PGP Transit backend
79 views
Skip to first unread message
miguel...@kiwibank.co.nz
Aug 3, 2016, 11:29:57 PM8/3/16
to Vault
Now that Vault have the ability to encrypt using PGP (as used in the init process) it would be great if a pgp-transit backend would be created.
This backend would enable me to upload other systems public keys (and encrypt strings using those named keys), and also generate pgp keypairs, store them in vault and allow me to decrypt a string encrypted with a named public key by using the corresponding private key.
All the pieces seem to be in place codewise to enable this functionality (pgp helper, transit backend and workflows, etc.)
Is such a feature something that you will develop/look into?
Cheers
This backend would enable me to upload other systems public keys (and encrypt strings using those named keys), and also generate pgp keypairs, store them in vault and allow me to decrypt a string encrypted with a named public key by using the corresponding private key.
All the pieces seem to be in place codewise to enable this functionality (pgp helper, transit backend and workflows, etc.)
Is such a feature something that you will develop/look into?
Cheers
Jeff Mitchell
Aug 3, 2016, 11:36:12 PM8/3/16
to vault...@googlegroups.com
It's coming. I can't give an exact time frame, but it will definitely appear.
Best,
Jeff
--
This mailing list is governed under the HashiCorp Community Guidelines - https://www.hashicorp.com/community-guidelines.html. Behavior in violation of those guidelines may result in your removal from this mailing list.
GitHub Issues: https://github.com/hashicorp/vault/issues
IRC: #vault-tool on Freenode
---
You received this message because you are subscribed to the Google Groups "Vault" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vault-tool+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/c4bf3686-69c1-4e33-aaa4-d0c7a75441b1%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
miguel...@kiwibank.co.nz
Aug 3, 2016, 11:59:30 PM8/3/16
to Vault
Good to hear Jeff. Is this 0.8 kind of thing or should I be looking longer term?
Jeff Mitchell
Aug 4, 2016, 12:06:18 AM8/4/16
to vault...@googlegroups.com
Hi Miguel,
There is some transit work done that lays a lot of groundwork for this but is not yet publicly available. We are hoping it will be in 0.6.2. Once that's in, PGP support will be tenable but will still need to be written. It will likely be in the release after these improvements hit, but maybe will make it into the same one.
I'm sorry I can't say more at the moment...
Best,
Jeff
To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/87912532-36fa-494f-b8c3-e074e01ac1b3%40googlegroups.com.
Miguel Terrón
Aug 4, 2016, 12:20:22 AM8/4/16
to Vault
That's great news, helps me trying to create that backend myself. Go Vault!
Reply all
Reply to author
Forward
0 new messages