Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add TLS support, self-signed TLS Certs #23

Open
wants to merge 1 commit into
base: develop
from

Conversation

Projects
None yet
2 participants
@v6
Copy link
Owner

commented Jul 9, 2019

Makes TLS usable from VMs.

This adds TLS Certificate generation
to Vault, and sets the CA
Environment Variable for Vault and
the corresponding CA Cert Environment
Variable for cURL.

These are self-signed, so they won't
totally validate outside of Vault.

But they work.

I was not able to get the OS Root Trust
Store to update properly, and some of that
code may need to be modified.

This commit also updates documentation to use HTTPS.

Updated the main docs
to show HTTPS for the Vault
servers.

People will need to temporarily
trust the self-signed certificates
generated by Vagrant for these Vault
servers.

Some of the other docs had
http://127.0.0.1:8200 as their
target for demonstrations.

Most of them refer to $VAULT_ADDR,
but I have changed the ones that
refer to a specific IP address.

Update README.md to note Trusting Self-Signed Certificates is needed.

Squashed this into the content from #22

Add TLS support, self-signed TLS Certs
Makes TLS usable from VMs.

This adds TLS Certificate generation
to Vault, and sets the CA
Environment Variable for Vault and
the corresponding CA Cert Environment
Variable for cURL.

These are self-signed, so they won't
totally validate outside of Vault.

But they work.

I was not able to get the OS Root Trust
Store to update properly, and some of that
code may need to be modified.

This commit also updates documentation to use HTTPS.

Updated the main docs
to show HTTPS for the Vault
servers.

People will need to temporarily
trust the self-signed certificates
generated by Vagrant for these Vault
servers.

Some of the other docs had
http://127.0.0.1:8200 as their
target for demonstrations.

Most of them refer to $VAULT_ADDR,
but I have changed the ones that
refer to a specific IP address.

Update README.md to note Trusting Self-Signed Certificates is needed.

@v6 v6 self-assigned this Jul 9, 2019

@v6 v6 referenced this pull request Jul 9, 2019

Open

Draft: add ssl support #22

@v6 v6 requested a review from simba23 Jul 11, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.