Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ErrNoClient is the error thrown when trying to create a Loader without vault.Client ErrNoClient = errors.New("No vault client provided") // ErrNoAuthProvider is the error thrown when trying to create a Loader without an AuthProvider ErrNoAuthProvider = errors.New("No auth provider given") // ErrNoSecretKey is the error thrown when trying to create a Loader without a SecretKey ErrNoSecretKey = errors.New("No secret key given") )
Functions ¶
This section is empty.
Types ¶
type AuthProvider ¶
AuthProvider is the interface for a Vault authentication provider
type Config ¶
type Config struct { // Name is the name of the loader Name string // StopOnFailure tells whether a failure to load configs should closed the config and all registered closers StopOnFailure bool // Secrets is the list of secrets to load Secrets []Secret // AuthProvider is the vault auth provider AuthProvider AuthProvider // Client is the vault client for the vault loader Client *vault.Client // MaxRetry is the maximum number of times the load method can be retried MaxRetry int // RetryDelay is the time between each retry RetryDelay time.Duration // Debug enables debug mode Debug bool // Logger is the logger used for debug logs Logger nlogger.Provider // TTLRatio is the factor to multiply the key's TTL by to deduce the moment // the Loader should ask vault for new credentials. Default value is 75. // Example: ttl = 1h, ttl * 75 / 100 = 45m, the loader will refresh key after 45m TTLRatio int // Renew sets whether the vault loader should renew it self Renew bool }
Config is the config for the Loader
type Loader ¶
type Loader struct { *kwpoll.PollWatcher // contains filtered or unexported fields }
Loader is the structure representing a Loader
func (*Loader) Load ¶
Load implements konfig.Loader interface. It fetches a token from the auth provider and sets the token in the vault client. Then it loads the secret and assigns it values to the konfig.Store.
func (*Loader) RetryDelay ¶
RetryDelay is the delay between each retry
func (*Loader) StopOnFailure ¶
StopOnFailure returns whether a load failure should stop the config and the registered closers
type LogicalClient ¶
type LogicalClient interface { Read(key string) (*vault.Secret, error) Write(key string, data map[string]interface{}) (*vault.Secret, error) ReadWithData(key string, data map[string][]string) (*vault.Secret, error) }
LogicalClient is a interface for the vault logical client
type Secret ¶
type Secret struct { // Key is the URL to fetch the secret from (e.g. /v1/database/creds/mydb) Key string // KeysPrefix sets a prefix to be prepended to all keys in the config store KeysPrefix string // Replacer transforms vault secret's keys Replacer nstrings.Replacer }
Secret is a secret to load
Click to show internal directories.
Click to hide internal directories.