Skip to main content


The Lagertha API provides a programmable interface for generating and managing cryptographic keys and their access. It is based on 5 concepts.

Applications are data domains that limit user access to their own data.

Users represent physical or software users connecting to the API. There are three types:

  • Super administrators are used to create applications, generate admin users, and monitor API logs.
  • Administrators interface software with the API, create standard users, and manage access to groups and keychains. They do not have access to encryption keys.
  • Standard users are the "physical" users of your software; they can only access their resources and can access keys to encrypt and decrypt their data.

Key_chain_groups are groups of access to keychains; they allow multiple users to access the same key. They can be created, modified, or deleted on the fly at any time to ensure secure access in all circumstances.


It is important to note that access is granted and revoked instantly. For example, if you remove access to a key from a user, even with a page refresh, they will no longer be able to access the encrypted data.

Key_chains are containers for encryption keys; they are accessible to users who are part of a group with access to that keychain. For simplicity, a keychain contains only one key.

Other concepts are implemented, such as connection sessions or key access logs to allow you to monitor and track the use of encryption keys.