HashiCorp Vault
Configuration for HashiCorp Vault secret management
Type: hashicorp-vault
Properties
| Name | Type | Description | Required |
|---|---|---|---|
| setup | object | Vault server location and storage layout | yes |
| security | object | Authentication credentials for the Vault server | yes |
Additional Properties: not allowed
Example
{
"setup": {
"vault_address": "https://vault.acme-corp.io",
"mount": "secret",
"secret_path": "nullplatform"
},
"security": {
"vault_token": "hvs.CAESIJ...",
"token_expires_at": "2026-12-31"
}
}
setup: Setup
Vault server location and storage layout
Properties
| Name | Type | Description | Required |
|---|---|---|---|
| mount (Mount Point) | string | The KV engine mount point on the Vault server Default: "secret" | no |
| secret_path | string | The base path for secrets within the mount Default: "nullplatform" | no |
| vault_address | string | The URL of the HashiCorp Vault server Format: "uri" | yes |
Example
{
"vault_address": "https://vault.acme-corp.io",
"mount": "secret",
"secret_path": "nullplatform"
}
security: Security
Authentication credentials for the Vault server
Properties
| Name | Type | Description | Required |
|---|---|---|---|
| vault_token | string | The authentication token for Vault | yes |
| token_expires_at (Token Expiration) | string | When the token expires (YYYY-MM-DD) Format: "date" | no |
Example
{
"vault_token": "hvs.CAESIJ...",
"token_expires_at": "2026-12-31"
}