Keyfactor
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 3 additions & 0 deletions b/‎README.md‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎backend.go‎
Lines changed: 7 additions & 5 deletions b/‎backend.go‎
Lines changed: 7 additions & 5 deletions
@@ -8,3 +8,4 @@ Keyfactor Vault Secrets Engine Guide.docx
 Makefile
 sample_config.json
 README.md
+README.md
@@ -1,3 +1,7 @@
+- 1.4.2
+  - Updated the Hashicorp SDK libraries
+  - Incorporated the Keyfactor GO SDK for authentication and interaction with the Command API
+  
 - 1.4.1
   - Updated CA and CA chain retreival to work for CA's hosted outside of Command (EJBCA)
   - Updated Keyfactor Client library to 1.2.0
 
@@ -620,9 +620,12 @@ instance of the plugin is named "keyfactor".
 ### Read CA cert
 
 `vault read keyfactor/ca ca=<ca name>`
+> Note: The certificate for the CA needs to have been imported into Command for this endpoint to return the CA Certificate
 
 ### Read CA chain
 
 `vault read keyfactor/ca_chain ca=<ca name>`
+> Note: _All_ certificates in the chain need to have been imported into Command for this endpoint to return the CA Certificate Chain
+
 
 
@@ -16,12 +16,14 @@ import (
 	"strings"
 	"sync"
 
+	"github.com/Keyfactor/keyfactor-go-client-sdk/v24"
 	"github.com/hashicorp/vault/sdk/framework"
 	"github.com/hashicorp/vault/sdk/logical"
 )
 
 const (
 	operationPrefixKeyfactor string = "keyfactor"
+	PluginVersion                   = "1.4.2" // this should match the release version of the plugin
 )
 
 // Factory configures and returns backend
@@ -39,7 +41,7 @@ type keyfactorBackend struct {
 	*framework.Backend
 	configLock   sync.RWMutex
 	cachedConfig *keyfactorConfig
-	client       *keyfactorClient
+	client       *keyfactor.APIClient
 }
 
 // keyfactorBackend defines the target API keyfactorBackend
@@ -67,6 +69,7 @@ func backend() *keyfactorBackend {
 		BackendType:    logical.TypeLogical,
 		Invalidate:     b.invalidate,
 		InitializeFunc: b.Initialize,
+		RunningVersion: "v" + PluginVersion,
 	}
 	return &b
 }
@@ -100,13 +103,12 @@ func (b *keyfactorBackend) invalidate(ctx context.Context, key string) {
 
 // getClient locks the backend as it configures and creates a
 // a new client for the target API
-func (b *keyfactorBackend) getClient(ctx context.Context, s logical.Storage) (*keyfactorClient, error) {
+func (b *keyfactorBackend) getClient(ctx context.Context, s logical.Storage) (*keyfactor.APIClient, error) {
 	b.configLock.RLock()
 	defer b.configLock.RUnlock()
 
 	if b.client != nil {
-		b.Logger().Debug("closing idle connections before returning existing client")
-		b.client.httpClient.CloseIdleConnections()
+		b.Logger().Trace("returning existing client")
 		return b.client, nil
 	}
 
@@ -127,5 +129,5 @@ func (b *keyfactorBackend) getClient(ctx context.Context, s logical.Storage) (*k
 }
 
 const keyfactorHelp = `
-The Keyfactor backend is a pki service that issues and manages certificates.
+The Keyfactor backend is a pki service that issues and manages certificates via the Keyfactor Command platform.
 `
Original file line number	Diff line number	Diff line change
`@@ -16,12 +16,14 @@ import (`
`16`	`16`	`"strings"`
`17`	`17`	`"sync"`
`18`	`18`
	`19`	`+ "github.com/Keyfactor/keyfactor-go-client-sdk/v24"`
`19`	`20`	`"github.com/hashicorp/vault/sdk/framework"`
`20`	`21`	`"github.com/hashicorp/vault/sdk/logical"`
`21`	`22`	`)`
`22`	`23`
`23`	`24`	`const (`
`24`	`25`	`operationPrefixKeyfactor string = "keyfactor"`
	`26`	`+ PluginVersion = "1.4.2" // this should match the release version of the plugin`
`25`	`27`	`)`
`26`	`28`
`27`	`29`	`// Factory configures and returns backend`
`@@ -39,7 +41,7 @@ type keyfactorBackend struct {`
`39`	`41`	`*framework.Backend`
`40`	`42`	`configLock sync.RWMutex`
`41`	`43`	`cachedConfig *keyfactorConfig`
`42`		`- client *keyfactorClient`
	`44`	`+ client *keyfactor.APIClient`
`43`	`45`	`}`
`44`	`46`
`45`	`47`	`// keyfactorBackend defines the target API keyfactorBackend`
`@@ -67,6 +69,7 @@ func backend() *keyfactorBackend {`
`67`	`69`	`BackendType: logical.TypeLogical,`
`68`	`70`	`Invalidate: b.invalidate,`
`69`	`71`	`InitializeFunc: b.Initialize,`
	`72`	`+ RunningVersion: "v" + PluginVersion,`
`70`	`73`	`}`
`71`	`74`	`return &b`
`72`	`75`	`}`
`@@ -100,13 +103,12 @@ func (b *keyfactorBackend) invalidate(ctx context.Context, key string) {`
`100`	`103`
`101`	`104`	`// getClient locks the backend as it configures and creates a`
`102`	`105`	`// a new client for the target API`
`103`		`-func (b keyfactorBackend) getClient(ctx context.Context, s logical.Storage) (keyfactorClient, error) {`
	`106`	`+func (b keyfactorBackend) getClient(ctx context.Context, s logical.Storage) (keyfactor.APIClient, error) {`
`104`	`107`	`b.configLock.RLock()`
`105`	`108`	`defer b.configLock.RUnlock()`
`106`	`109`
`107`	`110`	`if b.client != nil {`
`108`		`- b.Logger().Debug("closing idle connections before returning existing client")`
`109`		`- b.client.httpClient.CloseIdleConnections()`
	`111`	`+ b.Logger().Trace("returning existing client")`
`110`	`112`	`return b.client, nil`
`111`	`113`	`}`
`112`	`114`
`@@ -127,5 +129,5 @@ func (b keyfactorBackend) getClient(ctx context.Context, s logical.Storage) (k`
`127`	`129`	`}`
`128`	`130`
`129`	`131`	const keyfactorHelp = `
`130`		`-The Keyfactor backend is a pki service that issues and manages certificates.`
	`132`	`+The Keyfactor backend is a pki service that issues and manages certificates via the Keyfactor Command platform.`
`131`	`133`	`