Add -mount flag to kv list command
#19378
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -2,6 +2,7 @@ package command | |
|
|
||
| import ( | ||
| "fmt" | ||
| "path" | ||
| "strings" | ||
|
|
||
| "github.com/mitchellh/cli" | ||
|
|
@@ -15,6 +16,7 @@ var ( | |
|
|
||
| type KVListCommand struct { | ||
| *BaseCommand | ||
| flagMount string | ||
| } | ||
|
|
||
| func (c *KVListCommand) Synopsis() string { | ||
|
|
@@ -40,7 +42,23 @@ Usage: vault kv list [options] PATH | |
| } | ||
|
|
||
| func (c *KVListCommand) Flags() *FlagSets { | ||
| set := c.flagSet(FlagSetHTTP | FlagSetOutputFormat) | ||
|
|
||
| // Common Options | ||
| f := set.NewFlagSet("Common Options") | ||
|
|
||
| f.StringVar(&StringVar{ | ||
| Name: "mount", | ||
| Target: &c.flagMount, | ||
| Default: "", // no default, because the handling of the next arg is determined by whether this flag has a value | ||
| Usage: `Specifies the path where the KV backend is mounted. If specified, | ||
| the next argument will be interpreted as the secret path. If this flag is | ||
| not specified, the next argument will be interpreted as the combined mount | ||
| path and secret path, with /data/ automatically appended between KV | ||
| v2 secrets.`, | ||
| }) | ||
|
|
||
| return set | ||
| } | ||
|
|
||
| func (c *KVListCommand) AutocompleteArgs() complete.Predictor { | ||
|
|
@@ -75,25 +93,56 @@ func (c *KVListCommand) Run(args []string) int { | |
| return 2 | ||
| } | ||
|
|
||
| // If true, we're working with "-mount=secret foo" syntax. | ||
|
There was a problem hiding this comment. logic is the same as in kv put |
||
| // If false, we're using "secret/foo" syntax. | ||
| mountFlagSyntax := c.flagMount != "" | ||
|
|
||
| var ( | ||
| mountPath string | ||
| partialPath string | ||
| v2 bool | ||
| ) | ||
|
|
||
| // Parse the paths and grab the KV version | ||
| if mountFlagSyntax { | ||
| // In this case, this arg is the secret path (e.g. "foo"). | ||
| partialPath = sanitizePath(args[0]) | ||
| mountPath, v2, err = isKVv2(sanitizePath(c.flagMount), client) | ||
| if err != nil { | ||
| c.UI.Error(err.Error()) | ||
| return 2 | ||
| } | ||
|
|
||
| if v2 { | ||
| partialPath = path.Join(mountPath, partialPath) | ||
| } | ||
| } else { | ||
| // In this case, this arg is a path-like combination of mountPath/secretPath. | ||
| // (e.g. "secret/foo") | ||
| partialPath = sanitizePath(args[0]) | ||
| mountPath, v2, err = isKVv2(partialPath, client) | ||
| if err != nil { | ||
| c.UI.Error(err.Error()) | ||
| return 2 | ||
| } | ||
| } | ||
|
|
||
| // Add /data to v2 paths only | ||
| var fullPath string | ||
| if v2 { | ||
| fullPath = addPrefixToKVPath(partialPath, mountPath, "data") | ||
| } else { | ||
| // v1 | ||
| if mountFlagSyntax { | ||
| fullPath = path.Join(mountPath, partialPath) | ||
| } else { | ||
|
Comment on lines
+138
to
+141
There was a problem hiding this comment. It's a bit hard to follow these if blocks, perhaps they can be rearranged a bit for clarity? In particular we are doing There was a problem hiding this comment. just copied the logic from kv put each command in |
||
| fullPath = partialPath | ||
| } | ||
| } | ||
|
|
||
| secret, err := client.Logical().List(fullPath) | ||
| if err != nil { | ||
| c.UI.Error(fmt.Sprintf("Error listing %s: %s", fullPath, err)) | ||
| return 2 | ||
| } | ||
|
|
||
|
|
@@ -111,12 +160,12 @@ func (c *KVListCommand) Run(args []string) int { | |
| } | ||
|
|
||
| if secret == nil || secret.Data == nil { | ||
| c.UI.Error(fmt.Sprintf("No value found at %s", fullPath)) | ||
| return 2 | ||
| } | ||
|
|
||
| if !ok { | ||
| c.UI.Error(fmt.Sprintf("No entries found at %s", fullPath)) | ||
| return 2 | ||
| } | ||
|
|
||
|
|
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this is copied from
kv getvault/command/kv_get.go
Lines 72 to 76 in e4e9612
so going to leave for now
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Perhaps adjusting both descriptions for clarity would help.