POST
/
api
/
v1
/
kms
/
keys
/
{keyId}
/
verify
curl --request POST \
  --url https://us.infisical.com/api/v1/kms/keys/{keyId}/verify \
  --header 'Content-Type: application/json' \
  --data '{
  "isDigest": false,
  "data": "<string>",
  "signature": "<string>",
  "signingAlgorithm": "RSASSA_PSS_SHA_512"
}'
{
  "signatureValid": true,
  "keyId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "signingAlgorithm": "RSASSA_PSS_SHA_512"
}

Path Parameters

​
keyId
string
required

The ID of the key to verify the data with.

Body

application/json
​
data
string
required

The data in string format to be verified (base64 encoded). For data larger than 4096 bytes you must first create a digest of the data and then pass the digest in the data parameter.

​
signature
string
required

The signature to be verified (base64 encoded).

​
signingAlgorithm
enum<string>
required
Available options:
RSASSA_PSS_SHA_512,
RSASSA_PSS_SHA_384,
RSASSA_PSS_SHA_256,
RSASSA_PKCS1_V1_5_SHA_512,
RSASSA_PKCS1_V1_5_SHA_384,
RSASSA_PKCS1_V1_5_SHA_256,
ECDSA_SHA_512,
ECDSA_SHA_384,
ECDSA_SHA_256
​
isDigest
boolean
default:false

Whether the data is already digested or not.

Response

200
application/json
Default Response
​
signatureValid
boolean
required
​
keyId
string
required
​
signingAlgorithm
enum<string>
required
Available options:
RSASSA_PSS_SHA_512,
RSASSA_PSS_SHA_384,
RSASSA_PSS_SHA_256,
RSASSA_PKCS1_V1_5_SHA_512,
RSASSA_PKCS1_V1_5_SHA_384,
RSASSA_PKCS1_V1_5_SHA_256,
ECDSA_SHA_512,
ECDSA_SHA_384,
ECDSA_SHA_256

Was this page helpful?

Suggest editsRaise issue