Package google.registry.keyring.secretmanager

Class SecretManagerKeyringUpdater

java.lang.Object

google.registry.keyring.secretmanager.SecretManagerKeyringUpdater

public final class SecretManagerKeyringUpdater
extends Object

The SecretManagerKeyringUpdater accumulates updates to a SecretManagerKeyring and persists them to Cloud Secret Manager when closed.

Constructor Summary

Constructors

Constructor	Description
SecretManagerKeyringUpdater(KeyringSecretStore secretStore)

Method Summary

Modifier and Type	Method	Description
SecretManagerKeyringUpdater	setBrdaReceiverPublicKey(org.bouncycastle.openpgp.PGPPublicKey publicKey)
SecretManagerKeyringUpdater	setBrdaSigningKey(org.bouncycastle.openpgp.PGPKeyPair keyPair)
SecretManagerKeyringUpdater	setBsaApiKey(String credential)
SecretManagerKeyringUpdater	setIcannReportingPassword(String password)
SecretManagerKeyringUpdater	setMarksdbDnlLoginAndPassword(String login)
SecretManagerKeyringUpdater	setMarksdbLordnPassword(String password)
SecretManagerKeyringUpdater	setMarksdbSmdrlLoginAndPassword(String login)
SecretManagerKeyringUpdater	setRdeReceiverPublicKey(org.bouncycastle.openpgp.PGPPublicKey publicKey)
SecretManagerKeyringUpdater	setRdeSigningKey(org.bouncycastle.openpgp.PGPKeyPair keyPair)
SecretManagerKeyringUpdater	setRdeSshClientPrivateKey(String asciiPrivateKey)
SecretManagerKeyringUpdater	setRdeSshClientPublicKey(String asciiPublicKey)
SecretManagerKeyringUpdater	setRdeStagingKey(org.bouncycastle.openpgp.PGPKeyPair keyPair)
SecretManagerKeyringUpdater	setSafeBrowsingAPIKey(String apiKey)
SecretManagerKeyringUpdater	setSqlPrimaryConnectionName(String name)
SecretManagerKeyringUpdater	setSqlReplicaConnectionName(String name)
void	update()	Persists the secrets in the Secret Manager.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SecretManagerKeyringUpdater

@Inject
public SecretManagerKeyringUpdater(KeyringSecretStore secretStore)

Method Details

setRdeSigningKey

public SecretManagerKeyringUpdater setRdeSigningKey(org.bouncycastle.openpgp.PGPKeyPair keyPair)
                                             throws IOException,
org.bouncycastle.openpgp.PGPException

Throws:

IOException

org.bouncycastle.openpgp.PGPException

setRdeStagingKey

public SecretManagerKeyringUpdater setRdeStagingKey(org.bouncycastle.openpgp.PGPKeyPair keyPair)
                                             throws IOException,
org.bouncycastle.openpgp.PGPException

Throws:

IOException

org.bouncycastle.openpgp.PGPException

setRdeReceiverPublicKey

public SecretManagerKeyringUpdater setRdeReceiverPublicKey(org.bouncycastle.openpgp.PGPPublicKey publicKey)
                                                    throws IOException

Throws:

IOException

setBrdaSigningKey

public SecretManagerKeyringUpdater setBrdaSigningKey(org.bouncycastle.openpgp.PGPKeyPair keyPair)
                                              throws IOException,
org.bouncycastle.openpgp.PGPException

Throws:

IOException

org.bouncycastle.openpgp.PGPException

setBrdaReceiverPublicKey

public SecretManagerKeyringUpdater setBrdaReceiverPublicKey(org.bouncycastle.openpgp.PGPPublicKey publicKey)
                                                     throws IOException

Throws:

IOException

setRdeSshClientPublicKey

public SecretManagerKeyringUpdater setRdeSshClientPublicKey(String asciiPublicKey)

setRdeSshClientPrivateKey

public SecretManagerKeyringUpdater setRdeSshClientPrivateKey(String asciiPrivateKey)

setSafeBrowsingAPIKey

public SecretManagerKeyringUpdater setSafeBrowsingAPIKey(String apiKey)

setIcannReportingPassword

public SecretManagerKeyringUpdater setIcannReportingPassword(String password)

setMarksdbDnlLoginAndPassword

public SecretManagerKeyringUpdater setMarksdbDnlLoginAndPassword(String login)

setMarksdbLordnPassword

public SecretManagerKeyringUpdater setMarksdbLordnPassword(String password)

setMarksdbSmdrlLoginAndPassword

public SecretManagerKeyringUpdater setMarksdbSmdrlLoginAndPassword(String login)

setBsaApiKey

public SecretManagerKeyringUpdater setBsaApiKey(String credential)

setSqlPrimaryConnectionName

public SecretManagerKeyringUpdater setSqlPrimaryConnectionName(String name)

setSqlReplicaConnectionName

public SecretManagerKeyringUpdater setSqlReplicaConnectionName(String name)

update

public void update()

Persists the secrets in the Secret Manager.

Updates to the Secret Manager are not transactional. If an error happens, the successful updates are not reverted; unwritten updates are aborted. This is not a problem right now, since this class is only used by the UpdateKmsKeyringCommand, which is invoked manually and only updates one secret at a time.