Vault on Kubernetes with PostgreSQL

Показать описание

Folks! Today we're taking a look how to fully automate the secret lifecycle of a password, end to end with no user involved. We learn how to integrate HashiCorp Vault into Kubernetes, how to setup authentication and policies between Vault and PostgreSQL server. Finally we deploy an app that requires a password, which is generated by Vault and injected into our application.
Be sure to checkout the series below and links to the source code :)

Also if you want to support the channel further, become a member 😎

Checkout "That DevOps Community" too

Full playlist:

Introduction to Vault:

TLS end to end Encryption:

Basic Secret Injection:

Running Kubernetes in a Docker Container with Kind:

Source Code
--------------------------------------------------------------

If you are new to Kubernetes, check out my getting started playlist on Kubernetes below :)

Kubernetes Guide for Beginners:
---------------------------------------------------

Kubernetes Monitoring Guide:
-----------------------------------------------

Kubernetes Secret Management Guide:
--------------------------------------------------------------

Like and Subscribe for more :)

Follow me on socials!

Music:

Рекомендации по теме

Комментарии

Nice job. I installed vault with helm and wanted to test it. I used your tutorial to connect posgresql to vault . Working perfect. I`d like to test it with mysql or some other as well. Thanks for the tutorial.

elchinefa

I've got the exact same Coffee Maker, and soon also a shiny new Vault in my Kubernetes Cluster

anonde

Interesting video, I’d liked to of seen you cover off what happens when the password expires.

adamstirk

Thank you for super great tutorials, just what I was waiting for. If You will have time, please make tutorial with Istio and Kubernetes. How to setup and configure correctly. Thank you.

polmaksim

Using it for AWS RDS and GCP Cloud Storage at the same time.
Managing applications in AWS accessing the DB in GCP.

Alpha-kthc

I'd like to se automated ways to get secrets into the vault

aperture

The perfect video which I was looking for .. thanks devops guy ❤️

pratikbhandari

Seems like vault could be used to generate certificates to sign json web tokens

inversemetric

great job man!! I really appreciate the effort

raghads

Can you please guide us how can we rotate database secret for mongoDB and how to inject that into Spring boot service. I searched the whole internet but unable to find the solutions

kumarpatil

Hi, thanks for the video! But I wonder, what if our application still running but the postgres credentials has been expired, what will happend to the executed queries? Thanks!

clavianusjuneardo

Hey Hi.
How are you.
I need some help to auto unseal vault using shell script in kubernetes yaml files, can you please help me out, if you dont mind.

rayudu

great videos! can you please do a video on vault with Azure? Thank you so. much!!

preethipriyankamalayala

Hey Hi.
i have facing some issue after vault configuration on ibm kubernetes cluster, i have given Key shares and Key threshold numbers after that i clicked on intilize i got this below issue
"Error
failed to initialize barrier: failed to persist keyring: mkdir /vault/data/core: permission denied", can you please help me out for this one

rayudu

Hello
Thanks For the Video Can you please clarify my doubt

Suppose that my application (stateless) is running on an EKS cluster and I'm running the RDS database that is connected to that Stateless application
And I'm using java.properties file to defining the username and password

Now it is not good practice to add the password in the plain text format inside java.properties

How can I connect my stateless java application to the RDS database using vault?

kkkant

Vault on Kubernetes with PostgreSQL

Vault on Kubernetes with PostgreSQL

Configuring HashiCorp Vault In HA And Auto Unseal Mode For Kubernetes

Dynamic Database Credentials with Vault and Kubernetes

Vault & Kubernetes: Better Together

Create Dynamic Database Credentials with Vault Secrets Operator

Dynamic Database Credentials with Vault and Kubernetes

Postgres DB credentials rotation using Spring Cloud Vault | Spring Boot | Hashicorp Vault

Basic secret injection for microservices on Kubernetes using Vault

Secure Secrets in Kubernetes with Vault

PostgreSQL Operator 4.3 Feature Demo: pgAdmin4 in my Kubernetes?

PostgreSQL on K8S at Zalando: Two years in production

Vault Kubernetes Auth

Dynamic User Creation with MySQL on Kubernetes and HCP Vault

Data On Kubernetes, Deploying And Running PostgreSQL And... - Chris Milsted & Gabriele Bartolini

Demo: Vault + Kubernetes Sidecar Injection

Kubernetes Training #54 | Kubernetes · StatefulSets – PSQL Access to Postgres

Vault with Docker and Kubernetes [Announcement Video]

Breaking the Ice: Secure Introduction With Vault and Kubernetes

Vault & Kubernetes Workshop with Adfinis EN

Ephemeral Database Credentials With Vault and Terraform

PostgreSQL GitOps: Deploy PostgreSQL on Kubernetes with Helm

Injecting Vault Secrets Into Kubernetes Pods via a Sidecar

Kubernetes Security: Solving Common Challenges

Kubernetes Secrets with Vault: DevOps and Docker Live Show (Ep 186)