jx: github.com/jenkins-x/jx/pkg/cloud/gke/vault Index | Files

package vault

import "github.com/jenkins-x/jx/pkg/cloud/gke/vault"

Index

Package Files

vault_backend.go

Constants

const (

    //DefaultVaultAbbreviation is vault service accounts suffix
    DefaultVaultAbbreviation = "vt"
)

Variables

var (
    ServiceAccountRoles = []string{"roles/storage.objectAdmin",
        "roles/cloudkms.admin",
        "roles/cloudkms.cryptoKeyEncrypterDecrypter",
    }
)

func CreateBucket Uses

func CreateBucket(gcloud gke.GClouder, vaultName, bucketName string, projectID, zone string, recreate bool, batchMode bool, in terminal.FileReader, out terminal.FileWriter, outErr io.Writer) (string, error)

CreateBucket Creates a bucket in GKE to store the backend (encrypted) data for vault

func CreateVaultGCPServiceAccount Uses

func CreateVaultGCPServiceAccount(gcloud gke.GClouder, kubeClient kubernetes.Interface, vaultName, namespace, clusterName, projectID string) (string, error)

CreateGCPServiceAccount creates a service account in GCP for the vault service

type KmsConfig Uses

type KmsConfig struct {
    Keyring  string
    Key      string
    Location string
    // contains filtered or unexported fields
}

KmsConfig keeps the configuration for Google KMS service

func CreateKmsConfig Uses

func CreateKmsConfig(gcloud gke.GClouder, vaultName, keyringName string, keyName string, projectID string) (*KmsConfig, error)

CreateKmsConfig creates a KMS config for the GKE Vault

Package vault imports 8 packages (graph) and is imported by 2 packages. Updated 2019-09-19. Refresh now. Tools for package owners.