feat: rudimentary implementation

.dockerignore

@@ -0,0 +1,5 @@
+.git
+.godeps
+pkg/*
+summon-aws-secrets
+junit.xml

.gitignore

@@ -0,0 +1,33 @@
+output/
+pkg
+webapp1.json
+junit.xml
+summon-aws-secrets
+*.sublime-project
+secrets.yml
+.idea
+
+# Compiled Object files, Static and Dynamic libs (Shared Objects)
+*.o
+*.a
+*.so
+
+# Folders
+_obj
+_test
+
+# Architecture specific extensions/prefixes
+*.[568vq]
+[568vq].out
+
+*.cgo1.go
+*.cgo2.c
+_cgo_defun.c
+_cgo_gotypes.go
+_cgo_export.*
+
+_testmain.go
+
+*.exe
+*.test
+*.prof

CHANGELOG.md

@@ -0,0 +1,2 @@
+# v0.1.0
+* Initial release

Dockerfile

@@ -0,0 +1,17 @@
+FROM golang:1.8
+MAINTAINER Conjur Inc
+
+RUN apt-get update && apt-get install jq
+RUN go get -u github.com/jstemmer/go-junit-report
+RUN go get github.com/tools/godep
+RUN go get github.com/smartystreets/goconvey
+
+RUN mkdir -p /go/src/github.com/cyberark/summon-aws-secrets/output
+WORKDIR /go/src/github.com/cyberark/summon-aws-secrets
+
+COPY . .
+
+ENV GOOS=linux
+ENV GOARCH=amd64
+
+EXPOSE 8080

Jenkinsfile

@@ -0,0 +1,39 @@
+#!/usr/bin/env groovy
+
+pipeline {
+  agent { label 'executor-v2' }
+
+  options {
+    timestamps()
+    buildDiscarder(logRotator(daysToKeepStr: '30'))
+  }
+
+  stages {
+    stage('Build Go binaries') {
+      steps {
+        sh './build.sh'
+        archiveArtifacts artifacts: 'output/*', fingerprint: true
+      }
+    }
+    stage('Run unit tests') {
+      steps {
+        sh './test.sh'
+        junit 'output/junit.xml'
+        sh 'sudo chown -R jenkins:jenkins .'  // bad docker mount creates unreadable files TODO fix this
+      }
+    }
+
+    stage('Package distribution tarballs') {
+      steps {
+        sh './package.sh'
+        archiveArtifacts artifacts: 'output/dist/*', fingerprint: true
+      }
+    }
+  }
+
+  post {
+    always {
+      cleanupAndNotify(currentBuild.currentResult)
+    }
+  }
+}

LICENSE

@@ -0,0 +1,22 @@
+The MIT License (MIT)
+
+Copyright (c) 2015 Conjur Inc
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+

README.md

@@ -1,2 +1,64 @@
 # summon-aws-secrets
-Summon provider for AWS Secrets Manager
+[Summon](https://github.com/cyberark/summon) provider for AWS Secrets Manager
+
+## Install
+
+Use the auto-install script. This will install the latest version of summon-aws-secrets.
+The script requires sudo to place summon-aws-secrets in `/usr/local/lib/summon`.
+
+```
+curl -sSL https://raw.githubusercontent.com/cyberark/summon-aws-secrets/master/install.sh | bash
+```
+
+Otherwise, download the [latest release](https://github.com/cyberark/summon-aws-secrets/releases) and extract it to the directory `/usr/local/lib/summon`.
+
+## Usage in isolation
+
+Give summon-aws-secrets a variable name and it will fetch it for you and print the value to stdout.
+
+```sh-session
+$ # Configure in similar fashion to AWS CLI see https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html
+$ summon-aws-secrets prod/aws/iam/user/robot/access_key_id
+8h9psadf89sdahfp98
+```
+
+### Flags
+
+`summon-aws-secrets` supports a single flag.
+
+* `-v, --version` Output version number and quit
+
+## Usage as a provider for Summon
+
+[Summon](https://github.com/cyberark/summon/) is a command-line tool that reads a file in secrets.yml format and injects secrets as environment variables into any process. Once the process exits, the secrets are gone.
+
+*Example*
+
+As an example let's use the `env` command: 
+
+Following installation, define your keys in a `secrets.yml` file
+
+```yml
+AWS_ACCESS_KEY_ID: !var aws/iam/user/robot/access_key_id
+AWS_SECRET_ACCESS_KEY: !var aws/iam/user/robot/secret_access_key
+```
+
+By default, summon will look for `secrets.yml` in the directory it is called from and export the secret values to the environment of the command it wraps.
+
+Wrap the `env` in summon:
+
+```sh
+$ # Configure in similar fashion to AWS CLI see https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html
+$ summon --provider summon-aws-secrets env
+...
+AWS_ACCESS_KEY_ID=AKIAJS34242K1123J3K43
+AWS_SECRET_ACCESS_KEY=A23MSKSKSJASHDIWM
+...
+```
+
+`summon` resolves the entries in secrets.yml with the AWS Secrets Manager provider and makes the secret values available to the environment of the command `env`.
+
+## Configuration
+
+This provider uses the same configuration pattern as the [AWS CLI
+](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html) to connect to AWS.