|
|
|
|
@ -37,7 +37,7 @@ Class: EVAL
|
|
|
|
|
Group: Networking |
|
|
|
|
License: MPL |
|
|
|
|
Version: %{V_vault_opkg}.%{V_vault_snap} |
|
|
|
|
Release: 20190423 |
|
|
|
|
Release: 20190424 |
|
|
|
|
|
|
|
|
|
# list of sources |
|
|
|
|
Source0: http://download.openpkg.org/components/versioned/vault/vault-%{V_vault_snap}.tar.xz |
|
|
|
|
@ -132,14 +132,16 @@ PreReq: OpenPKG, openpkg >= 20160101, cfssl
|
|
|
|
|
echo "3. prepare your client environment:" |
|
|
|
|
echo " \$ export VAULT_ADDR=\"https://127.0.0.1:8200\"" |
|
|
|
|
echo " \$ export VAULT_CACERT=\"$RPM_INSTALL_PREFIX/etc/vault/vault-tls-ca.crt\"" |
|
|
|
|
echo "4. initialize database (remember key and auth token):" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault operator init -key-shares=1 -key-threshold=1" |
|
|
|
|
echo "5. check status:" |
|
|
|
|
echo "4. check status (understand it is still sealed):" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault status" |
|
|
|
|
echo "6. unseal database (with remembered key):" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault unseal <key>" |
|
|
|
|
echo "7. authenticate against database (with remembered auth token):" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault auth <token>" |
|
|
|
|
echo "5. initialize database (remember unseal key and root token):" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault operator init \\%{l_nil}" |
|
|
|
|
echo " -key-shares=1 -key-threshold=1 \\%{l_nil}" |
|
|
|
|
echo " -recovery-shares=1 -recovery-threshold=1" |
|
|
|
|
echo "6. unseal database (with remembered unseal key):" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault operator unseal <key>" |
|
|
|
|
echo "7. authenticate against database (with remembered root token):" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault login -method=token" |
|
|
|
|
echo "8. write data under <name>:" |
|
|
|
|
echo " \$ $RPM_INSTALL_PREFIX/bin/vault write secret/<name> value=<value>" |
|
|
|
|
echo "9. read data under <name>:" |
|
|
|
|
|
