Merge pull request #41 from Clever/SECNG-177-create-secret-store-for-…

…parameterstore Create secret store based on parameterstore
Clever · Dec 8, 2020 · 1e15dd0 · 1e15dd0
2 parents f8a1ba0 + b2babec
commit 1e15dd0
Show file tree

Hide file tree

Showing 9 changed files with 528 additions and 32 deletions.
diff --git a/Gopkg.lock b/Gopkg.lock
diff --git a/Gopkg.toml b/Gopkg.toml
@@ -11,7 +11,7 @@
 
 [[constraint]]
   name = "github.com/aws/aws-sdk-go"
-  version = "1.13.0"
+  version = "1.34.0"
 
 [[constraint]]
   name = "github.com/stretchr/testify"
diff --git a/main.go b/main.go
@@ -85,6 +85,8 @@ func main() {
 func getEnvironment(environment string) store.Environment {
 	if environment == "development" {
 		return store.DevelopmentEnvironment
+	} else if environment == "ci-test" {
+		return store.CITestEnvironment
 	} else if environment != "production" {
 		log.Fatal("Environment flag must be 'development' or 'production'")
 	}

diff --git a/store/interface.go b/store/interface.go
@@ -103,7 +103,7 @@ type SecretStore interface {
 	// Creates a Secret in the secret store. Version is guaranteed to be zero if no error is returned.
 	Create(id SecretIdentifier, value string) error
 
-	// Read a Secret from the store. Returns the lastest version of the secret.
+	// Read a Secret from the store. Returns the latest version of the secret.
 	Read(id SecretIdentifier) (Secret, error)
 
 	// ReadVersion reads a specific version of a secret from the store.
@@ -129,9 +129,13 @@ type SecretStore interface {
 // IdentifierNotFoundError occurs when a secret identifier cannot be found (during Read, History, Update)
 type IdentifierNotFoundError struct {
 	Identifier SecretIdentifier
+	Region     string
 }
 
 func (e *IdentifierNotFoundError) Error() string {
+	if e.Region != "" {
+		return fmt.Sprintf("Identifier not found in region(%s): %s", e.Region, e.Identifier)
+	}
 	return fmt.Sprintf("Identifier not found: %s", e.Identifier)
 }
 

diff --git a/store/memory_store.go b/store/memory_store.go
@@ -42,7 +42,7 @@ func (s *MemoryStore) Read(id SecretIdentifier) (Secret, error) {
 	if history, ok := s.history[id]; ok {
 		return history.Secrets[len(history.Secrets)-1], nil
 	}
-	return Secret{}, &IdentifierNotFoundError{Identifier: id}
+	return Secret{}, &IdentifierNotFoundError{Identifier: id, Region: ""}
 }
 
 // ReadVersion reads a version of a secret
@@ -53,7 +53,7 @@ func (s *MemoryStore) ReadVersion(id SecretIdentifier, version int) (Secret, err
 		}
 		return Secret{}, &VersionNotFoundError{Version: version, Identifier: id}
 	}
-	return Secret{}, &IdentifierNotFoundError{Identifier: id}
+	return Secret{}, &IdentifierNotFoundError{Identifier: id, Region: ""}
 }
 
 // Update updates a secret in the secret store
@@ -65,7 +65,7 @@ func (s *MemoryStore) Update(id SecretIdentifier, value string) (Secret, error)
 
 	// Return error if secret does not exist
 	if history, ok = s.history[id]; !ok {
-		return Secret{}, &IdentifierNotFoundError{Identifier: id}
+		return Secret{}, &IdentifierNotFoundError{Identifier: id, Region: ""}
 	}
 
 	// Append newest version
@@ -117,7 +117,7 @@ func (s *MemoryStore) History(id SecretIdentifier) ([]SecretMeta, error) {
 		}
 		return secrets, nil
 	}
-	return []SecretMeta{}, &IdentifierNotFoundError{Identifier: id}
+	return []SecretMeta{}, &IdentifierNotFoundError{Identifier: id, Region: ""}
 }
 
 // Delete deletes all versions of a secret
@@ -126,7 +126,7 @@ func (s *MemoryStore) Delete(id SecretIdentifier) error {
 		delete(s.history, id)
 		return nil
 	}
-	return &IdentifierNotFoundError{Identifier: id}
+	return &IdentifierNotFoundError{Identifier: id, Region: ""}
 }
 
 // NewMemoryStore creates an in-memory secret store