KeysetManager

java.lang.Object
- com.google.crypto.tink.KeysetManager

```
public final class KeysetManager
extends Object
```
Manages a Keyset proto, with convenience methods that rotate, disable, enable or destroy keys.
We do not recommend usage of this class. Instead, we recommend you to use a Keyset.Builder which has an improved API (in that it e.g. returns the just added objects, allowing you to manipulate them further).

Since:

1.0.0

Method Summary

All Methods Static Methods Instance Methods Concrete Methods Deprecated Methods
Modifier and Type	Method and Description
`KeysetManager`	`add(KeyHandle keyHandle)` Deprecated. We recommend to use the `KeysetHandle.Builder` API.
`KeysetManager`	`add(KeyHandle keyHandle, KeyAccess access)` Deprecated. We recommend to use the `KeysetHandle.Builder` API.
`KeysetManager`	`add(KeyTemplate keyTemplate)` Generates and adds a fresh key generated using `keyTemplate`.
`KeysetManager`	`add(KeyTemplate keyTemplate)` Generates and adds a fresh key generated using `keyTemplate`.
`int`	`addNewKey(KeyTemplate keyTemplate, boolean asPrimary)` Generates a fresh key using `keyTemplate` and returns the `keyId` of it.
`KeysetManager`	`delete(int keyId)` Deletes the key with `keyId`.
`KeysetManager`	`destroy(int keyId)` Destroys the key material associated with the `keyId`.
`KeysetManager`	`disable(int keyId)` Disables the key with `keyId`.
`KeysetManager`	`enable(int keyId)` Enables the key with `keyId`.
`KeysetHandle`	`getKeysetHandle()`
`KeysetManager`	`promote(int keyId)` Sets the key with `keyId` as primary.
`KeysetManager`	`rotate(KeyTemplate keyTemplate)` Generates and adds a fresh key generated using `keyTemplate`, and sets the new key as the primary key.
`KeysetManager`	`setPrimary(int keyId)` Sets the key with `keyId` as primary.
`static KeysetManager`	`withEmptyKeyset()`
`static KeysetManager`	`withKeysetHandle(KeysetHandle val)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

withKeysetHandle

public static KeysetManager withKeysetHandle(KeysetHandle val)

Returns:: a KeysetManager for the keyset manged by val

withEmptyKeyset
```
public static KeysetManager withEmptyKeyset()
```
Returns:

a KeysetManager for an empty keyset.

getKeysetHandle

public KeysetHandle getKeysetHandle()
                             throws GeneralSecurityException

Returns:: a KeysetHandle of the managed keyset
Throws:: GeneralSecurityException

rotate
```
@CanIgnoreReturnValue
public KeysetManager rotate(KeyTemplate keyTemplate)
                                           throws GeneralSecurityException
```
Generates and adds a fresh key generated using keyTemplate, and sets the new key as the primary key.

Throws:

GeneralSecurityException - if cannot find any KeyManager that can handle keyTemplate

add

@CanIgnoreReturnValue
public KeysetManager add(KeyTemplate keyTemplate)
                                        throws GeneralSecurityException

Generates and adds a fresh key generated using keyTemplate.

Throws:: GeneralSecurityException - if cannot find any KeyManager that can handle keyTemplate

add

@CanIgnoreReturnValue
public KeysetManager add(KeyTemplate keyTemplate)
                                        throws GeneralSecurityException

Generates and adds a fresh key generated using keyTemplate.

Throws:: GeneralSecurityException - if cannot find any KeyManager that can handle keyTemplate

add
```
@CanIgnoreReturnValue
 @Deprecated
public KeysetManager add(KeyHandle keyHandle)
                                                     throws GeneralSecurityException
```
Deprecated. We recommend to use the KeysetHandle.Builder API.

Adds the input KeyHandle to the existing keyset. The KeyStatusType and key ID of the KeyHandle are used as-is in the keyset.

Throws:

UnsupportedOperationException - if the KeyHandle contains a TinkKey which is not a ProtoKey.

GeneralSecurityException - if the KeyHandle's key ID collides with another key ID in the keyset.

add
```
@CanIgnoreReturnValue
 @Deprecated
public KeysetManager add(KeyHandle keyHandle,
                                                            KeyAccess access)
                                                     throws GeneralSecurityException
```
Deprecated. We recommend to use the KeysetHandle.Builder API.

Adds the input KeyHandle to the existing keyset with OutputPrefixType.TINK.

Throws:

GeneralSecurityException - if the given KeyAccess does not grant access to the key contained in the KeyHandle.

UnsupportedOperationException - if the KeyHandle contains a TinkKey which is not a ProtoKey.

addNewKey

@CanIgnoreReturnValue
public int addNewKey(KeyTemplate keyTemplate,
                                           boolean asPrimary)
                                    throws GeneralSecurityException

Generates a fresh key using keyTemplate and returns the keyId of it. In case asPrimary is true the generated key will be the new primary.

Throws:: GeneralSecurityException

setPrimary

@CanIgnoreReturnValue
public KeysetManager setPrimary(int keyId)
                                               throws GeneralSecurityException

Sets the key with keyId as primary.

Throws:: GeneralSecurityException - if the key is not found or not enabled

promote

@InlineMe(replacement="this.setPrimary(keyId)")
 @CanIgnoreReturnValue
public KeysetManager promote(int keyId)
                                                                                             throws GeneralSecurityException

Sets the key with keyId as primary.

Throws:: GeneralSecurityException - if the key is not found or not enabled

enable

@CanIgnoreReturnValue
public KeysetManager enable(int keyId)
                                           throws GeneralSecurityException

Enables the key with keyId.

Throws:: GeneralSecurityException - if the key is not found

disable

@CanIgnoreReturnValue
public KeysetManager disable(int keyId)
                                            throws GeneralSecurityException

Disables the key with keyId.

Throws:: GeneralSecurityException - if the key is not found or it is the primary key

delete

@CanIgnoreReturnValue
public KeysetManager delete(int keyId)
                                           throws GeneralSecurityException

Deletes the key with keyId.

Throws:: GeneralSecurityException - if the key is not found or it is the primary key

destroy

@CanIgnoreReturnValue
public KeysetManager destroy(int keyId)
                                            throws GeneralSecurityException

Destroys the key material associated with the keyId.

Throws:: GeneralSecurityException - if the key is not found or it is the primary key

Class KeysetManager