0.1.2 • Published 3 years ago

@c4312/keyvault-loader v0.1.2

Weekly downloads
-
License
MIT
Repository
github
Last release
3 years ago

@c4312/keyvault-loader

Small utility library that:

  • Replaces all keyvault secret URIs in the object with their value loaded from keyvault
  • Can optionally cache secrets on disk. Very useful in a development environment, since otherwise loading secrets from keyvault can take several seconds.

Secrets cached on disk are appropriately permissioned and AES encrypted, but bear in mind these will have less security than a keyvault value stored only in memory.

Usage

import { AzureCliCredential } from '@azure/identity';
import { SecretClient } from '@azure/keyvault-secrets';
import resolveConfig from '@c4312/keyvault-loader';

const myConfig = { fooSecret: 'https://myvault.vault.azure.net/secrets/foo' };}
const resolved = await resolveConfig(myConfig, {
  client: keyvaultUrl => new SecretClient(keyvaultUrl, new AzureCliCredential()),
  cache: true
});

console.log(resolved); // { fooSecret: 'mySecretValue' }
azurekeyvaultsecretconfig
@infinitebrahmanuniverse/nolb-_c4@everything-registry/sub-chunk-151@zalastax/nolb-_c4
0.1.2

3 years ago

0.1.0

3 years ago