Главная Обзор Помощь
Вход
logic855
/
helm-external-secrets
зеркало из https://github.com/external-secrets/external-secrets
1
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: f11995789a
Ветки Метки
helm-external-s...
/
runtime
/
decoding
/
decoding.go

decoding.go 2.1 KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273 
  1. /*
    2. 

  2. Copyright © The ESO Authors
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     https://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. // Package decoding provides helpers for decoding ExternalSecret values.
    18. 

  18. package decoding
    19. 

  19. 

  20. import (
    21. 

  21. 	"encoding/base64"
    22. 

  22. 	"fmt"
    23. 

  23. 

  24. 	esv1 "github.com/external-secrets/external-secrets/apis/externalsecrets/v1"
    25. 

  25. )
    26. 

  26. 

  27. // DecodeMap decodes values from a secretMap.
    28. 

  28. func DecodeMap(strategy esv1.ExternalSecretDecodingStrategy, in map[string][]byte) (map[string][]byte, error) {
    29. 

  29. 	out := make(map[string][]byte, len(in))
    30. 

  30. 	for k, v := range in {
    31. 

  31. 		val, err := Decode(strategy, v)
    32. 

  32. 		if err != nil {
    33. 

  33. 			return nil, fmt.Errorf("failure decoding key %v: %w", k, err)
    34. 

  34. 		}
    35. 

  35. 		out[k] = val
    36. 

  36. 	}
    37. 

  37. 	return out, nil
    38. 

  38. }
    39. 

  39. 

  40. // Decode decodes the input byte slice according to the provided decoding strategy.
    41. 

  41. func Decode(strategy esv1.ExternalSecretDecodingStrategy, in []byte) ([]byte, error) {
    42. 

  42. 	switch strategy {
    43. 

  43. 	case esv1.ExternalSecretDecodeBase64:
    44. 

  44. 		out, err := base64.StdEncoding.DecodeString(string(in))
    45. 

  45. 		if err != nil {
    46. 

  46. 			return nil, err
    47. 

  47. 		}
    48. 

  48. 		return out, nil
    49. 

  49. 	case esv1.ExternalSecretDecodeBase64URL:
    50. 

  50. 		out, err := base64.URLEncoding.DecodeString(string(in))
    51. 

  51. 		if err != nil {
    52. 

  52. 			return nil, err
    53. 

  53. 		}
    54. 

  54. 		return out, nil
    55. 

  55. 	case esv1.ExternalSecretDecodeNone:
    56. 

  56. 		return in, nil
    57. 

  57. 	// default when stored version is v1alpha1
    58. 

  58. 	case "":
    59. 

  59. 		return in, nil
    60. 

  60. 	case esv1.ExternalSecretDecodeAuto:
    61. 

  61. 		out, err := Decode(esv1.ExternalSecretDecodeBase64, in)
    62. 

  62. 		if err != nil {
    63. 

  63. 			out, err := Decode(esv1.ExternalSecretDecodeBase64URL, in)
    64. 

  64. 			if err != nil {
    65. 

  65. 				return Decode(esv1.ExternalSecretDecodeNone, in)
    66. 

  66. 			}
    67. 

  67. 			return out, nil
    68. 

  68. 		}
    69. 

  69. 		return out, nil
    70. 

  70. 	default:
    71. 

  71. 		return nil, fmt.Errorf("decoding strategy %v is not supported", strategy)
    72. 

  72. 	}
    73. 

  73. }
    74.