Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge: Capabilities and setSecret added back

to Yandex post beach merge with main

TODO: SetSecret currently nil, breaking tests, will
need updating once methods for it complete.

Signed-Off-By: William Young <will.young@engineerbetter.com>
Co-authored-by: Marcin Kubica <marcin.kubica@engineerbetter.com>
Co-authored-by: Dominic Meddick <dom.meddick@engineerbetter.com>
William Young 4 years ago
parent
d1647297af
commit
3c0116c5f5
4 changed files with 39 additions and 11 deletions
Split View Show Diff Stats
  1. 1 1
      apis/externalsecrets/v1beta1/provider.go
  2. 6 1
      pkg/provider/yandex/common/provider.go
  3. 14 9
      pkg/provider/yandex/common/secretsclient.go
  4. 18 0
      pkg/provider/yandex/common/secretsetter.go

+ 1 - 1
apis/externalsecrets/v1beta1/provider.go
View File 

@@ -60,7 +60,7 @@ type SecretsClient interface {
 
 	// then the secret entry will be deleted depending on the deletionPolicy.
 
 	GetSecret(ctx context.Context, ref ExternalSecretDataRemoteRef) ([]byte, error)
 
 
-	// SetSecret willl write a single secret into the provider
 
+	// SetSecret will write a single secret into the provider
 
 	SetSecret() error
 
 
 	// Validate checks if the client is configured correctly

+ 6 - 1
pkg/provider/yandex/common/provider.go
View File 

@@ -88,6 +88,7 @@ func InitYandexCloudProvider(
 
 	return provider
 
 }
 
 
+type NewSecretSetterFunc func()
 
 type AdaptInputFunc func(store esv1beta1.GenericStore) (*SecretsClientInput, error)
 
 type NewSecretGetterFunc func(ctx context.Context, apiEndpoint string, authorizedKey *iamkey.Key, caCertificate []byte) (SecretGetter, error)
 
 type NewIamTokenFunc func(ctx context.Context, apiEndpoint string, authorizedKey *iamkey.Key, caCertificate []byte) (*IamToken, error)
 
@@ -103,6 +104,10 @@ type SecretsClientInput struct {
 
 	CACertificate *esmeta.SecretKeySelector
 
 }
 
 
+func (p *YandexCloudProvider) Capabilities() esv1beta1.SecretStoreCapabilities {
 
+	return esv1beta1.SecretStoreReadOnly
 
+}
 
+
 
 // NewClient constructs a Yandex.Cloud Provider.
 
 func (p *YandexCloudProvider) NewClient(ctx context.Context, store esv1beta1.GenericStore, kube kclient.Client, namespace string) (esv1beta1.SecretsClient, error) {
 
 	input, err := p.adaptInputFunc(store)
 
@@ -177,7 +182,7 @@ func (p *YandexCloudProvider) NewClient(ctx context.Context, store esv1beta1.Gen
 
 		return nil, fmt.Errorf("failed to create IAM token: %w", err)
 
 	}
 
 
-	return &yandexCloudSecretsClient{secretGetter, iamToken.Token}, nil
 
+	return &yandexCloudSecretsClient{secretGetter, nil, iamToken.Token}, nil
 
 }
 
 
 func (p *YandexCloudProvider) getOrCreateSecretGetter(ctx context.Context, apiEndpoint string, authorizedKey *iamkey.Key, caCertificate []byte) (SecretGetter, error) {

+ 14 - 9
pkg/provider/yandex/common/secretsclient.go
View File 

@@ -26,26 +26,31 @@ var _ esv1beta1.SecretsClient = &yandexCloudSecretsClient{}
 
 // Implementation of v1beta1.SecretsClient.
 
 type yandexCloudSecretsClient struct {
 
 	secretGetter SecretGetter
 
+	secretSetter SecretSetter
 
 	iamToken     string
 
 }
 
 
-func (c *yandexCloudSecretsClient) GetAllSecrets(ctx context.Context, ref esv1beta1.ExternalSecretFind) (map[string][]byte, error) {
 
-	// TO be implemented
 
-	return nil, fmt.Errorf("GetAllSecrets not supported")
 
-}
 
-
 
 func (c *yandexCloudSecretsClient) GetSecret(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) ([]byte, error) {
 
 	return c.secretGetter.GetSecret(ctx, c.iamToken, ref.Key, ref.Version, ref.Property)
 
 }
 
 
+func (c *yandexCloudSecretsClient) SetSecret() error {
 
+	return fmt.Errorf("not implemented")
 
+}
 
+
 
+func (c *yandexCloudSecretsClient) Validate() (esv1beta1.ValidationResult, error) {
 
+	return esv1beta1.ValidationResultReady, nil
 
+}
 
+
 
 func (c *yandexCloudSecretsClient) GetSecretMap(ctx context.Context, ref esv1beta1.ExternalSecretDataRemoteRef) (map[string][]byte, error) {
 
 	return c.secretGetter.GetSecretMap(ctx, c.iamToken, ref.Key, ref.Version)
 
 }
 
 
-func (c *yandexCloudSecretsClient) Close(ctx context.Context) error {
 
-	return nil
 
+func (c *yandexCloudSecretsClient) GetAllSecrets(ctx context.Context, ref esv1beta1.ExternalSecretFind) (map[string][]byte, error) {
 
+	// TO be implemented
 
+	return nil, fmt.Errorf("GetAllSecrets not supported")
 
 }
 
 
-func (c *yandexCloudSecretsClient) Validate() (esv1beta1.ValidationResult, error) {
 
-	return esv1beta1.ValidationResultReady, nil
 
+func (c *yandexCloudSecretsClient) Close(ctx context.Context) error {
 
+	return nil
 
 }

+ 18 - 0
pkg/provider/yandex/common/secretsetter.go
View File 

@@ -0,0 +1,18 @@
 
+/*
 
+Licensed under the Apache License, Version 2.0 (the "License");
 
+you may not use this file except in compliance with the License.
 
+You may obtain a copy of the License at
 
+
 
+    http://www.apache.org/licenses/LICENSE-2.0
 
+
 
+Unless required by applicable law or agreed to in writing, software
 
+distributed under the License is distributed on an "AS IS" BASIS,
 
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 
+See the License for the specific language governing permissions and
 
+limitations under the License.
 
+*/
 
+package common
 
+
 
+type SecretSetter interface {
 
+	SetSecret() error
 
+}