Skip to content

Instantly share code, notes, and snippets.

@ruanbekker

ruanbekker/vault_s3.md

Created April 7, 2019 19:36
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save ruanbekker/d46ff2cdff09448e601fc8ca121357a2 to your computer and use it in GitHub Desktop.
Save ruanbekker/d46ff2cdff09448e601fc8ca121357a2 to your computer and use it in GitHub Desktop.
Download ZIP
Vault with S3 Backend
Raw
vault_s3.md

More:

Create S3 Bucket:

$ aws s3 mb --region=eu-west-1 s3://somename-vault-backend

Config volumes/config/s3vault.json :

{
  "backend": {
    "s3": {
      "region": "eu-west-1",
      "access_key": "ACCESS_KEY",
      "secret_key": "SECRET_KEY",
      "bucket": "somename-vault-backend"
    }
  },
  "listener": {
    "tcp":{
      "address": "0.0.0.0:8200",
      "tls_disable": 1
    }
  },
  "ui": true
}

With docker:

cat > docker-compose.yml << EOF
version: '2'
services:
  vault:
    image: vault
    container_name: vault
    ports:
      - "8200:8200"
    restart: always
    volumes:
      - ./volumes/logs:/vault/logs
      - ./volumes/file:/vault/file
      - ./volumes/config:/vault/config
    cap_add:
      - IPC_LOCK
    entrypoint: vault server -config=/vault/config/s3vault.json
EOF

Deploy:

$ docker-compose up
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment