Vault Webhook Plugin

[james....@hootsuite.com]

Hi,

I've started work on a webhook secrets backend for Vault, just thought I'd mention it here if it's something that would be useful to others: 

  https://github.com/idcmp/vault-plugin-secrets-webhook

Upon writing to a path in this backend (eg. "/webhook/destination/perform-foo"), Vault will sign a JSON document and POST it to a specified URL, allowing services to delegate authz/authn/audit work to Vault, which is super useful for internal tools that perform privileged operations.

It works in my testing environment, but is not yet battle hardened. Feedback welcome.

Cheers, 

  JAmes

[Jeff Mitchell]

Awesome!!

Thanks for sharing!

Best,

Jeff

id: 7898659753248090

--
This mailing list is governed under the HashiCorp Community Guidelines - https://www.hashicorp.com/community-guidelines.html. Behavior in violation of those guidelines may result in your removal from this mailing list.
 
GitHub Issues: https://github.com/hashicorp/vault/issues
IRC: #vault-tool on Freenode
---
You received this message because you are subscribed to the Google Groups "Vault" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vault-tool+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/7df50dd4-8e98-4577-adb5-5bea0d4a3b6e%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.