Struct mz_secrets::SecretsReader

source · [−]

pub struct SecretsReader {
    pub(crate) config: Arc<SecretsReaderConfig>,
}

Expand description

Securely reads secrets that are managed by a SecretsController.

Does not provide access to create, update, or delete the secrets within.

Fields

config: Arc<SecretsReaderConfig>

Implementations

impl SecretsReader

pub fn new(config: SecretsReaderConfig) -> Self

pub async fn read(&self, id: GlobalId) -> Result<Vec<u8>, Error>

Returns the contents of a secret identified by GlobalId

This read will return a complete version of the secret. It will not return, e.g., one block from v1 and another from v2.

On Linux / OSX filesystems, File::open will hold a handle open so that even if the file is deleted, we still continue to read from it. This means a SecretOp::Delete followed by a SecretOp::Ensure can never “swap out” data mid-read_to_end.
We do not allow editing secrets which would expose us to this issue.

(N.B. Were we ever to run with Windows / NTFS, this would also work properly and mid-read edits would be disallowed)

pub async fn read_string(&self, id: GlobalId) -> Result<String>

pub fn canonical_path(&self, id: GlobalId) -> Result<PathBuf, Error>

Returns the path of the secret consisting of a configured base path and the GlobalId

Trait Implementations

impl Clone for SecretsReader

fn clone(&self) -> SecretsReader

Returns a copy of the value. Read more

1.0.0 · source

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for SecretsReader

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations

impl RefUnwindSafe for SecretsReader

impl Send for SecretsReader

impl Sync for SecretsReader

impl Unpin for SecretsReader

impl UnwindSafe for SecretsReader

Blanket Implementations

impl<T> Any for T where
T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T where
T: ?Sized,

const: unstable · source

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T where
T: ?Sized,

const: unstable · source

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

const: unstable · source

fn from(t: T) -> T

Returns the argument unchanged.

impl<T> FutureExt for T

fn with_context(self, otel_cx: Context) -> WithContext<Self>

Attaches the provided Context to this type, returning a WithContext wrapper. Read more

fn with_current_context(self) -> WithContext<Self>

Attaches the current Context to this type, returning a WithContext wrapper. Read more

impl<T> Instrument for T

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

impl<T, U> Into<U> for T where
U: From<T>,

const: unstable · source

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> IntoRequest<T> for T

fn into_request(self) -> Request<T>

Wrap the input message T in a tonic::Request

impl<P, R> ProtoType<R> for P where
R: RustType<P>,

fn into_rust(self) -> Result<R, TryFromProtoError>

See RustType::from_proto.

fn from_rust(rust: &R) -> P

See RustType::into_proto.

impl<T> Same<T> for T

type Output = T

Should always be Self

impl<T> ToOwned for T where
T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T where
U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

const: unstable · source

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T where
U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

const: unstable · source

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T where
V: MultiLane<T>,

fn vzip(self) -> V

impl<T> WithSubscriber for T

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self> where
S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more