README
¶
vault-cli
vault-cli is a vault automation tool, used to configure a vault server with all of the namespaces, endpoints, policies, roles auth endpoins, etc.
vault-cli stores its state in convienent yaml format. This allows a company to maintain configuration control over the contents of a vault server.
Try it out
This example uses namespaces. You will need to download Vault Enterprise
In first terminal window
vault server -dev -dev-root-token-id root -dev-listen-address 127.0.0.1:8200
In second terminal
cd vault-cli
go mod vendor
go build
The sample files for these examples are located here: samples
./vault-cli put vaultnamespace -c=local "local-*"
./vault-cli put vaultauth -c=local "local-*"
./vault-cli put vaultendpoint -c=local "local-*"
./vault-cli put vaultpolicy -c=local "local-*"
./vault-cli put vaulteole -c=local "local-*"
./vault-cli put jwtrole -c=local "local-*"
./vault-cli put pkirole -c=local "local-*"
./vault-cli put sshrole -c=local "local-*"
vault namespace list -namespace=root
vault namespace list -namespace=parent
vault auth list -namespace=parent
vault policy read -namespace=parent pki-admin
vault read -namespace=parent /auth/jwt/role/operator
vault read -namespace=root /pki/roles/tls
vault read -namespace=root /ssh/roles/operator
vault read -namespace=parent /auth/myauth/role/operator
Documentation
¶
There is no documentation for this package.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
pkg
|
|
|
configservice/fakes
Code generated by counterfeiter.
|
Code generated by counterfeiter. |
|
secretservice/fakes
Code generated by counterfeiter.
|
Code generated by counterfeiter. |
Click to show internal directories.
Click to hide internal directories.