spring-cloud-vault icon indicating copy to clipboard operation
spring-cloud-vault copied to clipboard
verified publisher icon spring-cloud

Add support for Hashicorp LDAP secrets engine

Open soklakov opened this issue 9 months ago • 2 comments

According to https://docs.spring.io/spring-cloud-vault/reference/secret-backends.html and https://docs.spring.io/spring-vault/reference/vault/vault-secret-engines.html currently there is no built-in support for Hashicorp LDAP secrets engine (https://developer.hashicorp.com/vault/docs/secrets/ldap).

I'd like you to add it because Hashicorp LDAP secrets engine supports a password rotation and it would be nice to have such integration out of the box.

soklakov avatar Mar 19 '25 11:03 soklakov

Sounds a good enhancement. For databases, we've built some abstractions to centralize common structures. For LDAP, it would make sense to build something on its own that isn't related to databases. Setting up a test environment for LDAP would be likely a lot of overhead, so we could start with an initial set of operations for dynamic credentials.

Feel free to submit a pull request.

mp911de avatar Mar 19 '25 13:03 mp911de

This would be awesome to see supported! did you decide to take a swing, @soklakov ?

drewmullen avatar Dec 10 '25 13:12 drewmullen

hey @mp911de i am planning to take a crack at this. do you think anything needs to be added to https://github.com/spring-projects/spring-vault to enable LDAP secrets engine in spring cloud vault?

i mostly dev in Go so any guidance you can give would be greatly appreciated!

drewmullen avatar Dec 18 '25 16:12 drewmullen