Support Vault EE namespaces (!3320) · Merge requests · GitLab.org / gitlab-runner

Aleksander Zak requested to merge aleksanderzak/gitlab-runner:vault_namespaces into main Feb 14, 2022

Currently the vault integration does not support Vault EE namespaces. Only the vault server URL, role name and auth path can be configured with the variables. It is possible to just prefix the engine's path with the namespace, but it is not possible to specify the namespace for the authentication.

This change makes the namespace configurable wiht the VAULT_NAMESPACE variable (similar to how VAULT_SERVER_URL, VAULT_AUTH_ROLE and VAULT_AUTH_PATH are being used already). API operations performed under a namespace are done by providing the namespace name in X-Vault-Namespace header.

related MR: gitlab!80590 (merged)

ref gitlab#255619 ref https://gitlab.com/ubs-group1/ubs/ubs-global/-/issues/92

Edited Feb 14, 2022 by Aleksander Zak

Support Vault EE namespaces

Merge request reports