search

hyperledger-bevel / bevel

An automation framework for rapidly and consistently deploying production-ready DLT platforms
https://hyperledger-bevel.readthedocs.io/en/latest/
Apache License 2.0
346 stars 719 forks source link

[quorum] integrate aws secrets manager #2623

Closed saurabhkumarkardam closed 1 month ago

saurabhkumarkardam commented 2 months ago

Commit to be reviewed

feat(quorum): integrate aws secrets manager

This PR will allow the use of the AWS service called Secrets Manager to store sensitive information, similar to how we use HashiCorp Vault for the same purpose.

- A guide named `integrate-aws-secrets-manager-with-eks.md` has been introduced to help users securely connect their EKS cluster with Secrets Manager using OIDC.
- The Quorum master README has been updated to guide users on how to deploy a network with AWS Secrets Manager.
- A Python script has been added that contains the CRUD operation code for AWS Secrets Manager, injecting the script into the container via ConfigMap.
- The Quorum Genesis and Node charts code have been updated to support Secrets Manager.

fixes #2200

suvajit-sarkar commented 2 months ago

The keys will conflict if same platforms are deployed using the same secret manager region. See if the keys can be made unique using the namespace