
Example Spring Boot web app using Vault as the Spring Security authentication provider

Primary LanguageJava

Vault setup

Startup Vault, such as development mode:

vault server -dev

When running the dev mode be sure to declare the insecure Vault address:

export VAULT_ADDR=''

Enable AppRole authentication and create our provider's role

vault auth enable approle

vault policy write admin vault-policies/admin.hcl
vault policy write user vault-policies/user.hcl

vault write -f auth/approle/role/auth-provider
vault write -f auth/approle/role/admin
vault write -f auth/approle/role/user

Get the appRoleId using

vault read auth/approle/role/auth-provider/role-id

Generate an appSecretId get getting the secret_id resulting from

vault write -f auth/approle/role/auth-provider/secret-id

When running the Spring Boot app, pass the following arguments with the specific role-id and secret-id retrieved above.
