精华内容
下载资源
问答
  • Vault

    2020-12-27 01:18:24
    <div><p>This adds support for secrets stored in Hashicorp Vault. What <em>is</em> here should be heavily documented in the diff itself, so I'll defer to that rather than writing more here in the ...
  • vault

    2019-09-21 14:55:00
    官网: https://www.vaultproject.io/ python客户端: ...docker镜像: https://hub.docker.com/_/vault/ 安装: docker run --cap-add=IPC_LOCK -e 'VAULT_LOCAL_CONFIG={"listener": {"tcp": {...

    官网:
    https://www.vaultproject.io/
    python客户端:
    https://github.com/hvac/hvac

    docker镜像:

    https://hub.docker.com/_/vault/

    安装:

    
    docker run --cap-add=IPC_LOCK -e 'VAULT_LOCAL_CONFIG={"listener": {"tcp": {"address": "0.0.0.0:8200", "tls_disable":"1"}},"backend": {"file": {"path": "/vault/file"}}, "default_lease_ttl": "168h", "max_lease_ttl": "720h" , "ui":"true"}' -v /home/vault/logs:/vault/logs   -v /home/vault/file:/vault/file -p 8200:8200 -d vault server

    启动vault之后,浏览器访问http://ip:8200 ,j进行初始化,获得root token和key

    Initial Root Token
    cbf1579b-4981-d5ae-5b37-5235d1f158f9
    Key 1
    +QFq6wANH73JPcbub5T8Y7AZbib0uMMXBtV0YbmCG2M=

    在界面完成vault的unseal操作或者通过vault operator unseal 。

    export VAULT_ADDR='http://127.0.0.1:8200'
    vault login cbf1579b-4981-d5ae-5b37-5235d1f158f9
    vault kv get secret/xxxx

    创建一个名称为app 的policy
    启用approle , 然后可以通过approle来进行访问鉴权。

    
    
    
    export VAULT_TOKEN=cbf1579b-4981-d5ae-5b37-5235d1f158f9
    
    curl \
        --header "X-Vault-Token: $VAULT_TOKEN" \
        --request POST \
        --data '{"type": "approle"}' \
        http://10.21.88.225:8200/v1/sys/auth/approle
        
        
    curl \
        --header "X-Vault-Token: $VAULT_TOKEN" \
        --request POST \
        --data '{"policies": ["app"]}' \
        http://10.21.88.225:8200/v1/auth/approle/role/app
    
    
     curl \
        --header "X-Vault-Token: $VAULT_TOKEN" \
         http://10.21.88.225:8200/v1/auth/approle/role/app/role-id  
    
         "role_id":"fe5e5650-a3a3-fca3-904a-5bf0c3e9898f"
    
    
    curl \
        --header "X-Vault-Token: $VAULT_TOKEN" \
        --request POST \
        http://10.21.88.225:8200/v1/auth/approle/role/app/secret-id
    
    {"secret_id":"25859baa-d345-c317-4dfc-5b8cce3e531e","secret_id_accessor":"69f4507b-8872-b9cc-f7c9-7304b5e26f66"}
    
    curl \
        --request POST \
        --data '{"role_id": "fe5e5650-a3a3-fca3-904a-5bf0c3e9898f", "secret_id": "25859baa-d345-c317-4dfc-5b8cce3e531e"}' \
        http://10.21.88.225:8200/v1/auth/approle/login  
        
    {"client_token":"0f7d3bc2-0f4e-896b-9da3-cd5b1d0c8a5e"
    
    
    curl \
        -H "X-Vault-Token: 0f7d3bc2-0f4e-896b-9da3-cd5b1d0c8a5e" \
        -X GET \
        http://10.21.88.225:8200/v1/secret/cmdbapi
        

    转载于:https://www.cnblogs.com/abcyrf/p/9929240.html

    展开全文
  • m using vault-operator along with etcd-operator. <p>Then I created clusterrolebinding, serviceaccount and vault_cr_etcd_ha. I'm not sure if I should go the CR way or just deploy using the vault ...
  • ${azurerm_key_vault.vault.vault_uri}" key_type = "RSA" key_size = 2048 <p>key_opts = [ "decrypt", "encrypt", "sign", "unwrapKey", "...
  • Vault door

    2020-11-23 02:55:59
    <div><p>Implement vault doors. Vault doors would be the entrance of underground vaults. <p><img alt="fo1_vault_15_entrance" src=...
  • Spring Vault。 官网 Spring Vault API。 Spring Vault 开发文档。
  • vault.security.banzaicloud.io/vault-path: kubernetes-traffic vault.security.banzaicloud.io/vault-role: traffic name: sample-secret2 namespace: vswh type: generic </code></pre> <p>Cluster Firewall...
  • Vault Issue

    2020-12-02 02:28:13
    m having an issue with Vault where it doesn't seem to load while the server thinks it does as far as I understand. I have vault.jar in the plugins folder and when using /plugman load vault it ...
  • Maintaining vault

    2020-12-02 08:51:39
    <div><p>I am wondering if you are welcome to having someone else take over Vault?</p><p>该提问来源于开源项目:MilkBowl/Vault</p></div>
  • Emulated vault

    2020-12-26 12:51:18
    <p>Install the emulated vault as described below, and add it to a running Traffic Ops instance instead of the standard RIAK-based Traffic Vault. Run url-signing and SSL based scenarios. Note: you ...
  • ve upgraded to vault 0.6.1, and discovered that vault-ruby doesn't work correctly with it any more. <p>I've opened up a PR to work with the API data structure changes at ...
  • vault builder

    2020-11-21 22:10:14
    <div><p>vault cloud builder for communication with vault during build process. Please refer to Readme.md and examples folder </p><p>该提问来源于开源项目:GoogleCloudPlatform/cloud-builders-...
  • Vault rework

    2020-12-09 06:34:46
    <p>We all know how Vault has aged over time, I mean hell it still only accepts player's name and OfflinePlayer. Would any of the project members object to a PR being done re-working it all? <p>...
  • Vault Upgrade

    2020-12-09 12:48:51
    large amount of singular items, without making the vault list too long and causing crashes. <p>This is one issue where players have us completely outmatched. If we do not give them unlimited vault ...
  • Vault Please note: We take Vault's security and our users' trust very seriously. If you believe you have found a security issue in Vault, please responsibly disclose by contacting us at security@...
  • Vault templating

    2020-12-09 00:50:02
    <p>In my vault in /secret/n2 is stored <code>key=value</code>. Via the HTTP API I can access it (using the hashicorp doc) using http://127.0.0.1:8200/v1/secret/data/n2.</p> <p>I saw on the readme ...
  • s an example of what the logging looks like when running the <code>helloWorld.ts</code> sample in <code>/keyvault-keys</code>: <pre><code> λ AZURE_LOG_LEVEL="info" node dist-esm/samples/...
  • vault configuration

    2020-12-04 16:08:50
    <div><p>/cc </p><p>该提问来源于开源项目:coreos/vault-operator</p></div>
  • Example Vault

    2020-12-08 23:15:26
    <div><p>Electrum Vault with higher item capacity (2.5k)</p><p>该提问来源于开源项目:Anuken/ExampleMod</p></div>
  • vault source

    2020-12-09 05:14:05
    <div><p>https://github.com/hashicorp/vault</p>该提问来源于开源项目:bsideup/configo</p></div>
  • hashicorp vault

    2020-11-27 17:13:56
    <div><p>Could this in theory support Hashicorp Vault?</p><p>该提问来源于开源项目:godaddy/kubernetes-external-secrets</p></div>
  • docker-vault, Vault的官方 Docker 映像 关于这个 repo这是Vault官方映像的Git repo,用于 Vault 。 有关如何使用这里映像的完整自述文件以及有关如何使用和发布问题的信息,请参见页 。全文在 docker库/文档中生成...
  • return keyvault.Vault{}, fmt.Errorf("AccountNameInvalid") } else if result.Reason == keyvault.AlreadyExists { return keyvault.Vault{}, fmt.Errorf("AlreadyExists") }</code>...
  • $ az keyvault list --resource-group demo9311 u'backup' is not valid value for enum <enum> </enum></code></pre> <p>There is one key vault in this list, that has 'secret backup&#...
  • <p>This PR updates vault to version 1.3.2. <p>To test this, please run <pre><code> hab pkg build vault source results/last_build.env hab studio run "./${pkg_name}/tests/test.sh ${pkg_ident}" ...
  • If the vault-operator has restarted/redeployed, the controller itself will replace our Vault service's labels & selectors from <code>app: name</code> to <code>app.kubernetes.io/name: vault...

空空如也

空空如也

1 2 3 4 5 ... 20
收藏数 12,340
精华内容 4,936
关键字:

vault