Issues adding Plugin to Catalog

[Nathan Button]

I am following the guide at https://www.hashicorp.com/blog/building-a-vault-secure-plugin to build a Auth plugin when I get to step 6 under "Testing Implementation" I get the following error.

```
Error writing data to sys/plugins/catalog/example-auth-plugin: Error making API request.

URL: PUT http://127.0.0.1:8200/v1/sys/plugins/catalog/example-auth-plugin
Code: 500. Errors:

* 1 error occurred:

* can not execute files outside of configured plugin directory
```

any ideas?

[Jeff Mitchell]

Hi Nathan,

See https://www.vaultproject.io/docs/configuration/index.html#plugin_directory -- Vault will not execute plugins that are not within the defined plugin directory, and one must be defined.

Best,

Jeff

--
This mailing list is governed under the HashiCorp Community Guidelines - https://www.hashicorp.com/community-guidelines.html. Behavior in violation of those guidelines may result in your removal from this mailing list.

GitHub Issues: https://github.com/hashicorp/vault/issues
IRC: #vault-tool on Freenode
---
You received this message because you are subscribed to the Google Groups "Vault" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vault-tool+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/20cb67a1-188c-4e1b-8a02-00d4d47a34d6%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[Nathan Button]

I have double and tripled check its in the plugin directory. I can see vault loading that directory for plugins. but when i run 

SHASUM=$(shasum -a 256 "/tmp/vault-plugins/vault-auth-example" | cut -d " " -f1)

vault write sys/plugins/catalog/example-auth-plugin \
  sha_256="$SHASUM" \
  command="vault-auth-example"

it throws the error. . . 

I even had another coworker try it and they get the same thing. 

On Thursday, January 4, 2018 at 10:50:49 AM UTC-7, Jeff Mitchell wrote:

Hi Nathan,

See https://www.vaultproject.io/docs/configuration/index.html#plugin_directory -- Vault will not execute plugins that are not within the defined plugin directory, and one must be defined.

Best,

Jeff

On Thu, Jan 4, 2018 at 12:37 PM, Nathan Button <nathan...@gmail.com> wrote:

I am following the guide at https://www.hashicorp.com/blog/building-a-vault-secure-plugin to build a Auth plugin when I get to step 6 under "Testing Implementation"  I get the following error.

```
Error writing data to sys/plugins/catalog/example-auth-plugin: Error making API request.

URL: PUT http://127.0.0.1:8200/v1/sys/plugins/catalog/example-auth-plugin
Code: 500. Errors:

* 1 error occurred:

* can not execute files outside of configured plugin directory
```

any ideas?

--
This mailing list is governed under the HashiCorp Community Guidelines - https://www.hashicorp.com/community-guidelines.html. Behavior in violation of those guidelines may result in your removal from this mailing list.

GitHub Issues: https://github.com/hashicorp/vault/issues
IRC: #vault-tool on Freenode
---
You received this message because you are subscribed to the Google Groups "Vault" group.

To unsubscribe from this group and stop receiving emails from it, send an email to vault-tool+...@googlegroups.com.

[bkas...@hashicorp.com]

Hi Nathan,

Vault doesn't allow the plugin directory to be part of a symlink, this is to protect against someone changing the link without Vault's knowledge. On macOS (if that's your OS) the "/tmp" directory is actually a symbolic link to "/private/tmp/". Try setting the plugin directory to "/private/tmp/vault-plugins/".

Best,

Brian

[Nathan Button]

Oh! good to know!