Goals

Provide a key rotation mechanism to allow customers to modify secret keys post-installation

Customer requirement

For the sake of the best security practices, eda-server should support a new command to re encrypt the existing data (currently the tokens of the credential model) with a new secret key.

Key rotation action replaces the key and then re-encrypts the data with the new key. 

User stories

To be defined

Impact on docs

Impact of performance

Impact on Installers