Liking cljdoc? Tell your friends :D
Clojure only.

vault.secret.aws

The AWS secrets engine generates AWS access credentials dynamically based on IAM policies.

Reference: https://www.vaultproject.io/api-docs/secret/aws

The AWS secrets engine generates AWS access credentials dynamically based on
IAM policies.

Reference: https://www.vaultproject.io/api-docs/secret/aws
raw docstring

APIcljprotocol

The AWS secrets engine generates AWS access credentials dynamically based on IAM policies.

The AWS secrets engine generates AWS access credentials dynamically based on
IAM policies.

generate-role-credentials!clj

(generate-role-credentials! client role-name)
(generate-role-credentials! client role-name opts)

Generate a new set of dynamic IAM credentials based on the named role.

Options:

  • :refresh? (boolean)

    Always make a call for fresh data, even if a cached secret lease is available.

  • :rotate? (boolean)

    If true, attempt to read a new set of credentials when they can no longer be renewed. (Default: false)

  • :rotate-within (integer)

    Rotate the secret when within this many seconds of the lease expiry. (Default: 60)

  • :on-rotate (fn)

    A function to call with the new credentials after they have been rotated.

  • :on-error (fn)

    A function to call with any exceptions encountered while generating or rotating the credentials.

Generate a new set of dynamic IAM credentials based on the named role.

Options:

- `:refresh?` (boolean)

  Always make a call for fresh data, even if a cached secret lease is
  available.

- `:rotate?` (boolean)

  If true, attempt to read a new set of credentials when they can no longer
  be renewed. (Default: `false`)

- `:rotate-within` (integer)

  Rotate the secret when within this many seconds of the lease expiry.
  (Default: `60`)

- `:on-rotate` (fn)

  A function to call with the new credentials after they have been
  rotated.

- `:on-error` (fn)

  A function to call with any exceptions encountered while generating or
  rotating the credentials.

generate-user-credentials!clj

(generate-user-credentials! client user-name)
(generate-user-credentials! client user-name opts)

Generate a new set of dynamic IAM credentials based on the named user.

Options:

  • :refresh? (boolean)

    Always make a call for fresh data, even if a cached secret lease is available.

  • :renew? (boolean)

    If true, attempt to automatically renew the credentials lease when near expiry. (Default: false)

  • :renew-within (integer)

    Renew the secret when within this many seconds of the lease expiry. (Default: 60)

  • :renew-increment (integer)

    How long to request credentials be renewed for, in seconds.

  • :on-renew (fn)

    A function to call with the updated lease information after the credentials have been renewed.

  • :rotate? (boolean)

    If true, attempt to read a new set of credentials when they can no longer be renewed. (Default: false)

  • :rotate-within (integer)

    Rotate the secret when within this many seconds of the lease expiry. (Default: 60)

  • :on-rotate (fn)

    A function to call with the new credentials after they have been rotated.

  • :on-error (fn)

    A function to call with any exceptions encountered while renewing or rotating the credentials.

Generate a new set of dynamic IAM credentials based on the named user.

Options:

- `:refresh?` (boolean)

  Always make a call for fresh data, even if a cached secret lease is
  available.

- `:renew?` (boolean)

  If true, attempt to automatically renew the credentials lease when near
  expiry. (Default: `false`)

- `:renew-within` (integer)

  Renew the secret when within this many seconds of the lease expiry.
  (Default: `60`)

- `:renew-increment` (integer)

  How long to request credentials be renewed for, in seconds.

- `:on-renew` (fn)

  A function to call with the updated lease information after the
  credentials have been renewed.

- `:rotate?` (boolean)

  If true, attempt to read a new set of credentials when they can no longer
  be renewed. (Default: `false`)

- `:rotate-within` (integer)

  Rotate the secret when within this many seconds of the lease expiry.
  (Default: `60`)

- `:on-rotate` (fn)

  A function to call with the new credentials after they have been
  rotated.

- `:on-error` (fn)

  A function to call with any exceptions encountered while renewing or
  rotating the credentials.

with-mountclj

(with-mount client mount)

Return an updated client which will resolve calls against the provided mount instead of the default. Passing nil will reset the client to the default.

Return an updated client which will resolve calls against the provided
mount instead of the default. Passing `nil` will reset the client to the
default.
sourceraw docstring

default-mountclj

Default mount point to use if one is not provided.

Default mount point to use if one is not provided.
sourceraw docstring

cljdoc is a website building & hosting documentation for Clojure/Script libraries

Keyboard shortcutsReport a problemcljdoc on GitHub
× close