kv v1 compatibility

[adamwolfe-tc]

I'm currently working on getting a count of secrets in our Vault instance and have noticed that the steampipe-plugin-vault does not appear to have a way to get info from version 1 of the secrets engine.

it's able to recognize v1 as type = kv:

> select path from vault_engine where type = 'kv';
+-----------------+
| path            |
+-----------------+
| aws-root-creds/ | # v2 
| configs/        |  # v2 
| kv/             |  # v1
+-----------------+

but does not get any counts etc from the v1 engine:

> select count(key) from vault_kv_secret where path = 'configs/';
+-------+
| count |
+-------+
| 32    |
+-------+

vs

> select count(key) from vault_kv_secret where path = 'kv/';
+-------+
| count |
+-------+
| 0     |
+-------+

[graza-io]

It should support v1 already; are you sure you have any secrets directly in the kv/ path?

[adamwolfe-tc]

i have around 200 hundred v1 secrets (of varying depth) that match kv/*, yes.

my.user@host:~$ vault list kv | wc -l
      78

my.user@host:~$ steampipe query

Welcome to Steampipe v0.22.2
For more information, type .help

> select count(key) from vault_kv_secret where path = 'kv/';
+-------+
| count |
+-------+
| 0     |
+-------+

> select count(key) from vault_kv_secret where path = 'configs/';
+-------+
| count |
+-------+
| 39    |
+-------+
>

[graza-io]

I see, but where path = 'kv/' is an exact path match so if they're all in sub-paths of this, you may not get the results with this where clause.

If you just select key from vault_kv_secret; do you see all the results you're expecting?