CLI Reference¶
salt-gnupg-rotate¶
Easily rotate gnupg encryption keys of fully or partially encrypted files.
salt-gnupg-rotate [OPTIONS]
Options
- -d, --dir, --directory <directory>¶
Required The directory of encrypted data to recursively re-encrypt encrypted blocks within.
- --decryption-gpg-homedir <decryption_gpg_homedir>¶
The path of the directory of the gnupg keyring that should be used for decryption.
- Default:
'~/.gnupg'
- --encryption-gpg-homedir <encryption_gpg_homedir>¶
The path of the directory of the gnupg keyring that should be used for encryption.
- Default:
'~/.gnupg'
- -r, --recipient <recipient>¶
Required The name of the recipient key to use in the encryption keyring.
- --write¶
Write the re-encrypted data back out to disk. If not passed then no changes will be made.
- Default:
False
- -l, --log, --log-level <log_level>¶
The logging verbosity level to use
- Default:
'info'- Options:
critical | error | warning | info | debug | trace | notset
- --version¶
Show the version and exit.
- -h, --help¶
Show this message and exit.