Add Vault Pillar/SDB Module

[arnisoph]

Vault secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Vault handles leasing, key revocation, key rolling, and auditing. Vault presents a unified API to access multiple backends: HSMs, AWS IAM, SQL databases, raw key/value, and more.

• https://vaultproject.io/
• https://docs.saltstack.com/en/latest/topics/sdb/

  11147

  26236

[DanyC97]

@carlpett yes

[ahammond]

+1 for anything which allows me to use decentralized vault as an alternative to pillars for secrets management.

[carlpett]

Sorry - I totally forgot to create the PR for this. Got stuck with some linting problem or similar. I'll try to get it done during the weekend!

[mchugh19]

@carlpett Has there been an update? Is your module releasable?

[carlpett]

@mchugh19 Wow, good reminder... Sorry about being so slow. We've been using it internally for over half a year without any problems, so I guess so. With 2016.11 having support for utils-syncing on the master it should actually be pretty simple to just add it as another file_root (or gitfs remote, that is what we are doing). For 2016.3 you need to do a manual copy of the util to the master's extmod, which is a bit of a bother.

Anyway, it would be better to get it into the distribution. I'll give it a go and hope I can finish it up this time.

[carlpett]

@mchugh19 As an update, I've merged the code into a branch on the main saltstack repo now, and removed the majority of linting issues. I'm still working on minimizing the breakage from the existing code, hopefully I can finalize it tomorrow.

[carlpett]

This has now been merged, a year later. There were a few fixes on the separate repo just the last days, which I'll port over in a separate PR. But I think this issue can be closed now?