software.amazon.awssdk.services.kms.model

Class KeyMetadata

java.lang.Object

software.amazon.awssdk.services.kms.model.KeyMetadata

All Implemented Interfaces:

Serializable, SdkPojo, ToCopyableBuilder<KeyMetadata.Builder,KeyMetadata>

@Generated(value="software.amazon.awssdk:codegen")
public final class KeyMetadata
extends Object
implements SdkPojo, Serializable, ToCopyableBuilder<KeyMetadata.Builder,KeyMetadata>

Contains metadata about a customer master key (CMK).

This data type is used as a response element for the CreateKey and DescribeKey operations.

See Also:

Serialized Form

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static interface	KeyMetadata.Builder

Method Summary

Modifier and Type	Method and Description
String	arn() The Amazon Resource Name (ARN) of the CMK.
String	awsAccountId() The twelve-digit account ID of the AWS account that owns the CMK.
static KeyMetadata.Builder	builder()
String	cloudHsmClusterId() The cluster ID of the AWS CloudHSM cluster that contains the key material for the CMK.
Instant	creationDate() The date and time when the CMK was created.
String	customKeyStoreId() A unique identifier for the custom key store that contains the CMK.
Instant	deletionDate() The date and time after which AWS KMS deletes the CMK.
String	description() The description of the CMK.
Boolean	enabled() Specifies whether the CMK is enabled.
boolean	equals(Object obj)
ExpirationModelType	expirationModel() Specifies whether the CMK's key material expires.
String	expirationModelAsString() Specifies whether the CMK's key material expires.
<T> Optional<T>	getValueForField(String fieldName, Class<T> clazz)
int	hashCode()
String	keyId() The globally unique identifier for the CMK.
KeyManagerType	keyManager() The CMK's manager.
String	keyManagerAsString() The CMK's manager.
KeyState	keyState() The state of the CMK.
String	keyStateAsString() The state of the CMK.
KeyUsageType	keyUsage() The cryptographic operations for which you can use the CMK.
String	keyUsageAsString() The cryptographic operations for which you can use the CMK.
OriginType	origin() The source of the CMK's key material.
String	originAsString() The source of the CMK's key material.
List<SdkField<?>>	sdkFields()
static Class<? extends KeyMetadata.Builder>	serializableBuilderClass()
KeyMetadata.Builder	toBuilder() Take this object and create a builder that contains all of the current property values of this object.
String	toString()
Instant	validTo() The time at which the imported key material expires.

Methods inherited from class java.lang.Object

getClass, notify, notifyAll, wait, wait, wait

Methods inherited from interface software.amazon.awssdk.utils.builder.ToCopyableBuilder

copy

Method Detail

awsAccountId

public String awsAccountId()

The twelve-digit account ID of the AWS account that owns the CMK.

Returns:

The twelve-digit account ID of the AWS account that owns the CMK.

keyId

public String keyId()

The globally unique identifier for the CMK.

Returns:

The globally unique identifier for the CMK.

arn

public String arn()

The Amazon Resource Name (ARN) of the CMK. For examples, see AWS Key Management Service (AWS KMS) in the Example ARNs section of the AWS General Reference.

Returns:

The Amazon Resource Name (ARN) of the CMK. For examples, see AWS Key Management Service (AWS KMS) in the Example ARNs section of the AWS General Reference.

creationDate

public Instant creationDate()

The date and time when the CMK was created.

Returns:

The date and time when the CMK was created.

enabled

public Boolean enabled()

Specifies whether the CMK is enabled. When KeyState is Enabled this value is true, otherwise it is false.

Returns:

Specifies whether the CMK is enabled. When KeyState is Enabled this value is true, otherwise it is false.

description

public String description()

The description of the CMK.

Returns:

The description of the CMK.

keyUsage

public KeyUsageType keyUsage()

The cryptographic operations for which you can use the CMK. Currently the only allowed value is ENCRYPT_DECRYPT, which means you can use the CMK for the Encrypt and Decrypt operations.

If the service returns an enum value that is not available in the current SDK version, keyUsage will return KeyUsageType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from keyUsageAsString().

Returns:

The cryptographic operations for which you can use the CMK. Currently the only allowed value is ENCRYPT_DECRYPT, which means you can use the CMK for the Encrypt and Decrypt operations.

See Also:

KeyUsageType

keyUsageAsString

public String keyUsageAsString()

The cryptographic operations for which you can use the CMK. Currently the only allowed value is ENCRYPT_DECRYPT, which means you can use the CMK for the Encrypt and Decrypt operations.

If the service returns an enum value that is not available in the current SDK version, keyUsage will return KeyUsageType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from keyUsageAsString().

Returns:

The cryptographic operations for which you can use the CMK. Currently the only allowed value is ENCRYPT_DECRYPT, which means you can use the CMK for the Encrypt and Decrypt operations.

See Also:

KeyUsageType

keyState

public KeyState keyState()

The state of the CMK.

For more information about how key state affects the use of a CMK, see How Key State Affects the Use of a Customer Master Key in the AWS Key Management Service Developer Guide.

If the service returns an enum value that is not available in the current SDK version, keyState will return KeyState.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from keyStateAsString().

Returns:

The state of the CMK.

For more information about how key state affects the use of a CMK, see How Key State Affects the Use of a Customer Master Key in the AWS Key Management Service Developer Guide.

See Also:

KeyState

keyStateAsString

public String keyStateAsString()

The state of the CMK.

For more information about how key state affects the use of a CMK, see How Key State Affects the Use of a Customer Master Key in the AWS Key Management Service Developer Guide.

If the service returns an enum value that is not available in the current SDK version, keyState will return KeyState.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from keyStateAsString().

Returns:

The state of the CMK.

For more information about how key state affects the use of a CMK, see How Key State Affects the Use of a Customer Master Key in the AWS Key Management Service Developer Guide.

See Also:

KeyState

deletionDate

public Instant deletionDate()

The date and time after which AWS KMS deletes the CMK. This value is present only when KeyState is PendingDeletion.

Returns:

The date and time after which AWS KMS deletes the CMK. This value is present only when KeyState is PendingDeletion.

validTo

public Instant validTo()

The time at which the imported key material expires. When the key material expires, AWS KMS deletes the key material and the CMK becomes unusable. This value is present only for CMKs whose Origin is EXTERNAL and whose ExpirationModel is KEY_MATERIAL_EXPIRES, otherwise this value is omitted.

Returns:

The time at which the imported key material expires. When the key material expires, AWS KMS deletes the key material and the CMK becomes unusable. This value is present only for CMKs whose Origin is EXTERNAL and whose ExpirationModel is KEY_MATERIAL_EXPIRES, otherwise this value is omitted.

origin

public OriginType origin()

The source of the CMK's key material. When this value is AWS_KMS, AWS KMS created the key material. When this value is EXTERNAL, the key material was imported from your existing key management infrastructure or the CMK lacks key material. When this value is AWS_CLOUDHSM, the key material was created in the AWS CloudHSM cluster associated with a custom key store.

If the service returns an enum value that is not available in the current SDK version, origin will return OriginType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from originAsString().

Returns:

The source of the CMK's key material. When this value is AWS_KMS, AWS KMS created the key material. When this value is EXTERNAL, the key material was imported from your existing key management infrastructure or the CMK lacks key material. When this value is AWS_CLOUDHSM, the key material was created in the AWS CloudHSM cluster associated with a custom key store.

See Also:

OriginType

originAsString

public String originAsString()

The source of the CMK's key material. When this value is AWS_KMS, AWS KMS created the key material. When this value is EXTERNAL, the key material was imported from your existing key management infrastructure or the CMK lacks key material. When this value is AWS_CLOUDHSM, the key material was created in the AWS CloudHSM cluster associated with a custom key store.

If the service returns an enum value that is not available in the current SDK version, origin will return OriginType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from originAsString().

Returns:

The source of the CMK's key material. When this value is AWS_KMS, AWS KMS created the key material. When this value is EXTERNAL, the key material was imported from your existing key management infrastructure or the CMK lacks key material. When this value is AWS_CLOUDHSM, the key material was created in the AWS CloudHSM cluster associated with a custom key store.

See Also:

OriginType

customKeyStoreId

public String customKeyStoreId()

A unique identifier for the custom key store that contains the CMK. This value is present only when the CMK is created in a custom key store.

Returns:

A unique identifier for the custom key store that contains the CMK. This value is present only when the CMK is created in a custom key store.

cloudHsmClusterId

public String cloudHsmClusterId()

The cluster ID of the AWS CloudHSM cluster that contains the key material for the CMK. When you create a CMK in a custom key store, AWS KMS creates the key material for the CMK in the associated AWS CloudHSM cluster. This value is present only when the CMK is created in a custom key store.

Returns:

The cluster ID of the AWS CloudHSM cluster that contains the key material for the CMK. When you create a CMK in a custom key store, AWS KMS creates the key material for the CMK in the associated AWS CloudHSM cluster. This value is present only when the CMK is created in a custom key store.

expirationModel

public ExpirationModelType expirationModel()

Specifies whether the CMK's key material expires. This value is present only when Origin is EXTERNAL, otherwise this value is omitted.

If the service returns an enum value that is not available in the current SDK version, expirationModel will return ExpirationModelType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from expirationModelAsString().

Returns:

Specifies whether the CMK's key material expires. This value is present only when Origin is EXTERNAL, otherwise this value is omitted.

See Also:

ExpirationModelType

expirationModelAsString

public String expirationModelAsString()

Specifies whether the CMK's key material expires. This value is present only when Origin is EXTERNAL, otherwise this value is omitted.

If the service returns an enum value that is not available in the current SDK version, expirationModel will return ExpirationModelType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from expirationModelAsString().

Returns:

Specifies whether the CMK's key material expires. This value is present only when Origin is EXTERNAL, otherwise this value is omitted.

See Also:

ExpirationModelType

keyManager

public KeyManagerType keyManager()

The CMK's manager. CMKs are either customer-managed or AWS-managed. For more information about the difference, see Customer Master Keys in the AWS Key Management Service Developer Guide.

If the service returns an enum value that is not available in the current SDK version, keyManager will return KeyManagerType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from keyManagerAsString().

Returns:

The CMK's manager. CMKs are either customer-managed or AWS-managed. For more information about the difference, see Customer Master Keys in the AWS Key Management Service Developer Guide.

See Also:

KeyManagerType

keyManagerAsString

public String keyManagerAsString()

The CMK's manager. CMKs are either customer-managed or AWS-managed. For more information about the difference, see Customer Master Keys in the AWS Key Management Service Developer Guide.

If the service returns an enum value that is not available in the current SDK version, keyManager will return KeyManagerType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from keyManagerAsString().

Returns:

The CMK's manager. CMKs are either customer-managed or AWS-managed. For more information about the difference, see Customer Master Keys in the AWS Key Management Service Developer Guide.

See Also:

KeyManagerType

toBuilder

public KeyMetadata.Builder toBuilder()

Description copied from interface: ToCopyableBuilder

Take this object and create a builder that contains all of the current property values of this object.

Specified by:

toBuilder in interface ToCopyableBuilder<KeyMetadata.Builder,KeyMetadata>

Returns:

a builder for type T

builder

public static KeyMetadata.Builder builder()

serializableBuilderClass

public static Class<? extends KeyMetadata.Builder> serializableBuilderClass()

hashCode

public int hashCode()

Overrides:

hashCode in class Object

equals

public boolean equals(Object obj)

Overrides:

equals in class Object

toString

public String toString()

Overrides:

toString in class Object

getValueForField

public <T> Optional<T> getValueForField(String fieldName,
                                        Class<T> clazz)

sdkFields

public List<SdkField<?>> sdkFields()

Specified by:

sdkFields in interface SdkPojo

Returns:

List of SdkField in this POJO. May be empty list but should never be null.