search

mulbc / vaultPass

A Chrome extension to leverage Hashicorp Vault as Credential Storage for teams
MIT License
97 stars 38 forks source link

Question - Does the plugin on chrome store work out of the box #27

Closed moedawood closed 1 year ago

moedawood commented 2 years ago

Hi

Just a question , does the plugin on the chrome store work out of the box , I seem to be getting an error

Am I missing something ?

mulbc commented 2 years ago

It should work out of the box and show you a window like this when you click the VaultPass icon: image After seeing this, you should head over to the options page to log into your Vault instance

moedawood commented 2 years ago

It should work out of the box and show you a window like this when you click the VaultPass icon: image After seeing this, you should head over to the options page to log into your Vault instance

Hi

The current version on chrome gives me the following error

When I hit login

"Failed to execute 'text' on 'Response': body stream already read"

mulbc commented 2 years ago

Would you be able to show me a screenshot or video of your issue? I currently can't reproduce it.

If you want to test it with a test Vault instance you'll find the start_dev_environment.sh script in this repo. You can login to that Vault at URL http://localhost:8200 with the user mitchellh, password foo and Auth Mountpoint userpass

moedawood commented 2 years ago

Would you be able to show me a screenshot or video of your issue? I currently can't reproduce it.

If you want to test it with a test Vault instance you'll find the start_dev_environment.sh script in this repo. You can login to that Vault at URL http://localhost:8200 with the user mitchellh, password foo and Auth Mountpoint userpass

Hi

please see attached

https://user-images.githubusercontent.com/62351382/150477456-e544fdeb-d145-4bd1-996d-8f1a171ab733.mp4

mulbc commented 2 years ago

Does the same happen with the mitchellh test user? Else, could you share how you created the browser test user?

moedawood commented 2 years ago

Does the same happen with the mitchellh test user? Else, could you share how you created the browser test user?

Hi

So I have setup again and seem to be getting the same error

First i create a secret as root user via token login

Next I create a policy with read and list capabailities

path "secret/" { capabilities = [ "list" ] } path "secret/dbserver" { capabilities = [ "list", "read" ] } Next I enable username and password auth method

Next I Create Entities and assign them to groups

After that write password via command line

I can login in with the created user and view the secrets assigned through the policies but when i use the extension on chrome i get the same error as above

I used the following guide initially to create the browser user

https://learn.hashicorp.com/tutorials/vault/browser-plugin

mulbc commented 2 years ago

Thanks for pointing me to the Vault Tutorial - I was not aware that Hashicorp uses part of my code for their tutorials

I still think that your problem is due to a Policy issue... You never responded if the mitchellh test user works for you. When you use the 'start_dev_environment.sh' script to start a local Vault instance, the mitchellh user comes with a test secret for the URL google.com. Maybe you want to try that out again?

If everything fails, would you be open for a screen-sharing session next week so I can debug this on your end?

moedawood commented 2 years ago

Thanks for pointing me to the Vault Tutorial - I was not aware that Hashicorp uses part of my code for their tutorials

I still think that your problem is due to a Policy issue... You never responded if the mitchellh test user works for you. When you use the 'start_dev_environment.sh' script to start a local Vault instance, the mitchellh user comes with a test secret for the URL google.com. Maybe you want to try that out again?

If everything fails, would you be open for a screen-sharing session next week so I can debug this on your end?

Hi Yes sure

Let me give it a go and see what happens

ahernandez411 commented 2 years ago

I am also seeing this behavior. I'm attempting to use LDAP to login

moedawood commented 1 year ago

Good day,

Thank-you for your email, in order to streamline support requests and serve you better, we utilise a support ticket system, a ticket has been created for you and a member of our support team will be assigned to your request and will follow-up with you as soon as possible.

Please note that our business hours are: Mon - Fri : 08:00 - 16:00 Sat + Sun : Closed Public Holidays: Closed

Kind Regards Your Friendly PiShop Team

[https://ci3.googleusercontent.com/proxy/_qrIf5zI7cjL1Cbvd8hYhGwdGiz4CZNzBJLUZQyS8Uyp3V03mUhILWJKOCQzh8U7xFCmNwgnmo2DXGfVhYkYexRs=s0-d-e1-ft#https://www.pishop.co.za/email-sig-logo-300.jpg]

REF: eeff2e1976a71ad01066a13e1bbb17d9:3745