Default key wrap algorithm for archive_encrypted_data()

[pki-bot]

This issue was migrated from Pagure Issue #1156. Originally filed by edewata (@edewata) on 2014-09-11 20:22:24:

• Closed as Fixed
• Assigned to edewata (@edewata)

---

Currently the archive_encrypted_data() method in KeyClient requires the caller to specify the key wrapping algorithm:

nonce_iv = generate_nonce_iv()
algorithm_oid = KeyClient.DES_EDE3_CBC_OID
symkey_params = base64.encodestring(nonce_iv)

key_id = key_client.archive_encrypted_data(
    client_key_id,
    data_type,
    wrapped_private_data,
    wrapped_session_key,
    algorithm_oid,
    symkey_params,
    key_algorithm,
    key_size)

To simplify the API, there should be a default algorithm (e.g. KeyClient.DES_EDE3_CBC_OID) so the caller doesn't have to figure out which algorithm to use unless necessary.

[pki-bot]

Comment from mharmsen (@mharmsen) at 2014-09-24 20:55:51

Per Dogtag 10.2.3 Triage meeting of 09/24/2014 - proposed Milestone: 10.2.1

NOTE: edewata and vakwetu to discuss

[pki-bot]

Comment from edewata (@edewata) at 2014-11-25 21:39:55

master: cfeb77b

[pki-bot]

Comment from edewata (@edewata) at 2017-02-27 14:01:56

Metadata Update from @edewata:

• Issue assigned to edewata
• Issue set to the milestone: 10.2.1