Add HashiCorp Vault storage of ZeroTier's public & secret identity - infinitytier.git - Fork of ZeroTier (mirror of https://github.com/vyos/infinitytier.git)

diff options

author	Grant Limberg <grant.limberg@zerotier.com>	2018-02-16 14:30:27 -0800
committer	Grant Limberg <grant.limberg@zerotier.com>	2018-02-16 14:30:27 -0800
commit	77930607230eccdcb7011f6c70465bab3c32cc38 (patch)
tree	5d78d4d2de04a41090d6569014331090169165f6 /node
parent	84302ae9c713f513cfefeff8267fc1d0514ef6f8 (diff)
download	infinitytier-77930607230eccdcb7011f6c70465bab3c32cc38.tar.gz infinitytier-77930607230eccdcb7011f6c70465bab3c32cc38.zip

Add HashiCorp Vault storage of ZeroTier's public & secret identity

Adds a "vault" section to local.conf. Example local.conf: { "config": { "vault": { "vaultURL": "https://some.vault.host:8200", "vaultToken": "my-super-secret-vault-token", "vaultPath": "secure/place/to/put/identity" } } Additionally, the following environment variables can be set. Environment variables override local.conf: VAULT_ADDR VAULT_TOKEN VAULT_PATH Identities will be placed in the keys "public" and "secret" under the user specified path. If no path is specified, they will be placed in the token specific cubbyhole. If identity.public and identity.secret exist on disk and vault is configured, they will be automatically added to Vault and removed from disk. TODO: * Decide behavior for if Vault cannot be reached. * Add libcurl as a dependency in Linux & Mac builds * Add libcurl as a requirement for linux packages

Diffstat (limited to 'node')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: