AWS Key Management Service
amazonaws · Cloud
Key Management Service Key Management Service (KMS) is an encryption and key management web service. This guide describes the KMS operations that you can call programmatically. For general information about KMS, see the Key Management Service Developer Guide . KMS has replaced the term customer master key (CMK) with KMS key and KMS key . The concept has not chang
Authentication
Sample Requests
Gets information about custom key stores in the account and Region. This operation is part of the <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.htm
Hover any highlighted part to learn what it does
| X-Amz-Target | TrentService.DescribeCustomKeyStores |
curl -X POST "https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.DescribeCustomKeyStores?Limit=10&Marker=example" \ -H "X-Amz-Target: TrentService.DescribeCustomKeyStores"
import requests
params = {
"Limit": "10",
"Marker": "example"
}
headers = {
"X-Amz-Target": "TrentService.DescribeCustomKeyStores"
}
response = requests.post(
"https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.DescribeCustomKeyStores",
params=params,
headers=headers,
)
print(response.json())const url = new URL('https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.DescribeCustomKeyStores');
url.searchParams.set('Limit', '10');
url.searchParams.set('Marker', 'example');
const response = await fetch(url, {
method: 'POST',
headers: {
'X-Amz-Target': 'TrentService.DescribeCustomKeyStores'
},
});
const data = await response.json();
console.log(data);package main
import (
"fmt"
"io"
"net/http"
"net/url"
)
func main() {
baseURL, _ := url.Parse("https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.DescribeCustomKeyStores")
q := baseURL.Query()
q.Set("Limit", "10")
q.Set("Marker", "example")
baseURL.RawQuery = q.Encode()
targetURL := baseURL.String()
req, _ := http.NewRequest("POST", targetURL, nil)
req.Header.Set("X-Amz-Target", "TrentService.DescribeCustomKeyStores")
client := &http.Client{}
resp, _ := client.Do(req)
defer resp.Body.Close()
body, _ := io.ReadAll(resp.Body)
fmt.Println(string(body))
}require "net/http"
require "json"
uri = URI("https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.DescribeCustomKeyStores")
uri.query = URI.encode_www_form({
"Limit" => "10",
"Marker" => "example"
})
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = uri.scheme == "https"
req = Net::HTTP::Post.new(uri)
req["X-Amz-Target"] = "TrentService.DescribeCustomKeyStores"
res = http.request(req)
puts JSON.parse(res.body)<?php
$url = "https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.DescribeCustomKeyStores?" . http_build_query([
"Limit" => "10",
"Marker" => "example"
]);
$opts = ["http" => [
"method" => "POST",
"header" => implode("\r\n", [
"X-Amz-Target: TrentService.DescribeCustomKeyStores"
]),
]];
$ctx = stream_context_create($opts);
$res = file_get_contents($url, false, $ctx);
print_r(json_decode($res, true));Gets a list of aliases in the caller's Amazon Web Services account and region. For more information about aliases, see CreateAlias . By default, the ListAliases operation returns all aliases in the account and region. To get only the aliases associated with a particular
Hover any highlighted part to learn what it does
| X-Amz-Target | TrentService.ListAliases |
curl -X POST "https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListAliases?Limit=10&Marker=example" \ -H "X-Amz-Target: TrentService.ListAliases"
import requests
params = {
"Limit": "10",
"Marker": "example"
}
headers = {
"X-Amz-Target": "TrentService.ListAliases"
}
response = requests.post(
"https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListAliases",
params=params,
headers=headers,
)
print(response.json())const url = new URL('https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListAliases');
url.searchParams.set('Limit', '10');
url.searchParams.set('Marker', 'example');
const response = await fetch(url, {
method: 'POST',
headers: {
'X-Amz-Target': 'TrentService.ListAliases'
},
});
const data = await response.json();
console.log(data);package main
import (
"fmt"
"io"
"net/http"
"net/url"
)
func main() {
baseURL, _ := url.Parse("https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListAliases")
q := baseURL.Query()
q.Set("Limit", "10")
q.Set("Marker", "example")
baseURL.RawQuery = q.Encode()
targetURL := baseURL.String()
req, _ := http.NewRequest("POST", targetURL, nil)
req.Header.Set("X-Amz-Target", "TrentService.ListAliases")
client := &http.Client{}
resp, _ := client.Do(req)
defer resp.Body.Close()
body, _ := io.ReadAll(resp.Body)
fmt.Println(string(body))
}require "net/http"
require "json"
uri = URI("https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListAliases")
uri.query = URI.encode_www_form({
"Limit" => "10",
"Marker" => "example"
})
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = uri.scheme == "https"
req = Net::HTTP::Post.new(uri)
req["X-Amz-Target"] = "TrentService.ListAliases"
res = http.request(req)
puts JSON.parse(res.body)<?php
$url = "https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListAliases?" . http_build_query([
"Limit" => "10",
"Marker" => "example"
]);
$opts = ["http" => [
"method" => "POST",
"header" => implode("\r\n", [
"X-Amz-Target: TrentService.ListAliases"
]),
]];
$ctx = stream_context_create($opts);
$res = file_get_contents($url, false, $ctx);
print_r(json_decode($res, true));Gets a list of all grants for the specified KMS key. You must specify the KMS key in all requests. You can filter the grant list by grant ID or grantee principal. For detailed information about grants, including grant terminology, see <a href="https://docs.aws.amazon.com/kms/latest
Hover any highlighted part to learn what it does
| X-Amz-Target | TrentService.ListGrants |
curl -X POST "https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListGrants?Limit=10&Marker=example" \ -H "X-Amz-Target: TrentService.ListGrants"
import requests
params = {
"Limit": "10",
"Marker": "example"
}
headers = {
"X-Amz-Target": "TrentService.ListGrants"
}
response = requests.post(
"https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListGrants",
params=params,
headers=headers,
)
print(response.json())const url = new URL('https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListGrants');
url.searchParams.set('Limit', '10');
url.searchParams.set('Marker', 'example');
const response = await fetch(url, {
method: 'POST',
headers: {
'X-Amz-Target': 'TrentService.ListGrants'
},
});
const data = await response.json();
console.log(data);package main
import (
"fmt"
"io"
"net/http"
"net/url"
)
func main() {
baseURL, _ := url.Parse("https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListGrants")
q := baseURL.Query()
q.Set("Limit", "10")
q.Set("Marker", "example")
baseURL.RawQuery = q.Encode()
targetURL := baseURL.String()
req, _ := http.NewRequest("POST", targetURL, nil)
req.Header.Set("X-Amz-Target", "TrentService.ListGrants")
client := &http.Client{}
resp, _ := client.Do(req)
defer resp.Body.Close()
body, _ := io.ReadAll(resp.Body)
fmt.Println(string(body))
}require "net/http"
require "json"
uri = URI("https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListGrants")
uri.query = URI.encode_www_form({
"Limit" => "10",
"Marker" => "example"
})
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = uri.scheme == "https"
req = Net::HTTP::Post.new(uri)
req["X-Amz-Target"] = "TrentService.ListGrants"
res = http.request(req)
puts JSON.parse(res.body)<?php
$url = "https://api.apis.guru/v2/specs/amazonaws.com/kms/2014-11-01/#X-Amz-Target=TrentService.ListGrants?" . http_build_query([
"Limit" => "10",
"Marker" => "example"
]);
$opts = ["http" => [
"method" => "POST",
"header" => implode("\r\n", [
"X-Amz-Target: TrentService.ListGrants"
]),
]];
$ctx = stream_context_create($opts);
$res = file_get_contents($url, false, $ctx);
print_r(json_decode($res, true));Postman Setup Guide
- See official documentation for authentication and setup.
What can you build with AWS Key Management Service?
AWS Key Management Service is a Cloud API. Developers commonly use cloud APIs for:
- provisioning and managing cloud infrastructure
- automating deployments and container orchestration
- monitoring uptime and performance metrics
- managing storage buckets and databases
- setting up auto-scaling and load balancing
No authentication required. This API is open — no signup or key needed. Ideal for quick prototypes and public-facing features. AWS Key Management Service is free to use, making it a low-risk choice to experiment with.
New to APIs? Read our beginner's guide · Learn about API keys · What is REST?