Questions tagged [spring-vault]

Spring Vault provides familiar Spring abstractions and client-side support for accessing, storing and revoking secrets from HashiCorp Vault.

Spring Vault provides familiar Spring abstractions and client-side support for accessing, storing and revoking secrets. It offers both low-level and high-level abstractions for interacting with Vault, freeing the user from infrastructural concerns.

With HashiCorp’s Vault you have a central place to manage external secret data for applications across all environments. Vault can manage static and dynamic secrets such as application data, username/password for remote applications/resources and provide credentials for external services such as MySQL, PostgreSQL, Apache Cassandra, Consul, AWS and more.

Features

Spring configuration support using Java based @Configuration classes.
VaultTemplate and ReactiveVaultTemplate helper classes that increase productivity performing common Vault operations.
Exporting Vault secrets as PropertySource through @VaultPropertySource.
Support multiple authentication methods.
Rotation of secrets for databases and messaging services.
Feature Rich Object Mapping integrated with Spring Data Repositories.
Annotation based mapping metadata but extensible to support other metadata formats.

Online Resources:

125 questions

votes

1 answer

Vault login token expiring unexpectedly

We operate a containerized Spring Boot application. In order to access third party APIs, secrets to those APIs are kept in a Vault instance. Our application connects to Vault via Spring Vault Core using token authentication: spring: cloud: …

spring spring-vault vault

asked Sep 16 '21 at 10:39

ngc4579

votes

0 answers

Spring Cloud Vault with GCP-IAM Auth Method for multiple projects

I have some issue, wasn't able to find any docs, maybe I'm missing something. We are going to use this method. I've deployed some service and Vault in GKE in one project and it works fine. I used this article for configuration. So, I created…

google-kubernetes-engine spring-vault vault

asked Jul 21 '21 at 15:50

Rafik Alimardanov

votes

1 answer

Error with Spring AppRoleAuthentication - URI is not absolute

I'm trying to retrieve secrets from vault using the AppRole authentication. But I get the error : java.lang.IllegalArgumentException: URI is not absolute What I do is create a vaultEndpoint then depending on the method choosen I use token…

java spring hashicorp-vault spring-vault

asked Apr 14 '21 at 17:35

Flonoff

votes

1 answer

How to allow spring boot applications to use custom jar having spring cloud dependency

I have many spring boot microservices and I have developed a new project that has Spring-Vault as a dependency. This new project (say vault-client-spring) is developed in order to have common configuration for setting up of Vault and use it in all…

spring-boot gradle spring-cloud dependency-management spring-vault

asked Mar 29 '21 at 19:15

the_tech_maddy

votes

1 answer

How to setup @ConfigurationProperties to get the values from Hashicorp Vault what is at the address secret/demo-app/keycloak?

I started a Hashicorp Vault and my secrets can be found at secret/demo-app/keycloak. I have 2 values here: clientId, clientSecret I setup the…

spring-boot spring-vault

asked Mar 25 '21 at 06:04

stacktrace2234

votes

1 answer

How to import local external jar having spring cloud vault client dependency

I have a "multi-module" Gradle project named "utils". In that, I have created a new sub-project that will be used as a client for Hashicorp's Vault. I'll use this jar to my Spring Boot microservices as a dependency. The goal is to have a common…

spring-boot gradle intellij-idea spring-cloud-config spring-vault

asked Mar 19 '21 at 20:32

the_tech_maddy

votes

1 answer

HashiCorp Vault multiple values for ldap.urls (list of urls)

I have configuration for spring ldap in application.yml as: ldap: urls: - ldaps://host01.acme.com:636 - ldaps://host02.acme.com:636 - ldaps://host03.acme.com:636 - ldaps://host04.acme.com:636 I would like to place it in HashiCorp…

spring-boot ldap hashicorp-vault spring-ldap spring-vault

asked Dec 31 '20 at 11:21

bastiat

1,799
2
19
38

votes

1 answer

Vault. Spring. Unrecognized SSL message, plaintext connection/

I'm trying to run vault container in bean and use it for creating VaultTemplate bean to futher using in tests @TestConfiguration @TestPropertySource("classpath:application.yml") public class TestsConfiguration { @Container public static…

spring testing containers hashicorp-vault spring-vault

asked Oct 03 '20 at 10:14

Dmytro

votes

1 answer

Getting 403 on [secret/application] not resolvable Spring Vault configuration

I configured my spring app to connect to Vault and when the app starts, I'm getting unnecessary call on path [secret/application]. My policy looks like, path "secret/data/my-app" { capabilities = ["read","list"] } If I put path…

spring hashicorp-vault spring-vault

asked Sep 30 '20 at 05:42

codebot

2,540
3
38
89

votes

1 answer

Spring vault does not use the new token after login

I am trying to read secrets from vault using Spring vault cloud. I use a service token type. In my set-up the max_ttl is set to 1h and ttl to 10 minutes, so the token will be renewed at every 10 minutes till the max_ttl is reached. Once the max_ttl…

spring-cloud hashicorp-vault spring-cloud-vault-config spring-vault

asked Jul 31 '20 at 10:59

Stoean Robert

votes

1 answer

Spring Cloud Vault Profile Specific Bootstrap

I have a Spring Boot Application and I would like to Load configurations from Vault based on the Profile I am running. At present i have 2 profiles (dev, prod). My Dev Profile uses a H2 database where as the Prod Profile uses a Posgres DB. Running…

java spring-boot spring-cloud-vault-config spring-vault

asked May 27 '20 at 09:16

MSRahman

votes

0 answers

Parallel IO requests with Kotlin Flow, Coroutines and NOT suspend function

I run my Netty based Kotlin application with Spring Boot and WebFlux. The details are as follows: Java 11; Kotlin 1.3.61; Spring Boot 2.2.5.RELEASE; Spring Vault Core 2.2.2.RELEASE. I get a file on the web layer. WebFlux creates a Part…

kotlin concurrency kotlin-coroutines spring-vault kotlin-flow

asked May 20 '20 at 06:34

Evgeny Mamaev

1,237
1
14
31

votes

1 answer

Spring Vault Kubernetes Auth not accepting custom mount path

Using Spring Vault 2.1.2 and I cannot upgrade. I am configuring an AbstractReactiveVaultConfiguration to use KubernetesAuthentication. @Configuration public class VaultConfiguration extends AbstractReactiveVaultConfiguration { …

spring hashicorp-vault spring-webclient spring-vault

asked May 20 '20 at 04:54

Lurk21

2,307
12
37
55

votes

2 answers

Partially storing entity data in spring vault

I've been going through Vault documentation and I'm still not sure if I understand it correctly on which approach to take for my problem. Imagine having an entity called Example. It has multiple fields, such as name, created, etc. and amongst these…

java spring hashicorp-vault spring-vault

asked May 05 '20 at 08:11

TilenA

votes

1 answer

Spring cloud not able to resolve vault secret into .yml

I'm working with microservice architecture and have spring cloud config service and another microservice. profiles: active: vault cloud: # Configuration for a vault server running in dev mode vault: scheme: http host:…

spring spring-boot spring-cloud hashicorp-vault spring-vault

asked Apr 09 '20 at 14:22

sherybedrock

Prev 1 2 3

…

8 9 Next