vault helm

No introduction found. Create it?

Install

Install with:

helm repo add hashicorp-charts https://helm.releases.hashicorp.com/
helm install vault hashicorp-charts/vault -f values.yaml

Examples

See examples from other people.

Top Repositories (4 out of 10)

NameRepoStarsVersionTimestamp
vaulttyriis/home-ops390.29.12 hours ago
vaulth3mmy/bloopySphere620.28.14 months ago
vaulttyriis/home-ops390.23.08 months ago
vaultcoolguy1771/home-ops670.27.0a year ago

Values

See the most popular values for this chart:

KeyTypes
server.dataStorage.storageClass (8)
ceph-block
string
server.dataStorage.enabled (7)
true
boolean
server.dataStorage.mountPath (3)
/vault/data
string
server.dataStorage.size (3)
string
server.ingress.enabled (8)
true
boolean
server.ingress.hosts[].host (8)
string
server.ingress.hosts[].paths[] (3)
string
server.ingress.ingressClassName (8)
string
server.ingress.tls[].hosts[] (7)
string
server.ingress.tls[].secretName (6)
vault-tls
string
server.ingress.annotations."cert-manager.io/cluster-issuer" (4)
letsencrypt-production
string
server.ingress.annotations."hajimari.io/enable" (2)
string
server.ingress.annotations."hajimari.io/icon" (2)
string
server.ingress.annotations."traefik.ingress.kubernetes.io/router.entrypoints" (2)
string
server.ingress.annotations."cert-manager.io/common-name" (1)
string
server.ingress.annotations."kubernetes.io/tls-acme" (1)
string
server.ingress.annotations."nginx.ingress.kubernetes.io/backend-protocol" (1)
string
server.ingress.annotations."nginx.ingress.kubernetes.io/force-ssl-redirect" (1)
string
server.ingress.annotations."nginx.ingress.kubernetes.io/ssl-redirect" (1)
string
server.ingress.annotations."traefik.ingress.kubernetes.io/router.middlewares" (1)
string
server.ingress.activeService (3)
true
boolean
server.ingress.pathType (3)
Prefix
string
server.ingress.standalone.config (1)
string
server.ingress.standalone.enabled (1)
boolean
server.ha.enabled (7)
true
boolean
server.ha.raft.enabled (7)
true
boolean
server.ha.raft.config (6)
string
server.ha.raft.setNodeId (6)
true
boolean
server.ha.replicas (7)
3
number
server.ha.config (1)
string
server.resources.requests.cpu (6)
250m
string
server.resources.requests.memory (6)
256Mi
string
server.resources.limits.memory (5)
256Mi
string
server.resources.limits.cpu (1)
string
server.standalone.enabled (6)
false
boolean
server.standalone.config (2)
string
server.extraVolumes[].name (5)
kms-vault-unseal
string
server.extraVolumes[].type (5)
secret
string
server.extraVolumes[].path (4)
/vault/userconfig
string
server.logFormat (5)
json
string
server.auditStorage.enabled (4)
true
boolean
server.auditStorage.storageClass (4)
string
server.auditStorage.mountPath (3)
/vault/audit
string
server.auditStorage.size (3)
10Gi
string
server.extraEnvironmentVars.GOOGLE_APPLICATION_CREDENTIALS (4)
/vault/userconfig/kms-vault-unseal/serviceaccount.json
string
server.extraEnvironmentVars.TZ (4)
string
server.extraEnvironmentVars.VAULT_CACERT (1)
string
server.extraEnvironmentVars.VAULT_CLUSTER_ADDR (1)
string
server.extraEnvironmentVars.VAULT_TOKEN (1)
string
server.readinessProbe.enabled (4)
true
boolean
server.readinessProbe.path (4)
/v1/sys/health?standbyok=true&sealedcode=204&uninitcode=204
string
server.updateStrategyType (4)
string
server.extraLabels."configmap.reloader.stakater.com/reload" (3)
vault-config
string
server.extraLabels."reloader.stakater.com/auto" (1)
string
server.logLevel (3)
info
string
server.enabled (2)
boolean
server.extraSecretEnvironmentVars[].envName (2)
string
server.extraSecretEnvironmentVars[].secretKey (2)
string
server.extraSecretEnvironmentVars[].secretName (2)
string
server.image.repository (2)
string
server.image.tag (1)
string
server.livenessProbe.enabled (2)
boolean
server.livenessProbe.initialDelaySeconds (2)
number
server.livenessProbe.path (2)
string
server.livenessProbe.port (1)
number
server.annotations."backup.velero.io/backup-volumes" (1)
string
server.authDelegator.enabled (1)
boolean
server.extraArgs (1)
string
server.extraInitContainers[].args[] (1)
string
server.extraInitContainers[].command[] (1)
string
server.extraInitContainers[].image (1)
string
server.extraInitContainers[].name (1)
string
server.extraInitContainers[].volumeMounts[].mountPath (1)
string
server.extraInitContainers[].volumeMounts[].name (1)
string
server.networkPolicy.enabled (1)
boolean
server.service.active.enabled (1)
boolean
server.service.enabled (1)
boolean
server.service.instanceSelector.enabled (1)
boolean
server.service.port (1)
number
server.service.standby.enabled (1)
boolean
server.service.targetPort (1)
number
server.service.type (1)
string
server.statefulSet.securityContext.container.allowPrivilegeEscalation (1)
boolean
server.statefulSet.securityContext.container.capabilities.drop[] (1)
string
server.statefulSet.securityContext.container.readOnlyRootFilesystem (1)
boolean
server.statefulSet.securityContext.pod.fsGroup (1)
number
server.statefulSet.securityContext.pod.fsGroupChangePolicy (1)
string
server.statefulSet.securityContext.pod.runAsGroup (1)
number
server.statefulSet.securityContext.pod.runAsNonRoot (1)
boolean
server.statefulSet.securityContext.pod.runAsUser (1)
number
server.statefulSet.securityContext.pod.supplementalGroups[] (1)
number
server.tolerations (1)
string
server.volumeMounts[].mountPath (1)
string
server.volumeMounts[].name (1)
string
server.volumeMounts[].readOnly (1)
boolean
server.volumes[].name (1)
string
ui.enabled (8)
true
boolean
ui.serviceType (7)
ClusterIP
string
ui.activeVaultPodOnly (3)
true
boolean
ui.externalPort (3)
8200
number
ui.publishNotReadyAddresses (3)
true
boolean
ui.targetPort (3)
8200
number
global.enabled (4)
boolean
global.serverTelemetry.prometheusOperator (1)
boolean
global.tlsDisable (1)
boolean
metrics.enabled (3)
true
boolean
service.enabled (3)
true
boolean
csi.enabled (2)
boolean
csi.agent.enabled (1)
boolean
csi.agent.image.pullPolicy (1)
string
csi.agent.image.repository (1)
string
csi.agent.image.tag (1)
string
csi.agent.logFormat (1)
string
csi.agent.logLevel (1)
string
csi.image.pullPolicy (1)
string
csi.image.repository (1)
string
csi.image.tag (1)
string
injector.logFormat (2)
string
injector.metrics.enabled (2)
boolean
injector.enabled (1)
string
injector.failurePolicy (1)
string
injector.leaderElector.enabled (1)
boolean
injector.logLevel (1)
string
injector.replicas (1)
number
injector.resources.limits.cpu (1)
string
injector.resources.limits.memory (1)
string
injector.resources.requests.cpu (1)
string
injector.resources.requests.memory (1)
string
injector.revokeOnShutdown (1)
boolean
injector.webhook.failurePolicy (1)
string
injector.webhook.matchPolicy (1)
string
injector.webhook.timeoutSeconds (1)
number
ingress.annotations (1)
string
ingress.enabled (1)
boolean
ingress.hosts[].host (1)
string
ingress.hosts[].paths[] (1)
string
ingress.tls[].hosts[] (1)
string
ingress.tls[].secretName (1)
string
serverTelemetry.prometheusRules.enabled (1)
boolean
serverTelemetry.prometheusRules.rules[].alert (1)
string
serverTelemetry.prometheusRules.rules[].annotations.message (1)
string
serverTelemetry.prometheusRules.rules[].expr (1)
string
serverTelemetry.prometheusRules.rules[].for (1)
string
serverTelemetry.prometheusRules.rules[].labels.severity (1)
string
serverTelemetry.serviceMonitor.enabled (1)
boolean