vault

package

v0.0.3 Latest Latest Go to latest Published: May 2, 2024 License: Apache-2.0 Imports: 17 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubeops/csi-driver-cacerts

Links

Open Source Insights

Documentation ¶

Index ¶

type Client
type ClientBuilder
type Interface
- func New(namespace string, secretsLister client.Reader, issuer cmapi.GenericIssuer) (Interface, error)
type Vault

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Client ¶

type Client interface {
	NewRequest(method, requestPath string) *vault.Request
	RawRequest(r *vault.Request) (*vault.Response, error)
	SetToken(v string)
	Token() string
	Sys() *vault.Sys
}

Client implements functionality to talk to a Vault server.

type ClientBuilder ¶

type ClientBuilder func(namespace string, secretsLister configreader.ConfigReader,
	issuer cmapi.GenericIssuer) (Interface, error)

ClientBuilder is a function type that returns a new Interface. Can be used in tests to create a mock signer of Vault certificate requests.

type Interface ¶

type Interface interface {
	CA() (caPEM []byte, err error)
	Sign(csrPEM []byte, duration time.Duration) (certPEM []byte, caPEM []byte, err error)
	Sys() *vault.Sys
	IsVaultInitializedAndUnsealed() error
}

Interface implements various high level functionality related to connecting with a Vault server, verifying its status and signing certificate request for Vault's certificate. TODO: Sys() is duplicated here and in Client interface

func New ¶

func New(namespace string, secretsLister client.Reader, issuer cmapi.GenericIssuer) (Interface, error)

New returns a new Vault instance with the given namespace, issuer and secrets lister. Returned errors may be network failures and should be considered for retrying.

type Vault ¶

type Vault struct {
	// contains filtered or unexported fields
}

Vault implements Interface and holds a Vault issuer, secrets lister and a Vault client.

func (*Vault) CA ¶

func (v *Vault) CA() (ca []byte, err error)

func (*Vault) IsVaultInitializedAndUnsealed ¶

func (v *Vault) IsVaultInitializedAndUnsealed() error

func (*Vault) Sign ¶

func (v *Vault) Sign(csrPEM []byte, duration time.Duration) (cert []byte, ca []byte, err error)

Sign will connect to a Vault instance to sign a certificate signing request.

func (*Vault) Sys ¶

func (v *Vault) Sys() *vault.Sys

Source Files ¶

View all Source files

vault.go

Directories ¶

Path	Synopsis
fake Package fake contains a fake Vault signer for use in tests	Package fake contains a fake Vault signer for use in tests

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL