Introduction

HashiCorp Vault Integration allows you to:

  • Read secrets from your Vault cluster and use your secrets in workflows securely.

Rootly only supports KV Secrets Engine - Version 2

Installation

Configure

  • Auth methods are currently done through app role + app secret. Need another way to authenticate? Contact us at support@rootly.com.

Define a secret

Generally only Rootly owners or admins are able to define secrets. You can tweak permissions through our RBAC controller.

Under Account > Secrets, define a HashiCorp Secret and specify mount, path and version.

How to use it

You can use our liquid markup in any of our workflow tasks:

Give the following secret in Vault:

{
  "first-secret": "Vault Is The Way",
  "nested-secret": {
    "foo": "bar"
  }
}

You can now read secrets:

{{ secrets.my_secret.first-secret }} // Will resolve to "Vault Is The Way"
{{ secrets.my_secret.nested-secret.foo }} // Will resolve to "bar"

Support

If you need help or more information about this integration, please contact support@rootly.com or use the lower right chat widget to get connected with an engineer.

Uninstall

You can uninstall this integration in the integrations panel by clicking Configure > Delete