kms

package

v0.0.0-...-73ee695 Latest Latest Go to latest Published: Aug 6, 2024 License: Apache-2.0 Imports: 24 Imported by: 0

Documentation ¶

Index ¶

Constants
Variables
func NewDedicateKMSClient(ctx context.Context, store *v1alpha1.SecretStore, kube client.Client) (*dkms.Client, error)
func NewProvider(opts *backend.ProviderOptions)
func NewShareKMSClient(ctx context.Context, store *v1alpha1.SecretStore, kube client.Client, ...) (*kms.Client, error)
func RewriteRegexp(operation v1alpha1.ReplaceRule, in map[string]string) (map[string]string, error)
type KMSClient
type Manager
- func NewManager(region string) *Manager
type Provider

Constants ¶

const (
	RamRoleARNAuthType = "ram_role_arn"
	AKAuthType         = "access_key"
	EcsRamRoleAuthType = "ecs_ram_role"
	OidcAuthType       = "oidc_role_arn"
)

View Source

const (
	ProviderName = "kms"

	HTTPS = "https"
)

View Source

const (
	REJECTED_THROTTLING           = "Rejected.Throttling"
	SERVICE_UNAVAILABLE_TEMPORARY = "ServiceUnavailableTemporary"
	INTERNAL_FAILURE              = "InternalFailure"
)

Variables ¶

View Source

var (
	BACKOFF_DEFAULT_RETRY_INTERVAL = time.Second
	BACKOFF_DEFAULT_CAPACITY       = time.Duration(10) * time.Second
)

Functions ¶

func NewDedicateKMSClient ¶

func NewDedicateKMSClient(ctx context.Context, store *v1alpha1.SecretStore, kube client.Client) (*dkms.Client, error)

func NewProvider ¶

func NewProvider(opts *backend.ProviderOptions)

func NewShareKMSClient ¶

func NewShareKMSClient(ctx context.Context, store *v1alpha1.SecretStore, kube client.Client, region string, p *Provider) (*kms.Client, error)

func RewriteRegexp ¶

func RewriteRegexp(operation v1alpha1.ReplaceRule, in map[string]string) (map[string]string, error)

RewriteRegexp rewrites a single Regexp Rewrite Operation.

Types ¶

type KMSClient ¶

type KMSClient struct {
	// contains filtered or unexported fields
}

Client interface represent a backend client interface that should be implemented

func (*KMSClient) GetExternalSecret ¶

func (c *KMSClient) GetExternalSecret(ctx context.Context, data *v1alpha1.DataSource, kube client.Client) (map[string][]byte, error)

func (*KMSClient) GetExternalSecretWithExtract ¶

func (c *KMSClient) GetExternalSecretWithExtract(ctx context.Context, data *v1alpha1.DataProcess, kube client.Client) (map[string][]byte, error)

func (*KMSClient) GetName ¶

func (c *KMSClient) GetName() string

type Manager ¶

type Manager struct {
	// contains filtered or unexported fields
}

func NewManager ¶

func NewManager(region string) *Manager

func (*Manager) Delete ¶

func (m *Manager) Delete(clientName string)

func (*Manager) GetClient ¶

func (m *Manager) GetClient(clientName string) (backendin.SecretClient, error)

func (*Manager) Register ¶

func (m *Manager) Register(clientName string, client backendin.SecretClient)

func (*Manager) RegisterRamProvider ¶

func (m *Manager) RegisterRamProvider(clientName string, stopper provider.Stopper)

func (*Manager) StopProvider ¶

func (m *Manager) StopProvider(clientName string)

type Provider ¶

type Provider struct {
	*Manager
	// contains filtered or unexported fields
}

Provider provides the ability to generate kms clients and manage kms clients

func (*Provider) GetName ¶

func (p *Provider) GetName() string

func (*Provider) GetRegion ¶

func (p *Provider) GetRegion() string

func (*Provider) NewClient ¶

func (p *Provider) NewClient(ctx context.Context, store *v1alpha1.SecretStore, kube client.Client) (backend.SecretClient, error)

func (*Provider) NewClientByENV ¶

func (p *Provider) NewClientByENV(ctx context.Context, region string) (backend.SecretClient, error)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL