The SubtleCrypto.generateKey() method returns a Promise of a newly generated CryptoKey, for symmetrical algorithms, or a CryptoKeyPair, containing two newly generated keys, for asymmetrical algorithm, that matches the algorithm, the usages and the extractability given as parameters.
Syntax
var result = crypto.subtle.generateKey(algo, extractable, keyUsages);
Parameters
algois a dictionary object defining the key generation function to use. Supported algo are: AES-CBC,AES-CTR,AES-GCM,RSA-OAEP,AES-KW,HMAC,RSASSA-PKCS1-v1_5,ECDSA,ECDH, andDH. Format of the dictionary object is:-
"name", which corresponds to one of the supported algo's listed above, -
"modulusLength"
,which corresponds to the number of digits used in the modulus -
"publicExponent", aUint8Arrayrepresenting the public exponent -
"
hash", a dictionary object referencing the hash algorithm to use. For example:-
{name: "SHA-512"}
-
-
extractableis aBooleanindicating if the key can be extracted from theCryptoKeyobject at a later stage.keyUsagesis anArrayindicating what can be done with the newly generated key. Possible values of the array are:"encrypt", allowing the key to be used for encrypting messages."decrypt", allowing the key to be used for decrypting messages."sign", allowing the key to be used for signing messages."verify", allowing the key to be used for verifying the signature of messages."deriveKey", allowing the key to be used as a base key when deriving a new key."deriveBits", allowing the key to be used as a base key when deriving bits of data for use in cryptographic primitives."wrapKey", allowing the key to wrap a symmetric key for usage (transfer, storage) in unsecure environments."unwrapKey", allowing the key to unwrap a symmetric key for usage (transfer, storage) in unsecure environments.
Return value
resultis aPromisethat returns the generated key as aCryptoKeyor aCryptoKeyPair.
Exceptions
The promise is rejected when the following exception is encountered:
SyntaxErrorwhenkeyUsagesis empty but the generated symmetric key is of type"secret"or"private"or the generated private component of the generated asymmetric pair of key is empty.
Specifications
| Specification | Status | Comment |
|---|---|---|
| Web Cryptography API The definition of 'SubtleCrypto.generateKey()' in that specification. |
Recommendation | Initial definition. |
Browser compatibility
| Feature | Chrome | Edge | Firefox | Internet Explorer | Opera | Safari |
|---|---|---|---|---|---|---|
| Basic support | 37 | 12 | 34 32 — 341 | 112 | 24 | 7 |
| Feature | Android webview | Chrome for Android | Edge mobile | Firefox for Android | Opera Android | iOS Safari | Samsung Internet |
|---|---|---|---|---|---|---|---|
| Basic support | 37 | 37 | 12 | 34 32 — 341 | 24 | 7 | 6.0 |
1. From version 32 until version 34 (exclusive): this feature is behind the dom.webcrypto.enabled preference (needs to be set to true). To change preferences in Firefox, visit about:config.
2. Returns KeyOperation instead of Promise
See also
CryptoandCrypto.subtle.SubtleCrypto, the interface it belongs to.