Is it possible to generate random value on access if key doesn't exist?

hashicorp10 · February 20, 2022, 12:55am

Hello,

I’m wondering if there was a way to generate a random value on access if a key doesn’t exist in Vault. My use-case would be to automate creation of environments on Kubernetes. Using the CSI Driver, I would like to generate a secret key for applications and other credentials that can be a random value (for example a staging MySQL server deployed inside the cluster).

I’ve found some information regarding RabbitMQ, but it seems like it still required manual intervention to actually generate the password.

Thank you

aram · February 20, 2022, 8:59am

There are plugins that generate random values for you upon request – but with default vault, no there is no hook or trigger that would generate a value on request if one does not exist.

That said, Vault is extendable so you could write your own KV engine that would do that.

Topic		Replies	Views
Is there a way to auto generate secrets in a kv engine? Vault	8	3351	October 28, 2024
Vault dynamic generation of permanent password Vault	3	1047	October 10, 2019
Generate dynamic secret Vault k8s , vault	1	294	November 3, 2022
Vault Secrets Gen Plugin Vault	3	622	October 4, 2021
Is Vault capable of generating SecretKey(s) on its own? Vault	0	245	August 23, 2021

Is it possible to generate random value on access if key doesn't exist?

Related topics