214f42d541
This patch adds a "src" alias for `--secret`
to be consistent with `--mount`.
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
(cherry picked from commit 950658bbb6
)
Signed-off-by: Victor Vieux <vieux@docker.com>
107 lines
2.1 KiB
Go
107 lines
2.1 KiB
Go
package opts
|
|
|
|
import (
|
|
"encoding/csv"
|
|
"fmt"
|
|
"os"
|
|
"path/filepath"
|
|
"strconv"
|
|
"strings"
|
|
|
|
"github.com/docker/docker/api/types"
|
|
)
|
|
|
|
// SecretOpt is a Value type for parsing secrets
|
|
type SecretOpt struct {
|
|
values []*types.SecretRequestOption
|
|
}
|
|
|
|
// Set a new secret value
|
|
func (o *SecretOpt) Set(value string) error {
|
|
csvReader := csv.NewReader(strings.NewReader(value))
|
|
fields, err := csvReader.Read()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
options := &types.SecretRequestOption{
|
|
Source: "",
|
|
Target: "",
|
|
UID: "0",
|
|
GID: "0",
|
|
Mode: 0444,
|
|
}
|
|
|
|
// support a simple syntax of --secret foo
|
|
if len(fields) == 1 {
|
|
options.Source = fields[0]
|
|
options.Target = fields[0]
|
|
o.values = append(o.values, options)
|
|
return nil
|
|
}
|
|
|
|
for _, field := range fields {
|
|
parts := strings.SplitN(field, "=", 2)
|
|
key := strings.ToLower(parts[0])
|
|
|
|
if len(parts) != 2 {
|
|
return fmt.Errorf("invalid field '%s' must be a key=value pair", field)
|
|
}
|
|
|
|
value := parts[1]
|
|
switch key {
|
|
case "source", "src":
|
|
options.Source = value
|
|
case "target":
|
|
tDir, _ := filepath.Split(value)
|
|
if tDir != "" {
|
|
return fmt.Errorf("target must not be a path")
|
|
}
|
|
options.Target = value
|
|
case "uid":
|
|
options.UID = value
|
|
case "gid":
|
|
options.GID = value
|
|
case "mode":
|
|
m, err := strconv.ParseUint(value, 0, 32)
|
|
if err != nil {
|
|
return fmt.Errorf("invalid mode specified: %v", err)
|
|
}
|
|
|
|
options.Mode = os.FileMode(m)
|
|
default:
|
|
if len(fields) == 1 && value == "" {
|
|
|
|
} else {
|
|
return fmt.Errorf("invalid field in secret request: %s", key)
|
|
}
|
|
}
|
|
}
|
|
|
|
if options.Source == "" {
|
|
return fmt.Errorf("source is required")
|
|
}
|
|
|
|
o.values = append(o.values, options)
|
|
return nil
|
|
}
|
|
|
|
// Type returns the type of this option
|
|
func (o *SecretOpt) Type() string {
|
|
return "secret"
|
|
}
|
|
|
|
// String returns a string repr of this option
|
|
func (o *SecretOpt) String() string {
|
|
secrets := []string{}
|
|
for _, secret := range o.values {
|
|
repr := fmt.Sprintf("%s -> %s", secret.Source, secret.Target)
|
|
secrets = append(secrets, repr)
|
|
}
|
|
return strings.Join(secrets, ", ")
|
|
}
|
|
|
|
// Value returns the secret requests
|
|
func (o *SecretOpt) Value() []*types.SecretRequestOption {
|
|
return o.values
|
|
}
|