Merge pull request #28 from markwirth-mw/ssh-key_signing

add getVaultPubKey
mittwald · Aug 29, 2024 · 4c44afb · 4c44afb
2 parents 0213c0b + 7553e09
commit 4c44afb
Showing 1 changed file with 26 additions and 0 deletions.
diff --git a/ssh.go b/ssh.go
@@ -33,6 +33,15 @@ type SSHSignResponse struct {
 	} `json:"data"`
 }
 
+type SSHReadPubKeyResponse struct {
+	LeaseID       string `json:"lease_id"`
+	Renewable     bool   `json:"renewable"`
+	LeaseDuration int    `json:"lease_duration"`
+	Data          struct {
+		PublicKey string `json:"public_key"`
+	} `json:"data"`
+}
+
 func (k *SSH) Sign(role string, sshopts SSHSignOptions) (*SSHSignResponse, error) {
 	response := &SSHSignResponse{}
 	err := k.client.Write(
@@ -49,3 +58,20 @@ func (k *SSH) Sign(role string, sshopts SSHSignOptions) (*SSHSignResponse, error
 
 	return response, nil
 }
+
+func (k *SSH) GetVaultPubKey() (string, error) {
+	response := &SSHReadPubKeyResponse{}
+	err := k.client.Read(
+		[]string{
+			"v1",
+			k.MountPoint,
+			"config",
+			"ca",
+		}, response, nil,
+	)
+	if err != nil {
+		return "", err
+	}
+
+	return response.Data.PublicKey, nil
+}