jprdonnelly/opentf
1
0
Fork 0
mirror of https://github.com/opentffoundation/opentf.git synced 2025-12-19 17:59:05 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
e74bf2d0a18e431250aabdd5eb8aec1d60c6476c
opentf/internal/encryption
History
Larry Bordowitz bcbfebce3d Implement the Azure Key Provider 
This uses the same auth package as the newly-rewritten Azure State
Backend, so many of the properties and environment variables are the
same. I have put this through both the compliance test as well as built
the binary and run some end-to-end tests, and found that it
appropriately uses the Azure key as expected.

Signed-off-by: Larry Bordowitz <laurence.bordowitz@gmail.com>
2025-09-29 06:19:02 -04:00
..
compliancetest
[State Encryption] Compliance tests (#1377)
2024-03-14 15:53:40 +01:00
config
Improve encryption internals and fix a few bugs therein (#2551)
2025-03-06 12:51:09 -05:00
enctest
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
keyprovider
Implement the Azure Key Provider
2025-09-29 06:19:02 -04:00
method
Normalize HCL config paths in TestComplianceBinary/* tests on Windows (#3222)
2025-09-04 13:59:50 -03:00
registry
[State Encryption] Compliance tests (#1377)
2024-03-14 15:53:40 +01:00
base.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
default_registry.go
Implement the Azure Key Provider
2025-09-29 06:19:02 -04:00
dual_custody_test.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
encryption.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
example_test.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
keyprovider_meta_change_test.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
keyprovider.go
Ephemeral variables (#3108)
2025-09-10 07:45:23 -04:00
methods.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
plan.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
README.md
Documentation updates for 1.7.0-alpha1 (state encryption) (#1396)
2024-03-14 15:05:05 +01:00
state.go
tofu: EvalContext expression evaluation takes context.Context (#2937)
2025-06-19 10:46:31 +01:00
targets_test.go
fix: Improve validation for encryption method identifiers (#3048)
2025-07-21 14:38:02 +01:00
targets.go
fix: Improve validation for encryption method identifiers (#3048)
2025-07-21 14:38:02 +01:00

README.md

OpenTofu State and Plan encryption

Warning

This file is not an end-user documentation, it is intended for developers. Please follow the user documentation on the OpenTofu website unless you want to work on the encryption code.

This folder contains the code for state and plan encryption. For a quick example on how to use this package, please take a look at the example_test.go file.

Structure

The current folder contains the top level API. It requires a registry for holding the available key providers and encryption methods, which is located in the registry folder. The key providers are located in the keyprovider folder, while the encryption methods are located in the method folder. You can also find the configuration struct and its related functions in the config folder.

Further reading

For a detailed design document on state encryption, please read this document.

Reference in New Issue View Git Blame Copy Permalink