Retrieve the key identified by dataSubjectId, returning None if the key has been shredded.
Retrieve the key identified by dataSubjectId, returning None if the key has been shredded.
Create a SecretKey if it doesn't exist already.
Create a SecretKey if it doesn't exist already. Length of the key should be taken from akka.persistence.gdpr.key-size
If using AbstractGdprEncryption this must be an AES key.
Remove the key identified by dataSubjectId permanently.
Remove the key identified by dataSubjectId permanently.
Supports JCEKS, PKSC12
JKS is only for certificates/public key encryption.
Not intended for production use other than possibly for single node applications as it saves to a local file so won't be available for all other nodes in the cluster.
The Java Keystore API is blocking so it's important to use this from a dedicated dispatcher.