keyvault

package

v1.2.0 Latest Latest Go to latest Published: May 14, 2021 License: MIT Imports: 14 Imported by: 4

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

View Source

const (
	VersionID = "version_id"
)

Keyvault secret store component metadata properties

This section is empty.

func NewAzureKeyvaultSecretStore(logger logger.Logger) secretstores.SecretStore

NewAzureKeyvaultSecretStore returns a new Kubernetes secret store

type CertConfig struct {
	*auth.ClientCertificateConfig
	CertificateData []byte
}

CertConfig provides the options to get a bearer authorizer from a client certificate.

func NewCertConfig(certificatePath string, certificateBytes []byte, certificatePassword string, clientID string, tenantID string) CertConfig

NewCertConfig creates an ClientAuthorizer object configured to obtain an Authorizer through Client Credentials.

func (c CertConfig) Authorizer() (autorest.Authorizer, error)

Authorizer gets an authorizer object from client certificate.

func (c CertConfig) ServicePrincipalTokenByCertBytes() (*adal.ServicePrincipalToken, error)

ServicePrincipalTokenByCertBytes gets the service principal token by CertificateBytes.

type EnvironmentSettings struct {
	Values map[string]string
}

EnvironmentSettings hold settings to authenticate with the Key Vault.

func (s EnvironmentSettings) GetAuthorizer() (autorest.Authorizer, error)

GetAuthorizer creates an Authorizer configured from environment variables in the order: 1. Client certificate 2. MSI

func (s EnvironmentSettings) GetClientCert() (CertConfig, error)

GetClientCert creates a config object from the available certificate credentials. An error is returned if no certificate credentials are available.

func (s EnvironmentSettings) GetMSI() MSIConfig

GetMSI creates a MSI config object from the available client ID.

type MSIConfig struct {
	Resource string
	ClientID string
}

MSIConfig provides the options to get a bearer authorizer through MSI.

func NewMSIConfig() MSIConfig

NewMSIConfig creates an MSIConfig object configured to obtain an Authorizer through MSI.

func (mc MSIConfig) Authorizer() (autorest.Authorizer, error)

Authorizer gets the authorizer from MSI.