HTTPVaultConnector (Java Vault Connector 0.4.0 API)

java.lang.Object
- de.stklcode.jvault.connector.HTTPVaultConnector

All Implemented Interfaces:

VaultConnector
```
public class HTTPVaultConnector
extends Object
implements VaultConnector
```
Vault Connector implementatin using Vault's HTTP API.

Since:

0.1

Author:

Stefan Kalscheuer

Constructor Summary

Constructors
Constructor and Description
`HTTPVaultConnector(String baseURL)` Create connector using full URL.
`HTTPVaultConnector(String hostname, boolean useTLS)` Create connector using hostname and schema.
`HTTPVaultConnector(String hostname, boolean useTLS, Integer port)` Create connector using hostname, schema and port.
`HTTPVaultConnector(String hostname, boolean useTLS, Integer port, String prefix)` Create connector using hostname, schema, port and path.
`HTTPVaultConnector(String hostname, boolean useTLS, Integer port, String prefix, SSLContext sslContext)` Create connector using hostname, schema, port, path and trusted certificate.
`HTTPVaultConnector(String baseURL, SSLContext sslContext)` Create connector using full URL and trusted certificate.

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`AuthResponse`	`authAppId(String appID, String userID)` Authorize to Vault using AppID method.
`AuthResponse`	`authAppRole(String roleID, String secretID)` Authorize to Vault using AppRole method.
`TokenResponse`	`authToken(String token)` Authorize to Vault using token.
`AuthResponse`	`authUserPass(String username, String password)` Authorize to Vault using username and password.
`boolean`	`createAppRole(AppRole role)` Register a new AppRole role from given metamodel.
`AppRoleSecretResponse`	`createAppRoleSecret(String roleName, AppRoleSecret secret)` Register new AppRole secret with custom ID.
`AuthResponse`	`createToken(Token token)` Create a new token.
`AuthResponse`	`createToken(Token token, boolean orphan)` Create a new token.
`AuthResponse`	`createToken(Token token, String role)` Create a new token for specific role.
`boolean`	`deleteAppRole(String roleName)` Delete AppRole role from Vault.
`boolean`	`deleteSecret(String key)` Delete secret from Vault.
`boolean`	`destroyAppRoleSecret(String roleName, String secretID)` Destroy an AppRole secret.
`String`	`getAppRoleID(String roleName)` Retrieve ID for an AppRole role.
`List<AuthBackend>`	`getAuthBackends()` Get all availale authentication backends.
`boolean`	`init()` Verify that vault connection is initialized.
`boolean`	`isAuthorized()` Get authorization status
`List<String>`	`listAppRoles()` List existing (accessible) AppRole roles.
`List<String>`	`listAppRoleSecretss(String roleName)` List existing (accessible) secret IDs for AppRole role.
`List<String>`	`listSecrets(String path)` List available secrets from Vault.
`AppRoleResponse`	`lookupAppRole(String roleName)` Lookup an AppRole role.
`AppRoleSecretResponse`	`lookupAppRoleSecret(String roleName, String secretID)` Lookup an AppRole secret.
`TokenResponse`	`lookupToken(String token)` Lookup token information.
`SecretResponse`	`readSecret(String key)` Retrieve secret form Vault.
`boolean`	`registerAppId(String appID, String policy, String displayName)` Register new App-ID with policy.
`boolean`	`registerUserId(String appID, String userID)` Register User-ID with App-ID
`SecretResponse`	`renew(String leaseID, Integer increment)` Renew lease with given ID.
`void`	`resetAuth()` Reset authorization information.
`boolean`	`revoke(String leaseID)` Revoke given lease immediately.
`boolean`	`seal()` Seal vault.
`SealResponse`	`sealStatus()` Retrieve status of vault seal.
`boolean`	`setAppRoleID(String roleName, String roleID)` Set custom ID for an AppRole role.
`SealResponse`	`unseal(String key, Boolean reset)` Unseal vault.
`boolean`	`writeSecret(String key, String value)` Write secret to Vault.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface de.stklcode.jvault.connector.VaultConnector
authAppRole, createAppRole, createAppRole, createAppRole, createAppRole, createAppRoleSecret, createAppRoleSecret, registerAppUserId, renew, unseal

- Constructor Detail
  - HTTPVaultConnector
```
public HTTPVaultConnector(String hostname,
                          boolean useTLS)
```
    Create connector using hostname and schema.
    
    Parameters:
    
    hostname - The hostname
    
    useTLS - If TRUE, use HTTPS, otherwise HTTP
  - HTTPVaultConnector
```
public HTTPVaultConnector(String hostname,
                          boolean useTLS,
                          Integer port)
```
    Create connector using hostname, schema and port.
    
    Parameters:
    
    hostname - The hostname
    
    useTLS - If TRUE, use HTTPS, otherwise HTTP
    
    port - The port
  - HTTPVaultConnector
```
public HTTPVaultConnector(String hostname,
                          boolean useTLS,
                          Integer port,
                          String prefix)
```
    Create connector using hostname, schema, port and path.
    
    Parameters:
    
    hostname - The hostname
    
    useTLS - If TRUE, use HTTPS, otherwise HTTP
    
    port - The port
    
    prefix - HTTP API prefix (default: /v1/)
  - HTTPVaultConnector
```
public HTTPVaultConnector(String hostname,
                          boolean useTLS,
                          Integer port,
                          String prefix,
                          SSLContext sslContext)
```
    Create connector using hostname, schema, port, path and trusted certificate.
    
    Parameters:
    
    hostname - The hostname
    
    useTLS - If TRUE, use HTTPS, otherwise HTTP
    
    port - The port
    
    prefix - HTTP API prefix (default: /v1/)
    
    sslContext - Custom SSL Context
  - HTTPVaultConnector
```
public HTTPVaultConnector(String baseURL)
```
    Create connector using full URL.
    
    Parameters:
    
    baseURL - The URL
  - HTTPVaultConnector
```
public HTTPVaultConnector(String baseURL,
                          SSLContext sslContext)
```
    Create connector using full URL and trusted certificate.
    
    Parameters:
    
    baseURL - The URL
- Method Detail
  - resetAuth
```
public void resetAuth()
```
    Description copied from interface: VaultConnector
    
    Reset authorization information.
    
    Specified by:
    
    resetAuth in interface VaultConnector
  - sealStatus
```
public SealResponse sealStatus()
```
    Description copied from interface: VaultConnector
    
    Retrieve status of vault seal.
    
    Specified by:
    
    sealStatus in interface VaultConnector
    
    Returns:
    
    Seal status
  - seal
```
public boolean seal()
```
    Description copied from interface: VaultConnector
    
    Seal vault.
    
    Specified by:
    
    seal in interface VaultConnector
    
    Returns:
    
    TRUE on success
  - unseal
```
public SealResponse unseal(String key,
                           Boolean reset)
```
    Description copied from interface: VaultConnector
    
    Unseal vault.
    
    Specified by:
    
    unseal in interface VaultConnector
    
    Parameters:
    
    key - A single master share key
    
    reset - Discard previously provided keys (optional)
    
    Returns:
    
    TRUE on success
  - isAuthorized
```
public boolean isAuthorized()
```
    Description copied from interface: VaultConnector
    
    Get authorization status
    
    Specified by:
    
    isAuthorized in interface VaultConnector
    
    Returns:
    
    TRUE, if successfully authorized
  - init
```
public boolean init()
```
    Description copied from interface: VaultConnector
    
    Verify that vault connection is initialized.
    
    Specified by:
    
    init in interface VaultConnector
    
    Returns:
    
    TRUE if correctly initialized
  - getAuthBackends
```
public List<AuthBackend> getAuthBackends()
                                  throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Get all availale authentication backends.
    
    Specified by:
    
    getAuthBackends in interface VaultConnector
    
    Returns:
    
    List of backends
    
    Throws:
    
    VaultConnectorException - on error
  - authToken
```
public TokenResponse authToken(String token)
                        throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Authorize to Vault using token.
    
    Specified by:
    
    authToken in interface VaultConnector
    
    Parameters:
    
    token - The token
    
    Returns:
    
    Token response
    
    Throws:
    
    VaultConnectorException - on error
  - authUserPass
```
public AuthResponse authUserPass(String username,
                                 String password)
                          throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Authorize to Vault using username and password.
    
    Specified by:
    
    authUserPass in interface VaultConnector
    
    Parameters:
    
    username - The username
    
    password - The password
    
    Returns:
    
    Authorization result
    
    Throws:
    
    VaultConnectorException - on error
  - authAppId
```
public AuthResponse authAppId(String appID,
                              String userID)
                       throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Authorize to Vault using AppID method.
    
    Specified by:
    
    authAppId in interface VaultConnector
    
    Parameters:
    
    appID - The App ID
    
    userID - The User ID
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - authAppRole
```
public AuthResponse authAppRole(String roleID,
                                String secretID)
                         throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Authorize to Vault using AppRole method.
    
    Specified by:
    
    authAppRole in interface VaultConnector
    
    Parameters:
    
    roleID - The role ID
    
    secretID - The secret ID
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - registerAppId
```
public boolean registerAppId(String appID,
                             String policy,
                             String displayName)
                      throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Register new App-ID with policy.
    
    Specified by:
    
    registerAppId in interface VaultConnector
    
    Parameters:
    
    appID - The unique App-ID
    
    policy - The policy to associate with
    
    displayName - Arbitrary name to display
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - registerUserId
```
public boolean registerUserId(String appID,
                              String userID)
                       throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Register User-ID with App-ID
    
    Specified by:
    
    registerUserId in interface VaultConnector
    
    Parameters:
    
    appID - The App-ID
    
    userID - The User-ID
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - createAppRole
```
public boolean createAppRole(AppRole role)
                      throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Register a new AppRole role from given metamodel.
    
    Specified by:
    
    createAppRole in interface VaultConnector
    
    Parameters:
    
    role - The role
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - lookupAppRole
```
public AppRoleResponse lookupAppRole(String roleName)
                              throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Lookup an AppRole role.
    
    Specified by:
    
    lookupAppRole in interface VaultConnector
    
    Parameters:
    
    roleName - The role name
    
    Returns:
    
    Result of the lookup
    
    Throws:
    
    VaultConnectorException - on error
  - deleteAppRole
```
public boolean deleteAppRole(String roleName)
                      throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Delete AppRole role from Vault.
    
    Specified by:
    
    deleteAppRole in interface VaultConnector
    
    Parameters:
    
    roleName - The role anme
    
    Returns:
    
    TRUE on succevss
    
    Throws:
    
    VaultConnectorException - on error
  - getAppRoleID
```
public String getAppRoleID(String roleName)
                    throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Retrieve ID for an AppRole role.
    
    Specified by:
    
    getAppRoleID in interface VaultConnector
    
    Parameters:
    
    roleName - The role name
    
    Returns:
    
    The role ID
    
    Throws:
    
    VaultConnectorException - on error
  - setAppRoleID
```
public boolean setAppRoleID(String roleName,
                            String roleID)
                     throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Set custom ID for an AppRole role.
    
    Specified by:
    
    setAppRoleID in interface VaultConnector
    
    Parameters:
    
    roleName - The role name
    
    roleID - The role ID
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - createAppRoleSecret
```
public AppRoleSecretResponse createAppRoleSecret(String roleName,
                                                 AppRoleSecret secret)
                                          throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Register new AppRole secret with custom ID.
    
    Specified by:
    
    createAppRoleSecret in interface VaultConnector
    
    Parameters:
    
    roleName - The role name
    
    secret - The secret meta object
    
    Returns:
    
    The secret ID
    
    Throws:
    
    VaultConnectorException - on error
  - lookupAppRoleSecret
```
public AppRoleSecretResponse lookupAppRoleSecret(String roleName,
                                                 String secretID)
                                          throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Lookup an AppRole secret.
    
    Specified by:
    
    lookupAppRoleSecret in interface VaultConnector
    
    Parameters:
    
    roleName - The role name
    
    secretID - The secret ID
    
    Returns:
    
    Result of the lookup
    
    Throws:
    
    VaultConnectorException - on error
  - destroyAppRoleSecret
```
public boolean destroyAppRoleSecret(String roleName,
                                    String secretID)
                             throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Destroy an AppRole secret.
    
    Specified by:
    
    destroyAppRoleSecret in interface VaultConnector
    
    Parameters:
    
    roleName - The role name
    
    secretID - The secret meta object
    
    Returns:
    
    The secret ID
    
    Throws:
    
    VaultConnectorException - on error
  - listAppRoles
```
public List<String> listAppRoles()
                          throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    List existing (accessible) AppRole roles.
    
    Specified by:
    
    listAppRoles in interface VaultConnector
    
    Returns:
    
    List of roles
    
    Throws:
    
    VaultConnectorException - on error
  - listAppRoleSecretss
```
public List<String> listAppRoleSecretss(String roleName)
                                 throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    List existing (accessible) secret IDs for AppRole role.
    
    Specified by:
    
    listAppRoleSecretss in interface VaultConnector
    
    Parameters:
    
    roleName - The role name
    
    Returns:
    
    List of roles
    
    Throws:
    
    VaultConnectorException - on error
  - readSecret
```
public SecretResponse readSecret(String key)
                          throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Retrieve secret form Vault.
    
    Specified by:
    
    readSecret in interface VaultConnector
    
    Parameters:
    
    key - Secret identifier
    
    Returns:
    
    Secret response
    
    Throws:
    
    VaultConnectorException - on error
  - listSecrets
```
public List<String> listSecrets(String path)
                         throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    List available secrets from Vault.
    
    Specified by:
    
    listSecrets in interface VaultConnector
    
    Parameters:
    
    path - Root path to search
    
    Returns:
    
    List of secret keys
    
    Throws:
    
    VaultConnectorException - on error
  - writeSecret
```
public boolean writeSecret(String key,
                           String value)
                    throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Write secret to Vault.
    
    Specified by:
    
    writeSecret in interface VaultConnector
    
    Parameters:
    
    key - Secret path
    
    value - Secret value
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - deleteSecret
```
public boolean deleteSecret(String key)
                     throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Delete secret from Vault.
    
    Specified by:
    
    deleteSecret in interface VaultConnector
    
    Parameters:
    
    key - Secret path
    
    Returns:
    
    TRUE on succevss
    
    Throws:
    
    VaultConnectorException - on error
  - revoke
```
public boolean revoke(String leaseID)
               throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Revoke given lease immediately.
    
    Specified by:
    
    revoke in interface VaultConnector
    
    Parameters:
    
    leaseID - the lease ID
    
    Returns:
    
    TRUE on success
    
    Throws:
    
    VaultConnectorException - on error
  - renew
```
public SecretResponse renew(String leaseID,
                            Integer increment)
                     throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Renew lease with given ID.
    
    Specified by:
    
    renew in interface VaultConnector
    
    Parameters:
    
    leaseID - the lase ID
    
    increment - number of seconds to extend lease time
    
    Returns:
    
    Renewed lease
    
    Throws:
    
    VaultConnectorException
  - createToken
```
public AuthResponse createToken(Token token)
                         throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Create a new token.
    
    Specified by:
    
    createToken in interface VaultConnector
    
    Parameters:
    
    token - the token
    
    Returns:
    
    the result response
    
    Throws:
    
    VaultConnectorException - on error
  - createToken
```
public AuthResponse createToken(Token token,
                                boolean orphan)
                         throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Create a new token.
    
    Specified by:
    
    createToken in interface VaultConnector
    
    Parameters:
    
    token - the token
    
    orphan - create orphan token
    
    Returns:
    
    the result response
    
    Throws:
    
    VaultConnectorException - on error
  - createToken
```
public AuthResponse createToken(Token token,
                                String role)
                         throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Create a new token for specific role.
    
    Specified by:
    
    createToken in interface VaultConnector
    
    Parameters:
    
    token - the token
    
    role - the role name
    
    Returns:
    
    the result response
    
    Throws:
    
    VaultConnectorException - on error
  - lookupToken
```
public TokenResponse lookupToken(String token)
                          throws VaultConnectorException
```
    Description copied from interface: VaultConnector
    
    Lookup token information.
    
    Specified by:
    
    lookupToken in interface VaultConnector
    
    Parameters:
    
    token - the token
    
    Returns:
    
    the result response
    
    Throws:
    
    VaultConnectorException - on error

Class HTTPVaultConnector

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Methods inherited from interface de.stklcode.jvault.connector.VaultConnector

Constructor Detail

HTTPVaultConnector

HTTPVaultConnector

HTTPVaultConnector

HTTPVaultConnector

HTTPVaultConnector

HTTPVaultConnector

Method Detail

resetAuth

sealStatus

seal

unseal

isAuthorized

init

getAuthBackends

authToken

authUserPass

authAppId

authAppRole

registerAppId

registerUserId

createAppRole

lookupAppRole

deleteAppRole

getAppRoleID

setAppRoleID

createAppRoleSecret

lookupAppRoleSecret

destroyAppRoleSecret

listAppRoles

listAppRoleSecretss

readSecret

listSecrets

writeSecret

deleteSecret

revoke

renew

createToken

createToken

createToken

lookupToken