The highest tagged major version is v2.

transit

package

v0.7.1 Latest Latest Go to latest Published: Mar 4, 2022 License: MPL-2.0 Imports: 12 Imported by: 4

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/hashicorp/go-kms-wrapping

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
type TransitClient
type Wrapper
- func NewWrapper(opts *wrapping.WrapperOptions) *Wrapper

Constants ¶

View Source

const (
	EnvTransitWrapperMountPath   = "TRANSIT_WRAPPER_MOUNT_PATH"
	EnvVaultTransitSealMountPath = "VAULT_TRANSIT_SEAL_MOUNT_PATH"

	EnvTransitWrapperKeyName   = "TRANSIT_WRAPPER_KEY_NAME"
	EnvVaultTransitSealKeyName = "VAULT_TRANSIT_SEAL_KEY_NAME"

	EnvTransitWrapperDisableRenewal   = "TRANSIT_WRAPPER_DISABLE_RENEWAL"
	EnvVaultTransitSealDisableRenewal = "VAULT_TRANSIT_SEAL_DISABLE_RENEWAL"
)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type TransitClient ¶

type TransitClient struct {
	// contains filtered or unexported fields
}

func (*TransitClient) Close ¶

func (c *TransitClient) Close()

func (*TransitClient) Decrypt ¶

func (c *TransitClient) Decrypt(ciphertext []byte) ([]byte, error)

func (*TransitClient) Encrypt ¶

func (c *TransitClient) Encrypt(plaintext []byte) ([]byte, error)

func (*TransitClient) GetApiClient ¶

func (c *TransitClient) GetApiClient() *api.Client

func (*TransitClient) GetMountPath ¶

func (c *TransitClient) GetMountPath() string

type Wrapper ¶

type Wrapper struct {
	// contains filtered or unexported fields
}

Wrapper is a wrapper that leverages Vault's Transit secret engine

func NewWrapper ¶

func NewWrapper(opts *wrapping.WrapperOptions) *Wrapper

NewWrapper creates a new transit wrapper

func (*Wrapper) Decrypt ¶

func (s *Wrapper) Decrypt(_ context.Context, in *wrapping.EncryptedBlobInfo, _ []byte) (pt []byte, err error)

Decrypt is used to decrypt the ciphertext

func (*Wrapper) Encrypt ¶

func (s *Wrapper) Encrypt(_ context.Context, plaintext, aad []byte) (blob *wrapping.EncryptedBlobInfo, err error)

Encrypt is used to encrypt using Vault's Transit engine

func (*Wrapper) Finalize ¶

func (s *Wrapper) Finalize(_ context.Context) error

Finalize is called during shutdown

func (*Wrapper) GetClient ¶

func (s *Wrapper) GetClient() transitClientEncryptor

GetClient returns the transit Wrapper's transitClientEncryptor

func (*Wrapper) HMACKeyID ¶

func (s *Wrapper) HMACKeyID() string

HMACKeyID returns the last known HMAC key id

func (*Wrapper) Init ¶

func (s *Wrapper) Init(_ context.Context) error

Init is called during core.Initialize

func (*Wrapper) KeyID ¶

func (s *Wrapper) KeyID() string

KeyID returns the last known key id

func (*Wrapper) SetConfig ¶

func (s *Wrapper) SetConfig(config map[string]string) (map[string]string, error)

SetConfig processes the config info from the server config

func (*Wrapper) Type ¶

func (s *Wrapper) Type() string

Type returns the type for this particular Wrapper implementation

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
module

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL