This Terraform module enables a Vault/OpenBao instance to use GatePlane.
-
It enables Cross-Origin Resource Sharing (CORS) and Content Security Policy (CSP) for IFrames to allow browser access from
https://app.gateplane.io(domain can be changed). -
It can register all GatePlane plugins to the Vault/OpenBao instance, so they can be recognised by the UI.
No requirements.
| Name | Version |
|---|---|
| vault | n/a |
| Name | Type |
|---|---|
| vault_generic_endpoint.content_security_policy | resource |
| vault_generic_endpoint.cross_origin_requests | resource |
| vault_plugin.mock | resource |
| vault_plugin.policy_gate | resource |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| domains | Domains to be allowed CORS and HTML iFrame access, by the Vault/OpenBao instance UI. | list |
[ |
no |
| mock_plugin | Filename, version and SHA256 HexDigest of the GatePlane Mock plugin (only used for testing). | object({ |
{ |
no |
| plugin_directory | The directory where Vault/OpenBao plugins are stored. | string |
"/usr/local/libexec/vault/" |
no |
| policy_gate_plugin | Filename, version and SHA256 HexDigest of the GatePlane Policy Gate plugin. | object({ |
{ |
no |
| Name | Description |
|---|---|
| enabled_plugins | The GatePlane Plugins registered in the Vault/OpenBao instance. |
This project is licensed under the Elastic License v2.
This means:
- ✅ You can use, fork, and modify it for yourself or within your company.
- ✅ You can submit pull requests and redistribute modified versions (with the license attached).
- ❌ You may not sell it, offer it as a paid product, or use it in a hosted service (e.g., SaaS).
- ❌ You may not re-license it under a different license.
In short: You can use and extend the code freely, privately or inside your business - just don’t build a business around it without our permission. This FAQ by Elastic greatly summarizes things.
See the ./LICENSES/Elastic-2.0.txt file for full details.