Hashicorp Vault

Installation

helm repo add hashicorp https://helm.releases.hashicorp.com
$ cat config.yamlserver:
nodeSelector: |
node-type: vault
$ helm install -f config.yaml vault hashicorp/vault
Kubernetes label “vault” would match-up the nodeSelector

Starting up

Using Vault

Choose KV
Provide a Path to the newly created KV Secret Engine. Make sure to choose version 2.
Now that `mypath1` is created, we are ready to add secrets
Created a secret named `path` and I am using JSON values on it.
curl -H "X-Vault-Token: $VAULT_KEY" localhost:8200/v1/mypath1/data/path1 -s | jq
REST API to access my secret. Note, I am using `VAULT_KEY` from my “initial root token”
I have added a “userpass” as a new authentication method
curl localhost:8200/v1/auth/userpass/login/test_user -d '{"password": "test"}' -s | jq
Generate a client token for a naive “userpass” based auth
path "mypath1/*" {
capabilities = ["create", "read", "update", "delete", "list"]
}
Create an entity that enables a client token to allow access to secret

--

--

--

Listener and reader

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Introducing Druid: Realtime Fast Data Analytics Database

This image has an empty alt attribute; its file name is image-19.png

A New Journey Has Started!

DI with Koin, Introduction and Implementation: (Part -1).

Create AWS Metrics and Alarms based on Logs with Terraform

True Caller Like App Development — Costs & Features (H1)

MetaBrax Ecosystem : inDJ Platform Diagram

Top 10 Free Gantt Сharts for 2022

3 Dynamics facts I’ve learned the hard way: the pain facts!

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Programmer

Programmer

Listener and reader

More from Medium

Set up Kubernetes Cluster using Kind in 2 mins

Create KIND cluster/multi-node cluster on WSL2(Ubuntu 20.04)

Use a label to determine whether to forward logs or not with Fluentd daemonset in K8s

Configuring K3S using k3sup in AWS