age

package

v0.13.2 Latest Latest Go to latest Published: Jul 5, 2021 License: Apache-2.0, MPL-2.0 Imports: 6 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/fluxcd/kustomize-controller

Links

Open Source Insights

Documentation ¶

Index ¶

type MasterKey
- func MasterKeyFromRecipient(recipient string) (*MasterKey, error)
- func MasterKeysFromRecipients(commaSeparatedRecipients string) ([]*MasterKey, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type MasterKey ¶

type MasterKey struct {
	Identities   []string // a slice of Bech32-encoded private keys
	Recipient    string   // a Bech32-encoded public key
	EncryptedKey string   // a sops data key encrypted with age
	// contains filtered or unexported fields
}

MasterKey is an age key used to encrypt and decrypt sops' data key.

Adapted from https://github.com/mozilla/sops/blob/v3.7.0/age/keysource.go to be able to have fine-grain control over the used decryption keys without relying on the existence of file(path)s.

func MasterKeyFromRecipient ¶

func MasterKeyFromRecipient(recipient string) (*MasterKey, error)

MasterKeyFromRecipient takes a Bech32-encoded public key and returns a new MasterKey.

func MasterKeysFromRecipients ¶

func MasterKeysFromRecipients(commaSeparatedRecipients string) ([]*MasterKey, error)

MasterKeysFromRecipients takes a comma-separated list of Bech32-encoded public keys and returns a slice of new MasterKeys.

func (*MasterKey) Decrypt ¶

func (key *MasterKey) Decrypt() ([]byte, error)

Decrypt decrypts the EncryptedKey field with the age identity and returns the result.

func (*MasterKey) Encrypt ¶

func (key *MasterKey) Encrypt(datakey []byte) error

Encrypt takes a sops data key, encrypts it with age and stores the result in the EncryptedKey field.

func (*MasterKey) EncryptIfNeeded ¶

func (key *MasterKey) EncryptIfNeeded(datakey []byte) error

EncryptIfNeeded encrypts the provided sops' data key and encrypts it if it hasn't been encrypted yet.

func (*MasterKey) EncryptedDataKey ¶

func (key *MasterKey) EncryptedDataKey() []byte

EncryptedDataKey returns the encrypted data key this master key holds.

func (*MasterKey) NeedsRotation ¶

func (key *MasterKey) NeedsRotation() bool

NeedsRotation returns whether the data key needs to be rotated or not.

func (*MasterKey) SetEncryptedDataKey ¶

func (key *MasterKey) SetEncryptedDataKey(enc []byte)

SetEncryptedDataKey sets the encrypted data key for this master key.

func (*MasterKey) ToMap ¶

func (key *MasterKey) ToMap() map[string]interface{}

ToMap converts the MasterKey to a map for serialization purposes.

func (*MasterKey) ToString ¶

func (key *MasterKey) ToString() string

ToString converts the key to a string representation.

Source Files ¶

View all Source files

keysource.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL