oracle
diff --git a/‎grabdish/inventory-dotnet/Startup.cs‎
Lines changed: 61 additions & 5 deletions b/‎grabdish/inventory-dotnet/Startup.cs‎
Lines changed: 61 additions & 5 deletions
diff --git a/‎grabdish/inventory-dotnet/deploy.sh‎
Lines changed: 29 additions & 14 deletions b/‎grabdish/inventory-dotnet/deploy.sh‎
Lines changed: 29 additions & 14 deletions
diff --git a/‎grabdish/inventory-dotnet/inventory-dotnet.csproj‎
Lines changed: 2 additions & 0 deletions b/‎grabdish/inventory-dotnet/inventory-dotnet.csproj‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎grabdish/inventory-go/deploy.sh‎
Lines changed: 29 additions & 12 deletions b/‎grabdish/inventory-go/deploy.sh‎
Lines changed: 29 additions & 12 deletions
@@ -5,6 +5,7 @@
 using System.Data.OracleClient;
 using System.Linq;
 using System.Text;
+using System.Threading;
 using System.Threading.Tasks;
 using System.Transactions;
 using Microsoft.AspNetCore.Builder;
@@ -18,6 +19,16 @@
 using Microsoft.OpenApi.Models;
 using Newtonsoft.Json;
 using Oracle.ManagedDataAccess.Client;
+// dotnet add package OCI.DotNetSDK.Common --version 29.0.0
+// dotnet add package OCI.DotNetSDK.Secrets --version 29.0.0
+using System.IO;
+using Oci.SecretsService.Responses;
+using Oci.SecretsService;
+using Oci.Common;
+using Oci.Common.Auth;
+using Oci.SecretsService.Models;
+
+
 
 namespace inventory_dotnet
 {
@@ -79,6 +90,7 @@ public String ListenForMessages()
             //Other options include...
             //   using (TransactionScope scope = new TransactionScope(TransactionScopeOption.Required, TimeSpan.MaxValue))
             //   DbProviderFactory factory = DbProviderFactories.GetFactory("Oracle.ManagedDataAccess.Client"); DbCommand oracleCommand = factory.CreateCommand();
+            getSecretFromVault();
             String tnsAdmin = Environment.GetEnvironmentVariable("TNS_ADMIN");
             OracleConfiguration.WalletLocation = tnsAdmin;
             String pw = Environment.GetEnvironmentVariable("DB_PASSWORD");
@@ -157,7 +169,7 @@ public String ListenForMessages()
                         checkInventoryReturnLocationCommand.Parameters.Add (p_inventorylocationParam);
                         checkInventoryReturnLocationCommand.ExecuteNonQuery();
 
-                        // direct query version (ie not using sproc)...
+                        // direct query version (ie not using stored procedure)...
                         // checkInventoryCommand.CommandText =
                         //     @"update inventory set inventorycount = inventorycount - 1 where inventoryid = " +
                         //     order.itemid +
@@ -183,10 +195,7 @@ public String ListenForMessages()
                         inventory.suggestiveSale = inventoryLocation.Equals("null") ? "" : "beer";
                         string inventoryJSON =
                             JsonConvert.SerializeObject(inventory);
-                        System
-                            .Console
-                            .WriteLine("order.itemid inventoryJSON {0}",
-                            inventoryJSON);
+                        System.Console.WriteLine("order.itemid inventoryJSON {0}", inventoryJSON);
                         //enqueue to inventory queue (in param)
                         OracleCommand inventorySendMessageCommand =
                             new OracleCommand();
@@ -214,5 +223,52 @@ public String ListenForMessages()
                 }
             }
         }
+
+        public String getSecretFromVault() {
+            System.Console.WriteLine("getSecretFromVault ");
+            String vaultSecretOCID = Environment.GetEnvironmentVariable("VAULT_SECRET_OCID");
+            System.Console.WriteLine("vaultSecretOCID {0}", vaultSecretOCID);
+            if (vaultSecretOCID == "") {
+                return "";
+            }
+            String ociRegion = Environment.GetEnvironmentVariable("OCI_REGION");
+            System.Console.WriteLine("ociRegion {0}", ociRegion);
+            if (ociRegion == "") {
+                return "";
+            }
+            var response = getSecretResponse(vaultSecretOCID,ociRegion).GetAwaiter().GetResult();
+            System.Console.WriteLine("getSecretFromVault response {0}", response);
+            System.Console.WriteLine("getSecretFromVault response.SecretBundle.SecretId; {0}", response.SecretBundle.SecretId);
+            System.Console.WriteLine("getSecretFromVault secretBundle {0}", response.SecretBundle.SecretBundleContent);
+            byte[] data = System.Convert.FromBase64String(((Base64SecretBundleContentDetails)response.SecretBundle.SecretBundleContent).Content);
+            System.Console.WriteLine("getSecretFromVault System.Text.ASCIIEncoding.ASCII.GetString(data) {0}", System.Text.ASCIIEncoding.ASCII.GetString(data));
+            return System.Text.ASCIIEncoding.ASCII.GetString(data);
+        }
+
+        public static async Task<GetSecretBundleResponse> getSecretResponse(string vaultSecretOCID, string ociRegion)
+        {
+			var getSecretBundleRequest = new Oci.SecretsService.Requests.GetSecretBundleRequest
+			{
+				// SecretId = "ocid1.vaultsecret.oc1.iad.amaaaaaaq33dybya5qo2jtafngz7krbqdt64fygvm4v5ml7dnamg6ct7vaza"
+				SecretId = vaultSecretOCID
+			};
+            var provider = new InstancePrincipalsAuthenticationDetailsProvider();
+            try
+            {
+				using (var client = new SecretsClient(provider, new ClientConfiguration()))
+				{
+                    // client.SetRegion("us-ashburn-1");
+                    client.SetRegion(ociRegion);
+					return await client.GetSecretBundle(getSecretBundleRequest);
+				}
+            }
+            catch (Exception e)
+            {
+                Console.WriteLine($"GetSecretBundle Failed with {e.Message}");
+                throw e;
+            }
+        }
+        
+
     }
 }
@@ -2,29 +2,44 @@
 ## Copyright (c) 2021 Oracle and/or its affiliates.
 ## Licensed under the Universal Permissive License v 1.0 as shown at https://oss.oracle.com/licenses/upl/
 
-
 SCRIPT_DIR=$(dirname $0)
 
-export DOCKER_REGISTRY="$(state_get DOCKER_REGISTRY)"
-export INVENTORY_PDB_NAME="$(state_get INVENTORY_DB_NAME)"
-export OCI_REGION="$(state_get REGION)"
-export VAULT_SECRET_OCID=""
+if [ -z "$DOCKER_REGISTRY" ]; then
+    echo "DOCKER_REGISTRY not set. Will get it with state_get"
+  export DOCKER_REGISTRY=$(state_get DOCKER_REGISTRY)
+fi
+
+if [ -z "$DOCKER_REGISTRY" ]; then
+    echo "Error: DOCKER_REGISTRY env variable needs to be set!"
+    exit 1
+fi
+
+if [ -z "$INVENTORY_PDB_NAME" ]; then
+    echo "INVENTORY_PDB_NAME not set. Will get it with state_get"
+  export INVENTORY_PDB_NAME=$(state_get INVENTORY_DB_NAME)
+fi
+
+if [ -z "$INVENTORY_PDB_NAME" ]; then
+    echo "Error: INVENTORY_PDB_NAME env variable needs to be set!"
+    exit 1
+fi
 
 echo create inventory-dotnet deployment and service...
 export CURRENTTIME=$( date '+%F_%H:%M:%S' )
 echo CURRENTTIME is $CURRENTTIME  ...this will be appended to generated deployment yaml
 
 cp inventory-dotnet-deployment.yaml inventory-dotnet-deployment-$CURRENTTIME.yaml
-#
-#eval "cat <<EOF
-#$(<$SCRIPT_DIR/inventory-dotnet-deployment-$CURRENTTIME.yaml)
-#EOF" > inventory-dotnet-deployment-$CURRENTTIME.yaml
-
 
-sed_i "s|%DOCKER_REGISTRY%|${DOCKER_REGISTRY}|g" inventory-dotnet-deployment-$CURRENTTIME.yaml
-sed_i "s|%INVENTORY_PDB_NAME%|${INVENTORY_PDB_NAME}|g" inventory-dotnet-deployment-${CURRENTTIME}.yaml
-sed_i "s|%OCI_REGION%|${OCI_REGION}|g" inventory-dotnet-deployment-${CURRENTTIME}.yaml
-sed_i "s|%VAULT_SECRET_OCID%|${VAULT_SECRET_OCID}|g" inventory-dotnet-deployment-${CURRENTTIME}.yaml
+sed -e "s|%DOCKER_REGISTRY%|${DOCKER_REGISTRY}|g" inventory-dotnet-deployment-$CURRENTTIME.yaml > /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml inventory-dotnet-deployment-$CURRENTTIME.yaml
+sed -e "s|%DOCKER_REGISTRY%|${DOCKER_REGISTRY}|g" inventory-dotnet-deployment-$CURRENTTIME.yaml > /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml inventory-dotnet-deployment-$CURRENTTIME.yaml
+sed -e "s|%INVENTORY_PDB_NAME%|${INVENTORY_PDB_NAME}|g" inventory-dotnet-deployment-$CURRENTTIME.yaml > /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml inventory-dotnet-deployment-$CURRENTTIME.yaml
+sed -e "s|%OCI_REGION%|${OCI_REGION}|g" inventory-dotnet-deployment-${CURRENTTIME}.yaml > /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml inventory-dotnet-deployment-$CURRENTTIME.yaml
+sed -e "s|%VAULT_SECRET_OCID%|${VAULT_SECRET_OCID}|g" inventory-dotnet-deployment-${CURRENTTIME}.yaml > /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-dotnet-deployment-$CURRENTTIME.yaml inventory-dotnet-deployment-$CURRENTTIME.yaml
 
 if [ -z "$1" ]; then
     kubectl apply -f $SCRIPT_DIR/inventory-dotnet-deployment-$CURRENTTIME.yaml -n msdataworkshop
 
@@ -7,6 +7,8 @@
 
   <ItemGroup>
     <PackageReference Include="Newtonsoft.Json" Version="13.0.1" />
+    <PackageReference Include="OCI.DotNetSDK.Common" Version="29.0.0" />
+    <PackageReference Include="OCI.DotNetSDK.Secrets" Version="29.0.0" />
     <PackageReference Include="Oracle.ManagedDataAccess.Core" Version="3.21.1" />
     <PackageReference Include="Swashbuckle.AspNetCore" Version="5.6.3" />
   </ItemGroup>
 
@@ -5,26 +5,43 @@
 
 SCRIPT_DIR=$(dirname $0)
 
-export DOCKER_REGISTRY="$(state_get DOCKER_REGISTRY)"
-export INVENTORY_PDB_NAME="$(state_get INVENTORY_DB_NAME)"
-export OCI_REGION="$(state_get REGION)"
-export VAULT_SECRET_OCID=""
+if [ -z "$DOCKER_REGISTRY" ]; then
+    echo "DOCKER_REGISTRY not set. Will get it with state_get"
+  export DOCKER_REGISTRY=$(state_get DOCKER_REGISTRY)
+fi
+
+if [ -z "$DOCKER_REGISTRY" ]; then
+    echo "Error: DOCKER_REGISTRY env variable needs to be set!"
+    exit 1
+fi
+
+if [ -z "$INVENTORY_PDB_NAME" ]; then
+    echo "INVENTORY_PDB_NAME not set. Will get it with state_get"
+  export INVENTORY_PDB_NAME=$(state_get INVENTORY_DB_NAME)
+fi
+
+if [ -z "$INVENTORY_PDB_NAME" ]; then
+    echo "Error: INVENTORY_PDB_NAME env variable needs to be set!"
+    exit 1
+fi
 
 echo create inventory-go deployment and service...
 export CURRENTTIME=$( date '+%F_%H:%M:%S' )
 echo CURRENTTIME is $CURRENTTIME  ...this will be appended to generated deployment yaml
 
 cp inventory-go-deployment.yaml inventory-go-deployment-$CURRENTTIME.yaml
-#
-#eval "cat <<EOF
-#$(<$SCRIPT_DIR/inventory-go-deployment-$CURRENTTIME.yaml)
-#EOF" > inventory-go-deployment-$CURRENTTIME.yaml
 
 
-sed_i "s|%DOCKER_REGISTRY%|${DOCKER_REGISTRY}|g" inventory-go-deployment-$CURRENTTIME.yaml
-sed_i "s|%INVENTORY_PDB_NAME%|${INVENTORY_PDB_NAME}|g" inventory-go-deployment-${CURRENTTIME}.yaml
-sed_i "s|%OCI_REGION%|${OCI_REGION}|g" inventory-go-deployment-${CURRENTTIME}.yaml
-sed_i "s|%VAULT_SECRET_OCID%|${VAULT_SECRET_OCID}|g" inventory-go-deployment-${CURRENTTIME}.yaml
+sed -e "s|%DOCKER_REGISTRY%|${DOCKER_REGISTRY}|g" inventory-go-deployment-$CURRENTTIME.yaml > /tmp/inventory-go-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-go-deployment-$CURRENTTIME.yaml inventory-go-deployment-$CURRENTTIME.yaml
+sed -e "s|%DOCKER_REGISTRY%|${DOCKER_REGISTRY}|g" inventory-go-deployment-$CURRENTTIME.yaml > /tmp/inventory-go-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-go-deployment-$CURRENTTIME.yaml inventory-go-deployment-$CURRENTTIME.yaml
+sed -e "s|%INVENTORY_PDB_NAME%|${INVENTORY_PDB_NAME}|g" inventory-go-deployment-$CURRENTTIME.yaml > /tmp/inventory-go-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-go-deployment-$CURRENTTIME.yaml inventory-go-deployment-$CURRENTTIME.yaml
+sed -e "s|%OCI_REGION%|${OCI_REGION}|g" inventory-go-deployment-${CURRENTTIME}.yaml > /tmp/inventory-go-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-go-deployment-$CURRENTTIME.yaml inventory-go-deployment-$CURRENTTIME.yaml
+sed -e "s|%VAULT_SECRET_OCID%|${VAULT_SECRET_OCID}|g" inventory-go-deployment-${CURRENTTIME}.yaml > /tmp/inventory-go-deployment-$CURRENTTIME.yaml
+mv -- /tmp/inventory-go-deployment-$CURRENTTIME.yaml inventory-go-deployment-$CURRENTTIME.yaml
 
 if [ -z "$1" ]; then
     kubectl apply -f $SCRIPT_DIR/inventory-go-deployment-$CURRENTTIME.yaml -n msdataworkshop