iamthefij/nomad-vault-login
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Shim service allowing authenticating a Nomad session using Vault
4 Commits 1 Branch 0 Tags 267 KiB
Python 89.7%
Dockerfile 10.3%
fc2b205260
Go to file
Ian Fijolek fc2b205260
All checks were successful
continuous-integration/drone/push Build is passing
Details
Update instructions
2022-09-11 21:22:37 -07:00
.drone.yml WIP: Initial WIP 2022-09-06 13:15:40 -07:00
.gitignore Initial commit 2022-09-06 20:06:20 +00:00
Dockerfile Update instructions 2022-09-11 21:22:37 -07:00
LICENSE Initial commit 2022-09-06 20:06:20 +00:00
main.py Update instructions 2022-09-11 21:22:37 -07:00
README.md Update instructions 2022-09-11 21:22:37 -07:00
requirements.txt WIP: Initial WIP 2022-09-06 13:15:40 -07:00

README.md

nomad-vault-login

Shim service allowing authenticating a Nomad session using Vault

This service would runs along side Nomad and Vault and proxied on the same hostname so it can write to localstorage. It then provides a form to allow authentication with Vault and then will retrieve the token and store that in the browser for Nomad to use.

Instructions

You can configure the service through environment variables.

  • BIND_HOST: Host to bind the server on. Defaults to 0.0.0.0.
  • BIND_PORT: Port to bind the server on. Defaults to 5000.
  • VAULT_ADDR: Address where we can find Vault. Defaults to http://127.0.0.1:8200.
  • NOMAD_ROLE: Default Nomad role to request from Vault. Defaults to admin.

Example Caddyfile

nomad.example.com {
  reverse_proxy /login localhost:5000
  reverse_proxy localhost:4646
}