TrustSecretLease

Description

Short-lived authorization to use a key version for one scoped cryptographic operation. Lease purpose is operation and audit metadata; ACL authority is evaluated through canonical ThorAPI permissions. ENCRYPT and WRAP require ENCRYPTION. DECRYPT, UNWRAP, and REWRAP require VIEW_DECRYPTED. SIGN requires EXECUTE. VERIFY requires READ. READ alone never implies plaintext or unwrap authority.

Properties

Name	Type	Description	Notes
keyVersion	TrustKeyVersion		[optional]
leasePurpose	LeasePurposeEnum		[optional]
actorId	UUID		[optional]
serviceAccountId	UUID		[optional]
expiresAt	OffsetDateTime		[optional]
leaseStatus	LeaseStatusEnum		[optional]
requestHash	String		[optional]
ownerId	UUID		[optional]
id	UUID	Unique identifier for object in the system	[optional] [readonly]
createdDate	OffsetDateTime	Date of object creation	[optional] [readonly]
keyHash	String	Data, including hash of the key(s) used to encrypt this record.	[optional] [readonly]
lastAccessedById	UUID	Last user to access object	[optional] [readonly]
lastAccessedDate	OffsetDateTime	Timestamp of last access of object	[optional] [readonly]
lastModifiedById	UUID	Unique identifier for user who last modifed the object in the system	[optional] [readonly]
lastModifiedDate	OffsetDateTime	Date of last object modification	[optional] [readonly]
trashed	Boolean	Indicates if the object is trashed (soft deleted)	[optional]

Enum: LeasePurposeEnum

Name	Value
encrypt	"ENCRYPT"
decrypt	"DECRYPT"
sign	"SIGN"
verify	"VERIFY"
wrap	"WRAP"
unwrap	"UNWRAP"
rewrap	"REWRAP"

Enum: LeaseStatusEnum

Name	Value
issued	"ISSUED"
used	"USED"
expired	"EXPIRED"
revoked	"REVOKED"

Implemented Interfaces

• Serializable

Generated Version Details

~	value
GENERATOR VERSION	com.valkyrlabs:ValkyrAI API 1.0.3-SNAPSHOT
API ARTIFACT	com.valkyrlabs.valkyrai-api.jar
GENERATOR VERSION	org.openapitools.openapi-generator:7.5.0
GENERATOR CLASS	org.openapitools.codegen.languages.SpringCodegen
GENERATED DATE	2026-05-16T11:45:23.900207-07:00[America/Los_Angeles]