Questions tagged [spring-vault]

Spring Vault provides familiar Spring abstractions and client-side support for accessing, storing and revoking secrets from HashiCorp Vault.

Spring Vault provides familiar Spring abstractions and client-side support for accessing, storing and revoking secrets. It offers both low-level and high-level abstractions for interacting with Vault, freeing the user from infrastructural concerns.

With HashiCorp’s Vault you have a central place to manage external secret data for applications across all environments. Vault can manage static and dynamic secrets such as application data, username/password for remote applications/resources and provide credentials for external services such as MySQL, PostgreSQL, Apache Cassandra, Consul, AWS and more.

Features

Spring configuration support using Java based @Configuration classes.
VaultTemplate and ReactiveVaultTemplate helper classes that increase productivity performing common Vault operations.
Exporting Vault secrets as PropertySource through @VaultPropertySource.
Support multiple authentication methods.
Rotation of secrets for databases and messaging services.
Feature Rich Object Mapping integrated with Spring Data Repositories.
Annotation based mapping metadata but extensible to support other metadata formats.

Online Resources:

125 questions

vote

1 answer

Spring boot cloud vault does not load properties anymore after update to version 3.0.3

I'm facing the same problem as bootstrap.yml configuration not processed anymore with Spring Cloud 2020.0. I updated spring boot cloud to the version 3.0.3. My config is: spring: config: import: vault:// cloud: vault: enabled:…

spring spring-boot spring-vault

asked Sep 10 '21 at 13:39

sge

vote

1 answer

Using Spring Cloud Vault and ConfigData API with multiple profile files

I have 5 profiles for my Spring Boot application application.yml application-prod.yml application-stg.yml application-dev.yml application-local.yml One default config and 4 for different environments. application.yml looks like this spring: …

spring-vault

asked Aug 10 '21 at 15:40

siim

vote

0 answers

Enabling debug logging for code that is run very early on in a Spring boot app

I am writing a small Spring boot app that I want to read some properties from Hashi Corp Vault which will ultimately be run in a Kubernetes environment. I'm doing this by using the spring.cloud.vault libraries and the use of multiple…

java spring spring-boot spring-logback spring-vault

asked Jun 11 '21 at 16:07

RobE

vote

1 answer

Spring Cloud Config Vault Strange Request

We are using Spring Cloud 2.2.6.RELEASE using vault for storage for our microservices and our Vault team has complained about number of request, they provided Splunk log access and I see many request with the following: { [-] auth: { [+] policies: […

java spring-boot spring-cloud spring-vault

asked Apr 26 '21 at 18:12

emoritz

vote

0 answers

Intermittent Hashicorp Vault with spring cloud Mongo

Almost all of our applications here use SpringCloud in a Kubernetes eco-system and now, due to security reasons, we decided to use the Hashicorp Vault too. All the things seem to be working but we have an intermittent database connection when we're…

spring-boot spring-cloud hashicorp-vault spring-vault spring-cloud-vault-config

asked Mar 18 '21 at 21:55

João Heytor K. Pereira

vote

0 answers

Spring Cloud Vault Secret reading error as permission denied

I am unable to read secrets with vault when I upgrade spring version from 2.0.3.RELEASE to 2.3.5.RELEASE It works fine with 2.0.3.RELEASE (with secret path, secret/data/{app-name}), but with 2.3.5.RELEASE, path is changed to…

spring spring-cloud spring-cloud-config spring-cloud-vault-config spring-vault

asked Jan 20 '21 at 10:46

user923499

vote

2 answers

@VaultPropertySource caused VaultAutoConfiguration failure

I'm using Spring-Boot 2.4.0 and org.springframework.cloud:spring-cloud-starter-vault-config:3.0.0 Upon successful startup, I found the following thing @Bean public Object see(@Value("${credentials}") String secretFromVault, VaultTemplate tpl) throws…

java spring-cloud-vault-config spring-vault

asked Jan 11 '21 at 07:20

sancho21

3,511
1
39
45

vote

0 answers

How to get the ID token of user to a client application after logging in with Vault-OIDC method?

I have a web application that is in Java. I am successful in authenticating the app via google as the OIDC provider. However, I want the application to connect to google's OIDC via hashicorp vault. I want vault to return an access_token along with…

hashicorp-vault spring-vault vault

asked Nov 27 '20 at 12:36

Nithin Teekaramanaa

vote

0 answers

Unable to integrate SpringVault within my Web App

I am trying to integrate spring vault as an extra module in my web application. I have created a new service EncryptionService which makes a call to my Spring Vault ApiVaultClient as it is shown bellow : My Vault configuration VaultConfig.java…

java spring hashicorp-vault spring-vault

asked Nov 12 '20 at 18:07

404NotFound

vote

1 answer

How to use AppRole authentication for Vault using Spring Boot?

In my application we are making two calls from my app for getting secrets from Vault, as shown below: Login to Vault : POST call to https::/v1/auth/approle/login -- It will take role_id and secret_id as payload and response will be…

spring-boot hashicorp-vault spring-vault

asked Oct 07 '20 at 11:16

ash das

vote

1 answer

How to secure OAuth2.0 secret and secret key rotation

OAuth2.0 uses a secret as a symmetric key used by say, HMACSHA256 algorithm to generate signature. This secret is important, otherwise anyone can create a 'valid' JWT token and present to server. For example, if I create a JWT, and sign it, the sign…

oauth-2.0 jwt spring-vault

asked Aug 05 '20 at 01:26

Apurva Singh

4,534
4
33
42

vote

1 answer

Spring Vault SSLPeerUnverifiedException

I have an application running in Spring Boot, using Spring Vault to retrieve passwords. It is using KubernetesAuthentication to log in. This worked well until I upgraded to Spring Boot 2.2.5. I then started to get…

spring spring-boot apache-httpcomponents spring-vault

asked Mar 09 '20 at 22:24

athom

1,428
4
13
26

vote

1 answer

Spring cloud config server - Vault(AWS_IAM authentication)

I am setting up a spring boot cloud config server which is using VAULT to store secrets. Vault Authentication mechanism is set as AWS_IAM. I also have aws-java-sdk in my class path. Aws cli is also configured. I am able to get secrets from VAULT…

hashicorp-vault spring-cloud-vault-config spring-vault spring-cloud-config-server

asked Feb 08 '20 at 03:01

Vikram sundar

vote

1 answer

How to distribute / Where to store keys that applications need to access HashiCorp Vault

We want to use HashiCorp Vault to save the passwords used by our applications. What is not clear to me is, how to distribute/ where to store the keys our applications need to access the vault in a secure way. I think this issue is not addressed by…

spring security hashicorp-vault spring-vault

asked Jan 10 '20 at 12:45

Deniz Engin

vote

0 answers

Spring boot encrypted YAMLs

Instead of encrypting individual configurations in YAMLs, I want to encrypt entire YAML. Is there any way to achieve this in Spring boot? I know the requirement looks unrealistic at the moment, but we really required this.

spring-boot yaml jasypt spring-vault

asked Nov 18 '19 at 05:56

Ashish Bhosle

Prev 1 2 3

…

8 9 Next