AndroidKeystoreKmsClient

java.lang.Object
- com.google.crypto.tink.integration.android.AndroidKeystoreKmsClient

All Implemented Interfaces:

KmsClient
```
public final class AndroidKeystoreKmsClient
extends Object
implements KmsClient
```
An implementation of KmsClient for Android Keystore.
This class requires Android M (API level 23) or newer.

Since:

1.0.0

Nested Class Summary

Nested Classes
Modifier and Type Class and Description

static class AndroidKeystoreKmsClient.Builder
Builder for AndroidKeystoreKmsClient

Nested Classes
Modifier and Type	Class and Description
`static class`	`AndroidKeystoreKmsClient.Builder` Builder for AndroidKeystoreKmsClient

Field Summary

Fields
Modifier and Type Field and Description

static String PREFIX
The prefix of all keys stored in Android Keystore.

Fields
Modifier and Type	Field and Description
`static String`	`PREFIX` The prefix of all keys stored in Android Keystore.

Constructor Summary

Constructors
Constructor and Description

AndroidKeystoreKmsClient()

AndroidKeystoreKmsClient(String uri)
Deprecated.
use AndroidKeystoreKmsClient.Builder.

Constructors
Constructor and Description
`AndroidKeystoreKmsClient()`
`AndroidKeystoreKmsClient(String uri)` Deprecated. use `AndroidKeystoreKmsClient.Builder`.

Method Summary

All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`deleteKey(String keyUri)` Deletes a key in Android Keystore.
`boolean`	`doesSupport(String uri)`
`static void`	`generateNewAeadKey(String keyUri)` Generates a new key in Android Keystore.
`Aead`	`getAead(String uri)` Returns an `Aead` backed by a key in Android Keystore specified by `uri`.
`static Aead`	`getOrGenerateNewAeadKey(String keyUri)` Generates a new key in Android Keystore, if it doesn't exist.
`KmsClient`	`withCredentials(String unused)` Initializes a `KmsClient` for Android Keystore.
`KmsClient`	`withDefaultCredentials()` Initializes a `KmsClient` for Android Keystore.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Field Detail
  - PREFIX
```
public static final String PREFIX
```
    The prefix of all keys stored in Android Keystore.
    
    See Also:
    
    Constant Field Values
- Constructor Detail
  - AndroidKeystoreKmsClient
```
@RequiresApi(value=23)
public AndroidKeystoreKmsClient()
                                                throws GeneralSecurityException
```
    Throws:
    
    GeneralSecurityException
  - AndroidKeystoreKmsClient
```
@Deprecated
 @RequiresApi(value=23)
public AndroidKeystoreKmsClient(String uri)
```
    Deprecated. use AndroidKeystoreKmsClient.Builder.
    
    Constructs an AndroidKeystoreKmsClient that is bound to a single key identified by uri.
- Method Detail
  - doesSupport
```
@RequiresApi(value=23)
public boolean doesSupport(String uri)
```
    Specified by:
    
    doesSupport in interface KmsClient
    
    Returns:
    
    true either if keyUri is not null and equal to uri, or keyUri is null and uri starts with PREFIX.
  - withCredentials
```
@RequiresApi(value=23)
public KmsClient withCredentials(String unused)
                                                 throws GeneralSecurityException
```
    Initializes a KmsClient for Android Keystore.
    Note that Android Keystore doesn't need credentials, thus the credential path is unused.
    
    Specified by:
    
    withCredentials in interface KmsClient
    
    Throws:
    
    GeneralSecurityException
  - withDefaultCredentials
```
@RequiresApi(value=23)
public KmsClient withDefaultCredentials()
                                                        throws GeneralSecurityException
```
    Initializes a KmsClient for Android Keystore.
    Note that Android Keystore does not use credentials.
    
    Specified by:
    
    withDefaultCredentials in interface KmsClient
    
    Throws:
    
    GeneralSecurityException
  - getAead
```
public Aead getAead(String uri)
             throws GeneralSecurityException
```
    Returns an Aead backed by a key in Android Keystore specified by uri.
    Since Android Keystore is somewhat unreliable, a self-test is done against the key. This will incur a small performance penalty.
    
    Specified by:
    
    getAead in interface KmsClient
    
    Throws:
    
    GeneralSecurityException - if the URI is not supported or invalid
  - deleteKey
```
public void deleteKey(String keyUri)
               throws GeneralSecurityException
```
    Deletes a key in Android Keystore.
    
    Throws:
    
    GeneralSecurityException
  - getOrGenerateNewAeadKey
```
@RequiresApi(value=23)
public static Aead getOrGenerateNewAeadKey(String keyUri)
                                                           throws GeneralSecurityException,
                                                                  IOException
```
    Generates a new key in Android Keystore, if it doesn't exist.
    Generates AES256-GCM keys.
    
    Throws:
    
    GeneralSecurityException
    
    IOException
  - generateNewAeadKey
```
@RequiresApi(value=23)
public static void generateNewAeadKey(String keyUri)
                                                      throws GeneralSecurityException
```
    Generates a new key in Android Keystore.
    Generates AES256-GCM keys.
    
    Throws:
    
    GeneralSecurityException

Class AndroidKeystoreKmsClient

Nested Class Summary

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

PREFIX

Constructor Detail

AndroidKeystoreKmsClient

AndroidKeystoreKmsClient

Method Detail

doesSupport

withCredentials

withDefaultCredentials

getAead

deleteKey

getOrGenerateNewAeadKey

generateNewAeadKey