Store credentials in Vault
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	dereckson
	May 12 2022, 22:22

Description

Currently, credentials are store in the registry, ie a table in database.

Let's move them to Vault.

Plan is:

create a Vault client in TCL, release it into tcllib or as standalone package if not possible
provide helper TCL commands specific to our eggdrop logic to help to connect and retrieve secret from apps/viperserv/
configure eggdrop to read approle credentials from a file provisioned through viperserv role in rOPS
move credentials to Vault
test it with active stuff (nickserv, MySQL, RabbitMQ)

rVIPER ViperServ scripts
	D2686	rVIPER1c6f3be2ef97 Fetch credentials from Vault
rOPS Nasqueron Operations
	D2687	rOPS8161d31caa8f Configure ViperServ eggdrops to use Vault

dereckson triaged this task as Normal priority.May 12 2022, 22:22

dereckson created this task.

dereckson closed this task as Resolved.Feb 9 2023, 22:25