keypair generated for signing. Optional, will be generated by sdk if not passed
Key Access Server url
After logging in to browser OIDC interface user receives fresh token that needed by SDK for auth needs
JWT from external authority (eg Google)
Endpoint of authentication service
Optional
Readonly
allowedList of allowed KASes to connect to for rewrap requests.
Defaults to [this.kasEndpoint]
.
Optional
Readonly
authReadonly
clientOptional
Readonly
clientReadonly
cryptoReadonly
dpopReadonly
dpopSession binding keys. Used for DPoP and signed request bodies.
Optional
Readonly
easOptional
Readonly
fileReadonly
kasDefault kas endpoint, if present. Required for encrypt.
Readonly
kasOptional
Readonly
platformURL of the platform, required to fetch list of allowed KASes when allowedKases is empty
Readonly
policyPolicy service endpoint, if present. Required for autoconfiguration with ABAC.
Optional
Readonly
readerDecrypt TDF ciphertext into plaintext. One of the core operations of the Virtru SDK.
a https://nodejs.org/api/stream.html#stream_class_stream_readable|Readable stream containing the decrypted plaintext.
Encrypt plaintext into TDF ciphertext. One of the core operations of the Virtru SDK.
Optional
opts: EncryptParamsTest only
a https://nodejs.org/api/stream.html#stream_class_stream_readable|Readable a new stream containing the TDF ciphertext
Get the unique policyId associated with TDF ciphertext. Useful for managing authorization policies of encrypted data.
The policyId is embedded in the ciphertext so this is a local operation.
Required. TDF data stream, generated using DecryptParamsBuilder#build|DecryptParamsBuilder's build().
An abstraction for protecting and accessing data using TDF3 services.