Too complicated a way to upload a RSA key using the API

Frankly, extracting the components (primeP, primeQ, etc) simply from a private key stored in a PKCS#8 / PKCS#1 format is not … obvious.
Of course you can write a dedicated program but knowing that openssl is present everywhere …
openssl pkey can print these components but they are printed out as a whole block that is hexa-encoded.

  1. Why the API doesn’t accept a PKCS#8/#1 formatted key (PEM or DER encoded) as a native format?
  2. Can you suggest a simple way to extract the required parameters (prime1, prime2, modulus) from a private key (PKCS#8/#1 - encoded)?

Thank you,

1 Like

The POST /keys and PUT /keys/{KeyID} endpoints have two possible bodies: application/json and multipart/form-data. The multipart/form-data body accepts a key file in PEM encoding.