luci: Index | Files

package gaesecrets

import ""

Package gaesecrets implements storage of secret blobs on top of datastore.

It is not super secure, but we have what we have: there's no other better mechanism to persistently store non-static secrets on GAE.

All secrets are global (live in default GAE namespace).


Package Files


func Use Uses

func Use(ctx context.Context, cfg *Config) context.Context

Use injects the GAE implementation of secrets.Store into the context. The context must be configured with GAE datastore implementation already.

type Config Uses

type Config struct {
    NoAutogenerate bool      // if true, GetSecret will NOT generate secrets
    SecretLen      int       // length of generated secrets, 32 bytes default
    Prefix         string    // optional prefix for entity keys to namespace them
    Entropy        io.Reader // source of random numbers, crypto rand by default

Config can be used to tweak parameters of the store. It is fine to use default values.

Package gaesecrets imports 11 packages (graph) and is imported by 2 packages. Updated 2020-12-06. Refresh now. Tools for package owners.