Package vaultk8s

Package vaultk8s provides authentication with Vault on Kubernetes

Replaces package github.com/postfinance/vault/k8s

Authentication is done either with Vault's Kubernetes Auth Method or AppRole Auth Method.

Checkout the Vault documentation for details:

If the environment variables VAULT_ROLE_ID and VAULT_SECRET_ID are set, AppRole Auth Method will be used, Kubernetes Auth Method otherwise.

For a successful Kubernetes authentication the environment variable VAULT_ROLE must be set.

Tests

For testing, HashiCorp's Vault and a Kubernetes cluster will be used.

HashiCorp Vault

Install Vault

Start Vault:

export VAULT_DEV_ROOT_TOKEN_ID="90b03685-e17b-7e5e-13a0-e14e45baeb2f"
export VAULT_DEV_LISTEN_ADDRESS="127.0.0.1:8200"
vault server -dev

IMPORTANT: Start vault with the same root token and listen address as defined in k8s_test.go.

Kubernetes

Install and start kind.
kubectl apply -f ci/rbac.yaml

Name		Name	Last commit message	Last commit date
Latest commit History 24 Commits
.github/workflows		.github/workflows
ci		ci
.cc.yml		.cc.yml
.gitignore		.gitignore
.golangci.yaml		.golangci.yaml
CHANGELOG.md		CHANGELOG.md
CONTRIBUTING.md		CONTRIBUTING.md
LICENSE.md		LICENSE.md
README.md		README.md
auth.go		auth.go
go.mod		go.mod
go.sum		go.sum
k8s.go		k8s.go
k8s_test.go		k8s_test.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Package vaultk8s

Tests

HashiCorp Vault

Kubernetes

About

Releases 1

Packages

Contributors 2

Languages

License

postfinance/vaultk8s

Folders and files

Latest commit

History

Repository files navigation

Package vaultk8s

Tests

HashiCorp Vault

Kubernetes

About

Resources

License

Stars

Watchers

Forks

Releases 1

Packages 0

Contributors 2

Languages

Packages