Skip to content
This repository has been archived by the owner on Aug 28, 2024. It is now read-only.

Commit

Permalink
refine the property binding logic using spring binder api (#810)
Browse files Browse the repository at this point in the history
  • Loading branch information
@ShichaoQiu @superrdean
ShichaoQiu authored and superrdean committed Jan 14, 2020
1 parent 2fae636 commit 4e657ca
Show file tree
Hide file tree
Showing 4 changed files with 19 additions and 26 deletions.
2 changes: 1 addition & 1 deletion ...spring-boot-test-keyvault/src/test/java/com/microsoft/azure/test/keyvault/KeyVaultIT.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -113,7 +113,7 @@ public void keyVaultAsPropertySourceWithSpecificKeys() {
app.property("azure.keyvault.client-id", access.clientId());
app.property("azure.keyvault.client-key", access.clientSecret());
app.property("azure.keyvault.tenant-id", access.tenant());
app.property("azure.keyvault.secret.keys", "key");
app.property("azure.keyvault.secret.keys", "key , azure-cosmosdb-key");

app.start();
assertEquals(KEY_VAULT_VALUE, app.getProperty("key"));
Expand Down
9 changes: 8 additions & 1 deletion ...main/java/com/microsoft/azure/keyvault/spring/KeyVaultEnvironmentPostProcessorHelper.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,14 +15,19 @@
import com.azure.security.keyvault.secrets.SecretClientBuilder;
import com.microsoft.azure.telemetry.TelemetrySender;
import lombok.extern.slf4j.Slf4j;

import org.springframework.boot.context.properties.bind.Bindable;
import org.springframework.boot.context.properties.bind.Binder;
import org.springframework.core.env.ConfigurableEnvironment;
import org.springframework.core.env.MutablePropertySources;
import org.springframework.core.env.StandardEnvironment;
import org.springframework.util.Assert;
import org.springframework.util.ClassUtils;
import org.springframework.util.StringUtils;

import java.util.Collections;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import java.util.Optional;

Expand All @@ -45,7 +50,9 @@ public void addKeyVaultPropertySource() {
final Long refreshInterval = Optional.ofNullable(
this.environment.getProperty(Constants.AZURE_KEYVAULT_REFRESH_INTERVAL))
.map(Long::valueOf).orElse(Constants.DEFAULT_REFRESH_INTERVAL_MS);
final String secretKeys = this.environment.getProperty(Constants.AZURE_KEYVAULT_SECRET_KEYS);
final Binder binder = Binder.get(this.environment);
final List<String> secretKeys = binder.bind(Constants.AZURE_KEYVAULT_SECRET_KEYS, Bindable.listOf(String.class))
.orElse(Collections.emptyList());

final TokenCredential tokenCredential = getCredentials();
final SecretClient secretClient = new SecretClientBuilder()
Expand Down
26 changes: 6 additions & 20 deletions azure-spring-boot/src/main/java/com/microsoft/azure/keyvault/spring/KeyVaultOperation.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,7 @@
import org.springframework.util.StringUtils;

import java.util.ArrayList;
import java.util.List;
import java.util.Locale;
import java.util.concurrent.atomic.AtomicLong;
import java.util.concurrent.locks.ReadWriteLock;
Expand All @@ -24,7 +25,7 @@
@Slf4j
public class KeyVaultOperation {
private final long cacheRefreshIntervalInMs;
private final String[] secretKeys;
private final List<String> secretKeys;

private final Object refreshLock = new Object();
private final SecretClient keyVaultClient;
Expand All @@ -39,30 +40,15 @@ public class KeyVaultOperation {
public KeyVaultOperation(final SecretClient keyVaultClient,
String vaultUri,
final long refreshInterval,
final String secretKeysConfig) {
final List<String> secretKeys) {
this.cacheRefreshIntervalInMs = refreshInterval;
this.secretKeys = parseSecretKeys(secretKeysConfig);
this.secretKeys = secretKeys;
this.keyVaultClient = keyVaultClient;
// TODO(pan): need to validate why last '/' need to be truncated.
this.vaultUri = StringUtils.trimTrailingCharacter(vaultUri.trim(), '/');
fillSecretsList();
}

private String[] parseSecretKeys(String secretKeysConfig) {
if (StringUtils.isEmpty(secretKeysConfig)) {
log.info("specific secret keys haven't set, so apply global list mode");
return new String[0];
}

final String[] split = secretKeysConfig.split(",");
if (split.length == 0) {
log.info("specific secret keys haven't set, so apply global list mode");
return new String[0];
}

return split;
}

public String[] list() {
try {
this.rwLock.readLock().lock();
Expand Down Expand Up @@ -106,7 +92,7 @@ public String get(final String property) {
final String secretName = getKeyvaultSecretName(property);

//if user don't set specific secret keys, then refresh token
if (this.secretKeys == null || secretKeys.length == 0) {
if (this.secretKeys == null || secretKeys.size() == 0) {
// refresh periodically
refreshPropertyNames();
}
Expand All @@ -132,7 +118,7 @@ private void refreshPropertyNames() {
private void fillSecretsList() {
try {
this.rwLock.writeLock().lock();
if (this.secretKeys == null || secretKeys.length == 0) {
if (this.secretKeys == null || secretKeys.size() == 0) {
this.propertyNames.clear();

final PagedIterable<SecretProperties> secretProperties = keyVaultClient.listPropertiesOfSecrets();
Expand Down
8 changes: 4 additions & 4 deletions ...ing-boot/src/test/java/com/microsoft/azure/keyvault/spring/KeyVaultOperationUnitTest.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@

@RunWith(MockitoJUnitRunner.class)
public class KeyVaultOperationUnitTest {
private static final String secretKeysConfig = "key1,key2,key3";
private static final List<String> secretKeysConfig = Arrays.asList("key1", "key2", "key3");

private static final String testPropertyName1 = "testPropertyName1";

Expand Down Expand Up @@ -54,7 +54,7 @@ public class KeyVaultOperationUnitTest {
private SecretClient keyVaultClient;
private KeyVaultOperation keyVaultOperation;

public void setupSecretBundle(String id, String value, String secretKeysConfig) {
public void setupSecretBundle(String id, String value, List<String> secretKeysConfig) {
//provision for list
when(keyVaultClient.listPropertiesOfSecrets()).thenReturn(new MockPage(new PagedFlux<>(() -> null), id));
//provison for get
Expand Down Expand Up @@ -98,7 +98,7 @@ public void testList() {
setupSecretBundle(testPropertyName1, testPropertyName1, secretKeysConfig);
final String[] specificResult = keyVaultOperation.list();
assertThat(specificResult.length).isEqualTo(3);
assertThat(specificResult[0]).isEqualTo(secretKeysConfig.split(",")[0]);
assertThat(specificResult[0]).isEqualTo(secretKeysConfig.get(0));
}

@Test
Expand All @@ -111,7 +111,7 @@ public void setTestSpringRelaxedBindingNames() {
);

//test list with specific secret key configs
setupSecretBundle(TEST_AZURE_KEYVAULT_NAME, TEST_AZURE_KEYVAULT_NAME, TEST_AZURE_KEYVAULT_NAME);
setupSecretBundle(TEST_AZURE_KEYVAULT_NAME, TEST_AZURE_KEYVAULT_NAME, Arrays.asList(TEST_AZURE_KEYVAULT_NAME));
TEST_SPRING_RELAXED_BINDING_NAMES.forEach(
n -> assertThat(keyVaultOperation.get(n)).isEqualTo(TEST_AZURE_KEYVAULT_NAME)
);
Expand Down

0 comments on commit 4e657ca

Please sign in to comment.