简体   繁体   中英

Spring Cloud config server security

I implemented Spring Cloud config server. How can I prevent the config server bootstrap.yml file from storing the GIT user name and password as clear text?

Vault: https://github.com/hashicorp/vault

Use Vault: https://cloud.spring.io/spring-cloud-config/reference/html/#_vault

Set up Spring Vault:

https://docs.spring.io/spring-vault/docs/2.2.2.RELEASE/reference/html/

https://spring.io/projects/spring-vault

In your Spring Cloud config server, file bootstrap.yml

spring:
  cloud:
    config:
      token: YourVaultToken

ok So this is working fine for me, the issue was my config server's bootstrap.yml need to connect to GIT repository as backend and GIT repo is secured with username and password but I can not pass the username and password in bootstrap.yml file.

To solve this:

Pass the credential as environmental variable and store these environment variable in terraform or any other secure location.

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM