A tool for signing raw messages using ED25519 keys stored in HashiCorp Vault. This enables remote key management and signing operations through HashiCorp's secret management service.
Warning: this is an experimental project under development.
- Create a Hashicorp account
- Create new organization
- Go to secrets app and create a new app.
- Create new static secret, the value must be a valid ed25519 secret key, you can generate a random key using https://cyphr.me/ed25519_tool/ed.html
Create .env file with following entries
HASHICORP_CLIENT_ID=L5...Xa
HASHICORP_CLIENT_SECRET=Q9...2P
HASHICORP_ORG_ID=1b345678-b123-a123-c123-1b345678 # in org settings
HASHICORP_PROJECT_ID=1b345678-b123-a123-c123-1b345678 # in project settings
HASHICORP_APP_NAME=your_app_namecargo run <key_name> <message_to_sign>Where key_name is the name of the secret key in the vault, and message_to_sign is any arbitrary string.