Documentation
¶
Index ¶
- Variables
- type AuthClient
- type ClientFactory
- type Credentials
- type CredentialsProvider
- type CredentialsRenewer
- type DefaultLeaseManager
- type FileCredentialsProvider
- type FileVaultClientFactory
- type KubernetesAuthConfig
- type KubernetesVaultClientFactory
- type TLSConfig
- type VaultConfig
- type VaultCredentialsProvider
Constants ¶
This section is empty.
Variables ¶
View Source
var ErrLeaseNotFound = errors.New("lease not found or is not renewable")
View Source
var ErrPermissionDenied = errors.New("permission denied")
Functions ¶
This section is empty.
Types ¶
type AuthClient ¶ added in v0.13.0
func (*AuthClient) Save ¶ added in v0.13.0
func (a *AuthClient) Save(path string) error
type ClientFactory ¶
type ClientFactory interface {
Create() (*AuthClient, error)
}
func NewFileAuthClientFactory ¶ added in v0.13.0
func NewFileAuthClientFactory(vault *VaultConfig, path string) ClientFactory
func NewKubernetesAuthClientFactory ¶
func NewKubernetesAuthClientFactory(vault *VaultConfig, kube *KubernetesAuthConfig) ClientFactory
type Credentials ¶
func (*Credentials) Save ¶ added in v0.13.0
func (c *Credentials) Save(path string) error
type CredentialsProvider ¶
type CredentialsProvider interface {
Fetch() (*Credentials, error)
}
func NewFileCredentialsProvider ¶ added in v0.13.0
func NewFileCredentialsProvider(path string) CredentialsProvider
func NewVaultCredentialsProvider ¶ added in v0.13.0
func NewVaultCredentialsProvider(client *api.Client, secretPath string) CredentialsProvider
type CredentialsRenewer ¶
type DefaultLeaseManager ¶
type DefaultLeaseManager struct {
// contains filtered or unexported fields
}
func (*DefaultLeaseManager) Renew ¶ added in v0.13.0
func (m *DefaultLeaseManager) Renew(ctx context.Context) error
func (*DefaultLeaseManager) RevokeSelf ¶
func (m *DefaultLeaseManager) RevokeSelf(ctx context.Context)
RevokeSelf this will attempt to revoke its own token
type FileCredentialsProvider ¶ added in v0.13.0
type FileCredentialsProvider struct {
// contains filtered or unexported fields
}
func (*FileCredentialsProvider) Fetch ¶ added in v0.13.0
func (c *FileCredentialsProvider) Fetch() (*Credentials, error)
type FileVaultClientFactory ¶ added in v0.13.0
type FileVaultClientFactory struct {
// contains filtered or unexported fields
}
func (*FileVaultClientFactory) Create ¶ added in v0.13.0
func (f *FileVaultClientFactory) Create() (*AuthClient, error)
type KubernetesAuthConfig ¶
type KubernetesVaultClientFactory ¶ added in v0.13.0
type KubernetesVaultClientFactory struct {
// contains filtered or unexported fields
}
KubernetesVaultClientFactory creates a Vault client authenticated against a kubernetes service account token
func (*KubernetesVaultClientFactory) Create ¶ added in v0.13.0
func (f *KubernetesVaultClientFactory) Create() (*AuthClient, error)
Create returns a Vault client that has been authenticated with the service account token. It can be used to make other Vault requests
type VaultConfig ¶
type VaultCredentialsProvider ¶ added in v0.13.0
type VaultCredentialsProvider struct {
// contains filtered or unexported fields
}
func (*VaultCredentialsProvider) Fetch ¶ added in v0.13.0
func (c *VaultCredentialsProvider) Fetch() (*Credentials, error)
Source Files
Click to show internal directories.
Click to hide internal directories.