Expand description
A library for working with application configuration files for Nitrokey NetHSM devices
Provides configuration file management for custom applications designed around working with Nitrokey NetHSM devices or containers. Configuration settings allow for individualizing the configuration use and its use-cases (interactive or non-interactive).
A module for interactive prompts provides extra convenience around creating applications that may request further data from their users interactively.
ยงExamples
use nethsm::{ConnectionSecurity, UserRole};
use nethsm_config::{Config, ConfigCredentials, ConfigInteractivity, ConfigSettings};
// a configuration for a non-interactive application called "my_app"
let config_settings = ConfigSettings::new(
"my_app".to_string(),
ConfigInteractivity::NonInteractive,
None,
);
// let's assume a custom configuration file path
let tmpfile = testdir::testdir!().join("my_app.conf");
let config = Config::new(config_settings, Some(&tmpfile))?;
// add a first device to commnicate with
config.add_device(
"nethsm1".to_string(),
"https://example.org/api/v1".parse()?,
ConnectionSecurity::Unsafe,
)?;
// add credentials to communicate with the the device
config.add_credentials(
"nethsm1".to_string(),
ConfigCredentials::new(
UserRole::Administrator,
"admin1".parse()?,
Some("my-passphrase".to_string()),
),
)?;
// write configuration to file
config.store(Some(&tmpfile))?;
Modulesยง
- config ๐
- credentials ๐
- mapping ๐
- prompt ๐
Structsยง
- An entry of an authorized_keys file
- A list of
AuthorizedKeyEntry
s - A configuration for NetHSM devices
- A set of credentials for a [
NetHsm
][nethsm::NetHsm
] - The name of a configuration
- The settings for a
Config
- The connection of a device
- The configuration for a [
NetHsm
] - A configuration for parallel use of connections with a set of system and NetHSM users.
- A set of users with unique [
UserId
]s, used for metrics retrieval - The name of a user on a Unix system
- A guaranteed to be system-wide [
NetHsm
][nethsm::NetHsm
] user - Username prompt
Enumsยง
- The handling of administrative secrets.
- The interactivity of a configuration
- Errors related to configuration
- The handling of non-administrative secrets.
- Passphrase prompt
- User mapping between system users and [
NetHsm
][nethsm::NetHsm
] users