secrets migration & restitution

cmd/dkl-local-server/state.go

@@ -28,11 +28,11 @@ type State struct {
 }
 
 type ClusterState struct {
-	Name   string
-	Addons bool
-	// TODO CAs
-	// TODO passwords
-	// TODO tokens
+	Name      string
+	Addons    bool
+	Passwords []string
+	Tokens    []string
+	CAs       []CAState
 }
 
 type HostState struct {
@@ -41,6 +41,11 @@ type HostState struct {
 	IPs     []string
 }
 
+type CAState struct {
+	Name   string
+	Signed []string
+}
+
 var wState = watchable.New[State]()
 
 func init() {
@@ -68,6 +73,34 @@ func updateState() {
 			Name:   cluster.Name,
 			Addons: len(cluster.Addons) != 0,
 		}
+
+		c.Passwords, err = clusterPasswords.Keys(c.Name + "/")
+		if err != nil {
+			log.Print("failed to read cluster passwords: ", err)
+		}
+		c.Tokens, err = clusterTokens.Keys(c.Name + "/")
+		if err != nil {
+			log.Print("failed to read cluster tokens: ", err)
+		}
+
+		caNames, err := clusterCAs.Keys(c.Name + "/")
+		if err != nil {
+			log.Print("failed to read cluster CAs: ", err)
+		}
+		for _, caName := range caNames {
+			ca := CAState{Name: caName}
+
+			signedNames, err := clusterCASignedKeys.Keys(c.Name + "/" + caName + "/")
+			if err != nil {
+				log.Print("failed to read cluster CA signed keys: ", err)
+			}
+			for _, signedName := range signedNames {
+				ca.Signed = append(ca.Signed, signedName)
+			}
+
+			c.CAs = append(c.CAs, ca)
+		}
+
 		clusters = append(clusters, c)
 	}