git-credential-vault/vault.go

package main

import (
	"path"

	"github.com/hashicorp/vault/api"
	"github.com/pkg/errors"
)

func getCredentialSetFromVault(host string) (map[string]string, error) {
	client, err := api.NewClient(nil)
	if err != nil {
		return nil, errors.Wrap(err, "Unable to create Vault client")
	}

	secret, err := client.Logical().Read(path.Join(cfg.VaultPathPrefix, host))
	if err != nil {
		return nil, errors.Wrap(err, "Unable to fetch secret from Vault")
	}

	if secret == nil || secret.Data == nil {
		return nil, errors.New("Found no data")
	}

	var out = map[string]string{}
	for k, v := range secret.Data {
		vs, ok := v.(string)
		if !ok {
			return nil, errors.Errorf("Key %q contained invalid data type %T", k, v)
		}

		out[k] = vs
	}

	return out, nil
}
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2020-04-01 12:19:29 +00:00			`package main`

			`import (`
			`"path"`

			`"github.com/hashicorp/vault/api"`
			`"github.com/pkg/errors"`
			`)`

			`func getCredentialSetFromVault(host string) (map[string]string, error) {`
			`client, err := api.NewClient(nil)`
			`if err != nil {`
			`return nil, errors.Wrap(err, "Unable to create Vault client")`
			`}`

			`secret, err := client.Logical().Read(path.Join(cfg.VaultPathPrefix, host))`
			`if err != nil {`
			`return nil, errors.Wrap(err, "Unable to fetch secret from Vault")`
			`}`

			`if secret == nil \|\| secret.Data == nil {`
			`return nil, errors.New("Found no data")`
			`}`

			`var out = map[string]string{}`
			`for k, v := range secret.Data {`
			`vs, ok := v.(string)`
			`if !ok {`
			`return nil, errors.Errorf("Key %q contained invalid data type %T", k, v)`
			`}`

			`out[k] = vs`
			`}`

			`return out, nil`
			`}`