Vault
Swift configuration for Vault backend storage
The Swift storage backend is used to persist Vault's data in an OpenStack Swift Container.
No High Availability – the Swift storage backend does not support high availability.
Community Supported – the Swift storage backend is supported by the community. While it has undergone review by HashiCorp employees, they may not be as knowledgeable about the technology. If you encounter problems with them, you may be referred to the original author.
storage "swift" {
auth_url = "https://..."
username = "admin"
password = "secret123!"
container = "my-storage-container"
}
swift
parameters
auth_url
(string: <required>)
– Specifies the OpenStack authentication endpoint. This can also be provided via the environment variableOS_AUTH_URL
.container
(string: <required>)
– Specifies the name of the Swift container. This can also be provided via the environment variableOS_CONTAINER
.max_parallel
(string: "128")
– The maximum number of concurrent requests.password
(string: <required>)
– Specifies the OpenStack password. This can also be provided via the environment variableOS_PASSWORD
.tenant
(string: "")
– Specifies the name of the tenant. If left blank, this will default to the default tenant of the username. This can also be provided via the environment variableOS_TENANT_NAME
.username
(string: <required>)
– Specifies the OpenStack account/username. This can also be provided via the environment variableOS_USERNAME
.region
(string: "")
– Specifies the name of the region. This can also be provided via the environment variableOS_REGION_NAME
.tenant_id
(string: "")
- Specifies the id of the tenant. This can also be provided via the environment variableOS_TENANT_ID
.domain
(string: "")
- Specifies the name of the user domain. This can also be provided via the environment variableOS_USER_DOMAIN_NAME
.project-domain
(string: "")
- Specifies the name of the project's domain. This can also be provided via the environment variableOS_PROJECT_DOMAIN_NAME
.trust_id
(string: "")
- Specifies the id of the trust. This can also be provided via the environment variableOS_TRUST_ID
.storage_url
(string: "")
- Specifies storage URL from alternate authentication. This can also be provided via the environment variableOS_STORAGE_URL
.auth_token
(string: "")
- Specifies auth token from alternate authentication. This can also be provided via the environment variableOS_AUTH_TOKEN
.
swift
examples
Default example
This example shows a default configuration for Swift.
storage "swift" {
auth_url = "https://os.internal/v1/auth"
container = "container-239"
username = "user1234"
password = "pass5678"
}