1
0
Fork 0
mirror of https://github.com/imjasonh/gcloud-help synced 2026-07-08 10:35:03 +00:00
gcloud-help/gcloud/kms/mac-sign
2022-03-01 21:43:54 +00:00

66 lines
2.1 KiB
Text

NAME
gcloud kms mac-sign - sign a user input file using a MAC key version
SYNOPSIS
gcloud kms mac-sign --input-file=INPUT_FILE --signature-file=SIGNATURE_FILE
[--key=KEY] [--keyring=KEYRING] [--location=LOCATION]
[--skip-integrity-verification] [--version=VERSION]
[GCLOUD_WIDE_FLAG ...]
DESCRIPTION
Creates a digital signature of the input file using the provided MAC
signing key version and saves the base64 encoded signature.
The required flag signature-file indicates the path to store signature.
By default, the command performs integrity verification on data sent to and
received from Cloud KMS. Use --skip-integrity-verification to disable
integrity verification.
EXAMPLES
The following command will read the file '/tmp/my/file.to.sign', and sign
it using the symmetric MAC CryptoKey dont-panic Version 3, and save the
signature in base64 format to '/tmp/my/signature'.
$ gcloud kms mac-sign --location=us-central1 --keyring=hitchhiker \
--key=dont-panic --version=3 --input-file=/tmp/my/file.to.sign \
--signature-file=/tmp/my/signature
REQUIRED FLAGS
--input-file=INPUT_FILE
Path to the input file to sign.
--signature-file=SIGNATURE_FILE
Path to the signature file to output.
OPTIONAL FLAGS
--key=KEY
to use for signing.
--keyring=KEYRING
Key ring of the key.
--location=LOCATION
Location of the keyring.
--skip-integrity-verification
Skip integrity verification on request and response API fields.
--version=VERSION
Version to use for signing.
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account,
--billing-project, --configuration, --flags-file, --flatten, --format,
--help, --impersonate-service-account, --log-http, --project, --quiet,
--trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
NOTES
These variants are also available:
$ gcloud alpha kms mac-sign
$ gcloud beta kms mac-sign