settings_reader-vault_resolver 0.4.1 → 0.4.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +21 -1
- data/lib/settings_reader/vault_resolver/entry.rb +10 -2
- data/lib/settings_reader/vault_resolver/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 7a9aaa9ade4b4a390d408f4b29bed51bcf1c85c8345cb9434497bd565bd302a2
|
|
4
|
+
data.tar.gz: '0955dde971303ab6899e9beae5e9b276ef7209b9f9cf3e4769c875a2245619bf'
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 69a39ecbcf836c8116531c35b5ed9ea386595182aae4b7afb947d85709071a7dde75763759145e12c031eaff9ee8f85c13dcf55b1e08f2c763813bcb67dd9e2b
|
|
7
|
+
data.tar.gz: 6732daeeec4a32a63b218926d96974aec750c41abc3097f2ef9cfad58fa7c46626d2df434c147f28a7d7178682d2c3938324c53d5f0e30a5835a85f3fb3e7f8b
|
data/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,23 @@
|
|
|
1
1
|
## [Unreleased]
|
|
2
2
|
|
|
3
|
+
## [0.4.2]
|
|
4
|
+
### Fixes
|
|
5
|
+
- Fix lost secret data after lease renewal
|
|
6
|
+
- Fix exception when getting value from secret with nil data
|
|
7
|
+
|
|
8
|
+
## [0.4.1]
|
|
9
|
+
### Changes
|
|
10
|
+
- Broader entry secret data access to allow retrieval of secret attributes
|
|
11
|
+
|
|
12
|
+
### Fixes
|
|
13
|
+
- Fix exception when retrieving authenticating via k8s endpoint
|
|
14
|
+
|
|
15
|
+
### New features
|
|
16
|
+
- Retry secret retrieval and renewal
|
|
17
|
+
- Capture more vault exceptions including connectivity errors
|
|
18
|
+
- Introduce vault engine adapter concept
|
|
19
|
+
- Separate kv, database, and auth engine logic
|
|
20
|
+
|
|
3
21
|
## [0.4.0]
|
|
4
22
|
### Breaking changes
|
|
5
23
|
- Reworked authentication helpers interface
|
|
@@ -55,7 +73,9 @@
|
|
|
55
73
|
- Secrets caching
|
|
56
74
|
- Automatic secrets lease renewal
|
|
57
75
|
|
|
58
|
-
[Unreleased]: https://github.com/matic-insurance/settings_reader-vault_resolver/compare/0.4.
|
|
76
|
+
[Unreleased]: https://github.com/matic-insurance/settings_reader-vault_resolver/compare/0.4.2...HEAD
|
|
77
|
+
[0.4.2]: https://github.com/matic-insurance/settings_reader-vault_resolver/commits/0.4.2
|
|
78
|
+
[0.4.1]: https://github.com/matic-insurance/settings_reader-vault_resolver/commits/0.4.1
|
|
59
79
|
[0.4.0]: https://github.com/matic-insurance/settings_reader-vault_resolver/commits/0.4.0
|
|
60
80
|
[0.3.0]: https://github.com/matic-insurance/settings_reader-vault_resolver/commits/0.3.0
|
|
61
81
|
[0.2.4]: https://github.com/matic-insurance/settings_reader-vault_resolver/commits/0.2.4
|
|
@@ -2,13 +2,14 @@ module SettingsReader
|
|
|
2
2
|
module VaultResolver
|
|
3
3
|
# Wrapper around vault secret object
|
|
4
4
|
class Entry
|
|
5
|
-
attr_reader :address, :secret
|
|
5
|
+
attr_reader :address, :secret, :data
|
|
6
6
|
|
|
7
7
|
MONTH = 30 * 60 * 60
|
|
8
8
|
|
|
9
9
|
def initialize(address, secret)
|
|
10
10
|
@address = address
|
|
11
11
|
@secret = secret
|
|
12
|
+
@data = extract_data(secret)
|
|
12
13
|
@lease_started = Time.now
|
|
13
14
|
end
|
|
14
15
|
|
|
@@ -34,11 +35,12 @@ module SettingsReader
|
|
|
34
35
|
|
|
35
36
|
def update_renewed(new_secret)
|
|
36
37
|
@secret = new_secret
|
|
38
|
+
@data = @data.merge(extract_data(new_secret).compact)
|
|
37
39
|
@lease_started = Time.now
|
|
38
40
|
end
|
|
39
41
|
|
|
40
42
|
def value_for(attribute)
|
|
41
|
-
return
|
|
43
|
+
return data[attribute.to_sym] if data.key?(attribute.to_sym)
|
|
42
44
|
return secret.public_send(attribute) if secret.respond_to?(attribute)
|
|
43
45
|
|
|
44
46
|
nil
|
|
@@ -51,6 +53,12 @@ module SettingsReader
|
|
|
51
53
|
def lease_duration
|
|
52
54
|
@secret.lease_duration.to_i
|
|
53
55
|
end
|
|
56
|
+
|
|
57
|
+
private
|
|
58
|
+
|
|
59
|
+
def extract_data(secret)
|
|
60
|
+
secret.respond_to?(:data) && secret.data ? secret.data : {}
|
|
61
|
+
end
|
|
54
62
|
end
|
|
55
63
|
end
|
|
56
64
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: settings_reader-vault_resolver
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.4.
|
|
4
|
+
version: 0.4.2
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Volodymyr Mykhailyk
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-04-
|
|
11
|
+
date: 2022-04-19 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: concurrent-ruby
|