This project contains the source code for a Hashicorp Vault plugin that provides on-demand short-lived kubernetes client certificates or service account tokens. It was started as a fork from servian/vault-k8s-secret-engine and has since evolved into a fully fledged Vault backend engine with dynamic roles and root credentials rotation. Usage demonstration can be found on the integration-test.sh script
This program is free software: you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details: lgpl-3.0.