azurekeyvault

package
v1.0.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Dec 3, 2018 License: MPL-2.0 Imports: 16 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AzureKeyVaultSeal

type AzureKeyVaultSeal struct {
	// contains filtered or unexported fields
}

AzureKeyVaultSeal is an auto-seal that uses Azure Key Vault for crypto operations. Azure Key Vault currently does not support keys that can encrypt long data (RSA keys). Due to this fact, we generate and AES key and wrap the key using Key Vault and store it with the data

func NewSeal

func NewSeal(logger log.Logger) *AzureKeyVaultSeal

func (*AzureKeyVaultSeal) Decrypt

Decrypt is used to decrypt the ciphertext.

func (*AzureKeyVaultSeal) Encrypt

func (v *AzureKeyVaultSeal) Encrypt(ctx context.Context, plaintext []byte) (*physical.EncryptedBlobInfo, error)

Encrypt is used to encrypt using Azure Key Vault. This returns the ciphertext, and/or any errors from this call.

func (*AzureKeyVaultSeal) Finalize

func (v *AzureKeyVaultSeal) Finalize(context.Context) error

Finalize is called during shutdown. This is a no-op.

func (*AzureKeyVaultSeal) Init

Init is called during core.Initialize. This is a no-op.

func (*AzureKeyVaultSeal) KeyID

func (v *AzureKeyVaultSeal) KeyID() string

KeyID returns the last known key id.

func (*AzureKeyVaultSeal) SealType

func (v *AzureKeyVaultSeal) SealType() string

SealType returns the seal type for this particular seal implementation.

func (*AzureKeyVaultSeal) SetConfig

func (v *AzureKeyVaultSeal) SetConfig(config map[string]string) (map[string]string, error)

SetConfig sets the fields on the AzureKeyVaultSeal object based on values from the config parameter.

Order of precedence: * Environment variable * Value from Vault configuration file * Managed Service Identity for instance

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL