Inputs relating to all API routes

These inputs are meant to create customized rules to access the Stormshield KMaaS. Use them to filter the application of policies.

You can use these inputs in the custom policy.

Input	Description	Source of the input
endpoint	API routes called: "wrap", "unwrap", "privilegedwrap", "privilegedunwrap", "rewrap", "certs", "wrapprivatekey", "privilegedprivatekeydecrypt", "digest", "privatekeydecrypt", "privatekeysign", "crypto/encrypt", "crypto/decrypt", "kas/encrypt", "kas/decrypt", "kas/rewrap", "dke/:kid", and "dke/:kid/versionId/Decrypt".. For Admin routes, this property is replaced by operation.	URL of the request
tenantId	unique identifier of a tenant in UUID format. Example: 2363615f-5b08-4119-afdb-fad3f5f3f420.	URL of the request
module	The Stormshield KMaaS module associated to the API route. Possible values: "Kacls" "CryptoApi" "Kas" "dke"	URL of the request

Input

Description

Source of the input

endpoint

API routes called: "wrap", "unwrap", "privilegedwrap", "privilegedunwrap", "rewrap", "certs", "wrapprivatekey", "privilegedprivatekeydecrypt", "digest", "privatekeydecrypt", "privatekeysign", "crypto/encrypt", "crypto/decrypt", "kas/encrypt", "kas/decrypt", "kas/rewrap", "dke/:kid", and "dke/:kid/versionId/Decrypt"..

For Admin routes, this property is replaced by operation.

URL of the request

tenantId

unique identifier of a tenant in UUID format.

Example: 2363615f-5b08-4119-afdb-fad3f5f3f420.

URL of the request

module

The Stormshield KMaaS module associated to the API route. Possible values:

"Kacls"
"CryptoApi"
"Kas"
"dke"

URL of the request