bartvdbraak / keyweave Goto Github PK
View Code? Open in Web Editor NEWFetches secrets from Azure Key Vault and weaves them into a convenient .env file
License: GNU General Public License v3.0
keyweave's People
Contributors
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot]")
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "renovate[bot]")
Stargazers
Watchers
keyweave's Issues
Add a way to update (`Set`) Key Vault using `.env` file
- Add boolean flag
--set - Add docs about what you need to do for it and which Access Policies
- Add code
End-to-end test coverage
Test Scenarios:
-
Use Keyweave with both
GetandListAccess Policies:- Verify that Keyweave successfully fetches secrets from Azure Key Vault with both
GetandListaccess policies. - Expected Outcome: Secrets are retrieved and properly woven into the specified .env file.
- Verify that Keyweave successfully fetches secrets from Azure Key Vault with both
-
Use Keyweave with No Access Policies:
- Attempt to use Keyweave without any access policies.
- Expected Outcome: Keyweave should fail to retrieve secrets due to lack of access policies.
-
Use Keyweave with Only
GetAccess Policy:- Test Keyweave with only
Getaccess policy on Azure Key Vault. - Expected Outcome: Verify that Keyweave can retrieve secrets with the specified
Getaccess policy.
- Test Keyweave with only
-
Use Keyweave with Only
ListAccess Policy:- Test Keyweave with only
Listaccess policy on Azure Key Vault. - Expected Outcome: Verify that Keyweave can retrieve a list of secrets with the specified
Listaccess policy.
- Test Keyweave with only
-
Use Keyweave with Different Tenant Identity:
- Log into a different Azure tenant but with an identity that should have access.
- Expected Outcome: Ensure that Keyweave can access the Azure Key Vault with the provided identity from a different tenant.
-
Use Keyweave with Non-Existent Keyvault:
- Attempt to use Keyweave with a non-existent Azure Key Vault.
- Expected Outcome: Keyweave should handle the error gracefully and provide a meaningful error message.
-
Use Keyweave with Complex File Path:
- Specify a complex file path as the output for Keyweave.
- Expected Outcome: Ensure that Keyweave correctly writes the secrets to the specified complex file path.
-
Use Keyweave with No Permissions on File Path:
- Attempt to use Keyweave with a file path where the user has no write permissions.
- Expected Outcome: Keyweave should handle the permissions error and provide a clear message.
-
Use Keyweave with Filter (Expecting 1 Key):
- Specify a filter for Keyweave and expect only one key to be retrieved.
- Expected Outcome: Verify that Keyweave correctly applies the filter and retrieves the expected key.
Add RBAC implementation
Investigate fat binary for MacOS multi-arch
Dependency Dashboard
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
This repository currently has no open or pending branches.
Detected dependencies
bicep
bicep/main.bicep
Microsoft.Resources/resourceGroups 2023-07-01bicep/modules/id.bicep
Microsoft.ManagedIdentity/userAssignedIdentities 2023-01-31Microsoft.ManagedIdentity/userAssignedIdentities/federatedIdentityCredentials 2023-01-31bicep/modules/kv.bicep
Microsoft.OperationalInsights/workspaces 2022-10-01Microsoft.KeyVault/vaults 2023-07-01Microsoft.KeyVault/vaults 2023-07-01Microsoft.Insights/diagnosticSettings 2021-05-01-previewMicrosoft.Insights/diagnosticSettings 2021-05-01-previewbicep/modules/law.bicep
Microsoft.OperationalInsights/workspaces 2022-10-01
cargo
Cargo.toml
anyhow 1.0.81azure_core 0.19.0azure_identity 0.19.0azure_security_keyvault 0.19.0clap 4.5.4futures 0.3.30paris 1.5.15tokio 1.37.0assert_cmd 2.0.14assert_fs 1.1.1predicates 3.1.0serial_test 3.0.0openssl 0.10
github-actions
.github/workflows/checks.yml
actions/checkout v4actions/checkout v4actions/checkout v4actions/checkout v4actions/checkout v4.github/workflows/release.yml
actions/checkout v4actions/checkout v4actions/cache v4actions/cache v4taiki-e/setup-cross-toolchain-action v1actions/upload-artifact v4actions/checkout v4actions/cache v4actions/download-artifact v4softprops/action-gh-release v2actions/github-script v7actions/checkout v4.github/workflows/tests.yml
actions/checkout v4actions/checkout v4azure/login v2azure/arm-deploy v2actions/checkout v4azure/login v2
- Check this box to trigger a request for Renovate to run again on this repository
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.