Stack Overflow
Stack Overflow

Questions tagged [vault]

VAULT QUESTIONS MUST BE DEVELOPER-RELATED. Vault is an open-source platform designed to store secrets securely, Questions about configuring vault should be asked on https://serverfault.com. Not to be confused with [ansible-vault].

300 questions
2
votes
2 answers

How to connect to remote hashicorp vault server

Let me explain my use-case here, I wanted to give a try to vault in my local, so I configured VAULT_ADDR as: $ echo $VAULT_ADDR http://127.0.0.1:8200 then I started vault in dev mode (vault server -dev) and everything was ok, I was able to connect…
Tapan Hegde
  • 1,222
  • 1
  • 8
  • 25
2
votes
2 answers

List all directories and secrets (recursively) in Vault

I'm writing a method in Python that takes in an engine name, and lists all of the sub directories and secrets in the directory. I've been playing around with hvac and I've been able to list all of the secrets within a specific directory using the…
trueCamelType
  • 2,198
  • 5
  • 39
  • 76
2
votes
1 answer

Spring Vault Integration - read secrets from multiple paths

Is it possible to read secrets stored under multiple paths/contexts in Vault from Spring Boot application? I assume, profiles should be used, but not sure and still didn't manage to configure profiles. Approle authentication is used to connect Vault…
Ivan
  • 193
  • 3
  • 14
2
votes
0 answers

Hashicorp's Vault Certiticate Authentication not working. How to configure server and client certificates?

I am trying to enable TLS authentication in a Vault that is deployed within a Kubernetes cluster. My goal is to be able to login to the vault using cert method as follows: vault login \ -method=cert \ -ca-cert=vault-ca.pem \ …
Ana Franco
  • 21
  • 1
2
votes
0 answers

Setting up hashicorp vault in production with chef docker resource

I am trying to setup hashicorp vault in production with chef cookbook. This is what I have in my recipes/default.rb directory '/vault-docker' do action :create end cookbook_file '/vault-docker/config.hcl' do source 'config.hcl' action…
Hakeem Baba
  • 647
  • 1
  • 12
  • 32
2
votes
1 answer

Permisson error creating project with GCP token, terraform and vault

I want to create a GCP project with terraform using vault to get the token. I have the GCP secrets engine already configured and I ask vault within terraform to get the token; but when I run terraform to create the project, I get an error that…
EMG
  • 51
  • 6
2
votes
0 answers

Vault TLS errors preventing vault from going into active mode

We are encountering a strange problem with our vault cluster in which vault does not go into active mode and throws some TLS errors and I’m at a bit of a loss on what is going on. This cluster uses AWS dynamodb as a backend. The error is as follows…
Mike
  • 21
  • 1
  • 2
2
votes
0 answers

Spring vault authentication token renewal

I am writing a microservice that stores and fetches secrets from vault. In order to do so, I need to refresh my authentication token, so I am using spring.cloud.vault.config.lifecycle.enabled=true. The problem is, that when I set this to true, it…
Viktor
  • 21
  • 1
  • 1
2
votes
1 answer

Can't connect to Vault web ui

Can't connect to Vault Web UI. I used docker-compose to create vault container. Trying to connect from another machine using ip address, but have error: ERR_CONNECTION_REFUSED docker-compose.yml: version: '2' services: vault: image:…
Garamoff
  • 84
  • 1
  • 6
2
votes
0 answers

Spring vault configs are not being applied

I am new to Spring vault and somewhat new to Springboot, I am trying to learn this so I need help. Apologies for the very long post though. Here is my source of the Spring vault project that I have set up looking at various tutorials…
Uzair Abid
  • 69
  • 3
2
votes
1 answer

Vault .NET - Invalid path for a versioned K/V secrets engine

I've added all my configuration details in the Vault. The detail you can see in the attached image below. This follows a specific path i.e kv/unistad/dev/workflow/camunda/1.0 However, when I try to read this information using Vault.NET with the…
Ali Asad
  • 251
  • 4
  • 15
2
votes
1 answer

Vault OIDC with google, how to restrict roles to specific groups

I installed a vault and configured OIDC with gsuite, that was already an adventure in itself as the documentation is limited and even wrong at more than one place. Finally I have a working authentication with my google accounts and I began to create…
night-gold
  • 2,202
  • 2
  • 20
  • 31
1
vote
1 answer

How to make vault Secret ID can be reused multiple times?

So I have a PoC Vault with Dockerfile something like this (full repo here): FROM hashicorp/vault RUN apk add --no-cache bash jq COPY reseller1-policy.hcl /vault/config/reseller1-policy.hcl COPY terraform-policy.hcl…
Kokizzu
  • 24,974
  • 37
  • 137
  • 233
1
vote
1 answer

How to use jsondecode for to decode public aws ssh keys from vault

I am trying to see how to go about retrieving some aws public ssh keys from vault using terraform. Vault is returning a string instead of an array of strings, so I looks like it would have to treat the whole response as a json object. How would I…
Carolina D Vallecillo
  • 47
  • 4
1
vote
1 answer

Hashicorp Vault permission with no response

I have created a kv (version 2) secrets engine, mounted on /secret: / $ vault secrets list Path Type Accessor Description ---- ---- -------- ----------- secret/ kv …
user3573246
  • 125
  • 1
  • 6
1 2
3
19 20