Documentation
¶
Overview ¶
Package barbican contains an implementation of the go.mozilla.org/sops/v3/keys.MasterKey interface that encrypts and decrypts the data key using OpenStack Barbican using the gophercloud sdk.
Index ¶
- type MasterKey
- func (key *MasterKey) Decrypt() ([]byte, error)
- func (key *MasterKey) Encrypt(dataKey []byte) error
- func (key *MasterKey) EncryptIfNeeded(dataKey []byte) error
- func (key *MasterKey) EncryptedDataKey() []byte
- func (key *MasterKey) NeedsRotation() bool
- func (key *MasterKey) SetEncryptedDataKey(enc []byte)
- func (key MasterKey) ToMap() map[string]interface{}
- func (key *MasterKey) ToString() string
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type MasterKey ¶
MasterKey is a GCP KMS key used to encrypt and decrypt sops' data key.
func MasterKeysFromSecretHref ¶
MasterKeysFromSecretHref takes a comma separated list of Secret Hrefs and returns a slice of new MasterKeys for them
func NewMasterKeyFromSecretHref ¶
NewMasterKeyFromSecretHref takes a Barbican Secret Href and returns a new MasterKey for that
func (*MasterKey) Decrypt ¶
Decrypt decrypts the EncryptedKey field with Barbican and returns the result.
func (*MasterKey) Encrypt ¶
Encrypt takes a sops data key, encrypts it with Barbican and stores the result in the EncryptedKey field
func (*MasterKey) EncryptIfNeeded ¶
EncryptIfNeeded encrypts the provided sops' data key and encrypts it if it hasn't been encrypted yet
func (*MasterKey) EncryptedDataKey ¶
EncryptedDataKey returns the encrypted data key this master key holds
func (*MasterKey) NeedsRotation ¶
NeedsRotation returns whether the data key needs to be rotated or not.
func (*MasterKey) SetEncryptedDataKey ¶
SetEncryptedDataKey sets the encrypted data key for this master key
Source Files