Documentation ¶
Overview ¶
Package vaultutil includes helper functions for communicating with Vault
Index ¶
- Constants
- func InitVaultClient(addr, roleID, secretID string) (*vault.Client, error)
- func WriteOutputs(client *vault.Client, secretInfo VaultSecret, ...) error
- func WriteVaultSecret(client *vault.Client, secretInfo VaultSecret, data map[string]interface{}) (*vault.Secret, error)
- type VaultKvData
- type VaultSecret
Constants ¶
View Source
const ( KvV1 = "KV_V1" KvV2 = "KV_V2" )
which KV engine a particular vault mount is using
Variables ¶
This section is empty.
Functions ¶
func InitVaultClient ¶
InitVaultClient sets up a Vault client that logs in using AppRole credentials
func WriteOutputs ¶
func WriteOutputs(client *vault.Client, secretInfo VaultSecret, data map[string]tfexec.OutputMeta) error
WriteOutputs takes any output values from a Terraform apply and then writes them into Vault
func WriteVaultSecret ¶
func WriteVaultSecret(client *vault.Client, secretInfo VaultSecret, data map[string]interface{}) (*vault.Secret, error)
WriteVaultSecret writes a map of KV pairs to Vault at the specified path
Types ¶
type VaultKvData ¶
type VaultKvData map[string]interface{}
VaultKvData includes KV pairings of Vault secrets
func GetVaultTfSecret ¶
func GetVaultTfSecret(client *vault.Client, secretInfo VaultSecret, kvVersion string) (VaultKvData, error)
GetVaultTfSecret retrieves the contents of a secret in Vault
type VaultSecret ¶
type VaultSecret struct { Path string `yaml:"path" json:"path"` Version int `yaml:"version" json:"version"` }
VaultSecret contains information on where to find a secret in Vault
Click to show internal directories.
Click to hide internal directories.