1 year ago · e8050036ef
--- a/pkg/provider/aws/secretsmanager/secretsmanager.go
+++ b/pkg/provider/aws/secretsmanager/secretsmanager.go
@@ -193,12 +193,12 @@ func (sm *SecretsManager) handleSecretError(err error) (bool, error) {
 
				 }
			
 
				 
			
 
				 func (sm *SecretsManager) PushSecret(ctx context.Context, secret *corev1.Secret, psd esv1beta1.PushSecretData) error {
			
 
				-	if psd.GetSecretKey() == "" {
			
 
				-		return errors.New("pushing the whole secret is not yet implemented")
			
 
				+	value, err := utils.ExtractSecretData(psd, secret)
			
 
				+	if err != nil {
			
 
				+		return fmt.Errorf("failed to extract secret data: %w", err)
			
 
				 	}
			
 
				 
			
 
				 	secretName := psd.GetRemoteKey()
			
 
				-	value := secret.Data[psd.GetSecretKey()]
			
 
				 	secretValue := awssm.GetSecretValueInput{
			
 
				 		SecretId: &secretName,
			
 
				 	}
			
--- a/pkg/provider/aws/secretsmanager/secretsmanager_test.go
+++ b/pkg/provider/aws/secretsmanager/secretsmanager_test.go
@@ -466,6 +466,7 @@ func TestSetSecret(t *testing.T) {
 
				 	}
			
 
				 
			
 
				 	pushSecretDataWithoutProperty := fake.PushSecretData{SecretKey: secretKey, RemoteKey: fakeKey, Property: ""}
			
 
				+	pushSecretDataWithoutSecretKey := fake.PushSecretData{RemoteKey: fakeKey, Property: ""}
			
 
				 	pushSecretDataWithMetadata := fake.PushSecretData{SecretKey: secretKey, RemoteKey: fakeKey, Property: "", Metadata: &apiextensionsv1.JSON{
			
 
				 		Raw: []byte(`{"secretPushFormat": "string"}`),
			
 
				 	}}
			
@@ -501,6 +502,22 @@ func TestSetSecret(t *testing.T) {
 
				 				err: nil,
			
 
				 			},
			
 
				 		},
			
 
				+		"SetSecretSucceedsWithoutSecretKey": {
			
 
				+			reason: "a secret can be pushed to aws secrets manager without secret key",
			
 
				+			args: args{
			
 
				+				store: makeValidSecretStore().Spec.Provider.AWS,
			
 
				+				client: fakesm.Client{
			
 
				+					GetSecretValueWithContextFn: fakesm.NewGetSecretValueWithContextFn(secretValueOutput, nil),
			
 
				+					CreateSecretWithContextFn:   fakesm.NewCreateSecretWithContextFn(secretOutput, nil),
			
 
				+					PutSecretValueWithContextFn: fakesm.NewPutSecretValueWithContextFn(putSecretOutput, nil),
			
 
				+					DescribeSecretWithContextFn: fakesm.NewDescribeSecretWithContextFn(tagSecretOutput, nil),
			
 
				+				},
			
 
				+				pushSecretData: pushSecretDataWithoutSecretKey,
			
 
				+			},
			
 
				+			want: want{
			
 
				+				err: nil,
			
 
				+			},
			
 
				+		},
			
 
				 		"SetSecretSucceedsWithExistingSecretAndStringFormat": {
			
 
				 			reason: "a secret can be pushed to aws secrets manager when it already exists",
			
 
				 			args: args{