New to KubeVault? Please start here.

Azure

In Azure storage backend, Vault data will be stored in Azure Storage Container. Vault documentation for azure storage can be found in here.

apiVersion: kubevault.com/v1alpha1
kind: VaultServer
metadata:
  name: vault-with-azure
  namespace: demo
spec:
  replicas: 1
  version: "1.2.0"
  backend:
    azure:
      accountName: "vault-ac"
      accountKeySecret: "azure-cred"
      container: "my-vault-storage"

spec.backend.azure

To use Azure as backend storage in Vault specify spec.backend.azure in VaultServer CRD.

spec:
  backend:
    azure:
      accountName: <storage_account_name>
      accountKeySecret: <storage_account_key_secret_name>
      container: <container_name>
      maxParallel: <max_parallel>

Here, we are going to describe the various attributes of the spec.backend.azure field.

azure.accountName

azure.accountName is a required field that specifies the Azure Storage account name.

spec:
  backend:
    azure:
      accountName: "my-vault-storage"

azure.accountKeySecret

azure.accountKeySecret is a required field that specifies the name of the secret containing Azure Storage account key. The secret contains the following key:

  • account_key
spec:
  backend:
    azure:
      accountKeySecret: "azure-storage-key"

azure.container

azure.container is a required field that specifies the Azure Storage Blob container name.

spec:
  backend:
    azure:
      container: "my-vault-storage"

azure.maxParallel

maxParallel is an optional field that specifies the maximum number of parallel operations to take place. This field accepts integer value. If this field is not specified, then Vault will set value to 128.

spec:
  backend:
    azure:
      maxParallel: 124