| Server IP : 92.204.138.22 / Your IP : 3.138.122.179 Web Server : Apache System : Linux ns1009439.ip-92-204-138.us 4.18.0-553.8.1.el8_10.x86_64 #1 SMP Tue Jul 2 07:26:33 EDT 2024 x86_64 User : internationaljou ( 1019) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /lib/python3.6/site-packages/sos/report/plugins/ |
Upload File : |
# Copyright (C) 2023 Canonical Ltd., Arif Ali <arif.ali@canonical.com>
#
# This file is part of the sos project: https://github.com/sosreport/sos
#
# This copyrighted material is made available to anyone wishing to use,
# modify, copy, or redistribute it subject to the terms and conditions of
# version 2 of the GNU General Public License.
#
# See the LICENSE file in the source distribution for further information.
from sos.report.plugins import Plugin, UbuntuPlugin
class Vault(Plugin, UbuntuPlugin):
"""The Vault plugin collects the current status of the vault
snap on a Ubuntu machine.
It will collect logs from journal, vault status and configuration
"""
short_desc = 'Manage access to secrets and protect sensitive data'
plugin_name = 'vault'
profiles = ('sysmgmt', 'security')
services = ('vault',)
package = ('vault',)
def setup(self):
vault_cfg = "/var/snap/vault/common/vault.hcl"
self.add_copy_spec(vault_cfg)
try:
with open(vault_cfg, 'r', encoding='UTF-8') as cfile:
for line in cfile.read().splitlines():
if not line:
continue
words = line.split('=')
if words[0].strip() == 'api_addr':
api_addr = words[1].strip('\" ')
self.add_cmd_output("vault status",
env={'VAULT_ADDR': api_addr})
except IOError as error:
self._log_error(f'Could not open conf file {vault_cfg}: {error}')
def postproc(self):
self.do_file_sub(
"/var/snap/vault/common/vault.hcl",
r"(password\s?=\s?).*",
r"\1******"
)
# vim: set et ts=4 sw=4 :