{"id":13472693,"url":"https://github.com/djenriquez/vault-ui","last_synced_at":"2025-09-28T19:31:28.991Z","repository":{"id":57390977,"uuid":"72892496","full_name":"djenriquez/vault-ui","owner":"djenriquez","description":"Vault-UI — A beautiful UI to manage your Vault, written in React","archived":true,"fork":false,"pushed_at":"2018-06-06T16:39:40.000Z","size":1727,"stargazers_count":1317,"open_issues_count":50,"forks_count":145,"subscribers_count":47,"default_branch":"master","last_synced_at":"2025-08-17T05:26:00.769Z","etag":null,"topics":["devops","docker","hashicorp","react","ui","vault","vault-ui"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/djenriquez.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2016-11-04T23:20:29.000Z","updated_at":"2025-08-05T15:48:42.000Z","dependencies_parsed_at":"2022-09-17T04:20:50.204Z","dependency_job_id":null,"html_url":"https://github.com/djenriquez/vault-ui","commit_stats":null,"previous_names":[],"tags_count":10,"template":false,"template_full_name":null,"purl":"pkg:github/djenriquez/vault-ui","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/djenriquez%2Fvault-ui","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/djenriquez%2Fvault-ui/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/djenriquez%2Fvault-ui/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/djenriquez%2Fvault-ui/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/djenriquez","download_url":"https://codeload.github.com/djenriquez/vault-ui/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/djenriquez%2Fvault-ui/sbom","scorecard":{"id":346064,"data":{"date":"2025-08-11","repo":{"name":"github.com/djenriquez/vault-ui","commit":"36266eaaa82049bfc3059d522df26973cc49b72a"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":1.8,"checks":[{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Code-Review","score":2,"reason":"Found 7/28 approved changesets -- score normalized to 2","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"project is archived","details":["Warn: Repository is archived."],"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: containerImage not pinned by hash: Dockerfile:1: pin your Docker image by updating node:8-alpine to node:8-alpine@sha256:38f7bf07ffd72ac612ec8c829cb20ad416518dbb679768d7733c93175453f4d4","Info:   0 out of   1 containerImage dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact 2.4.0-rc3 not signed: https://api.github.com/repos/djenriquez/vault-ui/releases/7995221","Warn: release artifact 2.2.0 not signed: https://api.github.com/repos/djenriquez/vault-ui/releases/6230427","Warn: release artifact 2.1.0 not signed: https://api.github.com/repos/djenriquez/vault-ui/releases/5904016","Warn: release artifact 2.4.0-rc3 does not have provenance: https://api.github.com/repos/djenriquez/vault-ui/releases/7995221","Warn: release artifact 2.2.0 does not have provenance: https://api.github.com/repos/djenriquez/vault-ui/releases/6230427","Warn: release artifact 2.1.0 does not have provenance: https://api.github.com/repos/djenriquez/vault-ui/releases/5904016"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 25 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"139 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-v88g-cgmw-v5xw","Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw","Warn: Project is vulnerable to: GHSA-fwr7-v2mv-hh25","Warn: Project is vulnerable to: GHSA-42xw-2xvc-qx8m","Warn: Project is vulnerable to: GHSA-4w2v-q235-vp99","Warn: Project is vulnerable to: GHSA-cph5-m8f7-6c5x","Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx","Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6","Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92","Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-cwfw-4gq5-mrqx","Warn: Project is vulnerable to: GHSA-g95f-p29q-9xw4","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-x9w5-v3q2-3rhw","Warn: Project is vulnerable to: GHSA-257v-vj4p-3w2h","Warn: Project is vulnerable to: GHSA-g74r-ffvr-5q9f","Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-9vvw-cc9w-f27h","Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c","Warn: Project is vulnerable to: GHSA-hr2v-3952-633q","Warn: Project is vulnerable to: GHSA-ff7x-qrg7-qggm","Warn: Project is vulnerable to: GHSA-phwq-j96m-2c2q","Warn: Project is vulnerable to: GHSA-ghr5-ch3p-vcr6","Warn: Project is vulnerable to: GHSA-w222-53c6-c86p","Warn: Project is vulnerable to: GHSA-fjqr-fx3f-g4rv","Warn: Project is vulnerable to: GHSA-8xwg-wv7v-4vqp","Warn: Project is vulnerable to: GHSA-hv9c-qwqg-qj3v","Warn: Project is vulnerable to: GHSA-6vrv-94jv-crrg","Warn: Project is vulnerable to: GHSA-f9mq-jph6-9mhm","Warn: Project is vulnerable to: GHSA-h9jc-284h-533g","Warn: Project is vulnerable to: GHSA-m93v-9qjc-3g79","Warn: Project is vulnerable to: GHSA-hvf8-h2qh-37m9","Warn: Project is vulnerable to: GHSA-mpjm-v997-c4h4","Warn: Project is vulnerable to: GHSA-3p22-ghq8-v749","Warn: Project is vulnerable to: GHSA-77xc-hjv8-ww97","Warn: Project is vulnerable to: GHSA-mq8j-3h7h-p8g7","Warn: Project is vulnerable to: GHSA-p2jh-44qj-pf2v","Warn: Project is vulnerable to: GHSA-p7v2-p9m8-qqg7","Warn: Project is vulnerable to: GHSA-7x97-j373-85x5","Warn: Project is vulnerable to: GHSA-7m48-wc93-9g85","Warn: Project is vulnerable to: GHSA-qqvq-6xgj-jw8g","Warn: Project is vulnerable to: GHSA-6r2x-8pq8-9489","Warn: Project is vulnerable to: GHSA-vh7m-p724-62c2","Warn: Project is vulnerable to: GHSA-r9p9-mrjm-926w","Warn: Project is vulnerable to: GHSA-434g-2637-qmqr","Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m","Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw","Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p","Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747","Warn: Project is vulnerable to: GHSA-vjh7-7g9h-fjfh","Warn: Project is vulnerable to: GHSA-4gmj-3p3h-gm8h","Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc","Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx","Warn: Project is vulnerable to: GHSA-qrmc-fj45-qfc2","Warn: Project is vulnerable to: GHSA-74fj-2j2h-c42q","Warn: Project is vulnerable to: GHSA-pw2r-vq6v-hr8c","Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc","Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp","Warn: Project is vulnerable to: GHSA-fjxv-7rqg-78g4","Warn: Project is vulnerable to: GHSA-8r6j-v8pm-fqw3","Warn: Project is vulnerable to: MAL-2023-462","Warn: Project is vulnerable to: GHSA-xf7w-r453-m56c","Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97","Warn: Project is vulnerable to: GHSA-44pw-h2cw-w3vq","Warn: Project is vulnerable to: GHSA-jp4x-w63m-7wgm","Warn: Project is vulnerable to: GHSA-c429-5p7v-vgjp","Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj","Warn: Project is vulnerable to: GHSA-qqgx-2p2h-9c37","Warn: Project is vulnerable to: GHSA-4hpf-3wq7-5rpr","Warn: Project is vulnerable to: GHSA-f522-ffg8-j8r6","Warn: Project is vulnerable to: GHSA-7r28-3m3f-r2pr","Warn: Project is vulnerable to: GHSA-r8j5-h5cx-65gg","Warn: Project is vulnerable to: GHSA-2pr6-76vf-7546","Warn: Project is vulnerable to: GHSA-8j8c-7jfh-h6hx","Warn: Project is vulnerable to: GHSA-896r-f27r-55mw","Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h","Warn: Project is vulnerable to: GHSA-q854-j362-cfq9","Warn: Project is vulnerable to: GHSA-hhfg-6hfc-rvxm","Warn: Project is vulnerable to: GHSA-282f-qqgm-c34q","Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq","Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488","Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g","Warn: Project is vulnerable to: GHSA-fvqr-27wr-82fm","Warn: Project is vulnerable to: GHSA-4xc9-xhrj-v574","Warn: Project is vulnerable to: GHSA-x5rq-j2xg-h7qm","Warn: Project is vulnerable to: GHSA-jf85-cpcp-j695","Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw","Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9","Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm","Warn: Project is vulnerable to: GHSA-2m96-9w4j-wgv7","Warn: Project is vulnerable to: GHSA-h726-x36v-rx45","Warn: Project is vulnerable to: GHSA-pp57-mqmh-44h7","Warn: Project is vulnerable to: GHSA-4xcv-9jjx-gfj3","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv","Warn: Project is vulnerable to: GHSA-wrvr-8mpx-r7pp","Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3","Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m","Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h","Warn: Project is vulnerable to: GHSA-3mpr-hq3p-49h9","Warn: Project is vulnerable to: GHSA-fhjf-83wg-r2j9","Warn: Project is vulnerable to: GHSA-r683-j2x4-v87g","Warn: Project is vulnerable to: GHSA-76c9-3jph-rj3q","Warn: Project is vulnerable to: GHSA-hj48-42vr-x3v9","Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j","Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w","Warn: Project is vulnerable to: GHSA-h7cp-r72f-jxh6","Warn: Project is vulnerable to: GHSA-v62p-rq8g-8h59","Warn: Project is vulnerable to: GHSA-4cpg-3vgw-4877","Warn: Project is vulnerable to: GHSA-566m-qj78-rww5","Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j","Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp","Warn: Project is vulnerable to: GHSA-6g33-f262-xjp4","Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg","Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p","Warn: Project is vulnerable to: GHSA-4rq4-32rv-6wp6","Warn: Project is vulnerable to: GHSA-64g7-mvw6-v9qj","Warn: Project is vulnerable to: GHSA-2m39-62fm-q8r3","Warn: Project is vulnerable to: GHSA-mf6x-7mm4-x2g7","Warn: Project is vulnerable to: GHSA-j44m-qm6p-hp7m","Warn: Project is vulnerable to: GHSA-3jfq-g458-7qm9","Warn: Project is vulnerable to: GHSA-5955-9wpr-37jh","Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36","Warn: Project is vulnerable to: GHSA-g7q5-pjjr-gqvp","Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3","Warn: Project is vulnerable to: GHSA-7p7h-4mm5-852v","Warn: Project is vulnerable to: GHSA-662x-fhqg-9p8v","Warn: Project is vulnerable to: GHSA-394c-5j6w-4xmx","Warn: Project is vulnerable to: GHSA-78cj-fxph-m83p","Warn: Project is vulnerable to: GHSA-fhg7-m89q-25r3","Warn: Project is vulnerable to: GHSA-332q-7ff2-57h2","Warn: Project is vulnerable to: GHSA-h6q6-9hqw-rwfv","Warn: Project is vulnerable to: GHSA-5fg8-2547-mr8q","Warn: Project is vulnerable to: GHSA-crh6-fp67-6883","Warn: Project is vulnerable to: GHSA-c4w7-xm78-47vh","Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-18T07:04:16.336Z","repository_id":57390977,"created_at":"2025-08-18T07:04:16.336Z","updated_at":"2025-08-18T07:04:16.336Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":276202689,"owners_count":25602475,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-21T02:00:07.055Z","response_time":72,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["devops","docker","hashicorp","react","ui","vault","vault-ui"],"created_at":"2024-07-31T16:00:57.143Z","updated_at":"2025-09-28T19:31:28.625Z","avatar_url":"https://github.com/djenriquez.png","language":"JavaScript","funding_links":[],"categories":["JavaScript","ui"],"sub_categories":[],"readme":"\u003ca href=\"https://github.com/djenriquez/vault-ui\"\u003e\n    \u003cimg src=\"http://svgshare.com/i/177.svg\" alt=\"Vault-UI Logo\"\n         title=\"Vault-UI\" width=\"64px\" align=\"right\" /\u003e\n\u003c/a\u003e\n\n[![Run Status](https://api.shippable.com/projects/581e7826fbc68c0f00deb0ca/badge?branch=master)](https://app.shippable.com/projects/581e7826fbc68c0f00deb0ca)\n[![](https://images.microbadger.com/badges/image/djenriquez/vault-ui.svg)](https://microbadger.com/images/djenriquez/vault-ui)\n[![Join the chat at https://gitter.im/vault-ui/Lobby](https://badges.gitter.im/vault-ui/Lobby.svg)](https://gitter.im/vault-ui/Lobby)\n\n# Vault-UI\n\nA beautiful way to manage your Hashicorp Vault\n\n![](http://i.imgur.com/COBxk3m.gif)\n\n## Features\n\n- Easy to deploy as Web App\n- Desktop version works on Mac, Linux and Windows\n- Material UI Design\n- Integrated JSON Editor\n- Written in React\n\n## Installation\n\n### Desktop Version\n\nVault-UI Desktop is available for the following operating systems:\n- Windows\n- MacOS\n- Linux (32bit and 64bit AppImage)\n\nDownload the latest version from the release page and install/run the software\n\n### Web Version\n\nVault-UI can be deployed as a shared web app for your organization\n\nDocker images are automatically built using an [automated build on Docker Hub](https://hub.docker.com/r/djenriquez/vault-ui/builds/).\nWe encourage that versioned images are used for production.\n\nTo run Vault-UI using the latest Docker image:\n```bash\ndocker run -d \\\n-p 8000:8000 \\\n--name vault-ui \\\ndjenriquez/vault-ui\n```\n\n#### Advanced configuration options\n\nBy default, connection and authentication parameters must be configured by clicking on the configuration cog on the login page.\nUsing environment variables (via docker), an administrator can pre-configure those parameters.\n\nExample command to pre-configure the Vault server URL and authentication method\n```bash\ndocker run -d \\\n-p 8000:8000 \\\n-e VAULT_URL_DEFAULT=http://vault.server.org:8200 \\\n-e VAULT_AUTH_DEFAULT=GITHUB \\\n--name vault-ui \\\ndjenriquez/vault-ui\n```\n\nSupported environment variables:\n- `PORT` Sets the port for Vault-UI to listen on. (Default 8000)\n- `CUSTOM_CA_CERT` Pass a self-signed certificate that the system should trust.\n- `NODE_TLS_REJECT_UNAUTHORIZED` Disable TLS server side validation. (ex. vault deployed with self-signed certificate). Set to `0` to disable.\n- `VAULT_URL_DEFAULT` Sets the default vault endpoint. Note: protocol part of the url is mandatory. Example: http://10.0.0.1:8200\n- `VAULT_AUTH_DEFAULT` Sets the default authentication method type. See below for supported authentication methods.\n- `VAULT_AUTH_BACKEND_PATH` Sets the default backend path. Useful when multiple backends of the same type are mounted on the vault file system.\n- `VAULT_SUPPLIED_TOKEN_HEADER` Instructs Vault-UI to attempt authentication using a token provided by the client in the specified HTTP request header.\n\nThis defaults can be overridden if the user fills out the endpoint and auth method manually.\n\n\nCurrent supported login methods:\n- `GITHUB` : When using the [GitHub](https://www.vaultproject.io/docs/auth/github.html) backend\n- `USERNAMEPASSWORD` : When using the [Username \u0026 Password](https://www.vaultproject.io/docs/auth/userpass.html) or [RADIUS](https://www.vaultproject.io/docs/auth/radius.html) backends\n- `LDAP` : When using the [LDAP](https://www.vaultproject.io/docs/auth/ldap.html) backend\n- `TOKEN` : When using the [Tokens](https://www.vaultproject.io/docs/auth/token.html) backend\n\nCurrent supported management of backend auth methods:\n- [GitHub](https://www.vaultproject.io/docs/auth/github.html)\n- [RADIUS](https://www.vaultproject.io/docs/auth/radius.html)\n- [AWS-EC2](https://www.vaultproject.io/docs/auth/aws-ec2.html)\n- [Username \u0026 Password](https://www.vaultproject.io/docs/auth/userpass.html)\n- [Token](https://www.vaultproject.io/docs/auth/token.html)\n- [AppRole](https://www.vaultproject.io/docs/auth/approle.html)\n- [Kubernetes](https://www.vaultproject.io/docs/auth/kubernetes.html)\n\nIn some cases, users might want to use middleware to authenticate into Vault-UI for purposes like SSO. In this case, the `VAULT_SUPPLIED_TOKEN_HEADER` may be populated with the name of the header that contains a token to be used for authentication.\n\n\n## Usage\n\n### Basic policy for Vault-UI users\nA user/token accessing Vault-UI requires a basic set of capabilities in order to correctly discover and display the various mounted backends.\nPlease make sure your user is granted a policy with at least the following permissions:\n\n#### JSON\n```json\n{\n  \"path\": {\n    \"auth/token/lookup-self\": {\n      \"capabilities\": [\n        \"read\"\n      ]\n    },\n    \"sys/capabilities-self\": {\n      \"capabilities\": [\n        \"update\"\n      ]\n    },\n    \"sys/mounts\": {\n      \"capabilities\": [\n        \"read\"\n      ]\n    },\n    \"sys/auth\": {\n      \"capabilities\": [\n        \"read\"\n      ]\n    }\n  }\n}\n```\n\n#### HCL\n```\npath \"auth/token/lookup-self\" {\n    capabilities = [ \"read\" ]\n}\n\npath \"sys/capabilities-self\" {\n    capabilities = [ \"update\" ]\n}\n\npath \"sys/mounts\" {\n    capabilities = [ \"read\" ]\n}\n\npath \"sys/auth\" {\n    capabilities = [ \"read\" ]\n}\n```\n\n### Secrets\nSecrets are now managed using the graphical [josdejong/jsoneditor](https://github.com/josdejong/jsoneditor) JSON editor. Schema validation is enforced on policies to aid the operator in writing correct syntax.\n\nSecrets also are accessible directly by key from a browser by navigating to the URI `/secrets/\u003cbackendtype\u003e/\u003cmountpoint\u003e/key`. For example, if you have a generic secret key of /hello/world/vault using the _generic_ mount `secret/`, one can navigate to this directly through http://vault-ui.myorg.com/secrets/secret/hello/world/vault.\n\n#### Root key bias\nBy default, secrets will display as their raw JSON value represented by the `data` field in the HTTP GET response metadata. However, users can apply a \"Root Key\" bias to the secrets through the settings page. The \"Root Key\" will be used when reading, creating and updating secrets such that the value displayed in the UI is the value stored at the \"Root Key\". For example, if the secret at `secret/hello` is `{ \"value\": \"world\" }`, setting the \"Root Key\" to `value` will update the UI such that the secret will display as simply \"world\" instead of `{ \"value\": \"world\" }`.\n\n\n### Policies\nPolicies are managed also using the [josdejong/jsoneditor](https://github.com/josdejong/jsoneditor) JSON editor. Currently, GitHub and raw Tokens are the only supported authentication backends for associated policies.\n\n### Token Management\nUsers have the ability to create and revoke tokens, manage token roles and list accessors. The following permissions are needed at minimum for this feature:\n\n#### JSON:\n```json\n{\n  \"path\": {\n     \"auth/token/accessors\": {\n       \"capabilities\": [\n         \"sudo\",\n         \"list\"\n       ]\n    },\n     \"auth/token/lookup-accessor/*\": {\n       \"capabilities\": [\n         \"read\"\n       ]\n    }\n  }\n}\n```\n#### HCL\n```hcl\npath \"auth/token/accessors\" {\n    capabilities = [ \"sudo\", \"list\" ]\n}\n\npath \"auth/token/lookup-accessor/*\" {\n    capabilities = [ \"read\" ]\n}\n```\n\n### Response Wrapping\nVault-UI supports response-wrapping of secrets in _generic_ backends. Wrapping custom JSON data is also supported.\n\n\n## Development\nInstall the [yarn](https://yarnpkg.com/en/docs/install) package manager\n\n### With Docker\nThe command below will use [Docker Compose](https://docs.docker.com/compose/)\nto spin up a Vault dev server and a Vault UI server that you can log\ninto with username \"test\" and password \"test\":\n```sh\n./run-docker-compose-dev\n```\n\nIf major changes are made, be sure to run `docker-compose build` to rebuild dependencies.\n\n### Without Docker\nThe following will spin up a Vault UI server only. It will not set up\nVault for you:\n```sh\nyarn run dev-pack \u0026\nyarn start\n```\n\n# Licensing\nVault-UI is licensed under BSD 2-Clause. See [LICENSE](https://github.com/djenriquez/vault-ui/blob/master/LICENSE) for the full license text.\n\n# Donations\nVault-UI maintainers are humbly accepting [donations](https://github.com/djenriquez/vault-ui/wiki/Donations) as a way of saying thank you!\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdjenriquez%2Fvault-ui","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdjenriquez%2Fvault-ui","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdjenriquez%2Fvault-ui/lists"}