21b11b47d6
Completed review comments Minor abbreviation fix Moved topics into its own VNF Integration section Fixed abbreviations Re-organized Kubernetes topics Change-Id: I8940d3572b789990d3b5f2d201f8ec8a46ce2943 Signed-off-by: Keane Lim <keane.lim@windriver.com>
1.2 KiB
1.2 KiB
Vault Overview
You can optionally integrate open source Vault secret management into
the solution. The Vault integration requires PVC (Persistent Volume
Claims) as a storage backend to be enabled.
There are two methods for using Vault secrets with hosted applications:
- Have the application be Vault Aware and retrieve secrets using the
Vault REST API. This method is used to allow an application write
secrets to Vault, provided the applicable policy gives write permission
at the specified Vault path. For more information, see
Vault Aware <vault-aware>. - Have the application be Vault Unaware and use the Vault Agent
Injector to make secrets available on the container filesystem. For more
information, see,
Vault Unaware <vault-unaware>.
Both methods require appropriate roles, policies and auth methods to be configured in Vault.