Added support for JSON type and global secrets.

TheKidCoder · TheKidCoder · commit e7ed5ec6dcca · 2020-08-28T17:18:31.000-04:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -0,0 +1,3 @@
+# 1.1.0
+* Added support for parsing secrets encoded as JSON.
+* Added support for scoping a secret to `global` prefix that will disregard env.
diff --git a/README.md b/README.md
@@ -33,6 +33,7 @@ For example, to access the secret `twlio-key`, `$secrets.fetch('twilio-key')`. T
 This gem expects your secret value to be a JSON object. The only required key is `value`. The following keys are optional:
 * `ttl` - Time to live in seconds. Describes how long the secret should live in in-memory cache.
 * `encoding` - Currently, only `base64` is supported as a value. If your `value` is base64 encoded, this will result in a returned secret that is base64 decoded.
+* `type` - Currently, only `json` is supported as a value. If your `value` is valid JSON, this will result in a returned secret that is symbolified ruby hash.
 
 Example:
 ```
@@ -60,6 +61,11 @@ $secrets.fetch('services/twilio/api-key')
 $secrets['services/twilio/api-key']
 ```
 
+To use a secret that is available in all envs, prepend the secret name with `global`
+```
+$secrets['global/config/api-key']
+```
+
 ## Development
 
 After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
diff --git a/lib/secrets-manager.rb b/lib/secrets-manager.rb
@@ -56,7 +56,11 @@ def client
     end
 
     def fetch(secret_path)
-      resolved_path = secret_env + '/' + secret_path
+      if secret_path.start_with?("global")
+        resolved_path = secret_path
+      else
+        resolved_path = secret_env + '/' + secret_path
+      end
 
       cached_value = cache.find(resolved_path)
       return cached_value if cached_value
@@ -93,6 +97,13 @@ def parse_value(data)
         end
       end
 
+      if data[:type].present?
+        case data[:type]
+        when "json"
+          value = JSON.parse(value, symbolize_names: true)
+        end
+      end
+
       return value
     end
 
diff --git a/lib/version.rb b/lib/version.rb
@@ -1,3 +1,3 @@
 module SecretsManager
-  VERSION = "1.0.2"
+  VERSION = "1.1.0"
 end

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+# 1.1.0`
	`2`	`+* Added support for parsing secrets encoded as JSON.`
	`3`	+* Added support for scoping a secret to `global` prefix that will disregard env.