feat(hashicorpvault): Use AWS KMS to unseal
This commit is contained in:
6
env/fqdn_context.env.example
vendored
6
env/fqdn_context.env.example
vendored
@@ -8,7 +8,11 @@ HASHICORPVAULT_VERSION=latest
|
||||
VAULT_DEV_ROOT_TOKEN_ID=your-root-token-here
|
||||
VAULT_DEV_LISTEN_ADDRESS=0.0.0.0:1234
|
||||
VAULT_LOCAL_CONFIG={"backend": {"file": {"path": "/vault/file"}}, "default_lease_ttl": "168h", "max_lease_ttl": "720h"}
|
||||
|
||||
# AWS_ACCESS_KEY_ID=
|
||||
# AWS_REGION=
|
||||
# AWS_SECRET_ACCESS_KEY=
|
||||
# VAULT_AWSKMS_SEAL_KEY_ID=
|
||||
# VAULT_SEAL_TYPE=awskms
|
||||
|
||||
|
||||
# Feel free to leave defaults. They apply while these vars are commented out
|
||||
|
||||
Reference in New Issue
Block a user