github.com/zntrio/harp/v2@v2.0.9/pkg/vault/helpers.go

github.com/zntrio/harp/v2@v2.0.9/pkg/vault/helpers.go (about)

     1  // Licensed to Elasticsearch B.V. under one or more contributor
     2  // license agreements. See the NOTICE file distributed with
     3  // this work for additional information regarding copyright
     4  // ownership. Elasticsearch B.V. licenses this file to you under
     5  // the Apache License, Version 2.0 (the "License"); you may
     6  // not use this file except in compliance with the License.
     7  // You may obtain a copy of the License at
     8  //
     9  //     http://www.apache.org/licenses/LICENSE-2.0
    10  //
    11  // Unless required by applicable law or agreed to in writing,
    12  // software distributed under the License is distributed on an
    13  // "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
    14  // KIND, either express or implied.  See the License for the
    15  // specific language governing permissions and limitations
    16  // under the License.
    17  
    18  package vault
    19  
    20  import (
    21  	"context"
    22  	"fmt"
    23  
    24  	"github.com/hashicorp/vault/api"
    25  )
    26  
    27  // -----------------------------------------------------------------------------
    28  
    29  // CheckAuthentication verifies that the connection to vault is setup correctly
    30  // by retrieving information about the configured token.
    31  func CheckAuthentication(ctx context.Context, client *api.Client) ([]string, error) {
    32  	tokenInfo, tokenErr := client.Auth().Token().LookupSelfWithContext(ctx)
    33  	if tokenErr != nil {
    34  		return nil, fmt.Errorf("error connecting to vault: %w", tokenErr)
    35  	}
    36  
    37  	tokenPolicies, polErr := tokenInfo.TokenPolicies()
    38  	if polErr != nil {
    39  		return nil, fmt.Errorf("error looking up token policies: %w", tokenErr)
    40  	}
    41  
    42  	// No error
    43  	return tokenPolicies, nil
    44  }