settings_reader-vault_resolver 0.2.3 → 0.2.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ce73ad9e3b10d933922778fa85c1f2fecc4f33dd0041a83c4b6b034229c7574f
|
|
4
|
+
data.tar.gz: eef4339b9136147de04ba2e85648fbf2328c3771fed427e600edf544683c1c98
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: ddab1303046474d0da7916d9e64803d9c599f1ee80e2d50e2c96e4cc73ff17f5d4e0b45dd0db37447d3553596135883ca088868800c588f9ceffb7113457bfe4
|
|
7
|
+
data.tar.gz: 6f31f31fccc0281890df52503a9b8c353229fe7cc6f4233eb251e69ed245ea63acdc8bd4cd9e9e5cd1e0f6ef00c448ba30e0afb732105d2322a0ae338180438d
|
|
@@ -12,24 +12,29 @@ module SettingsReader
|
|
|
12
12
|
end
|
|
13
13
|
|
|
14
14
|
def refresh
|
|
15
|
+
info { 'Starting Vault lease refreshing' }
|
|
15
16
|
@cache.entries.each do |entry|
|
|
16
|
-
|
|
17
|
-
next unless entry.leased?
|
|
18
|
-
next unless entry.expires_in < DEFAULT_RENEW_DELAY
|
|
19
|
-
|
|
20
|
-
info { "Refreshing lease for #{entry}. Expires in: #{entry.expires_in}" }
|
|
21
|
-
entry.renew
|
|
22
|
-
info { "Lease renewed for #{entry}. Expires in: #{entry.expires_in}" }
|
|
23
|
-
rescue SettingsReader::VaultResolver::Error => e
|
|
24
|
-
error { "Error refreshing lease for #{entry}: #{e.message}" }
|
|
25
|
-
# Continue renewal.
|
|
17
|
+
refresh_entry(entry)
|
|
26
18
|
end
|
|
19
|
+
info { 'Finished Vault lease refreshing' }
|
|
20
|
+
end
|
|
21
|
+
|
|
22
|
+
def refresh_entry(entry)
|
|
23
|
+
debug { "Checking lease for #{entry}. Leased?: #{entry.leased?}. Expires in: #{entry.expires_in}s" }
|
|
24
|
+
return unless entry.leased?
|
|
25
|
+
return unless entry.expires_in < DEFAULT_RENEW_DELAY
|
|
26
|
+
|
|
27
|
+
info { "Refreshing lease for #{entry}. Expires in: #{entry.expires_in}" }
|
|
28
|
+
entry.renew
|
|
29
|
+
info { "Lease renewed for #{entry}. Expires in: #{entry.expires_in}" }
|
|
30
|
+
rescue SettingsReader::VaultResolver::Error => e
|
|
31
|
+
error { "Error refreshing lease for #{entry}: #{e.message}" }
|
|
32
|
+
# Continue renewal.
|
|
27
33
|
end
|
|
28
34
|
|
|
29
35
|
def self.refresh_task(cache)
|
|
30
36
|
refresher = self
|
|
31
37
|
Concurrent::TimerTask.new(execution_interval: refresher::REFRESH_INTERVAL) do
|
|
32
|
-
info { 'Refreshing Vault leases' }
|
|
33
38
|
refresher.new(cache).refresh
|
|
34
39
|
end
|
|
35
40
|
end
|
|
@@ -31,10 +31,12 @@ module SettingsReader
|
|
|
31
31
|
end
|
|
32
32
|
|
|
33
33
|
def self.setup_cache
|
|
34
|
+
logger.debug { '[VaultResolver] Setting up secrets cache' }
|
|
34
35
|
self.cache ||= SettingsReader::VaultResolver::Cache.new
|
|
35
36
|
end
|
|
36
37
|
|
|
37
38
|
def self.setup_lease_refresher
|
|
39
|
+
logger.debug { '[VaultResolver] Setting up lease resolver task' }
|
|
38
40
|
self.refresher_timer_task ||= SettingsReader::VaultResolver::Refresher.refresh_task(self.cache)
|
|
39
41
|
self.refresher_timer_task.execute
|
|
40
42
|
end
|