Shim service allowing authenticating a Nomad session using Vault
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
IamTheFij a95bd9d033 Fix incorrect port 2 weeks ago
.drone.yml WIP: Initial WIP 3 weeks ago
.gitignore Initial commit 3 weeks ago
Dockerfile Fix incorrect port 2 weeks ago
LICENSE Initial commit 3 weeks ago
README.md Update instructions 2 weeks ago
main.py Update instructions 2 weeks ago
requirements.txt WIP: Initial WIP 3 weeks ago

README.md

nomad-vault-login

Shim service allowing authenticating a Nomad session using Vault

This service would runs along side Nomad and Vault and proxied on the same hostname so it can write to localstorage. It then provides a form to allow authentication with Vault and then will retrieve the token and store that in the browser for Nomad to use.

Instructions

You can configure the service through environment variables.

  • BIND_HOST: Host to bind the server on. Defaults to 0.0.0.0.
  • BIND_PORT: Port to bind the server on. Defaults to 5000.
  • VAULT_ADDR: Address where we can find Vault. Defaults to http://127.0.0.1:8200.
  • NOMAD_ROLE: Default Nomad role to request from Vault. Defaults to admin.

Example Caddyfile

nomad.example.com {
  reverse_proxy /login localhost:5000
  reverse_proxy localhost:4646
}