stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
110cb43e4d8fb135b1a2a9f690a5c9477f1d96a9
git.stella-ops.org/docs/features/unchecked/cli/kms-key-export-import-cli.md

1.4 KiB
Raw Blame History

KMS Key Export/Import CLI

Module

Cli

Status

IMPLEMENTED

Description

File-backed signing key management via export/import with passphrase protection, version selection, and force-overwrite options for portable key bundles.

Implementation Details

  • Command Group: src/Cli/StellaOps.Cli/Commands/CryptoCommandGroup.cs -- CryptoCommandGroup for crypto operations
  • Command Handlers: src/Cli/StellaOps.Cli/Commands/CommandHandlers.Crypto.cs -- crypto handlers
  • Crypto Profile Validator: src/Cli/StellaOps.Cli/Services/CryptoProfileValidator.cs -- crypto profile validation
  • Tests: src/Cli/__Tests/StellaOps.Cli.Tests/CryptoCommandTests.cs
  • Commands:
    • stella crypto export --key <key-id> --output <path> --passphrase <pass> -- export signing key with passphrase protection. Options: --version <ver>, --force
    • stella crypto import --file <path> --passphrase <pass> -- import signing key from file

E2E Test Plan

  • Run stella crypto export --key <id> --output ./key.enc --passphrase "secret" and verify encrypted key exported
  • Run stella crypto import --file ./key.enc --passphrase "secret" and verify key imported
  • Verify wrong passphrase fails import with clear error
  • Run with --version 2 and verify specific version exported
  • Run with --force and verify overwrite of existing file
  • Verify imported key can be used for signing operations