open-vault/builtin/logical/transit/path_random.go

// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: MPL-2.0

package transit

import (
	"context"

	"github.com/hashicorp/vault/helper/random"
	"github.com/hashicorp/vault/sdk/framework"
	"github.com/hashicorp/vault/sdk/logical"
)

func (b *backend) pathRandom() *framework.Path {
	return &framework.Path{
		Pattern: "random(/" + framework.GenericNameRegex("source") + ")?" + framework.OptionalParamRegex("urlbytes"),

		DisplayAttrs: &framework.DisplayAttributes{
			OperationPrefix: operationPrefixTransit,
			OperationVerb:   "generate",
			OperationSuffix: "random|random-with-source|random-with-bytes|random-with-source-and-bytes",
		},

		Fields: map[string]*framework.FieldSchema{
			"urlbytes": {
				Type:        framework.TypeString,
				Description: "The number of bytes to generate (POST URL parameter)",
			},

			"bytes": {
				Type:        framework.TypeInt,
				Default:     32,
				Description: "The number of bytes to generate (POST body parameter). Defaults to 32 (256 bits).",
			},

			"format": {
				Type:        framework.TypeString,
				Default:     "base64",
				Description: `Encoding format to use. Can be "hex" or "base64". Defaults to "base64".`,
			},

			"source": {
				Type:        framework.TypeString,
				Default:     "platform",
				Description: `Which system to source random data from, ether "platform", "seal", or "all".`,
			},
		},

		Callbacks: map[logical.Operation]framework.OperationFunc{
			logical.UpdateOperation: b.pathRandomWrite,
		},

		HelpSynopsis:    pathRandomHelpSyn,
		HelpDescription: pathRandomHelpDesc,
	}
}

func (b *backend) pathRandomWrite(_ context.Context, _ *logical.Request, d *framework.FieldData) (*logical.Response, error) {
	return random.HandleRandomAPI(d, b.GetRandomReader())
}

const pathRandomHelpSyn = `Generate random bytes`

const pathRandomHelpDesc = `
This function can be used to generate high-entropy random bytes.
`
adding copyright header (#19555) * adding copyright header * fix fmt and a test 2023-03-15 16:00:52 +00:00			`// Copyright (c) HashiCorp, Inc.`
			`// SPDX-License-Identifier: MPL-2.0`

Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`package transit`

			`import (`
Pass context to backends (#3750) * Start work on passing context to backends * More work on passing context * Unindent logical system * Unindent token store * Unindent passthrough * Unindent cubbyhole * Fix tests * use requestContext in rollback and expiration managers 2018-01-08 18:31:38 +00:00			`"context"`
Fix fmt error (#15266) 2022-05-03 14:07:23 +00:00
Allow callers to choose the entropy source for the random endpoints. (#15213) * Allow callers to choose the entropy source for the random endpoints * Put source in the URL for sys as well * changelog * docs * Fix unit tests, and add coverage * refactor to use a single common implementation * Update documentation * one more tweak * more cleanup * Readd lost test expected code * fmt 2022-05-02 19:42:07 +00:00			`"github.com/hashicorp/vault/helper/random"`
Create sdk/ and api/ submodules (#6583) 2019-04-12 21:54:35 +00:00			`"github.com/hashicorp/vault/sdk/framework"`
Switch to go modules (#6585) * Switch to go modules * Make fmt 2019-04-13 07:44:06 +00:00			`"github.com/hashicorp/vault/sdk/logical"`
Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`)`

			`func (b backend) pathRandom() framework.Path {`
			`return &framework.Path{`
Allow callers to choose the entropy source for the random endpoints. (#15213) * Allow callers to choose the entropy source for the random endpoints * Put source in the URL for sys as well * changelog * docs * Fix unit tests, and add coverage * refactor to use a single common implementation * Update documentation * one more tweak * more cleanup * Readd lost test expected code * fmt 2022-05-02 19:42:07 +00:00			`Pattern: "random(/" + framework.GenericNameRegex("source") + ")?" + framework.OptionalParamRegex("urlbytes"),`
openapi: Add display attributes for transit plugin (#19575) 2023-04-10 18:20:53 +00:00
			`DisplayAttrs: &framework.DisplayAttributes{`
			`OperationPrefix: operationPrefixTransit,`
			`OperationVerb: "generate",`
			`OperationSuffix: "random\|random-with-source\|random-with-bytes\|random-with-source-and-bytes",`
			`},`

Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`Fields: map[string]*framework.FieldSchema{`
Run a more strict formatter over the code (#11312) * Update tooling * Run gofumpt * go mod vendor 2021-04-08 16:43:39 +00:00			`"urlbytes": {`
Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`Type: framework.TypeString,`
			`Description: "The number of bytes to generate (POST URL parameter)",`
			`},`

Run a more strict formatter over the code (#11312) * Update tooling * Run gofumpt * go mod vendor 2021-04-08 16:43:39 +00:00			`"bytes": {`
Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`Type: framework.TypeInt,`
			`Default: 32,`
			`Description: "The number of bytes to generate (POST body parameter). Defaults to 32 (256 bits).",`
			`},`

Run a more strict formatter over the code (#11312) * Update tooling * Run gofumpt * go mod vendor 2021-04-08 16:43:39 +00:00			`"format": {`
Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`Type: framework.TypeString,`
			`Default: "base64",`
			Description: `Encoding format to use. Can be "hex" or "base64". Defaults to "base64".`,
			`},`
Allow callers to choose the entropy source for the random endpoints. (#15213) * Allow callers to choose the entropy source for the random endpoints * Put source in the URL for sys as well * changelog * docs * Fix unit tests, and add coverage * refactor to use a single common implementation * Update documentation * one more tweak * more cleanup * Readd lost test expected code * fmt 2022-05-02 19:42:07 +00:00
			`"source": {`
			`Type: framework.TypeString,`
			`Default: "platform",`
			Description: `Which system to source random data from, ether "platform", "seal", or "all".`,
			`},`
Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`},`

			`Callbacks: map[logical.Operation]framework.OperationFunc{`
			`logical.UpdateOperation: b.pathRandomWrite,`
			`},`

			`HelpSynopsis: pathRandomHelpSyn,`
			`HelpDescription: pathRandomHelpDesc,`
			`}`
			`}`

Allow callers to choose the entropy source for the random endpoints. (#15213) * Allow callers to choose the entropy source for the random endpoints * Put source in the URL for sys as well * changelog * docs * Fix unit tests, and add coverage * refactor to use a single common implementation * Update documentation * one more tweak * more cleanup * Readd lost test expected code * fmt 2022-05-02 19:42:07 +00:00			`func (b backend) pathRandomWrite(_ context.Context, _ logical.Request, d framework.FieldData) (logical.Response, error) {`
			`return random.HandleRandomAPI(d, b.GetRandomReader())`
Transit and audit enhancements 2016-09-21 14:29:42 +00:00			`}`

			const pathRandomHelpSyn = `Generate random bytes`

			const pathRandomHelpDesc = `
			`This function can be used to generate high-entropy random bytes.`
			`