`tm_rsadecrypt` Function

tm_rsadecrypt decrypts an RSA-encrypted ciphertext, returning the corresponding cleartext.

hcl

tm_rsadecrypt(ciphertext, privatekey)

ciphertext must be a base64-encoded representation of the ciphertext, using the PKCS #1 v1.5 padding scheme. Terraform uses the "standard" Base64 alphabet as defined in RFC 4648 section 4.

privatekey must be a PEM-encoded RSA private key that is not itself encrypted.

Terramate has no corresponding function for encrypting a message. Use this function to decrypt ciphertexts returned by remote services using a keypair negotiated out-of-band.

Examples

tm_rsadecrypt(tm_filebase64("${terramate.stack.path.to_root}/ciphertext"), tm_file("privatekey.pem"))
Hello, world!

Stacks

Orchestration

Change Detection

CI/CD

GitHub Actions

GitLab CI

Bitbucket Pipelines

Code Generation

Resources

Stacks Inventory

Pull Request Previews

Deployments

Drift Management

GitHub

Profile

Organization

Variable Namespaces

Functions

Terramate

Numeric Functions

String Functions

Collection Functions

Encoding Functions

Filesystem Functions

Date and Time Functions

Hash and Crypto Functions

IP Network Functions

Type Conversion Functions

CLI Commands

Stacks and Orchestration

Terramate Scripts

Code Generation

Terramate Cloud

Misc

Experimental

`tm_rsadecrypt` Function

Examples

Change Detection

GitHub Actions

GitLab CI

Bitbucket Pipelines

GitHub

tm_rsadecrypt Function ​

Examples ​

`tm_rsadecrypt` Function

Examples