openbao

package

v2.0.8 Latest Latest Go to latest Published: Aug 7, 2025 License: Apache-2.0 Imports: 15 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/IOTechSystems/go-mod-edge-utils

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func GetMockTokenServer(tokenDataMap *sync.Map) *httptest.Server
type Client
- func NewClient(config types.SecretConfig, requester secrets.Caller, forSecrets bool, ...) (*Client, error)
- func NewSecretsClient(ctx context.Context, config types.SecretConfig, lc log.Logger, ...) (*Client, error)
type ErrCaRootCert
- func (e ErrCaRootCert) Error() string
type ErrHTTPResponse
- func (err ErrHTTPResponse) Error() string
type TokenLookupResponse

Constants ¶

View Source

const (
	// NamespaceHeader specifies the header name to use when including Namespace information in a request.
	NamespaceHeader = "X-Vault-Namespace"
	AuthTypeHeader  = "X-Vault-Token"
)

Variables ¶

This section is empty.

Functions ¶

func GetMockTokenServer ¶

func GetMockTokenServer(tokenDataMap *sync.Map) *httptest.Server

GetMockTokenServer returns a stub http test server for dealing with token lookup-self and renew-self API calls

Types ¶

type Client ¶

type Client struct {
	Config     types.SecretConfig
	HttpCaller secrets.Caller
	// contains filtered or unexported fields
}

Client defines the behavior for interacting with the OpenBao REST secret key/value store via HTTP(S).

func NewClient ¶

func NewClient(config types.SecretConfig, requester secrets.Caller, forSecrets bool, lc log.Logger) (*Client, error)

NewClient constructs a secret store *Client which communicates with OpenBao via HTTP(S) lc is any logging client that implements the Logger interface.

func NewSecretsClient ¶

func NewSecretsClient(ctx context.Context, config types.SecretConfig, lc log.Logger, callback secrets.TokenExpiredCallback) (*Client, error)

NewSecretsClient constructs a secret store *Client which communicates with OpenBao via HTTP(S) for basic usage of secrets

func (*Client) GetSecret ¶

func (c *Client) GetSecret(secretName string, keys ...string) (map[string]string, error)

GetSecret retrieves the secret at the provided secretName that matches the specified keys.

func (*Client) GetSecretNames ¶

func (c *Client) GetSecretNames() ([]string, error)

GetSecretNames retrieves the secret names currently in service's secret store.

func (*Client) GetSelfJWT ¶

func (c *Client) GetSelfJWT(serviceKey string) (string, error)

GetSelfJWT returns an encoded JWT for the current identity-based secret store token

func (*Client) IsJWTValid ¶

func (c *Client) IsJWTValid(jwt string) (bool, error)

IsJWTValid evaluates a given JWT and returns a true/false if the JWT is valid (i.e. belongs to us and current) or not

func (*Client) SetAuthToken ¶

func (c *Client) SetAuthToken(ctx context.Context, newToken string) error

func (*Client) StoreSecret ¶

func (c *Client) StoreSecret(secretName string, secrets map[string]string) error

StoreSecret stores the secret at the provided secret name for the specified keys.

type ErrCaRootCert ¶

type ErrCaRootCert struct {
	// contains filtered or unexported fields
}

ErrCaRootCert error when the provided CA Root certificate is invalid.

func (ErrCaRootCert) Error ¶

func (e ErrCaRootCert) Error() string

type ErrHTTPResponse ¶

type ErrHTTPResponse struct {
	StatusCode int
	ErrMsg     string
}

func (ErrHTTPResponse) Error ¶

func (err ErrHTTPResponse) Error() string

type TokenLookupResponse ¶

type TokenLookupResponse struct {
	Data types.TokenMetadata
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL