Use shared KMS library

peacekeeper · peacekeeper · commit 86bd17735a68 · 2025-11-19T14:32:00.000+01:00
diff --git a/pom.xml b/pom.xml
@@ -89,7 +89,7 @@
 		<key-formats-java.version>1.22.0</key-formats-java.version>
 		<did-common-java.version>1.18.0</did-common-java.version>
 		<danubetech-common-java.version>1.32.0</danubetech-common-java.version>
-		<danubetech-kms-java.version>0.1.0</danubetech-kms-java.version>
+		<danubetech-kms-java.version>0.4.0</danubetech-kms-java.version>
 		<com.github.mattrglobal-bbs.signatures.version>2.0</com.github.mattrglobal-bbs.signatures.version>
 
 		<!-- Other Versions -->
diff --git a/src/main/java/com/godiddy/cli/clistorage/cliconfig/CLIConfig.java b/src/main/java/com/godiddy/cli/clistorage/cliconfig/CLIConfig.java
@@ -1,9 +1,9 @@
 package com.godiddy.cli.clistorage.cliconfig;
 
+import com.godiddy.cli.clistorage.CLIStorage;
 import com.godiddy.cli.config.Formatting;
 import com.godiddy.cli.config.Headers;
 import com.godiddy.cli.config.Kms;
-import com.godiddy.cli.clistorage.CLIStorage;
 
 public class CLIConfig {
 
@@ -67,6 +67,30 @@ public static void setWalletServiceBase(String walletServiceBase) {
         }
     }
 
+    public static String getVaultEndpoint() {
+        return CLIStorage.get("vaultEndpoint");
+    }
+
+    public static void setVaultEndpoint(String vaultEndpoint) {
+        if (vaultEndpoint == null) {
+            CLIStorage.remove("vaultEndpoint");
+        } else {
+            CLIStorage.put("vaultEndpoint", vaultEndpoint);
+        }
+    }
+
+    public static String getVaultToken() {
+        return CLIStorage.get("vaultToken");
+    }
+
+    public static void setVaultToken(String vaultToken) {
+        if (vaultToken == null) {
+            CLIStorage.remove("vaultToken");
+        } else {
+            CLIStorage.put("vaultToken", vaultToken);
+        }
+    }
+
     public static Formatting.Value getFormatting() {
         return CLIStorage.get("formatting") == null ? null : Formatting.Value.valueOf(CLIStorage.get("formatting"));
     }
diff --git a/src/main/java/com/godiddy/cli/commands/config/ConfigRootCommand.java b/src/main/java/com/godiddy/cli/commands/config/ConfigRootCommand.java
@@ -12,10 +12,12 @@
         subcommands = {
                 ConfigApiKeyCommand.class,
                 ConfigEndpointCommand.class,
+                ConfigFormattingCommand.class,
+                ConfigHeadersCommand.class,
                 ConfigKmsCommand.class,
                 ConfigWalletServiceBaseCommand.class,
-                ConfigFormattingCommand.class,
-                ConfigHeadersCommand.class
+                ConfigVaultEndpointCommand.class,
+                ConfigVaultTokenCommand.class
         }
 )
 public class ConfigRootCommand extends GodiddyAbstractCommand implements Callable<Integer> {
diff --git a/src/main/java/com/godiddy/cli/commands/config/ConfigVaultEndpointCommand.java b/src/main/java/com/godiddy/cli/commands/config/ConfigVaultEndpointCommand.java
@@ -0,0 +1,54 @@
+package com.godiddy.cli.commands.config;
+
+import com.godiddy.cli.clistorage.cliconfig.CLIConfig;
+import com.godiddy.cli.config.VaultEndpoint;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
+import picocli.CommandLine;
+
+import java.util.concurrent.Callable;
+
+@CommandLine.Command(
+        name = "vaultendpoint",
+        description = "Get or set the endpoint of a Hashicorp Vault instance. Default value: " + VaultEndpoint.DEFAULT_VAULTENDPOINT + ".",
+        mixinStandardHelpOptions = true
+)
+public class ConfigVaultEndpointCommand extends ConfigAbstractCommand implements Callable<Integer> {
+
+    private static final Logger log = LogManager.getLogger(ConfigVaultEndpointCommand.class);
+
+    @CommandLine.Parameters(
+            index = "0",
+            description = "The endpoint of a Hashicorp Vault instance. Default value: " + VaultEndpoint.DEFAULT_VAULTENDPOINT + ".",
+            arity = "0..1"
+    )
+    String vaultEndpoint;
+
+    @Override
+    public Integer call() throws Exception {
+        log.trace("Parameter 'vaultEndpoint': " + this.vaultEndpoint);
+        if (Boolean.TRUE.equals(this.delete)) {
+            CLIConfig.setVaultEndpoint(null);
+            System.out.println("Vault endpoint setting successfully deleted.");
+        } else {
+            if (this.vaultEndpoint == null) {
+                String vaultEndpoint = CLIConfig.getVaultEndpoint();
+                if (vaultEndpoint == null) {
+                    System.out.println("No vault endpoint set.");
+                } else {
+                    System.out.println("Vault endpoint: " + vaultEndpoint);
+                }
+            } else {
+                String vaultEndpoint = this.vaultEndpoint;
+                String predefinedVaultEndpoint = VaultEndpoint.PREDEFINED_VAULTENDPOINTS.get(this.vaultEndpoint);
+                if (predefinedVaultEndpoint != null) {
+                    System.out.println("Using predefined vault endpoint value '" + predefinedVaultEndpoint + "' for parameter value '" + vaultEndpoint + "'.");
+                    vaultEndpoint = predefinedVaultEndpoint;
+                }
+                CLIConfig.setVaultEndpoint(vaultEndpoint);
+                System.out.println("Vault endpoint successfully set: " + vaultEndpoint);
+            }
+        }
+        return 0;
+    }
+}
diff --git a/src/main/java/com/godiddy/cli/commands/config/ConfigVaultTokenCommand.java b/src/main/java/com/godiddy/cli/commands/config/ConfigVaultTokenCommand.java
@@ -0,0 +1,54 @@
+package com.godiddy.cli.commands.config;
+
+import com.godiddy.cli.clistorage.cliconfig.CLIConfig;
+import com.godiddy.cli.config.VaultToken;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
+import picocli.CommandLine;
+
+import java.util.concurrent.Callable;
+
+@CommandLine.Command(
+        name = "vaulttoken",
+        description = "Get or set the token of a Hashicorp Vault instance. Default value: " + VaultToken.DEFAULT_VAULTTOKEN + ".",
+        mixinStandardHelpOptions = true
+)
+public class ConfigVaultTokenCommand extends ConfigAbstractCommand implements Callable<Integer> {
+
+    private static final Logger log = LogManager.getLogger(ConfigVaultTokenCommand.class);
+
+    @CommandLine.Parameters(
+            index = "0",
+            description = "The token of a Hashicorp Vault instance. Default value: " + VaultToken.DEFAULT_VAULTTOKEN + ".",
+            arity = "0..1"
+    )
+    String vaultToken;
+
+    @Override
+    public Integer call() throws Exception {
+        log.trace("Parameter 'vaultToken': " + this.vaultToken);
+        if (Boolean.TRUE.equals(this.delete)) {
+            CLIConfig.setVaultToken(null);
+            System.out.println("Vault token setting successfully deleted.");
+        } else {
+            if (this.vaultToken == null) {
+                String vaultToken = CLIConfig.getVaultToken();
+                if (vaultToken == null) {
+                    System.out.println("No vault token set.");
+                } else {
+                    System.out.println("Vault token: " + vaultToken);
+                }
+            } else {
+                String vaultToken = this.vaultToken;
+                String predefinedVaultToken = VaultToken.PREDEFINED_VAULTTOKENS.get(this.vaultToken);
+                if (predefinedVaultToken != null) {
+                    System.out.println("Using predefined vault token value '" + predefinedVaultToken + "' for parameter value '" + vaultToken + "'.");
+                    vaultToken = predefinedVaultToken;
+                }
+                CLIConfig.setVaultToken(vaultToken);
+                System.out.println("Vault token successfully set: " + vaultToken);
+            }
+        }
+        return 0;
+    }
+}
diff --git a/src/main/java/com/godiddy/cli/commands/resource/CreateResourceCommand.java b/src/main/java/com/godiddy/cli/commands/resource/CreateResourceCommand.java
@@ -4,6 +4,7 @@
 import com.godiddy.api.client.openapi.model.RequestOptions;
 import com.godiddy.api.client.openapi.model.RequestSecret;
 import com.godiddy.cli.GodiddyAbstractCommand;
+import com.godiddy.cli.commands.registrar.DoContinue;
 import com.godiddy.cli.config.Api;
 import com.godiddy.cli.clistorage.clistate.CLIState;
 import com.godiddy.cli.commands.registrar.ContinueCommand;
@@ -123,6 +124,6 @@ public Integer call() throws Exception {
 
         // continue
 
-        return ContinueCommand.doContinue(interactive);
+        return DoContinue.doContinue(interactive);
     }
 }
diff --git a/src/main/java/com/godiddy/cli/commands/resource/DeactivateResourceCommand.java b/src/main/java/com/godiddy/cli/commands/resource/DeactivateResourceCommand.java
@@ -4,6 +4,7 @@
 import com.godiddy.api.client.openapi.model.RequestOptions;
 import com.godiddy.api.client.openapi.model.RequestSecret;
 import com.godiddy.cli.GodiddyAbstractCommand;
+import com.godiddy.cli.commands.registrar.DoContinue;
 import com.godiddy.cli.config.Api;
 import com.godiddy.cli.clistorage.clistate.CLIState;
 import com.godiddy.cli.commands.registrar.ContinueCommand;
@@ -105,6 +106,6 @@ public Integer call() throws Exception {
 
         // continue
 
-        return ContinueCommand.doContinue(interactive);
+        return DoContinue.doContinue(interactive);
     }
 }
diff --git a/src/main/java/com/godiddy/cli/commands/resource/UpdateResourceCommand.java b/src/main/java/com/godiddy/cli/commands/resource/UpdateResourceCommand.java
@@ -6,6 +6,7 @@
 import com.godiddy.cli.GodiddyAbstractCommand;
 import com.godiddy.cli.clistorage.clistate.CLIState;
 import com.godiddy.cli.commands.registrar.ContinueCommand;
+import com.godiddy.cli.commands.registrar.DoContinue;
 import com.godiddy.cli.config.Api;
 import org.apache.logging.log4j.LogManager;
 import org.apache.logging.log4j.Logger;
@@ -128,6 +129,6 @@ public Integer call() throws Exception {
 
         // continue
 
-        return ContinueCommand.doContinue(interactive);
+        return DoContinue.doContinue(interactive);
     }
 }
diff --git a/src/main/java/com/godiddy/cli/config/Kms.java b/src/main/java/com/godiddy/cli/config/Kms.java
@@ -14,8 +14,9 @@ public class Kms {
 
     public enum Value {
         dummy,
-        walletservice,
         local,
+        hashicorp_vault,
+        wallet_service,
         def
     };
 
diff --git a/src/main/java/com/godiddy/cli/config/VaultEndpoint.java b/src/main/java/com/godiddy/cli/config/VaultEndpoint.java
@@ -0,0 +1,27 @@
+package com.godiddy.cli.config;
+
+import com.godiddy.cli.clistorage.cliconfig.CLIConfig;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
+
+import java.util.Map;
+import java.util.Objects;
+
+
+public class VaultEndpoint {
+
+    private static final Logger log = LogManager.getLogger(VaultEndpoint.class);
+
+    public static final String DEFAULT_VAULTENDPOINT = "http://localhost:8200/";
+    public static final Map<String, String> PREDEFINED_VAULTENDPOINTS = Map.of(
+            "def", DEFAULT_VAULTENDPOINT
+    );
+
+    public static String getVaultEndpoint() {
+        String vaultEndpoint = Objects.requireNonNullElse(CLIConfig.getVaultEndpoint(), DEFAULT_VAULTENDPOINT);
+        if (DEFAULT_VAULTENDPOINT.equals(vaultEndpoint)) {
+            log.info("Using default vault endpoint: " + DEFAULT_VAULTENDPOINT);
+        }
+        return vaultEndpoint;
+    }
+}
diff --git a/src/main/java/com/godiddy/cli/config/VaultToken.java b/src/main/java/com/godiddy/cli/config/VaultToken.java
@@ -0,0 +1,27 @@
+package com.godiddy.cli.config;
+
+import com.godiddy.cli.clistorage.cliconfig.CLIConfig;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
+
+import java.util.Map;
+import java.util.Objects;
+
+
+public class VaultToken {
+
+    private static final Logger log = LogManager.getLogger(VaultToken.class);
+
+    public static final String DEFAULT_VAULTTOKEN = "";
+    public static final Map<String, String> PREDEFINED_VAULTTOKENS = Map.of(
+            "def", DEFAULT_VAULTTOKEN
+    );
+
+    public static String getVaultToken() {
+        String vaultEndpoint = Objects.requireNonNullElse(CLIConfig.getVaultToken(), DEFAULT_VAULTTOKEN);
+        if (DEFAULT_VAULTTOKEN.equals(vaultEndpoint)) {
+            log.info("Using default vault token: " + DEFAULT_VAULTTOKEN);
+        }
+        return vaultEndpoint;
+    }
+}
diff --git a/src/main/java/com/godiddy/cli/interfaces/Interfaces.java b/src/main/java/com/godiddy/cli/interfaces/Interfaces.java
@@ -2,13 +2,16 @@
 
 import com.danubetech.kms.clientkeyinterface.ClientKey;
 import com.danubetech.kms.clientkeyinterface.ClientKeyInterface;
+import com.danubetech.kms.clientkeyinterface.ClientKeyInterfaceFactory;
 import com.danubetech.kms.clientkeyinterface.impl.dummy.DummyClientKeyInterface;
 import com.danubetech.kms.clientkeyinterface.impl.local.LocalClientKeyInterface;
 import com.danubetech.kms.clientkeyinterface.impl.walletservice.WalletServiceClientKeyInterface;
 import com.danubetech.kms.clientstateinterface.ClientStateInterface;
 import com.danubetech.walletservice.client.WalletServiceClient;
 import com.godiddy.cli.clistorage.cliwallet.CLIWallet;
 import com.godiddy.cli.config.Kms;
+import com.godiddy.cli.config.VaultEndpoint;
+import com.godiddy.cli.config.VaultToken;
 import com.godiddy.cli.config.WalletServiceBase;
 import com.godiddy.cli.interfaces.clientstateinterface.impl.CLIStateClientStateInterface;
 import org.apache.logging.log4j.LogManager;
@@ -24,12 +27,14 @@ public static ClientKeyInterface<? extends ClientKey> instantiateClientKeyInterf
 
         Kms.Value kms = Kms.getKms();
 
-        ClientKeyInterface<? extends ClientKey> clientKeyInterface = switch (kms) {
-            case dummy -> new DummyClientKeyInterface();
-            case walletservice -> new WalletServiceClientKeyInterface(WalletServiceClient.create(WalletServiceBase.getWalletServiceBase()), null);
-            case local -> new LocalClientKeyInterface(CLIWallet::getWallet, CLIWallet::setWallet);
-            default -> throw new IllegalStateException("Unexpected KMS value: " + kms);
-        };
+        ClientKeyInterface<? extends ClientKey> clientKeyInterface = ClientKeyInterfaceFactory.clientKeyInterface(
+                kms.toString(),
+                CLIWallet::getWallet,
+                CLIWallet::setWallet,
+                WalletServiceBase.getWalletServiceBase(),
+                null,
+                VaultEndpoint.getVaultEndpoint(),
+                VaultToken.getVaultToken());
 
         // done
 

Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,7 @@`
`4`	`4`	`import com.godiddy.api.client.openapi.model.RequestOptions;`
`5`	`5`	`import com.godiddy.api.client.openapi.model.RequestSecret;`
`6`	`6`	`import com.godiddy.cli.GodiddyAbstractCommand;`
	`7`	`+import com.godiddy.cli.commands.registrar.DoContinue;`
`7`	`8`	`import com.godiddy.cli.config.Api;`
`8`	`9`	`import com.godiddy.cli.clistorage.clistate.CLIState;`
`9`	`10`	`import com.godiddy.cli.commands.registrar.ContinueCommand;`
`@@ -123,6 +124,6 @@ public Integer call() throws Exception {`
`123`	`124`
`124`	`125`	`// continue`
`125`	`126`
`126`		`- return ContinueCommand.doContinue(interactive);`
	`127`	`+ return DoContinue.doContinue(interactive);`
`127`	`128`	`}`
`128`	`129`	`}`
Original file line number	Diff line number	Diff line change
`@@ -6,6 +6,7 @@`
`6`	`6`	`import com.godiddy.cli.GodiddyAbstractCommand;`
`7`	`7`	`import com.godiddy.cli.clistorage.clistate.CLIState;`
`8`	`8`	`import com.godiddy.cli.commands.registrar.ContinueCommand;`
	`9`	`+import com.godiddy.cli.commands.registrar.DoContinue;`
`9`	`10`	`import com.godiddy.cli.config.Api;`
`10`	`11`	`import org.apache.logging.log4j.LogManager;`
`11`	`12`	`import org.apache.logging.log4j.Logger;`
`@@ -128,6 +129,6 @@ public Integer call() throws Exception {`
`128`	`129`
`129`	`130`	`// continue`
`130`	`131`
`131`		`- return ContinueCommand.doContinue(interactive);`
	`132`	`+ return DoContinue.doContinue(interactive);`
`132`	`133`	`}`
`133`	`134`	`}`