feat: vault_password_file or nothing at all is shorthand for just using the local gman provider for secret management

This commit is contained in:
2026-06-02 14:52:36 -06:00
parent 3892f58fae
commit a0649d4f25
4 changed files with 83 additions and 108 deletions
+44 -36
View File
@@ -907,44 +907,52 @@ impl RequestContext {
("messages_file", display_path(&self.messages_file())),
];
items.push(("secrets_provider", app.secrets_provider.to_string()));
match &app.secrets_provider {
SupportedProvider::Local { provider_def } => {
let path = provider_def
.password_file
.clone()
.unwrap_or_else(gman::config::Config::local_provider_password_file);
items.push(("vault_password_file", display_path(&path)));
None => {
items.push(("secrets_provider", "local".to_string()));
items.push(("vault_password_file", display_path(&app.vault_password_file())));
}
SupportedProvider::AwsSecretsManager { provider_def } => {
if let Some(p) = &provider_def.aws_profile {
items.push(("aws_profile", p.clone()));
}
if let Some(r) = &provider_def.aws_region {
items.push(("aws_region", r.clone()));
}
}
SupportedProvider::GcpSecretManager { provider_def } => {
if let Some(id) = &provider_def.gcp_project_id {
items.push(("gcp_project_id", id.clone()));
}
}
SupportedProvider::AzureKeyVault { provider_def } => {
if let Some(n) = &provider_def.vault_name {
items.push(("azure_vault_name", n.clone()));
}
}
SupportedProvider::Gopass { provider_def } => {
if let Some(s) = &provider_def.store {
items.push(("gopass_store", s.clone()));
}
}
SupportedProvider::OnePassword { provider_def } => {
if let Some(v) = &provider_def.vault {
items.push(("op_vault", v.clone()));
}
if let Some(a) = &provider_def.account {
items.push(("op_account", a.clone()));
Some(provider) => {
items.push(("secrets_provider", provider.to_string()));
match provider {
SupportedProvider::Local { provider_def } => {
let path = provider_def
.password_file
.clone()
.unwrap_or_else(gman::config::Config::local_provider_password_file);
items.push(("vault_password_file", display_path(&path)));
}
SupportedProvider::AwsSecretsManager { provider_def } => {
if let Some(p) = &provider_def.aws_profile {
items.push(("aws_profile", p.clone()));
}
if let Some(r) = &provider_def.aws_region {
items.push(("aws_region", r.clone()));
}
}
SupportedProvider::GcpSecretManager { provider_def } => {
if let Some(id) = &provider_def.gcp_project_id {
items.push(("gcp_project_id", id.clone()));
}
}
SupportedProvider::AzureKeyVault { provider_def } => {
if let Some(n) = &provider_def.vault_name {
items.push(("azure_vault_name", n.clone()));
}
}
SupportedProvider::Gopass { provider_def } => {
if let Some(s) = &provider_def.store {
items.push(("gopass_store", s.clone()));
}
}
SupportedProvider::OnePassword { provider_def } => {
if let Some(v) = &provider_def.vault {
items.push(("op_vault", v.clone()));
}
if let Some(a) = &provider_def.account {
items.push(("op_account", a.clone()));
}
}
}
}
}