Inicio Explorar Ayuda
Iniciar sesión
logic855
/
helm-external-secrets
espejo de https://github.com/external-secrets/external-secrets
1
0
Fork 0
Archivos Incidencias 0 Wiki
Árbol: v2.3.0
Ramas Etiquetas
helm-externa...
/
providers
/
v1
/
yandex
/
lockbox
/
client
/
grpcclient.go

grpcclient.go 2.3 KB
Permalink Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. /*
    2. 

  2. Copyright © The ESO Authors
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     https://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package client
    18. 

  18. 

  19. import (
    20. 

  20. 	"context"
    21. 

  21. 

  22. 	api "github.com/yandex-cloud/go-genproto/yandex/cloud/lockbox/v1"
    23. 

  23. 	"github.com/yandex-cloud/go-sdk/iamkey"
    24. 

  24. 	"google.golang.org/grpc"
    25. 

  25. 

  26. 	ydxcommon "github.com/external-secrets/external-secrets/providers/v1/yandex/common"
    27. 

  27. )
    28. 

  28. 

  29. // Real/gRPC implementation of LockboxClient.
    30. 

  30. type grpcLockboxClient struct {
    31. 

  31. 	lockboxPayloadClient api.PayloadServiceClient
    32. 

  32. }
    33. 

  33. 

  34. // NewGrpcLockboxClient creates a new LockboxClient.
    35. 

  35. func NewGrpcLockboxClient(ctx context.Context, apiEndpoint string, authorizedKey *iamkey.Key, caCertificate []byte) (LockboxClient, error) {
    36. 

  36. 	conn, err := ydxcommon.NewGrpcConnection(
    37. 

  37. 		ctx,
    38. 

  38. 		apiEndpoint,
    39. 

  39. 		"lockbox-payload", // taken from https://api.cloud.yandex.net/endpoints
    40. 

  40. 		authorizedKey,
    41. 

  41. 		caCertificate,
    42. 

  42. 	)
    43. 

  43. 	if err != nil {
    44. 

  44. 		return nil, err
    45. 

  45. 	}
    46. 

  46. 	return &grpcLockboxClient{api.NewPayloadServiceClient(conn)}, nil
    47. 

  47. }
    48. 

  48. 

  49. func (c *grpcLockboxClient) GetPayloadEntries(ctx context.Context, iamToken, secretID, versionID string) ([]*api.Payload_Entry, error) {
    50. 

  50. 	payload, err := c.lockboxPayloadClient.Get(
    51. 

  51. 		ctx,
    52. 

  52. 		&api.GetPayloadRequest{
    53. 

  53. 			SecretId:  secretID,
    54. 

  54. 			VersionId: versionID,
    55. 

  55. 		},
    56. 

  56. 		grpc.PerRPCCredentials(ydxcommon.PerRPCCredentials{IamToken: iamToken}),
    57. 

  57. 	)
    58. 

  58. 	if err != nil {
    59. 

  59. 		return nil, err
    60. 

  60. 	}
    61. 

  61. 	return payload.Entries, nil
    62. 

  62. }
    63. 

  63. 

  64. func (c *grpcLockboxClient) GetExPayload(ctx context.Context, iamToken, folderID, name, versionID string) (map[string][]byte, error) {
    65. 

  65. 	request := &api.GetExRequest{
    66. 

  66. 		Identifier: &api.GetExRequest_FolderAndName{
    67. 

  67. 			FolderAndName: &api.FolderAndName{
    68. 

  68. 				FolderId:   folderID,
    69. 

  69. 				SecretName: name,
    70. 

  70. 			},
    71. 

  71. 		},
    72. 

  72. 		VersionId: versionID,
    73. 

  73. 	}
    74. 

  74. 

  75. 	response, err := c.lockboxPayloadClient.GetEx(
    76. 

  76. 		ctx,
    77. 

  77. 		request,
    78. 

  78. 		grpc.PerRPCCredentials(ydxcommon.PerRPCCredentials{IamToken: iamToken}),
    79. 

  79. 	)
    80. 

  80. 	if err != nil {
    81. 

  81. 		return nil, err
    82. 

  82. 	}
    83. 

  83. 

  84. 	return response.Entries, nil
    85. 

  85. }
    86.