securosys-com
diff --git a/‎.copywrite.hcl
+21 b/‎.copywrite.hcl
+21
diff --git a/‎.gitattributes
+4 b/‎.gitattributes
+4
diff --git a/‎.github/ISSUE_TEMPLATE/bug_report.md
+47 b/‎.github/ISSUE_TEMPLATE/bug_report.md
+47
diff --git a/‎.github/ISSUE_TEMPLATE/feature_request.md
+30 b/‎.github/ISSUE_TEMPLATE/feature_request.md
+30
diff --git a/‎.gitignore
+12 b/‎.gitignore
+12
diff --git a/‎.go-version
+1 b/‎.go-version
+1
diff --git a/‎.hooks/pre-commit
+78 b/‎.hooks/pre-commit
+78
diff --git a/‎.hooks/pre-push
+23 b/‎.hooks/pre-push
+23
@@ -0,0 +1,21 @@
+schema_version = 1
+
+project {
+  license        = "BUSL-1.1"
+  copyright_year = 2023
+
+  # (OPTIONAL) A list of globs that should not have copyright/license headers.
+  # Supports doublestar glob patterns for more flexibility in defining which
+  # files or folders should be ignored
+  header_ignore = [
+    "builtin/credential/aws/pkcs7/**",
+    "ui/node_modules/**",
+    "enos/modules/k8s_deploy_vault/raft-config.hcl",
+    "plugins/database/postgresql/scram/**",
+    # licensed under MPL - ignoring for now until the copywrite tool can support
+    # multiple licenses per repo.
+    "sdk/**",
+    "api/**",
+    "shamir/**'"
+  ]
+}
@@ -0,0 +1,4 @@
+vendor/* linguist-vendored
+website/* linguist-documentation
+
+/packagespec.mk linguist-generated
@@ -0,0 +1,47 @@
+---
+name: Bug report
+about: Create a report to help us improve
+title: "[BUG] "
+labels: ''
+assignees: Peter-FNet
+
+---
+
+<!-- Please reserve GitHub issues only for the Securosys HSM REST integration.
+
+- Vault specific issues shall be placed on the [vault project](https://github.com/hashicorp/vault/issues).
+
+- For Vault specific questions, the best place to get answers is on the [discussion forum](https://discuss.hashicorp.com/c/vault), as they will get more visibility from experienced users than the issue tracker.
+
+- REST/TSB or HSM questions, issues, and feature requests shall be handled via the [Securosys Support Portal](https://support.securosys.com).
+-->
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+
+**To Reproduce**
+Steps to reproduce the behavior:
+1. Run `vault write ...`
+2. Run `vault login....`
+3. See error
+
+**Expected behavior**
+A clear and concise description of what you expected to happen.
+
+**Screenshots**
+If applicable, add screenshots to help explain your problem.
+
+**Environment:**
+* Vault Server Version (retrieve with `vault status`):
+* Vault CLI Version (retrieve with `vault version`):
+* Server Operating System/Architecture:
+
+Vault server configuration file(s):
+
+```hcl
+# Paste your Vault config here.
+# Be sure to scrub any sensitive values
+```
+
+**Additional context**
+Add any other context about the problem here.
@@ -0,0 +1,30 @@
+---
+name: Feature request
+about: Suggest an idea for this project
+title: "[FEATURE] "
+labels: ''
+assignees: Peter-FNet
+
+---
+
+<!-- Please reserve GitHub feature requests only for the Securosys HSM REST integration.
+
+- Vault specific issues shall be placed on the [vault project](https://github.com/hashicorp/vault/issues).
+
+- For Vault specific questions, the best place to get answers is on the [discussion forum](https://discuss.hashicorp.com/c/vault), as they will get more visibility from experienced users than the issue tracker.
+
+- REST/TSB or HSM feature requests shall be handled via the [Securosys Support Portal](https://support.securosys.com).
+
+-->
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of what you want to happen.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Additional context**
+Add any other context or screenshots about the feature request here.
@@ -0,0 +1,12 @@
+./build.sh
+buildDockerImage.sh
+./docker/*
+vault_exec
+vault.exe
+vendor
+./config.hcl
+./config-hsm.yml
+./bin/*
+Installation Guide
+deploy
+.gitlab-ci.yml
@@ -0,0 +1 @@
+1.21.2
@@ -0,0 +1,78 @@
+#!/usr/bin/env bash
+
+# READ THIS BEFORE MAKING CHANGES:
+#
+# If you want to add a new pre-commit check, here are the rules:
+#
+#   1. Create a bash function for your check (see e.g. ui_lint below).
+#      NOTE: Each function will be called in a sub-shell so you can freely
+#      change directory without worrying about interference.
+#   2. Add the name of the function to the CHECKS variable.
+#   3. If no changes relevant to your new check are staged, then
+#      do not output anything at all - this would be annoying noise.
+#      In this case, call 'return 0' from your check function to return
+#      early without blocking the commit.
+#   4. If any non-trivial check-specific thing has to be invoked,
+#      then output '==> [check description]' as the first line of
+#      output. Each sub-check should output '--> [subcheck description]'
+#      after it has run, indicating success or failure.
+#   5. Call 'block [reason]' to block the commit. This ensures the last
+#      line of output calls out that the commit was blocked - which may not
+#      be obvious from random error messages generated in 4.
+#
+# At the moment, there are no automated tests for this hook, so please run it
+# locally to check you have not broken anything - breaking this will interfere
+# with other peoples' workflows significantly, so be sure, check everything twice.
+
+set -euo pipefail
+
+# Call block to block the commit with a message.
+block() {
+  echo "$@"
+  echo "Commit blocked - see errors above."
+  exit 1
+}
+
+# Add all check functions to this space separated list.
+# They are executed in this order (see end of file).
+CHECKS="ui_lint backend_lint"
+
+# Run ui linter if changes in that dir detected.
+ui_lint() {
+  local DIR=ui LINTER=node_modules/.bin/lint-staged
+
+  # Silently succeed if no changes staged for $DIR
+  if git diff --name-only --cached --exit-code -- $DIR/; then
+    return 0
+  fi
+
+  # Silently succeed if the linter has not been installed.
+  # We assume that if you're doing UI dev, you will have installed the linter
+  # by running yarn.
+  if [ ! -x $DIR/$LINTER ]; then
+    return 0
+  fi
+
+  echo "==> Changes detected in $DIR/: Running linter..."
+
+  # Run the linter from the UI dir.
+  cd $DIR
+  $LINTER || block "UI lint failed"
+}
+
+backend_lint() {
+  # Silently succeed if no changes staged for Go code files.
+  staged=$(git diff --name-only --cached --exit-code -- '*.go')
+  ret=$?
+  if [ $ret -eq 0 ]; then
+    return 0
+  fi
+
+  # Only run fmtcheck on staged files
+  ./scripts/gofmtcheck.sh "${staged}" || block "Backend linting failed; run 'make fmt' to fix."
+}
+
+for CHECK in $CHECKS; do
+  # Force each check into a subshell to avoid crosstalk.
+  ( $CHECK ) || exit $?
+done
@@ -0,0 +1,23 @@
+#!/usr/bin/env bash
+
+remote="$1"
+remote_url=$(git remote get-url $remote)
+
+if [[ $remote_url == *"vault-enterprise"* ]]; then
+    exit 0
+fi
+
+if [ "$remote" = "enterprise" ]; then
+    exit 0
+fi
+
+if [ "$remote" = "ent" ]; then
+    exit 0
+fi
+
+if [ -f command/version_ent.go ]; then
+    echo "Found enterprise version file while pushing to oss remote"
+    exit 1
+fi
+
+exit 0