Uploading a Salesforce Cache-Only Key
Use POST /v1/cckm/sfdc/upload-cache-only-key
to upload a Salesforce cache-only key.
Note
When using Luna HSM as a key source for cache-only keys, CCKM, Luna HSM, and Salesforce must be geographically closest to minimize the network latency. Salesforce expects a response in less than three seconds, otherwise, testing callout connection from Salesforce fails and cannot fetch the key.
Syntax
Request Parameters
Parameter | Type | Description |
---|---|---|
AUTHTOKEN | string | Authorization token. |
organization_id | string | ID of the Salesforce organization where the tenant secret will be created. |
type | string | Type of the Salesforce tenant secret. The type can be: • Data • EventBus • SearchIndex • DeterministicData • Analytics |
source_key_tier | string | Tier of the source key. The options are local , dsm , and hsm-luna (FM-enabled Luna HSM is not supported as a key source). The default tier is local . |
source_key_identifier | string | ID of the source key that will be uploaded to the Salesforce cloud. |
certificate_id | string | Certificate id whose public key to be used to encrypt tenant secret. Ensure that certificate is 4096-bit key size RSA certificate with Platform Encryption enabled, and without Exportable Private Key option. |
sfdc_named_credential_id | string | Indicates the Salesforce named credential ID to authenticate cache-only key fetch requests. |
Example Request
Example Response
Response Codes
Response Code | Description |
---|---|
2xx | Success |
4xx | Client errors |
5xx | Server errors |
Refer to HTTP status codes for details.