Documentation
¶
Index ¶
Constants ¶
View Source
const SecretTypeAccessToken = "access_token"
THIS SECRET TYPE IS DEPRECATED - future secret requests returns a response with no framework.Secret We are keeping them as part of the created framework.Secret to allow for clean up of access_token secrets and leases from older versions of Vault.
View Source
const (
SecretTypeKey = "service_account_key"
)
Variables ¶
This section is empty.
Functions ¶
Types ¶
type ImpersonatedAccount ¶ added in v0.15.0
type ImpersonatedAccount struct {
Name string
gcputil.ServiceAccountId
TokenScopes []string
Ttl int
}
type ResourceBindings ¶
ResourceBindings represent a map of GCP resource name to IAM roles to be bound on that resource.
type RoleSet ¶
type RoleSet struct {
Name string
SecretType string
RawBindings string
Bindings ResourceBindings
AccountId *gcputil.ServiceAccountId
TokenGen *TokenGenerator
}
type StaticAccount ¶ added in v0.10.1
type StaticAccount struct {
Name string
SecretType string
RawBindings string
Bindings ResourceBindings
gcputil.ServiceAccountId
TokenGen *TokenGenerator
}
type TokenGenerator ¶
TokenGenerator wraps the service account key and params required to create access tokens.
Source Files
¶
- backend.go
- field_data_utils.go
- gcp_account_resources.go
- impersonated_account.go
- path_config.go
- path_config_rotate_root.go
- path_impersonated_account.go
- path_impersonated_account_secrets.go
- path_role_set.go
- path_role_set_secrets.go
- path_static_account.go
- path_static_account_rotate_key.go
- path_static_account_secrets.go
- role_set.go
- rollback.go
- secrets_access_token.go
- secrets_service_account_key.go
- static_account.go
Directories
Click to show internal directories.
Click to hide internal directories.