Hi,
In CMEK (customer managed encryption key) scenario, with only the key from customer, it's need to know the key region as well (currently region cannot be know unless a hacky way). Because, for some operations, like encrypt set for kubernete disk, it requires region to be correct. Without region information it's hard to validate the key from customer before actually use it and it's high cost to try it until it failed.
Feature Request
Hi, In CMEK (customer managed encryption key) scenario, with only the key from customer, it's need to know the key region as well (currently region cannot be know unless a hacky way). Because, for some operations, like encrypt set for kubernete disk, it requires region to be correct. Without region information it's hard to validate the key from customer before actually use it and it's high cost to try it until it failed.
Thanks!
ref: https://github.com/Azure/azure-sdk-for-go/issues/22928#issuecomment-2433145190 https://learn.microsoft.com/en-us/answers/questions/1661177/how-to-get-azure-key-key-vault-region