private bool CreateAwsAccount(string asset, string account, string password)
{
if (_awsClient == null || !ConfigurationIsValid)
{
_logger.Error("No vault connection. Make sure that the plugin has been configured.");
return(false);
}
var name = $"{asset}-{account}";
try
{
var createAccountRequest = new Amazon.SecretsManager.Model.CreateSecretRequest
{
Name = name,
SecretString = password
};
var res = Task.Run(async() => await _awsClient.CreateSecretAsync(createAccountRequest));
if (res.Result.HttpStatusCode == System.Net.HttpStatusCode.OK)
{
_logger.Information($"Successfully created account {name} in vault.");
return(true);
}
else
{
throw new Exception($"Http Status Code {res.Result.HttpStatusCode}");
}
}
catch (Exception createEx)
{
_logger.Error($"Failed to create account {name} in vault. Message: {createEx.Message}");
return(false);
}
}
private Amazon.SecretsManager.Model.CreateSecretResponse CallAWSServiceOperation(IAmazonSecretsManager client, Amazon.SecretsManager.Model.CreateSecretRequest request)
{
Utils.Common.WriteVerboseEndpointMessage(this, client.Config, "AWS Secrets Manager", "CreateSecret");
try
{
#if DESKTOP
return(client.CreateSecret(request));
#elif CORECLR
return(client.CreateSecretAsync(request).GetAwaiter().GetResult());
#else
#error "Unknown build edition"
#endif
}
catch (AmazonServiceException exc)
{
var webException = exc.InnerException as System.Net.WebException;
if (webException != null)
{
throw new Exception(Utils.Common.FormatNameResolutionFailureMessage(client.Config, webException.Message), webException);
}
throw;
}
}
public object Execute(ExecutorContext context)
{
System.IO.MemoryStream _SecretBinaryStream = null;
try
{
var cmdletContext = context as CmdletContext;
// create request
var request = new Amazon.SecretsManager.Model.CreateSecretRequest();
if (cmdletContext.ClientRequestToken != null)
{
request.ClientRequestToken = cmdletContext.ClientRequestToken;
}
if (cmdletContext.Description != null)
{
request.Description = cmdletContext.Description;
}
if (cmdletContext.KmsKeyId != null)
{
request.KmsKeyId = cmdletContext.KmsKeyId;
}
if (cmdletContext.Name != null)
{
request.Name = cmdletContext.Name;
}
if (cmdletContext.SecretBinary != null)
{
_SecretBinaryStream = new System.IO.MemoryStream(cmdletContext.SecretBinary);
request.SecretBinary = _SecretBinaryStream;
}
if (cmdletContext.SecretString != null)
{
request.SecretString = cmdletContext.SecretString;
}
if (cmdletContext.Tag != null)
{
request.Tags = cmdletContext.Tag;
}
CmdletOutput output;
// issue call
var client = Client ?? CreateClient(_CurrentCredentials, _RegionEndpoint);
try
{
var response = CallAWSServiceOperation(client, request);
object pipelineOutput = null;
pipelineOutput = cmdletContext.Select(response, this);
output = new CmdletOutput
{
PipelineOutput = pipelineOutput,
ServiceResponse = response
};
}
catch (Exception e)
{
output = new CmdletOutput {
ErrorResponse = e
};
}
return(output);
}
finally
{
if (_SecretBinaryStream != null)
{
_SecretBinaryStream.Dispose();
}
}
}
