vault icon indicating copy to clipboard operation
vault copied to clipboard
verified publisher icon hashicorp

Feature Request: Automatic un-sealing with IBM Key Protect

Open tomwganem opened this issue 6 years ago • 6 comments

Is your feature request related to a problem? Please describe. I would like to utilize IBM Key Protect to run vault with auto-unseal enabled in a kubernetes cluster in IBM Cloud.

Describe the solution you'd like AWS, GCP, Azure and alicloud all have integrations for auto-unseal. I would like the same integration with IBM Key Protect.

Additional context I've created ~https://github.com/tomwganem/keyprotect-go~ ~https://github.com/IBM/keyprotect-go~ https://github.com/IBM/keyprotect-go-client based off of the API available at https://console.bluemix.net/apidocs/key-protect for further exploration of this feature.

tomwganem avatar Apr 16 '19 20:04 tomwganem

+1 for this feature request

rbustami avatar Aug 29 '19 15:08 rbustami

Hello,

I've gone ahead and made a more official golang library in ~https://github.com/IBM/keyprotect-go~ https://github.com/IBM/keyprotect-go-client

tomwganem avatar Nov 07 '19 20:11 tomwganem

Hi, I have submitted a PR #23 to add support for IBM Key Protect on go-kms-wraping. Can someone review please?

luizgn avatar Sep 25 '20 09:09 luizgn

Hi there, this feature would be welcome for some projects I'm working on. Is there anything I could do to help?

maxdebayser avatar May 11 '22 20:05 maxdebayser

Hi everyone, this would indeed help. Any updates on merging the feature @hsimon-hashicorp :) ?

cassiasamp avatar Jul 29 '22 18:07 cassiasamp

Is there any update on this item? It has been open for a few years now without much attention.

motyd avatar Nov 15 '22 09:11 motyd

Hi folks! At this time, we recommend people create or use a PKCS#11 library for auto-unseal with IBM Cloud. I will leave this open for internal tracking purposes. Thanks for your enthusiasm!

heatherezell avatar Dec 08 '22 20:12 heatherezell