HashiCorp Vault integration plugin for WordPress

Installs: 4 572

Dependents: 0

Suggesters: 0

Security: 0

Stars: 9

Watchers: 21

Forks: 6

Open Issues: 5


2.0.0 2019-03-22 15:51 UTC


HashiCorp Vault integration for WordPress
Access Vault secrets, utilising WordPress APIs for maximum scalability.
A Human Made library. 68747470733a2f2f68756d616e6d6164652e636f6d2f636f6e74656e742f7468656d65732f686d6e6d642f6173736574732f696d616765732f686d2d6c6f676f2e737667

HashiCorp Vault integration for WordPress is a library which provides access to Vault secrets in a scaleable manner.

It wraps the CSharpRU/vault-php library, and uses WordPress' transients API to provide familiar and necessary caching for WordPress developers. The library offers automatic re-fetching of secrets prior to lease expiry.

Current limitations:

  • Only token-based authentication is supported.
  • Tokens with a renewable lease are not renewed using Vault's API. Instead, this library will refetch the token prior to expiry.


This library is distributed as a WordPress plugin. Install with Composer, and activate the plugin in the usual way.


In wp-config.php, define your Vault token:

define( 'HM_HASHICORP_VAULT_AUTH_TOKEN', 'your-token-123' );

define( 'HM_HASHICORP_VAULT_URL', '' );

Load the plugin in WordPress by requiring hashicorp-vault/plugin.php.


This project is made availabile with the MIT license.


Created by Human Made for enterprise-scale digital experiences. Written by Paul Gibbs. Thanks to all contributors.