Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum
Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Vault
  3. Vault - OIDC Support

Vault - OIDC Support

Scheduled Pinned Locked Moved Vault
5 Posts 3 Posters 557 Views 3 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • girishG Offline
    girishG Offline
    girish
    Staff
    wrote on last edited by
    #1

    Vault has no way to automatically migrate from LDAP to OIDC. So, we have now published a new package that has OIDC support.

    Usually, we would not deprecate the old package since there is no easy way to migrate but in this case it seems we don't have much users of this app . There are hardly any support requests or threads on the forum. Admittedly, this seems like some ultra niche app for enterprises or people who are all in to the Hashicorp ecosystem.

    1 Reply Last reply
    0
    • girishG Offline
      girishG Offline
      girish
      Staff
      wrote on last edited by
      #2

      Also, because of the recent licensing changes in all of Hashicorp's products, Vault has been forked as OpenBao.

      https://github.com/openbao/openbao/tree/development

      1 Reply Last reply
      0
      • C Offline
        C Offline
        crazybrad
        wrote last edited by
        #3

        @girish I know this thread is stale, but I was wondering if the lack on interest in Vault is due to complexity of Vault and Hashicorp's licensing change.

        Recently, I have been investigating other secrets management platforms and perhaps Infisical is better suited to our community. Infisical Packaging would require PostgreSQL, Redis, Email, and Auth, all of which is natively supported in Cloudron. Thoughts?

        1 Reply Last reply
        0
        • J Offline
          J Offline
          joseph
          Staff
          wrote last edited by
          #4

          My 2c . Vault falls into this "enterprise secrets management" space . It's used (if at all) by large companies who have an army of sysadmins of their own. This is probably why we don't hear much usage in Cloudron context.

          1 Reply Last reply
          0
          • C Offline
            C Offline
            crazybrad
            wrote last edited by
            #5

            @joseph I agree. I looked at some of the implementation requirements and it takes effort. With each Cloudron app update and server reboot, it requires a process to "turn on" the server. That involves presenting several keys to unlock the server. For large companies with dev ops resources, this is doable. But for smaller companies, it is too much effort with a huge risk of bringing down applications if you miss a secrets server reboot.

            1 Reply Last reply
            0
            Reply
            • Reply as topic
            Log in to reply
            • Oldest to Newest
            • Newest to Oldest
            • Most Votes

            • Login
            • Don't have an account? Register
            • Login or register to search.
            • First post
              Last post
            0
            • Categories
            • Recent
            • Tags
            • Popular
            • Bookmarks
            • Search