GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → Brightspace → vault-ec2auth

Brightspace / vault-ec2auth

Licence: Apache-2.0 license
A simple agent to authenticate an AWS EC2 instance against Hashicorp Vault

Programming Languages

go
31211 projects - #10 most used programming language

Labels

awsec2vault

Projects that are alternatives of or similar to vault-ec2auth

stork
Retrieve tokens from Vault for your EC2 instances.
Stars: ✭ 12 (+0%)
Mutual labels:  ec2, vault
zsh-ec2ssh
zsh plugin to list up EC2 instances and ssh login the instances.
Stars: ✭ 10 (-16.67%)
Mutual labels:  ec2
schluessel
Node.js package for storing application credentials (API keys, database passwords, etc.) encrypted in your repository.
Stars: ✭ 27 (+125%)
Mutual labels:  vault
sitri
Sitri - powerful settings & configs for python
Stars: ✭ 20 (+66.67%)
Mutual labels:  vault
vaultrs
An asynchronous Rust client library for the Hashicorp Vault API
Stars: ✭ 63 (+425%)
Mutual labels:  vault
vpc-peering-operator
A Kubernetes Operator to manage the lifecycle of AWS VPC Peering Connections
Stars: ✭ 23 (+91.67%)
Mutual labels:  ec2
hashicorp-labs
Deploy locally on VM an Hashicorp cluster formed by Vault, Consul and Nomad. Ready for deploying and testing your apps.
Stars: ✭ 32 (+166.67%)
Mutual labels:  vault
terraform-aws-cloudwatch-flow-logs
Terraform module for enabling flow logs for vpc and subnets.
Stars: ✭ 32 (+166.67%)
Mutual labels:  ec2
vault
Vault - cross-platform GPG KV store for teams made easy
Stars: ✭ 35 (+191.67%)
Mutual labels:  vault
traefik-cluster-ecs
This is a tutorial on how to deploy a Traefik Load Balancer in AWS using CloudFormation to load balancer development ECS tasks using hosts (FQDN).
Stars: ✭ 62 (+416.67%)
Mutual labels:  ec2
getting-into-consul
A zero to complete walk through of setting up HashiCorp Consul on AWS from scratch!
Stars: ✭ 56 (+366.67%)
Mutual labels:  ec2
amazon-ec2-image-builder-samples
Samples for Amazon EC2 Image Builder
Stars: ✭ 103 (+758.33%)
Mutual labels:  ec2
hookpick
A tool to manage some operational concepts of Hashicorp Vault
Stars: ✭ 83 (+591.67%)
Mutual labels:  vault
vault-plugin-secrets-wireguard
Vault's plugin for managing server and dynamic client configurations
Stars: ✭ 41 (+241.67%)
Mutual labels:  vault
ptolemy
Elixir Application Environment Variable Management
Stars: ✭ 13 (+8.33%)
Mutual labels:  vault
kubevault
🔐 KubeVault Documentation
Stars: ✭ 210 (+1650%)
Mutual labels:  vault
vauth
VMware vSphere VM Identity Platform
Stars: ✭ 32 (+166.67%)
Mutual labels:  vault
ansible-role-win-ec2
Ansible role to create and destroy Windows instances on EC2
Stars: ✭ 13 (+8.33%)
Mutual labels:  ec2
puppet-vault
Puppet module to manage Vault (https://vaultproject.io)
Stars: ✭ 41 (+241.67%)
Mutual labels:  vault
vault-monkey
Extract secrets from your vault in a multi-machine cluster environment.
Stars: ✭ 12 (+0%)
Mutual labels:  vault
View All Similar Projects ➔

Vault-EC2Auth

This agent is intended to make EC2 authentication against Vault as simple as possible. Simply launch the agent in the background and anytime you need to access vault, your token is available at ~/.vault-token which is the default location that the vault CLI looks for its access token.

Quick start

Options for getting started:

Typical usage:

  • Run once and exit: vault-ec2auth -role my_role
  • Run as agent: vault-ec2auth -agent -role my_role

How it works

Upon launch, the agent will immediately attempt to connect to Vault at https://vault.service.consul:8200 to retrieve a token for the requested role.

The token is written to ~/.vault-token and the nonce to ~/.vault-nonce.

If running in agent mode, it will then block for half of the lease duration before attempting to reauthenticate with Vault using the nonce value stored in ~/.vault-nonce.

Documentation

  • Additional options can be seen by running the tool with no parameters.

Running as an agent

By providing the -agent argument the agent will block until cancelled with ctrl+c. In this mode leases will be automatically renewed at the half-life of the lease.

Versioning

Vault EC2Auth Agent releases are maintained under the Semantic Versioning guidelines.

Contributing

Please read through our contributing guidelines. Included are directions for opening issues, coding standards, and notes on development.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].