Closed deejross closed 5 years ago
I did a little reading into the Vault documentation, and while the service broker doesn't advertise support for namespaces, paths can be prefixed with the namespace. The X-Vault-Namespace
header is really just a way to shorten URLs.
As an example, you have namespace customer1
, using the header, and you have a secret at /secret/foo
. If you are using a client that doesn't support setting the header, the key for accessing the same secret would be /customer1/secret/foo
.
The enterprise edition of Vault supports namespaces and the service broker should too. The destination namespace is added to the HTTP request in the form of the
X-Vault-Namespace
header, or by callingSetNamespace(namespace string)
usinggithub.com/hashicorp/vault/api.Client
.