mirror of https://github.com/containers/podman.git
139 lines
3.5 KiB
Go
139 lines
3.5 KiB
Go
package abi
|
|
|
|
import (
|
|
"context"
|
|
"io"
|
|
"io/ioutil"
|
|
"path/filepath"
|
|
|
|
"github.com/containers/common/pkg/secrets"
|
|
"github.com/containers/podman/v2/pkg/domain/entities"
|
|
"github.com/pkg/errors"
|
|
)
|
|
|
|
func (ic *ContainerEngine) SecretCreate(ctx context.Context, name string, reader io.Reader, options entities.SecretCreateOptions) (*entities.SecretCreateReport, error) {
|
|
data, _ := ioutil.ReadAll(reader)
|
|
secretsPath := ic.Libpod.GetSecretsStorageDir()
|
|
manager, err := secrets.NewManager(secretsPath)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
driverOptions := make(map[string]string)
|
|
|
|
if options.Driver == "" {
|
|
options.Driver = "file"
|
|
}
|
|
if options.Driver == "file" {
|
|
driverOptions["path"] = filepath.Join(secretsPath, "filedriver")
|
|
}
|
|
secretID, err := manager.Store(name, data, options.Driver, driverOptions)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &entities.SecretCreateReport{
|
|
ID: secretID,
|
|
}, nil
|
|
}
|
|
|
|
func (ic *ContainerEngine) SecretInspect(ctx context.Context, nameOrIDs []string) ([]*entities.SecretInfoReport, []error, error) {
|
|
secretsPath := ic.Libpod.GetSecretsStorageDir()
|
|
manager, err := secrets.NewManager(secretsPath)
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
errs := make([]error, 0, len(nameOrIDs))
|
|
reports := make([]*entities.SecretInfoReport, 0, len(nameOrIDs))
|
|
for _, nameOrID := range nameOrIDs {
|
|
secret, err := manager.Lookup(nameOrID)
|
|
if err != nil {
|
|
if errors.Cause(err).Error() == "no such secret" {
|
|
errs = append(errs, err)
|
|
continue
|
|
} else {
|
|
return nil, nil, errors.Wrapf(err, "error inspecting secret %s", nameOrID)
|
|
}
|
|
}
|
|
report := &entities.SecretInfoReport{
|
|
ID: secret.ID,
|
|
CreatedAt: secret.CreatedAt,
|
|
UpdatedAt: secret.CreatedAt,
|
|
Spec: entities.SecretSpec{
|
|
Name: secret.Name,
|
|
Driver: entities.SecretDriverSpec{
|
|
Name: secret.Driver,
|
|
},
|
|
},
|
|
}
|
|
reports = append(reports, report)
|
|
|
|
}
|
|
|
|
return reports, errs, nil
|
|
}
|
|
|
|
func (ic *ContainerEngine) SecretList(ctx context.Context) ([]*entities.SecretInfoReport, error) {
|
|
secretsPath := ic.Libpod.GetSecretsStorageDir()
|
|
manager, err := secrets.NewManager(secretsPath)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
secretList, err := manager.List()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
report := make([]*entities.SecretInfoReport, 0, len(secretList))
|
|
for _, secret := range secretList {
|
|
reportItem := entities.SecretInfoReport{
|
|
ID: secret.ID,
|
|
CreatedAt: secret.CreatedAt,
|
|
UpdatedAt: secret.CreatedAt,
|
|
Spec: entities.SecretSpec{
|
|
Name: secret.Name,
|
|
Driver: entities.SecretDriverSpec{
|
|
Name: secret.Driver,
|
|
Options: secret.DriverOptions,
|
|
},
|
|
},
|
|
}
|
|
report = append(report, &reportItem)
|
|
}
|
|
return report, nil
|
|
}
|
|
|
|
func (ic *ContainerEngine) SecretRm(ctx context.Context, nameOrIDs []string, options entities.SecretRmOptions) ([]*entities.SecretRmReport, error) {
|
|
var (
|
|
err error
|
|
toRemove []string
|
|
reports = []*entities.SecretRmReport{}
|
|
)
|
|
secretsPath := ic.Libpod.GetSecretsStorageDir()
|
|
manager, err := secrets.NewManager(secretsPath)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
toRemove = nameOrIDs
|
|
if options.All {
|
|
allSecrs, err := manager.List()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
for _, secr := range allSecrs {
|
|
toRemove = append(toRemove, secr.ID)
|
|
}
|
|
}
|
|
for _, nameOrID := range toRemove {
|
|
deletedID, err := manager.Delete(nameOrID)
|
|
if err == nil || errors.Cause(err).Error() == "no such secret" {
|
|
reports = append(reports, &entities.SecretRmReport{
|
|
Err: err,
|
|
ID: deletedID,
|
|
})
|
|
continue
|
|
} else {
|
|
return nil, err
|
|
}
|
|
}
|
|
|
|
return reports, nil
|
|
}
|