LSST SQuaRE Vault utilities
Project description
# LSST Vault Utilities
This package is a set of Vault utilities useful for the LSST use case.
## Classes
The package name is lsstvaultutils. Its functional classes are:
SecretCopier – this copies secrets between the current Kubernetes context and a Vault instance.
TokenAdmin – this highly LSST-specific class allows you to specify a path under the Vault secret store, and it will generate three tokens (read, write, and admin) for manipulating secrets under the path. It stores those under secret/delegated, so that an admin can find (and, if need be, revoke) them later. It also manages revoking those tokens and removing them from the secret/delegated path.
RecursiveDeleter – this adds a recursive deletion feature to Vault for removing a whole secret tree at a time.
There is also a TimeFormatter class that exists only to add milliseconds to the debugging logs.
## Programs
The major functionality of these classes is also exposed as standalone programs.
copyk2v – copy a Kubernetes secret to a Vault secret path.
copyv2k – copy a set of Vault secrets at a specified path to a Kubernetes secret.
tokenadmin – Creating or revoke token sets for a given Vault secret path.
vaultrmrf – Remove a Vault secret path and everything underneath it.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for lsstvaultutils-0.0.1-py2.py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | d74b2058f8594812383e1e9203759008019f70257c70002bb3a8fc67b2e02ed4 |
|
| MD5 | 86d9f199998f5b9c172d9f739072c591 |
|
| BLAKE2b-256 | c9417aa3d51ea71c0de57dca73ea7b8739515bc801cb473118e23c3df4fd7847 |
