Vault
- By Vault charmers
- Security
Channel | Revision | Published | Runs on |
---|---|---|---|
latest/edge | 222 | 20 Jan 2024 | |
1.8/stable | 209 | 05 Jan 2024 | |
1.8/edge | 164 | 09 Aug 2023 | |
1.15/beta | 276 | 18 Apr 2024 | |
1.15/edge | 277 | 18 Apr 2024 | |
1.7/stable | 210 | 10 Jan 2024 | |
1.6/stable | 182 | 14 Sep 2023 | |
1.5/stable | 268 | 11 Apr 2024 |
juju deploy vault --channel 1.8/stable
Deploy universal operators easily with Juju, the Universal Operator Lifecycle Manager.
Platform:
-
authorize-charm
Authorize the vault charm to interact with vault
-
disable-pki
Disable the PKI secrets backend. This is needed if you wish to switch the CA type after being set up via either upload-signed-csr or generate-root-ca.
-
generate-certificate
Generate a certificate agains the Vault PKI
-
generate-root-ca
Generate a self-signed root CA
-
get-csr
Get intermediate CA csr
-
get-root-ca
Get the root CA certificate
-
pause
Pause the vault unit. This stops the vault service.
-
raft-bootstrap-node
If and only if quorum is permanently lost (ie. impossible to recover enough nodes to reach quorum), then use this action on a single unit to re-bootstrap the raft cluster from this node. Remove all other units before running this. This runs the procedure documented at https://support.hashicorp.com/hc/en-us/articles/360050756393
-
raft-state
Get the raft cluster state.
-
refresh-secrets
Refresh secret_id's and re-issue retrieval tokens for secrets endpoints
-
reissue-certificates
Reissue certificates to all clients
-
reload
Reloads the vault unit. This allows for limited configuration options to be re-read. Vault will not become sealed.
-
restart
Restarts the vault unit. Vault will become sealed.
-
resume
Resume the vault unit. This starts the vault service. Vault will become sealed.
-
upload-signed-csr
Upload a signed csr to vault