Encryption configuration for a new database being created from another source.
The source could be a Backup
.
JSON representation |
---|
{ // Union field |
Fields | |
---|---|
Union field encryption_type . The method for encrypting the database. encryption_type can be only one of the following: |
|
googleDefaultEncryption |
Use Google default encryption. |
useSourceEncryption |
The database will use the same encryption configuration as the source. |
customerManagedEncryption |
Use Customer Managed Encryption Keys (CMEK) for encryption. |
GoogleDefaultEncryptionOptions
This type has no fields.
The configuration options for using Google default encryption.
SourceEncryptionOptions
This type has no fields.
The configuration options for using the same encryption method as the source.
CustomerManagedEncryptionOptions
The configuration options for using CMEK (Customer Managed Encryption Key) encryption.
JSON representation |
---|
{ "kmsKeyName": string } |
Fields | |
---|---|
kmsKeyName |
Required. Only keys in the same location as the database are allowed to be used for encryption. For Firestore's nam5 multi-region, this corresponds to Cloud KMS multi-region us. For Firestore's eur3 multi-region, this corresponds to Cloud KMS multi-region europe. See https://cloud.google.com/kms/docs/locations. The expected format is |