Helm chart to install OpenBao and other associated components.
Find a file
Sergei Zyubin 9fbe720f6b
Make serviceAccount name a configuration option (#367)
* Make serviceAccount name a configuration option

Follow Helm Best Practices when defining serviceAccount names
https://helm.sh/docs/chart_best_practices/#using-rbac-resources

* Use enabled instead of create for consistency

* Add unit tests for user-defined service account name

* ServiceAccount under server

Co-authored-by: David Holsgrove <david@apnic.net>

* Update ServiceAccount in RoleBindings

to address https://github.com/hashicorp/vault-helm/pull/56#pullrequestreview-297856433

Co-authored-by: David Holsgrove <david@apnic.net>

* Update tests for helm template arg --show-only

Co-authored-by: David Holsgrove <david@apnic.net>

* Fix server-serviceaccount tests

* serviceAccount: rename enabled to create

* statefulSet: add tests for serviceAccount

Co-authored-by: Nick Satterly <nick@diabol.se>
Co-authored-by: David Holsgrove <david@apnic.net>
2020-08-18 19:13:02 -07:00
.circleci check that git tag == chart tag on tagged releases (#316) 2020-06-02 11:38:59 -04:00
.github/ISSUE_TEMPLATE Add issue templates (#351) 2020-07-06 17:03:57 -07:00
templates Make serviceAccount name a configuration option (#367) 2020-08-18 19:13:02 -07:00
test Make serviceAccount name a configuration option (#367) 2020-08-18 19:13:02 -07:00
.gitignore Fix audit storage mount in HA mode (#79) 2019-10-10 10:03:44 -04:00
.helmignore Ignore bin dirs 2018-08-20 17:30:52 -07:00
CHANGELOG.md changelog++ 2020-08-14 15:06:03 -07:00
Chart.yaml Update to v0.6.0 (#320) 2020-06-03 10:03:10 -04:00
CONTRIBUTING.md Helm 3 support (#195) 2020-02-06 08:44:38 -08:00
LICENSE.md Add license 2018-08-17 22:09:05 -07:00
Makefile Minor updates for Makefile (#355) 2020-07-30 10:16:47 -04:00
README.md Add note to config about sensitive configs (#323) 2020-06-04 13:37:31 -04:00
values.yaml Make serviceAccount name a configuration option (#367) 2020-08-18 19:13:02 -07:00

Vault Helm Chart

⚠️ Please note: We take Vault's security and our users' trust very seriously. If you believe you have found a security issue in Vault Helm, please responsibly disclose by contacting us at security@hashicorp.com.

This repository contains the official HashiCorp Helm chart for installing and configuring Vault on Kubernetes. This chart supports multiple use cases of Vault on Kubernetes depending on the values provided.

For full documentation on this Helm chart along with all the ways you can use Vault with Kubernetes, please see the Vault and Kubernetes documentation.

Prerequisites

To use the charts here, Helm must be configured for your Kubernetes cluster. Setting up Kubernetes and Helm and is outside the scope of this README. Please refer to the Kubernetes and Helm documentation.

The versions required are:

  • Helm 3.0+ - This is the earliest version of Helm tested. It is possible it works with earlier versions but this chart is untested for those versions.
  • Kubernetes 1.9+ - This is the earliest version of Kubernetes tested. It is possible that this chart works with earlier versions but it is untested. Other versions verified are Kubernetes 1.10, 1.11.

Usage

To install the latest version of this chart, add the Hashicorp helm repository and run helm install:

$ helm repo add hashicorp https://helm.releases.hashicorp.com
"hashicorp" has been added to your repositories

$ helm install vault hashicorp/vault

Please see the many options supported in the values.yaml file. These are also fully documented directly on the Vault website along with more detailed installation instructions.