Use HashiCorp Valut for JWT secrets - Githubissues

ecadlabs / auth

0 stars 2 forks source link

Use HashiCorp Valut for JWT secrets #7

Open jevonearth opened 5 years ago

jevonearth commented 5 years ago

The auth service and services that consume JWT tokens, must share a secret.

The auth daemon has a -secret command line flag that is used in dev/testing.

Add support to the auth daemon to use HashiCorps Vault to share secrets between vault and JWT token consumers, as well as rotating secrets.

https://github.com/hashicorp/vault

[ ] Create a docker-compose-vault.yml file that starts a vault instance in developer mode, and configures auth daemon to use vault.
[ ] Add config block to yaml config parser/structs for Vault.

jevonearth commented 5 years ago

Notes;

Hashicorp vault config properties will be put in the yaml config file. If valut is enabled, and -secret is passed on command line, deamon should error and exit.