humanmade/hashicorp-vault

HashiCorp Vault integration plugin for WordPress

Installs: 2 884

Dependents: 0

Suggesters: 0

Security: 0

Stars: 7

Watchers: 14

Forks: 1

Open Issues: 3

Type:wordpress-plugin

2.0.0 2019-03-22 15:51 UTC

This package is auto-updated.

Last update: 2021-04-22 20:17:25 UTC


README

HashiCorp Vault integration for WordPress
Access Vault secrets, utilising WordPress APIs for maximum scalability.
A Human Made library. 68747470733a2f2f68756d616e6d6164652e636f6d2f636f6e74656e742f7468656d65732f686d6e6d642f6173736574732f696d616765732f686d2d6c6f676f2e737667

HashiCorp Vault integration for WordPress is a library which provides access to Vault secrets in a scaleable manner.

It wraps the CSharpRU/vault-php library, and uses WordPress' transients API to provide familiar and necessary caching for WordPress developers. The library offers automatic re-fetching of secrets prior to lease expiry.

Current limitations:

  • Only token-based authentication is supported.
  • Tokens with a renewable lease are not renewed using Vault's API. Instead, this library will refetch the token prior to expiry.

Installation

This library is distributed as a WordPress plugin. Install with Composer, and activate the plugin in the usual way.

Usage

In wp-config.php, define your Vault token:

define( 'HM_HASHICORP_VAULT_AUTH_TOKEN', 'your-token-123' );

define( 'HM_HASHICORP_VAULT_URL', 'https://example.com/your-vault/' );

Load the plugin in WordPress by requiring hashicorp-vault/plugin.php.

License

This project is made availabile with the MIT license.

Credits

Created by Human Made for enterprise-scale digital experiences. Written by Paul Gibbs. Thanks to all contributors.