Documentation ¶
Index ¶
- Constants
- type Result
- type Vault
- func (v *Vault) ClearRotation(token, namespace, path string)
- func (v *Vault) CreateAndStoreChildCreationToken(token, namespace string, policyPaths []string) error
- func (v *Vault) CreateEncryptionKey(policy *config.Policy) (string, error)
- func (v *Vault) Decrypt(what, key string) string
- func (v *Vault) Encrypt(what, key string) string
- func (v *Vault) GetEncryptionKey() (string, error)
- func (v *Vault) GetToken(namespace, encryptionKey string) (string, error)
- func (v *Vault) Init() error
- func (v *Vault) Read(path, token, namespace string) (map[string]string, error)
- func (v *Vault) Rotate(path, token, search, namespace string, compromised bool, ...) []error
- func (v *Vault) Search(password, token, namespace string, results *[]Result) error
- func (v *Vault) StoreEncryptionKey(key string) error
- func (v *Vault) Unwrap(token, namespace string) (string, error)
- func (v *Vault) Wrap(what interface{}) (string, error)
Constants ¶
View Source
const ( TTL = "5m" MAX_TTL = "5m" STANDBY = "standby" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Vault ¶
type Vault struct {
// contains filtered or unexported fields
}
func NewVault ¶
func NewVault(c *config.VaultConfig) *Vault
func (*Vault) ClearRotation ¶
func (*Vault) CreateAndStoreChildCreationToken ¶
func (v *Vault) CreateAndStoreChildCreationToken(token, namespace string, policyPaths []string) error
Store an orphaned child token based on the token used to request rotation
This token will have a specific read only policy created against it but the ability to create child tokens.
func (*Vault) CreateEncryptionKey ¶
func (*Vault) GetEncryptionKey ¶
func (*Vault) Rotate ¶
func (v *Vault) Rotate(path, token, search, namespace string, compromised bool, logChannel *chan loki.SimpleMessage) []error
Rotates the contents of a path matching `search`
`search` can be either a key at a given path, or the secret value at a given path
If a match is found, the value stored at that key will be updated
func (*Vault) StoreEncryptionKey ¶
Click to show internal directories.
Click to hide internal directories.