baokey
This module makes it possible for your Drupal website and OpenBao/hashicorp Vault to integrate seamlessly.
It enables safe access to and use of encryption keys kept in Vault by Drupal.
You can manage confidential keys from the Vault Server central vault and utilize them for encryption, authentication, and other security-critical tasks on your Drupal website by utilizing the Key module.
The module supports only "KV secrets engine"
Requirements
- Drupal 9 or 10
- [Key module](https://www.drupal.org/project/key)
- Access to an OpenBAO / Hashicorp Vault server
- token form Vault Server
Installation
1. Download and install the BaoKey module like any other Drupal module.
2. Enable the module via Drupal's admin interface or using Drush:
drush en baokey
Configuration
The BaoKey module requires configuration in your `settings.php` file (or `settings.local.php` for local development):
$settings['vault_url'] = 'https://your-vault-url.com';
$settings['vault_token'] = 'your-vault-token';
2. Create a new key using the Key module's interface (`admin/config/system/keys/add`):
- Fill in the label with the name of the key to retrieve the secret of the Vault.
- chose the Key type
- Select "Vault" as the key provider.
- Enter the Vault secret path where the key should be retrieved.
- Fill in other required fields as needed.