jfraeysd/fetch_ml
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
fetch_ml/internal/crypto
History
Jeremie Fraeys e1ec255ad2
refactor(crypto): integrate KMS with TenantKeyManager 
Replace in-memory root keys with KMS interface:
- GenerateDataEncryptionKey: generate DEK, wrap via KMS, cache
- UnwrapDataEncryptionKey: cache check, KMS decrypt, cache store
- EncryptArtifact/DecryptArtifact: use DEK from KMS
- RotateTenantKey: create new KMS key, flush cache
- RevokeTenant: disable KMS key, schedule deletion per ADR-015

Remove deprecated methods: wrapKey, unwrapKey (replaced by KMS)
2026-03-03 19:14:27 -05:00
..
kms feat(kms): add HashiCorp Vault and AWS KMS providers 2026-03-03 19:14:21 -05:00
signing.go refactor(utilities): update supporting modules for scheduler integration 2026-02-26 12:07:15 -05:00
tenant_keys.go refactor(crypto): integrate KMS with TenantKeyManager 2026-03-03 19:14:27 -05:00