{"id":21429598,"url":"https://github.com/dc-tec/vault-deployment","last_synced_at":"2026-05-22T05:05:30.697Z","repository":{"id":251368792,"uuid":"835423034","full_name":"dc-tec/vault-deployment","owner":"dc-tec","description":"Repository containing the configuration code to install and configure Hashicorp Vault.","archived":false,"fork":false,"pushed_at":"2024-08-06T20:46:59.000Z","size":12,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-01-23T08:17:41.534Z","etag":null,"topics":["ansible","terraform"],"latest_commit_sha":null,"homepage":"","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/dc-tec.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-07-29T20:07:01.000Z","updated_at":"2024-08-06T20:47:01.000Z","dependencies_parsed_at":"2024-08-05T22:38:15.600Z","dependency_job_id":"ca5d0ea9-f025-4cba-a4a3-dbe33c40eb60","html_url":"https://github.com/dc-tec/vault-deployment","commit_stats":null,"previous_names":["dc-tec/vault-deployment"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dc-tec%2Fvault-deployment","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dc-tec%2Fvault-deployment/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dc-tec%2Fvault-deployment/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dc-tec%2Fvault-deployment/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/dc-tec","download_url":"https://codeload.github.com/dc-tec/vault-deployment/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":243940062,"owners_count":20372044,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","terraform"],"created_at":"2024-11-22T22:18:24.857Z","updated_at":"2026-05-22T05:05:25.649Z","avatar_url":"https://github.com/dc-tec.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Hashicorp Vault\n\nThe Vault infrastructure is deployed using Docker Compose. It currently consists of:\n\n- Postgreql storage\n- Single Vault\n- Nginx Reverse Proxy\n\nPlease note that this is a development enviroment and this config should not be used in production.\n\n## Deploy Vault\n\nMake sure you have created some certificates using `openssl` in the `configuration/certs` directory.\n\n```ssh\nopenssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ./vault.key -out ./vault.crt\n```\n\nIn order to provide connection details for the database. I use [direnv](https://github.com/direnv/direnv) to auto-load environment variables.\n\nThe following variables are used:\n\n- POSTGRES_USER=${PGUSER}\n- POSTGRES_PASSWORD=${PGPASSWORD}\n- POSTGRES_DB=${PGDATABASE}\n- POSTGRES_URL=${PGURL}\n\nNext you should be able to start the stack using the following command:\n\n```ssh\ndocker compose -f src/infrastructure/docker-compose.yaml -d\n```\n\nAt the end of the logs you should see a message like this:\n\n```\nvault        | ==\u003e Vault server configuration:\nvault        |\nvault        |              Api Address: http://0.0.0.0:8200\nvault        |                      Cgo: disabled\nvault        |          Cluster Address: https://0.0.0.0:8201\nvault        |    Environment Variables: GODEBUG, HOME, HOSTNAME, PATH, PWD, SHLVL, VAULT_LOCAL_CONFIG\nvault        |               Go Version: go1.20.4\nvault        |               Listener 1: tcp (addr: \"0.0.0.0:8200\", cluster address: \"0.0.0.0:8201\", max_request_duration: \"1m30s\", max_request_size: \"33554432\", tls: \"disabled\")\nvault        |                Log Level:\nvault        |                    Mlock: supported: true, enabled: true\nvault        |            Recovery Mode: false\nvault        |                  Storage: postgresql (HA available)\nvault        |                  Version: Vault v1.13.3, built 2023-06-06T18:12:37Z\nvault        |              Version Sha: 3bedf816cbf851656ae9e6bd65dd4a67a9ddff5e\nvault        |\nvault        | 2024-08-05T19:47:55.299Z [INFO]  proxy environment: http_proxy=\"\" https_proxy=\"\" no_proxy=\"\"\nvault        | 2024-08-05T19:47:55.517Z [INFO]  core: Initializing version history cache for core\nvault        | ==\u003e Vault server started! Log data will stream in below:\nvault        |\nvault        | 2024-08-05T19:48:03.548Z [INFO]  core: security barrier not initialized\nvault        | 2024-08-05T19:48:03.548Z [INFO]  core: seal configuration missing, not initialized\n```\n\nYou also should be able to access the Vault UI on: https://0.0.0.0/ui or the provided server name in the Nginx config.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdc-tec%2Fvault-deployment","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdc-tec%2Fvault-deployment","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdc-tec%2Fvault-deployment/lists"}