Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/rgl/vault-vagrant
vault playground
https://github.com/rgl/vault-vagrant
vagrant vault
Last synced: about 2 months ago
JSON representation
vault playground
- Host: GitHub
- URL: https://github.com/rgl/vault-vagrant
- Owner: rgl
- Created: 2017-07-26T07:10:05.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2024-02-17T08:59:32.000Z (12 months ago)
- Last Synced: 2024-10-05T18:21:58.234Z (4 months ago)
- Topics: vagrant, vault
- Language: Shell
- Size: 67.4 KB
- Stars: 3
- Watchers: 2
- Forks: 2
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Usage
Install the [Ubuntu 22.04 Base Box](https://github.com/rgl/ubuntu-vagrant).
Launch the environment with libvirt (qemu-kvm):
```bash
vagrant up --provider=libvirt --no-destroy-on-error
```
Add the following entry to your `hosts` file:
```
10.0.0.20 vault.example.com
```
Browse to the [UI](https://vault.example.com:8200/ui) and login with the vault root token (get it from the `shared/vault-root-token.txt` file).
Test the [prometheus telemetry endpoint](https://vault.example.com:8200/v1/sys/metrics?format=prometheus).
List this repository dependencies (and which have newer versions):
```bash
export GITHUB_COM_TOKEN='YOUR_GITHUB_PERSONAL_TOKEN'
./renovate.sh
```
# TLS
Verify that a secure connection with vault can be established:
```bash
vagrant ssh
echo -n | openssl s_client -CAfile /etc/ssl/certs/ca-certificates.crt -servername vault.example.com -connect vault.example.com:8200
```
And make sure the result has no errors, e.g.:
```
depth=1 CN = Example CA
verify return:1
depth=0 CN = vault.example.com
verify return:1
...
Verification: OK
```
# Reference
* [Why We Need Dynamic Secrets (MAR 01 2018)](https://www.hashicorp.com/blog/why-we-need-dynamic-secrets)
* [Authenticating Applications with HashiCorp Vault AppRole (MAR 13 2018)](https://www.hashicorp.com/blog/authenticating-applications-with-vault-approle)