Decrypting and Downloading Document (privilegedunwrap)
Use the POST /v1/cckm/GoogleWorkspaceCSE/endpoints/{id}/privilegedunwrap
API to unwrap the wrapped key. The decrypted document can now be downloaded.
Request Parameters
Parameter | Type | Description |
---|---|---|
id | string | ID of the endpoint. To find out the ID of an endpoint, refer to Viewing KACLS Endpoints. |
wrapped_key | string | The base64 binary object returned by the unwrap call. |
resource_name | string | Unique identifier for the object. It must match the resource_name that was used to wrap the key. |
authentication | string | A JWT issued by a third-party asserting who the user is. |
reason | string | Additional information about the operation. |
Example Request
In the sample request above, "wrapped_key"
represents the key whose DEK you want to find out.
Example Response
In the sample output, "0saNxttLMQULfXuTbRFJzi/QJokN1jW16u0yaNvvLdQ="
represents the encryption key.
Response Codes
Response Code | Description |
---|---|
2xx | Success |
4xx | Client errors |
Refer to HTTP status codes for details.