• Home
• com.metreeca
• metreeca-gcp
• 1.0.3
• source code
• GCPVault.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.metreeca.gcp.services.GCPVault Maven / Gradle / Ivy

/*
 * Copyright © 2013-2022 Metreeca srl
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package com.metreeca.gcp.services;

import com.metreeca.rest.services.Vault;

import com.google.cloud.secretmanager.v1.*;

import java.io.IOException;
import java.io.UncheckedIOException;
import java.util.Optional;

import static com.metreeca.gcp.GCPServer.project;

import static java.util.stream.StreamSupport.stream;


/**
 * Google Cloud secret vault.
 *
 * 
Retrieves secrets managed by the Google Cloud Platform secret manager service.
 *
 * 
Warning / Only letters, numbers, underscores and hyphens are supported in secret {@linkplain
 * #get(String) ids}.
 *
 * @see Google Cloud Plaform - Secret Manager
 */
public final class GCPVault implements Vault, AutoCloseable {

	private final SecretManagerServiceClient client;


	/**
	 * Creates a new Google Cloud secret vault.
	 */
	public GCPVault() {
		try {

			this.client=SecretManagerServiceClient.create();

		} catch ( final IOException e ) {
			throw new UncheckedIOException(e);
		}
	}


	@Override public Optional get(final String id) {

		if ( id == null ) {
			throw new NullPointerException("null id");
		}

		if ( id.isEmpty() ) {
			throw new IllegalArgumentException("empty parameter id");
		}

		final Iterable secrets=client.listSecrets(ProjectName.of(project())).iterateAll();

		if ( stream(secrets.spliterator(), false).anyMatch(secret -> secret.getName().equals(id)) ) {

			final AccessSecretVersionRequest request=AccessSecretVersionRequest.newBuilder()
					.setName(SecretVersionName.of(project(), id, "latest").toString())
					.build();

			return Optional.of(client.accessSecretVersion(request).getPayload().getData().toStringUtf8());

		} else {

			return Optional.empty();

		}
	}

	@Override public void close() {
		client.close();
	}

}