Vault Fauna Secrets Plugin

A Vault secrets engine that can generate Fauna keys and return their secret.

Very much a work in progress.

To try run make in one terminal to build the plugin, start a Vault dev server and load the plugin.

In a separate terminal enable the secrets engine:

vault secrets enable fauna

Set the root config:

vault write fauna/config/root endpoint=https://db.fauna.com secret=[admin key secret]

Rotate the root key:

vault write -force fauna/config/rotate-root

Create a role:

vault write fauna/roles/[role name] database=[database] role=[fauna key role]

role can be "admin", "server", "read-only", or "roles/[custom role]"

Get a new key:

vault read fauna/[role name]

Key                Value
---                -----
lease_id           fauna/[role name]/[lease id]
lease_duration     768h
lease_renewable    true
secret             [secret]

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
cmd/fauna		cmd/fauna
.gitignore		.gitignore
Makefile		Makefile
README.md		README.md
backend.go		backend.go
client.go		client.go
fauna_keys.go		fauna_keys.go
go.mod		go.mod
go.sum		go.sum
path_config_lease.go		path_config_lease.go
path_config_roles.go		path_config_roles.go
path_config_root.go		path_config_root.go
path_config_root_test.go		path_config_root_test.go
path_config_rotate_root.go		path_config_rotate_root.go
path_key.go		path_key.go
rollback.go		rollback.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Vault Fauna Secrets Plugin

About

Releases

Packages

Languages

sprsquish/vault-fauna

Folders and files

Latest commit

History

Repository files navigation

Vault Fauna Secrets Plugin

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages