quarkus-vault icon indicating copy to clipboard operation
quarkus-vault copied to clipboard

Published 20 hours ago verified publisher icon quarkiverse

Add support for `destroy` in Key-Value Engine

Open ps-burgstaller opened this issue 3 years ago • 4 comments

Hi team,

I am trying to completely remove a key-value pair from Vault, including removing the path. The delete method on the KVEngine only deactivates the secret, as far as I understood it.

I suppose the destroy method would allow us to completely remove a secret from Vault. Is support for this method planned? I'd help out, but I would need some pointers on where to do this.

Kind regards!

ps-burgstaller avatar Sep 15 '22 07:09 ps-burgstaller

I am not sure what you mean "deactivates" a secret. A secret is store at a "path". Deleting a secret is akin to deleting its path.

kdubb avatar Sep 15 '22 08:09 kdubb

Sorry, I forgot that deleted KV secrets can be undeleted for a period of time before they are fully removed completely.

kdubb avatar Sep 15 '22 08:09 kdubb

yes there is a destroy operation (kv v2). do you want to try out creating a PR @ps-burgstaller ?

vsevel avatar Sep 15 '22 09:09 vsevel

I'm gonna take a look at it. 👍

ps-burgstaller avatar Sep 15 '22 10:09 ps-burgstaller