Azure / azure-sdk-for-go

This repository is for active development of the Azure SDK for Go. For consumers of the SDK we recommend visiting our public developer docs at:
https://docs.microsoft.com/azure/developer/go/
MIT License
1.63k stars 838 forks source link

Get key region without key vault access #23674

Open suqin-haha opened 3 hours ago

suqin-haha commented 3 hours ago

Feature Request

Hi, In CMEK (customer managed encryption key) scenario, with only the key from customer, it's need to know the key region as well (currently region cannot be know unless a hacky way). Because, for some operations, like encrypt set for kubernete disk, it requires region to be correct. Without region information it's hard to validate the key from customer before actually use it and it's high cost to try it until it failed.

Thanks!

ref: https://github.com/Azure/azure-sdk-for-go/issues/22928#issuecomment-2433145190 https://learn.microsoft.com/en-us/answers/questions/1661177/how-to-get-azure-key-key-vault-region

github-actions[bot] commented 3 hours ago

Thanks for the feedback! We are routing this to the appropriate team for follow-up. cc @jlichwa @RandalliLama @schaabs.