A TLS clustering plugin for caddyserver to use Vault as storage for storing TLS data like certificates, keys etc.,
state: ALPHA
This plugin expects the following environment.
- You need a VAULT server running and accessible from the machine/s on which caddy is running.
To extend caddy with CaddyVault plugin, we need to include following import statement
in github.com/caddyserver/caddy/caddy/caddymain/run.go file.
import (
_ "github.com/caddyserver/caddy/caddyhttp"
_ "github.com/siva-chegondi/caddyvault"
)
Checkout following project for reference to build your own docker file. CaddyVault Docker
- We need to enable KV2 secrets engine on the path
certpaths
.
-
We can enable
CaddyVault
plugin by setting environment variableCADDY_CLUSTERING
tovault
. -
Now set the following environment variables.
- CADDY_CLUSTERING_VAULT_ENDPOINT
- CADDY_CLUSTERING_VAULT_KEY