Spring cloud vault not reloading/reflecting updates to secret value

Question

Spring cloud vault picks up the latest secret value during application start. If the secret is updated when the application is already up and running, then it is not picked up.

I understand this is a Spring config limitation and there is a workaround with the @RefreshScope annotation and explicitly invoking the /actuator/refresh API.

Is there any other mechanism where the application can listen to secret update notifications and automate the refresh?

From the debug logs, I see that the spring cloud vault returns an updated secret with the GET call based on "min-renewal" time.

score 1 · Answer 1 · edited Aug 30 '22 at 14:17

1

Got 'refresh' working with:

@Autowired
ContextRefresher contextRefresher;
public void refreshContext() {
    contextRefresher.refresh();
}

I am still trying to understand why spring cloud vault invokes vault login and Get API every 10 seconds if the refresh is not automated.

edited Aug 30 '22 at 14:17

Saikat

14,222
20
104
125

answered Aug 03 '21 at 04:32

Tilak

323
1
5
18

1

How? Please post complete code. I am struggling with the same. – N.S. Nov 17 '21 at 21:31

Spring cloud vault not reloading/reflecting updates to secret value

1 Answers1