Vault secret in Nomad Volume definition

acziryak · January 26, 2023, 7:38pm

Hello all,

I am looking to have a Vault secret be put into my volume creation much like I would be able to template data into a file in a nomad job.

Specifically I would like to use a secret that is in Vault for secrets.userKey in the volume configuration.

I don’t think it will work to put:

secrets {
  userID = "my_user" 
  userKey = {{ with secret cephCSI }}{{ .Data.data.userKey }}{{ end }}
}

So I’m looking to see if there’s another way to template this out by using the nomad integration. Thanks!

jrasell · February 3, 2023, 11:02am

Hi @acziryak,

Unfortunately this is not currently possible. We do have issue #7978 to track this future feature request, so please add a +1 to this to the opening comment.

I am not sure of any current workaround; if someone in the community has an alternative that would be great to hear about.

Thanks,
jrasell and the Nomad team

Topic		Replies	Views
Can I use Vault Secrets in Volume Specifications? Nomad kv , vault	0	412	September 14, 2022
Using vault aws secrets engine with nomad templates Nomad	0	442	May 2, 2022
Nomad unable to retrieve secret from vault Nomad vault , consul-vault , nomad-pack	1	685	September 20, 2022
Nomad giving error in vault templating Nomad	2	87	May 13, 2024
Trying to set up vault for secret management in cluster already running nomad an consult Nomad vault	0	295	August 16, 2022

Vault secret in Nomad Volume definition

Related topics