secretutil

package

v1.0.0-alpha.20 Latest Latest Go to latest Published: Jun 28, 2022 License: Apache-2.0 Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/syself/cluster-api-provider-hetzner

Documentation ¶

Overview ¶

Package secretutil contains functions to manage secrets and strategies to manage secret cache.

Index ¶

Constants
func AddSecretSelector(selectors cache.SelectorsByObject) cache.SelectorsByObject
type HCloudTokenValidationError
- func (e HCloudTokenValidationError) Error() string
type ResolveSecretRefError
- func (e ResolveSecretRefError) Error() string
type SecretManager
- func NewSecretManager(log logr.Logger, cacheClient client.Client, apiReader client.Reader) *SecretManager

Constants ¶

View Source

const (
	// LabelEnvironmentName is used as key of the label for secrets that should be included in cache.
	LabelEnvironmentName = "caph.environment"
	// LabelEnvironmentValue is the value of the label for secrets that should be included in cache.
	LabelEnvironmentValue = "owned"
)

View Source

const (
	// SecretFinalizer is the finalizer for secrets.
	SecretFinalizer = infrav1.ClusterFinalizer + "/secret"
)

Variables ¶

This section is empty.

Functions ¶

func AddSecretSelector ¶

func AddSecretSelector(selectors cache.SelectorsByObject) cache.SelectorsByObject

AddSecretSelector adds a selector to a cache.SelectorsByObject that filters Secrets so that only those labelled as part of the environment get cached. The input may be nil.

Types ¶

type HCloudTokenValidationError ¶

type HCloudTokenValidationError struct{}

HCloudTokenValidationError is returned when the HCloud token in Hetzner secret is invalid.

func (HCloudTokenValidationError) Error ¶

func (e HCloudTokenValidationError) Error() string

type ResolveSecretRefError ¶

type ResolveSecretRefError struct {
	Message string
}

ResolveSecretRefError is returned when the secret for a host is defined but cannot be found.

func (ResolveSecretRefError) Error ¶

func (e ResolveSecretRefError) Error() string

type SecretManager ¶

type SecretManager struct {
	// contains filtered or unexported fields
}

SecretManager is a type for fetching Secrets whether or not they are in the client cache, labelling so that they will be included in the client cache, and optionally setting an owner reference.

func NewSecretManager ¶

func NewSecretManager(log logr.Logger, cacheClient client.Client, apiReader client.Reader) *SecretManager

NewSecretManager returns a new SecretManager.

func (*SecretManager) AcquireSecret ¶

func (sm *SecretManager) AcquireSecret(ctx context.Context, key types.NamespacedName, owner client.Object, ownerIsController, addFinalizer bool) (*corev1.Secret, error)

AcquireSecret retrieves a Secret and ensures that it has a label that will ensure it is present in the cache (and that we can watch for changes), and that it has a particular owner reference. The owner reference may optionally be a controller reference.

func (*SecretManager) ObtainSecret ¶

func (sm *SecretManager) ObtainSecret(ctx context.Context, key types.NamespacedName) (*corev1.Secret, error)

ObtainSecret retrieves a Secret and ensures that it has a label that will ensure it is present in the cache (and that we can watch for changes).

func (*SecretManager) ReleaseSecret ¶

func (sm *SecretManager) ReleaseSecret(ctx context.Context, secret *corev1.Secret) error

ReleaseSecret removes secrets manager finalizer from specified secret when needed.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL