Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Tree: c2bcceb057
Branches Tags
helm-externa...
/
apis
/
externalsecrets
/
v1beta1
/
provider.go

provider.go 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. /*
    2. 

  2. Licensed under the Apache License, Version 2.0 (the "License");
    3. 

  3. you may not use this file except in compliance with the License.
    4. 

  4. You may obtain a copy of the License at
    5. 

  5. 

  6.     http://www.apache.org/licenses/LICENSE-2.0
    7. 

  7. 

  8. Unless required by applicable law or agreed to in writing, software
    9. 

  9. distributed under the License is distributed on an "AS IS" BASIS,
    10. 

  10. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    11. 

  11. See the License for the specific language governing permissions and
    12. 

  12. limitations under the License.
    13. 

  13. */
    14. 

  14. 

  15. package v1beta1
    16. 

  16. 

  17. import (
    18. 

  18. 	"context"
    19. 

  19. 

  20. 	"sigs.k8s.io/controller-runtime/pkg/client"
    21. 

  21. )
    22. 

  22. 

  23. // +kubebuilder:object:root=false
    24. 

  24. // +kubebuilder:object:generate:false
    25. 

  25. // +k8s:deepcopy-gen:interfaces=nil
    26. 

  26. // +k8s:deepcopy-gen=nil
    27. 

  27. 

  28. // Provider is a common interface for interacting with secret backends.
    29. 

  29. type Provider interface {
    30. 

  30. 	// NewClient constructs a SecretsManager Provider
    31. 

  31. 	NewClient(ctx context.Context, store GenericStore, kube client.Client, namespace string) (SecretsClient, error)
    32. 

  32. 

  33. 	// ValidateStore checks if the provided store is valid
    34. 

  34. 	ValidateStore(store GenericStore) error
    35. 

  35. }
    36. 

  36. 

  37. // +kubebuilder:object:root=false
    38. 

  38. // +kubebuilder:object:generate:false
    39. 

  39. // +k8s:deepcopy-gen:interfaces=nil
    40. 

  40. // +k8s:deepcopy-gen=nil
    41. 

  41. 

  42. // SecretsClient provides access to secrets.
    43. 

  43. type SecretsClient interface {
    44. 

  44. 	// GetSecret returns a single secret from the provider
    45. 

  45. 	// if GetSecret returns an error with type NoSecretError
    46. 

  46. 	// then the secret entry will be deleted depending on the deletionPolicy.
    47. 

  47. 	GetSecret(ctx context.Context, ref ExternalSecretDataRemoteRef) ([]byte, error)
    48. 

  48. 

  49. 	// Validate checks if the client is configured correctly
    50. 

  50. 	// and is able to retrieve secrets from the provider
    51. 

  51. 	Validate() error
    52. 

  52. 

  53. 	// GetSecretMap returns multiple k/v pairs from the provider
    54. 

  54. 	GetSecretMap(ctx context.Context, ref ExternalSecretDataRemoteRef) (map[string][]byte, error)
    55. 

  55. 

  56. 	// GetAllSecrets returns multiple k/v pairs from the provider
    57. 

  57. 	GetAllSecrets(ctx context.Context, ref ExternalSecretFind) (map[string][]byte, error)
    58. 

  58. 

  59. 	Close(ctx context.Context) error
    60. 

  60. }
    61. 

  61. 

  62. var NoSecretErr = NoSecretError{}
    63. 

  63. 

  64. // NoSecretError shall be returned when a GetSecret can not find the
    65. 

  65. // desired secret. This is used for deletionPolicy.
    66. 

  66. type NoSecretError struct{}
    67. 

  67. 

  68. func (NoSecretError) Error() string {
    69. 

  69. 	return "Secret does not exist"
    70. 

  70. }
    71.