Stack Overflow
Stack Overflow

Questions tagged [vault]

VAULT QUESTIONS MUST BE DEVELOPER-RELATED. Vault is an open-source platform designed to store secrets securely, Questions about configuring vault should be asked on https://serverfault.com. Not to be confused with [ansible-vault].

300 questions
2
votes
1 answer

Combining two dictionaries and creating a list of dictionaries with updated credentials

I would like a helping hand to create a new data structure, which compares the two dictionaries, then create a list with dictionaries. The idea being that in case of change to keep the old versions and add the modified…
fable101
  • 23
  • 3
2
votes
0 answers

Difference between a HashiCorp Vault periodic token and a token with a TTL

When I create either a periodic token or a token with a TTL, these both look to have similar properties and would behave the same i.e. a token can be renewed for as long it has not expired and has no explicit max TTL. Is there a nuance between the…
bmd
  • 1,231
  • 3
  • 15
  • 23
2
votes
1 answer

Hashicorp Vault: Python hvac does not see secrets

I'm trying to use HashiCorp Vault with hvac Python client. I've run vault docker container (development mode config) on localhost, created a KV secret engine kv1 (with version 1 API), added a secret mega_secret, added a key/value ("hell" --> "yeah")…
Felix
  • 3,351
  • 6
  • 40
  • 68
2
votes
1 answer

Micronaut Vault Config Client gives no bean of type SerdeConfiguration exists error

I want to pull configurations from Vault and got the below error while starting my app by enabling Config Client and Vault. The no SerdeConfiguration bean error happened even before hitting the Vault server. I wonder whether I missed anything on the…
Steve Park
  • 1,979
  • 27
  • 33
2
votes
1 answer

How to mount Vault secret as a file in Kubernetes?

I'm using Hashicorp Vault in Kubernetes. I'm trying to mount secret file into main folder where my application resides. It would look like that: /usr/share/nginx/html/.env while application files are in /usr/share/nginx/html. But the container is…
Murakami
  • 3,474
  • 7
  • 35
  • 89
2
votes
2 answers

Password rotation strategy for snowflake when using multi-tenant tables

We are using snowflake database and we have created multi-tenant tables. We have created user-name and password for each tenant. These user-name and password are used in applications that use AWS quicksight and microsoft power bi tool. These…
user3822232
  • 141
  • 1
  • 8
2
votes
2 answers

Permission denied on Vault Terraform provider token creation

I am using Vault provider in Terraform IaC code like this: provider "vault" { address = var.vault_address auth_login { path = "auth/approle/login" parameters = { role_id = var.role_id secret_id = var.secret_id } …
Przemek Wit
  • 135
  • 3
  • 12
2
votes
2 answers

Hashicorp Vault container don't save my secrets on local volume when I restart docker compose

To be brief I'm struggling persisting the data saved in a vault container in my local machine after I put a docker-compose down and re-deploy it with docker-compose up -d, the data is lost. I'll show you how my .yml looks like very simple: version:…
Eduardo Nicolalde
  • 57
  • 6
2
votes
1 answer

Get database secrets (username and password) from hashicorp vault using python

I want to get credentials (username and password)from Hashicorp vault using hvac python library and print them out or store them in some variable. However, I am getting an error TypeError: 'Response' object is not subscriptable after the last print…
Mubashir Ali
  • 69
  • 5
2
votes
1 answer

Enable k8s pods from multiple namespaces to read vault secret through vault agent

I have a vault setup in k8s with k8s auth enabled to allow vault agent to read secrets and export them as an environment variables to a k8s pod using K8s service account. everything is working fine if I’m using a single k8s namespace. I am not able…
Meet101
  • 711
  • 4
  • 18
  • 35
2
votes
1 answer

Store KOPS CA key and certificate in Vault

I've recently started using KOPS as a tool to provision Kubernetes clusters and from what I've seen so far, it stores it's CA key and certificates in its S3 bucket, which is fine. But out curiosity, would it be possible to store these in Hashicorp…
Metro
  • 873
  • 8
  • 19
2
votes
1 answer

HashiCorp Vault Error 403 Permission denied

Im new to HashiCorp Vault and im Doing the tutorials one by one by far i have cleared installing vault and setting up the server.. I even learnt to create a secret, no problems. Im facing an issue in secret engines.. When i type the command "vault…
MadMorphine
  • 23
  • 1
  • 1
  • 4
2
votes
1 answer

Hashicorp Vault error - Client sent an HTTP request to an HTTPS server

Having trouble deploying Hashicorp Vault on kubernetes/helm. Can't get vault to work at all. I've really tried changing almost all the parameters I could and still can't get it to work and I don't know where the issue lies exactly. The error I get…
anonymousmonkey339
  • 21
  • 6
2
votes
1 answer

Vaultsharp : System.AggregateException: 'One or more errors occurred. ({"errors":["no handler for route 'kv-v2/data'

Can not seem to get pass this error. hashicorp vault is running on my k3s env. I can get to the vault UI fine. I can also curl vault [POST, GET] using the following : curl --location --request POST 'http://192.168.8.110:31476/v1/niv/data/foo'…
Optimus Prime
  • 43
  • 1
  • 11
2
votes
1 answer

Range issue in go template in vault configuration in k8s

I don't know Golang at all but need to implement Go template syntax in my kubernetes config (where hishicorp vault is configured). What I'm trying to do is to modify file in order to change its format. So source looks like this: data:…
Murakami
  • 3,474
  • 7
  • 35
  • 89
1
2
3
19 20