undefined | Better HN

0 pointsdenvrede2y ago0 comments

The guys at Pulumi must be having a field day right now. It's exactly how you describe it for us. We're long overdue with an upgrade of our Terraform config from pre v1.0. We have to most likely re-write a big part of our HCL code, so why not try a competitor?

With Vault however that's another story, I've yet to find another secrets management system that has a tight integration with Kubernetes, AWS and supports providers for things like Postgresql to have ephemeral database credentials.

0 comments

yellowapple2y ago

Someone else posted a list of Vault alternatives, multiple of which (AFAICT) check your boxes: https://news.ycombinator.com/item?id=37151218

denvredeOP2y ago

Most of them do the first two: integration with Kubernetes and AWS. Unfortunately short lived DB creds is not in any of those listed.

j / k navigate · click thread line to collapse

0 pointsdenvrede2y ago0 comments

0 comments

yellowapple2y ago

Someone else posted a list of Vault alternatives, multiple of which (AFAICT) check your boxes: https://news.ycombinator.com/item?id=37151218

denvredeOP2y ago

Most of them do the first two: integration with Kubernetes and AWS. Unfortunately short lived DB creds is not in any of those listed.

j / k navigate · click thread line to collapse