azurekeyvault

package

v1.1.1 Latest Latest Go to latest Published: Apr 11, 2019 License: MPL-2.0 Imports: 18 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/hashicorp/vault

Links

Open Source Insights

Documentation ¶

Index ¶

type AzureKeyVaultSeal
- func NewSeal(logger log.Logger) *AzureKeyVaultSeal

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type AzureKeyVaultSeal ¶

type AzureKeyVaultSeal struct {
	// contains filtered or unexported fields
}

AzureKeyVaultSeal is an auto-seal that uses Azure Key Vault for crypto operations. Azure Key Vault currently does not support keys that can encrypt long data (RSA keys). Due to this fact, we generate and AES key and wrap the key using Key Vault and store it with the data

func NewSeal ¶

func NewSeal(logger log.Logger) *AzureKeyVaultSeal

func (*AzureKeyVaultSeal) Decrypt ¶

func (v *AzureKeyVaultSeal) Decrypt(ctx context.Context, in *physical.EncryptedBlobInfo) (pt []byte, err error)

Decrypt is used to decrypt the ciphertext.

func (*AzureKeyVaultSeal) Encrypt ¶

func (v *AzureKeyVaultSeal) Encrypt(ctx context.Context, plaintext []byte) (blob *physical.EncryptedBlobInfo, err error)

Encrypt is used to encrypt using Azure Key Vault. This returns the ciphertext, and/or any errors from this call.

func (*AzureKeyVaultSeal) Finalize ¶

func (v *AzureKeyVaultSeal) Finalize(context.Context) error

Finalize is called during shutdown. This is a no-op.

func (*AzureKeyVaultSeal) Init ¶

func (v *AzureKeyVaultSeal) Init(context.Context) error

Init is called during core.Initialize. This is a no-op.

func (*AzureKeyVaultSeal) KeyID ¶

func (v *AzureKeyVaultSeal) KeyID() string

KeyID returns the last known key id.

func (*AzureKeyVaultSeal) SealType ¶

func (v *AzureKeyVaultSeal) SealType() string

SealType returns the seal type for this particular seal implementation.

func (*AzureKeyVaultSeal) SetConfig ¶

func (v *AzureKeyVaultSeal) SetConfig(config map[string]string) (map[string]string, error)

SetConfig sets the fields on the AzureKeyVaultSeal object based on values from the config parameter.

Order of precedence: * Environment variable * Value from Vault configuration file * Managed Service Identity for instance

Source Files ¶

View all Source files

azurekeyvault.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL