summaryrefslogtreecommitdiff
path: root/learn
diff options
context:
space:
mode:
authormo khan <mo@mokhan.ca>2022-04-13 09:46:05 -0600
committermo khan <mo@mokhan.ca>2022-04-13 09:46:05 -0600
commit0631aa0527ab9618de1e0801f72d91fd15f80310 (patch)
tree58db450827e0af1b5e91ff42dfc95c74bee632e4 /learn
parentf50684ff437d7880272b34de189c3d0421b0b44d (diff)
move vault notes to a separate file
Diffstat (limited to 'learn')
-rw-r--r--learn/vault/README.md37
1 files changed, 37 insertions, 0 deletions
diff --git a/learn/vault/README.md b/learn/vault/README.md
new file mode 100644
index 0000000..d6253e1
--- /dev/null
+++ b/learn/vault/README.md
@@ -0,0 +1,37 @@
+# Vault
+
+Start the server:
+
+```bash
+$ vault server -dev
+```
+
+```bash
+モ vault export VAULT_ADDR=http://127.0.0.1:8200
+モ vault export VAULT_TOKEN=hvs.example
+モ vault kv put cubbyhole/rails session_secret=example
+Success! Data written to: cubbyhole/rails
+モ vault kv get cubbyhole/rails
+========= Data =========
+Key Value
+--- -----
+session_secret example
+モ vault kv get -field=session_secret cubbyhole/rails
+example
+```
+
+To create a new namespace for secrets you need to provide a path prefix.
+
+```bash
+モ vault secrets enable -path=rails kv
+Success! Enabled the kv secrets engine at: rails/
+モ vault secrets list
+Path Type Accessor Description
+---- ---- -------- -----------
+cubbyhole/ cubbyhole cubbyhole_75d064e5 per-token private secret storage
+identity/ identity identity_d11fdd33 identity store
+rails/ kv kv_6ca5f254 n/a
+secret/ kv kv_c50fa680 key/value secret storage
+sys/ system system_5e571326 system endpoints used for control, policy and debugging
+```
+
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 02:48:22 +0000