This is an automated email from the ASF dual-hosted git repository.
jamesnetherton pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/camel-quarkus.git
The following commit(s) were added to refs/heads/main by this push:
new 9f0bd4e3b1 Add Cyber Ark vault extension
9f0bd4e3b1 is described below
commit 9f0bd4e3b13bd507e0892ae0acd80b3f0150fdca
Author: JiriOndrusek <[email protected]>
AuthorDate: Tue Jan 13 14:17:51 2026 +0100
Add Cyber Ark vault extension
Fixes #8037
---
catalog/pom.xml | 13 ++
.../ROOT/examples/components/cyberark-vault.yml | 13 ++
docs/modules/ROOT/nav.adoc | 1 +
.../pages/reference/extensions/cyberark-vault.adoc | 45 ++++++
extensions/cyberark-vault/deployment/pom.xml | 63 ++++++++
.../vault/deployment/CyberarkVaultProcessor.java | 30 ++++
extensions/cyberark-vault/pom.xml | 39 +++++
extensions/cyberark-vault/runtime/pom.xml | 101 +++++++++++++
.../main/resources/META-INF/quarkus-extension.yaml | 33 +++++
extensions/pom.xml | 1 +
integration-tests/cyberark-vault/README.adoc | 32 ++++
integration-tests/cyberark-vault/pom.xml | 148 +++++++++++++++++++
.../cyberark/vault/it/CyberArkRoutes.java | 58 ++++++++
.../cyberark/vault/it/CyberarkVaultResource.java | 59 ++++++++
.../src/main/resources/application.properties | 23 +++
.../cyberark/vault/it/CyberarkVaultIT.java | 24 +++
.../cyberark/vault/it/CyberarkVaultTest.java | 63 ++++++++
.../vault/it/CyberarkVaultTestResource.java | 162 +++++++++++++++++++++
.../src/test/resources/conf/default.conf | 12 ++
.../src/test/resources/conf/policy/BotApp.yml | 34 +++++
.../src/test/resources/conf/tls/tls.conf | 39 +++++
.../src/test/resources/docker-compose.yml | 104 +++++++++++++
integration-tests/cyberark-vault/startConjur.sh | 82 +++++++++++
integration-tests/cyberark-vault/stopConjur.sh | 28 ++++
integration-tests/pom.xml | 1 +
poms/bom/pom.xml | 15 ++
poms/bom/src/main/generated/flattened-full-pom.xml | 15 ++
.../src/main/generated/flattened-reduced-pom.xml | 15 ++
.../generated/flattened-reduced-verbose-pom.xml | 15 ++
tooling/scripts/test-categories.yaml | 1 +
30 files changed, 1269 insertions(+)
diff --git a/catalog/pom.xml b/catalog/pom.xml
index 7fd6c2bd58..fa9fb58756 100644
--- a/catalog/pom.xml
+++ b/catalog/pom.xml
@@ -1033,6 +1033,19 @@
</exclusion>
</exclusions>
</dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault</artifactId>
+ <version>${project.version}</version>
+ <type>pom</type>
+ <scope>test</scope>
+ <exclusions>
+ <exclusion>
+ <groupId>*</groupId>
+ <artifactId>*</artifactId>
+ </exclusion>
+ </exclusions>
+ </dependency>
<dependency>
<groupId>org.apache.camel.quarkus</groupId>
<artifactId>camel-quarkus-dataformat</artifactId>
diff --git a/docs/modules/ROOT/examples/components/cyberark-vault.yml
b/docs/modules/ROOT/examples/components/cyberark-vault.yml
new file mode 100644
index 0000000000..24bf5cc821
--- /dev/null
+++ b/docs/modules/ROOT/examples/components/cyberark-vault.yml
@@ -0,0 +1,13 @@
+# Do not edit directly!
+# This file was generated by
camel-quarkus-maven-plugin:update-extension-doc-page
+cqArtifactId: camel-quarkus-cyberark-vault
+cqArtifactIdBase: cyberark-vault
+cqNativeSupported: true
+cqStatus: Stable
+cqDeprecated: false
+cqJvmSince: 3.31.0
+cqNativeSince: 3.31.0
+cqCamelPartName: cyberark-vault
+cqCamelPartTitle: CyberArk Vault
+cqCamelPartDescription: Retrieve secrets from CyberArk Conjur Vault.
+cqExtensionPageTitle: CyberArk Vault
diff --git a/docs/modules/ROOT/nav.adoc b/docs/modules/ROOT/nav.adoc
index dc98a029d3..3aeb8294c3 100644
--- a/docs/modules/ROOT/nav.adoc
+++ b/docs/modules/ROOT/nav.adoc
@@ -101,6 +101,7 @@
*** xref:reference/extensions/couchbase.adoc[Couchbase]
*** xref:reference/extensions/cron.adoc[Cron]
*** xref:reference/extensions/crypto.adoc[Crypto (JCE)]
+*** xref:reference/extensions/cyberark-vault.adoc[CyberArk Vault]
*** xref:reference/extensions/dfdl.adoc[DFDL]
*** xref:reference/extensions/dns.adoc[DNS]
*** xref:reference/extensions/dsl-modeline.adoc[DSL Modeline]
diff --git a/docs/modules/ROOT/pages/reference/extensions/cyberark-vault.adoc
b/docs/modules/ROOT/pages/reference/extensions/cyberark-vault.adoc
new file mode 100644
index 0000000000..18954348a9
--- /dev/null
+++ b/docs/modules/ROOT/pages/reference/extensions/cyberark-vault.adoc
@@ -0,0 +1,45 @@
+// Do not edit directly!
+// This file was generated by
camel-quarkus-maven-plugin:update-extension-doc-page
+[id="extensions-cyberark-vault"]
+= CyberArk Vault
+:linkattrs:
+:cq-artifact-id: camel-quarkus-cyberark-vault
+:cq-native-supported: true
+:cq-status: Stable
+:cq-status-deprecation: Stable
+:cq-description: Retrieve secrets from CyberArk Conjur Vault.
+:cq-deprecated: false
+:cq-jvm-since: 3.31.0
+:cq-native-since: 3.31.0
+
+ifeval::[{doc-show-badges} == true]
+[.badges]
+[.badge-key]##JVM since##[.badge-supported]##3.31.0## [.badge-key]##Native
since##[.badge-supported]##3.31.0##
+endif::[]
+
+Retrieve secrets from CyberArk Conjur Vault.
+
+[id="extensions-cyberark-vault-whats-inside"]
+== What's inside
+
+* xref:{cq-camel-components}::cyberark-vault-component.adoc[CyberArk Vault
component], URI syntax: `cyberark-vault:label`
+
+Please refer to the above link for usage and configuration details.
+
+[id="extensions-cyberark-vault-maven-coordinates"]
+== Maven coordinates
+
+https://{link-quarkus-code-generator}/?extension-search=camel-quarkus-cyberark-vault[Create
a new project with this extension on {link-quarkus-code-generator},
window="_blank"]
+
+Or add the coordinates to your existing project:
+
+[source,xml]
+----
+<dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault</artifactId>
+</dependency>
+----
+ifeval::[{doc-show-user-guide-link} == true]
+Check the xref:user-guide/index.adoc[User guide] for more information about
writing Camel Quarkus applications.
+endif::[]
diff --git a/extensions/cyberark-vault/deployment/pom.xml
b/extensions/cyberark-vault/deployment/pom.xml
new file mode 100644
index 0000000000..ef1e7fbe98
--- /dev/null
+++ b/extensions/cyberark-vault/deployment/pom.xml
@@ -0,0 +1,63 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+
+-->
+<project xmlns="http://maven.apache.org/POM/4.0.0";
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
+ xsi:schemaLocation="http://maven.apache.org/POM/4.0.0
http://maven.apache.org/xsd/maven-4.0.0.xsd";>
+ <modelVersion>4.0.0</modelVersion>
+ <parent>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault-parent</artifactId>
+ <version>3.31.0-SNAPSHOT</version>
+ <relativePath>../pom.xml</relativePath>
+ </parent>
+
+ <artifactId>camel-quarkus-cyberark-vault-deployment</artifactId>
+ <name>Camel Quarkus :: CyberArk Vault :: Deployment</name>
+
+ <dependencies>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-core-deployment</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault</artifactId>
+ </dependency>
+ </dependencies>
+
+ <build>
+ <plugins>
+ <plugin>
+ <groupId>org.apache.maven.plugins</groupId>
+ <artifactId>maven-compiler-plugin</artifactId>
+ <configuration>
+ <annotationProcessorPaths>
+ <path>
+ <groupId>io.quarkus</groupId>
+
<artifactId>quarkus-extension-processor</artifactId>
+ <version>${quarkus.version}</version>
+ </path>
+ </annotationProcessorPaths>
+ </configuration>
+ </plugin>
+ </plugins>
+ </build>
+
+</project>
diff --git
a/extensions/cyberark-vault/deployment/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/deployment/CyberarkVaultProcessor.java
b/extensions/cyberark-vault/deployment/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/deployment/CyberarkVaultProcessor.java
new file mode 100644
index 0000000000..b464efa0a3
--- /dev/null
+++
b/extensions/cyberark-vault/deployment/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/deployment/CyberarkVaultProcessor.java
@@ -0,0 +1,30 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.camel.quarkus.component.cyberark.vault.deployment;
+
+import io.quarkus.deployment.annotations.BuildStep;
+import io.quarkus.deployment.builditem.FeatureBuildItem;
+
+class CyberarkVaultProcessor {
+
+ private static final String FEATURE = "camel-cyberark-vault";
+
+ @BuildStep
+ FeatureBuildItem feature() {
+ return new FeatureBuildItem(FEATURE);
+ }
+}
diff --git a/extensions/cyberark-vault/pom.xml
b/extensions/cyberark-vault/pom.xml
new file mode 100644
index 0000000000..a8b395d280
--- /dev/null
+++ b/extensions/cyberark-vault/pom.xml
@@ -0,0 +1,39 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+
+-->
+<project xmlns="http://maven.apache.org/POM/4.0.0";
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
+ xsi:schemaLocation="http://maven.apache.org/POM/4.0.0
http://maven.apache.org/xsd/maven-4.0.0.xsd";>
+ <modelVersion>4.0.0</modelVersion>
+ <parent>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-extensions</artifactId>
+ <version>3.31.0-SNAPSHOT</version>
+ <relativePath>../pom.xml</relativePath>
+ </parent>
+
+ <artifactId>camel-quarkus-cyberark-vault-parent</artifactId>
+ <name>Camel Quarkus :: CyberArk Vault</name>
+ <packaging>pom</packaging>
+
+ <modules>
+ <module>deployment</module>
+ <module>runtime</module>
+ </modules>
+</project>
diff --git a/extensions/cyberark-vault/runtime/pom.xml
b/extensions/cyberark-vault/runtime/pom.xml
new file mode 100644
index 0000000000..1e2674c2a7
--- /dev/null
+++ b/extensions/cyberark-vault/runtime/pom.xml
@@ -0,0 +1,101 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+
+-->
+<project xmlns="http://maven.apache.org/POM/4.0.0";
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
+ xsi:schemaLocation="http://maven.apache.org/POM/4.0.0
http://maven.apache.org/xsd/maven-4.0.0.xsd";>
+ <modelVersion>4.0.0</modelVersion>
+ <parent>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault-parent</artifactId>
+ <version>3.31.0-SNAPSHOT</version>
+ <relativePath>../pom.xml</relativePath>
+ </parent>
+
+ <artifactId>camel-quarkus-cyberark-vault</artifactId>
+ <name>Camel Quarkus :: CyberArk Vault :: Runtime</name>
+ <description>Retrieve secrets from CyberArk Conjur Vault.</description>
+
+ <properties>
+ <camel.quarkus.jvmSince>3.31.0</camel.quarkus.jvmSince>
+ <camel.quarkus.nativeSince>3.31.0</camel.quarkus.nativeSince>
+ </properties>
+
+ <dependencies>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-core</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel</groupId>
+ <artifactId>camel-cyberark-vault</artifactId>
+ </dependency>
+ </dependencies>
+
+ <build>
+ <plugins>
+ <plugin>
+ <groupId>io.quarkus</groupId>
+ <artifactId>quarkus-extension-maven-plugin</artifactId>
+ </plugin>
+ <plugin>
+ <groupId>org.apache.maven.plugins</groupId>
+ <artifactId>maven-compiler-plugin</artifactId>
+ <configuration>
+ <annotationProcessorPaths>
+ <path>
+ <groupId>io.quarkus</groupId>
+
<artifactId>quarkus-extension-processor</artifactId>
+ <version>${quarkus.version}</version>
+ </path>
+ </annotationProcessorPaths>
+ </configuration>
+ </plugin>
+ </plugins>
+ </build>
+
+
+ <profiles>
+ <profile>
+ <id>full</id>
+ <activation>
+ <property>
+ <name>!quickly</name>
+ </property>
+ </activation>
+ <build>
+ <plugins>
+ <plugin>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-maven-plugin</artifactId>
+ <executions>
+ <execution>
+ <id>update-extension-doc-page</id>
+ <goals>
+ <goal>update-extension-doc-page</goal>
+ </goals>
+ <phase>process-classes</phase>
+ </execution>
+ </executions>
+ </plugin>
+ </plugins>
+ </build>
+ </profile>
+ </profiles>
+</project>
diff --git
a/extensions/cyberark-vault/runtime/src/main/resources/META-INF/quarkus-extension.yaml
b/extensions/cyberark-vault/runtime/src/main/resources/META-INF/quarkus-extension.yaml
new file mode 100644
index 0000000000..041af4573f
--- /dev/null
+++
b/extensions/cyberark-vault/runtime/src/main/resources/META-INF/quarkus-extension.yaml
@@ -0,0 +1,33 @@
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+# This is a generated file. Do not edit directly!
+# To re-generate, run the following command from the top level directory:
+#
+# mvn -N cq:update-quarkus-metadata
+#
+---
+name: "Camel CyberArk Vault"
+description: "Retrieve secrets from CyberArk Conjur Vault"
+metadata:
+ icon-url:
"https://raw.githubusercontent.com/apache/camel-website/main/antora-ui-camel/src/img/logo-d.svg";
+ sponsor: "Apache Software Foundation"
+ guide:
"https://camel.apache.org/camel-quarkus/latest/reference/extensions/cyberark-vault.html";
+ categories:
+ - "integration"
+ status:
+ - "stable"
diff --git a/extensions/pom.xml b/extensions/pom.xml
index 30a865c7d5..2b7e4d5bad 100644
--- a/extensions/pom.xml
+++ b/extensions/pom.xml
@@ -91,6 +91,7 @@
<module>csimple</module>
<module>csv</module>
<module>cxf-soap</module>
+ <module>cyberark-vault</module>
<module>dataformat</module>
<module>dataset</module>
<module>datasonnet</module>
diff --git a/integration-tests/cyberark-vault/README.adoc
b/integration-tests/cyberark-vault/README.adoc
new file mode 100644
index 0000000000..84c398062e
--- /dev/null
+++ b/integration-tests/cyberark-vault/README.adoc
@@ -0,0 +1,32 @@
+= Cyber Ark Conjur integration tests
+
+=== Localstack
+
+The tests are able to run against the docker by default.
+
+The docker environment is not started when complete configuration is provided
via environmental properties.
+
+=== Real CyberArk Vault API
+
+To run the tests against the real CyberArk Conjur API, you need to
+
+* Export your CyberArk real configuration
+* Upload policy from the test resources
+* Export usernames and api keys
+
+or use docker-compose from
https://github.com/cyberark/conjur-quickstart[conjur quickstart]
+
+* You can use scripts `startConjur.sh` and `stopConjur.sh`
+* Export all environmental properties provided by the start script
+[source,shell]
+----
+export CQ_CONJUR_URL=http://localhost:8080/
+export CQ_CONJUR_ACCOUNT=myConjurAccount
+export CQ_CONJUR_READ_USER=host/BotApp/myDemoApp
+export CQ_CONJUR_READ_USER_API_KEY=...
+export CQ_CONJUR_READ_WRITE_USER=user/Dave@BotApp
+export CQ_CONJUR_READ_WRITE_USER_API_KEY=...
+# to avoid port conflict with quarkus (against opensource conjur)
+export QUARKUS_HTTP_PORT=0
+export QUARKUS_HTTPS_PORT=0
+----
diff --git a/integration-tests/cyberark-vault/pom.xml
b/integration-tests/cyberark-vault/pom.xml
new file mode 100644
index 0000000000..673e9b3c05
--- /dev/null
+++ b/integration-tests/cyberark-vault/pom.xml
@@ -0,0 +1,148 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+
+-->
+<project xmlns="http://maven.apache.org/POM/4.0.0";
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
+ xsi:schemaLocation="http://maven.apache.org/POM/4.0.0
http://maven.apache.org/xsd/maven-4.0.0.xsd";>
+ <modelVersion>4.0.0</modelVersion>
+ <parent>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-build-parent-it</artifactId>
+ <version>3.31.0-SNAPSHOT</version>
+ <relativePath>../../poms/build-parent-it/pom.xml</relativePath>
+ </parent>
+
+ <artifactId>camel-quarkus-integration-test-cyberark-vault</artifactId>
+ <name>Camel Quarkus :: Integration Tests :: CyberArk Vault</name>
+ <description>Integration tests for Camel Quarkus CyberArk Vault
extension</description>
+
+ <dependencies>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-direct-deployment</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>io.quarkus</groupId>
+ <artifactId>quarkus-resteasy</artifactId>
+ </dependency>
+
+ <!-- test dependencies -->
+ <dependency>
+ <groupId>io.quarkus</groupId>
+ <artifactId>quarkus-junit5</artifactId>
+ <scope>test</scope>
+ </dependency>
+ <dependency>
+ <groupId>io.rest-assured</groupId>
+ <artifactId>rest-assured</artifactId>
+ <scope>test</scope>
+ </dependency>
+ <dependency>
+ <groupId>org.testcontainers</groupId>
+ <artifactId>testcontainers</artifactId>
+ <scope>test</scope>
+ <exclusions>
+ <exclusion>
+ <groupId>junit</groupId>
+ <artifactId>junit</artifactId>
+ </exclusion>
+ </exclusions>
+ </dependency>
+ <dependency>
+ <groupId>io.quarkus</groupId>
+ <artifactId>quarkus-junit4-mock</artifactId>
+ <scope>test</scope>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-integration-test-support</artifactId>
+ <scope>test</scope>
+ </dependency>
+ </dependencies>
+
+ <profiles>
+ <profile>
+ <id>native</id>
+ <activation>
+ <property>
+ <name>native</name>
+ </property>
+ </activation>
+ <properties>
+ <quarkus.native.enabled>true</quarkus.native.enabled>
+ </properties>
+ <build>
+ <plugins>
+ <plugin>
+ <groupId>org.apache.maven.plugins</groupId>
+ <artifactId>maven-failsafe-plugin</artifactId>
+ <executions>
+ <execution>
+ <goals>
+ <goal>integration-test</goal>
+ <goal>verify</goal>
+ </goals>
+ </execution>
+ </executions>
+ </plugin>
+ </plugins>
+ </build>
+ </profile>
+ <profile>
+ <id>virtualDependencies</id>
+ <activation>
+ <property>
+ <name>!noVirtualDependencies</name>
+ </property>
+ </activation>
+ <dependencies>
+ <!-- The following dependencies guarantee that this module is
built after them. You can update them by running `mvn process-resources
-Pformat -N` from the source tree root directory -->
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+
<artifactId>camel-quarkus-cyberark-vault-deployment</artifactId>
+ <version>${project.version}</version>
+ <type>pom</type>
+ <scope>test</scope>
+ <exclusions>
+ <exclusion>
+ <groupId>*</groupId>
+ <artifactId>*</artifactId>
+ </exclusion>
+ </exclusions>
+ </dependency>
+ </dependencies>
+ </profile>
+ <profile>
+ <id>skip-testcontainers-tests</id>
+ <activation>
+ <property>
+ <name>skip-testcontainers-tests</name>
+ </property>
+ </activation>
+ <properties>
+ <skipTests>true</skipTests>
+ </properties>
+ </profile>
+ </profiles>
+
+</project>
diff --git
a/integration-tests/cyberark-vault/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberArkRoutes.java
b/integration-tests/cyberark-vault/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberArkRoutes.java
new file mode 100644
index 0000000000..afc84ade70
--- /dev/null
+++
b/integration-tests/cyberark-vault/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberArkRoutes.java
@@ -0,0 +1,58 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.camel.quarkus.component.cyberark.vault.it;
+
+import jakarta.enterprise.context.ApplicationScoped;
+import org.apache.camel.builder.RouteBuilder;
+import org.eclipse.microprofile.config.inject.ConfigProperty;
+
+@ApplicationScoped
+public class CyberArkRoutes extends RouteBuilder {
+
+ @ConfigProperty(name = "conjur.url")
+ String url;
+ @ConfigProperty(name = "conjur.account")
+ String account;
+ @ConfigProperty(name = "conjur.write.username")
+ String writeUsername;
+ @ConfigProperty(name = "conjur.write.apiKey")
+ String writeApiKey;
+ @ConfigProperty(name = "conjur.read.username")
+ String readUsername;
+ @ConfigProperty(name = "conjur.read.apiKey")
+ String readApiKey;
+
+ @Override
+ public void configure() throws Exception {
+
+ from("direct:createSecret")
+
.toF("cyberark-vault:secret?operation=createSecret&secretId=BotApp/secretVar&url=%s&account=%s&username=%s&apiKey=%s",
+ url, account, writeUsername, writeApiKey)
+ .log("Secret created/updated");
+
+ from("direct:createSecretUnauthorized")
+
.toF("cyberark-vault:secret?operation=createSecret&secretId=BotApp/secretVar&url=%s&account=%s&username=%s&apiKey=%s",
+ url, account, readUsername, readApiKey)
+ .log("Secret created/updated");
+
+ from("direct:getSecret")
+
.toF("cyberark-vault:secret?secretId=BotApp/secretVar&url=%s&account=%s&username=%s&apiKey=%s",
+ url, account, readUsername, readApiKey)
+ .log("Retrieved secret: ${body}");
+
+ }
+}
diff --git
a/integration-tests/cyberark-vault/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultResource.java
b/integration-tests/cyberark-vault/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultResource.java
new file mode 100644
index 0000000000..d6eb9aad5d
--- /dev/null
+++
b/integration-tests/cyberark-vault/src/main/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultResource.java
@@ -0,0 +1,59 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.camel.quarkus.component.cyberark.vault.it;
+
+import jakarta.enterprise.context.ApplicationScoped;
+import jakarta.inject.Inject;
+import jakarta.ws.rs.Consumes;
+import jakarta.ws.rs.GET;
+import jakarta.ws.rs.POST;
+import jakarta.ws.rs.Path;
+import jakarta.ws.rs.PathParam;
+import jakarta.ws.rs.Produces;
+import jakarta.ws.rs.core.MediaType;
+import jakarta.ws.rs.core.Response;
+import org.apache.camel.ProducerTemplate;
+import org.jboss.logging.Logger;
+
+@Path("/cyberark-vault")
+@ApplicationScoped
+public class CyberarkVaultResource {
+
+ private static final Logger LOG =
Logger.getLogger(CyberarkVaultResource.class);
+
+ @Inject
+ ProducerTemplate producerTemplate;
+
+ @Path("/createSecret/{authorized}")
+ @POST
+ @Consumes(MediaType.TEXT_PLAIN)
+ public Response createSecret(String secret, @PathParam("authorized")
boolean authorized) {
+ try {
+ producerTemplate.requestBody("direct:createSecret" + (authorized ?
"" : "Unauthorized"), secret, String.class);
+ } catch (RuntimeException e) {
+ return
Response.serverError().entity(e.getCause().getCause().getMessage()).build();
+ }
+ return Response.ok().build();
+ }
+
+ @Path("/getSecret")
+ @GET
+ @Produces(MediaType.TEXT_PLAIN)
+ public String getSecret() {
+ return producerTemplate.requestBody("direct:getSecret", "",
String.class);
+ }
+}
diff --git
a/integration-tests/cyberark-vault/src/main/resources/application.properties
b/integration-tests/cyberark-vault/src/main/resources/application.properties
new file mode 100644
index 0000000000..a40c06cb82
--- /dev/null
+++ b/integration-tests/cyberark-vault/src/main/resources/application.properties
@@ -0,0 +1,23 @@
+## ---------------------------------------------------------------------------
+## Licensed to the Apache Software Foundation (ASF) under one or more
+## contributor license agreements. See the NOTICE file distributed with
+## this work for additional information regarding copyright ownership.
+## The ASF licenses this file to You under the Apache License, Version 2.0
+## (the "License"); you may not use this file except in compliance with
+## the License. You may obtain a copy of the License at
+##
+## http://www.apache.org/licenses/LICENSE-2.0
+##
+## Unless required by applicable law or agreed to in writing, software
+## distributed under the License is distributed on an "AS IS" BASIS,
+## WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+## See the License for the specific language governing permissions and
+## limitations under the License.
+## ---------------------------------------------------------------------------
+
+conjur.url={{env:CQ_CONJUR_URL}}
+conjur.account={{env:CQ_CONJUR_ACCOUNT}}
+conjur.write.username={{env:CQ_CONJUR_READ_WRITE_USER}}
+conjur.write.apiKey={{env:CQ_CONJUR_READ_WRITE_USER_API_KEY}}
+conjur.read.username={{env:CQ_CONJUR_READ_USER}}
+conjur.read.apiKey={{env:CQ_CONJUR_READ_USER_API_KEY}}
\ No newline at end of file
diff --git
a/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultIT.java
b/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultIT.java
new file mode 100644
index 0000000000..c78890942b
--- /dev/null
+++
b/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultIT.java
@@ -0,0 +1,24 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.camel.quarkus.component.cyberark.vault.it;
+
+import io.quarkus.test.junit.QuarkusIntegrationTest;
+
+@QuarkusIntegrationTest
+class CyberarkVaultIT extends CyberarkVaultTest {
+
+}
diff --git
a/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultTest.java
b/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultTest.java
new file mode 100644
index 0000000000..2ee00e868d
--- /dev/null
+++
b/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultTest.java
@@ -0,0 +1,63 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.camel.quarkus.component.cyberark.vault.it;
+
+import java.util.UUID;
+
+import io.quarkus.test.common.QuarkusTestResource;
+import io.quarkus.test.junit.QuarkusTest;
+import io.restassured.RestAssured;
+import org.junit.jupiter.api.Test;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import static org.hamcrest.Matchers.containsString;
+import static org.hamcrest.Matchers.is;
+
+@QuarkusTest
+@QuarkusTestResource(CyberarkVaultTestResource.class)
+class CyberarkVaultTest {
+
+ private static final Logger LOG =
LoggerFactory.getLogger(CyberarkVaultTest.class);
+
+ @Test
+ public void testRetrieveSecret() throws Exception {
+
+ String secret = UUID.randomUUID().toString();
+ //create secret
+ RestAssured.given()
+ .body(secret)
+ .post("/cyberark-vault/createSecret/false")
+ .then()
+ .statusCode(500)
+ .body(containsString("403"));
+
+ //create secret
+ RestAssured.given()
+ .body(secret)
+ .post("/cyberark-vault/createSecret/true")
+ .then()
+ .statusCode(200);
+
+ //verify secret value
+ RestAssured
+ .get("/cyberark-vault/getSecret/")
+ .then()
+ .statusCode(200)
+ .body(is(secret));
+ }
+}
diff --git
a/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultTestResource.java
b/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultTestResource.java
new file mode 100644
index 0000000000..64f1c7ee73
--- /dev/null
+++
b/integration-tests/cyberark-vault/src/test/java/org/apache/camel/quarkus/component/cyberark/vault/it/CyberarkVaultTestResource.java
@@ -0,0 +1,162 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.apache.camel.quarkus.component.cyberark.vault.it;
+
+import java.io.File;
+import java.io.InputStream;
+import java.nio.file.Files;
+import java.nio.file.Path;
+import java.nio.file.Paths;
+import java.nio.file.StandardCopyOption;
+import java.util.Arrays;
+import java.util.LinkedHashMap;
+import java.util.LinkedList;
+import java.util.List;
+import java.util.Map;
+import java.util.stream.Stream;
+
+import com.fasterxml.jackson.databind.JsonNode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import io.quarkus.test.common.QuarkusTestResourceLifecycleManager;
+import org.apache.camel.quarkus.test.mock.backend.MockBackendUtils;
+import org.apache.commons.io.FileUtils;
+import org.junit.jupiter.api.Assertions;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.testcontainers.containers.ComposeContainer;
+import org.testcontainers.containers.Container;
+import org.testcontainers.containers.wait.strategy.Wait;
+
+/**
+ * Test resource is using opensource conjur. See the instructions from
+ *
https://github.com/cyberark/conjur-quickstart?tab=readme-ov-file#setting-up-an-environment
+ *
+ * Important note. the docker-compose.yml, from the conjur, has to be stripped
from container_name attributes.
+ */
+public class CyberarkVaultTestResource implements
QuarkusTestResourceLifecycleManager {
+ private static final Logger LOGGER =
LoggerFactory.getLogger(CyberarkVaultTestResource.class);
+ private ComposeContainer container;
+
+ @Override
+ public Map<String, String> start() {
+ final Map<String, String> result = new LinkedHashMap<>();
+
+ //if env properties are defined, use the real account
+ List<String> missingExternalProperties = Stream
+ .of("CQ_CONJUR_URL", "CQ_CONJUR_ACCOUNT",
"CQ_CONJUR_READ_USER", "CQ_CONJUR_READ_USER_API_KEY",
+ "CQ_CONJUR_READ_WRITE_USER",
"CQ_CONJUR_READ_WRITE_USER_API_KEY")
+ .filter(prop -> {
+ String value = System.getenv(prop);
+ return value == null || value.isEmpty();
+ })
+ .toList();
+ if (missingExternalProperties.isEmpty()) {
+ MockBackendUtils.logRealBackendUsed();
+
+ result.put("quarkus.http.port", "0");
+ result.put("quarkus.http.test-port", "0");
+ return result;
+ }
+
+ if (missingExternalProperties.size() < 6) {
+ throw new RuntimeException(
+ "Several environmental properties are missing (you have to
provide either all of them or none." +
+ "Missing properties are: " + String.join(",",
missingExternalProperties));
+ }
+ MockBackendUtils.logMockBackendUsed();
+
+ try {
+ //copy docker-compose to tmp location
+ File dockerComposeFile, configFile;
+ //create tmp folder in target
+ Path targetDir = Paths.get("target");
+ Path tempDir = Files.createTempDirectory(targetDir,
"docker-compose-");
+ try (InputStream inYaml =
getClass().getClassLoader().getResourceAsStream("docker-compose.yml");) {
+ dockerComposeFile = File.createTempFile("docker-compose-",
".yml", tempDir.toFile());
+ Files.copy(inYaml, dockerComposeFile.toPath(),
StandardCopyOption.REPLACE_EXISTING);
+ }
+ FileUtils.copyDirectory(new
File(getClass().getResource("/conf").getFile()),
tempDir.resolve("conf").toFile());
+
+ container = new ComposeContainer(dockerComposeFile)
+ .withLocalCompose(true)
+ .withExposedService("conjur", 80)
+ .waitingFor("conjur", Wait.forLogMessage(".* Listening on
http.*", 1));
+
+ container.start();
+
+ Container.ExecResult er =
container.getContainerByServiceName("conjur").get()
+ .execInContainer("conjurctl", "account", "create",
"myConjurAccount");
+ Assertions.assertEquals(0, er.getExitCode(), "Creation of account
failed with: " + er.getStderr());
+ //admin key is the last word from stdout
+ String adminKey = new
LinkedList<>(Arrays.asList(er.getStdout().split("\\s"))).getLast();
+
+ er = container.getContainerByServiceName("client").get()
+ .execInContainer("conjur", "init", "oss", "-u",
"https://proxy";,
+ "-a", "myConjurAccount", "--self-signed");
+ Assertions.assertEquals(0, er.getExitCode(), "Client init failed
with: " + er.getStderr());
+
+ er = container.getContainerByServiceName("client").get()
+ .execInContainer("conjur", "login", "-i", "admin", "-p",
adminKey);
+ Assertions.assertEquals(0, er.getExitCode(), "Client login failed
with: " + er.getStderr());
+
+ er = container.getContainerByServiceName("client").get()
+ .execInContainer("conjur", "policy", "load", "-b", "root",
"-f", "policy/BotApp.yml");
+ Assertions.assertEquals(0, er.getExitCode(), "Policy load failed
with: " + er.getStderr());
+
+ ObjectMapper objectMapper = new ObjectMapper();
+ try {
+ // Read JSON from a file
+ JsonNode jsonNode = objectMapper.readTree(er.getStdout());
+
jsonNode.get("created_roles").get("myConjurAccount:host:BotApp/myDemoApp").get("id");
+
+ result.put("conjur.read.username", "host/BotApp/myDemoApp");
+ result.put("conjur.read.apiKey",
+
jsonNode.get("created_roles").get("myConjurAccount:host:BotApp/myDemoApp").get("api_key").textValue());
+ result.put("conjur.write.username", "user/Dave@BotApp");
+ result.put("conjur.write.apiKey",
+
jsonNode.get("created_roles").get("myConjurAccount:user:Dave@BotApp").get("api_key").textValue());
+ } catch (Exception e) {
+ throw new RuntimeException(e);
+ }
+
+ container.getContainerByServiceName("client").get()
+ .execInContainer("conjur", "logout");
+
+ } catch (Exception e) {
+ throw new RuntimeException(e);
+ }
+
+ result.put("conjur.account", "myConjurAccount");
+ result.put("conjur.url", "http://localhost:"; +
container.getServicePort("conjur", 80));
+
+ return result;
+ }
+
+ @Override
+ public void stop() {
+ try {
+
+ if (container != null) {
+ container.stop();
+ }
+
+ } catch (Exception e) {
+ // ignored
+ }
+ }
+}
diff --git
a/integration-tests/cyberark-vault/src/test/resources/conf/default.conf
b/integration-tests/cyberark-vault/src/test/resources/conf/default.conf
new file mode 100755
index 0000000000..8aa7e1806d
--- /dev/null
+++ b/integration-tests/cyberark-vault/src/test/resources/conf/default.conf
@@ -0,0 +1,12 @@
+server {
+ listen 443 ssl;
+ server_name proxy;
+ access_log /var/log/nginx/access.log;
+
+ ssl_certificate /etc/nginx/tls/nginx.crt;
+ ssl_certificate_key /etc/nginx/tls/nginx.key;
+
+ location / {
+ proxy_pass http://conjur;
+ }
+}
diff --git
a/integration-tests/cyberark-vault/src/test/resources/conf/policy/BotApp.yml
b/integration-tests/cyberark-vault/src/test/resources/conf/policy/BotApp.yml
new file mode 100644
index 0000000000..307db3a1f2
--- /dev/null
+++ b/integration-tests/cyberark-vault/src/test/resources/conf/policy/BotApp.yml
@@ -0,0 +1,34 @@
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+- !policy
+ id: BotApp
+ body:
+ # Define a human user, a non-human identity that represents an
application, and a secret
+ - !user Dave
+ - !host myDemoApp
+ - !variable secretVar
+ - !permit
+ # Give permissions to the human user to update the secret and fetch the
secret.
+ role: !user Dave
+ privileges: [read, update, execute]
+ resource: !variable secretVar
+ - !permit
+ # Give permissions to the non-human identity to fetch the secret.
+ role: !host myDemoApp
+ privileges: [read, execute]
+ resource: !variable secretVar
diff --git
a/integration-tests/cyberark-vault/src/test/resources/conf/tls/tls.conf
b/integration-tests/cyberark-vault/src/test/resources/conf/tls/tls.conf
new file mode 100755
index 0000000000..21a1870654
--- /dev/null
+++ b/integration-tests/cyberark-vault/src/test/resources/conf/tls/tls.conf
@@ -0,0 +1,39 @@
+[req]
+default_bits = 2048
+prompt = no
+default_md = sha256
+req_extensions = req_ext
+distinguished_name = dn
+x509_extensions = v3_ca # The extentions to add to the self signed cert
+req_extensions = v3_req
+x509_extensions = usr_cert
+
+[ dn ]
+C=US
+ST=Wisconsin
+L=Madison
+O=CyberArk
+OU=Onyx
+CN=proxy
+
+[ usr_cert ]
+basicConstraints=CA:FALSE
+nsCertType = client, server, email
+keyUsage = nonRepudiation, digitalSignature, keyEncipherment
+extendedKeyUsage = serverAuth, clientAuth, codeSigning, emailProtection
+nsComment = "OpenSSL Generated Certificate"
+subjectKeyIdentifier=hash
+authorityKeyIdentifier=keyid,issuer
+
+[ v3_req ]
+extendedKeyUsage = serverAuth, clientAuth, codeSigning, emailProtection
+basicConstraints = CA:FALSE
+keyUsage = nonRepudiation, digitalSignature, keyEncipherment
+
+[ v3_ca ]
+subjectAltName = @alt_names
+
+[ alt_names ]
+DNS.1 = localhost
+DNS.2 = proxy
+IP.1 = 127.0.0.1
diff --git
a/integration-tests/cyberark-vault/src/test/resources/docker-compose.yml
b/integration-tests/cyberark-vault/src/test/resources/docker-compose.yml
new file mode 100755
index 0000000000..5b78bd4e7b
--- /dev/null
+++ b/integration-tests/cyberark-vault/src/test/resources/docker-compose.yml
@@ -0,0 +1,104 @@
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+services:
+ openssl:
+ image: cyberark/conjur
+ entrypoint:
+ - openssl
+ - req
+ - -newkey
+ - rsa:2048
+ - -days
+ - "365"
+ - -nodes
+ - -x509
+ - -config
+ - /tmp/conf/tls.conf
+ - -extensions
+ - v3_ca
+ - -keyout
+ - /tmp/conf/nginx.key
+ - -out
+ - /tmp/conf/nginx.crt
+ volumes:
+ - ./conf/tls/:/tmp/conf:z
+
+ bot_app:
+ image: cfmanteiga/alpine-bash-curl-jq
+ privileged: true
+ command: tail -F anything
+ volumes:
+ - ./program.sh:/tmp/program.sh
+ restart: on-failure
+
+ database:
+ image: postgres:15
+ environment:
+ POSTGRES_HOST_AUTH_METHOD: password
+ POSTGRES_PASSWORD: SuperSecretPg
+ ports:
+ - "0:5432"
+
+ pgadmin:
+# https://www.pgadmin.org/docs/pgadmin4/latest/container_deployment.html
+ image: dpage/pgadmin4
+ environment:
+ PGADMIN_DEFAULT_EMAIL: [email protected]
+ PGADMIN_DEFAULT_PASSWORD: SuperSecret
+ ports:
+ - "0:80"
+
+ conjur:
+ image: cyberark/conjur
+ command: server
+ environment:
+ DATABASE_URL: postgres://postgres:SuperSecretPg@database/postgres
+ CONJUR_DATA_KEY: changeitchangeitchangeitchangeitchangeitIhc=
+ CONJUR_AUTHENTICATORS:
+ CONJUR_TELEMETRY_ENABLED: 'false'
+ # By default Conjur API only returns 1000 resources (since 1.22.0)
+ # However this repo is used in testing scenarios where more than
+ # 1000 resources are present, so increase the limit.
+ # This is not a DoS risk as this code is not
+ # and must not be used for any form of production deployment.
+ CONJUR_API_RESOURCE_LIST_LIMIT_MAX: 5000
+ depends_on:
+ - database
+ restart: on-failure
+ ports:
+ - "0:80"
+
+ proxy:
+ image: nginx:latest
+ ports:
+ - "0:443"
+ volumes:
+ - ./conf/:/etc/nginx/conf.d/:ro,z
+ - ./conf/tls/:/etc/nginx/tls/:ro,z
+ depends_on:
+ - conjur
+ - openssl
+ restart: on-failure
+
+ client:
+ image: cyberark/conjur-cli:9
+ depends_on: [ proxy ]
+ entrypoint: sleep
+ command: infinity
+ volumes:
+ - ./conf/policy:/policy
diff --git a/integration-tests/cyberark-vault/startConjur.sh
b/integration-tests/cyberark-vault/startConjur.sh
new file mode 100755
index 0000000000..d1b7d40e8b
--- /dev/null
+++ b/integration-tests/cyberark-vault/startConjur.sh
@@ -0,0 +1,82 @@
+#!/bin/bash
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+
+# alternative way of running the tests.
+# script starts the conjur quickstart via docker compose and do all required
configuration
+# after running it, please export all 6 variables and then you can start the
test
+# When asked `Select the environment you want to use:`
+# please choose `Conjur Open Source`
+
+echo "Temporary folder 'tmp' is used"
+mkdir tmp
+cd tmp
+
+echo "************************************************"
+echo "****** SETUP A CONJUR OSS ENVIRONMENT *********"
+echo "************************************************"
+
+echo "Cloning conjur quickstart"
+git clone https://github.com/cyberark/conjur-quickstart.git
+
+cd conjur-quickstart
+echo "Removing previous instances"
+docker-compose rm -fsv
+
+echo "Step 1: Pull the Docker image"
+docker-compose pull
+
+echo "Step 2: Generate the master key"
+docker-compose run --no-deps --rm conjur data-key generate > data_key
+
+echo "Step 3: Load master key as an environment variable"
+export CONJUR_DATA_KEY="$(< data_key)"
+
+echo "Step 4: Start the Conjur OSS environment"
+docker-compose up -d
+
+echo "Step 5: Create admin account"
+docker-compose exec conjur conjurctl account create myConjurAccount >
admin_data
+
+echo "Step 6: Connect the Conjur client to the Conjur server"
+docker-compose exec client conjur init -u https://proxy -a myConjurAccount
--self-signed
+
+echo "************************************************"
+echo "****************** 2. DEFINE POLICY ************"
+echo "************************************************"
+
+echo "Step 1: Login in to Conjur as admin"
+docker-compose exec client conjur login -i admin -p $(awk 'END {print $NF}'
admin_data)
+
+echo "Step 2: Load the sample policy"
+docker-compose exec client conjur policy load -b root -f policy/BotApp.yml >
my_app_data
+
+echo "Step 3: Logout of Conjur"
+docker-compose exec client conjur logout
+
+echo
+echo ------------ please export following properties ------------------------
+echo export CQ_CONJUR_URL=http://localhost:8080/
+echo export CQ_CONJUR_ACCOUNT=myConjurAccount
+echo export CQ_CONJUR_READ_USER=host/BotApp/myDemoApp
+echo export CQ_CONJUR_READ_USER_API_KEY=$(jq -r
'.created_roles."myConjurAccount:host:BotApp/myDemoApp".api_key' my_app_data)
+echo export CQ_CONJUR_READ_WRITE_USER=user/Dave@BotApp
+echo export CQ_CONJUR_READ_WRITE_USER_API_KEY=$(jq -r
'.created_roles."myConjurAccount:user:Dave@BotApp".api_key' my_app_data)
+echo "# to avoid port conflict with quarkus (against opensource conjur)"
+echo export QUARKUS_HTTP_PORT=0
+echo export QUARKUS_HTTPS_PORT=0
diff --git a/integration-tests/cyberark-vault/stopConjur.sh
b/integration-tests/cyberark-vault/stopConjur.sh
new file mode 100755
index 0000000000..e00bf3b6c1
--- /dev/null
+++ b/integration-tests/cyberark-vault/stopConjur.sh
@@ -0,0 +1,28 @@
+#!/bin/bash
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+
+# alternative way of running the tests.
+# script starts the conjur quickstart via docker compose and do all required
configuration
+# after running it, please export all 6 variables and then you can start the
test
+
+echo "Temporary folder 'tmp' is used"
+cd tmp
+cd conjur-quickstart
+echo "Removing previous instances"
+docker-compose rm -fsv
diff --git a/integration-tests/pom.xml b/integration-tests/pom.xml
index 64b7e3fb6b..c28a48f5e5 100644
--- a/integration-tests/pom.xml
+++ b/integration-tests/pom.xml
@@ -75,6 +75,7 @@
<module>csimple</module>
<module>csv</module>
<module>cxf-soap-grouped</module>
+ <module>cyberark-vault</module>
<module>dataformat</module>
<module>dataformats-json-grouped</module>
<module>datasonnet</module>
diff --git a/poms/bom/pom.xml b/poms/bom/pom.xml
index c4c250ba29..305dcc8012 100644
--- a/poms/bom/pom.xml
+++ b/poms/bom/pom.xml
@@ -872,6 +872,11 @@
<artifactId>camel-cxf-transport</artifactId>
<version>${camel.version}</version>
</dependency>
+ <dependency>
+ <groupId>org.apache.camel</groupId>
+ <artifactId>camel-cyberark-vault</artifactId>
+ <version>${camel.version}</version>
+ </dependency>
<dependency>
<groupId>org.apache.camel</groupId>
<artifactId>camel-dataformat</artifactId>
@@ -4084,6 +4089,16 @@
<artifactId>camel-quarkus-cxf-soap-deployment</artifactId>
<version>${camel-quarkus.version}</version>
</dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault</artifactId>
+ <version>${camel-quarkus.version}</version>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+
<artifactId>camel-quarkus-cyberark-vault-deployment</artifactId>
+ <version>${camel-quarkus.version}</version>
+ </dependency>
<dependency>
<groupId>org.apache.camel.quarkus</groupId>
<artifactId>camel-quarkus-dataformat</artifactId>
diff --git a/poms/bom/src/main/generated/flattened-full-pom.xml
b/poms/bom/src/main/generated/flattened-full-pom.xml
index 97fbfe4ce2..adb9d5011b 100644
--- a/poms/bom/src/main/generated/flattened-full-pom.xml
+++ b/poms/bom/src/main/generated/flattened-full-pom.xml
@@ -788,6 +788,11 @@
<artifactId>camel-cxf-transport</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<version>4.17.0</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
</dependency>
+ <dependency>
+ <groupId>org.apache.camel</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <artifactId>camel-cyberark-vault</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <version>4.17.0</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ </dependency>
<dependency>
<groupId>org.apache.camel</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<artifactId>camel-dataformat</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
@@ -3972,6 +3977,16 @@
<artifactId>camel-quarkus-cxf-soap-deployment</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<version>3.31.0-SNAPSHOT</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
</dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <artifactId>camel-quarkus-cyberark-vault</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <version>3.31.0-SNAPSHOT</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <artifactId>camel-quarkus-cyberark-vault-deployment</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <version>3.31.0-SNAPSHOT</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ </dependency>
<dependency>
<groupId>org.apache.camel.quarkus</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<artifactId>camel-quarkus-dataformat</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
diff --git a/poms/bom/src/main/generated/flattened-reduced-pom.xml
b/poms/bom/src/main/generated/flattened-reduced-pom.xml
index 83cc8ab69d..c2626fb4c6 100644
--- a/poms/bom/src/main/generated/flattened-reduced-pom.xml
+++ b/poms/bom/src/main/generated/flattened-reduced-pom.xml
@@ -788,6 +788,11 @@
<artifactId>camel-cxf-transport</artifactId>
<version>4.17.0</version>
</dependency>
+ <dependency>
+ <groupId>org.apache.camel</groupId>
+ <artifactId>camel-cyberark-vault</artifactId>
+ <version>4.17.0</version>
+ </dependency>
<dependency>
<groupId>org.apache.camel</groupId>
<artifactId>camel-dataformat</artifactId>
@@ -3962,6 +3967,16 @@
<artifactId>camel-quarkus-cxf-soap-deployment</artifactId>
<version>3.31.0-SNAPSHOT</version>
</dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault</artifactId>
+ <version>3.31.0-SNAPSHOT</version>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId>
+ <artifactId>camel-quarkus-cyberark-vault-deployment</artifactId>
+ <version>3.31.0-SNAPSHOT</version>
+ </dependency>
<dependency>
<groupId>org.apache.camel.quarkus</groupId>
<artifactId>camel-quarkus-dataformat</artifactId>
diff --git a/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml
b/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml
index 15a0490d7c..17e6f567c1 100644
--- a/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml
+++ b/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml
@@ -788,6 +788,11 @@
<artifactId>camel-cxf-transport</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<version>4.17.0</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
</dependency>
+ <dependency>
+ <groupId>org.apache.camel</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <artifactId>camel-cyberark-vault</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <version>4.17.0</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ </dependency>
<dependency>
<groupId>org.apache.camel</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<artifactId>camel-dataformat</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
@@ -3962,6 +3967,16 @@
<artifactId>camel-quarkus-cxf-soap-deployment</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<version>3.31.0-SNAPSHOT</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
</dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <artifactId>camel-quarkus-cyberark-vault</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <version>3.31.0-SNAPSHOT</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ </dependency>
+ <dependency>
+ <groupId>org.apache.camel.quarkus</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <artifactId>camel-quarkus-cyberark-vault-deployment</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ <version>3.31.0-SNAPSHOT</version><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
+ </dependency>
<dependency>
<groupId>org.apache.camel.quarkus</groupId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
<artifactId>camel-quarkus-dataformat</artifactId><!--
org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
diff --git a/tooling/scripts/test-categories.yaml
b/tooling/scripts/test-categories.yaml
index b78f1ed4d3..ea731d4978 100644
--- a/tooling/scripts/test-categories.yaml
+++ b/tooling/scripts/test-categories.yaml
@@ -37,6 +37,7 @@ group-01:
group-02:
- aws2
- beanio
+ - cyberark-vault
- google-pubsub
- groovy-xml
- grpc
![https://raw.githubusercontent.com/apache/camel-website/main/antora-ui-camel/src/img/logo-d.svg"](https://raw.githubusercontent.com/apache/camel-website/main/antora-ui-camel/src/img/logo-d.svg"){kind=link}