paradoxbound/puppet-vault

Puppet module for managing Hashicorp's Vault

puppet-vault

Puppet module for managing Hashicorp's Vault

##Prerequisites This module requires:

• puppet-archive
• a zip package to be installed (eg package { "zip": ensure => installed })

##Installation

To simply install the vault binary:

include vault

To run it in server mode:

class { 'vault':
  service_enable => true,
  service_ensure => 'running',
  manage_service => true,
}

What this module handles

This module handles installing the vault binary, writing a config file for server mode, and creating an init script.

It does not:

• initialize the vault
• unseal the vault on startup
• Provide a way to get secrets from Vault within puppet. For that, look at puppet-vaultize-file

##Development Open an issue or fork and open a Pull Request

##Acknowledgements

Much of the initial code was adapted from solarkennedy/puppet-consul. Thank you to the contributors to that project.