Documentation
¶
Index ¶
- Constants
- Variables
- func GetAKeylessProvider(store esv1beta1.GenericStore) (*esv1beta1.AkeylessProvider, error)
- func SetBodyToken(t Tokener, ctx context.Context) error
- type Akeyless
- func (a *Akeyless) Close(_ context.Context) error
- func (a *Akeyless) DeleteSecret(ctx context.Context, psr esv1beta1.PushSecretRemoteRef) error
- func (a *Akeyless) GetAllSecrets(ctx context.Context, ref esv1beta1.ExternalSecretFind) (map[string][]byte, error)
- func (a *Akeyless) GetSecret(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) ([]byte, error)
- func (a *Akeyless) GetSecretMap(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) (map[string][]byte, error)
- func (a *Akeyless) PushSecret(ctx context.Context, secret *corev1.Secret, psd esv1beta1.PushSecretData) error
- func (a *Akeyless) SecretExists(ctx context.Context, ref esv1beta1.PushSecretRemoteRef) (bool, error)
- func (a *Akeyless) Validate() (esv1beta1.ValidationResult, error)
- type AkeylessCtx
- type Item
- type Provider
- type Tokener
Constants ¶
View Source
const DefServiceAccountFile = "/var/run/secrets/kubernetes.io/serviceaccount/token"
Variables ¶
View Source
var ( ErrItemNotExists = errors.New("item does not exist") ErrTokenNotExists = errors.New("token does not exist") )
Functions ¶
func GetAKeylessProvider ¶
func GetAKeylessProvider(store esv1beta1.GenericStore) (*esv1beta1.AkeylessProvider, error)
GetAKeylessProvider does the necessary nil checks and returns the akeyless provider or an error.
Types ¶
type Akeyless ¶
type Akeyless struct {
Client akeylessVaultInterface
// contains filtered or unexported fields
}
func (*Akeyless) DeleteSecret ¶ added in v0.7.0
func (*Akeyless) GetAllSecrets ¶ added in v0.5.0
func (a *Akeyless) GetAllSecrets(ctx context.Context, ref esv1beta1.ExternalSecretFind) (map[string][]byte, error)
Implements store.Client.GetAllSecrets Interface. Retrieves a all secrets with defined in ref.Name or tags.
func (*Akeyless) GetSecret ¶
func (a *Akeyless) GetSecret(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) ([]byte, error)
Implements store.Client.GetSecret Interface. Retrieves a secret with the secret name defined in ref.Name.
func (*Akeyless) GetSecretMap ¶
func (a *Akeyless) GetSecretMap(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) (map[string][]byte, error)
Implements store.Client.GetSecretMap Interface. New version of GetSecretMap.
func (*Akeyless) PushSecret ¶ added in v0.7.0
func (*Akeyless) SecretExists ¶ added in v0.9.14
type AkeylessCtx ¶ added in v0.10.4
type AkeylessCtx string
const ( ExtSecretManagedTag = "k8s-external-secrets" AkeylessToken AkeylessCtx = "AKEYLESS_TOKEN" )
type Provider ¶
type Provider struct{}
Provider satisfies the provider interface.
func (*Provider) Capabilities ¶ added in v0.7.0
func (p *Provider) Capabilities() esv1beta1.SecretStoreCapabilities
Capabilities return the provider supported capabilities (ReadOnly, WriteOnly, ReadWrite).
func (*Provider) NewClient ¶
func (p *Provider) NewClient(ctx context.Context, store esv1beta1.GenericStore, kube client.Client, namespace string) (esv1beta1.SecretsClient, error)
NewClient constructs a new secrets client based on the provided store.
func (*Provider) ValidateStore ¶ added in v0.5.0
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.