Stack Overflow
Stack Overflow

Questions tagged [vault]

VAULT QUESTIONS MUST BE DEVELOPER-RELATED. Vault is an open-source platform designed to store secrets securely, Questions about configuring vault should be asked on https://serverfault.com. Not to be confused with [ansible-vault].

300 questions
1
vote
0 answers

How to access credentials from vault using roleID & secretID through spring b?

I’m trying to access the credentials kept at a vault location through spring boot, I have roleID , secretID, nameSpace, vaultPath & address given to me. The credentials are kept at a specific vault path. I am trying to configure this in…
Avinash
  • 11
  • 2
1
vote
1 answer

Hashicorp Vault on aws with cross region active - active setup | CFT, Terraform

I need to setup Hashicorp vault on aws with cross region setup in HA. And I gotta do it with complete automation , what would be the best IAC tool , Cloudformation- I found very less documentation on this for vault setup. Or Terraform - ? has some…
Rajesh Thakur
  • 31
  • 1
  • 1
  • 5
1
vote
0 answers

Vault token that does not expire

I am using Vault Kubernetes auth method for authenticate services against Vault and I wonder if I can generate a token with this auth method which does not expire.
erez
  • 151
  • 2
  • 3
  • 9
1
vote
0 answers

Editing Vault High Availability configuration via the Helm chart at installation

I am currently having issues updating the Vault server HA (high-availability) storage to use PostgreSQL upon Vault installation via Helm 3. Things I have tried: Setting the values needed for HA (high-availability) manually, using the --set= Helm…
Jacob Baker
  • 31
  • 2
1
vote
2 answers

Can't show log from Spring Cloud Vault Connection

Due to an upgrade from spring 2.3.X to 2.4.X I had to upgrade the dependencies spring-cloud-starter-vault-config to 3.0.1. This have a breaking change about the usage of bootstrap.yml file. (for detail ->…
Cedric WEBER
  • 11
  • 3
1
vote
1 answer

How to start Hashocorp vault as a Service and access from another EC2 instance?

I need to start the Hashicorp vault as a service in the EC2 instance, access it from another ec2 instance, it needs to unseal the key every starts. How can I automate to unseal the keys at every start of the Ec2 instance? I referred this doc to…
SST
  • 2,054
  • 5
  • 35
  • 65
1
vote
2 answers

Spring boot MariaDB vault username credentials not available during startup

Problem statement: java.sql.SQLSyntaxErrorException: Could not connect to address=(host=127.0.0.1)(port=3306)(type=master) : (conn=1058) Access denied for user ''@'localhost' to database 'my-db' User is not available during startup. Vault…
Enfochannel
  • 21
  • 1
  • 2
1
vote
1 answer

Recursively copy the secrets from one VAULT path to another

I am trying to copy all the secrets along with the subfolders from one VAULT path to another. Example: source = "/path/namespace/TEAM1/jenkins" (note: the above source path consists of subfolders like job1,job2,job3... and all these subfolders…
Rohith
  • 1,077
  • 5
  • 16
  • 36
1
vote
0 answers

Hashicorp Vault won't let me delete a Policy even using the root token

I am trying to delete a policy. After logging in with the root token, I do the following: $ vault policy delete testttt Error deleting testttt: Error making API request. URL: DELETE https://vault.local:8200/v1/sys/policies/acl/testttt Code: 400.…
David
  • 646
  • 1
  • 7
  • 27
1
vote
0 answers

Unable to put Vault UI in https

I try to run Vault with a CRC OpenShift 4.7 and helm3 but I've some problems when I try to enable the UI in https. Add hashicorp repo : helm repo add hashicorp https://helm.releases.hashicorp.com Install the latest version of vault…
Drak432
  • 173
  • 1
  • 7
1
vote
1 answer

error making upstream request 403 sts vault from aws instance

I have attached one IAM role to the aws instance. The role my-role has administrative permissions and sts permissions as well. I ran the following commands but I get error. export VAULT_ADDR=https://somevaultsite.com vault login -tls-skip-verify…
Mohammed Shoaib
  • 69
  • 1
  • 7
1
vote
0 answers

How to get the ID token of user to a client application after logging in with Vault-OIDC method?

I have a web application that is in Java. I am successful in authenticating the app via google as the OIDC provider. However, I want the application to connect to google's OIDC via hashicorp vault. I want vault to return an access_token along with…
Nithin Teekaramanaa
  • 11
  • 1
1
vote
1 answer

Access Denied on vault secrets

I am new to vault, and trying to secure data according to the k8s namespace a pod is in. I have the authentication part sorted, but I can't make an ACL that lets a client read secrets without giving away all secrets The structure i am using is…
Jon Bates
  • 3,055
  • 2
  • 30
  • 48
0
votes
1 answer

Hashicorp Vault custom plugin upgrade in Kubernetes StatefulSet

I’m writing to ask for help in improving the custom plugin upgrade process for our Kubernetes StatefulSet running Vault. Our current setup is as follows: We have developed our own plugins for Vault. We have 3 replicas of the Vault pod in the…
Tantre
  • 33
  • 2
  • 9
0
votes
0 answers

Request to hashicorp vault works through cURL but not node js program

Request to hashicorp vault works through cURL but not through a Node JS program. cURL request: curl --header "X-Vault-Namespace:infrastructure/abc/def" --header "X-Vault-Token:hvs.xyzabcdef" --request GET…
Ananya S
  • 1
  • 1
1 2 3
19 20