LSST SQuaRE Vault utilities
Project description
# LSST Vault Utilities
This package is a set of Vault utilities useful for the LSST use case.
## Classes
The package name is lsstvaultutils. Its functional classes are:
SecretCopier – this copies secrets between the current Kubernetes context and a Vault instance.
TokenAdmin – this highly LSST-specific class allows you to specify a path under the Vault secret store, and it will generate three tokens (read, write, and admin) for manipulating secrets under the path. It stores those under secret/delegated, so that an admin can find (and, if need be, revoke) them later. It also manages revoking those tokens and removing them from the secret/delegated path.
RecursiveDeleter – this adds a recursive deletion feature to Vault for removing a whole secret tree at a time.
There is also a TimeFormatter class that exists only to add milliseconds to the debugging logs.
## Programs
The major functionality of these classes is also exposed as standalone programs.
copyk2v – copy a Kubernetes secret to a Vault secret path.
copyv2k – copy a set of Vault secrets at a specified path to a Kubernetes secret.
tokenadmin – Creating or revoke token sets for a given Vault secret path.
vaultrmrf – Remove a Vault secret path and everything underneath it.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for lsstvaultutils-0.0.2-py2.py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | bb6b80e2b56fcc3a814b8dfe964ddaf33c8072db4038a1464c0402c77c7e0f9f |
|
MD5 | 7c2faf7f9c4ee7fa71b28edfd9179434 |
|
BLAKE2b-256 | cb7d870aff3d3af503b8c21bf317c2c3a7802d7d97c0796da1c50416e2173cda |