Automates the entire Vault lifecycle in your Kubernetes clusters.
Provides seamless integration with non-Vault-aware applications without storing the decrypted secret anywhere.
Vault is the de-facto standard for secret management in cloud native environments.
Bank-Vaults provides various tools for Hashicorp Vault to make its use easier:
A wrapper for the official Vault client with automatic token renewal, built in Kubernetes support, and a dynamic database credential provider.
A CLI tool to automatically initialize, unseal and configure Vault.
A Kubernetes operator for provisioning, and a mutating webhook for injecting secrets.
Bank-Vaults can be used as a CLI tool or accessed from code through a Golang library (supporting OAuth2 tokens, K8s auth, Vault operator, dynamic secrets, cloud credential storage, etc.). The package also includes a Helm chart for a HA cluster, operator, mutating webhook and a collection of scripts to support advanced features (dynamic SSH, etc.).
We had quite a few Bank-Vaults releases recently where new features arrived in the webhook and operator. This is no …
Read moreDistributed applications Distributed applications have many definitions, but typically they are defined as …
Read moreApplications running in Kubernetes Pods are authenticated against the Kubernetes API with their corresponding …
Read more