mirror of
https://github.com/edgelesssys/constellation.git
synced 2024-10-01 01:36:09 -04:00
90b88e1cf9
In the light of extending our eKMS support it will be helpful to have a tighter use of the word "KMS". KMS should refer to the actual component that manages keys. The keyservice, also called KMS in the constellation code, does not manage keys itself. It talks to a KMS backend, which in turn does the actual key management.
28 lines
817 B
Go
28 lines
817 B
Go
/*
|
|
Copyright (c) Edgeless Systems GmbH
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-only
|
|
*/
|
|
|
|
package config
|
|
|
|
const (
|
|
// SymmetricKeyLength is the length of symmetric encryption keys in bytes. We use AES256, therefore this is 32 Bytes.
|
|
SymmetricKeyLength = 32
|
|
)
|
|
|
|
var (
|
|
// KmsTags are the default tags for kms client created KMS solutions.
|
|
KmsTags = map[string]string{
|
|
"createdBy": "constellation-kms-client",
|
|
"component": "constellation-kek",
|
|
}
|
|
// StorageTags are the default tags for kms client created storage solutions.
|
|
StorageTags = map[string]string{
|
|
"createdBy": "constellation-kms-client",
|
|
"component": "constellation-dek-store",
|
|
}
|
|
// AWSS3Tag is the default tag string for kms client created AWS S3 storage solutions.
|
|
AWSS3Tag = "createdBy=constellation-kms-client&component=constellation-dek-store"
|
|
)
|