Automates the entire Vault lifecycle in your Kubernetes clusters.
Provides seamless integration with non-Vault-aware applications without storing the decrypted secret anywhere.
Vault is the de-facto standard for secret management in cloud native environments.
Bank-Vaults provides various tools for Hashicorp Vault to make its use easier:
A wrapper for the official Vault client with automatic token renewal, built in Kubernetes support, and a dynamic database credential provider.
A CLI tool to automatically initialize, unseal and configure Vault.
A Kubernetes operator for provisioning, and a mutating webhook for injecting secrets.
Bank-Vaults can be used as a CLI tool or accessed from code through a Golang library (supporting OAuth2 tokens, K8s auth, Vault operator, dynamic secrets, cloud credential storage, etc.). The package also includes a Helm chart for a HA cluster, operator, mutating webhook and a collection of scripts to support advanced features (dynamic SSH, etc.).
We had quite a few Bank-Vaults releases recently where new features arrived in the webhook and operator. This is no …Read more
Distributed applications Distributed applications have many definitions, but typically they are defined as …Read more
Applications running in Kubernetes Pods are authenticated against the Kubernetes API with their corresponding …Read more