mirrors
/
pulumi
mirror of https://github.com/pulumi/pulumi.git
0
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
pulumi/cmd
History
Luke Hoban 6ed4bac5af
Support additional cloud secrets providers (#2994) 
Adds support for additional cloud secrets providers (AWS KMS, Azure KeyVault, Google Cloud KMS, and HashiCorp Vault) as the encryption backend for Pulumi secrets. This augments the previous choice between using the app.pulumi.com-managed secrets encryption or a fully-client-side local passphrase encryption.

This is implemented using the Go Cloud Development Kit support for pluggable secrets providers.

Like our cloud storage backend support which also uses Go Cloud Development Kit, this PR also bleeds through to users the URI scheme's that the Go CDK defines for specifying each of secrets providers - like `awskms://alias/LukeTesting?region=us-west-2` or `azurekeyvault://mykeyvaultname.vault.azure.net/keys/mykeyname`.

Also like our cloud storage backend support, this PR doesn't solve for how to configure the cloud provider client used to resolve the URIs above - the standard ambient credentials are used in both cases. Eventually, we will likely need to provide ways for both of these features to be configured independently of each other and of the providers used for resource provisioning.
 		2019-08-02 16:12:16 -07:00
..
cancel.go Don't print `error` prefix when a confirmation prompt is declined 2019-03-26 15:17:18 -07:00
config.go Do not prompt for passphrase multiple times 2019-05-14 23:35:27 -07:00
config_test.go Tidy up some data structures (#2135) 2018-11-01 08:28:11 -07:00
crypto.go Support additional cloud secrets providers (#2994) 2019-08-02 16:12:16 -07:00
crypto_cloud.go Support additional cloud secrets providers (#2994) 2019-08-02 16:12:16 -07:00
crypto_http.go Use "passphrase" and "service" instead of "local" and "cloud" 2019-05-10 17:07:52 -07:00
crypto_local.go PULUMI_CONFIG_PASSPHRASE now supports an enpty passphrase (#2904) 2019-07-25 14:23:43 -07:00
destroy.go Defer all diffs to resource providers. (#2849) 2019-07-01 12:34:19 -07:00
errors.go Use result.Result in more places. (#2568) 2019-03-19 16:21:50 -07:00
gen_completion.go Reworked `gen-bash-completion` into a more generic completion command (#1967) 2018-09-24 06:25:16 -07:00
gen_markdown.go Update gen-markdown command for new site (#2869) 2019-07-04 09:36:37 -07:00
history.go Add secrets managers for passphrase and service based encryption 2019-05-10 17:07:52 -07:00
login.go Backend setting in project config 2019-06-13 20:02:03 +03:00
logout.go Fix issue when logging out of local backend (#2951) 2019-07-25 07:58:19 -07:00
logs.go Do not prompt for passphrase multiple times 2019-05-14 23:35:27 -07:00
logs_test.go Add license headers 2018-05-22 15:02:47 -07:00
new.go Fix 'pulumi new' to support creating stacks in an org (#2950) 2019-07-22 10:12:26 -07:00
plugin.go Remove uses of plugins in the snapshot (#2662) 2019-04-23 09:53:44 -07:00
plugin_install.go Use server information from NodeJS host for fetching plugins 2019-06-03 09:31:18 -07:00
plugin_ls.go Add `--json` to `pulumi plugin ls` 2019-01-22 15:42:29 -08:00
plugin_rm.go Refactor display logic out of pkg/backend/filestate 2018-09-05 07:33:18 -07:00
policy.go Address comments 2019-07-16 00:58:33 -07:00
policy_apply.go Add `pulumi policy apply` command 2019-07-16 00:58:33 -07:00
policy_publish.go Address comments 2019-07-16 00:58:33 -07:00
preview.go Defer all diffs to resource providers. (#2849) 2019-07-01 12:34:19 -07:00
pulumi.go Remove references to pulumi/glog. (#3009) 2019-07-31 13:23:33 -05:00
query.go Fix lint issues 2019-05-15 00:02:35 -07:00
refresh.go Defer all diffs to resource providers. (#2849) 2019-07-01 12:34:19 -07:00
stack.go Don't show secret outputs by default on the CLI 2019-05-10 17:07:52 -07:00
stack_export.go Refactor display logic out of pkg/backend/filestate 2018-09-05 07:33:18 -07:00
stack_graph.go Refactor display logic out of pkg/backend/filestate 2018-09-05 07:33:18 -07:00
stack_import.go Refactor the way secrets managers are provided (#3001) 2019-08-01 10:33:52 -07:00
stack_init.go Fix spelling issues 2019-05-15 08:32:49 -07:00
stack_ls.go Add `--json` to `pulumi plugin ls` 2019-01-22 15:42:29 -08:00
stack_output.go Fix crash in `pulumi stack output` when stack is empty 2019-06-11 12:58:29 -07:00
stack_output_test.go Add license headers 2018-05-22 15:02:47 -07:00
stack_rename.go Add `pulumi stack rename` 2019-03-19 11:04:33 -07:00
stack_rm.go Don't print `error` prefix when a confirmation prompt is declined 2019-03-26 15:17:18 -07:00
stack_select.go Remove `pulumi archive` and archive uploading code 2018-10-26 18:03:58 -07:00
stack_tag.go Add `--json` to `pulumi config get` and `pulumi config` 2019-01-22 10:39:37 -08:00
state.go Add --yes params to a couple commands (#2976) 2019-07-24 16:56:51 -07:00
state_delete.go Add --yes params to a couple commands (#2976) 2019-07-24 16:56:51 -07:00
state_unprotect.go Add --yes params to a couple commands (#2976) 2019-07-24 16:56:51 -07:00
up.go Defer all diffs to resource providers. (#2849) 2019-07-01 12:34:19 -07:00
util.go Support additional cloud secrets providers (#2994) 2019-08-02 16:12:16 -07:00
util_test.go Add detection of Azure Pipelines (#2705) 2019-05-07 11:49:13 -07:00
version.go Add license headers 2018-05-22 15:02:47 -07:00
whoami.go cli/whoami: Addition of the currently connected backend to whoami 2019-05-22 14:45:04 +02:00