Skip to content

Re-wrap a volume's encryption key

POST/volumes/{name}/rewrap

Re-wraps the volume's per-volume key under a different keyring key (rotation; no data is re-encrypted, safe on a live volume). 400 for a plaintext volume or an unknown key id.

path parameters
object
namestringrequired

Volume name ([a-z0-9][a-z0-9-]*).

Request bodyapplication/json
RewrapVolumeReq
to_key_idstring
Responses
204 No contentNo Content
400 Bad requestBad Request
ErrorResponse
codestring
errorstring
404 Not foundNot Found
ErrorResponse
codestring
errorstring
501 Not Implemented
ErrorResponse
codestring
errorstring
Authentication
bearerAuthHTTP bearer. Daemon API key. Omit on a keyless loopback daemon.
Request
POST/volumes/{name}/rewrap
cURL
curl '/volumes/{name}/rewrap' \
  -X POST \
  -H 'Content-Type: application/json' \
  -d '{}'
POST/volumes/{name}/rewrap
Request
Path
Authorization
curl '/volumes/{name}/rewrap' \
  -X POST \
  -H 'Content-Type: application/json' \
  -d '{}'
Response
Send a request to see the response.
Response
204 No content
No response body.
Was this page helpful?