mirror of
https://github.com/drakkan/sftpgo.git
synced 2025-12-08 07:10:56 +03:00
43 lines
759 B
Go
43 lines
759 B
Go
package kms
|
|
|
|
const (
|
|
vaultProviderName = "VaultTransit"
|
|
)
|
|
|
|
type vaultSecret struct {
|
|
baseGCloudSecret
|
|
}
|
|
|
|
func newVaultSecret(base baseSecret, url, masterKey string) SecretProvider {
|
|
return &vaultSecret{
|
|
baseGCloudSecret{
|
|
baseSecret: base,
|
|
url: url,
|
|
masterKey: masterKey,
|
|
},
|
|
}
|
|
}
|
|
|
|
func (s *vaultSecret) Name() string {
|
|
return vaultProviderName
|
|
}
|
|
|
|
func (s *vaultSecret) IsEncrypted() bool {
|
|
return s.Status == SecretStatusVaultTransit
|
|
}
|
|
|
|
func (s *vaultSecret) Encrypt() error {
|
|
if err := s.baseGCloudSecret.Encrypt(); err != nil {
|
|
return err
|
|
}
|
|
s.Status = SecretStatusVaultTransit
|
|
return nil
|
|
}
|
|
|
|
func (s *vaultSecret) Decrypt() error {
|
|
if !s.IsEncrypted() {
|
|
return errWrongSecretStatus
|
|
}
|
|
return s.baseGCloudSecret.Decrypt()
|
|
}
|