Рубрики
разное

vault / hashicorp / password

link:

https://www.vaultproject.io/downloads
https://learn.hashicorp.com/tutorials/vault/getting-started-ui?in=vault/getting-started-ui

https://habr.com/ru/post/306812/
https://habr.com/ru/company/quadcode/blog/565690/
https://habr.com/ru/post/536694/

https://khannz.medium.com/rus-hashi-vault-intro-1615ae2c0116

Храним секреты приложения в Vault
Конфигурация сервисов c Consul Key-Value Store

install and setup

### distr
https://www.vaultproject.io/downloads

#0 install
apt update && apt upgrade -y 
apt install vim sudo  mc curl git vim htop nmap gnupg tcpdump


#1 install
curl -fsSL https://apt.releases.hashicorp.com/gpg | sudo apt-key add -
#sudo apt-add-repository "deb [arch=amd64] https://apt.releases.hashicorp.com $(lsb_release -cs) main"
echo "deb [arch=amd64] https://apt.releases.hashicorp.com $(lsb_release -cs) main" >> /etc/apt/sources.list
apt-get update && sudo apt-get install vault


### SETUP web server vault

# doc
# https://learn.hashicorp.com/tutorials/vault/getting-started-ui?in=vault/getting-started-ui

#0 cd folder default
cd /opt/vault


#1 create file
tee config.hcl <

config nginx

# Full configuration at https://mozilla.github.io/server-side-tls/ssl-config-generator/
# /etc/nginx/sites-enabled/vault
server {
        listen 80;
        listen 443 ssl;
        server_name vault;
        return 301 https://vault.yourdomain.com$request_uri;
    }

        server {
        listen 443 ssl;
        location / {
            proxy_buffering    off;
            proxy_pass         http://127.0.0.1:8200;
            proxy_redirect     off;
            proxy_set_header   Host $http_host;
        }
}