Build Vault integration and use Vault to manage secrets.
With 2bc20a5, IO began using the Vault API to read secrets for use by calling APIs.
Known secrets managers (update as needed):
Pros#
- Vault is well-known and popular.
- The Vault API is easy to integrate.
- We’re already using Nomad and HCL, so there’s a growing Hashicorp alignment.
Cons#
- We’re still just using Vault superficially.
- Vault takes some effort to manage and might not be worth the effort to many individual IO users.
- 1Password is only $5/mo for families.