Options
All
  • Public
  • Public/Protected
  • All
Menu

Class CryptographyClient

Package version

A client used to perform cryptographic operations with Azure Key Vault keys.

Hierarchy

  • CryptographyClient

Index

Constructors

Methods

Constructors

constructor

  • Constructs a new instance of the Cryptography client for the given key

    Example usage:

    import { KeyClient, CryptographyClient } from "@azure/keyvault-keys";
import { DefaultAzureCredential } from "@azure/identity";

let vaultUrl = `https://<MY KEYVAULT HERE>.vault.azure.net`;
let credentials = new DefaultAzureCredential();

let keyClient = new KeyClient(vaultUrl, credentials);
let keyVaultKey = await keyClient.getKey("MyKey");

let client = new CryptographyClient(keyVaultKey.id, credentials);
// or
let client = new CryptographyClient(keyVaultKey, credentials);
    memberof

    CryptographyClient

    Parameters

    • key: string | KeyVaultKey

      The key to use during cryptography tasks.

    • credential: TokenCredential

      An object that implements the TokenCredential interface used to authenticate requests to the service. Use the @azure/identity package to create a credential that suits your needs.

    • Default value pipelineOptions: PipelineOptions = {}

    Returns CryptographyClient

Methods

decrypt

  • Decrypts the given ciphertext with the specified cryptography algorithm

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.decrypt("RSA1_5", encryptedBuffer);

    Parameters

    • algorithm: EncryptionAlgorithm

      The algorithm to use.

    • ciphertext: Uint8Array

      The text to decrypt.

    • Default value options: DecryptOptions = {}

    Returns Promise<DecryptResult>

encrypt

  • Encrypts the given plaintext with the specified cryptography algorithm

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.encrypt("RSA1_5", Buffer.from("My Message"));

    Parameters

    • algorithm: EncryptionAlgorithm

      The algorithm to use.

    • plaintext: Uint8Array

      The text to encrypt.

    • Default value options: EncryptOptions = {}

    Returns Promise<EncryptResult>

sign

  • Cryptographically sign the digest of a message

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.sign("RS256", digest);

    Parameters

    • algorithm: SignatureAlgorithm

      The signing algorithm to use.

    • digest: Uint8Array

      The digest of the data to sign.

    • Default value options: SignOptions = {}

    Returns Promise<SignResult>

signData

  • Cryptographically sign a block of data

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.signData("RS256", message);

    Parameters

    Returns Promise<SignResult>

unwrapKey

  • Unwraps the given wrapped key using the specified cryptography algorithm

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.unwrapKey("RSA1_5", keyToUnwrap);

    Parameters

    • algorithm: KeyWrapAlgorithm

      The decryption algorithm to use to unwrap the key.

    • encryptedKey: Uint8Array

      The encrypted key to unwrap.

    • Default value options: UnwrapKeyOptions = {}

    Returns Promise<UnwrapResult>

verify

  • Verify the signed message digest

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.verify("RS256", signedDigest, signature);

    Parameters

    • algorithm: SignatureAlgorithm

      The signing algorithm to use to verify with.

    • digest: Uint8Array

      The digest to verify.

    • signature: Uint8Array

      The signature to verify the digest against.

    • Default value options: VerifyOptions = {}

    Returns Promise<VerifyResult>

verifyData

  • Verify the signed block of data

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.verifyData("RS256", signedMessage, signature);

    Parameters

    • algorithm: SignatureAlgorithm

      The algorithm to use to verify with.

    • data: Uint8Array

      The signed block of data to verify.

    • signature: Uint8Array

      The signature to verify the block against.

    • Default value options: VerifyOptions = {}

    Returns Promise<VerifyResult>

wrapKey

  • Wraps the given key using the specified cryptography algorithm

    Example usage:

    let client = new CryptographyClient(keyVaultKey, credentials);
let result = await client.wrapKey("RSA1_5", keyToWrap);

    Parameters

    • algorithm: KeyWrapAlgorithm

      The encryption algorithm to use to wrap the given key.

    • key: Uint8Array

      The key to wrap.

    • Default value options: WrapKeyOptions = {}

    Returns Promise<WrapResult>

Generated using TypeDoc