A collection of resources to complete a scenario based around incorporating Vault into a sample application.
A starting point has been created in five languages:
- C# - Found in
dotnet/ - Golang - Found in
go/ - Java - Found in
java/ - Python - Found in
python/ - Ruby - Found in
ruby/
Your company’s engineering team is looking into ways to increase the security of your apps and infrastructure. You’ve heard Vault is a great solution for secret management and would like to give it a try to see if it would be a good fit for your needs. To build a POC, you plan to integrate a test script with Vault. Your simple test aims to replace a hardcoded value with one retrieved from Vault.
Each language will operate off the same key information to access Vault; at minimum you'll need to know Vault's address, a way to authenticate your application and the path where the secret is stored.
Vault's documentation is a great place to start!
We've provided a containerized Vault server that includes everything needed to do this exercise.
Creating the bootstrapped Vault image and running it:
cd setup-vault
docker build -t explore-vault . # build the image and tag it "explore-vault"
docker run --rm -p 8200:8200 explore-vault # expose port 8200 and run containerThe above will yeild a Vault server with the following attributes:
| Value | |
|---|---|
| Vault Address | http://localhost:8200 |
| Secret Engine | KV-v2 |
| Secret Mount Point | secret |
| Secret Path | firstsecret |
| Secret Key | sample_secret |
| Read-Only Token | demo-read-only |
| AppRole ID | approle-demo-readonly |
| AppRole Secret ID | -- shown on startup -- |
More information in the Setting Up Vault readme.
Enjoy!