Crypto (Section)#
Path: /facilities/crypto
All crypto services are described below this sectionthis is a restricted section, all nodes will not see all things here
Subsections#
| Name | Type | Description |
|---|---|---|
| hardware-security-module | Section | The Hardware Security Module (HSM) that may be used in the system |
| ssl | Section | A list of available server keys to be used by ‘services’, it’s only use TLS |
| signing-keys | Section | Keys used for signing tokens issued by this system |
| signature-verification-keys | Section | Keys used for verifying tokens issued by other systems |
| signer-truststores | Section | Trust roots used for signature verification for a specific purpose (e.g. verify signature of SAML token by an upstream authentication provider. |
| encryption-keys | Section | Keys used for encryption |
| decryption-keys | Section | Keys used for decryption |
| credentials | Section | A list of available credentials to be used by ‘services’ |
| certificate-alarms | Section | Settings related to alarms for certificate expirations |