Skip to content

Commit

Permalink
feat: berglas: use update and CreateIfMissing strategy for Set
Browse files Browse the repository at this point in the history
  • Loading branch information
@slntopp
slntopp committed Jul 22, 2024
1 parent c15ad5c commit 3ba3e4a
Show file tree
Hide file tree
Showing 2 changed files with 13 additions and 5 deletions.
11 changes: 6 additions & 5 deletions providers-sdk/v1/vault/gcpberglas/berglas.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -139,11 +139,12 @@ func (v *Vault) Set(ctx context.Context, cred *vault.Secret) (*vault.SecretID, e
return nil, err
}

_, err = c.Create(ctx, &berglas.StorageCreateRequest{
Bucket: v.bucket,
Object: cred.Key,
Plaintext: cred.Data,
Key: v.kmsKeyID,
_, err = c.Update(ctx, &berglas.StorageUpdateRequest{
Bucket: v.bucket,
Object: cred.Key,
Plaintext: cred.Data,
Key: v.kmsKeyID,
CreateIfMissing: true,
})
if err != nil {
return nil, err
Expand Down
7 changes: 7 additions & 0 deletions providers-sdk/v1/vault/gcpberglas/berglas_test.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,4 +32,11 @@ func TestGcpBerglas(t *testing.T) {
get, err := v.Get(ctx, &vault.SecretID{Key: cred.Key})
require.NoError(t, err)
assert.Equal(t, cred.Data, get.Data)

cred.Data = []byte("my-even-more-secret-data")
_, err = v.Set(ctx, cred)
require.NoError(t, err)
get, err = v.Get(ctx, &vault.SecretID{Key: cred.Key})
require.NoError(t, err)
assert.Equal(t, cred.Data, get.Data)
}

0 comments on commit 3ba3e4a

Please sign in to comment.