Lab
A Cloud Guru

Implement HashiCorp Vault API Authentication

The goal of this lab is to configure a HashiCorp vault in such a way that will provide authentication for a web application API. This can be achieved by creating a KV - Secrets Engine whose contents will be compared with what the user sends in the authentication header. If there is a positive match, the API GET request is authenticated by the secrets engine; if there is no positive match, then the request is classified as unauthorized.

Try for free Contact sales

Path Info

Level

Intermediate

Duration

1h 0m

Published

Oct 23, 2020

Challenge

Unseal the Vault and Log in with the Root Token
1. Unseal the vaults.
2. Log in with the root token.
Challenge

Enable a `kv` Store and Limit its Access
1. Enable a kv store.
2. Create a kv secret.
3. Create a policy for an access token.
4. Create an access token.
5. Test the token out.
Challenge

Clone github repo, modify app code and then run the app on the web server
1. Clone the GitHub repository.
2. Install pip for python3.
3. Install django framework.
4. Add the Web Server host to the list of allowed hosts.
Challenge

Test out the API call
1. Run the Django app.
2. Make a test call from the Client Server.

Author

A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.