The Vault Controller automates the creation of Vault tokens for Kubernetes Pods.
This is a prototype. Do not use this in production.
- Each Pod requires a dedicated Vault token tied to the Pod's life-cycle
- Each Pod will use a dedicated Vault token to request secrets from a Vault server
The following tutorials will guide you through the deployment of the vault-controller
and an example application to see how it all works.
Clone this repository:
git clone https://github.com/kelseyhightower/vault-controller.git
cd vault-controller
Before you can complete the tutorials you'll need access to a Kubernetes clusters. Google Container Engine (GKE) or minikube should work.
Once you are done with the tutorials run the following command to clean up:
kubectl delete namespace vault-controller