lr_hashicorp_vault_get_secret_with_jwt_auth

Retrieves the full secret response from HashiCorp Vault using JWT authorization, and stores it in a parameter.

Arguments

NameComments
ServerUrlThe URL of the HashiCorp Vault server, e.g. “http://127.0.0.1:8200”
SecretPathThe path to the secret within the Vault, e.g. “secret/mysecret”. If KV version 2, “data/” must be added in the path.
KvVersionThe KV version used in vault, the value can be “1” or “2”.
SecretVersionThe version of the secret to retrieve e.g. “1”. If empty, the latest version is returned. For KV version 1, this argument is ignored as versioning was not supported.
RoleThe Vault role to associate with the JWT, e.g. “my-k8s-role”
JWTA valid JWT used to authenticate to Vault, e.g. “eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...”
VaultNamespaceThe Vault namespace to use, e.g. “admin”. Leave this empty if no vault namespace is used.
ResultParamNameThe name of the parameter in which the response will be stored.

Return Values

Returns 0 on success, or 1 for an error.

Parameterization

All string input arguments can be passed using standard parameterization.

Examples

C language - KV Version 1

Copy code
lr_hashicorp_vault_get_secret_with_jwt_auth ("ServerUrl=http://127.0.0.1:8200",
              "SecretPath=secret/mysecret",
              "KvVersion=1",
              "SecretVersion=",
              "Role=my-k8s-role",
              "JWT=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...", 
              "VaultNamespace=admin",
              "ResultParamName=response",
              LAST);

C language - KV Version 2

Copy code
lr_hashicorp_vault_get_secret_with_jwt_auth ("ServerUrl=http://127.0.0.1:8200",
              "SecretPath=secret/data/mysecret",
              "KvVersion=2",
              "SecretVersion=1",
              "Role=my-k8s-role",
              "JWT=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...", 
              "VaultNamespace=admin",
              "ResultParamName=response",
              LAST);

Java and .NET

Copy code
lr.hashicorp_vault_get_secret_with_jwt_auth(new String[]{
              "ServerUrl=http://127.0.0.1:8200",
              "SecretPath=secret/data/mysecret",
              "KvVersion=2",
              "SecretVersion=1",
              "Role=my-k8s-role",
              "JWT=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...", 
              "VaultNamespace=admin",
              "ResultParamName=response"});

JavaScript

Copy code
lr.hashicorpVaultGetSecretWithJWTAuth({serverUrl:"http://127.0.0.1:8200",
              secretPath:"secret/data/mysecret",
              kvVersion:"2",
              secretVersion:"1",
              role:"my-k8s-role",
              jwt:"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
              vaultNamespace:"admin",
              resultParamName:"response"});