Research and Document best way for utilizing Vault secrets within BigBang
Work with integration team to determine best way for other applications to integrate with vault and consume secrets.
Document this strategy in the package and within BigBang.
Designs
Relates to
- #9831.23.013
Activity
added to epic &99 (closed)
added Big Bang Add-Ons priority6 teamXForce labels
changed iteration to Big Bang Iterations Nov 30, 2021 - Dec 13, 2021
changed milestone to %1.23.0
marked this issue as related to #944 (closed)
assigned to @michaelmartin
added statusdoing label
Vault docs recommend the following:
NOT having ELB/reverse-proxy terminate TLS on Kubernetes: https://learn.hashicorp.com/tutorials/vault/kubernetes-security-concerns?in=vault/kubernetes#end-to-end-tls
Evaluate using ajent-injector (for app pods like argocd/gitlab/etc) vs using something like setting a pod up with a JWT and agent sidecar to auth with Vault: https://learn.hashicorp.com/tutorials/vault/agent-kubernetes?in=vault/kubernetes
added statusreview label and removed statusdoing label
created merge request !1155 (merged) to address this issue
mentioned in merge request !1155 (merged)
marked this issue as related to #983 (closed)
removed milestone %1.23.0
changed iteration to Big Bang Iterations Dec 14, 2021 - Dec 27, 2021
mentioned in commit db4e2b37
closed with merge request !1155 (merged)
removed the relation with #944 (closed)
removed statusreview label
