Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Adding support for AWS Secrets Manager #955

Closed
wants to merge 41 commits into from
Closed

Adding support for AWS Secrets Manager #955

wants to merge 41 commits into from

Conversation

chris-j-h
Copy link
Collaborator

@chris-j-h chris-j-h commented Jan 7, 2020
edited
Loading

Adds supports for AWS Secrets Manager as a way to store and retrieve Tessera key pairs.

Replaces #947. Differences to #947 include:

  • Merged with master
    • Update to work with the new pico cli implementation
    • Update to work with the new generic/default key vault config object
  • Improve dependency management
  • Update tests

chris-j-h and others added 30 commits October 24, 2019 10:08
@chris-j-h
[maven-release-plugin] prepare release tessera-0.10.1
d743f15
Initial implementation of AWS Secrets Manager support
399c1ee
Merge branch 'master' of https://github.com/vgeorgescu/tessera into f…
d5ecb6c 
…eature/AWSSecretManager
Build runs successfully
f934343
AWS Secrets Manager implementation for KeyVault added
1e7c7af
Merge branch 'master' of https://github.com/vgeorgescu/tessera into f…
e2b0dd3 
…eature/AWSSecretManager
Fixing pom.xml character
3aeb497
updated version to 0.11-SNAPSHOT
299ca47
updated version to 0.11-SNAPSHOT
716b7de
updated version to 0.11-SNAPSHOT
fe3ed2d
updated version to 0.11-SNAPSHOT
ff0773d
removed AWSCURRRENT
231db8f
@vgeorgescu
Merge pull request #2 from vgeorgescu/feature/AWSSecretsManagerDone
be105b3 
AWS Secrets Manager implementation for KeyVault added
Merge branch 'master' of https://github.com/jpmorganchase/tessera int…
76551fa 
…o feature/AWSSecretManager

� Conflicts:
�	cli/cli-api/src/test/java/com/quorum/tessera/cli/keypassresolver/CliKeyPasswordResolverTest.java
�	cli/config-cli/src/main/java/com/quorum/tessera/config/cli/parsers/KeyGenerationParser.java
�	cli/config-cli/src/test/java/com/quorum/tessera/config/cli/OverrideUtilTest.java
�	cli/config-cli/src/test/java/com/quorum/tessera/config/cli/parsers/KeyGenerationParserTest.java
�	config-migration/src/test/java/com/quorum/tessera/config/migration/test/FixtureUtil.java
�	config/src/main/java/com/quorum/tessera/config/JaxbConfigFactory.java
�	config/src/main/java/com/quorum/tessera/config/KeyConfiguration.java
�	config/src/main/java/com/quorum/tessera/config/adapters/KeyDataAdapter.java
�	config/src/test/java/com/quorum/tessera/config/adapters/KeyDataAdapterTest.java
�	key-generation/src/main/java/com/quorum/tessera/key/generation/DefaultKeyGeneratorFactory.java
�	key-generation/src/test/java/com/quorum/tessera/key/generation/KeyGeneratorFactoryTest.java
tessera/upstream/master update
5fb0b7d
Merge branch 'master' into feature/AWSSecretManager
44deb87
rearrange code
26f5ea2
rearrange code
96fc164
rearrange code
783b86f
@Emi14 @chris-j-h
Update config/src/main/java/com/quorum/tessera/config/keypairs/AWSKey…
f85f8b6 
…Pair.java

Co-Authored-By: chris-j-h <39617426+chris-j-h@users.noreply.github.com>
@Emi14 @chris-j-h
Update config/src/main/java/com/quorum/tessera/config/keypairs/AWSKey…
ad43a85 
…Pair.java

Co-Authored-By: chris-j-h <39617426+chris-j-h@users.noreply.github.com>
resolved PR conversations
9788674
calling validator.validate() for AWSKeyVaultConfig
d178718
added acceptance tests for AWS Vault
0bd3aa6
Merge branches 'feature/AWSSecretManager' and 'master' of https://git…
1b0c090 
…hub.com/vgeorgescu/tessera into feature/AWSSecretManager

� Conflicts:
�	tessera-grpc/grpc-service/pom.xml
added gradle files for AWS Secrets Manager Key Vault implementation
37fc957
@chris-j-h
AWSKeyGenerator: Fix false +ve test, remove jnacl dependency, add tests
0bc2ed9
@chris-j-h
Resolve httpclient dependency convergence by locking the version
50f5732 
Excluding the dependency would introduce issues for users running acceptance tests with the slim jar when not also including the aws shaded jar on the classpath
@chris-j-h
Remove no longer needed excludes after removal of grpc code
2a259fa
@chris-j-h
Update AWS IT for multi-keygen & make endpoint validation less stringent
0c9970c 
The updated validation checks only that a scheme has been provided. This makes testing simpler and should be sufficient for now.
@chris-j-h
Fix dependency convergence within aws secretsmanager using dep mngmt
a8d70cf
@chris-j-h
Merge branch 'master' into feature/AWSSecretsManager
5f8ddc1 
# Conflicts:
#	cli/config-cli/src/main/java/com/quorum/tessera/config/cli/parsers/KeyGenerationParser.java
#	cli/config-cli/src/test/java/com/quorum/tessera/config/cli/parsers/KeyGenerationParserTest.java
#	config/src/main/java/com/quorum/tessera/config/KeyConfiguration.java
#	pom.xml
@chris-j-h
Update AWS tests for new CLI
07f64e0
@chris-j-h
Add support for generic keyvaultconfig object for AWS
d06980f
@chris-j-h chris-j-h mentioned this pull request Jan 7, 2020
Merged
Krish1979
Krish1979 previously approved these changes Jan 7, 2020
View reviewed changes
@codecov-io
Copy link

codecov-io commented Jan 7, 2020
edited
Loading

Codecov Report

Merging #955 into master will decrease coverage by 0.01%.
The diff coverage is 98.92%.

Impacted file tree graph

@@             Coverage Diff             @@
##             master    #955      +/-   ##
===========================================
- Coverage     99.31%   99.3%   -0.02%     
- Complexity     2088    2146      +58     
===========================================
  Files           320     328       +8     
  Lines          5709    5871     +162     
  Branches        328     345      +17     
===========================================
+ Hits           5670    5830     +160     
  Misses            5       5              
- Partials         34      36       +2
Impacted Files Coverage Δ Complexity Δ
...va/com/quorum/tessera/config/KeyConfiguration.java 100% <ø> (ø) 19 <0> (ø) ⬇️
...m/quorum/tessera/config/DefaultKeyVaultConfig.java 100% <ø> (ø) 6 <0> (ø) ⬇️
...quorum/tessera/config/KeyVaultConfigConverter.java 100% <100%> (ø) 4 <2> (ø) ⬇️
...onfig/constraints/UnsupportedKeyPairValidator.java 97.14% <100%> (+0.47%) 18 <8> (+2) ⬆️
...sera/key/vault/aws/AWSSecretsManagerException.java 100% <100%> (ø) 1 <1> (?)
...a/key/generation/AWSSecretManagerKeyGenerator.java 100% <100%> (ø) 6 <6> (?)
...n/java/com/quorum/tessera/config/KeyVaultType.java 100% <100%> (ø) 1 <0> (ø) ⬇️
...c/main/java/com/quorum/tessera/config/KeyData.java 100% <100%> (ø) 34 <5> (+4) ⬆️
...ra/config/constraints/KeyVaultConfigValidator.java 100% <100%> (ø) 14 <0> (+3) ⬆️
...com/quorum/tessera/config/keypairs/AWSKeyPair.java 100% <100%> (ø) 7 <7> (?)
... and 18 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 54e13ee...a91da86. Read the comment docs.

@chris-j-h chris-j-h closed this Jan 7, 2020
@chris-j-h chris-j-h deleted the AWSSecretsManager-merged branch January 13, 2020 12:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Krish1979 Krish1979 Krish1979 left review comments

@melowe melowe Awaiting requested review from melowe

@namtruong namtruong Awaiting requested review from namtruong namtruong is a code owner

@nicolae-leonte-go nicolae-leonte-go Awaiting requested review from nicolae-leonte-go

@prd-fox prd-fox Awaiting requested review from prd-fox

@SatpalSandhu61 SatpalSandhu61 Awaiting requested review from SatpalSandhu61

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@chris-j-h @codecov-io @Krish1979 @vgeorgescu @Emi14