Class: KubernetesDeploy::EjsonSecretProvisioner
- Inherits:
-
Object
- Object
- KubernetesDeploy::EjsonSecretProvisioner
- Defined in:
- lib/kubernetes-deploy/ejson_secret_provisioner.rb
Constant Summary collapse
- MANAGEMENT_ANNOTATION =
"kubernetes-deploy.shopify.io/ejson-secret"
- MANAGED_SECRET_EJSON_KEY =
"kubernetes_secrets"
- EJSON_SECRETS_FILE =
"secrets.ejson"
- EJSON_KEYS_SECRET =
"ejson-keys"
Instance Method Summary collapse
-
#initialize(namespace:, context:, template_dir:, logger:, prune: true) ⇒ EjsonSecretProvisioner
constructor
A new instance of EjsonSecretProvisioner.
- #run ⇒ Object
- #secret_changes_required? ⇒ Boolean
Constructor Details
#initialize(namespace:, context:, template_dir:, logger:, prune: true) ⇒ EjsonSecretProvisioner
Returns a new instance of EjsonSecretProvisioner.
20 21 22 23 24 25 26 27 |
# File 'lib/kubernetes-deploy/ejson_secret_provisioner.rb', line 20 def initialize(namespace:, context:, template_dir:, logger:, prune: true) @namespace = namespace @context = context @ejson_file = "#{template_dir}/#{EJSON_SECRETS_FILE}" @logger = logger @prune = prune @kubectl = Kubectl.new(namespace: @namespace, context: @context, logger: @logger, log_failure_by_default: false) end |
Instance Method Details
#run ⇒ Object
33 34 35 36 |
# File 'lib/kubernetes-deploy/ejson_secret_provisioner.rb', line 33 def run create_secrets prune_managed_secrets if @prune end |
#secret_changes_required? ⇒ Boolean
29 30 31 |
# File 'lib/kubernetes-deploy/ejson_secret_provisioner.rb', line 29 def secret_changes_required? File.exist?(@ejson_file) || managed_secrets_exist? end |