feat(key_manager): add sign and verify methods (#4713)

Co-authored-by: Laure-di <[email protected]>

Author: scaleway-bot

cmd/scw/testdata/test-all-usage-keymanager-key-create-usage.golden

@@ -9,6 +9,8 @@ ARGS:
   [project-id]                         Project ID to use. If none is passed the default project ID will be used
   [name]                               (Optional) Name of the key
   [usage.symmetric-encryption]         Algorithm used to encrypt and decrypt arbitrary payloads. (unknown_symmetric_encryption | aes_256_gcm)
+  [usage.asymmetric-encryption]         (unknown_asymmetric_encryption | rsa_oaep_2048_sha256 | rsa_oaep_3072_sha256 | rsa_oaep_4096_sha256)
+  [usage.asymmetric-signing]            (unknown_asymmetric_signing | ec_p256_sha256 | ec_p384_sha384 | rsa_pss_2048_sha256 | rsa_pss_3072_sha256 | rsa_pss_4096_sha256 | rsa_pkcs1_2048_sha256 | rsa_pkcs1_3072_sha256 | rsa_pkcs1_4096_sha256)
   [description]                        (Optional) Description of the key
   [tags.{index}]                       (Optional) List of the key's tags
   [rotation-policy.rotation-period]    Rotation period

cmd/scw/testdata/test-all-usage-keymanager-key-decrypt-usage.golden

@@ -6,7 +6,7 @@ USAGE:
   scw keymanager key decrypt <key-id ...> [arg=value ...]
 
 ARGS:
-  key-id              ID of the key to decrypt
+  key-id              ID of the key to decrypt with
   ciphertext          Base64 Ciphertext data to decrypt (Support file loading with @/path/to/file)
   [associated-data]   (Optional) Additional authenticated data
   [region=fr-par]     Region to target. If none is passed will use default region from the config (fr-par | nl-ams | pl-waw)

cmd/scw/testdata/test-all-usage-keymanager-key-encrypt-usage.golden

@@ -6,7 +6,7 @@ USAGE:
   scw keymanager key encrypt <key-id ...> [arg=value ...]
 
 ARGS:
-  key-id              ID of the key to encrypt
+  key-id              ID of the key to use for encryption
   plaintext           Base64 Plaintext data to encrypt (Support file loading with @/path/to/file)
   [associated-data]   (Optional) Additional authenticated data
   [region=fr-par]     Region to target. If none is passed will use default region from the config (fr-par | nl-ams | pl-waw)

docs/commands/keymanager.md

@@ -43,6 +43,8 @@ scw keymanager key create [arg=value ...]
 | project-id |  | Project ID to use. If none is passed the default project ID will be used |
 | name |  | (Optional) Name of the key |
 | usage.symmetric-encryption | One of: `unknown_symmetric_encryption`, `aes_256_gcm` | Algorithm used to encrypt and decrypt arbitrary payloads. |
+| usage.asymmetric-encryption | One of: `unknown_asymmetric_encryption`, `rsa_oaep_2048_sha256`, `rsa_oaep_3072_sha256`, `rsa_oaep_4096_sha256` |  |
+| usage.asymmetric-signing | One of: `unknown_asymmetric_signing`, `ec_p256_sha256`, `ec_p384_sha384`, `rsa_pss_2048_sha256`, `rsa_pss_3072_sha256`, `rsa_pss_4096_sha256`, `rsa_pkcs1_2048_sha256`, `rsa_pkcs1_3072_sha256`, `rsa_pkcs1_4096_sha256` |  |
 | description |  | (Optional) Description of the key |
 | tags.{index} |  | (Optional) List of the key's tags |
 | rotation-policy.rotation-period |  | Rotation period |
@@ -68,7 +70,7 @@ scw keymanager key decrypt <key-id ...> [arg=value ...]
 
 | Name |   | Description |
 |------|---|-------------|
-| key-id | Required | ID of the key to decrypt |
+| key-id | Required | ID of the key to decrypt with |
 | ciphertext | Required | Base64 Ciphertext data to decrypt |
 | associated-data |  | (Optional) Additional authenticated data |
 | region | Default: `fr-par`<br />One of: `fr-par`, `nl-ams`, `pl-waw` | Region to target. If none is passed will use default region from the config |
@@ -170,7 +172,7 @@ scw keymanager key encrypt <key-id ...> [arg=value ...]
 
 | Name |   | Description |
 |------|---|-------------|
-| key-id | Required | ID of the key to encrypt |
+| key-id | Required | ID of the key to use for encryption |
 | plaintext | Required | Base64 Plaintext data to encrypt |
 | associated-data |  | (Optional) Additional authenticated data |
 | region | Default: `fr-par`<br />One of: `fr-par`, `nl-ams`, `pl-waw` | Region to target. If none is passed will use default region from the config |

internal/namespaces/key_manager/v1alpha1/key_manager_cli.go

@@ -8,7 +8,7 @@ import (
 	"reflect"
 
 	"github.com/scaleway/scaleway-cli/v2/core"
-	key_manager "github.com/scaleway/scaleway-sdk-go/api/key_manager/v1alpha1"
+	"github.com/scaleway/scaleway-sdk-go/api/key_manager/v1alpha1"
 	"github.com/scaleway/scaleway-sdk-go/scw"
 )
 
@@ -85,6 +85,35 @@ func keymanagerKeyCreate() *core.Command {
 					"aes_256_gcm",
 				},
 			},
+			{
+				Name:       "usage.asymmetric-encryption",
+				Required:   false,
+				Deprecated: false,
+				Positional: false,
+				EnumValues: []string{
+					"unknown_asymmetric_encryption",
+					"rsa_oaep_2048_sha256",
+					"rsa_oaep_3072_sha256",
+					"rsa_oaep_4096_sha256",
+				},
+			},
+			{
+				Name:       "usage.asymmetric-signing",
+				Required:   false,
+				Deprecated: false,
+				Positional: false,
+				EnumValues: []string{
+					"unknown_asymmetric_signing",
+					"ec_p256_sha256",
+					"ec_p384_sha384",
+					"rsa_pss_2048_sha256",
+					"rsa_pss_3072_sha256",
+					"rsa_pss_4096_sha256",
+					"rsa_pkcs1_2048_sha256",
+					"rsa_pkcs1_3072_sha256",
+					"rsa_pkcs1_4096_sha256",
+				},
+			},
 			{
 				Name:       "description",
 				Short:      `(Optional) Description of the key`,
@@ -609,7 +638,7 @@ func keymanagerKeyEncrypt() *core.Command {
 		ArgSpecs: core.ArgSpecs{
 			{
 				Name:       "key-id",
-				Short:      `ID of the key to encrypt`,
+				Short:      `ID of the key to use for encryption`,
 				Required:   true,
 				Deprecated: false,
 				Positional: true,
@@ -657,7 +686,7 @@ func keymanagerKeyDecrypt() *core.Command {
 		ArgSpecs: core.ArgSpecs{
 			{
 				Name:       "key-id",
-				Short:      `ID of the key to decrypt`,
+				Short:      `ID of the key to decrypt with`,
 				Required:   true,
 				Deprecated: false,
 				Positional: true,