Update encryption configuration screen for tenant (#1611)

2022-03-01 01:56:38 -06:00
parent 208afdfc3a
commit 4fa2f16e9a
30 changed files with 6216 additions and 225 deletions
--- a/pkg/kes/kes.go
+++ b/pkg/kes/kes.go
@@ -32,87 +32,87 @@ type TLSProxyHeader struct {
 }

 type TLSProxy struct {
-	Identities *[]Identity     `yaml:"identities,omitempty"`
-	Header     *TLSProxyHeader `yaml:"header,omitempty"`
+	Identities *[]Identity     `yaml:"identities,omitempty" json:"identities,omitempty"`
+	Header     *TLSProxyHeader `yaml:"header,omitempty" json:"header,omitempty"`
 }

 type TLS struct {
-	KeyPath  string    `yaml:"key,omitempty"`
-	CertPath string    `yaml:"cert,omitempty"`
-	Proxy    *TLSProxy `yaml:"proxy,omitempty"`
+	KeyPath  string    `yaml:"key,omitempty" json:"key,omitempty"`
+	CertPath string    `yaml:"cert,omitempty" json:"cert,omitempty"`
+	Proxy    *TLSProxy `yaml:"proxy,omitempty" json:"proxy,omitempty"`
 }

 type Policy struct {
-	Paths      []string   `yaml:"paths,omitempty"`
-	Identities []Identity `yaml:"identities,omitempty"`
+	Paths      []string   `yaml:"paths,omitempty" json:"paths,omitempty"`
+	Identities []Identity `yaml:"identities,omitempty" json:"identities,omitempty"`
 }

 type Expiry struct {
-	Any    time.Duration `yaml:"any,omitempty"`
-	Unused time.Duration `yaml:"unused,omitempty"`
+	Any    time.Duration `yaml:"any,omitempty" json:"any,omitempty"`
+	Unused time.Duration `yaml:"unused,omitempty" json:"unused,omitempty"`
 }

 type Cache struct {
-	Expiry *Expiry `yaml:"expiry,omitempty"`
+	Expiry *Expiry `yaml:"expiry,omitempty" json:"expiry,omitempty"`
 }

 type Log struct {
-	Error string `yaml:"error,omitempty"`
-	Audit string `yaml:"audit,omitempty"`
+	Error string `yaml:"error,omitempty" json:"error,omitempty"`
+	Audit string `yaml:"audit,omitempty" json:"audit,omitempty"`
 }

 type Fs struct {
-	Path string `yaml:"path,omitempty"`
+	Path string `yaml:"path,omitempty" json:"path,omitempty"`
 }

 type AppRole struct {
-	EnginePath string        `yaml:"engine,omitempty"`
-	ID         string        `yaml:"id,omitempty"`
-	Secret     string        `yaml:"secret,omitempty"`
-	Retry      time.Duration `yaml:"retry,omitempty"`
+	EnginePath string        `yaml:"engine,omitempty" json:"engine,omitempty"`
+	ID         string        `yaml:"id,omitempty" json:"id,omitempty"`
+	Secret     string        `yaml:"secret,omitempty" json:"secret,omitempty"`
+	Retry      time.Duration `yaml:"retry,omitempty" json:"retry,omitempty"`
 }

 type VaultTLS struct {
-	KeyPath  string `yaml:"key,omitempty"`
-	CertPath string `yaml:"cert,omitempty"`
-	CAPath   string `yaml:"ca,omitempty"`
+	KeyPath  string `yaml:"key,omitempty" json:"key,omitempty"`
+	CertPath string `yaml:"cert,omitempty" json:"cert,omitempty"`
+	CAPath   string `yaml:"ca,omitempty" json:"ca,omitempty"`
 }

 type VaultStatus struct {
-	Ping time.Duration `yaml:"ping,omitempty"`
+	Ping time.Duration `yaml:"ping,omitempty" json:"ping,omitempty"`
 }

 type Vault struct {
-	Endpoint   string       `yaml:"endpoint,omitempty"`
-	EnginePath string       `yaml:"engine,omitempty"`
-	Namespace  string       `yaml:"namespace,omitempty"`
-	Prefix     string       `yaml:"prefix,omitempty"`
-	AppRole    *AppRole     `yaml:"approle,omitempty"`
-	TLS        *VaultTLS    `yaml:"tls,omitempty"`
-	Status     *VaultStatus `yaml:"status,omitempty"`
+	Endpoint   string       `yaml:"endpoint,omitempty" json:"endpoint,omitempty"`
+	EnginePath string       `yaml:"engine,omitempty" json:"engine,omitempty"`
+	Namespace  string       `yaml:"namespace,omitempty" json:"namespace,omitempty"`
+	Prefix     string       `yaml:"prefix,omitempty" json:"prefix,omitempty"`
+	AppRole    *AppRole     `yaml:"approle,omitempty" json:"approle,omitempty"`
+	TLS        *VaultTLS    `yaml:"tls,omitempty" json:"tls,omitempty"`
+	Status     *VaultStatus `yaml:"status,omitempty" json:"status,omitempty"`
 }

 type AwsSecretManagerLogin struct {
-	AccessKey    string `yaml:"accesskey"`
-	SecretKey    string `yaml:"secretkey"`
-	SessionToken string `yaml:"token"`
+	AccessKey    string `yaml:"accesskey" json:"accesskey"`
+	SecretKey    string `yaml:"secretkey" json:"secretkey"`
+	SessionToken string `yaml:"token" json:"token"`
 }

 type AwsSecretManager struct {
-	Endpoint string                 `yaml:"endpoint,omitempty"`
-	Region   string                 `yaml:"region,omitempty"`
-	KmsKey   string                 ` yaml:"kmskey,omitempty"`
-	Login    *AwsSecretManagerLogin `yaml:"credentials,omitempty"`
+	Endpoint string                 `yaml:"endpoint,omitempty" json:"endpoint,omitempty"`
+	Region   string                 `yaml:"region,omitempty" json:"region,omitempty"`
+	KmsKey   string                 `yaml:"kmskey,omitempty" json:"kmskey,omitempty"`
+	Login    *AwsSecretManagerLogin `yaml:"credentials,omitempty" json:"credentials,omitempty"`
 }

 type Aws struct {
-	SecretsManager *AwsSecretManager `yaml:"secretsmanager,omitempty"`
+	SecretsManager *AwsSecretManager `yaml:"secretsmanager,omitempty" json:"secretsmanager,omitempty"`
 }

 type GemaltoCredentials struct {
-	Token  string        `yaml:"token,omitempty"`
-	Domain string        `yaml:"domain,omitempty"`
-	Retry  time.Duration `yaml:"retry,omitempty"`
+	Token  string        `yaml:"token,omitempty" json:"token,omitempty"`
+	Domain string        `yaml:"domain,omitempty" json:"domain,omitempty"`
+	Retry  time.Duration `yaml:"retry,omitempty" json:"retry,omitempty"`
 }

 type GemaltoTLS struct {
@@ -120,64 +120,64 @@ type GemaltoTLS struct {
 }

 type GemaltoKeySecure struct {
-	Endpoint    string              `yaml:"endpoint,omitempty"`
-	Credentials *GemaltoCredentials `yaml:"credentials,omitempty"`
-	TLS         *GemaltoTLS         `yaml:"tls,omitempty"`
+	Endpoint    string              `yaml:"endpoint,omitempty" json:"endpoint,omitempty"`
+	Credentials *GemaltoCredentials `yaml:"credentials,omitempty" json:"credentials,omitempty"`
+	TLS         *GemaltoTLS         `yaml:"tls,omitempty" json:"tls,omitempty"`
 }

 type Gemalto struct {
-	KeySecure *GemaltoKeySecure `yaml:"keysecure,omitempty"`
+	KeySecure *GemaltoKeySecure `yaml:"keysecure,omitempty" json:"keysecure,omitempty"`
 }

 type GcpCredentials struct {
-	ClientEmail  string `yaml:"client_email"`
-	ClientID     string `yaml:"client_id"`
-	PrivateKeyID string `yaml:"private_key_id"`
-	PrivateKey   string `yaml:"private_key"`
+	ClientEmail  string `yaml:"client_email" json:"client_email"`
+	ClientID     string `yaml:"client_id" json:"client_id"`
+	PrivateKeyID string `yaml:"private_key_id" json:"private_key_id"`
+	PrivateKey   string `yaml:"private_key" json:"private_key"`
 }

 type GcpSecretManager struct {
-	ProjectID   string          `yaml:"project_id"`
-	Endpoint    string          `yaml:"endpoint,omitempty"`
-	Credentials *GcpCredentials `yaml:"credentials,omitempty"`
+	ProjectID   string          `yaml:"project_id" json:"project_id"`
+	Endpoint    string          `yaml:"endpoint,omitempty" json:"endpoint,omitempty"`
+	Credentials *GcpCredentials `yaml:"credentials,omitempty" json:"credentials,omitempty"`
 }

 type Gcp struct {
-	SecretManager *GcpSecretManager `yaml:"secretmanager,omitempty"`
+	SecretManager *GcpSecretManager `yaml:"secretmanager,omitempty" json:"secretmanager,omitempty"`
 }

 type AzureCredentials struct {
-	TenantID     string `yaml:"tenant_id"`
-	ClientID     string `yaml:"client_id"`
-	ClientSecret string `yaml:"client_secret"`
+	TenantID     string `yaml:"tenant_id" json:"tenant_id"`
+	ClientID     string `yaml:"client_id" json:"client_id"`
+	ClientSecret string `yaml:"client_secret" json:"client_secret"`
 }

 type AzureKeyVault struct {
-	Endpoint    string            `yaml:"endpoint,omitempty"`
-	Credentials *AzureCredentials `yaml:"credentials,omitempty"`
+	Endpoint    string            `yaml:"endpoint,omitempty" json:"endpoint,omitempty"`
+	Credentials *AzureCredentials `yaml:"credentials,omitempty" json:"credentials,omitempty"`
 }

 type Azure struct {
-	KeyVault *AzureKeyVault `yaml:"keyvault,omitempty"`
+	KeyVault *AzureKeyVault `yaml:"keyvault,omitempty" json:"keyvault,omitempty"`
 }

 type Keys struct {
-	Fs      *Fs      `yaml:"fs,omitempty"`
-	Vault   *Vault   `yaml:"vault,omitempty"`
-	Aws     *Aws     `yaml:"aws,omitempty"`
-	Gemalto *Gemalto `yaml:"gemalto,omitempty"`
-	Gcp     *Gcp     `yaml:"gcp,omitempty"`
-	Azure   *Azure   `yaml:"azure,omitempty"`
+	Fs      *Fs      `yaml:"fs,omitempty" json:"fs,omitempty"`
+	Vault   *Vault   `yaml:"vault,omitempty" json:"vault,omitempty"`
+	Aws     *Aws     `yaml:"aws,omitempty" json:"aws,omitempty"`
+	Gemalto *Gemalto `yaml:"gemalto,omitempty" json:"gemalto,omitempty"`
+	Gcp     *Gcp     `yaml:"gcp,omitempty" json:"gcp,omitempty"`
+	Azure   *Azure   `yaml:"azure,omitempty" json:"azure,omitempty"`
 }

 type ServerConfig struct {
-	Addr     string            `yaml:"address,omitempty"`
-	Root     Identity          `yaml:"root,omitempty"`
-	TLS      TLS               `yaml:"tls,omitempty"`
-	Policies map[string]Policy `yaml:"policy,omitempty"`
-	Cache    Cache             `yaml:"cache,omitempty"`
-	Log      Log               `yaml:"log,omitempty"`
-	Keys     Keys              `yaml:"keys,omitempty"`
+	Addr     string            `yaml:"address,omitempty" json:"address,omitempty"`
+	Root     Identity          `yaml:"root,omitempty" json:"root,omitempty"`
+	TLS      TLS               `yaml:"tls,omitempty" json:"tls,omitempty"`
+	Policies map[string]Policy `yaml:"policy,omitempty" json:"policy,omitempty"`
+	Cache    Cache             `yaml:"cache,omitempty" json:"cache,omitempty"`
+	Log      Log               `yaml:"log,omitempty" json:"log,omitempty"`
+	Keys     Keys              `yaml:"keys,omitempty" json:"keys,omitempty"`
 }

 func ParseCertificate(cert []byte) (*x509.Certificate, error) {