Spring Cloud Vault Config provides client-side support for HashiCorp's Vault secret management in a distributed system.
Spring Cloud Vault Config provides client-side support for HashiCorp's Vault secret management in a distributed system.
Questions tagged [spring-cloud-vault-config]
128 questions
1
vote
1 answer
Spring cloud config server - Vault(AWS_IAM authentication)
I am setting up a spring boot cloud config server which is using VAULT to store secrets.
Vault Authentication mechanism is set as AWS_IAM. I also have aws-java-sdk in my class path. Aws cli is also configured.
I am able to get secrets from VAULT…
Vikram sundar
- 31
- 2
1
vote
1 answer
403 Permission Denied when trying to read Secrets from Vault using GCP IAM auth
I am using GCP IAM auth method to authenticate against vault. I followed the steps as suggested in vault gcp authto authenticate using a Service Account
I was able to successfully authenticate and login. But when I try to read the secrets from the…
spark_dream
- 326
- 2
- 8
- 23
1
vote
1 answer
spring-cloud-vault: min-renewal vs. expiry-threshold
The spring-cloud-vault Lease lifecycle management (renewal and revocation) documentation states that:
spring.cloud.vault.config.lifecycle.min-renewal: sets the duration that is at least required before renewing a lease. This setting prevents…
axiopisty
- 4,972
- 8
- 44
- 73
1
vote
1 answer
Using Hashicorp Vault and Spring Cloud in different environments
We are using vault to get rid of all secrets from our codebase and config servers. Vault aws auth with its secure introduction seems like the perfect fit for this. However our dev environment is not on aws and vault cannot work with config server to…
ChrisOdney
- 6,066
- 10
- 38
- 48
1
vote
1 answer
SpringCloud Config Server: Path Mapping Conflict with SwaggerUI
I am running a SpringBoot config server (with Vault backend) and tried to add Springfox SwaggerUI to it. But since I do not want a prefix (spring.cloud.config.server.prefix) for my config server, the path mapping between the config server and…
pixelstuermer
- 199
- 3
- 23
1
vote
1 answer
How to override request sequence from Spring Cloud Vault to the Vault?
When my application which uses Spring Cloud Vault starter is requesting info from Vault, it searches the followed paths at generic secret…
mate200
- 13
- 5
1
vote
2 answers
Production Environment for Spring Cloud Config using Git/Vault
Spring Boot - 2.0.0.M3
Spring cloud - Finchley.M1
I want to know if someone is using Spring Cloud config server with both vault and git support in a production setup using Database storage backend.
I have evaluated Spring cloud config using vault…
user1643003
- 255
- 4
- 16
1
vote
0 answers
spring.cloud.vault.fail-fast - does it still work?
We use Spring cloud vault as a credential store in our environment.
The fail fast option does not work when the Vault url returns 404 - no exception is thrown but the application continues to start and goes ahead with Spring default password (since…
Jothi
- 511
- 1
- 5
- 9
1
vote
1 answer
Spring Cloud Config (Vault backend) teminating too early
I am using Spring Cloud Config Server to serve configuration for my client apps. To facilitate secrets configuration I am using HashiCorp Vault as a back end. For the remainder of the configuration I am using a GIT repo. So I have configured the…
Codesnooper
- 331
- 2
- 10
0
votes
0 answers
Unable to override Spring Cloud Vault property Intellij IDEA
I'm trying to integrate my Spring Boot app with Vault for loading secrets. The app runs on PCF environment so the main configuration file (application.properties) is configured appropriately. For local development, the vault authentication is done…
RKodakandla
- 3,318
- 13
- 59
- 79
0
votes
0 answers
Spring Cloud Vault Config Databases Doesn't load the properties without bootstrap properties
Describe the bug
We are using database secret engine in hashicorp vault with dynamic role setup to get dynamic credentials. We are trying to fetch the same in Springboot application using spring-cloud-vault-config-databases, however the properties…
Viv
- 49
- 3
0
votes
0 answers
How to mock bean before ConfigDataLoader in SpringBootTest
Config file processing has been changed in Spring Boot 2.4. It allows to eliminate bootstrap configuration and use spring.config.import instead together with some specific locations like vault://…. Internally it uses ConfigDataLocationResolver and…
Alex
- 4,987
- 1
- 8
- 26
0
votes
0 answers
How to enable refreshing vault properties in an application using Spring Cloud Vault Kubernetes authentication
Kubernetes used to issue long-lived service account tokens. at some point this behavior was changed to issue 1hr tokens. when a token expires, the file contents of the service account token file (/var/run/secrets/kubernetes.io/serviceaccount/token)…
Dave Ankin
- 1,060
- 2
- 9
- 20
0
votes
0 answers
HashiCorp Vault with Spring boot 3, getting error Cannot create authentication mechanism for TOKEN when using APPROLE
I have a Spring boot 3 service and when I try to run it I got an error
Cannot create authentication mechanism for TOKEN. This method requires either a Token (spring.cloud.vault.token) or a token file
I'm trying to use APPROLE and I keep getting…
baltasar ramis
- 1
- 1
0
votes
0 answers
Spring cloud config server unable to Authenticate vault using Kubernetes service account name
I have implemented spring cloud config server with composite setup of git and vault. I am trying to authenticate vault using Kubernetes service account. It works fine when I authenticate using TOKEN but when I authenticate using KUBERNETES it fails…
