initial commit

Author: mister-ken

.github/workflows/docker-build.yaml

@@ -0,0 +1,52 @@
+name: Docker Image CI
+
+# publish new image when changes are made to the 
+# Dockerfile, main.go, or any files in the templates directory
+on:
+  push:
+    paths:
+      - 'Dockerfile'
+      - 'main.go'
+      - 'templates/**'
+
+env:
+  REGISTRY: ghcr.io
+  REPOSITORY: ${{ github.repository }}
+  IMAGE_NAME: vault-sdk-go-app
+
+jobs:
+   build:
+      name: Build docker images
+      runs-on: ubuntu-latest
+
+      permissions:
+         contents: read
+         packages: write
+         attestations: write
+         id-token: write
+
+      steps:
+         - name: checkout code
+           uses: actions/checkout@v5
+         - name: Login to GitHub Container Registry
+           uses: docker/login-action@v4
+           with:
+               registry: ${{ env.REGISTRY }}
+               username: ${{ github.actor }} 
+               password: ${{ secrets.GH_TOKEN_PACKAGES }}
+
+         - name: Extract metadata for Docker
+           id: meta
+           uses: docker/metadata-action@v4
+           with:
+               images: ${{ env.REGISTRY }}/${{ env.REPOSITORY }}/${{ env.IMAGE_NAME }}
+               tags: type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', 'main') }}
+         - name: Build and push Landing Page Docker image
+           uses: docker/build-push-action@v7
+           with:
+              file: ./Dockerfile
+              context: .
+              push: true
+              github-token: ${{ secrets.GH_TOKEN_PACKAGES }}
+              tags: ${{ steps.meta.outputs.tags }}
+              labels: ${{ steps.meta.outputs.labels }}

.gitignore

@@ -0,0 +1,42 @@
+*.exe
+*.exe~
+pc
+**/pc
+*tfstate*
+*.zip
+*.tar.gz
+*.rar
+*.plan
+public/**
+themes/**
+**.DS_Store
+**.git
+logs/**
+junk/**
+
+## terraform files
+*.tfstate
+*.tfstate.*
+.terraform/**
+**/.terraform/**
+.terraform.tfstate.lock.info
+**/.terraform.tfstate.lock.info
+tf.plan
+tfplan
+crash.log
+crash.*.log
+
+.vscode
+!.vale.ini
+.styles/**
+.vscode/**
+**settings.json*
+python/public
+env/
+out/
+~
+nohup.out
+env/
+actions-runner/**
+token
+*.old

Dockerfile

@@ -0,0 +1,13 @@
+# syntax=docker/dockerfile:1
+
+FROM golang:1.25
+LABEL org.opencontainers.image.source=https://github.com/mister-ken/github-action-test
+WORKDIR /app
+COPY go.mod go.sum ./
+RUN go mod download
+COPY *.go ./
+ADD templates /app/templates
+RUN CGO_ENABLED=0 GOOS=linux go build -o test-vault-client
+EXPOSE 8080
+# CMD ["./test-vault-client"]
+CMD ["sleep", "infinity"]

Justfile

@@ -0,0 +1,59 @@
+set shell := ["bash", "-c"]
+set positional-arguments
+
+default: all
+all: version build deploy-k8s status test clean
+clean-all: clean
+
+[group('k8s')]
+version:
+   @echo ">> running $0"
+   vault version
+   docker --version
+   kubectl version --client
+   minikube version
+
+[group('k8s')]
+build: clean
+   @echo ">> running $0"
+   docker build --tag k8s-vault-client . 
+   kubectl get  secret vault-auth-secret -o json | jq -r ".data.token" | base64 --decode > token
+
+[group('k8s')]
+deploy-k8s:
+   @echo ">> running $0"
+   minikube image load docker.io/library/k8s-vault-client:latest
+   kubectl apply -f manifests/go-app.yaml
+   echo "kubectl port-forward pod/vault-client 8080:8080"
+
+[group('k8s')]
+status:
+   @echo ">> running $0"
+   kubectl get pods
+
+[group('exe')]
+test:
+   @echo ">> running $0"
+   go run main.go
+
+[group('docker')]
+test-docker:
+   @echo ">> running $0"
+   docker run -d --name k8s-vault-client --publish 8080:8080 k8s-vault-client
+
+
+[group('k8s')]
+test-k8s:
+   @echo ">> running $0"
+   kubectl apply -f k8s-auth/go-app.yaml
+   echo "kubectl port-forward pod/devwebapp 8080:8080"
+
+[group('k8s')]
+clean:
+   @echo ">> running $0"
+   kubectl delete -f go-app.yaml || true
+   kubectl apply -f vault-auth-service-account.yaml || true
+   kubectl apply -f vault-auth-secret.yaml || true
+   minikube image rm docker.io/library/k8s-vault-client:latest || true
+   docker stop $(docker ps -aq --filter name=k8s-vault-client) || true
+   docker rm $(docker ps -aq --filter name=k8s-vault-client) || true

README.md

@@ -1 +1,14 @@
-# learn-vault-golang-sdk
+# Image k8s auth with SDK
+
+Container with Kubernetes authentication and the Vault Go SDK.  It is used in the devdot tutorial for the Vault SDK.
+
+## update image used in the tutorial
+
+If you update Dockerfile, main.go or anyfile the `templates/` folder there is a github action to update the image.  Check the actions tab to see if the action was a success then it will be available through a git pull.
+
+```
+docker pull ghcr.io/mister-ken/github-action-test/k8s-vault-client:latest  
+```
+
+The the [package page](https://github.com/mister-ken/github-action-test/pkgs/container/github-action-test%2Fk8s-vault-client) for more details.
+>>>>>>> 2ce8bcd (initial commit)

go.mod

@@ -0,0 +1,95 @@
+module github.gom/hashicorp/hello-vault-go/quick-start
+
+go 1.23.0
+
+toolchain go1.24.4
+
+require (
+	github.com/gin-gonic/gin v1.11.0
+	github.com/hashicorp/vault/api v1.22.0
+	github.com/hashicorp/vault/api/auth/approle v0.11.0
+	github.com/hashicorp/vault/api/auth/aws v0.11.0
+	github.com/hashicorp/vault/api/auth/azure v0.10.0
+	github.com/hashicorp/vault/api/auth/gcp v0.11.0
+	github.com/hashicorp/vault/api/auth/kubernetes v0.10.0
+	github.com/hashicorp/vault/api/auth/userpass v0.11.0
+)
+
+require (
+	cloud.google.com/go/auth v0.16.2 // indirect
+	cloud.google.com/go/auth/oauth2adapt v0.2.8 // indirect
+	cloud.google.com/go/compute/metadata v0.7.0 // indirect
+	cloud.google.com/go/iam v1.5.2 // indirect
+	github.com/aws/aws-sdk-go v1.55.7 // indirect
+	github.com/bytedance/sonic v1.14.0 // indirect
+	github.com/bytedance/sonic/loader v0.3.0 // indirect
+	github.com/cenkalti/backoff/v4 v4.3.0 // indirect
+	github.com/cloudwego/base64x v0.1.6 // indirect
+	github.com/fatih/color v1.18.0 // indirect
+	github.com/felixge/httpsnoop v1.0.4 // indirect
+	github.com/gabriel-vasile/mimetype v1.4.8 // indirect
+	github.com/gin-contrib/sse v1.1.0 // indirect
+	github.com/go-jose/go-jose/v4 v4.1.1 // indirect
+	github.com/go-logr/logr v1.4.2 // indirect
+	github.com/go-logr/stdr v1.2.2 // indirect
+	github.com/go-playground/locales v0.14.1 // indirect
+	github.com/go-playground/universal-translator v0.18.1 // indirect
+	github.com/go-playground/validator/v10 v10.27.0 // indirect
+	github.com/goccy/go-json v0.10.2 // indirect
+	github.com/goccy/go-yaml v1.18.0 // indirect
+	github.com/google/s2a-go v0.1.9 // indirect
+	github.com/googleapis/enterprise-certificate-proxy v0.3.6 // indirect
+	github.com/googleapis/gax-go/v2 v2.14.2 // indirect
+	github.com/hashicorp/errwrap v1.1.0 // indirect
+	github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
+	github.com/hashicorp/go-hclog v1.6.3 // indirect
+	github.com/hashicorp/go-multierror v1.1.1 // indirect
+	github.com/hashicorp/go-retryablehttp v0.7.8 // indirect
+	github.com/hashicorp/go-rootcerts v1.0.2 // indirect
+	github.com/hashicorp/go-secure-stdlib/awsutil v0.3.0 // indirect
+	github.com/hashicorp/go-secure-stdlib/parseutil v0.2.0 // indirect
+	github.com/hashicorp/go-secure-stdlib/strutil v0.1.2 // indirect
+	github.com/hashicorp/go-sockaddr v1.0.7 // indirect
+	github.com/hashicorp/go-uuid v1.0.2 // indirect
+	github.com/hashicorp/hcl v1.0.1-vault-7 // indirect
+	github.com/jmespath/go-jmespath v0.4.0 // indirect
+	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/klauspost/cpuid/v2 v2.3.0 // indirect
+	github.com/leodido/go-urn v1.4.0 // indirect
+	github.com/mattn/go-colorable v0.1.14 // indirect
+	github.com/mattn/go-isatty v0.0.20 // indirect
+	github.com/mitchellh/go-homedir v1.1.0 // indirect
+	github.com/mitchellh/mapstructure v1.5.0 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421 // indirect
+	github.com/modern-go/reflect2 v1.0.2 // indirect
+	github.com/pelletier/go-toml/v2 v2.2.4 // indirect
+	github.com/pkg/errors v0.9.1 // indirect
+	github.com/quic-go/qpack v0.5.1 // indirect
+	github.com/quic-go/quic-go v0.54.0 // indirect
+	github.com/ryanuber/go-glob v1.0.0 // indirect
+	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
+	github.com/ugorji/go/codec v1.3.0 // indirect
+	go.opentelemetry.io/auto/sdk v1.1.0 // indirect
+	go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 // indirect
+	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.61.0 // indirect
+	go.opentelemetry.io/otel v1.36.0 // indirect
+	go.opentelemetry.io/otel/metric v1.36.0 // indirect
+	go.opentelemetry.io/otel/trace v1.36.0 // indirect
+	go.uber.org/mock v0.5.0 // indirect
+	golang.org/x/arch v0.20.0 // indirect
+	golang.org/x/crypto v0.40.0 // indirect
+	golang.org/x/mod v0.25.0 // indirect
+	golang.org/x/net v0.42.0 // indirect
+	golang.org/x/oauth2 v0.30.0 // indirect
+	golang.org/x/sync v0.16.0 // indirect
+	golang.org/x/sys v0.35.0 // indirect
+	golang.org/x/text v0.27.0 // indirect
+	golang.org/x/time v0.12.0 // indirect
+	golang.org/x/tools v0.34.0 // indirect
+	google.golang.org/api v0.242.0 // indirect
+	google.golang.org/genproto v0.0.0-20250505200425-f936aa4a68b2 // indirect
+	google.golang.org/genproto/googleapis/api v0.0.0-20250505200425-f936aa4a68b2 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20250603155806-513f23925822 // indirect
+	google.golang.org/grpc v1.73.0 // indirect
+	google.golang.org/protobuf v1.36.9 // indirect
+)