Add ability to read raw field from secret#257
Add ability to read raw field from secret#257armon merged 2 commits intohashicorp:masterfrom ianunruh:feature/read-field
Conversation
|
@ianunruh LGTM! Thanks! |
Add ability to read raw field from secret
|
@jefferai This may be of interest |
|
@armon Definitely useful in a general sense, but doesn't help with CRLs or CA certificate fetching, since random client X will reference a URL and expect a bare CRL. It also doesn't really help, currently, with certificate/private key fetching because those are in two fields, although I could turn them into a bundle so that you can get the full bare bundle with this functionality. There is some sense in doing that, as when you're doing this programmatically via Vault it seems reasonable that you'll either read the values into memory and then discard them, or simply write them into a private file. Or, maybe even better, make this a flag that is toggleable when requesting the cert. Tagging #125 to help me remember. Also there is a long post waiting for responses there :-D |
Fixes #243