gcloud_alpha_kms_asymmetric-decrypt (1)
NAME
- gcloud alpha kms asymmetric-decrypt - decrypt an input file using an asymmetric-encryption key version
SYNOPSIS
-
gcloud alpha kms asymmetric-decrypt --ciphertext-file=CIPHERTEXT_FILE --plaintext-file=PLAINTEXT_FILE [--key=KEY] [--keyring=KEYRING] [--location=LOCATION] [--version=VERSION] [GCLOUD_WIDE_FLAG ...]
DESCRIPTION
(ALPHA) Decrypts the given ciphertext file using the provided
REQUIRED FLAGS
-
- --ciphertext-file=CIPHERTEXT_FILE
-
File path of the ciphertext file to decrypt.
- --plaintext-file=PLAINTEXT_FILE
-
File path of the plaintext file to output.
OPTIONAL FLAGS
-
- --key=KEY
-
to use for asymmetric-decryption.
- --keyring=KEYRING
-
Key ring of the key.
- --location=LOCATION
-
Location of the keyring.
- --version=VERSION
-
Version to use for asymmetric-decryption.
GCLOUD WIDE FLAGS
These flags are available to all commands: --account, --configuration, --flags-file, --flatten, --format, --help, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity. Run $ gcloud help for details.
EXAMPLES
The following command will read the file '/tmp/my/secret.file.enc', decrypt it using the asymmetric CryptoKey dont-panic Version 3 and write the plaintext to '/tmp/my/secret.file.dec'.
- $ gcloud alpha kms asymmetric-decrypt \ --location us-central1 \ --keyring hitchhiker \ --key dont-panic \ --version 3 \ --ciphertext-file /tmp/my/secret.file.enc \ --plaintext-file /tmp/my/secret.file.dec
NOTES
This command is currently in ALPHA and may change without notice. If this command fails with API permission errors despite specifying the right project, you will have to apply for early access and have your projects registered on the API whitelist to use it. To do so, contact Support at cloud.google.com/support