Get GCP encryption keys

Contributors netapp-ranuk

This workflow retrieves the GCP encryption keys for a specific region.

Choose the workflow to use based on the type of Cloud Volumes ONTAP deployment:

Get GCP encryption keys for single node

You can use this workflow to retrieve GCP encryption keys for a single node working environment.

1. Select the region

Perform the workflow Get regions and choose the name value of the required region for the region path parameter.

2. Select the project

Perform the Get projects workflow and choose the projectId value of the required project for the project path parameter.

3. Get the encryption keys

HTTP method Path

GET

/occm/api/gcp/vsa/metadata/gcp-encryption-keys

curl example
curl --location --request GET 'https://cloudmanager.cloud.netapp.com/occm/api/gcp/vsa/metadata/gcp-encryption-keys?region=<REGION>&project=<PROJECT>' --header 'Content-Type: application/json' --header 'x-agent-id: <AGENT_ID>' --header 'Authorization: Bearer <ACCESS_TOKEN>'
Input

Required query parameters:

  • <REGION> region: string

  • <PROJECT> project: string

Output

The JSON output provides an example of a list of GCP encryption keys for a specific region.

JSON output example
[
    {
        "name": "key1",
        "id": "projects/occm-dev/locations/global/keyRings/test/cryptoKeys/key1",
        "keyRing": "test",
        "location": "global"
    },
    {
        "name": "key2",
        "id": "projects/occm-dev/locations/global/keyRings/test/cryptoKeys/key2",
        "keyRing": "test",
        "location": "global"
    }
]

Get GCP encryption keys for high availability pair

You can use this workflow to retrieve GCP encryption keys for an HA working environment.

1. Select the region

Perform the workflow Get regions and choose the name value of the required region for the region path parameter.

2. Select the project

Perform the Get projects workflow and choose the projectId value of the required project for the project path parameter.

3. Get the encryption keys

HTTP method Path

GET

/occm/api/gcp/ha/metadata/gcp-encryption-keys

curl example
curl --location --request GET 'https://cloudmanager.cloud.netapp.com/occm/api/gcp/ha/metadata/gcp-encryption-keys?region=<REGION>&project=<PROJECT>' --header 'Content-Type: application/json' --header 'x-agent-id: <AGENT_ID>' --header 'Authorization: Bearer <ACCESS_TOKEN>'
Input

Required query parameters:

  • <REGION> region: string

  • <PROJECT> project: string

Output

The JSON output provides an example of a list of GCP encryption keys for a specific region.

JSON output example
[
    {
        "name": "key1",
        "id": "projects/occm-dev/locations/global/keyRings/test/cryptoKeys/key1",
        "keyRing": "test",
        "location": "global"
    },
    {
        "name": "key2",
        "id": "projects/occm-dev/locations/global/keyRings/test/cryptoKeys/key2",
        "keyRing": "test",
        "location": "global"
    }
]