/
secret_engine_helpers.go
90 lines (77 loc) · 2.68 KB
/
secret_engine_helpers.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
/*
Copyright AppsCode Inc. and Contributors
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package v1alpha1
import (
"fmt"
api "kubevault.dev/apimachinery/apis/kubevault/v1alpha2"
"kubevault.dev/apimachinery/crds"
"kmodules.xyz/client-go/apiextensions"
"kmodules.xyz/client-go/tools/clusterid"
appcat "kmodules.xyz/custom-resources/apis/appcatalog/v1alpha1"
)
func (_ SecretEngine) CustomResourceDefinition() *apiextensions.CustomResourceDefinition {
return crds.MustCustomResourceDefinition(SchemeGroupVersion.WithResource(ResourceSecretEngines))
}
func (e SecretEngine) IsValid() error {
return nil
}
// Generates the policy name which contains
// required permission for this secret engine
func (e SecretEngine) GetPolicyName() string {
cluster := "-"
if clusterid.ClusterName() != "" {
cluster = clusterid.ClusterName()
}
return fmt.Sprintf("k8s.%s.%s.%s", cluster, e.Namespace, e.Name)
}
// Generates unique database name from database appbinding reference
func GetDBNameFromAppBindingRef(dbAppRef *appcat.AppReference) string {
cluster := "-"
if clusterid.ClusterName() != "" {
cluster = clusterid.ClusterName()
}
return fmt.Sprintf("k8s.%s.%s.%s", cluster, dbAppRef.Namespace, dbAppRef.Name)
}
func (se SecretEngine) GetSecretEnginePath() string {
// Todo: update SecretEngine path
// - k8s.{cluster-name or -}.{se-type}.se-ns.se-name
cluster := "-"
if clusterid.ClusterName() != "" {
cluster = clusterid.ClusterName()
}
return fmt.Sprintf("k8s.%s.%s.%s.%s", cluster, se.GetSecretEngineType(), se.Namespace, se.Name)
}
func (se SecretEngine) GetSecretEngineType() api.SecretEngineType {
switch seSpec := se.Spec; {
case seSpec.GCP != nil:
return api.SecretEngineTypeGCP
case seSpec.AWS != nil:
return api.SecretEngineTypeAWS
case seSpec.Azure != nil:
return api.SecretEngineTypeAzure
case seSpec.Elasticsearch != nil:
return api.SecretEngineTypeElasticsearch
case seSpec.MongoDB != nil:
return api.SecretEngineTypeMongoDB
case seSpec.MySQL != nil:
return api.SecretEngineTypeMySQL
case seSpec.Postgres != nil:
return api.SecretEngineTypePostgres
case seSpec.MariaDB != nil:
return api.SecretEngineTypeMariaDB
case seSpec.KV != nil:
return api.SecretEngineTypeKV
default:
return ""
}
}