Vault preferres HCLΒ #18
Description
Hello,
Hashicorp wants to use HCL instead of JSON for configuration. There is also a comment about this problem also here and I've added to a comment here too.
I had to switch from the Debian package to the Archive method, which is not a problem but it took a bit time, to understand, why it wasn't working. After the switch and getting most parts up and running, I tried to add service registration to Consul, but the JSON wasn't parsed correctly.
It seems, it wasn't fixed correctly, as I still get:
2022-11-04T11:35:23.879+0100 [WARN] unknown or unsupported field consul found in configuration at /etc/vault/config.json
2022-11-04T11:35:23.879+0100 [INFO] proxy environment: http_proxy="" https_proxy="" no_proxy=""
2022-11-04T11:35:23.887+0100 [INFO] core: Initializing version history cache for core
2022-11-04T11:35:23.889+0100 [INFO] core: raft retry join initiated
with:
extra_config => {
cluster_addr => "https://${::fqdn}:8201",
api_addr => "https://${::fqdn}:8200",
service_registration => {
consul => {
address => "${::fqdn}:8501",
token => $consul_agent_token,
scheme => https,
tls_cert_file => $tls_cert_file,
tls_min_version => 'tls12',
tls_cipher_suites => 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_RSA_WITH_AES_256_GCM_SHA384,TLS_RSA_WITH_AES_128_GCM_SHA256',
service_tags => "vault",
}
}
},
It works, but the message "unknown or unsupported field consul found" is still there. And also the question is .. how to handle the systemd file, when install_method package / repository is used.
cu denny