Key Management Service
The KMS is responsible for storing and using private keys to sign things. An implementation of this may, for example, call out to a hardware security module that enforces various auditing and frequency-of-use requirements.
Properties
Functions
Filter some keys down to the set that this node owns (has private keys for).
Generates a new random KeyPair, adds it to the internal key storage, then generates a corresponding X509Certificate and adds it to the identity service. Associates the public key to an external ID. Returns the public part of the pair.
Generates a new random KeyPair, adds it to the internal key storage, then generates a corresponding X509Certificate and adds it to the identity service.
Using the provided signing PublicKey internally looks up the matching PrivateKey and signs the data.
Using the provided signing PublicKey internally looks up the matching PrivateKey and signs the SignableData.