Docs Home
Oracle Cloud Infrastructure v2.31.0 published on Thursday, Apr 17, 2025 by Pulumi
oci.Kms.getKeyVersion
Explore with Pulumi AI
This data source provides details about a specific Key Version resource in Oracle Cloud Infrastructure Kms service.
Gets information about the specified key version.
As a management operation, this call is subject to a Key Management limit that applies to the total number of requests across all management read operations. Key Management might throttle this call to reject an otherwise valid request when the total rate of management read operations exceeds 10 requests per second for a given tenancy.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testKeyVersion = oci.Kms.getKeyVersion({
keyId: testKey.id,
keyVersionId: testKeyVersionOciKmsKeyVersion.id,
managementEndpoint: keyVersionManagementEndpoint,
});
import pulumi
import pulumi_oci as oci
test_key_version = oci.Kms.get_key_version(key_id=test_key["id"],
key_version_id=test_key_version_oci_kms_key_version["id"],
management_endpoint=key_version_management_endpoint)
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/kms"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := kms.GetKeyVersion(ctx, &kms.GetKeyVersionArgs{
KeyId: testKey.Id,
KeyVersionId: testKeyVersionOciKmsKeyVersion.Id,
ManagementEndpoint: keyVersionManagementEndpoint,
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testKeyVersion = Oci.Kms.GetKeyVersion.Invoke(new()
{
KeyId = testKey.Id,
KeyVersionId = testKeyVersionOciKmsKeyVersion.Id,
ManagementEndpoint = keyVersionManagementEndpoint,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Kms.KmsFunctions;
import com.pulumi.oci.Kms.inputs.GetKeyVersionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var testKeyVersion = KmsFunctions.getKeyVersion(GetKeyVersionArgs.builder()
.keyId(testKey.id())
.keyVersionId(testKeyVersionOciKmsKeyVersion.id())
.managementEndpoint(keyVersionManagementEndpoint)
.build());
}
}
variables:
testKeyVersion:
fn::invoke:
function: oci:Kms:getKeyVersion
arguments:
keyId: ${testKey.id}
keyVersionId: ${testKeyVersionOciKmsKeyVersion.id}
managementEndpoint: ${keyVersionManagementEndpoint}
Using getKeyVersion
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getKeyVersion(args: GetKeyVersionArgs, opts?: InvokeOptions): Promise<GetKeyVersionResult>
function getKeyVersionOutput(args: GetKeyVersionOutputArgs, opts?: InvokeOptions): Output<GetKeyVersionResult>def get_key_version(key_id: Optional[str] = None,
key_version_id: Optional[str] = None,
management_endpoint: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetKeyVersionResult
def get_key_version_output(key_id: Optional[pulumi.Input[str]] = None,
key_version_id: Optional[pulumi.Input[str]] = None,
management_endpoint: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetKeyVersionResult]func GetKeyVersion(ctx *Context, args *GetKeyVersionArgs, opts ...InvokeOption) (*GetKeyVersionResult, error)
func GetKeyVersionOutput(ctx *Context, args *GetKeyVersionOutputArgs, opts ...InvokeOption) GetKeyVersionResultOutput> Note: This function is named GetKeyVersion in the Go SDK.
public static class GetKeyVersion
{
public static Task<GetKeyVersionResult> InvokeAsync(GetKeyVersionArgs args, InvokeOptions? opts = null)
public static Output<GetKeyVersionResult> Invoke(GetKeyVersionInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetKeyVersionResult> getKeyVersion(GetKeyVersionArgs args, InvokeOptions options)
public static Output<GetKeyVersionResult> getKeyVersion(GetKeyVersionArgs args, InvokeOptions options)
fn::invoke:
function: oci:Kms/getKeyVersion:getKeyVersion
arguments:
# arguments dictionaryThe following arguments are supported:
- Key
Id string - The OCID of the key.
- Key
Version stringId - The OCID of the key version.
- Management
Endpoint string - The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- Key
Id string - The OCID of the key.
- Key
Version stringId - The OCID of the key version.
- Management
Endpoint string - The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- key
Id String - The OCID of the key.
- key
Version StringId - The OCID of the key version.
- management
Endpoint String - The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- key
Id string - The OCID of the key.
- key
Version stringId - The OCID of the key version.
- management
Endpoint string - The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- key_
id str - The OCID of the key.
- key_
version_ strid - The OCID of the key version.
- management_
endpoint str - The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
- key
Id String - The OCID of the key.
- key
Version StringId - The OCID of the key version.
- management
Endpoint String - The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
getKeyVersion Result
The following output properties are available:
- Compartment
Id string - The OCID of the compartment that contains this key version.
- External
Key List<GetReference Details Key Version External Key Reference Detail> - Key reference data to be returned to the customer as a response.
- External
Key stringVersion Id - Key version ID associated with the external key.
- Id string
- The OCID of the key version.
- Is
Auto boolRotated - An optional property indicating whether this keyversion is generated from auto rotatation.
- Is
Primary bool - A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
- Key
Id string - The OCID of the master encryption key associated with this key version.
- Key
Version stringId - The OCID of the key version.
- Management
Endpoint string - Public
Key string - The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
- Replica
Details List<GetKey Version Replica Detail> - KeyVersion replica details
- Restored
From stringKey Id - Restored
From stringKey Version Id - The OCID of the key version from which this key version was restored.
- State string
- The key version's current lifecycle state. Example:
ENABLED - Time
Created string - The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
- Time
Of stringDeletion - An optional property to indicate when to delete the key version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z - Vault
Id string - The OCID of the vault that contains this key version.
- Compartment
Id string - The OCID of the compartment that contains this key version.
- External
Key []GetReference Details Key Version External Key Reference Detail - Key reference data to be returned to the customer as a response.
- External
Key stringVersion Id - Key version ID associated with the external key.
- Id string
- The OCID of the key version.
- Is
Auto boolRotated - An optional property indicating whether this keyversion is generated from auto rotatation.
- Is
Primary bool - A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
- Key
Id string - The OCID of the master encryption key associated with this key version.
- Key
Version stringId - The OCID of the key version.
- Management
Endpoint string - Public
Key string - The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
- Replica
Details []GetKey Version Replica Detail - KeyVersion replica details
- Restored
From stringKey Id - Restored
From stringKey Version Id - The OCID of the key version from which this key version was restored.
- State string
- The key version's current lifecycle state. Example:
ENABLED - Time
Created string - The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
- Time
Of stringDeletion - An optional property to indicate when to delete the key version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z - Vault
Id string - The OCID of the vault that contains this key version.
- compartment
Id String - The OCID of the compartment that contains this key version.
- external
Key List<GetReference Details Key Version External Key Reference Detail> - Key reference data to be returned to the customer as a response.
- external
Key StringVersion Id - Key version ID associated with the external key.
- id String
- The OCID of the key version.
- is
Auto BooleanRotated - An optional property indicating whether this keyversion is generated from auto rotatation.
- is
Primary Boolean - A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
- key
Id String - The OCID of the master encryption key associated with this key version.
- key
Version StringId - The OCID of the key version.
- management
Endpoint String - public
Key String - The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
- replica
Details List<GetKey Version Replica Detail> - KeyVersion replica details
- restored
From StringKey Id - restored
From StringKey Version Id - The OCID of the key version from which this key version was restored.
- state String
- The key version's current lifecycle state. Example:
ENABLED - time
Created String - The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
- time
Of StringDeletion - An optional property to indicate when to delete the key version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z - vault
Id String - The OCID of the vault that contains this key version.
- compartment
Id string - The OCID of the compartment that contains this key version.
- external
Key GetReference Details Key Version External Key Reference Detail[] - Key reference data to be returned to the customer as a response.
- external
Key stringVersion Id - Key version ID associated with the external key.
- id string
- The OCID of the key version.
- is
Auto booleanRotated - An optional property indicating whether this keyversion is generated from auto rotatation.
- is
Primary boolean - A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
- key
Id string - The OCID of the master encryption key associated with this key version.
- key
Version stringId - The OCID of the key version.
- management
Endpoint string - public
Key string - The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
- replica
Details GetKey Version Replica Detail[] - KeyVersion replica details
- restored
From stringKey Id - restored
From stringKey Version Id - The OCID of the key version from which this key version was restored.
- state string
- The key version's current lifecycle state. Example:
ENABLED - time
Created string - The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
- time
Of stringDeletion - An optional property to indicate when to delete the key version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z - vault
Id string - The OCID of the vault that contains this key version.
- compartment_
id str - The OCID of the compartment that contains this key version.
- external_
key_ Sequence[kms.reference_ details Get Key Version External Key Reference Detail] - Key reference data to be returned to the customer as a response.
- external_
key_ strversion_ id - Key version ID associated with the external key.
- id str
- The OCID of the key version.
- is_
auto_ boolrotated - An optional property indicating whether this keyversion is generated from auto rotatation.
- is_
primary bool - A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
- key_
id str - The OCID of the master encryption key associated with this key version.
- key_
version_ strid - The OCID of the key version.
- management_
endpoint str - public_
key str - The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
- replica_
details Sequence[kms.Get Key Version Replica Detail] - KeyVersion replica details
- restored_
from_ strkey_ id - restored_
from_ strkey_ version_ id - The OCID of the key version from which this key version was restored.
- state str
- The key version's current lifecycle state. Example:
ENABLED - time_
created str - The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
- time_
of_ strdeletion - An optional property to indicate when to delete the key version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z - vault_
id str - The OCID of the vault that contains this key version.
- compartment
Id String - The OCID of the compartment that contains this key version.
- external
Key List<Property Map>Reference Details - Key reference data to be returned to the customer as a response.
- external
Key StringVersion Id - Key version ID associated with the external key.
- id String
- The OCID of the key version.
- is
Auto BooleanRotated - An optional property indicating whether this keyversion is generated from auto rotatation.
- is
Primary Boolean - A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
- key
Id String - The OCID of the master encryption key associated with this key version.
- key
Version StringId - The OCID of the key version.
- management
Endpoint String - public
Key String - The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
- replica
Details List<Property Map> - KeyVersion replica details
- restored
From StringKey Id - restored
From StringKey Version Id - The OCID of the key version from which this key version was restored.
- state String
- The key version's current lifecycle state. Example:
ENABLED - time
Created String - The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
- time
Of StringDeletion - An optional property to indicate when to delete the key version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z - vault
Id String - The OCID of the vault that contains this key version.
Supporting Types
GetKeyVersionExternalKeyReferenceDetail
- External
Key stringId - ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- External
Key stringVersion Id - Key version ID associated with the external key.
- External
Key stringId - ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- External
Key stringVersion Id - Key version ID associated with the external key.
- external
Key StringId - ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- external
Key StringVersion Id - Key version ID associated with the external key.
- external
Key stringId - ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- external
Key stringVersion Id - Key version ID associated with the external key.
- external_
key_ strid - ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- external_
key_ strversion_ id - Key version ID associated with the external key.
- external
Key StringId - ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
- external
Key StringVersion Id - Key version ID associated with the external key.
GetKeyVersionReplicaDetail
- Replication
Id string - ReplicationId associated with a key version operation
- Replication
Id string - ReplicationId associated with a key version operation
- replication
Id String - ReplicationId associated with a key version operation
- replication
Id string - ReplicationId associated with a key version operation
- replication_
id str - ReplicationId associated with a key version operation
- replication
Id String - ReplicationId associated with a key version operation
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
ociTerraform Provider.