RubyGems - legion-crypt - Versions diffs - 1.4.14 → 1.4.15 - Mend

legion-crypt 1.4.14 → 1.4.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 939ab01a7c1290816ca55ec819f24b7f92d74048d8e03f709e4b5dfa27777bcc
-  data.tar.gz: 4695589ab361ab5f0be3abf5d5100ecf46f61a1cc3abf5985240769ba1a3a48e
+  metadata.gz: 5f43eee9680197c62f53f2a7ed8c77eee725f7f01744c32e5ad0115fdfb2ad21
+  data.tar.gz: 3ba3cd7da0684d8a9ec68d23797d487240035dc2f5e07fdba7ab0cfb1727dafe
 SHA512:
-  metadata.gz: d0385d55fd7fe6e0e6b7addff8c23cd7f1009fcc3e617c3dee3f998341c1efa6b96879224da517a414d13ba27fdcf9f5bf5c113f08ccd76112202a2915cb7a05
-  data.tar.gz: b899bcb0f84e3bc0a895649fd698c53c254fe0645a9248b906edecb8adee1aeef0831fe59d113db0046522316c2c50462dd7fd3fa7ee5ef58338e6dc98cbcec4
+  metadata.gz: 79fe4cd8653f9a09c3c2f6acc7da403e00d8a8e05b6fb6f488fb25a3c8fadfcbee00cc1ffa7e31319840025a5d622d2b1b6a32210ff0cd9141a04aef26c27e59
+  data.tar.gz: b691e62e093b3504d7e7da0501cda48aca9ae705429ed1d5caf97dd3ab7a9b7f87826a8d0cf4dabbff01e1f755d7cee555d74dee85754f7206feb5cadbfdd8f8

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,11 @@
 # Legion::Crypt
+## [1.4.15] - 2026-03-26
+### Fixed
+- Route `get`, `write`, `read`, `delete`, `exist?` through default cluster client when multi-cluster Vault is configured (#1)
+- Previously these methods used the global `::Vault` singleton which was never initialized when clusters were present, causing 403 errors against the wrong Vault server
 ## [1.4.14] - 2026-03-26
 ### Fixed

data/CLAUDE.md CHANGED Viewed

@@ -8,7 +8,7 @@
 Handles encryption, decryption, secrets management, JWT token management, and HashiCorp Vault connectivity for the LegionIO framework. Provides AES-256-CBC message encryption, RSA key pair generation, cluster secret management, JWT issue/verify operations, and Vault token lifecycle management.
 **GitHub**: https://github.com/LegionIO/legion-crypt
-**Version**: 1.4.7
+**Version**: 1.4.15
 **License**: Apache-2.0
 ## Architecture

data/lib/legion/crypt/vault.rb CHANGED Viewed

@@ -45,7 +45,7 @@ module Legion
       def read(path, type = 'legion')
         full_path = type.nil? || type.empty? ? "#{type}/#{path}" : path
         Legion::Logging.debug "Vault read: #{full_path}" if defined?(Legion::Logging)
-        lease = ::Vault.logical.read(full_path)
+        lease = logical_client.read(full_path)
         add_session(path: lease.lease_id) if lease.respond_to? :lease_id
         lease.data
       rescue StandardError => e
@@ -55,7 +55,7 @@ module Legion
       def get(path)
         Legion::Logging.debug "Vault kv get: #{path}" if defined?(Legion::Logging)
-        result = ::Vault.kv(settings[:vault][:kv_path]).read(path)
+        result = kv_client.read(path)
         return nil if result.nil?
         result.data
@@ -66,14 +66,14 @@ module Legion
       def write(path, **hash)
         Legion::Logging.debug "Vault kv write: #{path}" if defined?(Legion::Logging)
-        ::Vault.kv(settings[:vault][:kv_path]).write(path, **hash)
+        kv_client.write(path, **hash)
       rescue StandardError => e
         Legion::Logging.warn "Vault kv write failed at #{path}: #{e.message}" if defined?(Legion::Logging)
         raise
       end
       def delete(path)
-        ::Vault.logical.delete(path)
+        logical_client.delete(path)
         { success: true, path: path }
       rescue StandardError => e
         Legion::Logging.warn "Vault delete failed for #{path}: #{e.message}" if defined?(Legion::Logging)
@@ -81,7 +81,7 @@ module Legion
       end
       def exist?(path)
-        !::Vault.kv(settings[:vault][:kv_path]).read_metadata(path).nil?
+        !kv_client.read_metadata(path).nil?
       end
       def add_session(path:)
@@ -140,6 +140,24 @@ module Legion
       def vault_exists?(name)
         ::Vault.sys.mounts.key?(name.to_sym)
       end
+      private
+      def kv_client
+        if respond_to?(:connected_clusters) && connected_clusters.any?
+          vault_client.kv(settings[:vault][:kv_path])
+        else
+          ::Vault.kv(settings[:vault][:kv_path])
+        end
+      end
+      def logical_client
+        if respond_to?(:connected_clusters) && connected_clusters.any?
+          vault_client.logical
+        else
+          ::Vault.logical
+        end
+      end
     end
   end
 end

data/lib/legion/crypt/version.rb CHANGED Viewed

@@ -2,6 +2,6 @@
 module Legion
   module Crypt
-    VERSION = '1.4.14'
+    VERSION = '1.4.15'
   end
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: legion-crypt
 version: !ruby/object:Gem::Version
-  version: 1.4.14
+  version: 1.4.15
 platform: ruby
 authors:
 - Esity