securityscorecard/vault-vouch


Glue for Trusted Third Parties & Hashicorp Vault

License: MIT

Language: Go

Keywords: consul-template, containers, docker, ec2, ecs, golang-application, orchestration, secrets, sre, vault, vault-client


vault-vouch

This tool is designed to act as glue between a Trusted Third Party & Hashicorp Vault. The target use case is with consul-template.

The only supported Trusted Third Party is currently AWS IAM.

Usage

Command Argument Environment Variable Default Description
-role= IV_ROLE nil Role to request from Vault
-wrap_token= IV_WRAP_TOKEN true Do we want a wrapped token
-wrap_token_ttl= IV_WRAP_TOKEN_TTL 5m TTL for wrapped token
-vault_addr= IV_VAULT_ADDR nil Vault address

Example

export VAULT_ADDR=https://vault.contoso.com
export VAULT_TOKEN=$(vault-vouch -role="my-role")
consul-template -template "in.tpl:out.conf" -config "conf.hcl" -vault-unwrap-token -vault-renew-token=false

Project Statistics

Sourcerank 3
Repository Size 29.3 KB
Stars 2
Forks 0
Watchers 6
Open issues 0
Dependencies 37
Contributors 1
Tags 7
Created
Last updated
Last pushed

Top Contributors See all

Logan Attwood

Recent Tags See all

v0.1.6 September 13, 2017
v0.1.5 September 12, 2017
v0.1.4 September 12, 2017
v0.1.3 September 01, 2017
v0.1.2 September 01, 2017
v0.1.1 September 01, 2017
v0.1.0 September 01, 2017

Something wrong with this page? Make a suggestion

Last synced: 2017-08-31 23:06:06 UTC

Login to resync this repository