Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
Brand Logo

Cloudron Forum
  1. Cloudron Forum
  2. Vault

Vault

4 Topics 107 Posts
  • girishG

    Vault - Package Updates

    Pinned
    89
    0 Votes
    89 Posts
    27k Views
    Package UpdatesP
    [1.81.3] Update vault to 1.20.3 Full Changelog core: Bump Go version to 1.24.6. (ce56e14e) http: Add JSON configurable limits to HTTP handling for JSON payloads: max_json_depth, max_json_string_value_length, max_json_object_entry_count, max_json_array_element_count. [GH-31069] sdk: Upgrade to go-secure-stdlib/plugincontainer@v0.4.2, which also bumps github.com/docker/docker to v28.3.3+incompatible (8f172169) secrets/openldap (enterprise): update plugin to v0.16.1 auth/ldap: add explicit logging to rotations in ldap [GH-31401] core (enterprise): improve rotation manager logging to include specific lines for rotation success and failure secrets/database: log password rotation success (info) and failure (error). Some relevant log lines have been updated to include "path" fields. [GH-31402] secrets/transit: add logging on both success and failure of key rotation [GH-31420] ui: Use the Helios Design System Code Block component for all readonly code editors and use its Code Editor component for all other code editors [GH-30188] core (enterprise): fix a bug where issuing a token in a namespace used root auth configuration instead of namespace auth configuration
  • girishG

    Vault - OIDC Support

    5
    0 Votes
    5 Posts
    730 Views
    C
    @joseph I agree. I looked at some of the implementation requirements and it takes effort. With each Cloudron app update and server reboot, it requires a process to "turn on" the server. That involves presenting several keys to unlock the server. For large companies with dev ops resources, this is doable. But for smaller companies, it is too much effort with a huge risk of bringing down applications if you miss a secrets server reboot.
  • scookeS

    Vaultwarden vs Vault

    8
    1 Votes
    8 Posts
    5k Views
    marcusquinnM
    @scooke Think of Vault as kinda like Bitwarden but for code to lookup with. Unless you're coding access to things, I don't think you'd need it.
  • M

    Vault process running out of memory--plenty of memory available.

    Moved oom
    5
    0 Votes
    5 Posts
    2k Views
    girishG
    @mastadamus I will bump up the memory limit for vault. https://learn.hashicorp.com/tutorials/vault/reference-architecture says 4-8GB is recommended. Currently, the cloudron package runs at 256MB! Also, as you guessed, it's only the vault container that is dying and the server is not affected (I guess that's one of the main benefits of running in containers, a single app cannot bring down a system).