当前正在探索hashicorp保险库。我是新来的。我已将Vault配置为将存储后端用作etcd群集(独立的,不是HA)。以下是我的vault.hcl
listener "tcp" {
address = "0.0.0.0:8200"
tls_disable = 1
}
storage "etcd" {
address = "http://127.0.0.1:2379"
etcd_api = "v2"
path = "vault/"
}
ui = true
log_level = "trace"
path "sys/mounts" {
capabilities = ["read"]
}
现在,当我点击etcdctl以获取键/值时,我得到了:
{"action":"get","node":{"key":"/vault/logical/827de402-91d8-37da-b8db-790704a32bc4/bmoNnNk0KgPskN8PO7MVupNc/.vault","value":"AAAAAQLyJYRWROrviT+nQL0T3dJniIB8ui52KTcjCQchelkolIbdwUc2Gmvq8Wpu","modifiedIndex":536,"createdIndex":536}}
这是正确的。对?值在etcd中加密->第一个问题
第二个问题->当我在保管库UI(http://localhost:8200)上浏览并浏览到该秘密路径时,它显示了解密后的值。这是正确的吗?