StaticDataSealer
Overview
Identified by type="Static", the simplest <DataSealer> variant is primarily for simple testing and embeds the secret key to use directly into the configuration, and does not support key history, making it impractical for most uses. You probably want the Versioned variant.
The static key is just a random string of octets, base64-encoded. The length dictates which AES-GCM algorithm is used, among the supported key sizes (128,192,256).
Reference
Attributes
Name | Type | Req? | Default | Description |
|---|---|---|---|---|
key | base64-encoded string | Y | The secret key to use | |
name | string | "static" | A custom label for the key, this gets embedded with the data for sanity checking purposes |
Child Elements
None