Launching Vault Integration

The release 1.24.6+ introduces integration with HashiCorp Vault.

What Is Vault Integration

It allows obtaining credentials securely from a Key Value secrets engine when interacting with Connections on Hoop.

Getting Started with Vault Integration

Create a Postgres database Connection on Hoop mapping the secret from a KV Version 1 with the following syntax:

• _vaultkv1:SECRETNAME:SECRET-KEY

In the example above, the agent will attempt to fetch secrets from the kv mount path (version 1) with the secret name pgprod. The DBHOST is the key used to look up the secret.

When establishing a connection, the agent retrieves the value associated with DBHOST and uses it as the host parameter to connect to the PostgreSQL instance. The credentials remain available until the session ends.

For more details about this integration, please refer to our documentation.

Conclusion

Integrating Vault with Hoop enhances the security and manageability of your setup by centralizing the credentials for all your internal services.