Class VaultClient
java.lang.Object
com.scivicslab.actoriac.VaultClient
Client for HashiCorp Vault API communication.
Supports reading secrets from Vault KV v2 engine.
- Author:
- devteam@scivics-lab.com
-
Nested Class Summary
Nested ClassesModifier and TypeClassDescriptionstatic classException thrown when Vault operations fail. -
Field Summary
Fields -
Constructor Summary
ConstructorsConstructorDescriptionVaultClient(VaultConfig config) Creates a new VaultClient with the given configuration. -
Method Summary
Modifier and TypeMethodDescriptionprivate StringextractSecretValue(String jsonResponse) Extracts the secret value from Vault API response.readSecret(String path) Reads a secret from Vault.
-
Field Details
-
config
-
httpClient
-
-
Constructor Details
-
VaultClient
Creates a new VaultClient with the given configuration.- Parameters:
config- Vault configuration
-
-
Method Details
-
readSecret
Reads a secret from Vault.- Parameters:
path- Secret path (e.g., "secret/data/ssh/iacuser/private_key")- Returns:
- Secret value as String
- Throws:
VaultClient.VaultException- if Vault communication fails or secret not found
-
extractSecretValue
Extracts the secret value from Vault API response. For KV v2 engine, the response structure is: { "data": { "data": { "value": "actual-secret-value" } } }- Parameters:
jsonResponse- JSON response from Vault- Returns:
- Secret value
- Throws:
VaultClient.VaultException- if response format is invalid
-