Changeset View
Changeset View
Standalone View
Standalone View
src/docs/user/configuration/configuring_encryption.diviner
Show First 20 Lines • Show All 66 Lines • ▼ Show 20 Lines | Each key should have these properties: | ||||
- `name`: //Required string.// A unique key name. | - `name`: //Required string.// A unique key name. | ||||
- `type`: //Required string.// Type of the key. Only `aes-256-cbc` is | - `type`: //Required string.// Type of the key. Only `aes-256-cbc` is | ||||
supported. | supported. | ||||
- `material.base64`: //Required string.// The key material. See below for | - `material.base64`: //Required string.// The key material. See below for | ||||
details. | details. | ||||
- `default`: //Optional bool.// Optionally, mark exactly one key as the | - `default`: //Optional bool.// Optionally, mark exactly one key as the | ||||
default key to enable encryption of newly uploaded file data. | default key to enable encryption of newly uploaded file data. | ||||
The key material is sensitive an an attacker who learns it can decrypt data | The key material is sensitive and an attacker who learns it can decrypt data | ||||
from the storage engine. | from the storage engine. | ||||
Format: Raw Data | Format: Raw Data | ||||
================ | ================ | ||||
The `raw` storage format is automatically selected for all newly uploaded | The `raw` storage format is automatically selected for all newly uploaded | ||||
file data if no key is makred as the `default` key in the keyring. This is | file data if no key is makred as the `default` key in the keyring. This is | ||||
▲ Show 20 Lines • Show All 113 Lines • Show Last 20 Lines |