mirror of
https://github.com/zitadel/zitadel.git
synced 2025-01-11 17:43:40 +00:00
fbe0f311f2
* feat: comprehensive sentry instrumentation * test: pass * fix: only fetch zitadel dsn in zitadel-operator * chore: use dns for sentry environment as soon as parsed * fix: trust ca certs * ci: update orbos * docs: add usage data explanation * fix: dont send validation errors * docs: improve ingestion data explanation * style: rename flag --disable-ingestion to --disable-analytics * fix: pass --disable-analytics flag to self deployments * fix: destroy command for sentry * fix: update orbos * fix: only switch environment if analytics is enabled * fix: ensure SENTRY_DSN is always set * test: test empty sentry dsn * ci: invalidate build caches * chore: use zitadel-dev if no version is passed * chore: combine dev releases in sentry * refactor: only check for semrel if sentry is enabled
58 lines
1.4 KiB
Go
58 lines
1.4 KiB
Go
package cmds
|
|
|
|
import (
|
|
"os"
|
|
|
|
"github.com/caos/orbos/pkg/kubernetes/cli"
|
|
|
|
"github.com/caos/zitadel/operator/secrets"
|
|
|
|
"github.com/caos/orbos/pkg/secret"
|
|
"github.com/spf13/cobra"
|
|
)
|
|
|
|
func ReadSecretCommand(getRv GetRootValues) *cobra.Command {
|
|
return &cobra.Command{
|
|
Use: "readsecret [path]",
|
|
Short: "Print a secrets decrypted value to stdout",
|
|
Long: "Print a secrets decrypted value to stdout.\nIf no path is provided, a secret can interactively be chosen from a list of all possible secrets",
|
|
Args: cobra.MaximumNArgs(1),
|
|
Example: `zitadelctl readsecret database.bucket.serviceaccountjson.encrypted > ~/googlecloudstoragesa.json`,
|
|
RunE: func(cmd *cobra.Command, args []string) (err error) {
|
|
|
|
path := ""
|
|
if len(args) > 0 {
|
|
path = args[0]
|
|
}
|
|
|
|
rv := getRv("readsecret", map[string]interface{}{"path": path}, "")
|
|
defer func() {
|
|
err = rv.ErrFunc(err)
|
|
}()
|
|
|
|
monitor := rv.Monitor
|
|
orbConfig := rv.OrbConfig
|
|
gitClient := rv.GitClient
|
|
|
|
k8sClient, err := cli.Client(monitor, orbConfig, gitClient, rv.Kubeconfig, rv.Gitops, true)
|
|
if err != nil && !rv.Gitops {
|
|
return err
|
|
}
|
|
|
|
value, err := secret.Read(
|
|
k8sClient,
|
|
path,
|
|
secrets.GetAllSecretsFunc(monitor, path == "", rv.Gitops, gitClient, k8sClient, orbConfig),
|
|
)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if _, err := os.Stdout.Write([]byte(value)); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
},
|
|
}
|
|
}
|