Hashicorp cloud defaults to the `admin` namespace, no `X-Vault-Namespace` header sent by library.

Question

Hashicorp cloud defaults to the `admin` namespace, no `X-Vault-Namespace` header sent by library.

0b1kn00b opened this issue 4 years ago · 12 comments

0b1kn00b commented 4 years ago

Describe the bug
A clear and concise description of what the bug is.

To Reproduce
Steps to reproduce the behavior:

Install hashi-vault-js npm install hashi-vault-js ...
Initiate object this way (add your code snippet)
Call this library function (add your code snippet)
See error (Provide error message)

Expected behavior
A clear and concise description of what you expected to happen.

Environment:

Node.js version:
npm version:
hashi-vault-js version:
Vault Server Version (retrieve with vault status):
Vault CLI Version (retrieve with vault version):
Client/Server Operating Systems:

Additional context
Add any other context about the problem here.

Answer 1 · 2021-06-10T12:58:24.000Z

Thanks @0b1kn00b ! Can you elaborate a little bit on this one? Or point the HashiCorp Vault documentation that you're referring to. Thanks

Answer 2 · 2021-06-10T13:05:42.000Z

This seems more an enhancement than an issue.

Answer 3 · 2021-06-11T09:59:56.000Z

I don't 100% understand the namespace system but moving from self hosting to hosted, selecting a namespace requires the X-Vault-Namespace header to be set. I didn't see a way of passing axios options through directly, but perhaps that's my shout.

Answer 4 · 2021-06-11T17:34:08.000Z

I think you are talking about Vault Enterprise namespaces.
If so, you can pass the namespace information on the path, you don't need necessarily use the X-Vault-Namespace header.

Answer 5 · 2021-06-13T18:24:52.000Z

@0b1kn00b could you please confirm this is the case?

Answer 6 · 2021-07-03T13:33:03.000Z

I'm closing this as no answer.

Answer 7 · 2021-07-09T12:15:27.000Z

There's a bunch of confusion with this moving between self hosted and Vault Enterprise as the actual Hashicorp cli doesn't appear to support namespaced logins right now. Believe me, I've tried.

That is to say, you *have to use the environment variable, which breaks other tooling not aware of it.

Answer 8 · 2021-07-21T15:28:49.000Z

Ok @0b1kn00b, since this is not a huge change to the constructor class, I'll this parameter there. Tagged for 0.4.6 version.

Answer 9 · 2021-08-02T16:50:16.000Z

Resolved by @articobandurini, I need to test it.

Answer 10 · 2021-08-05T00:26:54.000Z

I had to tweak a little bit as you cannot access defaults on an Axios instance. @0b1kn00b it's available on 0.4.6, please test it. Thanks

Answer 11 · 2021-08-05T12:08:05.000Z

I did sort of slide off and write an http client of my own in the mean time, sorry. I probably won't be the only one ever moving from self hosted to cloud though.

Answer 12 · 2021-08-05T13:31:19.000Z

No problem at all. I'm closing this enhancement.