Usage
Current Docker image: avtandilko/vault-switcher:v0.0.8
Environment variables
VAULT_ADDRVAULT_TOKEN_FILEVAULT_TOKENVAULT_MOUNT_POINTVAULT_SOURCE_SECRETVAULT_DEST_SECRETVAULT_SECRET_TO_DELETEVARIABLES_LIST
Command-line arguments
usage: vault-switcher.py [-h] -a {clone-secret,clone-variables,delete-secret}
optional arguments:
-h, --help show this help message and exit
-a {clone-secret,clone-variables,delete-secret}, --action {clone-secret,clone-variables,delete-secret}Examples
Common variables. Should always be set
export VAULT_ADDR = "https://127.0.0.1:8200"
export VAULT_TOKEN_FILE = "/var/run/secrets/vault_token"Scenario: full secret copy
export VAULT_MOUNT_POINT = "secrets"
export VAULT_SOURCE_SECRET = "source_secret"
export VAULT_DEST_SECRET = "dest_secret"
vault-switcher.py -a clone-secretScenario: specific variables copy
export VAULT_MOUNT_POINT = "secrets"
export VAULT_SOURCE_SECRET = "source_secret"
export VAULT_DEST_SECRET = "dest_secret"
export VARIABLES_LIST = '["VAR1", "VAR2", "VAR3"]'
vault-switcher.py -a clone-variablesScenario: delete secret
export VAULT_MOUNT_POINT = "secrets"
export VAULT_SECRET_TO_DELETE = "secret_to_delete"
vault-switcher.py -a delete-secret