ansible-collections/hcp-ansible
ansible-collections/hcp-ansible
4
0
Fork 0
Code Issues 3 Pull Requests 1 Actions Packages Projects 1 Releases Wiki Activity

feat/rolling-vault-unseal #20

Merged
lanson merged 2 commits from feat/rolling-vault-unseal into main 2024-09-02 20:29:55 +00:00
Conversation 0 Commits 2 Files Changed 10 +104 -67
lanson commented 2024-09-02 20:28:39 +00:00
Owner
Copy Link

This release allows for full rolling restart of vault.

Before, there would be a small time where vault was fully sealed in case of a rolling-restart (due to the fact that the unseal operation happened outside of the role)
The unseal operation has been optionnally added inline with a restart, if keys are provided for the unseal operation.

This is now the default behavior of hashistack-ansible, which will provide the keys after the initial deployments to the vault role, in order to allow fully HA rolling-restarts.

This release allows for full rolling restart of vault. Before, there would be a small time where vault was fully sealed in case of a rolling-restart (due to the fact that the unseal operation happened outside of the role) The unseal operation has been optionnally added inline with a restart, if keys are provided for the unseal operation. This is now the default behavior of hashistack-ansible, which will provide the keys after the initial deployments to the vault role, in order to allow fully HA rolling-restarts.
lanson added 2 commits 2024-09-02 20:28:39 +00:00
feat(vault): enable rolling restart with no full seal
All checks were successful
development / Check commit compliance (push) Successful in 25s
Details
pull-requests-open / Check commit compliance (pull_request) Successful in 32s
Details
66a4f6b5da
lanson merged commit 519858db1d into main 2024-09-02 20:29:55 +00:00
lanson deleted branch feat/rolling-vault-unseal 2024-09-02 20:29:55 +00:00
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
bug

Something is not working

  
consul

This issue is about consul

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
invalid

Something is wrong

  
nomad

This issue is about nomad

  
question

More information is needed

  
vault

This issue is about vault

  
wontfix

This won't be fixed

No Label
bug
consul
duplicate
enhancement
help wanted
invalid
nomad
question
vault
wontfix
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: ansible-collections/hcp-ansible#20
No description provided.
Delete Branch "feat/rolling-vault-unseal"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?