hiera-secrets-manager 0.1.3 → 0.1.4
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/hiera/backend/secrets_manager_backend.rb +3 -1
- data/spec/secrets_manager_backend_spec.rb +10 -0
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 8e6505dc6790800b73b011f92e66a036c4dab43b1bf1060c639eebb9bc7698fb
|
4
|
+
data.tar.gz: c8e277d0ab550c45c6d141108d38e6dced16c81174bd8d0e993f4a2f1d8f25e7
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 00ad1a3b9f93e1c7addb8a7f5e3ee85c15e419be4dfcc2961db763cdc64c51bfed21e8f72f570e02f73a85b0739d88b7183dc56b7f0aa8cc59c23593240f99ac
|
7
|
+
data.tar.gz: a705d68e5959729582b4818f5ed3a1a332518c9895a8ce59b928037fb83f4356e795d59379207735b9ebe07b4eb4496174eaa6c8d0551d5fff356359737a0049
|
@@ -23,7 +23,9 @@ class Hiera
|
|
23
23
|
key_to_query = format_key(key, scope, Config[:secrets_manager])
|
24
24
|
|
25
25
|
begin
|
26
|
-
|
26
|
+
response = @client.get_secret_value(secret_id: key_to_query)
|
27
|
+
answer = response['secret_string']
|
28
|
+
Hiera.debug("Retrieved Secret '#{key}' with version '#{response['version_id']}'")
|
27
29
|
rescue Aws::SecretsManager::Errors::ResourceNotFoundException => error
|
28
30
|
Hiera.debug("#{key} not found: #{error.message}")
|
29
31
|
rescue StandardError => error
|
@@ -117,6 +117,16 @@ class Hiera
|
|
117
117
|
expect(answer).to eq(secret_string)
|
118
118
|
end
|
119
119
|
|
120
|
+
it 'should log the secret version for successful lookup' do
|
121
|
+
@mock_client.stubs(:get_secret_value)
|
122
|
+
.returns('version_id' => 'secret_version_UUID',
|
123
|
+
'secret_string' => 'i_am_a_secret')
|
124
|
+
Hiera
|
125
|
+
.expects(:debug)
|
126
|
+
.with("Retrieved Secret 'some_secret' with version 'secret_version_UUID'")
|
127
|
+
@backend.lookup('some_secret', @scope, nil, nil)
|
128
|
+
end
|
129
|
+
|
120
130
|
it 'should not return a secret that does not exist' do
|
121
131
|
nonexistent_secret = 'does_not_exist'
|
122
132
|
prefixed_nonexistent_secret = 'production/does_not_exist'
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: hiera-secrets-manager
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.1.
|
4
|
+
version: 0.1.4
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Unruly
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2018-08-
|
11
|
+
date: 2018-08-30 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-secretsmanager
|