Decrypting Data Encryption Keys (unwrap)
The POST /v1/cckm/GoogleWorkspaceCSE/endpoints/{id}/unwrap
API is called to unwrap the wrapped key.
Request Parameters
Parameter | Type | Description |
---|---|---|
id | string | ID of the endpoint. To find out the ID of an endpoint, refer to Viewing KACLS Endpoints. |
wrapped_key | string | The base64 binary object returned by the unwrap call. |
authorization | string | A JWT asserting that the user is allowed to unwrap DEK. |
authentication | string | A JWT issued by a third-party asserting who the user is. |
reason | string | Additional information about the operation. |
Example Request
Example Response
In the sample response above, "0saNxttLMQULfXuTbRFJzi/QJokN1jW16u0yaNvvLdQ=" represents the key whose DEK you need to find out.
Response Codes
Response Code | Description |
---|---|
2xx | Success |
4xx | Client errors |
Refer to HTTP status codes for details.