Documentation ¶
Index ¶
- Variables
- type AuthenticatorInput
- type Provider
- func (*Provider) Capabilities() esv1beta1.SecretStoreCapabilities
- func (*Provider) Close(_ context.Context) error
- func (*Provider) DeleteSecret(_ context.Context, _ esv1beta1.PushSecretRemoteRef) error
- func (p *Provider) GetAllSecrets(_ context.Context, _ esv1beta1.ExternalSecretFind) (map[string][]byte, error)
- func (p *Provider) GetSecret(_ context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) ([]byte, error)
- func (*Provider) GetSecretMap(_ context.Context, _ esv1beta1.ExternalSecretDataRemoteRef) (map[string][]byte, error)
- func (p *Provider) NewClient(ctx context.Context, store esv1beta1.GenericStore, kube client.Client, ...) (esv1beta1.SecretsClient, error)
- func (*Provider) PushSecret(_ context.Context, _ *v1.Secret, _ esv1beta1.PushSecretData) error
- func (*Provider) SecretExists(_ context.Context, _ esv1beta1.PushSecretRemoteRef) (bool, error)
- func (p *Provider) Validate() (esv1beta1.ValidationResult, error)
- func (p *Provider) ValidateStore(store esv1beta1.GenericStore) (admission.Warnings, error)
Constants ¶
This section is empty.
Variables ¶
var (
ESOLogger = ctrl.Log.WithName("provider").WithName("beyondtrust")
)
Functions ¶
This section is empty.
Types ¶
type AuthenticatorInput ¶ added in v0.11.0
type AuthenticatorInput struct { Config *esv1beta1.BeyondtrustProvider HTTPClientObj utils.HttpClientObj BackoffDefinition *backoff.ExponentialBackOff APIURL string ClientID string ClientSecret string APIKey string Logger *logging.LogrLogger RetryMaxElapsedTimeMinutes int }
type Provider ¶
type Provider struct {
// contains filtered or unexported fields
}
Provider is a Password Safe secrets provider implementing NewClient and ValidateStore for the esv1beta1.Provider interface.
func (*Provider) Capabilities ¶
func (*Provider) Capabilities() esv1beta1.SecretStoreCapabilities
Capabilities implements v1beta1.Provider.
func (*Provider) DeleteSecret ¶
DeleteSecret implements v1beta1.SecretsClient.
func (*Provider) GetAllSecrets ¶
func (*Provider) GetSecret ¶
func (p *Provider) GetSecret(_ context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) ([]byte, error)
GetSecret reads the secret from the Password Safe server and returns it. The controller uses the value here to create the Kubernetes secret.
func (*Provider) GetSecretMap ¶
func (*Provider) GetSecretMap(_ context.Context, _ esv1beta1.ExternalSecretDataRemoteRef) (map[string][]byte, error)
GetSecretMap implements v1beta1.SecretsClient.
func (*Provider) NewClient ¶
func (p *Provider) NewClient(ctx context.Context, store esv1beta1.GenericStore, kube client.Client, namespace string) (esv1beta1.SecretsClient, error)
NewClient this is where we initialize the SecretClient and return it for the controller to use.
func (*Provider) PushSecret ¶
PushSecret implements v1beta1.SecretsClient.
func (*Provider) SecretExists ¶
func (*Provider) Validate ¶
func (p *Provider) Validate() (esv1beta1.ValidationResult, error)
Validate implements v1beta1.SecretsClient.
func (*Provider) ValidateStore ¶
ValidateStore validates the store configuration to prevent unexpected errors.