Package | Description |
---|---|
de.stklcode.jvault.connector | |
de.stklcode.jvault.connector.exception | |
de.stklcode.jvault.connector.factory |
Modifier and Type | Method and Description |
---|---|
AuthResponse |
VaultConnector.authAppId(String appID,
String userID)
Deprecated.
As of Vault 0.6.1 App-ID is superseded by AppRole. Consider using
VaultConnector.authAppRole(java.lang.String) instead. |
AuthResponse |
HTTPVaultConnector.authAppId(String appID,
String userID)
Deprecated.
|
default AuthResponse |
VaultConnector.authAppRole(String roleID)
Authorize to Vault using AppRole method without secret ID.
|
AuthResponse |
VaultConnector.authAppRole(String roleID,
String secretID)
Authorize to Vault using AppRole method.
|
AuthResponse |
HTTPVaultConnector.authAppRole(String roleID,
String secretID) |
TokenResponse |
VaultConnector.authToken(String token)
Authorize to Vault using token.
|
TokenResponse |
HTTPVaultConnector.authToken(String token) |
AuthResponse |
VaultConnector.authUserPass(String username,
String password)
Authorize to Vault using username and password.
|
AuthResponse |
HTTPVaultConnector.authUserPass(String username,
String password) |
boolean |
VaultConnector.createAppRole(AppRole role)
Register a new AppRole role from given metamodel.
|
boolean |
HTTPVaultConnector.createAppRole(AppRole role) |
default boolean |
VaultConnector.createAppRole(String roleName)
Register new AppRole role with default policy.
|
default boolean |
VaultConnector.createAppRole(String roleName,
List<String> policies)
Register new AppRole role with policies.
|
default boolean |
VaultConnector.createAppRole(String roleName,
List<String> policies,
String roleID)
Register new AppRole role with policies and custom ID.
|
default boolean |
VaultConnector.createAppRole(String roleName,
String roleID)
Register new AppRole role with default policy and custom ID.
|
default AppRoleSecretResponse |
VaultConnector.createAppRoleSecret(String roleName)
Register new random generated AppRole secret.
|
AppRoleSecretResponse |
VaultConnector.createAppRoleSecret(String roleName,
AppRoleSecret secret)
Register new AppRole secret with custom ID.
|
AppRoleSecretResponse |
HTTPVaultConnector.createAppRoleSecret(String roleName,
AppRoleSecret secret) |
default AppRoleSecretResponse |
VaultConnector.createAppRoleSecret(String roleName,
String secretID)
Register new AppRole secret with custom ID.
|
AuthResponse |
VaultConnector.createToken(Token token)
Create a new token.
|
AuthResponse |
HTTPVaultConnector.createToken(Token token) |
AuthResponse |
VaultConnector.createToken(Token token,
boolean orphan)
Create a new token.
|
AuthResponse |
HTTPVaultConnector.createToken(Token token,
boolean orphan) |
AuthResponse |
VaultConnector.createToken(Token token,
String role)
Create a new token for specific role.
|
AuthResponse |
HTTPVaultConnector.createToken(Token token,
String role) |
void |
VaultConnector.delete(String key)
Delete key from Vault.
|
void |
HTTPVaultConnector.delete(String key) |
boolean |
VaultConnector.deleteAppRole(String roleName)
Delete AppRole role from Vault.
|
boolean |
HTTPVaultConnector.deleteAppRole(String roleName) |
default void |
VaultConnector.deleteSecret(String key)
Delete secret from Vault.
|
boolean |
VaultConnector.destroyAppRoleSecret(String roleName,
String secretID)
Destroy an AppRole secret.
|
boolean |
HTTPVaultConnector.destroyAppRoleSecret(String roleName,
String secretID) |
String |
VaultConnector.getAppRoleID(String roleName)
Retrieve ID for an AppRole role.
|
String |
HTTPVaultConnector.getAppRoleID(String roleName) |
List<AuthBackend> |
VaultConnector.getAuthBackends()
Get all availale authentication backends.
|
List<AuthBackend> |
HTTPVaultConnector.getAuthBackends() |
HealthResponse |
VaultConnector.getHealth()
Query server health information.
|
HealthResponse |
HTTPVaultConnector.getHealth() |
List<String> |
VaultConnector.list(String path)
List available nodes from Vault.
|
List<String> |
HTTPVaultConnector.list(String path) |
List<String> |
VaultConnector.listAppRoles()
List existing (accessible) AppRole roles.
|
List<String> |
HTTPVaultConnector.listAppRoles() |
List<String> |
VaultConnector.listAppRoleSecrets(String roleName)
List existing (accessible) secret IDs for AppRole role.
|
List<String> |
HTTPVaultConnector.listAppRoleSecrets(String roleName) |
default List<String> |
VaultConnector.listSecrets(String path)
List available secrets from Vault.
|
AppRoleResponse |
VaultConnector.lookupAppRole(String roleName)
Lookup an AppRole role.
|
AppRoleResponse |
HTTPVaultConnector.lookupAppRole(String roleName) |
AppRoleSecretResponse |
VaultConnector.lookupAppRoleSecret(String roleName,
String secretID)
Lookup an AppRole secret.
|
AppRoleSecretResponse |
HTTPVaultConnector.lookupAppRoleSecret(String roleName,
String secretID) |
TokenResponse |
VaultConnector.lookupToken(String token)
Lookup token information.
|
TokenResponse |
HTTPVaultConnector.lookupToken(String token) |
SecretResponse |
VaultConnector.read(String key)
Retrieve any nodes content from Vault.
|
SecretResponse |
HTTPVaultConnector.read(String key) |
default CredentialsResponse |
VaultConnector.readDbCredentials(String role,
String mount)
Read credentials for SQL backends.
|
default CredentialsResponse |
VaultConnector.readMongoDbCredentials(String role)
Read credentials for MSSQL backend at default mount point.
|
default CredentialsResponse |
VaultConnector.readMsSqlCredentials(String role)
Read credentials for MSSQL backend at default mount point.
|
default CredentialsResponse |
VaultConnector.readMySqlCredentials(String role)
Read credentials for MySQL backend at default mount point.
|
default CredentialsResponse |
VaultConnector.readPostgreSqlCredentials(String role)
Read credentials for PostgreSQL backend at default mount point.
|
default SecretResponse |
VaultConnector.readSecret(String key)
Retrieve secret from Vault.
|
boolean |
VaultConnector.registerAppId(String appID,
String policy,
String displayName)
Deprecated.
As of Vault 0.6.1 App-ID is superseded by AppRole. Consider using
VaultConnector.createAppRole(de.stklcode.jvault.connector.model.AppRole) instead. |
boolean |
HTTPVaultConnector.registerAppId(String appID,
String policy,
String displayName)
Deprecated.
|
default boolean |
VaultConnector.registerAppUserId(String appID,
String policy,
String displayName,
String userID)
Deprecated.
As of Vault 0.6.1 App-ID is superseded by AppRole.
|
boolean |
VaultConnector.registerUserId(String appID,
String userID)
Deprecated.
As of Vault 0.6.1 App-ID is superseded by AppRole.
Consider using
VaultConnector.createAppRoleSecret(java.lang.String) instead. |
boolean |
HTTPVaultConnector.registerUserId(String appID,
String userID)
Deprecated.
|
default SecretResponse |
VaultConnector.renew(String leaseID)
Renew lease with given ID.
|
SecretResponse |
VaultConnector.renew(String leaseID,
Integer increment)
Renew lease with given ID.
|
SecretResponse |
HTTPVaultConnector.renew(String leaseID,
Integer increment) |
void |
VaultConnector.revoke(String leaseID)
Revoke given lease immediately.
|
void |
HTTPVaultConnector.revoke(String leaseID) |
void |
VaultConnector.seal()
Seal vault.
|
void |
HTTPVaultConnector.seal() |
SealResponse |
VaultConnector.sealStatus()
Retrieve status of vault seal.
|
SealResponse |
HTTPVaultConnector.sealStatus() |
boolean |
VaultConnector.setAppRoleID(String roleName,
String roleID)
Set custom ID for an AppRole role.
|
boolean |
HTTPVaultConnector.setAppRoleID(String roleName,
String roleID) |
default SealResponse |
VaultConnector.unseal(String key)
Unseal vault.
|
SealResponse |
VaultConnector.unseal(String key,
Boolean reset)
Unseal vault.
|
SealResponse |
HTTPVaultConnector.unseal(String key,
Boolean reset) |
void |
VaultConnector.write(String key,
Map<String,Object> data)
Write value to Vault.
|
void |
HTTPVaultConnector.write(String key,
Map<String,Object> data) |
default void |
VaultConnector.write(String key,
String value)
Write simple value to Vault.
|
default void |
VaultConnector.writeSecret(String key,
Map<String,Object> data)
Write secret to Vault.
|
default void |
VaultConnector.writeSecret(String key,
String value)
Write secret to Vault.
|
Modifier and Type | Class and Description |
---|---|
class |
AuthorizationRequiredException
Exception thrown trying to do a request without any authorization handles.
|
class |
ConnectionException
Exception thrown on problems with connection to Vault backend.
|
class |
InvalidRequestException
Exception thrown when trying to send malformed request.
|
class |
InvalidResponseException
Exception thrown when response from vault returned with erroneous status code or payload could not be parsed
to entity class.
|
class |
PermissionDeniedException
Exception thrown when trying to access a path the current user/token does not have permission to access.
|
class |
TlsException
Exception thrown on errors with TLS connection.
|
Modifier and Type | Method and Description |
---|---|
abstract VaultConnector |
VaultConnectorFactory.buildAndAuth()
Build connector and authenticate with token set in factory or from environment.
|
HTTPVaultConnector |
HTTPVaultConnectorFactory.buildAndAuth() |
HTTPVaultConnectorFactory |
HTTPVaultConnectorFactory.fromEnv()
Build connector based on the VAULT_ADDR} and
VAULT_CACERT (optional) environment variables. |
HTTPVaultConnectorFactory |
HTTPVaultConnectorFactory.withTrustedCA(Path cert)
Add a trusted CA certifiate for HTTPS connections.
|
Copyright © 2016–2018. All rights reserved.