ReencryptObjectDetails

class oci.object_storage.models.ReencryptObjectDetails(**kwargs)

Bases: object

The details used to re-encrypt the data encryption keys associated with an object. You can only specify either a kmsKeyId or an sseCustomerKey in the request payload, not both. If the request payload is empty, the object is encrypted using the encryption key assigned to the bucket. The bucket encryption mechanism can either be a master encryption key managed by Oracle or the Vault service.

  • The sseCustomerKey field specifies the customer-provided encryption key (SSE-C) that will be used to re-encrypt the data encryption keys of the

Methods

__init__(**kwargs) Initializes a new ReencryptObjectDetails object with values from keyword arguments.

Attributes

kms_key_id Gets the kms_key_id of this ReencryptObjectDetails.
source_sse_customer_key Gets the source_sse_customer_key of this ReencryptObjectDetails.
sse_customer_key Gets the sse_customer_key of this ReencryptObjectDetails.

object and its chunks.

  • The sourceSSECustomerKey field specifies information about the customer-provided encryption key that is currently

associated with the object source. Specify a value for the sourceSSECustomerKey only if the object is encrypted with a customer-provided encryption key.

__init__(**kwargs)

Initializes a new ReencryptObjectDetails object with values from keyword arguments. The following keyword arguments are supported (corresponding to the getters/setters of this class):

Parameters:
  • kms_key_id (str) – The value to assign to the kms_key_id property of this ReencryptObjectDetails.
  • sse_customer_key (SSECustomerKeyDetails) – The value to assign to the sse_customer_key property of this ReencryptObjectDetails.
  • source_sse_customer_key (SSECustomerKeyDetails) – The value to assign to the source_sse_customer_key property of this ReencryptObjectDetails.
kms_key_id

Gets the kms_key_id of this ReencryptObjectDetails. The OCID of the master encryption key used to call the Vault service to re-encrypt the data encryption keys associated with the object and its chunks. If the kmsKeyId value is empty, whether null or an empty string, the API will perform re-encryption by using the kmsKeyId associated with the bucket or the master encryption key managed by Oracle, depending on the bucket encryption mechanism.

Returns:The kms_key_id of this ReencryptObjectDetails.
Return type:str
source_sse_customer_key

Gets the source_sse_customer_key of this ReencryptObjectDetails.

Returns:The source_sse_customer_key of this ReencryptObjectDetails.
Return type:SSECustomerKeyDetails
sse_customer_key

Gets the sse_customer_key of this ReencryptObjectDetails.

Returns:The sse_customer_key of this ReencryptObjectDetails.
Return type:SSECustomerKeyDetails