Skip to content

@openbao Secrets Engine plugin for creating a Slack Nebula CA and node certificates.

License

Notifications You must be signed in to change notification settings

mkrauser/openbao-plugin-secrets-nebula

 
 

Repository files navigation

openbao-plugin-secrets-nebula[WIP]

Openbao Secrets Engine plugin for creating a Slack Nebula CA and node certificates. This is a work in progress.

How to use

# enable nebula plugin
bao secrets enable -path=nebula -plugin-name=bao-plugin-secrets-nebula plugin

# generate ca
bao write nebula/generate/ca name="ca-name" duration="8760h" ips="10.0.0.0/20"

# or import existing ca
# the file bundle.pem contains the private key followed by the ca-certificate
bao write nebula/config/ca [email protected]

# get the ca from vault
bao read nebula/config/ca

# generate a host certificate
bao write nebula/sign/example.com \
    ip="10.0.0.1/32" \
    duration="100d"

# read a certificate
bao read nebula/cert/<fingerprint>

# list certificates
bao list nebula/certs

About

@openbao Secrets Engine plugin for creating a Slack Nebula CA and node certificates.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Go 97.5%
  • Makefile 2.5%