A Browser extension to leverage Hashicorp Vault as Credential Storage for teams
A project started on a Hackathon @ ironSource by Dimitry1987 and continued by Chris Blum
Get it: Chrome Store Firefox AMO
- Connect to Vault and get Token
- Get list of potential credentials in Popup
- Select credentials from popup and have them filled into the website
- Copy username & password to the clipboard
Vault needs to be prepared to use this extention.
This extention expects secrets to be saved in the 'secret' mount path (the default KV store).
Version 1 and 2 of the KV store are supported - only difference are the Vault policies you will have to write.
The path in this mount should be /vaultPass/[someOrg]/url where:
someOrgwill be some organisational level in your company to separate access levels- You can activate and deactivate these "folders" in options
urlis a URL or part of it that the credentials should match for- Be aware that * characters (and potentially others...) may not work!
- It should have at least the keys
usernameandpasswordwith the respective information
- Get a Token via the options page of this extention
There are two short docs to get your started with access policies:
If you just installed Vault - you propably have Version 2.
- Create application specific Token instead of using the user-token
- Write (new) credentials to Vault
- Out of scope --> Do this directly in Vault for now
Tested with Vault 1.0.x
If you contribute, please install the pre-commit Hook. If you have no idea what I am talking about - it's as easy as this:
pip install pre-commit
pre-commit installThis will install the hook and will run checks before you commit changes.