1pub mod cluster_dek;
18mod encryption;
19mod error;
20mod jwt;
21mod key_manager;
22mod provider;
23pub mod raft_sm;
24pub mod raft_store;
25pub mod sealed;
26mod types;
27
28#[cfg(feature = "persistent")]
29pub mod client_keys;
30
31#[cfg(feature = "persistent")]
32mod persistent;
33
34#[cfg(feature = "persistent")]
35pub mod credentials;
36
37#[cfg(feature = "persistent")]
38pub mod registry_credentials;
39
40#[cfg(feature = "persistent")]
41pub mod git_credentials;
42
43#[cfg(feature = "vault")]
44mod vault;
45
46pub use cluster_dek::ClusterDek;
47pub use encryption::EncryptionKey;
48pub use error::{Result, SecretsError};
49pub use jwt::{JwtSecretManager, ENV_JWT_SECRET};
50pub use key_manager::{load_or_generate_node_keypair, node_secrets_key_path, KeyManager};
51pub use provider::{EnvScopeProvider, SecretsProvider, SecretsResolver, SecretsStore};
52pub use raft_sm::SecretsState;
53pub use raft_store::{RaftSecretsHandle, RaftSecretsStore};
54pub use sealed::{RecipientPrivateKey, RecipientPublicKey, SealedError, SealedSecret};
55pub use types::{RotationResult, Secret, SecretMetadata, SecretRef, SecretScope};
56
57#[cfg(feature = "persistent")]
58pub use client_keys::{ActorKind, ClientKeyStore, ClientPublicKey, PersistentClientKeyStore};
59
60#[cfg(feature = "persistent")]
61pub use persistent::PersistentSecretsStore;
62
63#[cfg(feature = "persistent")]
64pub use credentials::CredentialStore;
65
66#[cfg(feature = "persistent")]
67pub use git_credentials::{GitCredential, GitCredentialKind, GitCredentialStore};
68
69#[cfg(feature = "persistent")]
70pub use registry_credentials::{RegistryAuthType, RegistryCredential, RegistryCredentialStore};
71
72#[cfg(feature = "vault")]
73pub use vault::VaultSecretsProvider;