Documentation
¶
Index ¶
- Constants
- Variables
- func CreateBucket(gcloud gke.GClouder, vaultName, bucketName string, projectID, zone string, ...) (string, error)
- func CreateVaultGCPServiceAccount(gcloud gke.GClouder, kubeClient kubernetes.Interface, ...) (string, error)
- func GetGoogleProjectID(kubeClient kubernetes.Interface, ns string) string
- func GetGoogleZone(kubeClient kubernetes.Interface, ns string) string
- type KmsConfig
Constants ¶
View Source
const (
//DefaultVaultAbbreviation is vault service accounts suffix
DefaultVaultAbbreviation = "vt"
)
Variables ¶
View Source
var (
ServiceAccountRoles = []string{"roles/storage.objectAdmin",
"roles/cloudkms.admin",
"roles/cloudkms.cryptoKeyEncrypterDecrypter",
}
)
Functions ¶
func CreateBucket ¶
func CreateBucket(gcloud gke.GClouder, vaultName, bucketName string, projectID, zone string, recreate bool, batchMode bool, handles util.IOFileHandles) (string, error)
CreateBucket Creates a bucket in GKE to store the backend (encrypted) data for vault
func CreateVaultGCPServiceAccount ¶
func CreateVaultGCPServiceAccount(gcloud gke.GClouder, kubeClient kubernetes.Interface, vaultName, namespace, clusterName, projectID string) (string, error)
CreateGCPServiceAccount creates a service account in GCP for the vault service
func GetGoogleProjectID ¶
func GetGoogleProjectID(kubeClient kubernetes.Interface, ns string) string
GetGoogleProjectID returns the Google project ID as registered in the install values during the Jenkins X install process. If the project ID cannot be read the empty string is returned.
func GetGoogleZone ¶
func GetGoogleZone(kubeClient kubernetes.Interface, ns string) string
GetGoogleZone returns the Google zone as registered in the install values during the Jenkins X install process. If the zone cannot be read the empty string is returned.
Types ¶
Source Files
Click to show internal directories.
Click to hide internal directories.