Documentation ¶
Overview ¶
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Index ¶
- Constants
- type GoogleSecretManagerClient
- type IamClient
- type ProviderGCP
- func (sm *ProviderGCP) Close(ctx context.Context) error
- func (sm *ProviderGCP) GetAllSecrets(ctx context.Context, ref esv1beta1.ExternalSecretFind) (map[string][]byte, error)
- func (sm *ProviderGCP) GetSecret(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) ([]byte, error)
- func (sm *ProviderGCP) GetSecretMap(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) (map[string][]byte, error)
- func (sm *ProviderGCP) NewClient(ctx context.Context, store esv1beta1.GenericStore, kube kclient.Client, ...) (esv1beta1.SecretsClient, error)
- func (sm *ProviderGCP) Validate() (esv1beta1.ValidationResult, error)
- func (sm *ProviderGCP) ValidateStore(store esv1beta1.GenericStore) error
Constants ¶
const (
CloudPlatformRole = "https://www.googleapis.com/auth/cloud-platform"
)
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type GoogleSecretManagerClient ¶
type GoogleSecretManagerClient interface { AccessSecretVersion(ctx context.Context, req *secretmanagerpb.AccessSecretVersionRequest, opts ...gax.CallOption) (*secretmanagerpb.AccessSecretVersionResponse, error) ListSecrets(ctx context.Context, req *secretmanagerpb.ListSecretsRequest, opts ...gax.CallOption) *secretmanager.SecretIterator Close() error }
type IamClient ¶
type IamClient interface { GenerateAccessToken(ctx context.Context, req *credentialspb.GenerateAccessTokenRequest, opts ...gax.CallOption) (*credentialspb.GenerateAccessTokenResponse, error) Close() error }
interface to GCP IAM API.
type ProviderGCP ¶
type ProviderGCP struct { SecretManagerClient GoogleSecretManagerClient // contains filtered or unexported fields }
ProviderGCP is a provider for GCP Secret Manager.
func (*ProviderGCP) GetAllSecrets ¶
func (sm *ProviderGCP) GetAllSecrets(ctx context.Context, ref esv1beta1.ExternalSecretFind) (map[string][]byte, error)
GetAllSecrets syncs multiple secrets from gcp provider into a single Kubernetes Secret.
func (*ProviderGCP) GetSecret ¶
func (sm *ProviderGCP) GetSecret(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) ([]byte, error)
GetSecret returns a single secret from the provider.
func (*ProviderGCP) GetSecretMap ¶
func (sm *ProviderGCP) GetSecretMap(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) (map[string][]byte, error)
GetSecretMap returns multiple k/v pairs from the provider.
func (*ProviderGCP) NewClient ¶
func (sm *ProviderGCP) NewClient(ctx context.Context, store esv1beta1.GenericStore, kube kclient.Client, namespace string) (esv1beta1.SecretsClient, error)
NewClient constructs a GCP Provider.
func (*ProviderGCP) Validate ¶
func (sm *ProviderGCP) Validate() (esv1beta1.ValidationResult, error)
func (*ProviderGCP) ValidateStore ¶
func (sm *ProviderGCP) ValidateStore(store esv1beta1.GenericStore) error