[question]: Provisioning db user and password from dynamic vault store to workflows

Question

[question]: Provisioning db user and password from dynamic vault store to workflows

wesbragagt opened this issue 2 months ago · comments

Prior Search

I have already searched this project's issues to determine if a similar question has already been asked.

What is your question?

I have an async job that I run in kubernetes and I would love to instead using the root credentials to use the vault dynamic credentials provisioning to the job. I'm looking for recommendations in the terraform modules on how to accomplish that. I've heard of vault csi provider but I'm struggling to understand how to implement that with the stack.

What primary components of the stack does this relate to?

terraform

Code of Conduct

I agree to follow this project's Code of Conduct

Jack Langston · Answer 1 · Wed Sep 11 2024 04:52:34 GMT+0800 (China Standard Time)

Currently we do not have direct support for mounting vault secrets in pods. However, its something we were already planning on adding, so I will bump this up in priority to be included in the next release.

Jack Langston · Answer 2 · Thu Sep 12 2024 22:26:29 GMT+0800 (China Standard Time)

The code for this is completed and will be included in the next release.

Wes Braga · Answer 3 · Fri Sep 13 2024 01:44:14 GMT+0800 (China Standard Time)

@fullykubed I just looked through the change. I'm so pumped for this addition. Thank you!