Re-wrap a volume's encryption key
POST/volumes/{name}/rewrap
Re-wraps the volume's per-volume key under a different keyring key (rotation; no data is re-encrypted, safe on a live volume). 400 for a plaintext volume or an unknown key id.
path parameters
object
namestringrequiredVolume name ([a-z0-9][a-z0-9-]*).
Request bodyapplication/json
RewrapVolumeReq
to_key_idstringResponses
204 No contentNo Content
400 Bad requestBad Request
ErrorResponse
codestringerrorstring404 Not foundNot Found
ErrorResponse
codestringerrorstring501 Not Implemented
ErrorResponse
codestringerrorstringAuthentication
bearerAuthHTTP bearer. Daemon API key. Omit on a keyless loopback daemon.Request
▍POST/volumes/{name}/rewrap
curl '/volumes/{name}/rewrap' \
-X POST \
-H 'Content-Type: application/json' \
-d '{}'const response = await fetch("/volumes/{name}/rewrap", {
method: "POST",
headers: {
"Content-Type": "application/json",
},
body: "{}",
});
const data = await response.json();import requests
response = requests.post(
"/volumes/{name}/rewrap",
headers={
"Content-Type": "application/json",
},
data="{}",
)
data = response.json()Response
204 No content
No response body.