We have a .NET application and are working towards a config provider. The problem is that I don’t understand how the application is going to use a static KV/KV2 secret that was manually updated. I was thinking polling might address this but any tips are appreciated.
Just to keep it in mind:
opened 11:37AM - 14 Dec 17 UTC
closed 03:18PM - 15 Dec 17 UTC
Feature Request:
There are a number of good reasons why it would be very useful if Vault supported change notifications for secrets...
Are you using Consul as storage backend?
Is this a duplicate to your former question? How does the application integrated with hashicorp pull the latest static secret that was updated in vault?
For Consul as storage backend this could be a solution
Hi @sparshneel ,
Watches on key-values just use Blocking Queries under the hood. If you’re using the API to directly perform a blocking query, then the API will only return when the KV you’re watching is modified (or if the timeout is reached – in which case you retry the query). Similarly, the Watch will only fire the key’s value is modified.
Does this help answer how you can monitor a particular KV for changes?