mirror of
https://github.com/containers/podman.git
synced 2025-10-25 02:04:43 +08:00
832a69b0be
Implement podman secret create, inspect, ls, rm Implement podman run/create --secret Secrets are blobs of data that are sensitive. Currently, the only secret driver supported is filedriver, which means creating a secret stores it in base64 unencrypted in a file. After creating a secret, a user can use the --secret flag to expose the secret inside the container at /run/secrets/[secretname] This secret will not be commited to an image on a podman commit Signed-off-by: Ashley Cui <acui@redhat.com>
37 lines
810 B
Bash
37 lines
810 B
Bash
# -*- sh -*-
|
|
#
|
|
# secret-related tests
|
|
#
|
|
|
|
# secret create
|
|
t POST secrets/create '"Name":"mysecret","Data":"c2VjcmV0"' 200\
|
|
.ID~.* \
|
|
|
|
# secret create unsupported labels
|
|
t POST secrets/create '"Name":"mysecret","Data":"c2VjcmV0","Labels":{"fail":"fail"}' 400
|
|
|
|
# secret create name already in use
|
|
t POST secrets/create '"Name":"mysecret","Data":"c2VjcmV0"' 409
|
|
|
|
# secret inspect
|
|
t GET secrets/mysecret 200\
|
|
.Spec.Name=mysecret
|
|
|
|
# secret inspect non-existent secret
|
|
t GET secrets/bogus 404
|
|
|
|
# secret list
|
|
t GET secrets 200\
|
|
length=1
|
|
|
|
# secret list unsupported filters
|
|
t GET secrets?filters=%7B%22name%22%3A%5B%22foo1%22%5D%7D 400
|
|
|
|
# secret rm
|
|
t DELETE secrets/mysecret 204
|
|
# secret rm non-existent secret
|
|
t DELETE secrets/bogus 404
|
|
|
|
# secret update not implemented
|
|
t POST secrets/mysecret/update "" 501
|