[Bug 1796851] Re: vault: add support for AppRole authentication
James Page
james.page at ubuntu.com
Thu Oct 11 10:54:42 UTC 2018
Test packages with patches in:
https://launchpad.net/~james-page/+archive/ubuntu/vault-production
I've verified these within a Rocky deployment; secrets where stored
correctly in the configured backend (charm-barbican) rather than the
default 'secret' backend.
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to barbican in Ubuntu.
https://bugs.launchpad.net/bugs/1796851
Title:
vault: add support for AppRole authentication
Status in castellan:
In Progress
Status in barbican package in Ubuntu:
Triaged
Status in python-castellan package in Ubuntu:
Triaged
Bug description:
Vault provides a nice way for applications to integrate with its API:
https://www.vaultproject.io/docs/auth/approle.html
As the authentication method has two components (role_id and secret_id) is easy to automate distribution of credentials by providing the role_id but response wrapping the secret_id with access via a one shot, IP address restricted token.
It would be nice is castellan and barbican supported this approach.
To manage notifications about this bug go to:
https://bugs.launchpad.net/castellan/+bug/1796851/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list