Documentation ¶
Overview ¶
Package awskms provides a AWS Key Management Service (KMS) implementation of the crypto.Signer interface.
The documentation for AWS KMS can be found here: https://docs.aws.amazon.com/kms/index.html
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Client ¶
type Client struct {
// contains filtered or unexported fields
}
Client is a client for interacting with the AWS KMS API using types native to the Flow Go SDK.
func (*Client) GetPublicKey ¶
func (c *Client) GetPublicKey(ctx context.Context, key Key) (crypto.PublicKey, crypto.HashAlgorithm, error)
GetPublicKey fetches the public key portion of a KMS asymmetric signing key.
KMS keys of the type `KeySpecEccNistP256` and `KeySpecEccSecgP256k1` are the only keys supported by the SDK.
Ref: https://github.com/aws/aws-sdk-go-v2/blob/main/service/kms/api_op_GetPublicKey.go
type Key ¶
type Key struct { Region string `json:"region"` Account string `json:"account"` KeyID string `json:"keyId"` }
Key is a reference to a AWS KMS asymmetric signing key.
func KeyFromResourceARN ¶
Example ARN format: "arn:aws:kms:us-west-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab"