Add Folder Credentials Provider

pom.xml

@@ -96,6 +96,11 @@
       <artifactId>configuration-as-code</artifactId>
       <optional>true</optional>
     </dependency>
+    <dependency>
+      <groupId>org.jenkins-ci.plugins</groupId>
+      <artifactId>cloudbees-folder</artifactId>
+      <optional>true</optional>
+    </dependency>
 
     <!-- test dependencies -->
     <dependency>

src/main/java/org/jenkinsci/plugins/azurekeyvaultplugin/AzureKeyVaultGlobalConfiguration.java

@@ -22,6 +22,7 @@
 import jenkins.model.Jenkins;
 import org.apache.commons.lang3.StringUtils;
 import org.jenkinsci.Symbol;
+import org.jenkinsci.plugins.azurekeyvaultplugin.provider.global.AzureCredentialsProvider;
 import org.kohsuke.stapler.AncestorInPath;
 import org.kohsuke.stapler.DataBoundSetter;
 import org.kohsuke.stapler.QueryParameter;

src/main/java/org/jenkinsci/plugins/azurekeyvaultplugin/AzureKeyVaultUtil.java

@@ -43,7 +43,7 @@
 import javax.xml.bind.DatatypeConverter;
 import jenkins.model.Jenkins;
 
-class AzureKeyVaultUtil {
+public class AzureKeyVaultUtil {
 
     private static final char[] EMPTY_CHAR_ARRAY = new char[0];
     private static final String PKCS12 = "PKCS12";

src/main/java/org/jenkinsci/plugins/azurekeyvaultplugin/credentials/string/AzureSecretStringCredentials.java

@@ -6,7 +6,7 @@
 import hudson.Extension;
 import hudson.util.Secret;
 import java.util.function.Supplier;
-import org.jenkinsci.plugins.azurekeyvaultplugin.AzureCredentialsProvider;
+import org.jenkinsci.plugins.azurekeyvaultplugin.provider.CredentialsProviderHelper;
 import org.jenkinsci.plugins.plaincredentials.StringCredentials;
 import org.jenkinsci.plugins.plaincredentials.impl.Messages;
 import org.jvnet.localizer.ResourceBundleHolder;
@@ -37,7 +37,7 @@ public String getDisplayName() {
 
         @Override
         public boolean isApplicable(CredentialsProvider provider) {
-            return provider instanceof AzureCredentialsProvider;
+            return CredentialsProviderHelper.isAzureCredentialsProvider(provider);
         }
     }
 }

src/main/java/org/jenkinsci/plugins/azurekeyvaultplugin/credentials/usernamepassword/AzureUsernamePasswordCredentials.java

@@ -9,7 +9,7 @@
 import hudson.Util;
 import hudson.util.Secret;
 import java.util.function.Supplier;
-import org.jenkinsci.plugins.azurekeyvaultplugin.AzureCredentialsProvider;
+import org.jenkinsci.plugins.azurekeyvaultplugin.provider.CredentialsProviderHelper;
 import org.jvnet.localizer.ResourceBundleHolder;
 
 
@@ -62,7 +62,7 @@ public String getIconClassName() {
 
         @Override
         public boolean isApplicable(CredentialsProvider provider) {
-            return provider instanceof AzureCredentialsProvider;
+            return CredentialsProviderHelper.isAzureCredentialsProvider(provider);
         }
     }
 }

src/main/java/org/jenkinsci/plugins/azurekeyvaultplugin/provider/CredentialsProviderHelper.java

@@ -0,0 +1,15 @@
+package org.jenkinsci.plugins.azurekeyvaultplugin.provider;
+
+import com.cloudbees.plugins.credentials.CredentialsProvider;
+import org.jenkinsci.plugins.azurekeyvaultplugin.provider.folder.FolderAzureCredentialsProvider;
+import org.jenkinsci.plugins.azurekeyvaultplugin.provider.global.AzureCredentialsProvider;
+
+public class CredentialsProviderHelper {
+
+    private CredentialsProviderHelper() {
+    }
+
+    public static boolean isAzureCredentialsProvider(CredentialsProvider provider) {
+        return provider instanceof AzureCredentialsProvider || provider instanceof FolderAzureCredentialsProvider;
+    }
+}

src/main/java/org/jenkinsci/plugins/azurekeyvaultplugin/provider/KeyVaultSecretRetriever.java

@@ -0,0 +1,44 @@
+package org.jenkinsci.plugins.azurekeyvaultplugin.provider;
+
+import com.azure.security.keyvault.secrets.SecretClient;
+import hudson.util.Secret;
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.util.function.Supplier;
+
+public class KeyVaultSecretRetriever implements Supplier<Secret> {
+
+    private final transient SecretClient client;
+    private final String secretId;
+
+    public KeyVaultSecretRetriever(SecretClient secretClient, String secretId) {
+        this.client = secretClient;
+        this.secretId = secretId;
+    }
+
+    public String retrieveSecret() {
+        int NAME_POSITION = 2;
+        int VERSION_POSITION = 3;
+        URL secretIdentifierUrl;
+        try {
+            secretIdentifierUrl = new URL(secretId);
+        } catch (MalformedURLException e) {
+            throw new RuntimeException(e);
+        }
+
+        // old SDK supports secret identifier which is a full URI to the secret
+        // the new SDK doesn't seem to support it to we parse it to get the values we need
+        // https://mine.vault.azure.net/secrets/<name>/<version>
+        String[] split = secretIdentifierUrl.getPath().split("/");
+
+        if (split.length == NAME_POSITION + 1) {
+            return client.getSecret(split[NAME_POSITION]).getValue();
+        }
+        return client.getSecret(split[NAME_POSITION], split[VERSION_POSITION]).getValue();
+    }
+
+    @Override
+    public Secret get() {
+        return Secret.fromString(retrieveSecret());
+    }
+}