Tool for auto-renewal certificates and CRL from Vault PKI.
Project description
Vault PKI Agent
Tool for auto-renewal certificates and CRL from Vault PKI.
Usage
Basic usage:
$ vault_pki_agent -c [CONFIG_PATH] -l [LOG_LEVEL]
Log level can be DEBUG (by default), INFO, WARNING, ERROR, CRITICAL
Configuration
Example:
{
"url": "http://111.111.111.111:8200",
"mount_point": "pki",
"auth": {
"method": "approle",
"role_id": "990ff41d-0448-f5d5-e405-22c05a23f976",
"secret_id": "92871b67-0ad6-a4d5-40cc-0d8fb64e2960"
},
"crl": {
"destination": "/etc/openvpn/keys/ca.crl"
},
"certificates": [
{
"role": "server",
"common_name": "server",
"crt_destination": "/etc/openvpn/keys/server.crt",
"key_destination": "/etc/openvpn/keys/server.key",
"hook": "systemctl restart openvpn"
}
]
}
Release
- Bump version in
pyproject.tomland__init__.pyfiles - Commit changes and create git tag with new version:
$ git commit -am "Bump version"
$ git tag v0.2.0
- Build and publish new library version:
$ poetry build
$ poetry publish
- Push:
$ git push
$ git push --tags
License
Vault PKI Agent is released under the MIT License. See the LICENSE file for more details.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
vault-pki-agent-0.2.0.tar.gz
(6.1 kB
view hashes)
Built Distribution
Close
Hashes for vault_pki_agent-0.2.0-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 12116b329dc26746f9b906792f5e3148c635cd788d351d2fc65079d541a219a8 |
|
| MD5 | ccd72b4cc7c1a8f831455113c6e905c5 |
|
| BLAKE2b-256 | 030316904df3d6484bb6f752d7ed7cf074a810bcad8414e5b12340f6640a9b14 |
