64 lines
No EOL
939 B
HCL
64 lines
No EOL
939 B
HCL
pid_file = "./pidfile"
|
|
|
|
vault {
|
|
address = "https://openbao-fqdn:8200"
|
|
retry {
|
|
num_retries = 5
|
|
}
|
|
}
|
|
|
|
auto_auth {
|
|
method "kubernetes" {
|
|
config = {
|
|
role = "foobar"
|
|
}
|
|
}
|
|
|
|
sink "file" {
|
|
config = {
|
|
path = "/tmp/file-foo"
|
|
}
|
|
}
|
|
|
|
sink "file" {
|
|
wrap_ttl = "5m"
|
|
aad_env_var = "TEST_AAD_ENV"
|
|
dh_type = "curve25519"
|
|
dh_path = "/tmp/file-foo-dhpath2"
|
|
config = {
|
|
path = "/tmp/file-bar"
|
|
}
|
|
}
|
|
}
|
|
|
|
cache {
|
|
// An empty cache stanza still enables caching
|
|
}
|
|
|
|
api_proxy {
|
|
use_auto_auth_token = true
|
|
}
|
|
|
|
listener "unix" {
|
|
address = "/path/to/socket"
|
|
tls_disable = true
|
|
|
|
agent_api {
|
|
enable_quit = true
|
|
}
|
|
}
|
|
|
|
listener "tcp" {
|
|
address = "127.0.0.1:8100"
|
|
tls_disable = true
|
|
}
|
|
|
|
template {
|
|
source = "/etc/openbao/server.key.ctmpl"
|
|
destination = "/etc/openbao/server.key"
|
|
}
|
|
|
|
template {
|
|
source = "/etc/openbao/server.crt.ctmpl"
|
|
destination = "/etc/openbao/server.crt"
|
|
} |