Class VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder
java.lang.Object
org.springframework.vault.support.VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder
- Enclosing class:
- VaultTransitKeyConfiguration
Builder for 
VaultTransitKeyConfiguration.- 
Method SummaryModifier and TypeMethodDescriptionbuild()Build a newVaultTransitKeyConfigurationinstance.deletionAllowed(boolean deletionAllowed) Set whether key deletion is allowed.minDecryptionVersion(int minDecryptionVersion) Specifies the minimum version of ciphertext allowed to be decrypted.minEncryptionVersion(int minEncryptionVersion) Specifies the minimum version of the key that can be used to encrypt plaintext, sign payloads, or generate HMACs.
- 
Method Details- 
deletionAllowedpublic VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder deletionAllowed(boolean deletionAllowed) Set whether key deletion is allowed.- Parameters:
- deletionAllowed- true if key deletion should be allowed.
- Returns:
- this- VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder.
 
- 
minDecryptionVersionpublic VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder minDecryptionVersion(int minDecryptionVersion) Specifies the minimum version of ciphertext allowed to be decrypted. Adjusting this as part of a key rotation policy can prevent old copies of ciphertext from being decrypted, should they fall into the wrong hands. For signatures, this value controls the minimum version of signature that can be verified against. For HMACs, this controls the minimum version of a key allowed to be used as the key for verification.- Parameters:
- minDecryptionVersion- key version.
- Returns:
- this- VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder.
- Since:
- 1.1
 
- 
minEncryptionVersionpublic VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder minEncryptionVersion(int minEncryptionVersion) Specifies the minimum version of the key that can be used to encrypt plaintext, sign payloads, or generate HMACs. Must be 0 (which will use the latest version) or a value greater or equal tominDecryptionVersion(int).- Parameters:
- minEncryptionVersion- key version.
- Returns:
- this- VaultTransitKeyConfiguration.VaultTransitKeyConfigurationBuilder.
- Since:
- 1.1
 
- 
buildBuild a newVaultTransitKeyConfigurationinstance.- Returns:
- a new VaultTransitKeyConfiguration.
 
 
-