internet/community.general
3
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2026-04-04 17:53:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

Support use of VAULT_NAMESPACE env var (#929) (#937)

Browse Source 
As per https://learn.hashicorp.com/tutorials/vault/namespaces, setting VAULT_NAMESPACE env var is a completely supported mechanism to make all vault command use said namespace, so hashi_vault lookup function should do the same.

Co-authored-by: Holt Wilkins <hwilkins@palantir.com>
(cherry picked from commit 1a5702cf21)

Co-authored-by: holtwilkins <5665043+holtwilkins@users.noreply.github.com>
This commit is contained in:
patchback[bot]
2020-09-21 13:57:18 +02:00
committed by GitHub
parent 3a95a84963
commit 0fe7ea63a8
2 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
changelogs/fragments/929-vault-namespace-support.yml Normal file
View File

@@ -0,0 +1,3 @@
---
minor_changes:
- hashi_vault - support ``VAULT_NAMESPACE`` environment variable for namespaced lookups against Vault Enterprise (in addition to the ``namespace=`` flag supported today) (https://github.com/ansible-collections/community.general/pull/929).

3
plugins/lookup/hashi_vault.py
View File

@@ -117,6 +117,9 @@ DOCUMENTATION = """
default: True
namespace:
description: Namespace where secrets reside. Requires HVAC 0.7.0+ and Vault 0.11+.
env:
- name: VAULT_NAMESPACE
version_added: 1.2.0
aws_profile:
description: The AWS profile
type: str