vault报错
1设置VAULT_ADDR路径时报错
failed to create client: parse ‘http://127.0.0.1:8200‘: first path segment in URL cannot contain colon
解决方式:set VAULT_ADDR=http://127.0.0.1:8200 设置路径时不需要引号
2 vault status
Error checking seal status: Get https://127.0.0.1:8200/v1/sys/seal-status: http: server gave HTTP response to HTTPS client
解决方式:没有指定VAULT_ADDR,可以通过指定-address来查看vault status -address=‘http://*.*.*.*:8200‘
3 vault policy write app1 app1.hcl
问题和解决方式:
登陆获取用户名密码时失败,需要在vault中允许使用vault secrets enable database
3 Caused by: org.springframework.vault.VaultException: Status 400 Bad Request [database/creds/app1]: unknown role: app1; nested exception is org.springframework.web.client.HttpClientErrorException$BadRequest: 400 Bad Request
问题和解决方式:
需要在vault中创建数据库连接和用户角色:
vault write database/config/my-mysql-database plugin_name=mysql-database-plugin connection_url="{{username}}:{{password}}@tcp(*.*.*.*:3306)/" allowed_roles="app1" username="test" password="123456"
vault write database/roles/app1 db_name=my-mysql-database creation_statements="CREATE USER ‘{{name}}‘@‘%‘ IDENTIFIED BY ‘{{password}}‘;GRANT SELECT,INSERT,UPDATE ON *.* TO ‘{{name}}‘@‘%‘;" default_ttl="1h" max_ttl="24h"
4 Caused by: org.springframework.vault.VaultException: Status 500 Internal Server Error [database/creds/app1]: 1 error occurred:
* Error 1045: Access denied for user ‘test‘@‘*.*.*.*‘ (using password: YES)
原文:https://www.cnblogs.com/meadow/p/11688585.html