internal PSKeyRotationPolicy SetKeyRotationPolicy(PSKeyRotationPolicy psKeyRotationPolicy)
{
var client = CreateKeyClient(psKeyRotationPolicy.VaultName);
var policy = new KeyRotationPolicy()
{
ExpiresIn = psKeyRotationPolicy.ExpiresIn,
LifetimeActions = { }
};
psKeyRotationPolicy.LifetimeActions?.ForEach(
psKeyRotationLifetimeAction => policy.LifetimeActions.Add(
new KeyRotationLifetimeAction(new KeyRotationPolicyAction(psKeyRotationLifetimeAction.Action))
{
TimeAfterCreate = psKeyRotationLifetimeAction.TimeAfterCreate,
TimeBeforeExpiry = psKeyRotationLifetimeAction.TimeBeforeExpiry
}
));
return(SetKeyRotationPolicy(client, psKeyRotationPolicy.VaultName, psKeyRotationPolicy.KeyName, policy));
}
internal void NormalizeParameterSets()
{
if (null != InputObject)
{
Name = InputObject.Name;
if (InputObject.IsHsm)
{
throw new NotImplementedException("Updating key rotation policy on managed HSM is not supported yet");
}
else
{
VaultName = InputObject.VaultName;
}
}
switch (this.ParameterSetName)
{
case SetByRotationPolicyFileViaVaultName:
case SetByRotationPolicyFileViaKeyInputObject:
KeyRotationPolicy = ConstructKeyRotationPolicyFromFile(PolicyPath);
break;
case SetByExpandedPropertiesViaVaultName:
case SetByExpandedPropertiesViaKeyInputObject:
KeyRotationPolicy = new PSKeyRotationPolicy()
{
VaultName = VaultName,
KeyName = Name,
ExpiresIn = ExpiresIn ?? Track2DataClient.GetKeyRotationPolicy(VaultName, Name).ExpiresIn,
LifetimeActions = KeyRotationLifetimeAction ?? Track2DataClient.GetKeyRotationPolicy(VaultName, Name).LifetimeActions
};
break;
default:
// do nothing
break;
}
}
public PSKeyRotationPolicy SetManagedHsmKeyRotationPolicy(PSKeyRotationPolicy keyRotationPolicy)
{
return(HsmClient.SetKeyRotationPolicy(keyRotationPolicy));
}
public PSKeyRotationPolicy SetKeyRotationPolicy(PSKeyRotationPolicy psKeyRotationPolicy)
{
return(VaultClient.SetKeyRotationPolicy(psKeyRotationPolicy));
}
