Sha256: 14c8906b6f38ae8097296d2229d22bbcde6df2f29dc7b778ecf7cef0117174df
Contents?: true
Size: 1.23 KB
Versions: 2
Compression:
Stored size: 1.23 KB
Contents
# frozen_string_literal: true
module Bolt
class Secret
class Base
def hooks
%i[resolve_reference secret_encrypt secret_decrypt secret_createkeys validate_resolve_reference]
end
def encode(raw)
coded = Base64.encode64(raw).strip
"ENC[#{name.upcase},#{coded}]"
end
def decode(code)
format = %r{\AENC\[(?<plugin>\w+),(?<encoded>[\w\s+-=/]+)\]\s*\z}
match = format.match(code)
raise Bolt::ValidationError, "Could not parse as an encrypted value: #{code}" unless match
raw = Base64.decode64(match[:encoded])
[raw, match[:plugin]]
end
def secret_encrypt(opts)
encrypted = encrypt_value(opts['plaintext_value'])
encode(encrypted)
end
def secret_decrypt(opts)
raw, _plugin = decode(opts['encrypted_value'])
decrypt_value(raw)
end
alias resolve_reference secret_decrypt
def validate_resolve_reference(opts)
# TODO: Remove deprecation warning
if opts.include?('encrypted-value')
raise Bolt::ValidationError, "The 'encrypted-value' key is deprecated migrate to to 'encrypted_value'"
end
decode(opts['encrypted_value'])
end
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| bolt-1.31.1 | lib/bolt/secret/base.rb |
| bolt-1.31.0 | lib/bolt/secret/base.rb |