ReadonlyalgorithmEncryption algorithm. B2's S3-compatible API only supports AES-256.
ReadonlycustomerBase64-encoded 256-bit customer key. Logged as [redacted SSE-C key] via toJSON / toString.
ReadonlycustomerBase64-encoded MD5 digest of the customer key. Required by B2 for integrity verification.
ReadonlymodeEncryption mode discriminant. Always 'SSE-C' for this class.
Hides the key bytes from JSON.stringify.
A redacted shape: same mode and algorithm, but the key and MD5 replaced with a placeholder string.
Encryption algorithm.
Always the literal redaction placeholder; the real key never leaves the instance.
Always the literal redaction placeholder; the real MD5 never leaves the instance.
Encryption mode discriminant.
Hides the key bytes from default toString().
A short opaque label indicating this is an SSE-C key.
StaticfromBuilds an EncryptionKey from precomputed base64 strings. Use this in environments where MD5 must be computed externally (e.g., browsers).
Base64-encoded 256-bit encryption key.
Base64-encoded MD5 digest of the key.
A safely-wrapped EncryptionKey ready for upload/download.
StaticfromBuilds an EncryptionKey from a raw 32-byte (256-bit) key. Computes the required base64 MD5 digest internally.
The raw 256-bit key as bytes. Must be exactly 32 bytes.
A safely-wrapped EncryptionKey ready for upload/download.
Safe wrapper around an SSE-C customer key. Hides the key bytes from
JSON.stringify,console.log, and Node'sutil.inspect. Use EncryptionKey.fromBytes to construct one from a raw 32-byte key; the MD5 digest is computed internally.