CryptographyClientmethodswrapandunwrapare renamedwrap_keyandunwrap_key, respectively.
CryptographyClientperforms encrypt, verify and wrap operations locally when its key's public material is available (i.e., when it has keys/get permission).
- Removed
azure.core.Configurationfrom the public API in preparation for a revamped configuration API. Staticcreate_configmethods have been renamed_create_config, and will be removed in a future release. - Removed
wrap_keyandunwrap_keyfromKeyClient. These are now available throughCryptographyClient. - This version of the library requires
azure-core1.0.0b2- If you later want to revert to a version requiring azure-core 1.0.0b1,
of this or another Azure SDK library, you must explicitly install azure-core
1.0.0b1 as well. For example:
pip install azure-core==1.0.0b1 azure-keyvault-keys==4.0.0b1
- If you later want to revert to a version requiring azure-core 1.0.0b1,
of this or another Azure SDK library, you must explicitly install azure-core
1.0.0b1 as well. For example:
- Added
CryptographyClient, a client for performing cryptographic operations (encrypt/decrypt, wrap/unwrap, sign/verify) with a key. - Distributed tracing framework OpenCensus is now supported
- Added support for HTTP challenge based authentication, allowing clients to interact with vaults in sovereign clouds.
- Async clients use aiohttp for transport by default. See azure-core documentation for more information about using other transports.
Version 4.0.0b1 is the first preview of our efforts to create a user-friendly and Pythonic client library for Azure Key Vault. For more information about preview releases of other Azure SDK libraries, please visit https://aka.ms/azure-sdk-preview1-python.
This library is not a direct replacement for azure-keyvault. Applications
using that library would require code changes to use azure-keyvault-keys.
This package's
documentation
and
samples
demonstrate the new API.
- Packages scoped by functionality
azure-keyvault-keyscontains a client for key operations,azure-keyvault-secretscontains a client for secret operations
- Client instances are scoped to vaults (an instance interacts with one vault only)
- Asynchronous API supported on Python 3.5.3+
- the
azure.keyvault.keys.aionamespace contains an async equivalent of the synchronous client inazure.keyvault.keys
- the
- Authentication using
azure-identitycredentials- see this package's documentation , and the Azure Identity documentation for more information
- Certificate management APIs
- Cryptographic operations, e.g. sign, un/wrap_key, verify, en- and decrypt
- National cloud support. This release supports public global cloud vaults, e.g. https://{vault-name}.vault.azure.net