Hi all,
the last months it has been rather quiet with plugin announcements from dmtech as we focussed on improving our existing plugins.
I’m happy to announce that we just open sourced foreman_vault
, a plug-in that integrates Foreman with Hashicorp Vault.
Vault is a tool to manage secrets and is gaining a lot of popularity in the open source community.
You can find the plugin on our github and on rubygems.
Happy to receive any feedback.
Timo
11 Likes
UXabre
January 13, 2020, 3:02pm
2
Hi @TimoGoebel ,
Is it also possible to use these secrets as parameter value? for instance, I’d like to store our username & password in vault and use it in an ansible script?
Kr,
Arend
Not yet, but please open an issue on the github project for your feature request.
On second thought, the parameter values can contain ERB. And the plugin adds a macro to get the value from vault.
UXabre
January 14, 2020, 12:23pm
5
Okay, will test this one out! Thanks for the input!
UXabre
February 12, 2020, 12:18pm
6
Hi @TimoGoebel , just wanted to let you know that this works as expected!
1 Like
UXabre
February 12, 2020, 1:29pm
7
I’ve also just created a PR to support PKI Certificate Requests from Vault:
dm-drogeriemarkt:master
← UXabre:feature/pki
opened 01:28PM - 12 Feb 20 UTC
I've added the ability to issue certificates when using a PKI secrets engine.
I… 've purposely kept the options undefined, as the PKI is a very versatile engine. The only thing that might bother me, is the path, being "<pki_engine_name>/issue/<pki_role>" is to be used to issue a request
Nice, do you mind sending a PR to describe this in the readme?
UXabre
February 12, 2020, 2:12pm
9
Hi! I’ve updated the PR with this information you requested.
While I’m on fire… I’ve also added a PR for a welcome page
1 Like
UXabre
March 13, 2020, 7:40am
10
Hi @TimoGoebel ,
I saw you’ve created a new release on github, I was wondering when this version 0.1.0 will be packaged and available to install?
KR!
ekohl
March 13, 2020, 10:20am
11
Feel free to submit a PR to rpm/develop . The easiest way is:
git checkout -b rpm/develop-bump-vault rpm/develop
./bump_rpm.sh packages/plugins/rubygem-foreman_vault
It doesn’t do everything, so you want to verify foreman_min_version
is still correct for example.
2 Likes
UXabre
March 16, 2020, 7:44am
12
Okay, followed this! Thanks for pointing me in the right direction!