Documentation
¶
Index ¶
- func DeriveKeyName(namespace string, keyname string, keyjson string) (string, error)
- func GetMetadataInfo() (string, string, error)
- func KvCreateHttpClient() *retryablehttp.Client
- func KvDeleteSecret(client *vault.Client, kv_engine string, kv_version string, secretPath string) error
- func KvGetClient(vault_addr string, namespace string, vault_approle_id string, ...) (*vault.Client, error)
- func KvGetClientPwd(configUrlStr string, configPwdStr string, AEAD_CONFIG cmap.ConcurrentMap) (*vault.Client, error)
- func KvGetClientWithApprole(vault_addr string, namespace string, vault_writer_approle_id string, ...) (*vault.Client, error)
- func KvGetSecret(client *vault.Client, kv_engine string, kv_version string, secretPath string) (*vault.KVSecret, error)
- func KvGetSecretPaths(client *vault.Client, kv_engine string, kv_version string, rootpath string) ([]string, error)
- func KvGoDoHttp(inputData map[string]interface{}, url string, method string, ...) error
- func KvPatchSecret(client *vault.Client, kv_engine string, kv_version string) (*vault.KVSecret, error)
- func KvPutSecret(client *vault.Client, kv_engine string, kv_version string, secretPath string, ...) (*vault.KVSecret, error)
- func UnwrapKeyset(client *VaultClientWrapper, encryptedKVKey EncryptedKVKey, kvTransitKey string, ...) (string, error)
- func WrapKeyset(client *VaultClientWrapper, rawKeyset string, kvTransitKey string, ...) (string, error)
- type DecryptedKVKey
- type EncryptedKVKey
- type KVOptions
- type VaultClientWrapper
- type VaultClientWrapperImpl
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func DeriveKeyName ¶
func GetMetadataInfo ¶
func KvCreateHttpClient ¶
func KvCreateHttpClient() *retryablehttp.Client
func KvDeleteSecret ¶
func KvGetClient ¶
func KvGetClientPwd ¶
func KvGetClientPwd(configUrlStr string, configPwdStr string, AEAD_CONFIG cmap.ConcurrentMap) (*vault.Client, error)
Fetches a key-value secret (kv-v2) after authenticating via AppRole.
func KvGetClientWithApprole ¶
func KvGetClientWithApprole(vault_addr string, namespace string, vault_writer_approle_id string, vault_writer_secret_id string, vault_writer_approle_name string, vault_secretgenerator_iam_role_name string) (*vault.Client, error)
Fetches a key-value secret (kv-v2) after authenticating via AppRole.
func KvGetSecret ¶
func KvGetSecretPaths ¶
func KvGoDoHttp ¶
func KvPatchSecret ¶
func KvPutSecret ¶
func UnwrapKeyset ¶
func UnwrapKeyset(client *VaultClientWrapper, encryptedKVKey EncryptedKVKey, kvTransitKey string, kvTransitEngine string) (string, error)
func WrapKeyset ¶
Types ¶
type DecryptedKVKey ¶
type DecryptedKVKey struct {
Plaintext string `json:"plaintext"`
}
func KVTransitDecrypt ¶
func KVTransitDecrypt(c *VaultClientWrapper, encrypted EncryptedKVKey, kvTransitKey string, kvTransitEngine string) (DecryptedKVKey, error)
type EncryptedKVKey ¶
type EncryptedKVKey struct {
Ciphertext string `json:"ciphertext"`
}
func KVTransitEncrypt ¶
func KVTransitEncrypt(c *VaultClientWrapper, rawKeyset string, kvTransitKey string, kvTransitEngine string) (EncryptedKVKey, error)
type KVOptions ¶
type KVOptions struct {
Vault_kv_url string
Vault_kv_active string
Vault_kv_approle_id string
Vault_kv_secret_id string
Vault_kv_engine string
Vault_kv_version string
Vault_transit_active string
Vault_transit_url string
Vault_transit_approle_id string
Vault_transit_secret_id string
Vault_transit_kv_engine string
Vault_transit_kv_version string
Vault_transit_namespace string
Vault_transit_engine string
// Vault_transit_tokenname string
Vault_transit_kek string
Vault_kv_writer_role string
Vault_secretgenerator_iam_role string
}
type VaultClientWrapper ¶
type VaultClientWrapperImpl ¶
func (VaultClientWrapperImpl) GetClient ¶
func (w VaultClientWrapperImpl) GetClient() *vault.Client
Source Files
Click to show internal directories.
Click to hide internal directories.