vault helm

No introduction found. Create it?

Install

Install with:

helm repo add hashicorp-charts https://helm.releases.hashicorp.com/
helm install vault hashicorp-charts/vault -f values.yaml

Examples

See examples from other people.

Top Repositories (5 out of 14)

NameRepoStarsVersionTimestamp
vaultqjoly/GitOps380.29.114 days ago
vaultqjoly/GitOps380.29.115 days ago
vaultqjoly/GitOps380.29.1a month ago
vaulttyriis/home-ops480.29.12 months ago
vaulth3mmy/bloopySphere620.28.16 months ago

Values

See the most popular values for this chart:

KeyTypes
ui.enabled (12)
true
boolean
ui.serviceType (10)
ClusterIP
string
ui.externalPort (6)
8200
number
ui.activeVaultPodOnly (3)
true
boolean
ui.publishNotReadyAddresses (3)
true
boolean
ui.targetPort (3)
8200
number
server.ha.enabled (10)
true
boolean
server.ha.raft.enabled (10)
true
boolean
server.ha.raft.config (6)
string
server.ha.raft.setNodeId (6)
true
boolean
server.ha.replicas (7)
3
number
server.ha.config (1)
string
server.dataStorage.storageClass (9)
ceph-block
string
server.dataStorage.enabled (8)
true
boolean
server.dataStorage.size (4)
string
server.dataStorage.mountPath (3)
/vault/data
string
server.ingress.enabled (9)
true
boolean
server.ingress.hosts[].host (8)
string
server.ingress.hosts[].paths[] (3)
string
server.ingress.ingressClassName (8)
string
server.ingress.tls[].hosts[] (8)
string
server.ingress.tls[].secretName (7)
vault-tls
string
server.ingress.annotations."cert-manager.io/cluster-issuer" (4)
letsencrypt-production
string
server.ingress.annotations."hajimari.io/enable" (2)
string
server.ingress.annotations."hajimari.io/icon" (2)
string
server.ingress.annotations."traefik.ingress.kubernetes.io/router.entrypoints" (2)
string
server.ingress.annotations."cert-manager.io/common-name" (1)
string
server.ingress.annotations."kubernetes.io/tls-acme" (1)
string
server.ingress.annotations."nginx.ingress.kubernetes.io/backend-protocol" (1)
string
server.ingress.annotations."nginx.ingress.kubernetes.io/force-ssl-redirect" (1)
string
server.ingress.annotations."nginx.ingress.kubernetes.io/ssl-redirect" (1)
string
server.ingress.annotations."traefik.ingress.kubernetes.io/router.middlewares" (1)
string
server.ingress.activeService (3)
true
boolean
server.ingress.pathType (3)
Prefix
string
server.ingress.standalone.config (1)
string
server.ingress.standalone.enabled (1)
boolean
server.resources.requests.cpu (6)
250m
string
server.resources.requests.memory (6)
256Mi
string
server.resources.limits.memory (5)
256Mi
string
server.resources.limits.cpu (1)
string
server.standalone.enabled (6)
false
boolean
server.standalone.config (2)
string
server.auditStorage.enabled (5)
true
boolean
server.auditStorage.storageClass (5)
string
server.auditStorage.size (4)
10Gi
string
server.auditStorage.mountPath (3)
/vault/audit
string
server.extraEnvironmentVars.TZ (5)
string
server.extraEnvironmentVars.GOOGLE_APPLICATION_CREDENTIALS (4)
/vault/userconfig/kms-vault-unseal/serviceaccount.json
string
server.extraEnvironmentVars.VAULT_CACERT (1)
string
server.extraEnvironmentVars.VAULT_CLUSTER_ADDR (1)
string
server.extraEnvironmentVars.VAULT_TOKEN (1)
string
server.extraVolumes[].name (5)
kms-vault-unseal
string
server.extraVolumes[].type (5)
secret
string
server.extraVolumes[].path (4)
/vault/userconfig
string
server.logFormat (5)
json
string
server.extraLabels."configmap.reloader.stakater.com/reload" (4)
vault-config
string
server.extraLabels."reloader.stakater.com/auto" (1)
string
server.readinessProbe.enabled (4)
true
boolean
server.readinessProbe.path (4)
/v1/sys/health?standbyok=true&sealedcode=204&uninitcode=204
string
server.updateStrategyType (4)
string
server.affinity (3)

string
server.logLevel (3)
info
string
server.enabled (2)
boolean
server.extraSecretEnvironmentVars[].envName (2)
string
server.extraSecretEnvironmentVars[].secretKey (2)
string
server.extraSecretEnvironmentVars[].secretName (2)
string
server.image.repository (2)
string
server.image.tag (1)
string
server.livenessProbe.enabled (2)
boolean
server.livenessProbe.initialDelaySeconds (2)
number
server.livenessProbe.path (2)
string
server.livenessProbe.port (1)
number
server.annotations."backup.velero.io/backup-volumes" (1)
string
server.authDelegator.enabled (1)
boolean
server.extraArgs (1)
string
server.extraInitContainers[].args[] (1)
string
server.extraInitContainers[].command[] (1)
string
server.extraInitContainers[].image (1)
string
server.extraInitContainers[].name (1)
string
server.extraInitContainers[].volumeMounts[].mountPath (1)
string
server.extraInitContainers[].volumeMounts[].name (1)
string
server.networkPolicy.enabled (1)
boolean
server.service.active.enabled (1)
boolean
server.service.enabled (1)
boolean
server.service.instanceSelector.enabled (1)
boolean
server.service.port (1)
number
server.service.standby.enabled (1)
boolean
server.service.targetPort (1)
number
server.service.type (1)
string
server.statefulSet.securityContext.container.allowPrivilegeEscalation (1)
boolean
server.statefulSet.securityContext.container.capabilities.drop[] (1)
string
server.statefulSet.securityContext.container.readOnlyRootFilesystem (1)
boolean
server.statefulSet.securityContext.pod.fsGroup (1)
number
server.statefulSet.securityContext.pod.fsGroupChangePolicy (1)
string
server.statefulSet.securityContext.pod.runAsGroup (1)
number
server.statefulSet.securityContext.pod.runAsNonRoot (1)
boolean
server.statefulSet.securityContext.pod.runAsUser (1)
number
server.statefulSet.securityContext.pod.supplementalGroups[] (1)
number
server.tolerations (1)
string
server.volumeMounts[].mountPath (1)
string
server.volumeMounts[].name (1)
string
server.volumeMounts[].readOnly (1)
boolean
server.volumes[].name (1)
string
csi.enabled (6)
false
boolean
csi.agent.enabled (1)
boolean
csi.agent.image.pullPolicy (1)
string
csi.agent.image.repository (1)
string
csi.agent.image.tag (1)
string
csi.agent.logFormat (1)
string
csi.agent.logLevel (1)
string
csi.image.pullPolicy (1)
string
csi.image.repository (1)
string
csi.image.tag (1)
string
global.enabled (4)
boolean
global.serverTelemetry.prometheusOperator (1)
boolean
global.tlsDisable (1)
boolean
injector.enabled (4)
false
string, boolean
injector.logFormat (2)
string
injector.metrics.enabled (2)
boolean
injector.failurePolicy (1)
string
injector.leaderElector.enabled (1)
boolean
injector.logLevel (1)
string
injector.replicas (1)
number
injector.resources.limits.cpu (1)
string
injector.resources.limits.memory (1)
string
injector.resources.requests.cpu (1)
string
injector.resources.requests.memory (1)
string
injector.revokeOnShutdown (1)
boolean
injector.webhook.failurePolicy (1)
string
injector.webhook.matchPolicy (1)
string
injector.webhook.timeoutSeconds (1)
number
metrics.enabled (4)
true
boolean
service.enabled (4)
true
boolean
ingress.annotations (1)
string
ingress.enabled (1)
boolean
ingress.hosts[].host (1)
string
ingress.hosts[].paths[] (1)
string
ingress.tls[].hosts[] (1)
string
ingress.tls[].secretName (1)
string
serverTelemetry.prometheusRules.enabled (1)
boolean
serverTelemetry.prometheusRules.rules[].alert (1)
string
serverTelemetry.prometheusRules.rules[].annotations.message (1)
string
serverTelemetry.prometheusRules.rules[].expr (1)
string
serverTelemetry.prometheusRules.rules[].for (1)
string
serverTelemetry.prometheusRules.rules[].labels.severity (1)
string
serverTelemetry.serviceMonitor.enabled (1)
boolean