Module unlock 

Functionality for re-encrypting unlock (decryption) methods during user key rotation. During key-rotation, a new user-key is sampled. The unlock module then creates a set of newly encrypted copies, one for each decryption/unlock method.

Structs

ParsingError 🔒

ReencryptCommonUnlockDataInput 🔒

ReencryptMasterPasswordChangeAndUnlockInput 🔒

V1EmergencyAccessMembership

The data necessary to re-share the user-key to a V1 emergency access membership. Note: The Public-key must be verified/trusted. Further, there is no sender authentication possible here.

V1OrganizationMembership

The data necessary to re-share the user-key to a V1 organization membership. Note: The Public-key must be verified/trusted. Further, there is no sender authentication possible here.

Enums

ReencryptError 🔒

Functions

reencrypt_common_unlock_data 🔒

reencrypt_emergency_access_keys 🔒

Re-encrypt emergency access keys for the new user key.

reencrypt_master_password_change_unlock_data 🔒

reencrypt_organization_memberships 🔒

Re-encrypt organization membership keys for the new user key.

reencrypt_passkey_credentials 🔒

Re-encrypt passkey (WebAuthn PRF) credentials for the new user key.

reencrypt_tde_devices 🔒

Re-encrypt TDE device keys for the new user key.

reencrypt_userkey_for_masterpassword_unlock 🔒

to_authentication_and_unlock_data 🔒