git.delta.rocks / jrsonnet / refs/commits / eab67eb0e28a

difftreelog

refactor disable secret generation

Yaroslav Bolyukin2021-03-09parent: #35b9319.patch.diff
in: trunk

2 files changed

modifiedsrc/cmds/generate_secrets.rsdiffbeforeafterboth
5use log::info;5use log::info;
66
7use crate::db::{7use crate::db::{
8	keys::KeyDb,
9	secret::{list_secrets, SecretDb},8	secret::{list_secrets, SecretDb},
10	Db, DbData,9	Db, DbData,
11};10};
2423
25		let defined_secrets = list_secrets()?;24		let defined_secrets = list_secrets()?;
26		for (secret, data) in defined_secrets.iter() {25		for (secret, data) in defined_secrets.iter() {
27			let keys = KeyDb::open(&db)?;26			// let keys = KeyDb::open(&db)?;
28			secrets.ensure_generated(&keys, &secret, &data)?;27			// secrets.ensure_generated(&keys, &secret, &data)?;
29		}28		}
30		let key_names = defined_secrets29		let key_names = defined_secrets
31			.keys()30			.keys()
modifiedsrc/db/secret.rsdiffbeforeafterboth
--- a/src/db/secret.rs
+++ b/src/db/secret.rs
@@ -1,4 +1,4 @@
-use crate::{command::CommandExt, nix::SECRETS_ATTRIBUTE};
+use crate::{command::CommandExt, host::FleetConfig, nix::SECRETS_ATTRIBUTE};
 use anyhow::{bail, Result};
 use log::info;
 use serde::{Deserialize, Deserializer, Serialize, Serializer};
@@ -10,7 +10,7 @@
 };
 use time::{Duration, PrimitiveDateTime};
 
-use super::{db::DbData, keys::KeyDb};
+use super::db::DbData;
 
 #[derive(Serialize, Deserialize, Debug)]
 pub struct SecretListData {
@@ -109,7 +109,7 @@
 	// Secrets are generated on machine running fleet command
 	pub fn generate_secret(
 		&mut self,
-		keys: &KeyDb,
+		fleet_config: FleetConfig,
 		secret: &str,
 		data: &SecretListData,
 	) -> Result<()> {
@@ -119,7 +119,7 @@
 				rage_keys.push(' ');
 			}
 			rage_keys.push_str("--recipient \"");
-			rage_keys.push_str(&keys.get_host_key(&owner)?);
+			// rage_keys.push_str(&keys.get_host_key(&owner)?);
 			rage_keys.push('"')
 		}
 		let created_at: PrimitiveDateTime = SystemTime::now().into();
@@ -184,13 +184,13 @@
 	}
 	pub fn ensure_generated(
 		&mut self,
-		keys: &KeyDb,
+		// keys: &KeyDb,
 		secret: &str,
 		data: &SecretListData,
 	) -> Result<()> {
 		if self.need_to_generate(secret, data)? {
 			info!("Generating secret {}", secret);
-			self.generate_secret(keys, secret, data)?;
+			// self.generate_secret(keys, secret, data)?;
 		}
 
 		Ok(())