k8s

package

v0.0.0 Latest Latest Go to latest Published: May 4, 2022 License: MIT Imports: 6 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/jaredpetersen/vaultx

Links

Open Source Insights

Documentation ¶

Index ¶

func DefaultJWTProvider() (string, error)
type AuthMethod
- func New(config Config) AuthMethod
- func (m AuthMethod) Login(ctx context.Context, api api.API) (auth.Token, error)
type Config

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func DefaultJWTProvider ¶

func DefaultJWTProvider() (string, error)

DefaultJWTProvider is an implementation of JWTProvider that reads the Kubernetes service account JWT token located at /var/run/secrets/kubernetes.io/serviceaccount/token and returns it.

Types ¶

type AuthMethod ¶

type AuthMethod struct {
	Config Config
}

AuthMethod enables the Vault client to use information about your AuthMethod deployment environment to authenticate itself with Vault.

See https://www.vaultproject.io/api-docs/auth/kubernetes for more information on the Kubernetes auth method.

func New ¶

func New(config Config) AuthMethod

New creates a new Vault auth method for Kubernetes.

func (m AuthMethod) Login(ctx context.Context, api api.API) (auth.Token, error)

Login generates a Vault token using information about the AuthMethod deployment environment.

type Config ¶

type Config struct {
	// Role is the AuthMethod service account role that should be used to authenticate with Vault.
	Role string

	// JWTProvider is an optional field used to override how the Kubernetes service account JWT is retrieved for use
	// when authenticating with Vault. If omitted, the client will read the JWT from the
	// `/var/run/secrets/kubernetes.io/serviceaccount/token` file.
	JWTProvider func() (string, error)
}

Source Files ¶

View all Source files

kubernetes.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL