Murat ÖZDEMİR
bf81b6ebee
- Added comprehensive step-by-step guide in README.md for Vault Transit auto-unseal setup. - Included Docker Swarm stack definition (docker-stack-vault.yml). - Added Vault configuration templates and bootstrap scripts. - Configured Gitea workflows for the VaultTest environment.
42 lines
1.2 KiB
JSON
42 lines
1.2 KiB
JSON
{
|
|
"storage": {
|
|
"raft": {
|
|
"path": "/vault/file",
|
|
"node_id": "HOSTNAME_PLACEHOLDER",
|
|
"retry_join": [
|
|
{
|
|
"leader_api_addr": "https://vault.iklim.co:8200",
|
|
"tls_skip_verify": false,
|
|
"leader_ca_cert_file": "/vault/certs/STAR.iklim.co.full.crt",
|
|
"leader_client_cert_file": "/vault/certs/STAR.iklim.co.full.crt",
|
|
"leader_client_key_file": "/vault/certs/STAR.iklim.co_key.pem",
|
|
"leader_tls_servername": "vault.iklim.co"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"seal": {
|
|
"transit": {
|
|
"address": "http://iklimco_vault-transit:8200",
|
|
"token": "TRANSIT_TOKEN_PLACEHOLDER",
|
|
"key_name": "autounseal",
|
|
"mount_path": "transit/",
|
|
"tls_skip_verify": true
|
|
}
|
|
},
|
|
"listener": {
|
|
"tcp": {
|
|
"address": "0.0.0.0:8200",
|
|
"cluster_address": "0.0.0.0:8201",
|
|
"tls_disable": 0,
|
|
"tls_cert_file": "/vault/certs/STAR.iklim.co.full.crt",
|
|
"tls_key_file": "/vault/certs/STAR.iklim.co_key.pem",
|
|
"tls_client_ca_file": "/vault/certs/STAR.iklim.co.full.crt"
|
|
}
|
|
},
|
|
"api_addr": "https://HOSTNAME_PLACEHOLDER:8200",
|
|
"cluster_addr": "https://HOSTNAME_PLACEHOLDER:8201",
|
|
"disable_mlock": true,
|
|
"ui": true
|
|
}
|