULT-15547 changelog * VAULT-15547 Fix some imports * VAULT-15547 some more dependency updates * VAULT-15547 More dependency paths * VAULT-15547 godocs for tests * VAULT-15547 godocs for tests * VAULT-15547 test package updates * VAULT-15547 test packages * VAULT-15547 add proxy to test packages * VAULT-15547 gitignore * VAULT-15547 address comments * VAULT-15547 Some typos and small fixes
24 lines
619 B
Go
24 lines
619 B
Go
// Copyright (c) HashiCorp, Inc.
|
|
// SPDX-License-Identifier: MPL-2.0
|
|
|
|
package keymanager
|
|
|
|
import (
|
|
"context"
|
|
|
|
wrapping "github.com/hashicorp/go-kms-wrapping/v2"
|
|
)
|
|
|
|
const (
|
|
KeyID = "root"
|
|
)
|
|
|
|
type KeyManager interface {
|
|
// Returns a wrapping.Wrapper which can be used to perform key-related operations.
|
|
Wrapper() wrapping.Wrapper
|
|
// RetrievalToken is the material returned which can be used to source back the
|
|
// encryption key. Depending on the implementation, the token can be the
|
|
// encryption key itself or a token/identifier used to exchange the token.
|
|
RetrievalToken(ctx context.Context) ([]byte, error)
|
|
}
|