2021年10月20日 00:17:15go评论141阅读模式

英文:

how can find list of secrets and certificate list from Azure vault via golang?

问题

我正在尝试使用Golang集成Azure Vault。我使用以下代码获取密钥列表：

func (rcv Resources) KeyList(cred Credentials, subscriptionID, resourceGp, vaultName string) ([]string, error) {
    var (
        res []string
        err error
    )
    logger.Info("create client for connecting to the azure as vault client for getting key list.")
    cli := keyvault.NewKeysClient(subscriptionID)

    if cli.Authorizer, err = azureAD.Authorizer(cred.TenantID, cred.ClientID, cred.ClientSecret); err != nil {
        logger.Error("can not get authorizer for resources, err : ", err.Error())
        return nil, err
    }
    keyList, err := cli.List(context.Background(), resourceGp, "key-vault-zap-auth-scan2")
    if err != nil {
        logger.Error("can not get resources list , error : ", err.Error())
        return nil, err
    }
    for _, key := range keyList.Values() {
        res = append(res, *key.Name)
    }
    return res, nil
}

如你所知，我们在Azure Key Vault中有不同的对象可以存储，例如：密钥、秘密和证书。

我无法通过SDK获取秘密列表，因为它没有秘密客户端。

我该如何解决这个问题？

英文:

I'm trying to integrate azure vault using Golang. I used below code for getting key lists:

func (rcv Resources) KeyList(cred Credentials, subscriptionID, resourceGp, vaultName string) ([]string, error) {
	var (
		res []string
		err error
	)
	logger.Info(&quot;create client for connecting to the azure as vault client for getting key list.&quot;)
	cli := keyvault.NewKeysClient(subscriptionID)

	if cli.Authorizer, err = azureAD.Authorizer(cred.TenantID, cred.ClientID, cred.ClientSecret); err != nil {
		logger.Error(&quot;can not get authorizer for resources, err : &quot;, err.Error())
		return nil, err
	}
	keyList, err := cli.List(context.Background(), resourceGp, &quot;key-vault-zap-auth-scan2&quot;)
	if err != nil {
		logger.Error(&quot;can not get resources list , error : &quot;, err.Error())
		return nil, err
	}
	for _, key := range keyList.Values() {

		res = append(res, *key.Name)
	}
	return res, nil
}

As you know, we have different objects to store in azure key-vault such as: keys, secrets and certificates

I'm not able to get secrets list with SDK, because it does not have secret client.

How can I solve this issue ?

答案1

得分: 0

对于密钥，有一个名为azure-keyvault-secrets的单独包。

要列出密钥，您需要调用的方法是ListSecrets。以下是一个示例，取自这里：

cred, err := azidentity.NewDefaultAzureCredential(nil)
client, err := azsecrets.NewClient("https://my-key-vault.vault.azure.net/", cred, nil)

pager := client.ListSecrets(nil)
for pager.NextPage(context.Background()) {
    resp := pager.PageResponse()
    for _, secret := range resp.Secrets {
        fmt.Printf("Secret ID: %s", *secret.ID)
    }
}

英文:

For secrets, there's a separate package called azure-keyvault-secrets.

To list secrets, the method you would want to call is ListSecrets. Here's an example for the same taken from here:

cred, err := azidentity.NewDefaultAzureCredential(nil)
client, err := azsecrets.NewClient(&quot;https://my-key-vault.vault.azure.net/&quot;, cred, nil)

pager := client.ListSecrets(nil)
for pager.NextPage(context.Background()) {
    resp := pager.PageResponse()
    for _, secret := range resp.Secrets {
        fmt.Printf(&quot;Secret ID: %s&quot;, *secret.ID)
    }
}

答案2

得分: 0

Gaurav提供的答案完全有效，但仅适用于使用版本v0.5.0的软件包。
https://pkg.go.dev/github.com/Azure/azure-sdk-for-go/sdk/keyvault/azsecrets?tab=versions

从版本v0.6.0开始，方法pager.NextPage()返回2个值(ListSecretsPageResponse, error)，因此无法在for循环中使用--您会遇到类似于The non-bool value 'pager.NextPage(context.TODO())' (type (ListSecretsPageResponse, error)) used as a condition的错误。

相反，您应该使用方法pager.More()来循环遍历秘密的页面。

可以按照以下方式进行操作：

	pager := client.ListSecrets(nil)
	for pager.More() {
		page, err := pager.NextPage(context.TODO())
		if err != nil {
			panic(err)
		}
		for _, v := range page.Secrets {
			fmt.Printf("Secret Name: %s\n", *v.ID)
		}
	}

希望对您有所帮助。祝好！

英文:

Answer provided by Gaurav works perfectly fine.. but only if you use package up to version v0.5.0.
https://pkg.go.dev/github.com/Azure/azure-sdk-for-go/sdk/keyvault/azsecrets?tab=versions

Starting from version v0.6.0, method pager.NextPage() returns 2 values (ListSecretsPageResponse, error) hence can not be used in for loop -- you'd hit an error that looks something like The non-bool value 'pager.NextPage(context.TODO())' (type (ListSecretsPageResponse, error)) used as a condition.

Instead, you should use method pager.More() to loop through the pages of secrets.

Something along these lines:

	pager := client.ListSecrets(nil)
	for pager.More() {
		page, err := pager.NextPage(context.TODO())
		if err != nil {
			panic(err)
		}
		for _, v := range page.Secrets {
			fmt.Printf(&quot;Secret Name: %s\n&quot;, *v.ID)
		}
	}

hope this helps. cheers

通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库，让每个人都能够通过互相帮助和分享经验来进步。

how can find list of secrets and certificate list from Azure vault via golang?

问题

答案1

答案2

在哪里创建Ticker有关系吗？

Golang解析CSV的封闭规则

使用Google Golang Sheets API V4 / Drive API V3获取电子表格的ID？

S3: 当从 Go Lambda 调用 HeadObject 时，返回 403 响应。

What's the correct way to type hint an empty list as a literal in python?

如何在Highcharts Gantt中更改本地化的星期名称

如何在同一个流中使用多个过滤器和映射函数？

如何使用Map/Set来将代码优化到O(n)？

.NET MAUI Android在GitHub Actions上构建失败，错误代码为1。

如何在Playwright视觉比较中屏蔽多个定位器？

在C++中，可以使用可变模板参数来检索类型的内部类型。

selenium.common.exceptions.StaleElementReferenceException: Message: stale element reference: stale element not found

Creating and opening a URL to log in to Website via Basic Auth with Robot Framework/Selenium (Python)

AG Grid 在上下文菜单中以大文本形式打开

发表评论