Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-07 23:00:55 +03:00
Code Issues Packages Projects Releases Wiki Activity

KMS: allow to provide the master encryption key as string

Browse Source
This commit is contained in:
Nicola Murino
2021-07-17 15:34:48 +02:00
parent 030507a2ce
commit 5a568b4077
5 changed files with 17 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
kms/kms.go
View File

@@ -78,9 +78,10 @@ type Configuration struct {
// Secrets define the KMS configuration for encryption/decryption
type Secrets struct {
URL string `json:"url" mapstructure:"url"`
MasterKeyPath string `json:"master_key_path" mapstructure:"master_key_path"`
masterKey string
URL string `json:"url" mapstructure:"url"`
MasterKeyPath string `json:"master_key_path" mapstructure:"master_key_path"`
MasterKeyString string `json:"master_key" mapstructure:"master_key"`
masterKey string
}
type registeredSecretProvider struct {
@@ -135,7 +136,10 @@ func GetSecretFromCompatString(secret string) (*Secret, error) {
// Initialize configures the KMS support
func (c *Configuration) Initialize() error {
if c.Secrets.MasterKeyPath != "" {
if c.Secrets.MasterKeyString != "" {
c.Secrets.masterKey = c.Secrets.MasterKeyString
}
if c.Secrets.masterKey == "" && c.Secrets.MasterKeyPath != "" {
mKey, err := os.ReadFile(c.Secrets.MasterKeyPath)
if err != nil {
return err