Vault
helm repo add hashicorp https://helm.releases.hashicorp.com
helm repo update
- Plane
- Helm
plane up datalayer-vault
cat << 'EOF' > /tmp/values.yaml
injector:
nodeSelector:
role.datalayer.io/system: "true"
server:
nodeSelector:
role.datalayer.io/system: "true"
csi:
nodeSelector:
role.datalayer.io/system: "true"
EOF
export RELEASE=datalayer-openfga
export NAMESPACE=datalayer-openfga
helm upgrade \
--install $RELEASE \
openfga/openfga \
--create-namespace \
--values /tmp/values.yaml \
--namespace $NAMESPACE \
--timeout 5m
Check the Vault deployment.
kubectl get all -n datalayer-vault
Connect to the Vault User Interface on http://localhost:8200.
- Plane
- Bash
# open http://localhost:8200
plane pf-vault
# open http://localhost:8200
kubectl port-forward datalayer-vault-0 8200:8200 -n datalayer-vault
Connect to the vault pod and run the following command to activate the keyvalue v2.
export VAULT_TOKEN=...
vault secrets enable -version=2 -path kv kv
# Success! Enabled the kv secrets engine at: kv/