Feature Request: Make OpenBao a default Secrets backend #284

New issue

Open

opened 2024-07-09 20:50:28 +00:00 by jessebot · 2 comments

jessebot commented 2024-07-09 20:50:28 +00:00 (Migrated from github.com)

Copy link

Describe the feature you'd like, and why

I want to offer official support of OpenBao as the primary secrets backend, instead of using Bitwarden. I still want to have Bitwarden as an option, because it's useful for smaller home labs, but OpenBao would give us the power to more comfortably separate sensitive infra data from a personal password manager.

Describe alternatives you've considered, if any

We want will also support Vault, but it would be a secondary less supported option, because Vault, along with Hashicorp is now owned by IBM, and we remember what happened with centos.

Additional context

• We'll need to make sure the Argo CD app, small-hack/argocd-apps:demo/openbao works and graduate it out of demo.

• We need to test the new external secrets provider with each major app that uses bitwarden right now:

  • matrix
  • nextcloud
  • home assistant
  • zitadel
  • vouch

## Describe the feature you'd like, and why I want to offer official support of OpenBao as the primary secrets backend, instead of using Bitwarden. I still want to have Bitwarden as an option, because it's useful for smaller home labs, but OpenBao would give us the power to more comfortably separate sensitive infra data from a personal password manager. ### Describe alternatives you've considered, if any We want will also support Vault, but it would be a secondary less supported option, because Vault, along with Hashicorp is now owned by IBM, and we remember what happened with centos. ### Additional context - [ ] We'll need to make sure the Argo CD app, [small-hack/argocd-apps:demo/openbao](https://github.com/small-hack/argocd-apps/tree/main/demo/openbao) works and graduate it out of demo. - [ ] We need to test the new external secrets provider with each major app that uses bitwarden right now: - [ ] matrix - [ ] nextcloud - [ ] home assistant - [ ] zitadel - [ ] vouch

jessebot commented 2024-07-15 08:45:23 +00:00 (Migrated from github.com)

Copy link

We've add OpenBao as a default demo app here: https://github.com/small-hack/smol-k8s-lab/pull/286

We've add OpenBao as a default demo app here: https://github.com/small-hack/smol-k8s-lab/pull/286

jessebot commented 2024-07-17 17:48:26 +00:00 (Migrated from github.com)

Copy link

#290 helps a bit with our goals here as it makes Bitwarden optional for our ArgoCD object :)

#290 helps a bit with our goals here as it makes Bitwarden optional for our ArgoCD object :)

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

go-rewrite

grafana-fixes

gh-pages

cloudymax-patch-1

add-unified-installer

feature/add-pixelfed-app

renovate/textual-1.x

renovate/python-3.x

support-open-bao

update-ingress-nginx

nginx-metrics

v7.0.0b2

v7.0.0b1

v7.0.0a

v6.4.8

v6.4.7

v6.4.6

v6.4.5

v6.4.4

v6.4.3

v6.4.2

v6.4.1

v6.4.0

v6.3.1

v6.3.0

v6.2.0

v6.1.0

v6.0.0

v5.20.4

5.20.3

v5.20.3

v5.20.2

v5.20.1

v5.20.0

v5.19.2

v5.19.1

v5.19.0

v5.18.0

v5.17.4

v5.17.3

v5.17.2

v5.17.1

v5.17.0

v5.16.0

v5.15.0

v5.14.1

v5.14.0

v5.13.3

v5.13.2

v5.13.1

v5.13.0

before-hookshot-removal

v5.12.0

v5.11.0

v5.10.0

v5.9.2

v5.9.1

v5.9.0

v5.8.4

v5.8.3

v5.8.2

v5.8.1

v5.8.0

v5.7.0

v5.6.2

v5.6.1

v5.6.0

v5.5.1

v5.5.0

v5.4.3

v5.4.2

v5.4.1

v5.4.0

v5.3.2

v5.3.1

v5.3.0

v5.2.6

v5.2.5

v5.2.4

v5.2.3

v5.2.2

v5.2.1

v5.2.0

v5.1.0

v5.0.4

v5.0.3

v5.0.2

v5.0.1

v5.0.0

v4.0.2

v4.0.1

v4.0.0

v3.7.1

v3.7.0

v3.6.4

v3.6.3

v3.6.2

v3.6.1

v3.6.0

v3.5.1

v3.5.0

v3.4.0

v3.3.0

v3.2.2

v3.2.1

v3.2.0

v3.1.0

v3.0.7

v3.0.6

v3.0.5

v3.0.4

v3.0.3

v3.0.2

v3.0.1

v3.0.0

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.0

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v2.0.0b8

v2.0.0b7

v2.0.0b6

v2.0.0b4

v2.0.0b3

v2.0.0b2

v2.0.0b1

v2.0.0a4

v2.0.0a3

v2.0.0a2

v2.0.0a1

v2.0.0a

v1.0.1

v1.0.0

v0.11.2

v0.11.1

v0.11.0

v0.10.14

v0.10.13

v0.10.12

v0.10.11

v0.10.10

v0.10.9

v0.10.8

v0.10.7

v0.10.6

v0.10.5

v0.10.4

v0.10.3

v0.10.2

v0.10.0

v0.9.3

v0.9.2

v0.9.1

v0.9.0

v0.8.16

v0.8.15

v0.8.14

v0.8.13

v0.8.12

v0.8.11

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.7.3

v0.8.1

v0.8.0

v0.7.2

v0.7.1

stable

v0.7.0

v0.6.0

v0.5.0

Labels

Clear labels   

🐛 bug

Something isn't working

  

DO THE THING >:(

very important thing

  

blocked

  

dependencies

Pull requests that update a dependency file

  

k3s

  

kind

  

openbao

  

question

Further information is requested

  

secrets

  

wontfix

This will not be worked on

  

✨ enhancement

New feature request

  

🌱good first issue

Good for newcomers

  

📓documentation

Improvements or additions to documentation

  

📕kyverno

everything to do with kyverno, a policy manager for kubernetes

  

🔐 Bitwarden

anything to do with bitwarden

  

🙋help wanted

Extra attention is needed

  

🦩 MinIO

things to do with object store via minio or minio itself

  

🧸 🧸 Duplicate

This issue or pull request already exists

  

🩹 Bug Fix

  

🪠 CICD

Anything to do with continuous integration/continuous deployment pipelines.

No labels

🐛 bug

DO THE THING >:(

blocked

dependencies

k3s

kind

openbao

question

secrets

wontfix

✨ enhancement

🌱good first issue

📓documentation

📕kyverno

🔐 Bitwarden

🙋help wanted

🦩 MinIO

🧸 🧸 Duplicate

🩹 Bug Fix

🪠 CICD

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

small-hack/smol-k8s-lab#284

No description provided.