Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Secrets management with Vault
Search
Boris Quiroz
December 20, 2017
Technology
0
60
Secrets management with Vault
https://www.meetup.com/Santiago-HashiCorp-User-Group/events/245738064/
Boris Quiroz
December 20, 2017
Tweet
Share
More Decks by Boris Quiroz
See All by Boris Quiroz
Docker Images Best Practices
boris
0
57
Software Freedom Day 2015
boris
0
46
Code Driven Infrastructure
boris
0
70
hola mundo
boris
0
66
DevOps Tools: Chef + Vagrant
boris
0
230
Kitchen.CI
boris
0
120
Introducción a HSTS
boris
0
55
Hands-on Lab
boris
0
80
Tech, Method & Philosophy for the cloud
boris
0
55
Other Decks in Technology
See All in Technology
Introduction to Sansan Meishi Maker Development Engineer
sansan33
PRO
0
330
Authlete で実装する MCP OAuth 認可サーバー #CIMD の実装を添えて
watahani
0
420
#22 CA × atmaCup 3rd 1st Place Solution
yumizu
1
130
国井さんにPurview の話を聞く会
sophiakunii
1
330
Introduction to Bill One Development Engineer
sansan33
PRO
0
340
投資戦略を量産せよ 2 - マケデコセミナー(2025/12/26)
gamella
1
610
業務の煩悩を祓うAI活用術108選 / AI 108 Usages
smartbank
9
19k
AWS re:Invent2025最新動向まとめ(NRIグループre:Cap 2025)
gamogamo
0
150
Digitization部 紹介資料
sansan33
PRO
1
6.4k
BidiAgent と Nova 2 Sonic から考える音声 AI について
yama3133
2
150
Eight Engineering Unit 紹介資料
sansan33
PRO
0
6.1k
Oracle Cloud Infrastructure:2025年12月度サービス・アップデート
oracle4engineer
PRO
0
200
Featured
See All Featured
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
26
3.3k
Design in an AI World
tapps
0
110
Reflections from 52 weeks, 52 projects
jeffersonlam
355
21k
Groundhog Day: Seeking Process in Gaming for Health
codingconduct
0
72
Side Projects
sachag
455
43k
We Analyzed 250 Million AI Search Results: Here's What I Found
joshbly
0
400
The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs
inesmontani
PRO
3
2.8k
Done Done
chrislema
186
16k
svc-hook: hooking system calls on ARM64 by binary rewriting
retrage
1
47
First, design no harm
axbom
PRO
1
1.1k
Winning Ecommerce Organic Search in an AI Era - #searchnstuff2025
aleyda
0
1.8k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
31
2.6k
Transcript
Vault Boris Quiroz Q. -
[email protected]
- github.com/boris
¿Qué es Vault?
Una herramienta para acceder a secretos de forma segura.
• Almacenamiento seguro • Secretos dinámicos • Encriptación de data
• Leasing and Renewal • Revocación
Conceptos
• Seal/Unseal • Tokens • Policy • Secret Backend
Políticas
Proporcionan una manera declarativa de delegar acceso a ciertas rutas
y operaciones en Vault.
path “secret/*” { capabilities = [ “write”, “list” ] }
path “secret/very-secret/*” { capabilities = [ “deny” ] }
path “secret/not-secret/*” { capabilities = [ “create”, “delete”, “list”, “read”,
“update” ] }
AWS
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "iam:*",
"Resource": "*" } ] }
Demo https://git.io/scl-vault-meetup
boris
sansan33
watahani
yumizu
sophiakunii
gamella
smartbank
gamogamo
yama3133
oracle4engineer
eileencodes
tapps
jeffersonlam
codingconduct
sachag
joshbly
inesmontani
chrislema
retrage
axbom
aleyda
marktimemedia
![Vault Boris Quiroz Q. - [email protected] - github.com/boris](https://files.speakerdeck.com/presentations/afe2515e1331422ba35f6a945cc8f615/slide_0.jpg){kind=link}
![path “secret/*” { capabilities = [ “write”, “list” ] }](https://files.speakerdeck.com/presentations/afe2515e1331422ba35f6a945cc8f615/slide_8.jpg){kind=link}
![path “secret/very-secret/*” { capabilities = [ “deny” ] }](https://files.speakerdeck.com/presentations/afe2515e1331422ba35f6a945cc8f615/slide_9.jpg){kind=link}
