Skip to content

lyraproj/hiera_azure

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
.idea
.idea
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
vaultlookupkey.go
vaultlookupkey.go
 
 

Repository files navigation

Azure Key Vault lookup key

This function allows you to look up single values stored as secrets from an Azure Key Vault.

Installation

Build the plugin from the root directory of this module:

go build -o azure_key_vault

Then make the plugin available to Hiera. See Extending Hiera for info on how to do that.

A Note about debugging

When debugging remotely from an IDE like JetBrains goland, use -gcflags 'all=N -l' to ensure that all symbols are present in the final binary.

go build -o azure_key_vault -gcflags 'all=-N -l'

Examples

A single option vault_name should be set in hiera.yaml:

---
version: 5
defaults:
  datadir: hiera
  data_hash: yaml_data

hierarchy:
- name: common
  path: common.yaml
- name: secrets
  lookup_key: azure_key_vault
  options:
    vault_name: my-key-vault

There are two options for authentication, using a service principal or the Azure CLI

  • To use a service principal set the environment variables AZURE_TENANT_ID, AZURE_CLIENT_ID and AZURE_CLIENT_SECRET

  • If the above variables are not present the Azure CLI will be used (it must already be logged in)

About

Azure Key Vault lookup_key function for Hiera

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages