luzifer/git-credential-vault
1
0
Fork 0
mirror of https://github.com/Luzifer/git-credential-vault.git synced 2024-11-09 14:50:07 +00:00
Code Issues Releases Wiki Activity
git-credential-vault/vault.go

46 lines
917 B
Go
Raw Permalink Normal View History

Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me>
2020-04-01 12:19:29 +00:00
package main
import (
"path"
"github.com/hashicorp/vault/api"
"github.com/pkg/errors"
)
Handle missing credentials gracefully Signed-off-by: Knut Ahlers <knut@ahlers.me>
2020-04-01 13:05:58 +00:00
var errNoData = errors.New("Found no data")
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me>
2020-04-01 12:19:29 +00:00
func getCredentialSetFromVault(host string) (map[string]string, error) {
client, err := api.NewClient(nil)
if err != nil {
return nil, errors.Wrap(err, "Unable to create Vault client")
}
secret, err := client.Logical().Read(path.Join(cfg.VaultPathPrefix, host))
if err != nil {
return nil, errors.Wrap(err, "Unable to fetch secret from Vault")
}
if secret == nil || secret.Data == nil {
Handle missing credentials gracefully Signed-off-by: Knut Ahlers <knut@ahlers.me>
2020-04-01 13:05:58 +00:00
return nil, errNoData
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me>
2020-04-01 12:19:29 +00:00
}
upgrade vault api and support kv2 (#1)
2022-01-22 02:15:36 +00:00
var (
out = map[string]string{}
data map[string]interface{}
ok bool
)
if data, ok = secret.Data["data"].(map[string]interface{}); !ok {
data = secret.Data
}
for k, v := range data {
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me>
2020-04-01 12:19:29 +00:00
vs, ok := v.(string)
if !ok {
return nil, errors.Errorf("Key %q contained invalid data type %T", k, v)
}
out[k] = vs
}
return out, nil
}
Reference in a new issue Copy permalink