Documentation ¶
Overview ¶
Package cloud implements support for a generic cloud secret manager.
Index ¶
Constants ¶
const Type = "cloud"
Type is the type of secrets managed by this secrets provider
Variables ¶
This section is empty.
Functions ¶
func GenerateNewDataKey ¶
GenerateNewDataKey generates a new DataKey seeded by a fresh random 32-byte key and encrypted using the target coud key management service.
func NewCloudSecretsManagerFromState ¶
func NewCloudSecretsManagerFromState(state json.RawMessage) (secrets.Manager, error)
NewCloudSecretsManagerFromState deserialize configuration from state and returns a secrets manager that uses the target cloud key management service to encrypt/decrypt a data key used for envelope encyrtion of secrets values.
Types ¶
type Manager ¶
type Manager struct {
// contains filtered or unexported fields
}
Manager is the secrets.Manager implementation for cloud key management services
func NewCloudSecretsManager ¶
NewCloudSecretsManager returns a secrets manager that uses the target cloud key management service to encrypt/decrypt a data key used for envelope encryption of secrets values.