This demo was used during my talk @ HashiconfEU 2019 - Tech-Leaders Track. It demonstrates how to highly secure a java application without touching code and is divided in 5 steps :
- Step 1 : Use Jetstack/cert-manager and Vault to provide TLS for Ingress Traffic
- Step 2 : Adding Authentication and Authorization with Keycloak
- Step 3 : Moving from K8s secrets to Vault Static Secrets
- Step 4 : Adding even more security with Vault Dynamic Secrets for MongoDB
- Step 5 : Introduce service segmentation with Consul Connect
Each steps will be detailed in its own folder.
- Laurent Broudoux - For the App code and for working together on that project Github
- Nicolas Ehrman - Initial work - Hashicorp