Vault: keys are now referenced by name, and the actual data by data

2025-03-11 21:33:06 -05:00
parent fe27c6396a
commit fd4c83f9c0
8 changed files with 111 additions and 76 deletions
--- a/docs/content/config/vault.md
+++ b/docs/content/config/vault.md
@ -6,7 +6,7 @@ description: Set up and configure vault.

 [Vault](https://www.vaultproject.io/) is a tool for storing secrets and other data securely.

-Vault config can be used by prefixing `vault:` in front of a password or ENV var.
+A Vault key can be used by prefixing `%{vault:vault.keys.name}%` in a field that supports external directives.

 This is the object in the config file:

@ -18,10 +18,12 @@ vault:
  keys:
    - name: mongourl
      mountpath: secret
+      key: data
      path: mongo/url
      type:  # KVv1 or KVv2
-    - name:
-      path:
-      type:
-      mountpath:
+    - name: someKeyName
+      mountpath: secret
+      key: keyData
+      type: KVv2
+      path: some/path
 ```