vault

package module
v1.0.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Oct 3, 2019 License: Apache-2.0 Imports: 1 Imported by: 2

README

vault (golang)

vault is developed as a go module which can be used by other go tools for data encryption or decryption.

It is designed to follow the exact spec of Ansible Vault 1.1 so the data it encrypted can be decrypted by Ansible Vault or vice versa.

Module Docs

Please refer to GoDoc

Example

package main

import (
    "fmt"

    "github.com/liangrog/vault"
)

func main() {
    plainText := "ansible vault secret 1.1"
    password  := "password123"

    // To encrypt
    secret, err := vault.Encrypt([]byte(plainText), password)
    if err != nil {
        fmt.Println(err)
    }

    fmt.Printf("%s\n", secret)


    // To decrypt
    plainSecret, err := vault.Decrypt(password, secret)
    if err != nil {
        fmt.Println(err)
    }
   
    fmt.Printf("%s\n", plainSecret)
}

The output:

$ANSIBLE_VAULT;1.1;AES256
31326233666231326135313164643631323064373739663635323861366565633666646135316631
6335613566396562323836323338313130343265363035390a653931346633376335326530323266
36616333356161613566323665323962353638383863623637316535363232326164623365396533
3962366236326661340a393665306530396536343134366464303561633661393763303134396232
35633436363033646332626334363061326332343731383535363334666665653533
ansible vault secret 1.1

Documentation

Overview

Go module vault is developed to be used by other go tools for data encryption or decryption. It is designed to follow the exact spec of Ansible Vault 1.1 so the data it encrypted can be decrypted by Ansible Vault or vice versa. The spec can be found via https://docs.ansible.com/ansible/latest/user_guide/vault.html#vault-payload-format-1-1 .

Example 

package main

import (
	"fmt"

	"github.com/liangrog/vault"
)

func main() {
	plainText := "ansible vault secret 1.1"
	password  := "password123"

	// To encrypt
	secret, err := vault.Encrypt([]byte(plainText), password)
	if err != nil {
		fmt.Println(err)
	}

	fmt.Printf("%s\n", secret)

	// To decrypt
	plainSecret, err := vault.Decrypt(password, secret)
	if err != nil {
		fmt.Println(err)
	}

	fmt.Printf("%s\n", plainSecret)
}

The Output: 

$ANSIBLE_VAULT;1.1;AES256
31326233666231326135313164643631323064373739663635323861366565633666646135316631
6335613566396562323836323338313130343265363035390a653931346633376335326530323266
36616333356161613566323665323962353638383863623637316535363232326164623365396533
3962366236326661340a393665306530396536343134366464303561633661393763303134396232
35633436363033646332626334363061326332343731383535363334666665653533
ansible vault secret 1.1

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func Decrypt 

func Decrypt(password string, data []byte) ([]byte, error)

It decrypt given byte data in ansible-vault 1.1 format using provided password into plain text.

func Encrypt 

func Encrypt(data []byte, password string) ([]byte, error)

It encrypt given byte data using provided password into ansible-vault 1.1 format.

func HasVaultHeader 

func HasVaultHeader(data []byte) bool

Check if given data has ansible vault header

Types

This section is empty.

Source Files

View all Source files

Directories

Path Synopsis
Vault package provide functions that take in plain text data or enncrypted data then encrypt and decrypt them using avcipher package.
 Vault package provide functions that take in plain text data or enncrypted data then encrypt and decrypt them using avcipher package.
The cipher package provide functions that can be used to encrypt or decrypt data that complies to Ansible Vault 1.1 specification.
 The cipher package provide functions that can be used to encrypt or decrypt data that complies to Ansible Vault 1.1 specification.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.