///
import { RealEncryptionResult } from './CryptoEngine';
import { ApiKeyConfig, SecureVaultOptions } from '../types';
export declare class KeyVault {
private cryptoEngine;
private encryptedVault;
private decryptedKeys;
private isLocked;
private options;
private autoLockTimer;
private lastAccessTime;
private failedAttempts;
private maxFailedAttempts;
private lockoutDuration;
constructor(options?: SecureVaultOptions);
private extractApiKey;
private normalizeApiKeys;
createVault(password: string, apiKeys: ApiKeyConfig): Promise;
loadVault(vault: RealEncryptionResult): void;
unlock(password: string): Promise;
lock(): void;
getApiKey(provider: string): string;
setApiKey(provider: string, apiKey: string, password: string): Promise;
removeApiKey(provider: string, password: string): Promise;
rotateKey(provider: string, newKey: string, options?: {
gracePeriod?: number;
password?: string;
notifyRotation?: boolean;
}): Promise;
rotateMultipleKeys(keyUpdates: Record, options?: {
password?: string;
gracePeriod?: number;
continueOnError?: boolean;
}): Promise<{
success: string[];
failed: Record;
}>;
setupKeyRotation(config: {
providers: string[];
rotationInterval: number;
keyGenerator: (provider: string) => Promise;
password: string;
}): NodeJS.Timeout;
getStatus(): {
isLocked: boolean;
hasVault: boolean;
keyCount: number;
lastAccess: Date | null;
autoLockEnabled: boolean;
failedAttempts: number;
};
getProviders(): string[];
testApiKey(provider: string): Promise;
exportVault(): RealEncryptionResult;
private lockVault;
private updateAccessTime;
private setupAutoLock;
private clearAutoLockTimer;
private validatePassword;
private calculatePasswordEntropy;
private hasWeakPatterns;
private validateApiKeys;
private sanitizeProvider;
private auditLog;
}
//# sourceMappingURL=KeyVault.d.ts.map