[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"skill-cf97043a-1c84-4ce8-9ce7-620126d78327":3,"$fdRZlL9cK6QtwyL_Cr5l_OgW9-M1tGXDULnNRjtrvDm0":43},{"id":4,"title":5,"description":6,"categoryId":7,"moduleId":8,"tags":9,"prompt":10,"icon":11,"source":12,"sourceUrl":13,"authorId":14,"authorName":15,"isPublic":16,"stars":17,"runs":18,"createdAt":19,"updatedAt":19,"module":20,"category":27,"packages":34},"cf97043a-1c84-4ce8-9ce7-620126d78327","azure-keyvault-keys-rust","Azure Key Vault 密钥 SDK for Rust。用于创建、管理和使用加密密钥。触发词：\"keyvault keys rust\"、\"KeyClient rust\"、\"create key rust\"、\"encrypt rust\"、\"sign rust\"。","cat_coding_devops","mod_coding","sickn33,coding","---\nname: azure-keyvault-keys-rust\ndescription: 'Azure Key Vault Keys SDK for Rust. Use for creating, managing, and using cryptographic keys. Triggers: \"keyvault keys rust\", \"KeyClient rust\", \"create key rust\", \"encrypt rust\", \"sign rust\".'\nrisk: unknown\nsource: community\ndate_added: '2026-02-27'\n---\n\n# Azure Key Vault Keys SDK for Rust\n\nClient library for Azure Key Vault Keys — secure storage and management of cryptographic keys.\n\n## Installation\n\n```sh\ncargo add azure_security_keyvault_keys azure_identity\n```\n\n## Environment Variables\n\n```bash\nAZURE_KEYVAULT_URL=https:\u002F\u002F\u003Cvault-name>.vault.azure.net\u002F\n```\n\n## Authentication\n\n```rust\nuse azure_identity::DeveloperToolsCredential;\nuse azure_security_keyvault_keys::KeyClient;\n\nlet credential = DeveloperToolsCredential::new(None)?;\nlet client = KeyClient::new(\n    \"https:\u002F\u002F\u003Cvault-name>.vault.azure.net\u002F\",\n    credential.clone(),\n    None,\n)?;\n```\n\n## Key Types\n\n| Type | Description |\n|------|-------------|\n| RSA | RSA keys (2048, 3072, 4096 bits) |\n| EC | Elliptic curve keys (P-256, P-384, P-521) |\n| RSA-HSM | HSM-protected RSA keys |\n| EC-HSM | HSM-protected EC keys |\n\n## Core Operations\n\n### Get Key\n\n```rust\nlet key = client\n    .get_key(\"key-name\", None)\n    .await?\n    .into_model()?;\n\nprintln!(\"Key ID: {:?}\", key.key.as_ref().map(|k| &k.kid));\n```\n\n### Create Key\n\n```rust\nuse azure_security_keyvault_keys::models::{CreateKeyParameters, KeyType};\n\nlet params = CreateKeyParameters {\n    kty: KeyType::Rsa,\n    key_size: Some(2048),\n    ..Default::default()\n};\n\nlet key = client\n    .create_key(\"key-name\", params.try_into()?, None)\n    .await?\n    .into_model()?;\n```\n\n### Create EC Key\n\n```rust\nuse azure_security_keyvault_keys::models::{CreateKeyParameters, KeyType, CurveName};\n\nlet params = CreateKeyParameters {\n    kty: KeyType::Ec,\n    curve: Some(CurveName::P256),\n    ..Default::default()\n};\n\nlet key = client\n    .create_key(\"ec-key\", params.try_into()?, None)\n    .await?\n    .into_model()?;\n```\n\n### Delete Key\n\n```rust\nclient.delete_key(\"key-name\", None).await?;\n```\n\n### List Keys\n\n```rust\nuse azure_security_keyvault_keys::ResourceExt;\nuse futures::TryStreamExt;\n\nlet mut pager = client.list_key_properties(None)?.into_stream();\nwhile let Some(key) = pager.try_next().await? {\n    let name = key.resource_id()?.name;\n    println!(\"Key: {}\", name);\n}\n```\n\n### Backup Key\n\n```rust\nlet backup = client.backup_key(\"key-name\", None).await?;\n\u002F\u002F Store backup.value safely\n```\n\n### Restore Key\n\n```rust\nuse azure_security_keyvault_keys::models::RestoreKeyParameters;\n\nlet params = RestoreKeyParameters {\n    key_bundle_backup: backup_bytes,\n};\n\nclient.restore_key(params.try_into()?, None).await?;\n```\n\n## Cryptographic Operations\n\nKey Vault can perform crypto operations without exposing the private key:\n\n```rust\n\u002F\u002F For cryptographic operations, use the key's operations\n\u002F\u002F Available operations depend on key type and permissions:\n\u002F\u002F - encrypt\u002Fdecrypt (RSA)\n\u002F\u002F - sign\u002Fverify (RSA, EC)\n\u002F\u002F - wrapKey\u002FunwrapKey (RSA)\n```\n\n## Best Practices\n\n1. **Use Entra ID auth** — `DeveloperToolsCredential` for dev, `ManagedIdentityCredential` for production\n2. **Use HSM keys for sensitive workloads** — hardware-protected keys\n3. **Use EC for signing** — more efficient than RSA\n4. **Use RSA for encryption** — when encrypting data\n5. **Backup keys** — for disaster recovery\n6. **Enable soft delete** — required for production vaults\n7. **Use key rotation** — create new versions periodically\n\n## RBAC Permissions\n\nAssign these Key Vault roles:\n- `Key Vault Crypto User` — use keys for crypto operations\n- `Key Vault Crypto Officer` — full CRUD on keys\n\n## Reference Links\n\n| Resource | Link |\n|----------|------|\n| API Reference | https:\u002F\u002Fdocs.rs\u002Fazure_security_keyvault_keys |\n| Source Code | https:\u002F\u002Fgithub.com\u002FAzure\u002Fazure-sdk-for-rust\u002Ftree\u002Fmain\u002Fsdk\u002Fkeyvault\u002Fazure_security_keyvault_keys |\n| crates.io | https:\u002F\u002Fcrates.io\u002Fcrates\u002Fazure_security_keyvault_keys |\n\n## When to Use\nThis skill is applicable to execute the workflow or actions described in the overview.\n\n## Limitations\n- Use this skill only when the task clearly matches the scope described above.\n- Do not treat the output as a substitute for environment-specific validation, testing, or expert review.\n- Stop and ask for clarification if required inputs, permissions, safety boundaries, or success criteria are missing.\n","","imported","https:\u002F\u002Fgithub.com\u002Fsickn33\u002Fantigravity-awesome-skills","user_system_seed","SkillOPIC",true,105,1456,"2026-05-16 13:06:37",{"id":8,"name":21,"slug":22,"icon":23,"description":24,"sort":25,"createdAt":26},"编程开发","coding","mdi-code-braces","代码生成、调试、审查，提升开发效率",2,"2026-05-16 12:53:40",{"id":7,"name":28,"slug":29,"icon":30,"description":31,"moduleId":8,"sort":32,"skillCount":33,"createdAt":26},"DevOps","devops","mdi-cog-outline","CI\u002FCD、容器化、部署运维",3,162,[35],{"id":36,"skillId":4,"version":37,"fileName":38,"fileSize":39,"filePath":40,"fileHash":41,"manifest":42,"createdAt":19},"d780638f-b61c-4f01-81c0-871b1c6e4a99","1.0.0","azure-keyvault-keys-rust.zip",1913,"uploads\u002Fskills\u002Fcf97043a-1c84-4ce8-9ce7-620126d78327\u002Fazure-keyvault-keys-rust.zip","a245f0c281632c805dda5bad137a78c997727f9b278b03fa8a98234ef8755834","[{\"path\":\"SKILL.md\",\"isDirectory\":false,\"size\":4371}]",{"code":44,"message":45,"data":46},200,"success",{"items":47,"stats":48,"page":51},[],{"averageRating":49,"totalRatings":49,"ratingCounts":50},0,[49,49,49,49,49],{"limit":52,"offset":49,"hasMore":53,"nextOffset":52,"ratedOnly":16},15,false]