description "Store used for key based Credentials for Netconf SBP. Before a connector with key based authentication
is created it needs to have a record for the key pair it uses. All the records here need to be
encrypted as they contain sensitive data. Therefore NEVER do direct writes and only use the provided
- RPC's for adding/removing key entries.";
+ RPCs for adding/removing key entries.";
grouping keystore-entry {
list key-credential {
leaf private-key {
description "Base64 encoded private key that should be used for authentication with a netconf device.
Do not include a public key as that is calculated from the private key.
- DO NOT write this directly into the datastore, use the provided rpc's as these will
- encrypt the key before the entry is written into the datastore.";
+ DO NOT write this directly into the data store, use the provided RPCs as these will
+ encrypt the key before the entry is written into the data store.";
type string;
}
leaf passphrase {
description "If the provided key is encrypted by a passphrase this needs to be included. Leave empty
if the key does not have a passphrase.
- DO NOT write write this directly into the datastore, use the provided rpc's as these will
- encrypt the passhprase before the entry is written into the datastore.";
+ DO NOT write write this directly into the data store, use the provided RPCs as these will
+ encrypt the passphrase before the entry is written into the data store.";
type string;
}
}
grouping trusted-certificates {
list trusted-certificate {
key name;
- description "A list of trusted certificate. These cerfitifcates can be used by a server to
- authenticate clients, or by clients to authenticate servers.";
+ description "A list of trusted certificate. These certificates can be used by a server to authenticate
+ clients, or by clients to authenticate servers.";
leaf name {
type string;
}
}
rpc add-keystore-entry {
- description "Use this rpc to add a single or multiple new keys into the keystore. The private key
- and passphrase will both be encrypted before they are written into the datastore.";
+ description "Use this rpc to add a single or multiple new keys into the keystore. The private key and passphrase
+ will both be encrypted before they are written into the data store.";
input {
uses keystore-entry;
}
}
rpc remove-keystore-entry {
- description "Use this rpc to remove a single or multiple keys from the datastore.";
+ description "Use this rpc to remove a single or multiple keys from the data store.";
input {
leaf-list key-id {
type string;
}
rpc remove-private-key {
- description "Remove a list of private keys from the datastore.";
+ description "Remove a list of private keys from the data store.";
input {
leaf-list name {
type string;
}
rpc remove-trusted-certificate {
- description "Remove a list of trusted certificates from the datastore.";
+ description "Remove a list of trusted certificates from the data store.";
input {
leaf-list name {
type string;