gcloud alpha kms single-tenant-hsm proposal approve

NAME
gcloud alpha kms single-tenant-hsm proposal approve - approve a single tenant HSM instance proposal
SYNOPSIS
gcloud alpha kms single-tenant-hsm proposal approve (SINGLE_TENANT_HSM_INSTANCE_PROPOSAL : --location=LOCATION --single_tenant_hsm_instance=SINGLE_TENANT_HSM_INSTANCE) (--quorum-challenge-replies=QUORUM_CHALLENGE_REPLIES --required-challenge-replies=REQUIRED_CHALLENGE_REPLIES) [GCLOUD_WIDE_FLAG]
EXAMPLES
The following command approves a single tenant HSM instance proposal with quorum challenge replies: 
gcloud alpha kms single-tenant-hsm proposal approve projects/my-project/locations/us-east1/singleTenantHsmInstances/ my_sthi/proposals/my_proposal --quorum-challenge-replies="[('signed_challenge_1.txt','public_key_1.pem'),


 ('signed_challenge_2.txt','public_key_2.pem'),
('signed_challenge_3.txt','public_key_3.pem')]"

To approve a proposal with required challenges and quorum challenges: 

gcloud alpha kms single-tenant-hsm proposal approve projects/my-project/locations/us-east1/singleTenantHsmInstances/ my_sthi/proposals/my_proposal --required-challenge-replies="[('required_challenge.txt','public_key_1.pem')]" --quorum-challenge-replies="[('quorum_challenge_1.txt','public_key_2.pem'),


 ('quorum_challenge_2.txt','public_key_3.pem')]"
POSITIONAL ARGUMENTS
SingleTenantHsmInstanceProposal resource - The KMS single tenant HSM instance proposal resource. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways.

To set the project attribute:

  • provide the argument single_tenant_hsm_instance_proposal on the command line with a fully specified name;
  • set the property core/project.

This must be specified.

SINGLE_TENANT_HSM_INSTANCE_PROPOSAL
ID of the singleTenantHsmInstanceProposal or fully qualified identifier for the singleTenantHsmInstanceProposal.

To set the proposal attribute:

  • provide the argument single_tenant_hsm_instance_proposal on the command line.

This positional argument must be specified if any of the other arguments in this group are specified.

--location=LOCATION
The Google Cloud location for the singleTenantHsmInstanceProposal.

To set the location attribute:

  • provide the argument single_tenant_hsm_instance_proposal on the command line with a fully specified name;
  • provide the argument --location on the command line.
--single_tenant_hsm_instance=SINGLE_TENANT_HSM_INSTANCE
The KMS single tenant HSM instance of the singleTenantHsmInstanceProposal.

To set the single_tenant_hsm_instance attribute:

  • provide the argument single_tenant_hsm_instance_proposal on the command line with a fully specified name;
  • provide the argument --single_tenant_hsm_instance on the command line.
REQUIRED FLAGS
Approval payload for the proposal.

At least one of these must be specified:

--quorum-challenge-replies=QUORUM_CHALLENGE_REPLIES
The challenge replies to approve the proposal. Challenge replies can be sent across multiple requests. Each tuple should be ("signed_challenge_file", "public_key_file").
--required-challenge-replies=REQUIRED_CHALLENGE_REPLIES
A list of tuples, each containing the file paths for a required challenge reply. Each tuple should be ("signed_challenge_file", "public_key_file").
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.

Run $ gcloud help for details.

NOTES
This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early access allowlist. These variants are also available: 
gcloud kms single-tenant-hsm proposal approve
 
gcloud beta kms single-tenant-hsm proposal approve