Skip to content

hashicorp/vault-plugin-secrets-mongodbatlas

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

281 Commits
.github
.github
 
 
cmd/vault-plugin-secrets-mongodbatlas
cmd/vault-plugin-secrets-mongodbatlas
 
 
scripts
scripts
 
 
website/source/docs/secrets/atlasmongodb
website/source/docs/secrets/atlasmongodb
 
 
.gitignore
.gitignore
 
 
.go-version
.go-version
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CODEOWNERS
CODEOWNERS
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
acceptance_test.go
acceptance_test.go
 
 
backend.go
backend.go
 
 
client.go
client.go
 
 
docker-test.sh
docker-test.sh
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
path_config.go
path_config.go
 
 
path_config_test.go
path_config_test.go
 
 
path_credentials.go
path_credentials.go
 
 
path_roles.go
path_roles.go
 
 
path_roles_list.go
path_roles_list.go
 
 
path_roles_test.go
path_roles_test.go
 
 
secret_programmatic_api_keys.go
secret_programmatic_api_keys.go
 
 
test_env.go
test_env.go
 
 
util.go
util.go
 
 

Repository files navigation

HashiCorp Vault MongoDB Atlas Secrets Engine

The MongoDB Atlas Secrets Engine is a plugin for HashiCorp Vault which generates unique, ephemeral Programmatic API keys for MongoDB Atlas.

The plugin is included in version 1.4 of Vault.

Support, Bugs and Feature Requests

Support for the HashiCorp Vault MongoDB Atlas Secrets Engine is provided under MongoDB Atlas support plans. Please submit support questions within the Atlas UI. Vault support is via HashiCorp.

Bugs should be filed under the Issues section of this repo.

Feature requests can be submitted in the Issues section or directly with MongoDB at https://feedback.mongodb.com/forums/924145-atlas - just select the Vault plugin as the category or vote for an already suggested feature.

Quick Links

Please note: Hashicorp takes Vault's security and their users' trust very seriously, as does MongoDB.

If you believe you have found a security issue in Vault or with this plugin, please responsibly disclose by contacting HashiCorp at security@hashicorp.com and contact MongoDB directly via security@mongodb.com or open a ticket (link is external).

Usage

This is a Vault plugin and is meant to work with Vault. This guide assumes you have already installed Vault and have a basic understanding of how Vault works. Otherwise, first read this guide on how to get started with Vault.

If you are just interested in using this plugin with Vault, it is packaged with Vault and by default can be enabled by running:

$ vault secrets enable mongodbatlas
Success! Enabled the mongodbatlas secrets engine at: mongodbatlas/

Developing

If you wish to work on this plugin, you'll first need Go installed on your machine (whichever version is required by Vault).

Make sure Go is properly installed, including setting up a GOPATH.

Build Plugin

make dev

Running tests

Unit tests

make test

Acceptance tests

make testacc

To run the acceptance tests, you need to set the following environment variables:

VAULT_ACC=1
ATLAS_PRIVATE_KEY=...
ATLAS_PUBLIC_KEY=...
ATLAS_PROJECT_ID=...
ATLAS_ORGANIZATION_ID=...

The programmatic API key provided must be an "Organization Owner", and must have your public IP address set as an allowed address. You can manage both of these through the Organization access manager view on the web UI. See https://www.mongodb.com/docs/atlas/configure-api-access for details.

About

No description, website, or topics provided.

Resources

Readme

License

MPL-2.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

5 stars

Watchers

28 watching

Forks

3 forks
Report repository

Releases 5

v0.14.0 Latest
Feb 12, 2025
+ 4 releases

Packages

No packages published

Contributors 26
+ 12 contributors

Languages