Skip to content

issafram/vault-credential-rotator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

51 Commits
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
appveyor.yml
appveyor.yml
 
 

Repository files navigation

AppVeyor

vault-credential-rotator

A tool used in conjunction with HashiCorp Vault (https://www.vaultproject.io/) to rotate access keys & secret access keys for the AWS secrets engine within Vault.

System Requirements

Roadmap

  • Additional secrets engine configurations (Microsoft Azure, Google Cloud Platform)
  • AppRole Support
  • Lease TTL warning & awareness Lease duration value presented in release/1.1.1

Configuration

Edit the appsettings.json file and add values for the following:

  • BaseClientTokenUri
  • BaseCredentialsUri
  • ValidateServerCertificates
  • Roles

For example, it may look like this:

{
  "AWS": {
    "BaseClientTokenUri": "https://vault.contoso.com/v1/auth/ldap/login/",
    "BaseCredentialsUri": "https://vault.contoso.com/v1/aws/creds/",
    "ValidateServerCertificates": "true",
    "Roles": [
      "grp-aws-r-contoso-powerusers"
    ]
  }
}

Once these parameters have been set in the appsettings.json file, run it with:

dotnet VaultCredentialRotator.dll

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases 4

Console Output Changes Latest
Oct 2, 2019
+ 3 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages