4.3.0 (2022-03-24)
Changes from both the last release and the last beta include:
Features Added
-
Added
Exportable
andReleasePolicy
toCreateKeyOptions
,ImportKeyOptions
, andKeyProperties
to support Secure Key Release for Key Vault and Managed HSM. -
Added
GetRandomBytes
andGetRandomBytesAsync
toKeyClient
to get random bytes from a managed HSM. -
Added
JsonWebKeyConverter
to support serializing and deserializing aJsonWebKey
to a RFC 7517 JWK. (#16155) -
Added
KeyClient.GetCryptographyClient
to get aCryptographyClient
that uses the same options, policies, and pipeline as theKeyClient
that created it. (#23786) -
Added
KeyReleasePolicy.Immutable
property. -
Added
KeyRotationPolicy
class and new methods includingKeyClient.GetKeyRotationPolicy
,KeyClient.RotateKey
, andKeyClient.UpdateKeyRotationPolicy
. -
Added
KeyVaultKeyIdentifier.TryCreate
to parse key URIs without throwing an exception when invalid. (#23146) -
Added
ReleaseKey
andReleaseKeyAsync
toKeyClient
to release a key for Key Vault and Managed HSM. -
Support multi-tenant authentication against Key Vault and Managed HSM when using Azure.Identity 1.5.0 or newer. (#18359)
-
Changed
KeyRotationLifetimeAction.Action
to read-only and added constructor to set theKeyRotationPolicyAction
. -
Renamed
name
parameter inGetKeyRotationPolicy
andGetKeyRotationPolicyAsync
tokeyName
. -
Renamed
name
parameter inUpdateKeyRotationPolicy
andUpdateKeyRotationPolicyAsync
tokeyName
.
Bugs Fixed
- The default service version is now "7.3".
- Attempt to cache key locally from
KeyClient.GetCryptographyClient
. (#25254) - Added key version to distributed tracing. (#12907)
Breaking Changes
- (Since 4.3.0-beta.7)
KeyClient.ReleaseKey
andReleaseKeyAsync
now takename
andtargetAttestationToken
, or aReleaseKeyOptions
with a requiredname
andtargetAttestationToken
along with additional properties.
Other Changes
KeyProperties.Version
is no longer required when callingKeyClient.UpdateKeyProperties
orUpdateKeyPropertiesAsync
.