1 of 1 people found this helpful
As of WildFly 11 we support a new CredentialStore API/SPI - the following blog shows some information as to how this is used: -
For the problem you are trying to solve it sounds like someone would need to implement a custom Credential Store implementation that can integrate with the HashiCorp Vault you are trying to use.
Hi I know this is really late to the party but for future searchers, Vault's REST API is documented and there are are Java wrappers as well. Full disclosure I work at Hashicorp so I'm just filling this in for future reference.
Also I've written FUSE filesystem clients such that you can read secrets from Vault just as you can read files anywhere.
As for secure introduction, you can authenticate via a few options including JWT, K8s service account, Cloud service account, LDAP, and more. That can be viewed here:
Or you can store an auth token in the WildFly credential store as described earlier.