Package org.forgerock.secrets.vault
package org.forgerock.secrets.vault
Secrets backend that reads secrets from a remote Hashicorp Vault server.
-
ClassDescriptionAuthenticates to Vault using the AppRole authentication backend to obtain a token that can be used for further operations.A secret store that authenticates to Vault using a JWT.Cipher implementation for the Hashicorp Vault transit backend.Encapsulates the common configuration required for Hashicorp Vault secret backends.Builder object for Vault configuration settings.A secret store that can fetch fresh database credentials from the Vault Database secret engine.A secret store that fetches secrets from a Hashicorp Vault server, using version 2 of the key-value backend.Standard implementations of
VaultKeyValueSecretStore.SecretFieldDecoderfor common fields.Determines how a field in the Vault JSON response should be decoded into one or more fields on aSecretBuilderobject.Provides HMAC support using the Hashicorp Vault transit backend.HMAC-SHA-224.HMAC-SHA-256.HMAC-SHA-384.HMAC-SHA-512.A secret store that is able to retrieve PKI certificates and private keys from the Hashicorp Vault PKI backend.Provides signature support using the Hashicorp Vault transit backend.ECDSA with SHA-256.ECDSA with SHA-384.ECDSA with SHA-512.Ed25519.Generic RSA with PSS padding.RSA with SHA-256 and PKCS#1 v1.5 padding.RSA with SHA-384 and PKCS#1 v1.5 padding.RSA with SHA-512 and PKCS#1 v1.5 padding.RSA with SHA-256 and PSS padding.RSA with SHA-384 and PSS padding.RSA with SHA-512 and PSS padding.Cryptographic provider that delegates cryptographic operations to the Hashicorp Vault transit backend.Implements a store for cryptographic keys based on Vault's transit engine, which implements cryptography as a service.