README
¶
vaultutil
A utility tool which uses the Haschicorp Vault API. This tool can be used to authenticate using Vault's HTTP api.
Features
- Authenticate using ldap backend
- Authenticate using userpass backend
- HTTP Api call support for custom paths
Usage
go get github.com/gobins/vaultutil
The following environment variables needs to be set for authentication
LDAP Authentication
- VAULT_LUSER
- VAULT_LPASSWORD
Userpass Authentication
- VAULT_USER
- VAULT_PASSWORD
Creating a client
client, err := GetVaultClient("userpass")
or
client, err := GetVaultClient("ldap")
client.Authenticate()
Retrieving Auth Token
token = client.GetToken()
Support
vaultutil has been tested with the following versions
- 0.6
- 0.6.1
Contributing
Please contribute by sending a pull request.
If there is an issue due to API changes, please raise an issue.
Documentation
¶
Index ¶
- Constants
- func ApplyGroupPolicy(c *vaultapi.Client, group_name, policy_name string) error
- func ApplyUserPolicy(c *vaultapi.Client, user_name, policy_name string) error
- func CreateMount(c *vaultapi.Client, mount_data MountData) error
- func CreateUpdatePolicy(c *vaultapi.Client, policy_name, policy_file string) error
- func CreateUpdateSSHKey(c *vaultapi.Client, ssh_path, key_name, key_value string) (*vaultapi.Secret, error)
- func CreateUpdateSSHRole(c *vaultapi.Client, ssh_path, role_name string, role SSHRoleData) (*vaultapi.Secret, error)
- func DeleteGroup(c *vaultapi.Client, groupname string) (*vaultapi.Secret, error)
- func DeleteMount(c *vaultapi.Client, mount_path string) error
- func DeletePolicy(c *vaultapi.Client, policy_name string) error
- func DeleteSSHKey(c *vaultapi.Client, ssh_path, key_name string) (*vaultapi.Secret, error)
- func DisableAuditBackend(c *vaultapi.Client, audit_path string) error
- func DisableAuthBackend(c *vaultapi.Client, mount_path string) error
- func DoRemount(c *vaultapi.Client, mount_path, new_mount_path string) error
- func EnableAuthBackend(c *vaultapi.Client, mount_path, authType, desc string) error
- func GetAuditBackends(c *vaultapi.Client) error
- func GetAuditHash(c *vaultapi.Client, path, data string) error
- func GetCapability(c *vaultapi.Client, token, path string) error
- func GetGroupPolicy(c *vaultapi.Client, group_name string) (*vaultapi.Secret, error)
- func GetGroups(c *vaultapi.Client) (*vaultapi.Secret, error)
- func GetKeyStatus(c *vaultapi.Client) error
- func GetLeader(c *vaultapi.Client) error
- func GetSSHRole(c *vaultapi.Client, ssh_path, role_name string) (*vaultapi.Secret, error)
- func GetSelfCapability(c *vaultapi.Client, path string) error
- func GetVaultClient(credtype string) (*vaultClient, error)
- func ListMounts(c *vaultapi.Client) (map[string]*vaultapi.MountOutput, error)
- func ReadPolicy(c *vaultapi.Client, policy_name string) (string, error)
- func RenewLease(c *vaultapi.Client, lease_id, increment_duration string) error
- func RevokeForce(c *vaultapi.Client, path string) error
- func RevokeGroupPolicy(c *vaultapi.Client, group_name string) error
- func RevokeLease(c *vaultapi.Client, lease_id string) error
- func RevokePrefix(c *vaultapi.Client, path string) error
- func RevokeUserPolicy(c *vaultapi.Client, user_name string) error
- func RotateKeys(c *vaultapi.Client) error
- func SetFileAuditBackend(c *vaultapi.Client, path, file_path string) error
- func StepDownLeader(c *vaultapi.Client) error
- type AuthHolder
- type Metadata
- type MountData
- type SSHRoleData
Constants ¶
View Source
const VaultAddress = "VAULT_ADDR"
Variables ¶
This section is empty.
Functions ¶
func ApplyGroupPolicy ¶
func ApplyUserPolicy ¶
func CreateUpdatePolicy ¶
func CreateUpdateSSHKey ¶
func CreateUpdateSSHRole ¶
func DeleteSSHKey ¶
func EnableAuthBackend ¶
func GetAuditBackends ¶
func GetGroupPolicy ¶
func GetKeyStatus ¶
func GetSSHRole ¶
func GetVaultClient ¶
func ListMounts ¶
func RotateKeys ¶
func SetFileAuditBackend ¶
func StepDownLeader ¶
Types ¶
type AuthHolder ¶
Source Files
Click to show internal directories.
Click to hide internal directories.