@eudiplo/backend documentation
  1. Classes
  2. ExportEcJwk

File

src/crypto/key/dto/key-chain-export.dto.ts

Description

EC JWK including private key material for export.

Index

Properties

Properties

Optional alg
Type : string
Decorators :
@ApiPropertyOptional({description: 'Algorithm', example: 'ES256'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:24
crv
Type : string
Decorators :
@ApiProperty({description: 'Curve', example: 'P-256'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:12
d
Type : string
Decorators :
@ApiProperty({description: 'Private key (base64url)'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:21
Optional kid
Type : string
Decorators :
@ApiPropertyOptional({description: 'Key ID'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:27
kty
Type : string
Decorators :
@ApiProperty({description: 'Key type', example: 'EC'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:9
x
Type : string
Decorators :
@ApiProperty({description: 'X coordinate (base64url)'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:15
y
Type : string
Decorators :
@ApiProperty({description: 'Y coordinate (base64url)'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:18
 
import { ApiProperty, ApiPropertyOptional } from "@nestjs/swagger";
import { KeyUsageType } from "../entities/key-chain.entity";

/**
 * EC JWK including private key material for export.
 */
class ExportEcJwk {
    @ApiProperty({ description: "Key type", example: "EC" })
    kty!: string;

    @ApiProperty({ description: "Curve", example: "P-256" })
    crv!: string;

    @ApiProperty({ description: "X coordinate (base64url)" })
    x!: string;

    @ApiProperty({ description: "Y coordinate (base64url)" })
    y!: string;

    @ApiProperty({ description: "Private key (base64url)" })
    d!: string;

    @ApiPropertyOptional({ description: "Algorithm", example: "ES256" })
    alg?: string;

    @ApiPropertyOptional({ description: "Key ID" })
    kid?: string;
}

/**
 * Rotation policy for exported key chains.
 */
class ExportRotationPolicyDto {
    @ApiProperty({ description: "Whether rotation is enabled." })
    enabled!: boolean;

    @ApiPropertyOptional({ description: "Rotation interval in days." })
    intervalDays?: number;

    @ApiPropertyOptional({ description: "Certificate validity in days." })
    certValidityDays?: number;
}

/**
 * DTO for exporting a key chain in config-import-compatible format.
 *
 * This matches the shape of key chain JSON files in the config folder,
 * so it can be saved and later imported via the config import mechanism.
 */
export class KeyChainExportDto {
    @ApiProperty({ description: "Key chain ID." })
    id!: string;

    @ApiPropertyOptional({ description: "Human-readable description." })
    description?: string;

    @ApiProperty({
        description: "Usage type for this key chain.",
        enum: KeyUsageType,
    })
    usageType!: KeyUsageType;

    @ApiProperty({ description: "The private key in JWK format (EC)." })
    key!: ExportEcJwk;

    @ApiPropertyOptional({
        description:
            "Certificate chain in PEM format (leaf first, then intermediates/CA).",
    })
    crt?: string[];

    @ApiPropertyOptional({ description: "KMS provider name." })
    kmsProvider?: string;

    @ApiPropertyOptional({ description: "Rotation policy." })
    rotationPolicy?: ExportRotationPolicyDto;
}

results matching ""

    No results matching ""