You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As a System Administrator, I want hashicorp vault to initialize itself after cluster bootstrap and i want it to be unsealed after a vault pod crashes because I don't want to have to manually intervene when it happens.
Acceptance Criteria:
Do not leverage kms unseal options that are cloud-specific as this creates cloud-specific lock-in (something we want to avoid)
Have an app that unseals the vault and stores the unseal keys into the tenant S3 bucket
Have the same app, or another service that leverages the unseal keys from the tenant s3 bucket to unseal the vault store after any vault pods crash.
Add back to this repo as an ArgoCD application
The text was updated successfully, but these errors were encountered:
As a System Administrator, I want hashicorp vault to initialize itself after cluster bootstrap and i want it to be unsealed after a vault pod crashes because I don't want to have to manually intervene when it happens.
Acceptance Criteria:
The text was updated successfully, but these errors were encountered: