objects

package

v0.0.0-...-a184ffb Latest Latest Go to latest Published: Jan 28, 2026 License: Apache-2.0 Imports: 4 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/retailnext/vault-init

Links

Open Source Insights

Documentation ¶

Index ¶

type Clients
type GCPAuthRoleBound
type GCPAuthTask
- func (a *GCPAuthTask) Do() (err error)
- func (a *GCPAuthTask) Set(c *Clients, task []byte) (err error)
type JWTAuthRole
type OIDCAuthTask
- func (a *OIDCAuthTask) Do() (err error)
- func (a *OIDCAuthTask) Set(c *Clients, task []byte) (err error)
type PolicyTask
- func (p *PolicyTask) Do() (err error)
- func (p *PolicyTask) Set(c *Clients, task []byte) (err error)
type SSMClient
type Task

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Clients ¶

type Clients struct {
	VaultClient   *vault.Vault
	SSMClient     SSMClient
	InitOutSecret string
}

Client setup

type GCPAuthRoleBound ¶

type GCPAuthRoleBound struct {
	RoleName        string   `yaml:"role_name"`
	ServiceAccounts []string `yaml:"service_accounts"`
	PolicyNames     []string `yaml:"policy_names"`
}

type GCPAuthTask ¶

type GCPAuthTask struct {
	AuthPath  string             `yaml:"auth_path"`
	RoleBound []GCPAuthRoleBound `yaml:"role_bound"`
	Client    *Clients
}

func (*GCPAuthTask) Do ¶

func (a *GCPAuthTask) Do() (err error)

func (*GCPAuthTask) Set ¶

func (a *GCPAuthTask) Set(c *Clients, task []byte) (err error)

type JWTAuthRole ¶

type JWTAuthRole struct {
	Name           string   `yaml:"name"`
	PolicyNames    []string `yaml:"policy_names"`
	BoundAudiences []string `yaml:"bound_audiences"`
	BoundClaimSub  string   `yaml:"bound_claim_sub"`
	UserClaim      string   `yaml:"user_claim"`
	TTL            string   `yaml:"ttl"`
}

type OIDCAuthTask ¶

type OIDCAuthTask struct {
	AuthPath         string      `yaml:"auth_path"`
	OIDCDiscoveryURL string      `yaml:"oidc_discovery_url"`
	BoundIssuer      string      `yaml:"bound_issuer"`
	Role             JWTAuthRole `yaml:"role"`
	Client           *Clients
}

== OIDC jwt auth setup task ===

func (*OIDCAuthTask) Do ¶

func (a *OIDCAuthTask) Do() (err error)

func (*OIDCAuthTask) Set ¶

func (a *OIDCAuthTask) Set(c *Clients, task []byte) (err error)

type PolicyTask ¶

type PolicyTask struct {
	Name          string `yaml:"name"`
	PolicyContent string `yaml:"policy_content"`
	Client        *Clients
}

func (*PolicyTask) Do ¶

func (p *PolicyTask) Do() (err error)

func (*PolicyTask) Set ¶

func (p *PolicyTask) Set(c *Clients, task []byte) (err error)

type SSMClient ¶

type SSMClient interface {
	GetValue(string) ([]byte, error)
	AddVersion(string, []byte) (string, error)
}

Secret client interface

type Task ¶

type Task interface {
	Do() error
	Set(c *Clients, task []byte) error
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL