feat(secrets): support for csi directories #565
Conversation
secrets/secrets.go
Outdated
| return nil | ||
| } | ||
| // parse file | ||
| file, err := os.Open(path) |
There was a problem hiding this comment.
you actually need to use dir.Open instead of os.Open (the path is relative inside the fs)
There was a problem hiding this comment.
also you did not close the file :)
Tediferous
requested review from
konradreiche,
mterwill,
ghirsch-reddit and
fishy
and removed request for
a team
secrets/secrets.go
Outdated
| return nil | ||
| } | ||
| // parse file | ||
| file, err := fs.ReadFile(dir, path) |
There was a problem hiding this comment.
read the file fully into memory then use bytes.NewReader is very inefficient. just use d.Open, defer close after error check, would be much better.
secrets/store.go
Outdated
| @@ -41,13 +43,22 @@ func NewStore(ctx context.Context, path string, logger log.Wrapper, middlewares | |||
| store := &Store{ | |||
| secretHandlerFunc: nopSecretHandlerFunc, | |||
| } | |||
| parser := store.parser | |||
There was a problem hiding this comment.
nit: move this to right before line 53 instead.
secrets/store_test.go
Outdated
| } | ||
| for _, tt := range tests { | ||
| t.Run( | ||
| tt.name, |
There was a problem hiding this comment.
this will run the subtests with the same name as from line 132. which will make the output very confusing.
either construct the name to add -file/-dir suffix (e.g. make line 132 tt.name + "-file" and here tt.name + "-dir", or run another level of subtests with names file/dir.
I would strongly prefer to add another level of subtests. you can also make it another level of for loop to reuse the majority of the code:
for _, tt := range tests {
t.Run(
tt.name,
func(t *testing.T) {
for label, path := range map[string]string{
"file": tmpPath,
"dir": dirCSI,
} {
t.Run(label, func(t *testing.T) {
store, err := secrets.NewStore(context.Background(), path, log.TestWrapper(t))
if err != nil {
t.Fatal(err)
}
t.Cleanup(func() { store.Close() })
secret, err := store.GetSimpleSecret(tt.key)
if tt.expectedError == nil && err != nil {
t.Fatal(err)
}
if tt.expectedError != nil && err.Error() != tt.expectedError.Error() {
t.Fatalf("expected error %v, actual: %v", tt.expectedError, err)
}
if !reflect.DeepEqual(secret, tt.expected) {
t.Fatalf("expected %+v, actual: %+v", tt.expected, secret)
}
})
}
},
)
}
secrets/secrets.go
Outdated
| // NewDirSecrets parses a directory and returns its secrets | ||
| func NewDirSecrets(dir fs.FS) (*Secrets, error) { |
There was a problem hiding this comment.
This stutters β secrets.NewDirSecrets. Perhaps secrets.FromDir?
secrets/secrets.go
Outdated
| var secretFile CSIFile | ||
| err = json.NewDecoder(file).Decode(&secretFile) | ||
| if err != nil { | ||
| return err |
There was a problem hiding this comment.
π bare returns like this can make errors difficult to trace back if they don't contain sufficient context. I'm not going to audit everything in here, but something to keep in mind for the future. Instead:
a) if the error message contains sufficient context, add a comment to let code reviewers and future readers know that you thought about this:
return err // contains contextor, b) wrap the error with a helpful message:
return fmt.Errorf("decoding %q: %s", path, err)There was a problem hiding this comment.
agreed but we should use %w for err.
secrets/secrets.go
Outdated
| return nil | ||
| }, | ||
| ) | ||
| return secretsDocument, err |
There was a problem hiding this comment.
Unless you explicitly need the return value in the error case, it's idiomatic to return nil, err in the multi-return error case. The error and the return value are generally considered to be mutually exclusive and this pattern makes the intended use explicit and lowers overall cognitive overhead. (In this case you'd also have to adjust the signature to return a *Document)
| "renewable": false, | ||
| "data": { | ||
| "type": "simple", | ||
| "value": "Y2RvVXhNMVdsTXJma3BDaHRGZ0dPYkVGSg==", |
There was a problem hiding this comment.
Sanity check: this isn't a real secret, right? Looks more random than the rest.
There was a problem hiding this comment.
I dont know, I copied this from the other example secret that this test was already using
There was a problem hiding this comment.
I think it's a valid secret that's only used in unit tests. @pacejackson might know more of the origin of it π
I'm 99% sure it's not something we used in prod.
secrets/secrets.go
Outdated
| @@ -298,3 +321,35 @@ func NewSecrets(r io.Reader) (*Secrets, error) { | |||
| } | |||
| return secrets, nil | |||
| } | |||
|
|
|||
| func csiPathParser(dir fs.FS) (Document, error) { | |||
There was a problem hiding this comment.
π
| func csiPathParser(dir fs.FS) (Document, error) { | |
| // walkCSIDirectory ... | |
| func walkCSIDirectory(dir fs.FS) (*Document, error) { |
Co-authored-by: Matt Terwilliger <matt@terwilligers.com>
|
Oh sorry I didn't realize that you already got approvals from all reviewers. gonna merge this. |
* Upgrade thrift to 0.17.0 This allows us to remove tDuplicateToProtocol and getClientError implementation as they are in thrift v0.17.0 now. There's no breaking changes between 0.16.0 and 0.17.0 regarding go library/compiler. * breakerbp: Fix prometheus gauge In the current implementation, the gauge value is only set when the state of the breaker changes. Which means if a breaker never got tripped, we would not report the gauge value at all. Set an initial value of 1 in constructor. * Update gRPC metrics to match v2 and spec (#572) * feat(secrets): support for csi directories (#565) Co-authored-by: Ted Dorfeuille <ted.dorfeuille@reddit.com> Co-authored-by: Matt Terwilliger <matt@terwilligers.com> Co-authored-by: Yuxuan 'fishy' Wang <yuxuan.wang@reddit.com> Co-authored-by: Kyle Lemons <kyle.lemons@reddit.com> Co-authored-by: Ted <Tediferous@users.noreply.github.com> Co-authored-by: Ted Dorfeuille <ted.dorfeuille@reddit.com> Co-authored-by: Matt Terwilliger <matt@terwilligers.com>
Closes #
πΈ TL;DR
Allow baseplate go to read secrets from a vault csi directory
Jira
π§ͺ Testing Steps / Validation
β Checks