scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-11-03 03:58:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

postgres: sanitize private_key from READ config endpoint (#28070)

Browse Source
This commit is contained in:
John-Michael Faircloth
2024-08-13 15:29:57 -05:00
committed by GitHub
parent b003c57ac0
commit 1b1f22192a
3 changed files with 57 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
plugins/database/postgresql/postgresql.go
View File

@@ -84,7 +84,7 @@ type PostgreSQL struct {
*connutil.SQLConnectionProducer
TLSCertificateData []byte `json:"tls_certificate" structs:"-" mapstructure:"tls_certificate"`
TLSPrivateKey []byte `json:"tls_private_key" structs:"-" mapstructure:"tls_private_key"`
TLSPrivateKey []byte `json:"private_key" structs:"-" mapstructure:"private_key"`
TLSCAData []byte `json:"tls_ca" structs:"-" mapstructure:"tls_ca"`
usernameProducer template.StringTemplate
@@ -97,9 +97,9 @@ func (p *PostgreSQL) Initialize(ctx context.Context, req dbplugin.InitializeRequ
return dbplugin.InitializeResponse{}, fmt.Errorf("failed to retrieve tls_certificate: %w", err)
}
sslkey, err := strutil.GetString(req.Config, "tls_private_key")
sslkey, err := strutil.GetString(req.Config, "private_key")
if err != nil {
return dbplugin.InitializeResponse{}, fmt.Errorf("failed to retrieve tls_private_key: %w", err)
return dbplugin.InitializeResponse{}, fmt.Errorf("failed to retrieve private_key: %w", err)
}
sslrootcert, err := strutil.GetString(req.Config, "tls_ca")