Exemple #1
0
        private static async Task SetVaultConfig(
            this IConfigurationBuilder builder,
            VaultOptions options,
            string kvp)
        {
            VerifyOptions(options);
            var kvPath = string.IsNullOrWhiteSpace(kvp) ? options.KeyValue?.Path : kvp;

            if (!(options.KeyValue?.Enabled ?? false) && string.IsNullOrWhiteSpace(kvPath))
            {
                return;
            }

            var(client, _) = GetClientAndSettings(options);
            var keyValueService = new KeyValueService(client, options);
            var secret          = await keyValueService.GetAsync(kvPath);

            var parser = new JsonConfigurationParser();
            var data   = parser.Parse(JObject.FromObject(secret));
            var source = new MemoryConfigurationSource {
                InitialData = data
            };

            builder.Add(source);
        }
Exemple #2
0
        private static void VerifyOptions(VaultOptions options)
        {
            if (options.KeyValue is null)
            {
                if (!string.IsNullOrWhiteSpace(options.Key))
                {
                    options.KeyValue = new KeyValue
                    {
                        Enabled = options.Enabled,
                        Path    = options.Key
                    }
                }
                ;
                return;
            }

            if (options.KeyValue.EngineVersion == 0)
            {
                options.KeyValue.EngineVersion = 2;
                return;
            }

            if (options.KeyValue.EngineVersion > 2 || options.KeyValue.EngineVersion < 1)
            {
                throw new VaultException(
                          $"Invalid KV engine version: {options.KeyValue.EngineVersion} (available: 1 or 2).");
            }
        }
Exemple #3
0
        private static (IVaultClient client, VaultClientSettings settings) GetClientAndSettings(VaultOptions options)
        {
            IAuthMethodInfo authMethodInfo = options.AuthType switch
            {
                AuthType.Token => new TokenAuthMethodInfo(options.Token),
                AuthType.UserPass => new UserPassAuthMethodInfo(options.Username, options.Password),
                _ => throw new InvalidEnumArgumentException(
                          nameof(options.AuthType), (int)options.AuthType, typeof(AuthType))
            };

            var settings = new VaultClientSettings(options.Url, authMethodInfo);

            var client = new VaultClient(settings);

            return(client, settings);
        }