vault

package
v0.0.3 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: May 2, 2024 License: Apache-2.0 Imports: 17 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Client

type Client interface {
	NewRequest(method, requestPath string) *vault.Request
	RawRequest(r *vault.Request) (*vault.Response, error)
	SetToken(v string)
	Token() string
	Sys() *vault.Sys
}

Client implements functionality to talk to a Vault server.

type ClientBuilder

type ClientBuilder func(namespace string, secretsLister configreader.ConfigReader,
	issuer cmapi.GenericIssuer) (Interface, error)

ClientBuilder is a function type that returns a new Interface. Can be used in tests to create a mock signer of Vault certificate requests.

type Interface

type Interface interface {
	CA() (caPEM []byte, err error)
	Sign(csrPEM []byte, duration time.Duration) (certPEM []byte, caPEM []byte, err error)
	Sys() *vault.Sys
	IsVaultInitializedAndUnsealed() error
}

Interface implements various high level functionality related to connecting with a Vault server, verifying its status and signing certificate request for Vault's certificate. TODO: Sys() is duplicated here and in Client interface

func New

func New(namespace string, secretsLister client.Reader, issuer cmapi.GenericIssuer) (Interface, error)

New returns a new Vault instance with the given namespace, issuer and secrets lister. Returned errors may be network failures and should be considered for retrying.

type Vault

type Vault struct {
	// contains filtered or unexported fields
}

Vault implements Interface and holds a Vault issuer, secrets lister and a Vault client.

func (*Vault) CA

func (v *Vault) CA() (ca []byte, err error)

func (*Vault) IsVaultInitializedAndUnsealed

func (v *Vault) IsVaultInitializedAndUnsealed() error

func (*Vault) Sign

func (v *Vault) Sign(csrPEM []byte, duration time.Duration) (cert []byte, ca []byte, err error)

Sign will connect to a Vault instance to sign a certificate signing request.

func (*Vault) Sys

func (v *Vault) Sys() *vault.Sys

Directories

Path Synopsis
Package fake contains a fake Vault signer for use in tests
Package fake contains a fake Vault signer for use in tests

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL