-
Notifications
You must be signed in to change notification settings - Fork 5
Usage Authorization
Stefan Kalscheuer edited this page Apr 26, 2020
·
5 revisions
The connector currently supports four authorization methods.
- Token
- Username & Password
- AppRole
- AppID [deprecated]
VaultConnector connector = ...;
connector.authToken("01234567-89ab-cdef-0123-456789abcdef"); // Create new token using the builder (supports all current parameters).
Token token = Token.builder()
.withId("token-id")
.withDisplayName("token name")
.build();
// Write token to Vault (orphan creation and role binding possible).
AuthResponse createResponse = connector.createToken(token);VaultConnector connector = ...;
connector.authUserPass("username", "p4ssw0rd");VaultConnector connector = ...;
// connector.authAppId("role-id", "secret-id");
connector.authAppRole("01234567-89ab-cdef-0123-456789abcdef", "fedcba98-7654-3210-fedc-ba9876543210");// Create new role using the builder. Supports all current role parameters.
AppRole role = AppRole.builder("role-name").build();
// Write the new role to Vault.
boolean created = connector.createAppRole(role);
// Lookup the role by name.
AppRoleResponse res = connector.lookupAppRole("role-name");
// Create a new secret with random ID.
AppRoleSecretResponse secret = connector.createAppRoleSecret("role-name");
// Destroy the secret.
boolean destroyed = connector.destroyAppRoleSecret("role-name", secret.getSecret().getId());VaultConnector connector = ...;
// connector.authAppId("app-id", "user-id");
connector.authAppId("01234567-89ab-cdef-0123-456789abcdef", "fedcba98-7654-3210-fedc-ba9876543210");Licensed under Apache License 2.0 • Project Page • JavaDoc API