@kibibit/configit 2.12.2 → 2.13.0-beta.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/config.service.d.ts +2 -1
- package/lib/config.service.d.ts.map +1 -1
- package/lib/config.service.js +5 -0
- package/lib/config.service.js.map +1 -1
- package/lib/tsconfig.tsbuildinfo +1 -1
- package/lib/vault/__tests__/vault-integration.test.d.ts.map +1 -1
- package/lib/vault/__tests__/vault-integration.test.js +124 -0
- package/lib/vault/__tests__/vault-integration.test.js.map +1 -1
- package/lib/vault/build-vault-config.d.ts +8 -0
- package/lib/vault/build-vault-config.d.ts.map +1 -0
- package/lib/vault/build-vault-config.js +41 -0
- package/lib/vault/build-vault-config.js.map +1 -0
- package/lib/vault/index.d.ts +2 -0
- package/lib/vault/index.d.ts.map +1 -1
- package/lib/vault/index.js +3 -1
- package/lib/vault/index.js.map +1 -1
- package/lib/vault/secret-refresh-manager.d.ts +6 -2
- package/lib/vault/secret-refresh-manager.d.ts.map +1 -1
- package/lib/vault/secret-refresh-manager.js +91 -27
- package/lib/vault/secret-refresh-manager.js.map +1 -1
- package/lib/vault/types.d.ts +9 -0
- package/lib/vault/types.d.ts.map +1 -1
- package/lib/vault/vault-integration.d.ts +2 -1
- package/lib/vault/vault-integration.d.ts.map +1 -1
- package/lib/vault/vault-integration.js +6 -0
- package/lib/vault/vault-integration.js.map +1 -1
- package/package.json +1 -1
- package/src/config.service.ts +21 -1
- package/src/config.service.vault.spec.ts +47 -1
- package/src/vault/__tests__/build-vault-config.spec.ts +116 -0
- package/src/vault/__tests__/secret-refresh-manager.spec.ts +328 -0
- package/src/vault/__tests__/vault-integration-callback.spec.ts +73 -0
- package/src/vault/__tests__/vault-integration.test.ts +174 -2
- package/src/vault/build-vault-config.ts +73 -0
- package/src/vault/index.ts +4 -0
- package/src/vault/secret-refresh-manager.ts +123 -71
- package/src/vault/types.ts +38 -0
- package/src/vault/vault-integration.ts +14 -1
|
@@ -11,6 +11,7 @@ var __metadata = (this && this.__metadata) || function (k, v) {
|
|
|
11
11
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
12
|
const class_validator_1 = require("class-validator");
|
|
13
13
|
const decorators_1 = require("../decorators");
|
|
14
|
+
const build_vault_config_1 = require("../build-vault-config");
|
|
14
15
|
const vault_integration_1 = require("../vault-integration");
|
|
15
16
|
require("reflect-metadata");
|
|
16
17
|
const SKIP_VAULT_TESTS = !process.env.VAULT_INTEGRATION_TESTS;
|
|
@@ -149,6 +150,129 @@ describeVault('VaultIntegration (requires running Vault)', () => {
|
|
|
149
150
|
.toThrow(/authentication.*failed/i);
|
|
150
151
|
});
|
|
151
152
|
});
|
|
153
|
+
describe('onSecretRefreshed callback', () => {
|
|
154
|
+
it('should fire callback with correct event when configured via constructor', async () => {
|
|
155
|
+
const events = [];
|
|
156
|
+
const configWithCallback = Object.assign(Object.assign({}, VAULT_CONFIG), { onSecretRefreshed: (event) => { events.push(event); } });
|
|
157
|
+
vaultIntegration = new vault_integration_1.VaultIntegration(configWithCallback);
|
|
158
|
+
await vaultIntegration.initialize();
|
|
159
|
+
await vaultIntegration.loadSecrets(TestVaultConfig);
|
|
160
|
+
expect(events).toHaveLength(0);
|
|
161
|
+
});
|
|
162
|
+
it('should fire callback via runtime registration', async () => {
|
|
163
|
+
const events = [];
|
|
164
|
+
vaultIntegration = new vault_integration_1.VaultIntegration(VAULT_CONFIG);
|
|
165
|
+
vaultIntegration.onSecretRefreshed((event) => { events.push(event); });
|
|
166
|
+
await vaultIntegration.initialize();
|
|
167
|
+
await vaultIntegration.loadSecrets(TestVaultConfig);
|
|
168
|
+
expect(events).toHaveLength(0);
|
|
169
|
+
});
|
|
170
|
+
});
|
|
171
|
+
describe('dynamic secrets with TTL-based refresh', () => {
|
|
172
|
+
class DynamicConfig {
|
|
173
|
+
}
|
|
174
|
+
__decorate([
|
|
175
|
+
(0, decorators_1.VaultPath)('creds/configit-readonly'),
|
|
176
|
+
(0, decorators_1.VaultKey)('username'),
|
|
177
|
+
(0, decorators_1.VaultEngine)('database'),
|
|
178
|
+
(0, class_validator_1.IsString)(),
|
|
179
|
+
__metadata("design:type", String)
|
|
180
|
+
], DynamicConfig.prototype, "DB_USERNAME", void 0);
|
|
181
|
+
__decorate([
|
|
182
|
+
(0, decorators_1.VaultPath)('creds/configit-readonly'),
|
|
183
|
+
(0, decorators_1.VaultKey)('password'),
|
|
184
|
+
(0, decorators_1.VaultEngine)('database'),
|
|
185
|
+
(0, class_validator_1.IsString)(),
|
|
186
|
+
__metadata("design:type", String)
|
|
187
|
+
], DynamicConfig.prototype, "DB_PASSWORD", void 0);
|
|
188
|
+
it('should load dynamic database credentials', async () => {
|
|
189
|
+
vaultIntegration = new vault_integration_1.VaultIntegration(Object.assign(Object.assign({}, VAULT_CONFIG), { refreshBuffer: 30 }));
|
|
190
|
+
await vaultIntegration.initialize();
|
|
191
|
+
await vaultIntegration.loadSecrets(DynamicConfig);
|
|
192
|
+
const username = vaultIntegration.getSecret('DB_USERNAME');
|
|
193
|
+
const password = vaultIntegration.getSecret('DB_PASSWORD');
|
|
194
|
+
expect(username).toBeDefined();
|
|
195
|
+
expect(username).toMatch(/^v-token-/);
|
|
196
|
+
expect(password).toBeDefined();
|
|
197
|
+
expect(password.length).toBeGreaterThan(0);
|
|
198
|
+
});
|
|
199
|
+
it('should schedule refresh for dynamic secrets', async () => {
|
|
200
|
+
vaultIntegration = new vault_integration_1.VaultIntegration(Object.assign(Object.assign({}, VAULT_CONFIG), { refreshBuffer: 30 }));
|
|
201
|
+
await vaultIntegration.initialize();
|
|
202
|
+
await vaultIntegration.loadSecrets(DynamicConfig);
|
|
203
|
+
const health = vaultIntegration.getHealthDetails();
|
|
204
|
+
expect(health.refreshQueueSize).toBeGreaterThanOrEqual(1);
|
|
205
|
+
const dbUserStatus = health.refreshStatus.find((s) => s.propertyName === 'DB_USERNAME');
|
|
206
|
+
expect(dbUserStatus).toBeDefined();
|
|
207
|
+
expect(dbUserStatus.scheduled).toBe(true);
|
|
208
|
+
expect(dbUserStatus.timeUntilRefresh).toBeLessThanOrEqual(60000);
|
|
209
|
+
});
|
|
210
|
+
it('should perform path-level atomic refresh and fire callback', async () => {
|
|
211
|
+
const events = [];
|
|
212
|
+
vaultIntegration = new vault_integration_1.VaultIntegration(Object.assign(Object.assign({}, VAULT_CONFIG), { refreshBuffer: 55, onSecretRefreshed: (event) => { events.push(event); } }));
|
|
213
|
+
await vaultIntegration.initialize();
|
|
214
|
+
await vaultIntegration.loadSecrets(DynamicConfig);
|
|
215
|
+
const initialUser = vaultIntegration.getSecret('DB_USERNAME');
|
|
216
|
+
const initialPass = vaultIntegration.getSecret('DB_PASSWORD');
|
|
217
|
+
await new Promise((resolve) => setTimeout(resolve, 10000));
|
|
218
|
+
const refreshedUser = vaultIntegration.getSecret('DB_USERNAME');
|
|
219
|
+
const refreshedPass = vaultIntegration.getSecret('DB_PASSWORD');
|
|
220
|
+
expect(refreshedUser).not.toBe(initialUser);
|
|
221
|
+
expect(refreshedPass).not.toBe(initialPass);
|
|
222
|
+
expect(events.length).toBeGreaterThanOrEqual(1);
|
|
223
|
+
const dbEvent = events.find((e) => e.engine === 'database');
|
|
224
|
+
expect(dbEvent).toBeDefined();
|
|
225
|
+
expect(dbEvent.properties).toContain('DB_USERNAME');
|
|
226
|
+
expect(dbEvent.properties).toContain('DB_PASSWORD');
|
|
227
|
+
expect(dbEvent.vaultPath).toContain('configit-readonly');
|
|
228
|
+
expect(dbEvent.refreshCount).toBeGreaterThanOrEqual(1);
|
|
229
|
+
}, 20000);
|
|
230
|
+
});
|
|
231
|
+
describe('buildVaultConfigFromEnv end-to-end', () => {
|
|
232
|
+
const savedEnv = {};
|
|
233
|
+
beforeEach(() => {
|
|
234
|
+
savedEnv.VAULT_ADDR = process.env.VAULT_ADDR;
|
|
235
|
+
savedEnv.VAULT_TOKEN = process.env.VAULT_TOKEN;
|
|
236
|
+
savedEnv.VAULT_GCP_ROLE = process.env.VAULT_GCP_ROLE;
|
|
237
|
+
});
|
|
238
|
+
afterEach(() => {
|
|
239
|
+
for (const [key, val] of Object.entries(savedEnv)) {
|
|
240
|
+
if (val !== undefined) {
|
|
241
|
+
process.env[key] = val;
|
|
242
|
+
}
|
|
243
|
+
else {
|
|
244
|
+
delete process.env[key];
|
|
245
|
+
}
|
|
246
|
+
}
|
|
247
|
+
});
|
|
248
|
+
it('should produce a config that VaultIntegration can use', async () => {
|
|
249
|
+
process.env.VAULT_ADDR = 'http://127.0.0.1:8200';
|
|
250
|
+
process.env.VAULT_TOKEN = 'configit-dev-token';
|
|
251
|
+
delete process.env.VAULT_GCP_ROLE;
|
|
252
|
+
const config = (0, build_vault_config_1.buildVaultConfigFromEnv)();
|
|
253
|
+
expect(config).toBeDefined();
|
|
254
|
+
vaultIntegration = new vault_integration_1.VaultIntegration(config);
|
|
255
|
+
await vaultIntegration.initialize();
|
|
256
|
+
expect(vaultIntegration.isInitialized()).toBe(true);
|
|
257
|
+
await vaultIntegration.loadSecrets(TestVaultConfig);
|
|
258
|
+
expect(vaultIntegration.getSecret('API_KEY')).toBe('test-api-key-123');
|
|
259
|
+
});
|
|
260
|
+
it('should wire onSecretRefreshed callback through to VaultIntegration', async () => {
|
|
261
|
+
process.env.VAULT_ADDR = 'http://127.0.0.1:8200';
|
|
262
|
+
process.env.VAULT_TOKEN = 'configit-dev-token';
|
|
263
|
+
delete process.env.VAULT_GCP_ROLE;
|
|
264
|
+
const events = [];
|
|
265
|
+
const config = (0, build_vault_config_1.buildVaultConfigFromEnv)({
|
|
266
|
+
onSecretRefreshed: (event) => { events.push(event); }
|
|
267
|
+
});
|
|
268
|
+
expect(config).toBeDefined();
|
|
269
|
+
expect(config.onSecretRefreshed).toBeDefined();
|
|
270
|
+
vaultIntegration = new vault_integration_1.VaultIntegration(config);
|
|
271
|
+
await vaultIntegration.initialize();
|
|
272
|
+
await vaultIntegration.loadSecrets(TestVaultConfig);
|
|
273
|
+
expect(events).toHaveLength(0);
|
|
274
|
+
});
|
|
275
|
+
});
|
|
152
276
|
});
|
|
153
277
|
if (require.main === module) {
|
|
154
278
|
(async () => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"vault-integration.test.js","sourceRoot":"","sources":["../../../src/vault/__tests__/vault-integration.test.ts"],"names":[],"mappings":";;;;;;;;;;;AASA,qDAA2C;AAE3C,8CAAoD;AAEpD,4DAAwD;AAExD,4BAA0B;AAG1B,MAAM,gBAAgB,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC;AAO9D,MAAM,eAAe;CAwCpB;AApCG;IAHD,IAAA,sBAAS,EAAC,cAAc,CAAC;IACzB,IAAA,qBAAQ,EAAC,SAAS,CAAC;IACnB,IAAA,0BAAQ,GAAE;;gDACQ;AAKjB;IAHD,IAAA,sBAAS,EAAC,cAAc,CAAC;IACzB,IAAA,qBAAQ,EAAC,YAAY,CAAC;IACtB,IAAA,0BAAQ,GAAE;;mDACW;AAKpB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,MAAM,CAAC;IAChB,IAAA,0BAAQ,GAAE;;gDACQ;AAKjB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,MAAM,CAAC;IAChB,IAAA,0BAAQ,GAAE;;gDACQ;AAKjB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,UAAU,CAAC;IACpB,IAAA,0BAAQ,GAAE;;oDACY;AAKrB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,UAAU,CAAC;IACpB,IAAA,0BAAQ,GAAE;;oDACY;AAKrB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,aAAa,CAAC;IACvB,IAAA,0BAAQ,GAAE;;oDACY;AAKrB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,iBAAiB,CAAC;IAC3B,IAAA,0BAAQ,GAAE;;wDACgB;AAG7B,MAAM,YAAY,GAAwB;IACxC,QAAQ,EAAE,uBAAuB;IACjC,IAAI,EAAE;QACJ,OAAO,EAAE;YACP;gBACE,IAAI,EAAE,OAAO;gBACb,MAAM,EAAE;oBACN,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,oBAAoB;iBACvD;aACF;SACF;KACF;IACD,GAAG,EAAE;QACH,OAAO,EAAE,KAAK;QACd,iBAAiB,EAAE,KAAK;KACzB;CACF,CAAC;AAGF,MAAM,aAAa,GAAG,gBAAgB,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC;AAElE,aAAa,CAAC,2CAA2C,EAAE,GAAG,EAAE;IAC9D,IAAI,gBAAkC,CAAC;IAEvC,SAAS,CAAC,GAAG,EAAE;QACb,IAAI,gBAAgB,EAAE;YACpB,gBAAgB,CAAC,QAAQ,EAAE,CAAC;SAC7B;IACH,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,yBAAyB,EAAE,GAAG,EAAE;QACvC,UAAU,CAAC,GAAG,EAAE;YACd,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,YAAY,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gCAAgC,EAAE,KAAK,IAAI,EAAE;YAC9C,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,CAAC,gBAAgB,CAAC,aAAa,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACtD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;YACtD,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAGpD,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;YACvE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;YAC7E,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAChE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC3D,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACnE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;YACvE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC/D,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;YACjE,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAEpD,MAAM,MAAM,GAAG,gBAAgB,CAAC,SAAS,EAAE,CAAC;YAC5C,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpC,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACxC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iCAAiC,EAAE,KAAK,IAAI,EAAE;YAC/C,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAGpD,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;YAGvE,gBAAgB,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;YAG/C,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;QAC3D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;YACvD,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,YAAY,CAAC,CAAC;YAEtD,MAAM,MAAM,CAAC,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;iBACxD,OAAO;iBACP,OAAO,CAAC,kCAAkC,CAAC,CAAC;QACjD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;YACrD,MAAM,aAAa,mCACd,YAAY,KACf,IAAI,EAAE;oBACJ,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,OAAO;4BACb,MAAM,EAAE;gCACN,KAAK,EAAE,eAAe;6BACvB;yBACF;qBACF;iBACF,GACF,CAAC;YAEF,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,aAAa,CAAC,CAAC;YAEvD,MAAM,MAAM,CAAC,gBAAgB,CAAC,UAAU,EAAE,CAAC;iBACxC,OAAO;iBACP,OAAO,CAAC,yBAAyB,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAMH,IAAI,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE;IAC3B,CAAC,KAAK,IAAI,EAAE;QACV,OAAO,CAAC,GAAG,CAAC,gCAAgC,CAAC,CAAC;QAE9C,MAAM,WAAW,GAAG,IAAI,oCAAgB,CAAC,YAAY,CAAC,CAAC;QAEvD,IAAI;YACF,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC;YAClC,MAAM,WAAW,CAAC,UAAU,EAAE,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC;YAElC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YACrC,MAAM,WAAW,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YAErC,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;YACnC,OAAO,CAAC,GAAG,CAAC,eAAgB,WAAW,CAAC,SAAS,CAAC,SAAS,CAAE,EAAE,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,kBAAmB,WAAW,CAAC,SAAS,CAAC,YAAY,CAAE,EAAE,CAAC,CAAC;YACvE,OAAO,CAAC,GAAG,CAAC,eAAgB,WAAW,CAAC,SAAS,CAAC,SAAS,CAAE,EAAE,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,eAAgB,WAAW,CAAC,SAAS,CAAC,SAAS,CAAE,EAAE,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,mBAAoB,WAAW,CAAC,SAAS,CAAC,aAAa,CAAE,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,mBAAoB,WAAW,CAAC,SAAS,CAAC,aAAa,CAAE,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,mBAAoB,WAAW,CAAC,SAAS,CAAC,aAAa,CAAE,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,uBAAwB,WAAW,CAAC,SAAS,CAAC,iBAAiB,CAAE,IAAI,CAAC,CAAC;YAEnF,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;YACjC,MAAM,MAAM,GAAG,WAAW,CAAC,SAAS,EAAE,CAAC;YACvC,OAAO,CAAC,GAAG,CAAC,iBAAkB,MAAM,CAAC,SAAU,EAAE,CAAC,CAAC;YACnD,OAAO,CAAC,GAAG,CAAC,qBAAsB,MAAM,CAAC,aAAc,EAAE,CAAC,CAAC;YAC3D,OAAO,CAAC,GAAG,CAAC,kBAAmB,MAAM,CAAC,SAAU,EAAE,CAAC,CAAC;YACpD,OAAO,CAAC,GAAG,CAAC,cAAe,MAAM,CAAC,MAAM,CAAC,MAAO,IAAI,CAAC,CAAC;YAEtD,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;SACtC;QAAC,OAAO,KAAK,EAAE;YACd,OAAO,CAAC,KAAK,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAC;YACvC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;SACjB;gBAAS;YACR,WAAW,CAAC,QAAQ,EAAE,CAAC;SACxB;IACH,CAAC,CAAC,EAAE,CAAC;CACN"}
|
|
1
|
+
{"version":3,"file":"vault-integration.test.js","sourceRoot":"","sources":["../../../src/vault/__tests__/vault-integration.test.ts"],"names":[],"mappings":";;;;;;;;;;;AASA,qDAA2C;AAE3C,8CAAiE;AACjE,8DAAgE;AAEhE,4DAAwD;AAExD,4BAA0B;AAG1B,MAAM,gBAAgB,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC;AAO9D,MAAM,eAAe;CAwCpB;AApCG;IAHD,IAAA,sBAAS,EAAC,cAAc,CAAC;IACzB,IAAA,qBAAQ,EAAC,SAAS,CAAC;IACnB,IAAA,0BAAQ,GAAE;;gDACQ;AAKjB;IAHD,IAAA,sBAAS,EAAC,cAAc,CAAC;IACzB,IAAA,qBAAQ,EAAC,YAAY,CAAC;IACtB,IAAA,0BAAQ,GAAE;;mDACW;AAKpB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,MAAM,CAAC;IAChB,IAAA,0BAAQ,GAAE;;gDACQ;AAKjB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,MAAM,CAAC;IAChB,IAAA,0BAAQ,GAAE;;gDACQ;AAKjB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,UAAU,CAAC;IACpB,IAAA,0BAAQ,GAAE;;oDACY;AAKrB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,UAAU,CAAC;IACpB,IAAA,0BAAQ,GAAE;;oDACY;AAKrB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,aAAa,CAAC;IACvB,IAAA,0BAAQ,GAAE;;oDACY;AAKrB;IAHD,IAAA,sBAAS,EAAC,mBAAmB,CAAC;IAC9B,IAAA,qBAAQ,EAAC,iBAAiB,CAAC;IAC3B,IAAA,0BAAQ,GAAE;;wDACgB;AAG7B,MAAM,YAAY,GAAwB;IACxC,QAAQ,EAAE,uBAAuB;IACjC,IAAI,EAAE;QACJ,OAAO,EAAE;YACP;gBACE,IAAI,EAAE,OAAO;gBACb,MAAM,EAAE;oBACN,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,oBAAoB;iBACvD;aACF;SACF;KACF;IACD,GAAG,EAAE;QACH,OAAO,EAAE,KAAK;QACd,iBAAiB,EAAE,KAAK;KACzB;CACF,CAAC;AAGF,MAAM,aAAa,GAAG,gBAAgB,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC;AAElE,aAAa,CAAC,2CAA2C,EAAE,GAAG,EAAE;IAC9D,IAAI,gBAAkC,CAAC;IAEvC,SAAS,CAAC,GAAG,EAAE;QACb,IAAI,gBAAgB,EAAE;YACpB,gBAAgB,CAAC,QAAQ,EAAE,CAAC;SAC7B;IACH,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,yBAAyB,EAAE,GAAG,EAAE;QACvC,UAAU,CAAC,GAAG,EAAE;YACd,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,YAAY,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gCAAgC,EAAE,KAAK,IAAI,EAAE;YAC9C,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,CAAC,gBAAgB,CAAC,aAAa,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACtD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;YACtD,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAGpD,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;YACvE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;YAC7E,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAChE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC3D,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACnE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;YACvE,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC/D,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;YACjE,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAEpD,MAAM,MAAM,GAAG,gBAAgB,CAAC,SAAS,EAAE,CAAC;YAC5C,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpC,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACxC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iCAAiC,EAAE,KAAK,IAAI,EAAE;YAC/C,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAGpD,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;YAGvE,gBAAgB,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;YAG/C,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;QAC3D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;YACvD,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,YAAY,CAAC,CAAC;YAEtD,MAAM,MAAM,CAAC,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;iBACxD,OAAO;iBACP,OAAO,CAAC,kCAAkC,CAAC,CAAC;QACjD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;YACrD,MAAM,aAAa,mCACd,YAAY,KACf,IAAI,EAAE;oBACJ,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,OAAO;4BACb,MAAM,EAAE;gCACN,KAAK,EAAE,eAAe;6BACvB;yBACF;qBACF;iBACF,GACF,CAAC;YAEF,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,aAAa,CAAC,CAAC;YAEvD,MAAM,MAAM,CAAC,gBAAgB,CAAC,UAAU,EAAE,CAAC;iBACxC,OAAO;iBACP,OAAO,CAAC,yBAAyB,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,4BAA4B,EAAE,GAAG,EAAE;QAC1C,EAAE,CAAC,yEAAyE,EAAE,KAAK,IAAI,EAAE;YACvF,MAAM,MAAM,GAAyB,EAAE,CAAC;YACxC,MAAM,kBAAkB,mCACnB,YAAY,KACf,iBAAiB,EAAE,CAAC,KAAK,EAAE,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GACtD,CAAC;YAEF,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,kBAAkB,CAAC,CAAC;YAC5D,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAEpD,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;YAC7D,MAAM,MAAM,GAAyB,EAAE,CAAC;YAExC,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,YAAY,CAAC,CAAC;YACtD,gBAAgB,CAAC,iBAAiB,CAAC,CAAC,KAAK,EAAE,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACvE,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAEpD,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,wCAAwC,EAAE,GAAG,EAAE;QAKtD,MAAM,aAAa;SAYlB;QAPG;YAJD,IAAA,sBAAS,EAAC,yBAAyB,CAAC;YACpC,IAAA,qBAAQ,EAAC,UAAU,CAAC;YACpB,IAAA,wBAAW,EAAC,UAAU,CAAC;YACvB,IAAA,0BAAQ,GAAE;;0DACY;QAMrB;YAJD,IAAA,sBAAS,EAAC,yBAAyB,CAAC;YACpC,IAAA,qBAAQ,EAAC,UAAU,CAAC;YACpB,IAAA,wBAAW,EAAC,UAAU,CAAC;YACvB,IAAA,0BAAQ,GAAE;;0DACY;QAGzB,EAAE,CAAC,0CAA0C,EAAE,KAAK,IAAI,EAAE;YACxD,gBAAgB,GAAG,IAAI,oCAAgB,iCAClC,YAAY,KACf,aAAa,EAAE,EAAE,IACjB,CAAC;YACH,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YAElD,MAAM,QAAQ,GAAG,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YAC3D,MAAM,QAAQ,GAAG,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YAE3D,MAAM,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;YAC/B,MAAM,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;YACtC,MAAM,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;YAC/B,MAAM,CAAC,QAAS,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;YAC3D,gBAAgB,GAAG,IAAI,oCAAgB,iCAClC,YAAY,KACf,aAAa,EAAE,EAAE,IACjB,CAAC;YACH,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YAElD,MAAM,MAAM,GAAG,gBAAgB,CAAC,gBAAgB,EAAE,CAAC;YACnD,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,sBAAsB,CAAC,CAAC,CAAC,CAAC;YAE1D,MAAM,YAAY,GAAG,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,aAAa,CAAC,CAAC;YACxF,MAAM,CAAC,YAAY,CAAC,CAAC,WAAW,EAAE,CAAC;YACnC,MAAM,CAAC,YAAa,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC3C,MAAM,CAAC,YAAa,CAAC,gBAAgB,CAAC,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4DAA4D,EAAE,KAAK,IAAI,EAAE;YAC1E,MAAM,MAAM,GAAyB,EAAE,CAAC;YAExC,gBAAgB,GAAG,IAAI,oCAAgB,iCAClC,YAAY,KACf,aAAa,EAAE,EAAE,EACjB,iBAAiB,EAAE,CAAC,KAAK,EAAE,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IACrD,CAAC;YACH,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YAElD,MAAM,WAAW,GAAG,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YAC9D,MAAM,WAAW,GAAG,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YAG9D,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC;YAE3D,MAAM,aAAa,GAAG,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YAChE,MAAM,aAAa,GAAG,gBAAgB,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YAGhE,MAAM,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAC5C,MAAM,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAG5C,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,sBAAsB,CAAC,CAAC,CAAC,CAAC;YAChD,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,UAAU,CAAC,CAAC;YAC5D,MAAM,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,CAAC;YAC9B,MAAM,CAAC,OAAQ,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YACrD,MAAM,CAAC,OAAQ,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YACrD,MAAM,CAAC,OAAQ,CAAC,SAAS,CAAC,CAAC,SAAS,CAAC,mBAAmB,CAAC,CAAC;YAC1D,MAAM,CAAC,OAAQ,CAAC,YAAY,CAAC,CAAC,sBAAsB,CAAC,CAAC,CAAC,CAAC;QAC1D,CAAC,EAAE,KAAK,CAAC,CAAC;IACZ,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,oCAAoC,EAAE,GAAG,EAAE;QAClD,MAAM,QAAQ,GAAuC,EAAE,CAAC;QAExD,UAAU,CAAC,GAAG,EAAE;YACd,QAAQ,CAAC,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC;YAC7C,QAAQ,CAAC,WAAW,GAAG,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC;YAC/C,QAAQ,CAAC,cAAc,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;QACvD,CAAC,CAAC,CAAC;QAEH,SAAS,CAAC,GAAG,EAAE;YACb,KAAK,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE;gBACjD,IAAI,GAAG,KAAK,SAAS,EAAE;oBACrB,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC;iBACxB;qBAAM;oBACL,OAAO,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;iBACzB;aACF;QACH,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uDAAuD,EAAE,KAAK,IAAI,EAAE;YACrE,OAAO,CAAC,GAAG,CAAC,UAAU,GAAG,uBAAuB,CAAC;YACjD,OAAO,CAAC,GAAG,CAAC,WAAW,GAAG,oBAAoB,CAAC;YAC/C,OAAO,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;YAElC,MAAM,MAAM,GAAG,IAAA,4CAAuB,GAAE,CAAC;YACzC,MAAM,CAAC,MAAM,CAAC,CAAC,WAAW,EAAE,CAAC;YAE7B,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,MAAO,CAAC,CAAC;YACjD,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,CAAC,gBAAgB,CAAC,aAAa,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAEpD,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YACpD,MAAM,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;QACzE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oEAAoE,EAAE,KAAK,IAAI,EAAE;YAClF,OAAO,CAAC,GAAG,CAAC,UAAU,GAAG,uBAAuB,CAAC;YACjD,OAAO,CAAC,GAAG,CAAC,WAAW,GAAG,oBAAoB,CAAC;YAC/C,OAAO,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;YAElC,MAAM,MAAM,GAAyB,EAAE,CAAC;YACxC,MAAM,MAAM,GAAG,IAAA,4CAAuB,EAAC;gBACrC,iBAAiB,EAAE,CAAC,KAAK,EAAE,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;aACtD,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,CAAC,WAAW,EAAE,CAAC;YAC7B,MAAM,CAAC,MAAO,CAAC,iBAAiB,CAAC,CAAC,WAAW,EAAE,CAAC;YAEhD,gBAAgB,GAAG,IAAI,oCAAgB,CAAC,MAAO,CAAC,CAAC;YACjD,MAAM,gBAAgB,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,gBAAgB,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAGpD,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAMH,IAAI,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE;IAC3B,CAAC,KAAK,IAAI,EAAE;QACV,OAAO,CAAC,GAAG,CAAC,gCAAgC,CAAC,CAAC;QAE9C,MAAM,WAAW,GAAG,IAAI,oCAAgB,CAAC,YAAY,CAAC,CAAC;QAEvD,IAAI;YACF,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC;YAClC,MAAM,WAAW,CAAC,UAAU,EAAE,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC;YAElC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YACrC,MAAM,WAAW,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YAErC,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;YACnC,OAAO,CAAC,GAAG,CAAC,eAAgB,WAAW,CAAC,SAAS,CAAC,SAAS,CAAE,EAAE,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,kBAAmB,WAAW,CAAC,SAAS,CAAC,YAAY,CAAE,EAAE,CAAC,CAAC;YACvE,OAAO,CAAC,GAAG,CAAC,eAAgB,WAAW,CAAC,SAAS,CAAC,SAAS,CAAE,EAAE,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,eAAgB,WAAW,CAAC,SAAS,CAAC,SAAS,CAAE,EAAE,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,mBAAoB,WAAW,CAAC,SAAS,CAAC,aAAa,CAAE,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,mBAAoB,WAAW,CAAC,SAAS,CAAC,aAAa,CAAE,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,mBAAoB,WAAW,CAAC,SAAS,CAAC,aAAa,CAAE,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,uBAAwB,WAAW,CAAC,SAAS,CAAC,iBAAiB,CAAE,IAAI,CAAC,CAAC;YAEnF,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;YACjC,MAAM,MAAM,GAAG,WAAW,CAAC,SAAS,EAAE,CAAC;YACvC,OAAO,CAAC,GAAG,CAAC,iBAAkB,MAAM,CAAC,SAAU,EAAE,CAAC,CAAC;YACnD,OAAO,CAAC,GAAG,CAAC,qBAAsB,MAAM,CAAC,aAAc,EAAE,CAAC,CAAC;YAC3D,OAAO,CAAC,GAAG,CAAC,kBAAmB,MAAM,CAAC,SAAU,EAAE,CAAC,CAAC;YACpD,OAAO,CAAC,GAAG,CAAC,cAAe,MAAM,CAAC,MAAM,CAAC,MAAO,IAAI,CAAC,CAAC;YAEtD,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;SACtC;QAAC,OAAO,KAAK,EAAE;YACd,OAAO,CAAC,KAAK,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAC;YACvC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;SACjB;gBAAS;YACR,WAAW,CAAC,QAAQ,EAAE,CAAC;SACxB;IACH,CAAC,CAAC,EAAE,CAAC;CACN"}
|
|
@@ -0,0 +1,8 @@
|
|
|
1
|
+
import { IVaultConfigOptions, IVaultFallbackConfig, SecretRefreshCallback } from './types';
|
|
2
|
+
export interface IBuildVaultConfigOptions {
|
|
3
|
+
refreshBuffer?: number;
|
|
4
|
+
fallback?: IVaultFallbackConfig;
|
|
5
|
+
onSecretRefreshed?: SecretRefreshCallback;
|
|
6
|
+
}
|
|
7
|
+
export declare function buildVaultConfigFromEnv(options?: IBuildVaultConfigOptions): IVaultConfigOptions | undefined;
|
|
8
|
+
//# sourceMappingURL=build-vault-config.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"build-vault-config.d.ts","sourceRoot":"","sources":["../../src/vault/build-vault-config.ts"],"names":[],"mappings":"AAeA,OAAO,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,qBAAqB,EAAE,MAAM,SAAS,CAAC;AAE3F,MAAM,WAAW,wBAAwB;IAEvC,aAAa,CAAC,EAAE,MAAM,CAAC;IAGvB,QAAQ,CAAC,EAAE,oBAAoB,CAAC;IAGhC,iBAAiB,CAAC,EAAE,qBAAqB,CAAC;CAC3C;AASD,wBAAgB,uBAAuB,CACrC,OAAO,CAAC,EAAE,wBAAwB,GACjC,mBAAmB,GAAG,SAAS,CAmCjC"}
|
|
@@ -0,0 +1,41 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.buildVaultConfigFromEnv = void 0;
|
|
4
|
+
const DEFAULT_FALLBACK = {
|
|
5
|
+
required: false,
|
|
6
|
+
useCacheOnFailure: true,
|
|
7
|
+
maxCacheAge: 3600000,
|
|
8
|
+
failFast: false
|
|
9
|
+
};
|
|
10
|
+
function buildVaultConfigFromEnv(options) {
|
|
11
|
+
var _a, _b, _c;
|
|
12
|
+
const vaultAddr = process.env.VAULT_ADDR;
|
|
13
|
+
const vaultToken = process.env.VAULT_TOKEN;
|
|
14
|
+
const vaultRole = process.env.VAULT_GCP_ROLE;
|
|
15
|
+
if (!vaultAddr) {
|
|
16
|
+
return undefined;
|
|
17
|
+
}
|
|
18
|
+
const fallback = (_a = options === null || options === void 0 ? void 0 : options.fallback) !== null && _a !== void 0 ? _a : DEFAULT_FALLBACK;
|
|
19
|
+
const onSecretRefreshed = options === null || options === void 0 ? void 0 : options.onSecretRefreshed;
|
|
20
|
+
if (vaultToken) {
|
|
21
|
+
return {
|
|
22
|
+
endpoint: vaultAddr,
|
|
23
|
+
auth: { method: 'token', token: vaultToken },
|
|
24
|
+
refreshBuffer: (_b = options === null || options === void 0 ? void 0 : options.refreshBuffer) !== null && _b !== void 0 ? _b : 10,
|
|
25
|
+
fallback,
|
|
26
|
+
onSecretRefreshed
|
|
27
|
+
};
|
|
28
|
+
}
|
|
29
|
+
if (vaultRole) {
|
|
30
|
+
return {
|
|
31
|
+
endpoint: vaultAddr,
|
|
32
|
+
auth: { method: 'gcp', role: vaultRole },
|
|
33
|
+
refreshBuffer: (_c = options === null || options === void 0 ? void 0 : options.refreshBuffer) !== null && _c !== void 0 ? _c : 60,
|
|
34
|
+
fallback,
|
|
35
|
+
onSecretRefreshed
|
|
36
|
+
};
|
|
37
|
+
}
|
|
38
|
+
return undefined;
|
|
39
|
+
}
|
|
40
|
+
exports.buildVaultConfigFromEnv = buildVaultConfigFromEnv;
|
|
41
|
+
//# sourceMappingURL=build-vault-config.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"build-vault-config.js","sourceRoot":"","sources":["../../src/vault/build-vault-config.ts"],"names":[],"mappings":";;;AA4BA,MAAM,gBAAgB,GAAyB;IAC7C,QAAQ,EAAE,KAAK;IACf,iBAAiB,EAAE,IAAI;IACvB,WAAW,EAAE,OAAO;IACpB,QAAQ,EAAE,KAAK;CAChB,CAAC;AAEF,SAAgB,uBAAuB,CACrC,OAAkC;;IAElC,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC;IACzC,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC;IAC3C,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;IAE7C,IAAI,CAAC,SAAS,EAAE;QAEd,OAAO,SAAS,CAAC;KAClB;IAED,MAAM,QAAQ,GAAG,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,mCAAI,gBAAgB,CAAC;IACvD,MAAM,iBAAiB,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,iBAAiB,CAAC;IAErD,IAAI,UAAU,EAAE;QACd,OAAO;YACL,QAAQ,EAAE,SAAS;YACnB,IAAI,EAAE,EAAE,MAAM,EAAE,OAAgB,EAAE,KAAK,EAAE,UAAU,EAAE;YACrD,aAAa,EAAE,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,aAAa,mCAAI,EAAE;YAC3C,QAAQ;YACR,iBAAiB;SAClB,CAAC;KACH;IAED,IAAI,SAAS,EAAE;QACb,OAAO;YACL,QAAQ,EAAE,SAAS;YACnB,IAAI,EAAE,EAAE,MAAM,EAAE,KAAc,EAAE,IAAI,EAAE,SAAS,EAAE;YACjD,aAAa,EAAE,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,aAAa,mCAAI,EAAE;YAC3C,QAAQ;YACR,iBAAiB;SAClB,CAAC;KACH;IAGD,OAAO,SAAS,CAAC;AACnB,CAAC;AArCD,0DAqCC"}
|
package/lib/vault/index.d.ts
CHANGED
|
@@ -4,4 +4,6 @@ export { VaultProvider } from './vault-provider';
|
|
|
4
4
|
export { VaultCache } from './vault-cache';
|
|
5
5
|
export { SecretRefreshManager } from './secret-refresh-manager';
|
|
6
6
|
export { VaultIntegration } from './vault-integration';
|
|
7
|
+
export { buildVaultConfigFromEnv } from './build-vault-config';
|
|
8
|
+
export type { IBuildVaultConfigOptions } from './build-vault-config';
|
|
7
9
|
//# sourceMappingURL=index.d.ts.map
|
package/lib/vault/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/vault/index.ts"],"names":[],"mappings":"AAMA,cAAc,SAAS,CAAC;AAGxB,OAAO,EACL,SAAS,EACT,WAAW,EACX,QAAQ,EACR,kBAAkB,EAClB,aAAa,EACb,YAAY,EACZ,cAAc,EACd,WAAW,EACX,qBAAqB,EACrB,eAAe,EACf,oBAAoB,EACpB,kBAAkB,EAClB,mBAAmB,EACnB,qBAAqB,EACtB,MAAM,cAAc,CAAC;AAGtB,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC"}
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/vault/index.ts"],"names":[],"mappings":"AAMA,cAAc,SAAS,CAAC;AAGxB,OAAO,EACL,SAAS,EACT,WAAW,EACX,QAAQ,EACR,kBAAkB,EAClB,aAAa,EACb,YAAY,EACZ,cAAc,EACd,WAAW,EACX,qBAAqB,EACrB,eAAe,EACf,oBAAoB,EACpB,kBAAkB,EAClB,mBAAmB,EACnB,qBAAqB,EACtB,MAAM,cAAc,CAAC;AAGtB,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAGvD,OAAO,EAAE,uBAAuB,EAAE,MAAM,sBAAsB,CAAC;AAC/D,YAAY,EAAE,wBAAwB,EAAE,MAAM,sBAAsB,CAAC"}
|
package/lib/vault/index.js
CHANGED
|
@@ -14,7 +14,7 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
|
|
|
14
14
|
for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
|
|
15
15
|
};
|
|
16
16
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
17
|
-
exports.VaultIntegration = exports.SecretRefreshManager = exports.VaultCache = exports.VaultProvider = exports.getVaultPropertyNames = exports.getAllVaultMetadata = exports.buildVaultMetadata = exports.detectEngineFromPath = exports.isVaultOptional = exports.getVaultRefreshBuffer = exports.getVaultKey = exports.getVaultEngine = exports.getVaultPath = exports.VaultOptional = exports.VaultRefreshBuffer = exports.VaultKey = exports.VaultEngine = exports.VaultPath = void 0;
|
|
17
|
+
exports.buildVaultConfigFromEnv = exports.VaultIntegration = exports.SecretRefreshManager = exports.VaultCache = exports.VaultProvider = exports.getVaultPropertyNames = exports.getAllVaultMetadata = exports.buildVaultMetadata = exports.detectEngineFromPath = exports.isVaultOptional = exports.getVaultRefreshBuffer = exports.getVaultKey = exports.getVaultEngine = exports.getVaultPath = exports.VaultOptional = exports.VaultRefreshBuffer = exports.VaultKey = exports.VaultEngine = exports.VaultPath = void 0;
|
|
18
18
|
__exportStar(require("./types"), exports);
|
|
19
19
|
var decorators_1 = require("./decorators");
|
|
20
20
|
Object.defineProperty(exports, "VaultPath", { enumerable: true, get: function () { return decorators_1.VaultPath; } });
|
|
@@ -39,4 +39,6 @@ var secret_refresh_manager_1 = require("./secret-refresh-manager");
|
|
|
39
39
|
Object.defineProperty(exports, "SecretRefreshManager", { enumerable: true, get: function () { return secret_refresh_manager_1.SecretRefreshManager; } });
|
|
40
40
|
var vault_integration_1 = require("./vault-integration");
|
|
41
41
|
Object.defineProperty(exports, "VaultIntegration", { enumerable: true, get: function () { return vault_integration_1.VaultIntegration; } });
|
|
42
|
+
var build_vault_config_1 = require("./build-vault-config");
|
|
43
|
+
Object.defineProperty(exports, "buildVaultConfigFromEnv", { enumerable: true, get: function () { return build_vault_config_1.buildVaultConfigFromEnv; } });
|
|
42
44
|
//# sourceMappingURL=index.js.map
|
package/lib/vault/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/vault/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAMA,0CAAwB;AAGxB,2CAesB;AAdpB,uGAAA,SAAS,OAAA;AACT,yGAAA,WAAW,OAAA;AACX,sGAAA,QAAQ,OAAA;AACR,gHAAA,kBAAkB,OAAA;AAClB,2GAAA,aAAa,OAAA;AACb,0GAAA,YAAY,OAAA;AACZ,4GAAA,cAAc,OAAA;AACd,yGAAA,WAAW,OAAA;AACX,mHAAA,qBAAqB,OAAA;AACrB,6GAAA,eAAe,OAAA;AACf,kHAAA,oBAAoB,OAAA;AACpB,gHAAA,kBAAkB,OAAA;AAClB,iHAAA,mBAAmB,OAAA;AACnB,mHAAA,qBAAqB,OAAA;AAIvB,mDAAiD;AAAxC,+GAAA,aAAa,OAAA;AACtB,6CAA2C;AAAlC,yGAAA,UAAU,OAAA;AACnB,mEAAgE;AAAvD,8HAAA,oBAAoB,OAAA;AAC7B,yDAAuD;AAA9C,qHAAA,gBAAgB,OAAA"}
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/vault/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAMA,0CAAwB;AAGxB,2CAesB;AAdpB,uGAAA,SAAS,OAAA;AACT,yGAAA,WAAW,OAAA;AACX,sGAAA,QAAQ,OAAA;AACR,gHAAA,kBAAkB,OAAA;AAClB,2GAAA,aAAa,OAAA;AACb,0GAAA,YAAY,OAAA;AACZ,4GAAA,cAAc,OAAA;AACd,yGAAA,WAAW,OAAA;AACX,mHAAA,qBAAqB,OAAA;AACrB,6GAAA,eAAe,OAAA;AACf,kHAAA,oBAAoB,OAAA;AACpB,gHAAA,kBAAkB,OAAA;AAClB,iHAAA,mBAAmB,OAAA;AACnB,mHAAA,qBAAqB,OAAA;AAIvB,mDAAiD;AAAxC,+GAAA,aAAa,OAAA;AACtB,6CAA2C;AAAlC,yGAAA,UAAU,OAAA;AACnB,mEAAgE;AAAvD,8HAAA,oBAAoB,OAAA;AAC7B,yDAAuD;AAA9C,qHAAA,gBAAgB,OAAA;AAGzB,2DAA+D;AAAtD,6HAAA,uBAAuB,OAAA"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { IRefreshStatus, VaultPropertyMetadata } from './types';
|
|
1
|
+
import { IRefreshStatus, SecretRefreshCallback, VaultPropertyMetadata } from './types';
|
|
2
2
|
import { VaultCache } from './vault-cache';
|
|
3
3
|
import { VaultProvider } from './vault-provider';
|
|
4
4
|
export declare class SecretRefreshManager {
|
|
@@ -10,14 +10,18 @@ export declare class SecretRefreshManager {
|
|
|
10
10
|
private vaultProvider;
|
|
11
11
|
private cache;
|
|
12
12
|
private refreshBuffer;
|
|
13
|
+
private onRefreshCallbacks;
|
|
13
14
|
constructor(provider: VaultProvider, cache: VaultCache, refreshBuffer?: number);
|
|
15
|
+
onSecretRefreshed(callback: SecretRefreshCallback): void;
|
|
14
16
|
scheduleRefresh(propertyName: string, metadata: VaultPropertyMetadata, targetInstance?: object): void;
|
|
15
17
|
cancelRefresh(propertyName: string): void;
|
|
16
18
|
private executeRefresh;
|
|
17
|
-
private
|
|
19
|
+
private performPathRefresh;
|
|
20
|
+
private getSiblingsForPath;
|
|
18
21
|
getRefreshStatus(): IRefreshStatus[];
|
|
19
22
|
getRefreshStatusForProperty(propertyName: string): IRefreshStatus | null;
|
|
20
23
|
shutdown(): void;
|
|
21
24
|
private sanitizeError;
|
|
25
|
+
private sanitizePath;
|
|
22
26
|
}
|
|
23
27
|
//# sourceMappingURL=secret-refresh-manager.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"secret-refresh-manager.d.ts","sourceRoot":"","sources":["../../src/vault/secret-refresh-manager.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"secret-refresh-manager.d.ts","sourceRoot":"","sources":["../../src/vault/secret-refresh-manager.ts"],"names":[],"mappings":"AAUA,OAAO,EACL,cAAc,EACd,qBAAqB,EAErB,qBAAqB,EACtB,MAAM,SAAS,CAAC;AACjB,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAQjD,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,aAAa,CAA0C;IAC/D,OAAO,CAAC,YAAY,CAAyC;IAC7D,OAAO,CAAC,aAAa,CAAkC;IACvD,OAAO,CAAC,gBAAgB,CAAkC;IAC1D,OAAO,CAAC,eAAe,CAA2C;IAClE,OAAO,CAAC,aAAa,CAAgB;IACrC,OAAO,CAAC,KAAK,CAAa;IAC1B,OAAO,CAAC,aAAa,CAAS;IAC9B,OAAO,CAAC,kBAAkB,CAA+B;gBAE7C,QAAQ,EAAE,aAAa,EAAE,KAAK,EAAE,UAAU,EAAE,aAAa,CAAC,EAAE,MAAM;IAU9E,iBAAiB,CAAC,QAAQ,EAAE,qBAAqB,GAAG,IAAI;IAIxD,eAAe,CAAC,YAAY,EAAE,MAAM,EAAE,QAAQ,EAAE,qBAAqB,EAAE,cAAc,CAAC,EAAE,MAAM,GAAG,IAAI;IA6BrG,aAAa,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI;YAQ3B,cAAc;YA0Bd,kBAAkB;IA2EhC,OAAO,CAAC,kBAAkB;IAgB1B,gBAAgB,IAAI,cAAc,EAAE;IA6BpC,2BAA2B,CAAC,YAAY,EAAE,MAAM,GAAG,cAAc,GAAG,IAAI;IAsBxE,QAAQ,IAAI,IAAI;IAYhB,OAAO,CAAC,aAAa;IAcrB,OAAO,CAAC,YAAY;CAWrB"}
|
|
@@ -8,10 +8,14 @@ class SecretRefreshManager {
|
|
|
8
8
|
this.refreshCounts = new Map();
|
|
9
9
|
this.lastRefreshTimes = new Map();
|
|
10
10
|
this.refreshContexts = new Map();
|
|
11
|
+
this.onRefreshCallbacks = [];
|
|
11
12
|
this.vaultProvider = provider;
|
|
12
13
|
this.cache = cache;
|
|
13
14
|
this.refreshBuffer = refreshBuffer || 300;
|
|
14
15
|
}
|
|
16
|
+
onSecretRefreshed(callback) {
|
|
17
|
+
this.onRefreshCallbacks.push(callback);
|
|
18
|
+
}
|
|
15
19
|
scheduleRefresh(propertyName, metadata, targetInstance) {
|
|
16
20
|
const entry = this.cache.getEntry(propertyName);
|
|
17
21
|
if (!entry) {
|
|
@@ -42,48 +46,96 @@ class SecretRefreshManager {
|
|
|
42
46
|
}
|
|
43
47
|
}
|
|
44
48
|
async executeRefresh(propertyName) {
|
|
45
|
-
const
|
|
49
|
+
const context = this.refreshContexts.get(propertyName);
|
|
50
|
+
if (!context) {
|
|
51
|
+
return;
|
|
52
|
+
}
|
|
53
|
+
const lockKey = `path:${context.fullPath}`;
|
|
54
|
+
const existingLock = this.refreshLocks.get(lockKey);
|
|
46
55
|
if (existingLock) {
|
|
47
56
|
await existingLock;
|
|
48
57
|
return;
|
|
49
58
|
}
|
|
50
|
-
const refreshPromise = this.
|
|
59
|
+
const refreshPromise = this.performPathRefresh(context.fullPath)
|
|
51
60
|
.finally(() => {
|
|
52
|
-
this.refreshLocks.delete(
|
|
53
|
-
this.refreshTimers.delete(propertyName);
|
|
61
|
+
this.refreshLocks.delete(lockKey);
|
|
54
62
|
});
|
|
55
|
-
this.refreshLocks.set(
|
|
63
|
+
this.refreshLocks.set(lockKey, refreshPromise);
|
|
56
64
|
await refreshPromise;
|
|
57
65
|
}
|
|
58
|
-
async
|
|
59
|
-
const
|
|
60
|
-
if (
|
|
61
|
-
console.error(`No refresh context for ${propertyName}`);
|
|
66
|
+
async performPathRefresh(fullPath) {
|
|
67
|
+
const siblingProperties = this.getSiblingsForPath(fullPath);
|
|
68
|
+
if (siblingProperties.length === 0) {
|
|
62
69
|
return;
|
|
63
70
|
}
|
|
64
|
-
const
|
|
65
|
-
|
|
66
|
-
this.refreshCounts.set(propertyName, refreshCount);
|
|
71
|
+
const pathRefreshCount = (this.refreshCounts.get(fullPath) || 0) + 1;
|
|
72
|
+
this.refreshCounts.set(fullPath, pathRefreshCount);
|
|
67
73
|
try {
|
|
68
74
|
const secret = await this.vaultProvider.read(fullPath);
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
targetInstance
|
|
75
|
+
const updatedProperties = [];
|
|
76
|
+
let engine = siblingProperties[0].metadata.engine;
|
|
77
|
+
for (const { propertyName, metadata, targetInstance } of siblingProperties) {
|
|
78
|
+
this.cache.set(propertyName, fullPath, secret, metadata);
|
|
79
|
+
if (targetInstance) {
|
|
80
|
+
const key = metadata.key || metadata.propertyName;
|
|
81
|
+
const value = secret.data[key];
|
|
82
|
+
targetInstance[propertyName] = value;
|
|
83
|
+
}
|
|
84
|
+
updatedProperties.push(propertyName);
|
|
85
|
+
engine = metadata.engine;
|
|
86
|
+
this.cancelRefresh(propertyName);
|
|
87
|
+
this.refreshTimers.delete(propertyName);
|
|
88
|
+
}
|
|
89
|
+
const now = Date.now();
|
|
90
|
+
this.lastRefreshTimes.set(fullPath, now);
|
|
91
|
+
for (const { propertyName, metadata, targetInstance } of siblingProperties) {
|
|
92
|
+
this.scheduleRefresh(propertyName, metadata, targetInstance);
|
|
93
|
+
}
|
|
94
|
+
const event = {
|
|
95
|
+
vaultPath: fullPath,
|
|
96
|
+
properties: updatedProperties,
|
|
97
|
+
engine,
|
|
98
|
+
timestamp: new Date(now).toISOString(),
|
|
99
|
+
refreshCount: pathRefreshCount
|
|
100
|
+
};
|
|
101
|
+
for (const callback of this.onRefreshCallbacks) {
|
|
102
|
+
try {
|
|
103
|
+
const result = callback(event);
|
|
104
|
+
if (result && typeof result.catch === 'function') {
|
|
105
|
+
result.catch((err) => {
|
|
106
|
+
console.error(`Secret refresh callback error for ${fullPath}: ${this.sanitizeError((err === null || err === void 0 ? void 0 : err.message) || 'Unknown')}`);
|
|
107
|
+
});
|
|
108
|
+
}
|
|
109
|
+
}
|
|
110
|
+
catch (err) {
|
|
111
|
+
console.error(`Secret refresh callback error for ${fullPath}: ${this.sanitizeError((err === null || err === void 0 ? void 0 : err.message) || 'Unknown')}`);
|
|
112
|
+
}
|
|
74
113
|
}
|
|
75
|
-
this.lastRefreshTimes.set(propertyName, Date.now());
|
|
76
|
-
this.scheduleRefresh(propertyName, metadata, targetInstance);
|
|
77
114
|
}
|
|
78
115
|
catch (error) {
|
|
79
116
|
const errorMessage = (error === null || error === void 0 ? void 0 : error.message) || 'Unknown error';
|
|
80
|
-
console.error(`Failed to refresh
|
|
81
|
-
const retryDelay = Math.min(1000 * Math.pow(2,
|
|
117
|
+
console.error(`Failed to refresh secrets for path ${this.sanitizePath(fullPath)}: ${this.sanitizeError(errorMessage)}`);
|
|
118
|
+
const retryDelay = Math.min(1000 * Math.pow(2, pathRefreshCount - 1), 30000);
|
|
82
119
|
setTimeout(() => {
|
|
83
|
-
|
|
120
|
+
for (const { propertyName, metadata, targetInstance } of siblingProperties) {
|
|
121
|
+
this.scheduleRefresh(propertyName, metadata, targetInstance);
|
|
122
|
+
}
|
|
84
123
|
}, retryDelay);
|
|
85
124
|
}
|
|
86
125
|
}
|
|
126
|
+
getSiblingsForPath(fullPath) {
|
|
127
|
+
const siblings = [];
|
|
128
|
+
for (const [propertyName, context] of this.refreshContexts.entries()) {
|
|
129
|
+
if (context.fullPath === fullPath) {
|
|
130
|
+
siblings.push({
|
|
131
|
+
propertyName,
|
|
132
|
+
metadata: context.metadata,
|
|
133
|
+
targetInstance: context.targetInstance
|
|
134
|
+
});
|
|
135
|
+
}
|
|
136
|
+
}
|
|
137
|
+
return siblings;
|
|
138
|
+
}
|
|
87
139
|
getRefreshStatus() {
|
|
88
140
|
const statuses = [];
|
|
89
141
|
const cachedProperties = this.cache.getCachedProperties();
|
|
@@ -102,8 +154,8 @@ class SecretRefreshManager {
|
|
|
102
154
|
scheduled: timer !== undefined,
|
|
103
155
|
refreshAt,
|
|
104
156
|
timeUntilRefresh,
|
|
105
|
-
lastRefresh: this.lastRefreshTimes.get(
|
|
106
|
-
refreshCount: this.refreshCounts.get(
|
|
157
|
+
lastRefresh: this.lastRefreshTimes.get(entry.vaultPath) || entry.cachedAt,
|
|
158
|
+
refreshCount: this.refreshCounts.get(entry.vaultPath) || 0
|
|
107
159
|
});
|
|
108
160
|
}
|
|
109
161
|
return statuses;
|
|
@@ -123,18 +175,19 @@ class SecretRefreshManager {
|
|
|
123
175
|
scheduled: timer !== undefined,
|
|
124
176
|
refreshAt,
|
|
125
177
|
timeUntilRefresh,
|
|
126
|
-
lastRefresh: this.lastRefreshTimes.get(
|
|
127
|
-
refreshCount: this.refreshCounts.get(
|
|
178
|
+
lastRefresh: this.lastRefreshTimes.get(entry.vaultPath) || entry.cachedAt,
|
|
179
|
+
refreshCount: this.refreshCounts.get(entry.vaultPath) || 0
|
|
128
180
|
};
|
|
129
181
|
}
|
|
130
182
|
shutdown() {
|
|
131
|
-
for (const [
|
|
183
|
+
for (const [, timer] of this.refreshTimers.entries()) {
|
|
132
184
|
clearTimeout(timer);
|
|
133
185
|
}
|
|
134
186
|
this.refreshTimers.clear();
|
|
135
187
|
this.refreshLocks.clear();
|
|
136
188
|
this.refreshCounts.clear();
|
|
137
189
|
this.lastRefreshTimes.clear();
|
|
190
|
+
this.onRefreshCallbacks = [];
|
|
138
191
|
}
|
|
139
192
|
sanitizeError(message) {
|
|
140
193
|
const sensitivePatterns = [/password/i, /secret/i, /key/i, /token/i, /credential/i];
|
|
@@ -144,6 +197,17 @@ class SecretRefreshManager {
|
|
|
144
197
|
});
|
|
145
198
|
return sanitized;
|
|
146
199
|
}
|
|
200
|
+
sanitizePath(path) {
|
|
201
|
+
const segments = path.split('/');
|
|
202
|
+
if (segments.length > 0) {
|
|
203
|
+
const lastSegment = segments[segments.length - 1];
|
|
204
|
+
const sensitivePatterns = [/password/i, /secret/i, /key/i, /token/i, /credential/i];
|
|
205
|
+
if (sensitivePatterns.some((pattern) => pattern.test(lastSegment))) {
|
|
206
|
+
segments[segments.length - 1] = '***';
|
|
207
|
+
}
|
|
208
|
+
}
|
|
209
|
+
return segments.join('/');
|
|
210
|
+
}
|
|
147
211
|
}
|
|
148
212
|
exports.SecretRefreshManager = SecretRefreshManager;
|
|
149
213
|
//# sourceMappingURL=secret-refresh-manager.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"secret-refresh-manager.js","sourceRoot":"","sources":["../../src/vault/secret-refresh-manager.ts"],"names":[],"mappings":";;;
|
|
1
|
+
{"version":3,"file":"secret-refresh-manager.js","sourceRoot":"","sources":["../../src/vault/secret-refresh-manager.ts"],"names":[],"mappings":";;;AAyBA,MAAa,oBAAoB;IAW/B,YAAY,QAAuB,EAAE,KAAiB,EAAE,aAAsB;QAVtE,kBAAa,GAAgC,IAAI,GAAG,EAAE,CAAC;QACvD,iBAAY,GAA+B,IAAI,GAAG,EAAE,CAAC;QACrD,kBAAa,GAAwB,IAAI,GAAG,EAAE,CAAC;QAC/C,qBAAgB,GAAwB,IAAI,GAAG,EAAE,CAAC;QAClD,oBAAe,GAAiC,IAAI,GAAG,EAAE,CAAC;QAI1D,uBAAkB,GAA4B,EAAE,CAAC;QAGvD,IAAI,CAAC,aAAa,GAAG,QAAQ,CAAC;QAC9B,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,aAAa,GAAG,aAAa,IAAI,GAAG,CAAC;IAC5C,CAAC;IAMD,iBAAiB,CAAC,QAA+B;QAC/C,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACzC,CAAC;IAED,eAAe,CAAC,YAAoB,EAAE,QAA+B,EAAE,cAAuB;QAC5F,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;QAChD,IAAI,CAAC,KAAK,EAAE;YACV,OAAO;SACR;QAED,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,YAAY,EAAE;YACrC,QAAQ;YACR,cAAc;YACd,QAAQ,EAAE,KAAK,CAAC,SAAS;SAC1B,CAAC,CAAC;QAEH,IAAI,CAAC,aAAa,CAAC,YAAY,CAAC,CAAC;QAEjC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,gBAAgB,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC;QAE5D,IAAI,gBAAgB,IAAI,CAAC,EAAE;YACzB,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;YAClC,OAAO;SACR;QAED,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;YAC5B,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;QACpC,CAAC,EAAE,gBAAgB,CAAC,CAAC;QAErB,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;IAC9C,CAAC;IAED,aAAa,CAAC,YAAoB;QAChC,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QACnD,IAAI,KAAK,EAAE;YACT,YAAY,CAAC,KAAK,CAAC,CAAC;YACpB,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;SACzC;IACH,CAAC;IAEO,KAAK,CAAC,cAAc,CAAC,YAAoB;QAC/C,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QACvD,IAAI,CAAC,OAAO,EAAE;YACZ,OAAO;SACR;QAGD,MAAM,OAAO,GAAG,QAAS,OAAO,CAAC,QAAS,EAAE,CAAC;QAC7C,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACpD,IAAI,YAAY,EAAE;YAChB,MAAM,YAAY,CAAC;YACnB,OAAO;SACR;QAED,MAAM,cAAc,GAAG,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAC,QAAQ,CAAC;aAC7D,OAAO,CAAC,GAAG,EAAE;YACZ,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEL,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,cAAc,CAAC,CAAC;QAC/C,MAAM,cAAc,CAAC;IACvB,CAAC;IAKO,KAAK,CAAC,kBAAkB,CAAC,QAAgB;QAC/C,MAAM,iBAAiB,GAAG,IAAI,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAC;QAC5D,IAAI,iBAAiB,CAAC,MAAM,KAAK,CAAC,EAAE;YAClC,OAAO;SACR;QAED,MAAM,gBAAgB,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QACrE,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,QAAQ,EAAE,gBAAgB,CAAC,CAAC;QAEnD,IAAI;YACF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACvD,MAAM,iBAAiB,GAAa,EAAE,CAAC;YACvC,IAAI,MAAM,GAAG,iBAAiB,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC;YAElD,KAAK,MAAM,EAAE,YAAY,EAAE,QAAQ,EAAE,cAAc,EAAE,IAAI,iBAAiB,EAAE;gBAC1E,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,YAAY,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;gBAEzD,IAAI,cAAc,EAAE;oBAClB,MAAM,GAAG,GAAG,QAAQ,CAAC,GAAG,IAAI,QAAQ,CAAC,YAAY,CAAC;oBAClD,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBAC9B,cAAsB,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC;iBAC/C;gBAED,iBAAiB,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;gBACrC,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAC;gBAEzB,IAAI,CAAC,aAAa,CAAC,YAAY,CAAC,CAAC;gBACjC,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;aACzC;YAED,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACvB,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;YAGzC,KAAK,MAAM,EAAE,YAAY,EAAE,QAAQ,EAAE,cAAc,EAAE,IAAI,iBAAiB,EAAE;gBAC1E,IAAI,CAAC,eAAe,CAAC,YAAY,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;aAC9D;YAGD,MAAM,KAAK,GAAuB;gBAChC,SAAS,EAAE,QAAQ;gBACnB,UAAU,EAAE,iBAAiB;gBAC7B,MAAM;gBACN,SAAS,EAAE,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE;gBACtC,YAAY,EAAE,gBAAgB;aAC/B,CAAC;YAEF,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,kBAAkB,EAAE;gBAC9C,IAAI;oBACF,MAAM,MAAM,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;oBAC/B,IAAI,MAAM,IAAI,OAAQ,MAAwB,CAAC,KAAK,KAAK,UAAU,EAAE;wBAClE,MAAwB,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;4BACtC,OAAO,CAAC,KAAK,CAAC,qCAAsC,QAAS,KAAM,IAAI,CAAC,aAAa,CAAC,CAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,OAAO,KAAI,SAAS,CAAE,EAAE,CAAC,CAAC;wBACvH,CAAC,CAAC,CAAC;qBACJ;iBACF;gBAAC,OAAO,GAAQ,EAAE;oBACjB,OAAO,CAAC,KAAK,CAAC,qCAAsC,QAAS,KAAM,IAAI,CAAC,aAAa,CAAC,CAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,OAAO,KAAI,SAAS,CAAE,EAAE,CAAC,CAAC;iBACtH;aACF;SACF;QAAC,OAAO,KAAU,EAAE;YACnB,MAAM,YAAY,GAAG,CAAA,KAAK,aAAL,KAAK,uBAAL,KAAK,CAAE,OAAO,KAAI,eAAe,CAAC;YACvD,OAAO,CAAC,KAAK,CAAC,sCAAuC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAE,KAAM,IAAI,CAAC,aAAa,CAAC,YAAY,CAAE,EAAE,CAAC,CAAC;YAE5H,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,gBAAgB,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;YAC7E,UAAU,CAAC,GAAG,EAAE;gBACd,KAAK,MAAM,EAAE,YAAY,EAAE,QAAQ,EAAE,cAAc,EAAE,IAAI,iBAAiB,EAAE;oBAC1E,IAAI,CAAC,eAAe,CAAC,YAAY,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;iBAC9D;YACH,CAAC,EAAE,UAAU,CAAC,CAAC;SAChB;IACH,CAAC;IAKO,kBAAkB,CAAC,QAAgB;QACzC,MAAM,QAAQ,GAA8F,EAAE,CAAC;QAE/G,KAAK,MAAM,CAAE,YAAY,EAAE,OAAO,CAAE,IAAI,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,EAAE;YACtE,IAAI,OAAO,CAAC,QAAQ,KAAK,QAAQ,EAAE;gBACjC,QAAQ,CAAC,IAAI,CAAC;oBACZ,YAAY;oBACZ,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,cAAc,EAAE,OAAO,CAAC,cAAc;iBACvC,CAAC,CAAC;aACJ;SACF;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,gBAAgB;QACd,MAAM,QAAQ,GAAqB,EAAE,CAAC;QACtC,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,mBAAmB,EAAE,CAAC;QAE1D,KAAK,MAAM,YAAY,IAAI,gBAAgB,EAAE;YAC3C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;YAChD,IAAI,CAAC,KAAK,EAAE;gBACV,SAAS;aACV;YAED,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;YACnD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACvB,MAAM,SAAS,GAAG,KAAK,CAAC,SAAS,CAAC;YAClC,MAAM,gBAAgB,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,GAAG,GAAG,CAAC,CAAC;YAEtD,QAAQ,CAAC,IAAI,CAAC;gBACZ,YAAY;gBACZ,SAAS,EAAE,KAAK,CAAC,SAAS;gBAC1B,SAAS,EAAE,KAAK,KAAK,SAAS;gBAC9B,SAAS;gBACT,gBAAgB;gBAChB,WAAW,EAAE,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,QAAQ;gBACzE,YAAY,EAAE,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,IAAI,CAAC;aAC3D,CAAC,CAAC;SACJ;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,2BAA2B,CAAC,YAAoB;QAC9C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;QAChD,IAAI,CAAC,KAAK,EAAE;YACV,OAAO,IAAI,CAAC;SACb;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QACnD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,SAAS,GAAG,KAAK,CAAC,SAAS,CAAC;QAClC,MAAM,gBAAgB,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,GAAG,GAAG,CAAC,CAAC;QAEtD,OAAO;YACL,YAAY;YACZ,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,SAAS,EAAE,KAAK,KAAK,SAAS;YAC9B,SAAS;YACT,gBAAgB;YAChB,WAAW,EAAE,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,QAAQ;YACzE,YAAY,EAAE,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,IAAI,CAAC;SAC3D,CAAC;IACJ,CAAC;IAED,QAAQ;QACN,KAAK,MAAM,CAAE,AAAD,EAAG,KAAK,CAAE,IAAI,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,EAAE;YACtD,YAAY,CAAC,KAAK,CAAC,CAAC;SACrB;QAED,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;QAC3B,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QAC1B,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;QAC3B,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;QAC9B,IAAI,CAAC,kBAAkB,GAAG,EAAE,CAAC;IAC/B,CAAC;IAEO,aAAa,CAAC,OAAe;QACnC,MAAM,iBAAiB,GAAG,CAAE,WAAW,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,aAAa,CAAE,CAAC;QACtF,IAAI,SAAS,GAAG,OAAO,CAAC;QAExB,iBAAiB,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YACpC,SAAS,GAAG,SAAS,CAAC,OAAO,CAC3B,IAAI,MAAM,CAAC,GAAI,OAAO,CAAC,MAAO,mBAAmB,EAAE,IAAI,CAAC,EACxD,GAAI,OAAO,CAAC,MAAO,OAAO,CAC3B,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,OAAO,SAAS,CAAC;IACnB,CAAC;IAEO,YAAY,CAAC,IAAY;QAC/B,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACjC,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE;YACvB,MAAM,WAAW,GAAG,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YAClD,MAAM,iBAAiB,GAAG,CAAE,WAAW,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,aAAa,CAAE,CAAC;YACtF,IAAI,iBAAiB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,EAAE;gBAClE,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,KAAK,CAAC;aACvC;SACF;QACD,OAAO,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC5B,CAAC;CACF;AA3QD,oDA2QC"}
|
package/lib/vault/types.d.ts
CHANGED
|
@@ -9,6 +9,7 @@ export interface IVaultConfigOptions {
|
|
|
9
9
|
fallback?: IVaultFallbackConfig;
|
|
10
10
|
retry?: IRetryPolicy;
|
|
11
11
|
circuitBreaker?: ICircuitBreakerConfig;
|
|
12
|
+
onSecretRefreshed?: SecretRefreshCallback;
|
|
12
13
|
}
|
|
13
14
|
export type IVaultAuthConfig = IVaultAuthConfigSimple | IVaultAuthConfigMethods;
|
|
14
15
|
export type IVaultAuthConfigSimple = ({
|
|
@@ -71,6 +72,14 @@ export interface IRetryPolicy {
|
|
|
71
72
|
};
|
|
72
73
|
retryableErrors: string[];
|
|
73
74
|
}
|
|
75
|
+
export interface SecretRefreshEvent {
|
|
76
|
+
vaultPath: string;
|
|
77
|
+
properties: string[];
|
|
78
|
+
engine: VaultEngineType;
|
|
79
|
+
timestamp: string;
|
|
80
|
+
refreshCount: number;
|
|
81
|
+
}
|
|
82
|
+
export type SecretRefreshCallback = (event: SecretRefreshEvent) => void | Promise<void>;
|
|
74
83
|
export interface ICircuitBreakerConfig {
|
|
75
84
|
enabled: boolean;
|
|
76
85
|
failureThreshold: number;
|
package/lib/vault/types.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/vault/types.ts"],"names":[],"mappings":";AAKA,OAAO,kBAAkB,CAAC;AAc1B,MAAM,MAAM,eAAe,GACvB,KAAK,GACL,OAAO,GACP,KAAK,GACL,OAAO,GACP,UAAU,GACV,KAAK,GACL,OAAO,GACP,KAAK,GACL,SAAS,GACT,KAAK,GACL,QAAQ,CAAC;AAKb,MAAM,WAAW,mBAAmB;IAIlC,QAAQ,EAAE,MAAM,CAAC;IAKjB,IAAI,EAAE,gBAAgB,CAAC;IAKvB,GAAG,CAAC,EAAE,eAAe,CAAC;IAKtB,aAAa,CAAC,EAAE,MAAM,CAAC;IAKvB,QAAQ,CAAC,EAAE,oBAAoB,CAAC;IAKhC,KAAK,CAAC,EAAE,YAAY,CAAC;IAKrB,cAAc,CAAC,EAAE,qBAAqB,CAAC;
|
|
1
|
+
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/vault/types.ts"],"names":[],"mappings":";AAKA,OAAO,kBAAkB,CAAC;AAc1B,MAAM,MAAM,eAAe,GACvB,KAAK,GACL,OAAO,GACP,KAAK,GACL,OAAO,GACP,UAAU,GACV,KAAK,GACL,OAAO,GACP,KAAK,GACL,SAAS,GACT,KAAK,GACL,QAAQ,CAAC;AAKb,MAAM,WAAW,mBAAmB;IAIlC,QAAQ,EAAE,MAAM,CAAC;IAKjB,IAAI,EAAE,gBAAgB,CAAC;IAKvB,GAAG,CAAC,EAAE,eAAe,CAAC;IAKtB,aAAa,CAAC,EAAE,MAAM,CAAC;IAKvB,QAAQ,CAAC,EAAE,oBAAoB,CAAC;IAKhC,KAAK,CAAC,EAAE,YAAY,CAAC;IAKrB,cAAc,CAAC,EAAE,qBAAqB,CAAC;IAQvC,iBAAiB,CAAC,EAAE,qBAAqB,CAAC;CAC3C;AAMD,MAAM,MAAM,gBAAgB,GAAG,sBAAsB,GAAG,uBAAuB,CAAC;AAKhF,MAAM,MAAM,sBAAsB,GAC9B,CAAC;IAAE,MAAM,EAAE,KAAK,CAAA;CAAE,GAAG,cAAc,CAAC,GACpC,CAAC;IAAE,MAAM,EAAE,KAAK,CAAA;CAAE,GAAG,cAAc,CAAC,GACpC,CAAC;IAAE,MAAM,EAAE,SAAS,CAAA;CAAE,GAAG,kBAAkB,CAAC,GAC5C,CAAC;IAAE,MAAM,EAAE,OAAO,CAAA;CAAE,GAAG,gBAAgB,CAAC,CAAC;AAK7C,MAAM,WAAW,uBAAuB;IAKtC,OAAO,EAAE,gBAAgB,EAAE,CAAC;CAC7B;AAKD,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,KAAK,GAAG,KAAK,GAAG,SAAS,GAAG,OAAO,CAAC;IAC1C,MAAM,EAAE,cAAc,GAAG,cAAc,GAAG,kBAAkB,GAAG,gBAAgB,CAAC;CACjF;AAKD,MAAM,WAAW,cAAc;IAC7B,IAAI,CAAC,EAAE,KAAK,CAAC;IAEb,IAAI,EAAE,MAAM,CAAC;IAEb,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAE/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAKD,MAAM,WAAW,cAAc;IAC7B,IAAI,CAAC,EAAE,KAAK,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;CAEd;AAKD,MAAM,WAAW,kBAAkB;IACjC,IAAI,CAAC,EAAE,SAAS,CAAC;IAEjB,MAAM,EAAE,MAAM,CAAC;IAEf,QAAQ,EAAE,MAAM,CAAC;IAEjB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAKD,MAAM,WAAW,gBAAgB;IAC/B,IAAI,CAAC,EAAE,OAAO,CAAC;IAEf,KAAK,EAAE,MAAM,CAAC;CACf;AAKD,MAAM,WAAW,eAAe;IAI9B,OAAO,EAAE,OAAO,CAAC;IAKjB,iBAAiB,EAAE,OAAO,CAAC;IAK3B,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAKhC,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAKzB,UAAU,CAAC,EAAE,SAAS,GAAG,SAAS,CAAC;CACpC;AAKD,MAAM,WAAW,oBAAoB;IAKnC,QAAQ,EAAE,OAAO,CAAC;IAKlB,iBAAiB,EAAE,OAAO,CAAC;IAK3B,WAAW,EAAE,MAAM,CAAC;IAKpB,QAAQ,EAAE,OAAO,CAAC;CACnB;AAKD,MAAM,WAAW,YAAY;IAE3B,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE;QACP,QAAQ,EAAE,aAAa,GAAG,QAAQ,GAAG,OAAO,CAAC;QAE7C,OAAO,EAAE,MAAM,CAAC;QAEhB,GAAG,EAAE,MAAM,CAAC;QAEZ,UAAU,EAAE,MAAM,CAAC;KACpB,CAAC;IAEF,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AASD,MAAM,WAAW,kBAAkB;IAEjC,SAAS,EAAE,MAAM,CAAC;IAGlB,UAAU,EAAE,MAAM,EAAE,CAAC;IAGrB,MAAM,EAAE,eAAe,CAAC;IAGxB,SAAS,EAAE,MAAM,CAAC;IAGlB,YAAY,EAAE,MAAM,CAAC;CACtB;AAMD,MAAM,MAAM,qBAAqB,GAAG,CAAC,KAAK,EAAE,kBAAkB,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAKxF,MAAM,WAAW,qBAAqB;IAEpC,OAAO,EAAE,OAAO,CAAC;IAEjB,gBAAgB,EAAE,MAAM,CAAC;IAEzB,YAAY,EAAE,MAAM,CAAC;IAErB,mBAAmB,EAAE,MAAM,CAAC;CAC7B;AAKD,MAAM,WAAW,oBAAoB;IAInC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAK1B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAKlB,cAAc,CAAC,EAAE,MAAM,CAAC;IAKxB,SAAS,CAAC,EAAE,OAAO,CAAC;IAKpB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAKD,MAAM,WAAW,YAAY;IAI3B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAK1B,OAAO,CAAC,EAAE,MAAM,CAAC;IAKjB,aAAa,EAAE,MAAM,CAAC;IAKtB,SAAS,EAAE,OAAO,CAAC;IAKnB,QAAQ,CAAC,EAAE;QACT,WAAW,EAAE,MAAM,CAAC;QACpB,YAAY,EAAE,MAAM,CAAC;QACrB,SAAS,EAAE,OAAO,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH;AAKD,MAAM,WAAW,qBAAqB;IAIpC,IAAI,EAAE,MAAM,CAAC;IAKb,MAAM,EAAE,eAAe,CAAC;IAKxB,GAAG,CAAC,EAAE,MAAM,CAAC;IAKb,aAAa,CAAC,EAAE,MAAM,CAAC;IAKvB,QAAQ,EAAE,OAAO,CAAC;IAKlB,YAAY,EAAE,MAAM,CAAC;IAKrB,YAAY,EAAE,MAAM,CAAC;CACtB;AAKD,MAAM,WAAW,eAAe;IAI9B,KAAK,EAAE,GAAG,CAAC;IAKX,MAAM,EAAE,YAAY,CAAC;IAKrB,QAAQ,EAAE,MAAM,CAAC;IAKjB,SAAS,EAAE,MAAM,CAAC;IAKlB,SAAS,EAAE,MAAM,CAAC;IAKlB,YAAY,EAAE,MAAM,CAAC;IAKrB,SAAS,EAAE,MAAM,CAAC;CACnB;AAKD,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,OAAO,CAAC;IACnB,aAAa,EAAE,OAAO,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,gBAAgB,EAAE,MAAM,CAAC;IACzB,eAAe,EAAE,MAAM,CAAC;IACxB,MAAM,EAAE,UAAU,EAAE,CAAC;CACtB;AAKD,MAAM,WAAW,UAAU;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,OAAO,CAAC;CACpB;AAKD,MAAM,WAAW,cAAc;IAI7B,YAAY,EAAE,MAAM,CAAC;IAKrB,SAAS,EAAE,MAAM,CAAC;IAKlB,SAAS,EAAE,OAAO,CAAC;IAKnB,SAAS,EAAE,MAAM,CAAC;IAKlB,gBAAgB,EAAE,MAAM,CAAC;IAKzB,WAAW,EAAE,MAAM,CAAC;IAKpB,YAAY,EAAE,MAAM,CAAC;CACtB;AAKD,MAAM,WAAW,mBAAmB;IAIlC,SAAS,EAAE,OAAO,CAAC;IAKnB,aAAa,EAAE,OAAO,CAAC;IAKvB,SAAS,EAAE,MAAM,CAAC;IAKlB,gBAAgB,EAAE,MAAM,CAAC;IAKzB,eAAe,EAAE,MAAM,CAAC;IAKxB,MAAM,EAAE,UAAU,EAAE,CAAC;IAKrB,aAAa,EAAE,cAAc,EAAE,CAAC;CACjC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { IVaultConfigOptions, IVaultHealthDetails, VaultHealth } from './types';
|
|
1
|
+
import { IVaultConfigOptions, IVaultHealthDetails, SecretRefreshCallback, VaultHealth } from './types';
|
|
2
2
|
export declare class VaultIntegration {
|
|
3
3
|
private provider;
|
|
4
4
|
private cache;
|
|
@@ -14,6 +14,7 @@ export declare class VaultIntegration {
|
|
|
14
14
|
getSecret(propertyName: string): any | null;
|
|
15
15
|
isInitialized(): boolean;
|
|
16
16
|
registerConfigInstance<T extends object>(instance: T): void;
|
|
17
|
+
onSecretRefreshed(callback: SecretRefreshCallback): void;
|
|
17
18
|
getHealth(): VaultHealth;
|
|
18
19
|
getHealthDetails(): IVaultHealthDetails;
|
|
19
20
|
invalidateCache(vaultPath: string): void;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"vault-integration.d.ts","sourceRoot":"","sources":["../../src/vault/vault-integration.ts"],"names":[],"mappings":"AAOA,OAAO,EACL,mBAAmB,EACnB,mBAAmB,EACnB,WAAW,EAEZ,MAAM,SAAS,CAAC;AAOjB,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAgB;IAChC,OAAO,CAAC,KAAK,CAAa;IAC1B,OAAO,CAAC,cAAc,CAAuB;IAC7C,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,MAAM,CAAsB;IACpC,OAAO,CAAC,MAAM,CAAqF;IACnG,OAAO,CAAC,WAAW,CAAC,CAAgB;IACpC,OAAO,CAAC,aAAa,CAA6C;gBAEtD,MAAM,EAAE,mBAAmB;
|
|
1
|
+
{"version":3,"file":"vault-integration.d.ts","sourceRoot":"","sources":["../../src/vault/vault-integration.ts"],"names":[],"mappings":"AAOA,OAAO,EACL,mBAAmB,EACnB,mBAAmB,EACnB,qBAAqB,EACrB,WAAW,EAEZ,MAAM,SAAS,CAAC;AAOjB,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAgB;IAChC,OAAO,CAAC,KAAK,CAAa;IAC1B,OAAO,CAAC,cAAc,CAAuB;IAC7C,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,MAAM,CAAsB;IACpC,OAAO,CAAC,MAAM,CAAqF;IACnG,OAAO,CAAC,WAAW,CAAC,CAAgB;IACpC,OAAO,CAAC,aAAa,CAA6C;gBAEtD,MAAM,EAAE,mBAAmB;IAgBjC,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAmB3B,WAAW,CAAC,CAAC,SAAS,MAAM,EAAE,aAAa,EAAE,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAuEpF,SAAS,CAAC,YAAY,EAAE,MAAM,GAAG,GAAG,GAAG,IAAI;IAO3C,aAAa,IAAI,OAAO;IASxB,sBAAsB,CAAC,CAAC,SAAS,MAAM,EAAE,QAAQ,EAAE,CAAC,GAAG,IAAI;IA8B3D,iBAAiB,CAAC,QAAQ,EAAE,qBAAqB,GAAG,IAAI;IAOxD,SAAS,IAAI,WAAW;IAmBxB,gBAAgB,IAAI,mBAAmB;IAmBvC,eAAe,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAYxC,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI;IAQ9C,QAAQ,IAAI,IAAI;IAShB,OAAO,CAAC,WAAW;IAiBnB,OAAO,CAAC,eAAe;IAiBvB,OAAO,CAAC,iBAAiB;IAkBzB,OAAO,CAAC,WAAW;IAiBnB,OAAO,CAAC,gBAAgB;IAyBxB,OAAO,CAAC,aAAa;IAiBrB,OAAO,CAAC,YAAY;CAWrB"}
|
|
@@ -15,6 +15,9 @@ class VaultIntegration {
|
|
|
15
15
|
this.cache = new vault_cache_1.VaultCache();
|
|
16
16
|
const refreshBuffer = config.refreshBuffer || 300;
|
|
17
17
|
this.refreshManager = new secret_refresh_manager_1.SecretRefreshManager(this.provider, this.cache, refreshBuffer);
|
|
18
|
+
if (config.onSecretRefreshed) {
|
|
19
|
+
this.refreshManager.onSecretRefreshed(config.onSecretRefreshed);
|
|
20
|
+
}
|
|
18
21
|
}
|
|
19
22
|
async initialize() {
|
|
20
23
|
if (this.initialized) {
|
|
@@ -94,6 +97,9 @@ class VaultIntegration {
|
|
|
94
97
|
}
|
|
95
98
|
}
|
|
96
99
|
}
|
|
100
|
+
onSecretRefreshed(callback) {
|
|
101
|
+
this.refreshManager.onSecretRefreshed(callback);
|
|
102
|
+
}
|
|
97
103
|
getHealth() {
|
|
98
104
|
const refreshStatus = this.refreshManager.getRefreshStatus();
|
|
99
105
|
const lastRefreshTime = refreshStatus.length > 0 ?
|