Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Implemented function for Akeyless provider

Signed-off-by: Idowu Emehinola <hydeenoble39@gmail.com>
Idowu Emehinola 4 years ago
parent
922217d36e
commit
e86ffac960
2 changed files with 65 additions and 0 deletions
Unified View Show Diff Stats
  1. 27 0
      pkg/provider/akeyless/akeyless.go
  2. 38 0
      pkg/provider/akeyless/akeyless_test.go

+ 27 - 0
pkg/provider/akeyless/akeyless.go
View File 

@@ -71,6 +71,33 @@ func (p *Provider) NewClient(ctx context.Context, store esv1beta1.GenericStore,
 
 }
 
 }
 
 
 
 func (p *Provider) ValidateStore(store esv1beta1.GenericStore) error {
 
 func (p *Provider) ValidateStore(store esv1beta1.GenericStore) error {
 
+	storeSpec := store.GetSpec()
 
+	akeylessSpec := storeSpec.Provider.Akeyless
 
+
 
+	akeylessGWApiURL := akeylessSpec.AkeylessGWApiURL
 
+
 
+	if akeylessGWApiURL == nil {
 
+		return fmt.Errorf("Akeyless GW API URL is required ")
 
+	}
 
+
 
+	accessId := akeylessSpec.Auth.SecretRef.AccessID
 
+	err := utils.ValidateSecretSelector(store, accessId)
 
+	if err != nil {
 
+		return err
 
+	}
 
+
 
+	accessType := akeylessSpec.Auth.SecretRef.AccessType
 
+	err = utils.ValidateSecretSelector(store, accessType)
 
+	if err != nil {
 
+		return err
 
+	}
 
+
 
+	accessTypeParam := akeylessSpec.Auth.SecretRef.AccessTypeParam
 
+	err = utils.ValidateSecretSelector(store, accessTypeParam)
 
+	if err != nil {
 
+		return err
 
+	}
 
+
 
 	return nil
 
 	return nil
 
 }
 
 }

+ 38 - 0
pkg/provider/akeyless/akeyless_test.go
View File 

@@ -22,6 +22,7 @@ import (
 
 
 
 	esv1beta1 "github.com/external-secrets/external-secrets/apis/externalsecrets/v1beta1"
 
 	esv1beta1 "github.com/external-secrets/external-secrets/apis/externalsecrets/v1beta1"
 
 	fakeakeyless "github.com/external-secrets/external-secrets/pkg/provider/akeyless/fake"
 
 	fakeakeyless "github.com/external-secrets/external-secrets/pkg/provider/akeyless/fake"
 
+	esmeta "github.com/external-secrets/external-secrets/apis/meta/v1"
 
 )
 
 )
 
 
 
 type akeylessTestCase struct {
 
 type akeylessTestCase struct {
 
@@ -124,6 +125,43 @@ func TestAkeylessGetSecret(t *testing.T) {
 
 	}
 
 	}
 
 }
 
 }
 
 
 
+func TestValidateStore(t *testing.T) {
 
+	provider := Provider{}
 
+
 
+	akeylessGWApiURL := "gwapi.akeyless"
 
+
 
+	store := &esv1beta1.SecretStore{
 
+		Spec: esv1beta1.SecretStoreSpec{
 
+			Provider: &esv1beta1.SecretStoreProvider{
 
+				Akeyless: &esv1beta1.AkeylessProvider{
 
+					AkeylessGWApiURL: &akeylessGWApiURL,
 
+					Auth: &esv1beta1.AkeylessAuth{
 
+						SecretRef: esv1beta1.AkeylessAuthSecretRef{
 
+							AccessID: esmeta.SecretKeySelector{
 
+								Name: "accessId",
 
+								Key: "key-1",
 
+							},
 
+							AccessType: esmeta.SecretKeySelector{
 
+								Name: "accessId",
 
+								Key: "key-1",
 
+							},
 
+							AccessTypeParam: esmeta.SecretKeySelector{
 
+								Name: "accessId",
 
+								Key: "key-1",
 
+							},
 
+						},
 
+					},
 
+				},
 
+			},
 
+		},
 
+	}
 
+
 
+	err := provider.ValidateStore(store)
 
+	if err != nil {
 
+		t.Errorf(err.Error())
 
+	}
 
+}
 
+
 
 func TestGetSecretMap(t *testing.T) {
 
 func TestGetSecretMap(t *testing.T) {
 
 	// good case: default version & deserialization
 
 	// good case: default version & deserialization
 
 	setDeserialization := func(smtc *akeylessTestCase) {
 
 	setDeserialization := func(smtc *akeylessTestCase) {