Skip to content

Yolt-group/vault-plugins

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
auth/gitlab-runner
auth/gitlab-runner
 
 
secret
secret
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
renovate.json
renovate.json
 
 

Repository files navigation

vault-plugins

Vault Plugins

A set of HashiCorp Vault plugins:

  • Gitlab Runner authentication backend. Allow GitLab runners to authenticate to Vault. Differentiate between protected and non-protected runners.
  • Approved secrets backend. Hand out high privileged ephemeral secrets only after appropriate approvals are given and audit trail was established. See also approved-secrets.
  • Gitlab admin. Temporarily escalate GitLab user privileges to GitLab admin, after appropriate approvals.
  • Gitlab tokens. Create temporary gitlab access tokens from GitLab pipelines.
  • Nexus admin. Create temporal admin privileges for a Nexus instance, after appropriate approvals. See also nexus.
  • Pagerduty secrets. Attach elevated privileges to users currently on Pagerduty standby.

Create config.hcl with your local plugin directory

plugin_directory="/home/user/gitlab/sre/vault-plugins/secret/nexus"

Start local Vault in development mode with plugin directory

vault server -dev -dev-root-token-id root -config config.hcl

Register/enable plugin

vault plugin register -sha256=$(sha256sum nexus | awk '{ print $1 }') secret nexus
vault secrets enable nexus

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages