检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
There are two types of API request protocols: HTTP: Data is not encrypted during transmission. HTTPS: Data is encrypted during transmission. HTTPS Timeout (ms) Mandatory. API backend timeout in milliseconds. Range: 1–60,000. 5000 Click OK.
Example: Value of encryptedUserData in plaintext: '{"password":"123"}' After AES-GCM encryption: {"nonce": "ZEUOREFaiahRbMz+K9xQwA==", "header": "aGVhZGVy", "ciphertext": "SCxXsffvpU1BF2Ci8a2RedNQ", "tag": "a+EYRVPOsQ+YpQkMuFg1wA=="} ciphertext is the encrypted value.
Options: HTTP: Data is not encrypted during transmission. HTTPS: Data is encrypted during transmission. HTTPS is recommended for transmitting important or sensitive data. HTTP&HTTPS HTTPS Path Enter the API request path.
There are two types of API request protocols: HTTP: Data is not encrypted during transmission. HTTPS: Data is encrypted during transmission. HTTPS Method Mandatory. To use the WebSocket protocol, the request method must support at least GET.
Otherwise, the function execution will fail because encrypted data cannot be decrypted. Go to the IAM console and add the agency permission policy (using the default key as an example) to the function agency by referring to Configuring a Custom Policy in JSON View.
Otherwise, the function execution will fail because encrypted data cannot be decrypted. Configure the agency permission policy on the IAM console by referring to Creating a Custom Policy in JSON View. functiongraph/default (default) Click Create Function.
Otherwise, the function execution will fail because encrypted data cannot be decrypted.
Encrypted environment variables can be exported.
Otherwise, the function execution will fail because encrypted data cannot be decrypted. Go to the IAM console and add the agency permission policy (using the default key as an example) to the function agency by referring to Configuring a Custom Policy in JSON View.
To obtain the DEW endpoint, see Regions and Endpoints. dew_key_id User master key ID. input_bucket OBS bucket for storing input files. output_bucket OBS bucket for storing encrypted and uploaded files. obs_endpoint OBS endpoint.
Otherwise, the function execution will fail because encrypted data cannot be decrypted.
Commercial use Managing Function Logs 2 Encryption settings Configuration information can be encrypted for display. Commercial use Encryption Settings 3 Function running for an ultra-long period You can set the function execution time to 43,200 seconds.
User Function Configuration Encrypted environment variables Sensitive information in user code, such as the AK/SK for accessing other cloud services and the password for accessing the database, can be transferred through encrypted environment variables.
Value range: 3s–259,200s. memory_size Integer Memory size. trigger_metadata_list Array of TriggerMetadataList objects Trigger information. temp_detail TempDetail object user_data String User data. encrypted_user_data String Encrypted user data. dependencies Array of strings Dependencies
Notes and Constraints When you access Huawei Cloud through an API, you must undergo AK/SK identity authentication with the access request encrypted, and ensure that the access request is secret, complete, and correct.
Value range: 3s–259,200s. memory_size Integer Memory size. trigger_metadata_list Array of TriggerMetadataList objects Trigger information. temp_detail TempDetail object user_data String User data. encrypted_user_data String Encrypted user data. dependencies Array of strings Dependencies
User Configuration Security Sensitive information protection: If your code or configuration contains sensitive information, use encrypted environment variables to prevent sensitive information from being displayed in plaintext on the UI or in the results returned by APIs.
Table 1 Data protection technologies Technology Description Encrypted transmission All API requests and internal communications are encrypted using TLS 1.2 or later.
Preparation Create two OBS buckets to store uploaded and encrypted/decrypted files, respectively. Create an agency to delegate FunctionGraph to access OBS resources.
Encrypted If enabled, the environment variable value is encrypted and displayed as an asterisk (*). During parameter transmission, the key value is also encrypted. Encrypted and saved environment variable values will be reset to empty if the encryption is disabled.
