英文:
How To Pull Secrets as Config File in Golang
问题
我是你的中文翻译助手,以下是翻译好的内容:
所以我对Go语言还不太熟悉,我想知道如何在不在脚本中暴露密码和URL的情况下动态导入它们。在Python中,我可以通过JSON有效载荷实现这一点,基本上是导入JSON,加载有效载荷,并在需要传递需要保密的规范时指定。
这是我的Go脚本:
package mainimport ("io/ioutil""net/http""fmt""gopkg.in/yaml.v2")func main() {type Config struct {URL string `yaml:"url"`Username string `yaml:"username"`Token string `yaml:"token"`}func readConfig() (*Config, error) {config := &Config{}cfgFile, err := ioutil.ReadFile("config.yaml")if err != nil {return nil, err}err = yaml.Unmarshal(cfgFile, config)return config, err}req, err := http.NewRequest("GET", config.URL, nil)if err != nil {// 处理错误}req.SetBasicAuth(config.Username, config.Token)resp, err := http.DefaultClient.Do(req)if err != nil {// 处理错误}defer resp.Body.Close()body, _ := ioutil.ReadAll(resp.Body)fmt.Println(string(body))}
可以想象,我在加载密码时并没有太多运气,当我将以下内容更改为直接的令牌并在脚本中暴露我的密码时,它可以正常工作并在Jira中生成一个JSON有效载荷。
config.URLconfig.Usernameconfig.Token
所以,如果我有一个YAML格式的配置文件,如下所示:
config:URL: "<some_URL>"Username: "<some_username>"Token: "<some_token>"
如何将YAML文件加载到我的脚本中?
如何加载一个等效的JSON?
{"config": {"URL": "<some_URL>","Username": "<some_username>","Token": "<some_token>"}}
英文:
So I am pretty new to Go and I am curious about how to import passwords and URLs dynamically without exposing them within my scripts. In python, I was able to implement this with a JSON payload and would basically import JSON, load the payload, and specify whenever I needed to pass a spec that needed secrecy.
Here is My Go Script:
package mainimport ("io/ioutil""net/http""fmt""gopkg.in/yaml.v2")// curl -u <username>:<password> <some_url>func main() {type Config struct {URL string `yaml:"url"`Username string `yaml:"username"`Token string `yaml:"token"`}func readConfig() (*Config, error) {config := &Config{}cfgFile, err := ioutil.ReadFile("config.yaml")if err != nil {return nil, err}err = yaml.Unmarshal(cfgFile, config)return config, err}req, err := http.NewRequest("GET", config.URL, nil)if err != nil {// handle err}req.SetBasicAuth(config.Username, config.Token)resp, err := http.DefaultClient.Do(req)if err != nil {// handle err}defer resp.Body.Close()body, _ := ioutil.ReadAll(resp.Body)fmt.Println(string(body))}
As one can imagine I am not having much luck in loading my passwords, when I change the following with direct tokens exposing my passwords in the scripts it functions and produces a JSON payload in Jira.
config.URLconfig.Usernameconfig.Token
So if I have a config file in YAML as such:
config:URL: "<some_URL>"Username: "<some_username>"Token: "<some_token>"
How can I load the YAML file into my script?
How can I load a JSON equivalent?
{"config": {"URL": "<some_URL>""Username": "<some_username>","Token": "<some_token>"}}
答案1
得分: 1
好的,下面是翻译好的内容:
好的,这里有几个问题。
- 除非使用变量声明语法,否则不能在另一个函数内部声明函数。
func main() {// 这样写是可以的var myFunc = func() {// ...}// 这样写是不可以的func myFunc() {// ...}}
Config结构体告诉 YAML 解析器应该期望什么。你的结构体应该有与 YAML 文件相匹配的大小写和结构的 yaml 标签。
// 它期望的是这样的url: "<some_URL>"username: "<some_username>"token: "<some_token>"// 你的 yaml 文件看起来是这样的config:Url: "<some_URL>"Username: "<some_username>"Token: "<some_token>"
以下代码对我来说是可行的:
package mainimport ("fmt""io/ioutil""net/http""gopkg.in/yaml.v2")type YAMLFile struct {Config Config `yaml:"config"`}type Config struct {URL string `yaml:"url"`Username string `yaml:"username"`Token string `yaml:"token"`}func main() {config, err := readConfig()if err != nil {panic(err)}fmt.Printf("%+v", config)req, err := http.NewRequest("GET", config.URL, nil)if err != nil {panic(err)}req.SetBasicAuth(config.Username, config.Token)resp, err := http.DefaultClient.Do(req)if err != nil {panic(err)}defer resp.Body.Close()body, err := ioutil.ReadAll(resp.Body)if err != nil {panic(err)}fmt.Println(string(body))}func readConfig() (*Config, error) {config := &YAMLFile{}cfgFile, err := ioutil.ReadFile("./config.yaml")if err != nil {return nil, err}err = yaml.Unmarshal(cfgFile, config)return &config.Config, err}
希望对你有帮助!
英文:
Okay so there are a couple problems here.
- You can't declare functions inside of another function unless you use variable declaration syntax
func main() {// Thisvar myFunc = func() {// ...}// Not thisfunc myFunc() {// ...}}
- The
Configstruct is telling the YAML unmarshaler to expect. Your struct should have yaml tags that match the casing and structure of the yaml file.
// It is expecting thisurl: "<some_URL>"username: "<some_username>"token: "<some_token>"// Your yaml looks like thisconfig:Url: "<some_URL>"Username: "<some_username>"Token: "<some_token>"
The following works for me:
package mainimport ("fmt""io/ioutil""net/http""gopkg.in/yaml.v2")type YAMLFile struct {Config Config `yaml:"config"`}type Config struct {URL string `yaml:"url"`Username string `yaml:"username"`Token string `yaml:"token"`}func main() {config, err := readConfig()if err != nil {panic(err)}fmt.Printf("%+v", config)req, err := http.NewRequest("GET", config.URL, nil)if err != nil {panic(err)}req.SetBasicAuth(config.Username, config.Token)resp, err := http.DefaultClient.Do(req)if err != nil {panic(err)}defer resp.Body.Close()body, err := ioutil.ReadAll(resp.Body)if err != nil {panic(err)}fmt.Println(string(body))}func readConfig() (*Config, error) {config := &YAMLFile{}cfgFile, err := ioutil.ReadFile("./config.yaml")if err != nil {return nil, err}err = yaml.Unmarshal(cfgFile, config)return &config.Config, err}
答案2
得分: 1
巴雷特,
这是我一段时间前制作的一个配置库,用于解决这些问题:https://github.com/fulldump/goconfig。
使用方法很简单:
1)定义一个包含所有所需配置的结构体:
type Config struct {URL stringUsername stringToken string}
2)用该类型实例化一个变量,并用默认值填充它:
c := &Config{URL: "http://default/url"Username: "default username"}
3)使用以下代码自动从环境变量、命令行参数和/或JSON文件中填充配置变量:
goconfig.Read(c)
例如,在你的情况下,你可以通过以下方式传递一个JSON文件:./my-binary -token "my_secret_token" -config my-config-file.json,从文件中读取所有配置键,但在启动前用参数覆盖令牌。
英文:
Barrett,
Here is a config library I made some time ago to solve that problems: https://github.com/fulldump/goconfig.
The use is simple:
- Define a struct with all the config you need:
type Config struct {URL stringUsername stringToken string}
- Instantiate a variable with that type and fill it with the default values:
c := &Config{URL: "http://default/url"Username: "default username"}
- Automatic fill your config variable with data from environment, command line arguments and/or json file with the folloging line:
goconfig.Read(c)
For example, in your case, you can pass a JSON file as follows ./my-binary -token "my_secret_token" -config my-config-file.json to read all config keys from a file but overwrite the token just before launching with an argument.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论