mirror of
https://github.com/optim-enterprises-bv/vault.git
synced 2025-10-30 18:17:55 +00:00
044660b352
We didn't make this change earlier because not everyone would have had an updated version of Vault with this API change but it's definitely time. Fixes https://github.com/hashicorp/vault-ssh-helper/issues/40
112 lines
2.3 KiB
Go
112 lines
2.3 KiB
Go
package api
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
)
|
|
|
|
func (c *Sys) Renew(id string, increment int) (*Secret, error) {
|
|
r := c.c.NewRequest("PUT", "/v1/sys/leases/renew")
|
|
|
|
body := map[string]interface{}{
|
|
"increment": increment,
|
|
"lease_id": id,
|
|
}
|
|
if err := r.SetJSONBody(body); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
ctx, cancelFunc := context.WithCancel(context.Background())
|
|
defer cancelFunc()
|
|
resp, err := c.c.RawRequestWithContext(ctx, r)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
return ParseSecret(resp.Body)
|
|
}
|
|
|
|
func (c *Sys) Revoke(id string) error {
|
|
r := c.c.NewRequest("PUT", "/v1/sys/leases/revoke")
|
|
body := map[string]interface{}{
|
|
"lease_id": id,
|
|
}
|
|
if err := r.SetJSONBody(body); err != nil {
|
|
return err
|
|
}
|
|
|
|
ctx, cancelFunc := context.WithCancel(context.Background())
|
|
defer cancelFunc()
|
|
resp, err := c.c.RawRequestWithContext(ctx, r)
|
|
if err == nil {
|
|
defer resp.Body.Close()
|
|
}
|
|
return err
|
|
}
|
|
|
|
func (c *Sys) RevokePrefix(id string) error {
|
|
r := c.c.NewRequest("PUT", "/v1/sys/leases/revoke-prefix/"+id)
|
|
|
|
ctx, cancelFunc := context.WithCancel(context.Background())
|
|
defer cancelFunc()
|
|
resp, err := c.c.RawRequestWithContext(ctx, r)
|
|
if err == nil {
|
|
defer resp.Body.Close()
|
|
}
|
|
return err
|
|
}
|
|
|
|
func (c *Sys) RevokeForce(id string) error {
|
|
r := c.c.NewRequest("PUT", "/v1/sys/leases/revoke-force/"+id)
|
|
|
|
ctx, cancelFunc := context.WithCancel(context.Background())
|
|
defer cancelFunc()
|
|
resp, err := c.c.RawRequestWithContext(ctx, r)
|
|
if err == nil {
|
|
defer resp.Body.Close()
|
|
}
|
|
return err
|
|
}
|
|
|
|
func (c *Sys) RevokeWithOptions(opts *RevokeOptions) error {
|
|
if opts == nil {
|
|
return errors.New("nil options provided")
|
|
}
|
|
|
|
// Construct path
|
|
path := "/v1/sys/leases/revoke/"
|
|
switch {
|
|
case opts.Force:
|
|
path = "/v1/sys/leases/revoke-force/"
|
|
case opts.Prefix:
|
|
path = "/v1/sys/leases/revoke-prefix/"
|
|
}
|
|
path += opts.LeaseID
|
|
|
|
r := c.c.NewRequest("PUT", path)
|
|
if !opts.Force {
|
|
body := map[string]interface{}{
|
|
"sync": opts.Sync,
|
|
}
|
|
if err := r.SetJSONBody(body); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
ctx, cancelFunc := context.WithCancel(context.Background())
|
|
defer cancelFunc()
|
|
resp, err := c.c.RawRequestWithContext(ctx, r)
|
|
if err == nil {
|
|
defer resp.Body.Close()
|
|
}
|
|
return err
|
|
}
|
|
|
|
type RevokeOptions struct {
|
|
LeaseID string
|
|
Force bool
|
|
Prefix bool
|
|
Sync bool
|
|
}
|