HashiCorp's Vault Feature Demonstration

This is a simple app demonstrating HashiCorp's Vault usage. There are two use cases in this page:

Requirements:

To setup and run the app:

Setup virtualenv virtualenv venv && source ./venv/bin/activate
Install requirements pip install -r requirements.txt
Run vault in another terminal vault server -dev
Setup vault data, roles, and policies, and setup postgres with data ./setup.sh
Run the app. ./app/run.sh APP_NAME APP_PORT IS_DYNAMIC E.g. ./app/run.sh app1 5001 false

There are three apps to demonstrate the use cases above:

app1 and app2 demonstrate Vault KV/2 Secrets Engine. Pass it to APP_NAME with IS_DYNAMIC set to false
- It uses the ./run.sh script to fetch secrets and set to ENV variables. These apps will then use the secrets stored in those ENV variables
app3 demonstrates Vault Dynamic Postgres credentials.
- It uses hvac, Vault python client to fetch secrets directly to Vault.

Access the apps with curl:

Name		Name	Last commit message	Last commit date
Latest commit History 18 Commits
app		app
vault/policies		vault/policies
.gitignore		.gitignore
README.md		README.md
create_app1.sql		create_app1.sql
create_app2.sql		create_app2.sql
create_app3.sql		create_app3.sql
init.sql		init.sql
populate_app1.sql		populate_app1.sql
populate_app2.sql		populate_app2.sql
populate_app3.sql		populate_app3.sql
requiremets.txt		requiremets.txt
setup.sh		setup.sh

Provide feedback