Development with Vault

You can start a development Vault server as follows:

docker run --cap-add=IPC_LOCK -d -p 8200:8200 \
-e 'VAULT_DEV_ROOT_TOKEN_ID=unsafe' -e 'VAULT_ADDRESS=http://localhost:8200' \
--name=dev-vault \

The server will start unsealed, with root token unsafe.

Now log in and enable a key-value secret engine names kv:

docker exec -e 'VAULT_ADDR=' dev-vault vault login

Enter the root token unsafe, then enable the kv engine:

docker exec -e 'VAULT_ADDR=' dev-vault vault secrets enable -path=kv kv

Then configure the Nuts node to use the Vault server:

  storage: vaultkv
    address: http://localhost:8200
    token: unsafe