Skip to content

Latest commit

 

History

History
42 lines (32 loc) · 1.88 KB

README.md

File metadata and controls

42 lines (32 loc) · 1.88 KB
HashiCorp Vault integration for WordPress
Access Vault secrets, utilising WordPress APIs for maximum scalability.
A Human Made library.

HashiCorp Vault integration for WordPress is a library which provides access to Vault secrets in a scaleable manner.

It wraps the CSharpRU/vault-php library, and uses WordPress' transients API to provide familiar and necessary caching for WordPress developers. The library offers automatic re-fetching of secrets prior to lease expiry.

Current limitations:

  • Only token-based authentication is supported.
  • Tokens with a renewable lease are not renewed using Vault's API. Instead, this library will refetch the token prior to expiry.

Installation

This library is distributed as a WordPress plugin. Install with Composer, and activate the plugin in the usual way.

Usage

In wp-config.php, define your Vault token:

define( 'HM_HASHICORP_VAULT_AUTH_TOKEN', 'your-token-123' );

define( 'HM_HASHICORP_VAULT_URL', 'https://example.com/your-vault/' );

Load the plugin in WordPress by requiring hashicorp-vault/plugin.php.

License

This project is made availabile with the MIT license.

Credits

Created by Human Made for enterprise-scale digital experiences. Written by Paul Gibbs. Thanks to all contributors.