Uploading Salesforce Tenant Secrets
Use the post /v1/cckm/sfdc/keys/upload
API to upload a Salesforce tenant secret from the source key. This is only for BYOK type tenant secrets. Cache-only keys have a separate API for upload.
Syntax
Request Parameters
Parameter | Type | Description |
---|---|---|
AUTHTOKEN | string | Authorization token. |
certificate_id | string | ID of the certificate whose public key will be used to encrypt the tenant secret. Use the get /v1/cckm/sfdc/certificates API to view the available certificates and their IDs. |
key_derivation_mode | string | Key derivation mode for the key. The options are: • PBKDF2 • NONE |
organization_id | string | ID of the Salesforce organization where the tenant secret will be created. |
source_key_identifier | string | ID of the source key that will be uploaded to the Salesforce cloud. |
source_key_tier | string | Tier of the source key - local (CipherTrust Manager). The default tier is local . |
type | string | Type of the Salesforce tenant secret. The type can be: • Data • EventBus • SearchIndex • DeterministicData • Analytics |
Example Request
Example Response
The sample output shows that automatic rotation of the specified Salesforce tenant secret is enabled.
Response Codes
Response Code | Description |
---|---|
2xx | Success |
4xx | Client errors |
5xx | Server errors |
Refer to HTTP status codes for details.