Source code used in demo's for DotnetFlix episode 88 & episode 89. In these episodes I showcase how HashiCorp Vault can be implemented in your .NET applications to manage all kind of secrets.
Multiple topics's are being discussed:
- Dynamic credentials for RabbitMQ using the RabbitMQ Secrets Engine
- Authentication for application users with Userpass Auth Method
- Integrate 2FA with the TOTP Secrets Engine
- Short-lived TLS-certificates with the PKI Secrets Engine
- Application authentication & bootstrapping using the AppRole Auth Method & Response Wrapping
Commands, configuration & docker-compose files used in the demo can be found in ./00-Setup folder.
Variables can be found in ./01-ApplicationHost/Properties/launchSettings.json
Command line arguments
--Tls- configures dynamic TLS endpoint, leave out to run without TLS
Environment variables
VaultSettings__BootstrapToken- used for application bootstrapping. May leave empty.VaultSettings__TotpEnabled-true/falseto enable/disable 2FA functionsVaultSettings__AppRoleId- App role of the applicationVaultSettings__AppRoleSecret- fill when not using application bootstrapping