class SecretsManager(object):
def __init__(self):
self.api = SecretsAdapter()
def deploy(self, config, dependencies_changed=False):
exists = config.path in self.api.list_secrets()
if exists:
content = self.api.get_secret(config.path)
if config.value:
changed = content != config.value
elif config.file_content:
changed = content != config.file_content
else:
raise Exception(
"Specified neither value nor file_content for secret")
if not changed:
print("\tSecret already exists. No update needed.")
return False
print("\tUpdating secret")
self.api.write_secret(config.path,
config.value,
config.file_content,
update=exists)
print("\tSecret updated.")
return True
else:
print("\tCreating secret")
self.api.write_secret(config.path,
config.value,
config.file_content,
update=exists)
print("\tSecret created.")
return True
def dry_run(self, config, dependencies_changed=False, debug=False):
exists = config.path in self.api.list_secrets()
if not exists:
print("Would create secret %s" % config.path)
return True
content = self.api.get_secret(config.path)
if config.value:
changed = content != config.value
elif config.file_content:
changed = content != config.file_content
else:
raise Exception(
"Specified neither value nor file_content for secret")
if changed:
print("Would update secret %s" % config.path)
class SecretsManager(object):
def __init__(self):
self.api = SecretsAdapter()
def deploy(self, config, dependencies_changed=False, silent=False):
exists = config.path in self.api.list_secrets()
if exists:
content = self.api.get_secret(config.path)
if config.value:
changed = content != config.value
elif config.file_content:
if isinstance(config.file_content, str):
content = content.decode("utf-8")
changed = content != config.file_content
else:
raise Exception(
"Specified neither value nor file_content for secret")
if not changed:
print_if(not silent,
"\tSecret already exists. No update needed.")
return False
print_if(not silent, "\tUpdating secret")
self.api.write_secret(config.path,
config.value,
config.file_content,
update=exists)
print_if(not silent, "\tSecret updated.")
return True
else:
print_if(not silent, "\tCreating secret")
self.api.write_secret(config.path,
config.value,
config.file_content,
update=exists)
print_if(not silent, "\tSecret created.")
return True
def dry_run(self, config, dependencies_changed=False, debug=False):
exists = config.path in self.api.list_secrets()
if not exists:
print("Would create secret %s" % config.path)
return True
content = self.api.get_secret(config.path)
if config.value:
changed = content != config.value
elif config.file_content:
if isinstance(config.file_content, str):
content = content.decode("utf-8")
changed = content != config.file_content
else:
raise Exception(
"Specified neither value nor file_content for secret")
if changed:
if debug:
new_content = config.file_content if config.file_content else config.value
print("Would update secret %s:" % config.path)
print(compare_text(content, new_content))
else:
print("Would update secret %s" % config.path)
return changed
def delete(self, config, silent=False):
print("\tDeleting secret")
deleted = self.api.delete_secret(config.path)
print("\tDeleted secret.")
return deleted
def dry_delete(self, config):
if self.api.get_secret(config.path):
print("Would delete secret %s" % config.path)
return True
else:
return False