azure-mgmt-keyvault10.3.1
Published
Microsoft Azure Key Vault Management Client Library for Python
pip install azure-mgmt-keyvault
Package Downloads
Authors
Project URLs
Requires Python
>=3.8
Microsoft Azure SDK for Python
This is the Microsoft Azure Key Vault Management Client Library. This package has been tested with Python 3.8+. For a more complete view of Azure libraries, see the azure sdk python release.
Disclaimer
Azure SDK Python packages support for Python 2.7 has ended 01 January 2022. For more information and questions, please refer to https://github.com/Azure/azure-sdk-for-python/issues/20691
Getting started
Prerequisites
- Python 3.8+ is required to use this package.
- Azure subscription
Install the package
pip install azure-mgmt-keyvault
pip install azure-identity
Authentication
By default, Azure Active Directory token authentication depends on correct configure of following environment variables.
AZURE_CLIENT_ID
for Azure client ID.AZURE_TENANT_ID
for Azure tenant ID.AZURE_CLIENT_SECRET
for Azure client secret.
In addition, Azure subscription ID can be configured via environment variable AZURE_SUBSCRIPTION_ID
.
With above configuration, client can be authenticated by following code:
from azure.identity import DefaultAzureCredential
from azure.mgmt.keyvault import KeyVaultManagementClient
import os
sub_id = os.getenv("AZURE_SUBSCRIPTION_ID")
client = KeyVaultManagementClient(credential=DefaultAzureCredential(), subscription_id=sub_id)
Examples
Code samples for this package can be found at:
- Search Key Vault Management on docs.microsoft.com
- Azure Python Mgmt SDK Samples Repo
Troubleshooting
Next steps
Provide Feedback
If you encounter any bugs or have suggestions, please file an issue in the Issues section of the project.
Release History
10.3.1 (2024-07-16)
Other Changes
- Fix docstring
10.3.0 (2023-10-23)
Features Added
- Model MHSMPrivateEndpointConnection has a new parameter identity
- Model MHSMPrivateLinkResource has a new parameter identity
- Model ManagedHsm has a new parameter identity
- Model ManagedHsmResource has a new parameter identity
10.2.3 (2023-07-25)
Bugs Fixed
- Do not use configured api_version to relpace the value in nextLink for
VaultsOperation.list
10.2.2 (2023-05-24)
Other Changes
- Added default value back for model Sku.family to avoid breaking
10.2.1 (2023-04-03)
Bugs Fixed
- Seal enum which has single value as constant by default to avoid breaking change
10.2.0 (2023-03-13)
Features Added
- Added operation group MHSMRegionsOperations
- Added operation group ManagedHsmKeysOperations
- Model ManagedHsmProperties has a new parameter regions
- Model ManagedHsmProperties has a new parameter security_domain_properties
10.2.0b1 (2023-02-14)
Features Added
- Model ManagedHsmProperties has a new parameter security_domain_properties
10.1.0 (2022-08-10)
Features Added
- Added operation ManagedHsmsOperations.check_mhsm_name_availability
- Model Key has a new parameter release_policy
- Model Key has a new parameter rotation_policy
- Model KeyProperties has a new parameter release_policy
- Model KeyProperties has a new parameter rotation_policy
- Model MHSMPrivateEndpointConnectionItem has a new parameter etag
- Model MHSMPrivateEndpointConnectionItem has a new parameter id
Other Changes
- Python 3.6 is no longer supported. Please use Python version 3.7 or later.
10.0.0 (2022-05-24)
Breaking changes
- Model Key no longer has parameter release_policy
- Model Key no longer has parameter rotation_policy
- Model KeyProperties no longer has parameter release_policy
- Model KeyProperties no longer has parameter rotation_policy
9.3.0 (2021-11-11)
Features
- Added some enum value
9.2.0 (2021-10-15)
Features
- Model VaultProperties has a new parameter public_network_access
- Model VaultPatchProperties has a new parameter public_network_access
- Model KeyAttributes has a new parameter exportable
- Model Key has a new parameter release_policy
- Model Key has a new parameter rotation_policy
- Model KeyProperties has a new parameter release_policy
- Model KeyProperties has a new parameter rotation_policy
9.1.0 (2021-08-26)
Features
- Model VirtualNetworkRule has a new parameter ignore_missing_vnet_service_endpoint
- Model VaultProperties has a new parameter hsm_pool_resource_id
- Model PrivateEndpointConnectionItem has a new parameter etag
- Model PrivateEndpointConnectionItem has a new parameter id
- Model ServiceSpecification has a new parameter metric_specifications
9.0.0 (2021-04-19)
Features
- Model DeletedVaultProperties has a new parameter purge_protection_enabled
- Model Operation has a new parameter is_data_action
- Model Vault has a new parameter system_data
- Model ManagedHsmProperties has a new parameter scheduled_purge_date
- Model ManagedHsmProperties has a new parameter public_network_access
- Model ManagedHsmProperties has a new parameter network_acls
- Model ManagedHsmProperties has a new parameter private_endpoint_connections
- Model VaultProperties has a new parameter provisioning_state
- Model PrivateLinkServiceConnectionState has a new parameter actions_required
- Model ManagedHsmResource has a new parameter system_data
- Model ManagedHsm has a new parameter system_data
- Model PrivateEndpointConnection has a new parameter etag
- Added operation ManagedHsmsOperations.get_deleted
- Added operation ManagedHsmsOperations.list_deleted
- Added operation ManagedHsmsOperations.begin_purge_deleted
- Added operation PrivateEndpointConnectionsOperations.list_by_resource
- Added operation group SecretsOperations
- Added operation group MHSMPrivateLinkResourcesOperations
- Added operation group KeysOperations
- Added operation group MHSMPrivateEndpointConnectionsOperations
Breaking changes
- Model PrivateLinkServiceConnectionState no longer has parameter action_required
8.0.0 (2020-09-29)
Features
- Model ManagedHsmProperties has a new parameter hsm_uri
Breaking changes
- Model ManagedHsmProperties no longer has parameter hsm_pool_uri
7.0.0 (2020-09-15)
- Release as a stable version
7.0.0b3 (2020-09-09)
Features
- Added operation group ManagedHsmsOperations
7.0.0b2 (2020-07-21)
Bugfixes
- Use service api_version "2015-11-01" instead of "2016-10-01".
7.0.0b1 (2020-06-17)
This is beta preview version. For detailed changelog please refer to equivalent stable version 2.2.0 (https://pypi.org/project/azure-mgmt-keyvault/2.2.0/)
This version uses a next-generation code generator that introduces important breaking changes, but also important new features (like unified authentication and async programming).
General breaking changes
-
Credential system has been completly revamped:
azure.common.credentials
ormsrestazure.azure_active_directory
instances are no longer supported, use theazure-identity
classes instead: https://pypi.org/project/azure-identity/credentials
parameter has been renamedcredential
-
The
config
attribute no longer exists on a client, configuration should be passed as kwarg. Example:MyClient(credential, subscription_id, enable_logging=True)
. For a complete set of supported options, see the parameters accept in init documentation of azure-core -
You can't import a
version
module anymore, use__version__
instead -
Operations that used to return a
msrest.polling.LROPoller
now returns aazure.core.polling.LROPoller
and are prefixed withbegin_
. -
Exceptions tree have been simplified and most exceptions are now
azure.core.exceptions.HttpResponseError
(CloudError
has been removed). -
Most of the operation kwarg have changed. Some of the most noticeable:
raw
has been removed. Equivalent feature can be found usingcls
, a callback that will give access to internal HTTP response for advanced user- For a complete set of supported options, see the parameters accept in Request documentation of azure-core
General new features
- Type annotations support using
typing
. SDKs are mypy ready. - This client has now stable and official support for async. Check the
aio
namespace of your package to find the async client. - This client now support natively tracing library like OpenCensus or OpenTelemetry. See this tracing quickstart for an overview.
2.2.0 (2020-03-20)
Features
- Model VaultProperties has a new parameter enable_rbac_authorization
- Model VaultProperties has a new parameter soft_delete_retention_in_days
- Model VaultPatchProperties has a new parameter enable_rbac_authorization
- Model VaultPatchProperties has a new parameter soft_delete_retention_in_days
2.1.1 (2020-02-07)
Bugfixes
- Fixed multi-API client issues
2.1.0 (2020-01-30)
Features
- Model VaultProperties has a new parameter private_endpoint_connections
- Added operation group PrivateEndpointConnectionsOperations
- Added operation group PrivateLinkResourcesOperations
2.0.0 (2019-06-18)
General Breaking changes
This version uses a next-generation code generator that might introduce breaking changes if you were importing from the v20xx_yy_zz API folders. In summary, some modules were incorrectly visible/importable and have been renamed. This fixed several issues caused by usage of classes that were not supposed to be used in the first place.
- KeyVaultManagementClient cannot be imported from
azure.mgmt.key_vault.v20xx_yy_zz.key_vault_management_client
anymore (import fromazure.mgmt.key_vault.v20xx_yy_zz
works like before) - KeyVaultManagementClientConfiguration import has been moved from
azure.mgmt.key_vault.v20xx_yy_zz.key_vault_management_client
toazure.mgmt.key_vault.v20xx_yy_zz
- A model
MyClass
from a "models" sub-module cannot be imported anymore usingazure.mgmt.key_vault.v20xx_yy_zz.models.my_class
(import fromazure.mgmt.key_vault.v20xx_yy_zz.models
works like before) - An operation class
MyClassOperations
from anoperations
sub-module cannot be imported anymore usingazure.mgmt.key_vault.v20xx_yy_zz.operations.my_class_operations
(import fromazure.mgmt.key_vault.v20xx_yy_zz.operations
works like before)
Last but not least, HTTP connection pooling is now enabled by default. You should always use a client as a context manager, or call close(), or use no more than one client per process.
1.1.0 (2018-08-07)
- Adding support for multi-api and API profiles
1.0.0 (2018-06-27)
- Moving azure-mgmt-keyvault to stable API version 2018-02-14
1.0.0b1 (2018-04-10)
- Upgraded to autorest 3.0 generated code
General Breaking changes
This version uses a next-generation code generator that might introduce breaking changes.
- Model signatures now use only keyword-argument syntax. All positional arguments must be re-written as keyword-arguments. To keep auto-completion in most cases, models are now generated for Python 2 and Python 3. Python 3 uses the "*" syntax for keyword-only arguments.
- Enum types now use the "str" mixin (class AzureEnum(str, Enum)) to
improve the behavior when unrecognized enum values are encountered.
While this is not a breaking change, the distinctions are important,
and are documented here:
https://docs.python.org/3/library/enum.html#others At a glance:
- "is" should not be used at all.
- "format" will return the string value, where "%s" string
formatting will return
NameOfEnum.stringvalue
. Format syntax should be prefered.
- New Long Running Operation:
- Return type changes from
msrestazure.azure_operation.AzureOperationPoller
tomsrest.polling.LROPoller
. External API is the same. - Return type is now always a
msrest.polling.LROPoller
, regardless of the optional parameters used. - The behavior has changed when using
raw=True
. Instead of returning the initial call result asClientRawResponse
, without polling, now this returns an LROPoller. After polling, the final resource will be returned as aClientRawResponse
. - New
polling
parameter. The default behavior isPolling=True
which will poll using ARM algorithm. WhenPolling=False
, the response of the initial call will be returned without polling. polling
parameter accepts instances of subclasses ofmsrest.polling.PollingMethod
.add_done_callback
will no longer raise if called after polling is finished, but will instead execute the callback right away.
- Return type changes from
1.0.0a2 (2018-03-28)
- Upgrading to API version 2018-02-14-preview
- Breaking change in vault create_or_update now returns a 'LROPoller' objects rather than the Vault, to allow callers to determine when the vault is ready to accept traffic. Callers should use the result() method to block until the vault is accessible.
- Adding network_acls vault property for limiting network access to a vault
- Adding managed storage account key backup, restore and soft delete support
- Adding vault property enable_purge_protection for enhance protection against vault deletion
0.40.0 (2017-06-06)
- upgrading to API version 2016-10-01
- adding keyvault management plane updates to enable the soft delete feature for a new or existing keyvault
Notes
- this contains a backwards breaking change removing the All value from KeyPermissions, SecretPermissions and CertificatePermissions
0.31.0 (2017-04-19)
Bugfixes
- Fix possible deserialization error, but updating from
list
to list when applicable
Notes
- This wheel package is now built with the azure wheel extension
0.30.1 (2016-12-15)
- Fix list Vault by subscription method return type
0.30.0 (2016-10-04)
- Initial preview release (API Version 2016-10-02)