CryptoKey
Secure context: This feature is available only in secure contexts (HTTPS), in some or all supporting browsers.
The CryptoKey
interface of the Web Crypto API represents a cryptographic key obtained from one of the SubtleCrypto
methods generateKey()
, deriveKey()
, importKey()
, or unwrapKey()
.
For security reasons, the CryptoKey
interface can only be used in a secure context.
Properties
CryptoKey.type
-
String which may take one of the following values:
"secret"
: This key is a secret key for use with a symmetric algorithm."private"
: This key is the private half of an asymmetric algorithm'sCryptoKeyPair
."public"
: This key is the public half of an asymmetric algorithm'sCryptoKeyPair
.
CryptoKey.extractable
-
A boolean value indicating whether or not the key may be extracted using
SubtleCrypto.exportKey()
orSubtleCrypto.wrapKey()
.true
: The key may be extracted.false
The key may not be extracted.exportKey()
orwrapKey()
will throw an exception if used to extract this key.
CryptoKey.algorithm
-
An object describing the algorithm for which this key can be used and any associated extra parameters.
AesKeyGenParams
if the algorithm is any of the AES variants.RsaHashedKeyGenParams
if the algorithm is any of the RSA variants.EcKeyGenParams
if the algorithm is any of the EC variants.HmacKeyGenParams
if the algorithm is HMAC.
CryptoKey.usages
-
An
Array
of strings, indicating what can be done with the key. Possible values for array elements are:"encrypt"
: The key may be used toencrypt
messages."decrypt"
: The key may be used todecrypt
messages."sign"
: The key may be used tosign
messages."verify"
: The key may be used toverify
signatures."deriveKey"
: The key may be used inderiving a new key
."deriveBits"
: The key may be used inderiving bits
."wrapKey"
: The key may be used towrap a key
."unwrapKey"
: The key may be used tounwrap a key
.
Examples
The examples for SubtleCrypto
methods often use CryptoKey
objects. For example:
Specifications
Specification |
---|
Web Cryptography API # cryptokey-interface |
Browser compatibility
BCD tables only load in the browser