vault/api/ssh.go

package api

import (
	"context"
	"fmt"
)

// SSH is used to return a client to invoke operations on SSH backend.
type SSH struct {
	c          *Client
	MountPoint string
}

// SSH returns the client for logical-backend API calls.
func (c *Client) SSH() *SSH {
	return c.SSHWithMountPoint(SSHHelperDefaultMountPoint)
}

// SSHWithMountPoint returns the client with specific SSH mount point.
func (c *Client) SSHWithMountPoint(mountPoint string) *SSH {
	return &SSH{
		c:          c,
		MountPoint: mountPoint,
	}
}

// Credential invokes the SSH backend API to create a credential to establish an SSH session.
func (c *SSH) Credential(role string, data map[string]interface{}) (*Secret, error) {
	r := c.c.NewRequest("PUT", fmt.Sprintf("/v1/%s/creds/%s", c.MountPoint, role))
	if err := r.SetJSONBody(data); err != nil {
		return nil, err
	}

	ctx, cancelFunc := context.WithCancel(context.Background())
	defer cancelFunc()
	resp, err := c.c.RawRequestWithContext(ctx, r)
	if err != nil {
		return nil, err
	}
	defer resp.Body.Close()

	return ParseSecret(resp.Body)
}

// SignKey signs the given public key and returns a signed public key to pass
// along with the SSH request.
func (c *SSH) SignKey(role string, data map[string]interface{}) (*Secret, error) {
	r := c.c.NewRequest("PUT", fmt.Sprintf("/v1/%s/sign/%s", c.MountPoint, role))
	if err := r.SetJSONBody(data); err != nil {
		return nil, err
	}

	ctx, cancelFunc := context.WithCancel(context.Background())
	defer cancelFunc()
	resp, err := c.c.RawRequestWithContext(ctx, r)
	if err != nil {
		return nil, err
	}
	defer resp.Body.Close()

	return ParseSecret(resp.Body)
}
ssh/lookup implementation and refactoring 2015-06-25 21:47:32 -04:00			`package api`

API: Add context to each raw request call (#4987) 2018-07-24 18:49:55 -04:00			`import (`
			`"context"`
			`"fmt"`
			`)`
ssh/lookup implementation and refactoring 2015-06-25 21:47:32 -04:00
Vault SSH: PR review rework 2015-07-02 17:23:09 -04:00			`// SSH is used to return a client to invoke operations on SSH backend.`
Vault SSH: PR review rework - 1 2015-07-01 11:58:49 -04:00			`type SSH struct {`
Vault SSH: Renamed path with mountPoint 2015-08-12 13:30:50 -04:00			`c *Client`
			`MountPoint string`
ssh/lookup implementation and refactoring 2015-06-25 21:47:32 -04:00			`}`

Fix some lint warnings. 2015-09-29 03:35:16 -04:00			`// SSH returns the client for logical-backend API calls.`
Vault SSH: Fixed constructor of SSH api 2015-08-12 12:56:17 -04:00			`func (c Client) SSH() SSH {`
ssh-helper api changes 2016-02-23 00:08:21 -05:00			`return c.SSHWithMountPoint(SSHHelperDefaultMountPoint)`
Vault SSH: Fixed constructor of SSH api 2015-08-12 12:56:17 -04:00			`}`

Fix some lint warnings. 2015-09-29 03:35:16 -04:00			`// SSHWithMountPoint returns the client with specific SSH mount point.`
Vault SSH: Renamed path with mountPoint 2015-08-12 13:30:50 -04:00			`func (c Client) SSHWithMountPoint(mountPoint string) SSH {`
Vault SSH: Review Rework 2015-07-29 14:21:36 -04:00			`return &SSH{`
Vault SSH: Renamed path with mountPoint 2015-08-12 13:30:50 -04:00			`c: c,`
			`MountPoint: mountPoint,`
Vault SSH: Revoking key after SSH session from CLI 2015-07-06 11:05:02 -04:00			`}`
			`}`

Fix some lint warnings. 2015-09-29 03:35:16 -04:00			`// Credential invokes the SSH backend API to create a credential to establish an SSH session.`
Vault SSH: Review Rework 2015-07-29 14:21:36 -04:00			`func (c SSH) Credential(role string, data map[string]interface{}) (Secret, error) {`
Vault SSH: Renamed path with mountPoint 2015-08-12 13:30:50 -04:00			`r := c.c.NewRequest("PUT", fmt.Sprintf("/v1/%s/creds/%s", c.MountPoint, role))`
ssh/lookup implementation and refactoring 2015-06-25 21:47:32 -04:00			`if err := r.SetJSONBody(data); err != nil {`
			`return nil, err`
			`}`

API: Add context to each raw request call (#4987) 2018-07-24 18:49:55 -04:00			`ctx, cancelFunc := context.WithCancel(context.Background())`
			`defer cancelFunc()`
			`resp, err := c.c.RawRequestWithContext(ctx, r)`
ssh/lookup implementation and refactoring 2015-06-25 21:47:32 -04:00			`if err != nil {`
			`return nil, err`
			`}`
			`defer resp.Body.Close()`

			`return ParseSecret(resp.Body)`
			`}`
Add SignKey endpoint for SSH API client 2017-08-16 18:44:28 -04:00
			`// SignKey signs the given public key and returns a signed public key to pass`
			`// along with the SSH request.`
			`func (c SSH) SignKey(role string, data map[string]interface{}) (Secret, error) {`
			`r := c.c.NewRequest("PUT", fmt.Sprintf("/v1/%s/sign/%s", c.MountPoint, role))`
			`if err := r.SetJSONBody(data); err != nil {`
			`return nil, err`
			`}`

API: Add context to each raw request call (#4987) 2018-07-24 18:49:55 -04:00			`ctx, cancelFunc := context.WithCancel(context.Background())`
			`defer cancelFunc()`
			`resp, err := c.c.RawRequestWithContext(ctx, r)`
Add SignKey endpoint for SSH API client 2017-08-16 18:44:28 -04:00			`if err != nil {`
			`return nil, err`
			`}`
			`defer resp.Body.Close()`

			`return ParseSecret(resp.Body)`
			`}`