/
SecurePropertyUsage.java
95 lines (76 loc) · 3.4 KB
/
SecurePropertyUsage.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
/*
* Copyright 2016-2024 the original author or authors.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* https://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.springframework.vault.demo;
import java.util.HashMap;
import java.util.Map;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.context.annotation.AnnotationConfigApplicationContext;
import org.springframework.context.annotation.ComponentScan;
import org.springframework.context.annotation.Configuration;
import org.springframework.context.annotation.PropertySource;
import org.springframework.context.annotation.PropertySources;
import org.springframework.stereotype.Component;
import org.springframework.vault.annotation.VaultPropertySource;
import org.springframework.vault.authentication.ClientAuthentication;
import org.springframework.vault.authentication.TokenAuthentication;
import org.springframework.vault.core.VaultIntegrationTestConfiguration;
import org.springframework.vault.core.VaultOperations;
import org.springframework.vault.util.PrepareVault;
import org.springframework.vault.util.VaultInitializer;
/**
* This application uses {@link PropertySources} to define static config files and
* {@link VaultPropertySource} to retrieve properties from Vault.
* <p>
* {@code secure-introduction.properties} externalizes Vault login credentials to keep
* authentication details outside the code.
* <p>
* {@code other.properties} references a Vault property to illustrate possible integration
* with Spring Vault's property source support.
*
* @author Mark Paluch
*/
public class SecurePropertyUsage {
public static void main(String[] args) {
VaultInitializer initializer = new VaultInitializer();
initializer.initialize();
PrepareVault prepareVault = initializer.prepare();
VaultOperations vaultOperations = prepareVault.getVaultOperations();
Map<String, String> data = new HashMap<String, String>();
data.put("encrypted", "Much secret. Very confidential. Wow.");
vaultOperations.write("secret/secure-introduction", data);
AnnotationConfigApplicationContext context = new AnnotationConfigApplicationContext(Config.class);
System.out.println(context.getEnvironment().getProperty("my-property-that-references-vault"));
System.out.println(context.getEnvironment().getProperty("encrypted"));
System.out.println(context.getBean(Client.class).myValue);
context.stop();
}
@PropertySources({ @PropertySource("classpath:/org/springframework/vault/demo/secure-introduction.properties"),
@PropertySource("classpath:/org/springframework/vault/demo/other.properties") })
@VaultPropertySource({ "secret/secure-introduction" })
@Configuration
@ComponentScan
static class Config extends VaultIntegrationTestConfiguration {
@Override
public ClientAuthentication clientAuthentication() {
return new TokenAuthentication(getEnvironment().getProperty("vault.token"));
}
}
@Component
static class Client {
@Value("${encrypted}")
String myValue;
}
}