Soft Delete Keystore
KeyStore
Soft Delete Keystore
Soft-deletes a keystore entry, marking it as inactive and unavailable for new encryption operations while retaining key material for historical data decryption.
DELETE
Soft Delete Keystore
Description
Performs a soft delete by marking the keystore as inactive. The key material is retained in the database to allow decryption of historical data, but the keystore will not appear in active queries and cannot be used for new encryption operations.Input
- Path Parameter:
id(guid, required) — Unique identifier of the keystore to deactivate.
Output
Returns aKeystoreDeleteCommandResponse indicating the result of the deletion.
Example Request
Example Response
Errors
- 400 Bad Request — Keystore is the currently active keystore or still protecting data.
- 401 Unauthorized — Missing or invalid authentication.
- 404 Not Found — Keystore with specified ID not found.
- 500 Internal Server Error — Unexpected error during deletion.
Notes
- Do not delete keystores still protecting encrypted data.
- Keystore is marked inactive but key material is retained for historical decryption.
- Pre-deletion checklist: verify no active data uses this key, confirm data re-encryption, check not active keystore.
- Document deletion reason in audit logs.
Authorizations
The access token received from the authorization server in the OAuth 2.0 flow.
Path Parameters
The unique identifier of the keystore to deactivate.
Response
Returns success when the keystore is soft-deleted successfully.
Standard response structure containing operation status and error information. Represents the response returned after a key store entry is deleted.
True if the operation completed successfully; false if an error occurred.
Example:
true
Result code indicating the outcome of the operation.
Available options:
Unknown, Success, BadRequest, Unauthorized, NotFound, Error Example:
200
Human-readable error message when an error occurs.
Example:
null