@eudiplo/backend documentation
  1. Classes
  2. KeyChainExportDto

File

src/crypto/key/dto/key-chain-export.dto.ts

Description

DTO for exporting a key chain in config-import-compatible format.

This matches the shape of key chain JSON files in the config folder, so it can be saved and later imported via the config import mechanism.

Index

Properties

Properties

Optional crt
Type : string[]
Decorators :
@ApiPropertyOptional({description: 'Certificate chain in PEM format (leaf first, then intermediates/CA).'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:70
Optional description
Type : string
Decorators :
@ApiPropertyOptional({description: 'Human-readable description.'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:55
id
Type : string
Decorators :
@ApiProperty({description: 'Key chain ID.'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:52
key
Type : ExportEcJwk
Decorators :
@ApiProperty({description: 'The private key in JWK format (EC).'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:64
Optional kmsProvider
Type : string
Decorators :
@ApiPropertyOptional({description: 'KMS provider name.'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:73
Optional rotationPolicy
Type : ExportRotationPolicyDto
Decorators :
@ApiPropertyOptional({description: 'Rotation policy.'})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:76
usageType
Type : KeyUsageType
Decorators :
@ApiProperty({description: 'Usage type for this key chain.', enum: KeyUsageType})
Defined in src/crypto/key/dto/key-chain-export.dto.ts:61
 
import { ApiProperty, ApiPropertyOptional } from "@nestjs/swagger";
import { KeyUsageType } from "../entities/key-chain.entity";

/**
 * EC JWK including private key material for export.
 */
class ExportEcJwk {
    @ApiProperty({ description: "Key type", example: "EC" })
    kty!: string;

    @ApiProperty({ description: "Curve", example: "P-256" })
    crv!: string;

    @ApiProperty({ description: "X coordinate (base64url)" })
    x!: string;

    @ApiProperty({ description: "Y coordinate (base64url)" })
    y!: string;

    @ApiProperty({ description: "Private key (base64url)" })
    d!: string;

    @ApiPropertyOptional({ description: "Algorithm", example: "ES256" })
    alg?: string;

    @ApiPropertyOptional({ description: "Key ID" })
    kid?: string;
}

/**
 * Rotation policy for exported key chains.
 */
class ExportRotationPolicyDto {
    @ApiProperty({ description: "Whether rotation is enabled." })
    enabled!: boolean;

    @ApiPropertyOptional({ description: "Rotation interval in days." })
    intervalDays?: number;

    @ApiPropertyOptional({ description: "Certificate validity in days." })
    certValidityDays?: number;
}

/**
 * DTO for exporting a key chain in config-import-compatible format.
 *
 * This matches the shape of key chain JSON files in the config folder,
 * so it can be saved and later imported via the config import mechanism.
 */
export class KeyChainExportDto {
    @ApiProperty({ description: "Key chain ID." })
    id!: string;

    @ApiPropertyOptional({ description: "Human-readable description." })
    description?: string;

    @ApiProperty({
        description: "Usage type for this key chain.",
        enum: KeyUsageType,
    })
    usageType!: KeyUsageType;

    @ApiProperty({ description: "The private key in JWK format (EC)." })
    key!: ExportEcJwk;

    @ApiPropertyOptional({
        description:
            "Certificate chain in PEM format (leaf first, then intermediates/CA).",
    })
    crt?: string[];

    @ApiPropertyOptional({ description: "KMS provider name." })
    kmsProvider?: string;

    @ApiPropertyOptional({ description: "Rotation policy." })
    rotationPolicy?: ExportRotationPolicyDto;
}

results matching ""

    No results matching ""