infra/ansible/roles/vault_server/templates/vault.hcl.j2

ui = true
listener "tcp" {
  address       = "0.0.0.0:8200"
  tls_cert_file = "/etc/vault.d/certs/vault.pem"
  tls_key_file  = "/etc/vault.d/certs/vault.key"
}
storage "consul" {
  address   = "localhost:8500"
  path      = "vault/"
  token     = "{{ lookup('hashi_vault', 'secret=kv/data/vault:data')['consul-acl'] }}"
}
Add vault server, add some generic consul acls and vault policies 2020-08-27 19:26:40 +00:00			`ui = true`
			`listener "tcp" {`
			`address = "0.0.0.0:8200"`
Add ssl to vault 2020-10-13 01:59:24 +00:00			`tls_cert_file = "/etc/vault.d/certs/vault.pem"`
			`tls_key_file = "/etc/vault.d/certs/vault.key"`
Add vault server, add some generic consul acls and vault policies 2020-08-27 19:26:40 +00:00			`}`
			`storage "consul" {`
			`address = "localhost:8500"`
			`path = "vault/"`
			`token = "{{ lookup('hashi_vault', 'secret=kv/data/vault:data')['consul-acl'] }}"`
			`}`