Skip to main content
POST
/
encryption-keys
Create a new encryption key
curl --request POST \
  --url https://api.eu.bronto.io/encryption-keys \
  --header 'Content-Type: application/json' \
  --header 'X-BRONTO-API-KEY: <api-key>' \
  --data '
{
  "name": "<string>",
  "provider": "AWS_KMS",
  "aws_kms": {
    "alias_arn": "<string>",
    "region": "<string>"
  }
}
'
{
  "org_id": "<string>",
  "id": "<string>",
  "name": "<string>",
  "provider": "AWS_KMS",
  "status": "KEY_STATUS_UNSPECIFIED",
  "aws_kms": {
    "alias_arn": "<string>",
    "region": "<string>"
  }
}

Authorizations

X-BRONTO-API-KEY
string
header
required

Body

application/json
name
string
required

User-friendly display name for the encryption key.

provider
enum<string>
required

Key provider (currently only AWS_KMS supported).

Available options:
AWS_KMS
aws_kms
object
required

AWS KMS key configuration.

Response

Encryption key created successfully

org_id
string
required

Organization ID

id
string
required

Key ID

name
string
required

User-facing name for this key

provider
enum<string>
required
Available options:
AWS_KMS
status
enum<string>
required
Available options:
KEY_STATUS_UNSPECIFIED,
CREATED,
ACTIVE,
DISABLED
aws_kms
object