This is a Reeve plugin for providing pipeline environment variables from a HashiCorp Vault KV store.
Currently, only the kv v2 secrets engine is supported.
If an env key is a path (meaning that it includes at least one /), all but the last segments are used as the secret path and the last segment is used as the secret data key.
Otherwise, value is used as the secret data key.
An API token is required for this plugin. It is recommended to use a token configured with minimal required access.
Settings can be provided to the plugin through environment variables set to the reeve server.
Settings for this plugin should be prefixed by REEVE_PLUGIN_HCVAULT_.
Settings may also be shared between plugins by prefixing them with REEVE_SHARED_ instead.
ENABLED-trueenables this pluginURL(required) - Vault URLTOKEN(required) - Vault API TokenPATH(required) - The path of the secret enginePRIORITY(default1) - Priority of all variables returned by this pluginNO_SECRET-trueprevents variables returned by this plugin from being marked as secret