Upload/Retrieve JKS file in Vault KV secret engine

Avatar
Priyansh Setia
  • Updated

Introduction

Other than regular secrets, the vault is also capable of storing certificates in the KV-v2 secret engine. However, the certificates cannot be uploaded directly thus they need to be converted into base64 format and then they can be uploaded to the KV secret engine.

 

Steps for uploading the ".JKS" file to KV

  • Suppose our certificate file name is myservice.jks
  • Convert the file to base64 using:
cat myservice.jks | base64
  • Create a JSON file with the JKS cert e.g certificate.json as given below:
{
"certificate":"/u3+7QAAAAIAAAAEAAAAAgAEamFjawAAASm7DvHyAAVYLjUwOQAAAvowggL2MIICX6ADAgECAgkA9qs6c/ASQqUwDQYJKoZIhvcNAQEFBQAwgYoxCzAJBgNVBAYTAkxLMRAwDgYDVQQIEwdXZXN0ZXJuMRAwDgYDVQQHEwdDb2xvbWJvMRYwFAYDVQQKEw1Tb2Z0d2FyZSBWaWV3MREwDwYDVQQLEwhUcmFpbmluZzEsMCoGA1UEAxMjU29mdHdhcmUgVmlldyBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkwHhcNMTAwNzEwMDYzMzE4WhcNMjQwMzE4MDYzMzE4WjByMQswCQYDVQQGEwJMSzEQMA4GA1UECBMHV2VzdGVybjEQMA4GA1UEBxMHQ29sb21ibzEWMBQGA1UEChMNU29mdHdhcmUgVmlldzERMA8GA1UECxMIVHJhaW5pbmcxFDASBgNVBAMTC0phY2sgRGFuaWVsMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCoAixeu7aRbM1eJ2uDJqkNvsZ2aFTA0XHWs6KYPK7ZGsk32wi/RmLYHQqnXFJCIE9Zptdu23fAHUvNLY/X20wL4xbsFNjPSZGDif29Khr6ZMncRrr+/hb3trvTUFIQ6VPHKxWW2qA74PeAP241WmOII2Nc/cWVevDjhoOdfCZ7ewIDAQABo3sweTAJBgNVHRMEAjAAMB0GA1UdDgQWBBQOn6lt5dAeZiK5sNy0Xxv4LiDpXTAfBgNVHSMEGDAWgBTWt2JoQzuwTsG1KpmFNZP1Oqf1FDAsBglghkgBhvhCAQ0EHxYdT3BlblNTTCBHZW5lcmF0ZWQgQ2VydGlmaWNhdGUwDQYJKoZIhvcNAQEFBQADgYEAJwuo/AL1wBNKp74p6zmvqRyCjx43dAwT4dVJChwVJpFWtnyI6uXQ0BfBrLYk4Z2MgUKfaBTg0CSsMDOMnUCXCt8JP/UUMvmG7gFN1jXdmnAF/kxTosHrHa1z4lujhtCuyQQQh8ak5zK4H/AEm0lB442Mu5jai5f2m9poePZynNIAAAABAAlteXNlcnZpY2UAAAEpuw6fGwAAArkwggK1MA4GCisGAQQBKgIRAQEFAASCAqHT3HreJaiKsqg32XTYnRFJVJ71kqJzllaqajCvsWZC/NNa5ZVO3I3zsQqHlxghzgvlMdOATX+Jiy5YRKsFdC4GXUXLVuCNz2Xosss8TLwykv1qXRhRmGVzGZLITs3OsWh2OeTubhCzjMEIMNVia5s16sLJdFcw3T7f8dH5GNV2xu5YmrK6bjROG4AJ43hXBk1o+SpVZJcuDMwqRM9tAPUhhD8zKfdhR4kOhxXxqTfMYvHrjESohd6FzbnUilLFT1K5JArQdi8Ko788Q0QFDe0Nqj4tceKB3SadV3C183WR1/BN+AMF9f75etvyOJhI2efXzSET4OLoXBdfi0jplCrEo0ThIQPgVOOJiHlONLd8mTUnIlFrwPnVvHBQCU/UCuZvUg80MtB6Q4G+WVmAvrRUTT9SWVDw9U24lv20VgAkO1yplxbifuAM2+/n9ooScA3KQ4egdwQ9JN3rcOuRNAoYODIWJnu/vyAZLfb14RDHN8TR2S/par275PAThA4uHuVOABo1pLgLL143VDC2yAd/Q2HRmt2Cbg3KgG6lHMWALQ9LucIaaVIpBnFY1SvPLOUZoiccUvL/ZAxDJWBpLAJKCLqSPVZNLOLy/4Gkg6gKWZKNr7LN3aFZfqzf6RiiIXP+7MM4HnS2MDtCper5YAx+C71240rUhrXvUhciVHU7REEi74rrsLShatuitle23dH3C1CfhllBNEvA3x0t0Q20Y3C4KVJam2sl+ZnG3rChN3NSa0Wn9xB+RNzsUWM1G5kEXraX2XoFqcVAC19KgMjT5NN/NPeqggxYmQTHsJMamEb1aLjzg6y7z1t+p9PFRPOEABLAwONaenOHgTgxii5uaiFQdoabazc6trooRBa6NY7fZtqvm2zXQFuC+i7HinjuAAAAAgAFWC41MDkAAAL+MIIC+jCCAmOgAwIBAgIJAParOnPwEkKjMA0GCSqGSIb3DQEBBQUAMIGKMQswCQYDVQQGEwJMSzEQMA4GA1UECBMHV2VzdGVybjEQMA4GA1UEBxMHQ29sb21ibzEWMBQGA1UEChMNU29mdHdhcmUgVmlldzERMA8GA1UECxMIVHJhaW5pbmcxLDAqBgNVBAMTI1NvZnR3YXJlIFZpZXcgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTEwMDcxMDA2MzMwM1oXDTI0MDMxODA2MzMwM1owdjELMAkGA1UEBhMCTEsxEDAOBgNVBAgTB1dlc3Rlcm4xEDAOBgNVBAcTB0NvbG9tYm8xFjAUBgNVBAoTDVNvZnR3YXJlIFZpZXcxETAPBgNVBAsTCFRyYWluaW5nMRgwFgYDVQQDEw9NeSBUZXN0IFNlcnZpY2UwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAN6bi0llFz+R+93nLLK5BmnuF48tbODpMBH7yGZ1/ESVUZoYm0GaPzg/ai3rX3r8BEr4TUrhhpKUKBpFxZvb2q+yREIeDEkDbHJuyVdS6hvtfa89WMJtwc7gwYYkY8AoVJ94gU54GP2B6XyNpgDTXPd0d3aH/Zt669xGAVoe/0iPAgMBAAGjezB5MAkGA1UdEwQCMAAwHQYDVR0OBBYEFNAwSamhuJSwXG0SJnWdIVF1PkW9MB8GA1UdIwQYMBaAFNa3YmhDO7BOwbUqmYU1k/U6p/UUMCwGCWCGSAGG+EIBDQQfFh1PcGVuU1NMIEdlbmVyYXRlZCBDZXJ0aWZpY2F0ZTANBgkqhkiG9w0BAQUFAAOBgQBwwC5H+U0a+ps4tDCicHQfC2SXRTgF7PlAu2rLfmJ7jyoDX+lFEoWDUoE5qkTpMjsR1q/+2j9eTyi9xGj5sby4yFvmXf8jS5L6zMkkezSb6QAvtSHcLfefKeidq6NDBJ8DhWHi/zvC9YbT0KkCToEgvCTBpRZgdSFxTJcUksqoFAAFWC41MDkAAAOLMIIDhzCCAvCgAwIBAgIJANoN6RLOJhj7MA0GCSqGSIb3DQEBBQUAMIGKMQswCQYDVQQGEwJMSzEQMA4GA1UECBMHV2VzdGVybjEQMA4GA1UEBxMHQ29sb21ibzEWMBQGA1UEChMNU29mdHdhcmUgVmlldzERMA8GA1UECxMIVHJhaW5pbmcxLDAqBgNVBAMTI1NvZnR3YXJlIFZpZXcgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTEwMDcxMDA2MzI1NVoXDTI2MTIxMzA2MzI1NVowgYoxCzAJBgNVBAYTAkxLMRAwDgYDVQQIEwdXZXN0ZXJuMRAwDgYDVQQHEwdDb2xvbWJvMRYwFAYDVQQKEw1Tb2Z0d2FyZSBWaWV3MREwDwYDVQQLEwhUcmFpbmluZzEsMCoGA1UEAxMjU29mdHdhcmUgVmlldyBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJgo2C8xtpSjesmsZeVkiLNJe7XqjMLIAr+htrOhW/T2rV9ht0kuqhxfUqrejguJxibv+Nqd1/VuNV5ZPnpUxvx8nzLNeSBzznYvpPNO+fnr9YsdWoYBhTUTKJXyzgKA/mLpSALujiFrHCHFWKx5jEB1Dc6w5C+Y+7Kj7A3LCg29AgMBAAGjgfIwge8wDAYDVR0TBAUwAwEB/zAdBgNVHQ4EFgQU1rdiaEM7sE7BtSqZhTWT9Tqn9RQwgb8GA1UdIwSBtzCBtIAU1rdiaEM7sE7BtSqZhTWT9Tqn9RShgZCkgY0wgYoxCzAJBgNVBAYTAkxLMRAwDgYDVQQIEwdXZXN0ZXJuMRAwDgYDVQQHEwdDb2xvbWJvMRYwFAYDVQQKEw1Tb2Z0d2FyZSBWaWV3MREwDwYDVQQLEwhUcmFpbmluZzEsMCoGA1UEAxMjU29mdHdhcmUgVmlldyBDZXJ0aWZpY2F0ZSBBdXRob3JpdHmCCQDaDekSziYY+zANBgkqhkiG9w0BAQUFAAOBgQBbDIVh5BPJeI/X1hd87Ej2OuIWh+10IEPiRxb+6gHYG1/c7hb4fXRHGaDVtAeHH0FkFiifZiVpOZkidsTkD+UKAUzYo1uo8AvfG1dx6JzccSNnWIvf2I/YrWMHefx4KdyCt/DtRqnOHooRm18Gnqs6dZ/FHKOu1HDCRjD2kTccTwAAAAIACHN3dmlld2NhAAABKbsOnaQABVguNTA5AAADizCCA4cwggLwoAMCAQICCQDaDekSziYY+zANBgkqhkiG9w0BAQUFADCBijELMAkGA1UEBhMCTEsxEDAOBgNVBAgTB1dlc3Rlcm4xEDAOBgNVBAcTB0NvbG9tYm8xFjAUBgNVBAoTDVNvZnR3YXJlIFZpZXcxETAPBgNVBAsTCFRyYWluaW5nMSwwKgYDVQQDEyNTb2Z0d2FyZSBWaWV3IENlcnRpZmljYXRlIEF1dGhvcml0eTAeFw0xMDA3MTAwNjMyNTVaFw0yNjEyMTMwNjMyNTVaMIGKMQswCQYDVQQGEwJMSzEQMA4GA1UECBMHV2VzdGVybjEQMA4GA1UEBxMHQ29sb21ibzEWMBQGA1UEChMNU29mdHdhcmUgVmlldzERMA8GA1UECxMIVHJhaW5pbmcxLDAqBgNVBAMTI1NvZnR3YXJlIFZpZXcgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCYKNgvMbaUo3rJrGXlZIizSXu16ozCyAK/obazoVv09q1fYbdJLqocX1Kq3o4LicYm7/jandf1bjVeWT56VMb8fJ8yzXkgc852L6TzTvn56/WLHVqGAYU1EyiV8s4CgP5i6UgC7o4haxwhxViseYxAdQ3OsOQvmPuyo+wNywoNvQIDAQABo4HyMIHvMAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFNa3YmhDO7BOwbUqmYU1k/U6p/UUMIG/BgNVHSMEgbcwgbSAFNa3YmhDO7BOwbUqmYU1k/U6p/UUoYGQpIGNMIGKMQswCQYDVQQGEwJMSzEQMA4GA1UECBMHV2VzdGVybjEQMA4GA1UEBxMHQ29sb21ibzEWMBQGA1UEChMNU29mdHdhcmUgVmlldzERMA8GA1UECxMIVHJhaW5pbmcxLDAqBgNVBAMTI1NvZnR3YXJlIFZpZXcgQ2VydGlmaWNhdGUgQXV0aG9yaXR5ggkA2g3pEs4mGPswDQYJKoZIhvcNAQEFBQADgYEAWwyFYeQTyXiP19YXfOxI9jriFoftdCBD4kcW/uoB2Btf3O4W+H10Rxmg1bQHhx9BZBYon2YlaTmZInbE5A/lCgFM2KNbqPAL3xtXceic3HEjZ1iL39iP2K1jB3n8eCncgrfw7Uapzh6KEZtfBp6rOnWfxRyjrtRwwkYw9pE3HE8AAAACAAdqb2hubmllAAABKbsO8EAABVguNTA5AAAC/TCCAvkwggJioAMCAQICCQD2qzpz8BJCpDANBgkqhkiG9w0BAQUFADCBijELMAkGA1UEBhMCTEsxEDAOBgNVBAgTB1dlc3Rlcm4xEDAOBgNVBAcTB0NvbG9tYm8xFjAUBgNVBAoTDVNvZnR3YXJlIFZpZXcxETAPBgNVBAsTCFRyYWluaW5nMSwwKgYDVQQDEyNTb2Z0d2FyZSBWaWV3IENlcnRpZmljYXRlIEF1dGhvcml0eTAeFw0xMDA3MTAwNjMzMTFaFw0yNDAzMTgwNjMzMTFaMHUxCzAJBgNVBAYTAkxLMRAwDgYDVQQIEwdXZXN0ZXJuMRAwDgYDVQQHEwdDb2xvbWJvMRYwFAYDVQQKEw1Tb2Z0d2FyZSBWaWV3MREwDwYDVQQLEwhUcmFpbmluZzEXMBUGA1UEAxMOSm9obm5pZSBXYWxrZXIwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKwnSUJXcL5GUDuW5zpZGsL+kXU83+/jVcgJKJXoIyQY5KPogU3OTP5cISqtww5xtt62Wfj9FGk6AP+kWhKlKUt6OC5C6DnUQEeeaW3/aNpfElyKDdhhZb2U+GxuPp4XBGTFmacVRdfSyhmSWmRvg/T0ivwgqvJklazxKa415AIXAgMBAAGjezB5MAkGA1UdEwQCMAAwHQYDVR0OBBYEFO23I9G5OSEknr7injBvzdss5A3vMB8GA1UdIwQYMBaAFNa3YmhDO7BOwbUqmYU1k/U6p/UUMCwGCWCGSAGG+EIBDQQfFh1PcGVuU1NMIEdlbmVyYXRlZCBDZXJ0aWZpY2F0ZTANBgkqhkiG9w0BAQUFAAOBgQBn1hHAfzJAFGW34WWtsxqzWAD1Lzo7yLiuG0dQE3BjDEmi7qNGlrUFrjUYLbRbi8lBHDDT08hew/6HvjygtZYTJRavgqGfJpjlVUSi+eTQkx4ZlDLYPaxKbAoAquExsrBEZt7NBKMhGgA05ZkclpGeGinR6TpaxonLJDZYHMo7pnlsI818wifToBG2+eaHZetxNl3J"
}
  • Upload the file using the following command:
vault kv put kv/secret  @certificate.jks

 

Steps to retrieve the ".JKS" file from KV

Secret can be retrieved from the vault manually or using annotation:

 

Retrieve certificate manually:

  1. You can retrieve  the secret from the vault console or run the following command:
vault kv get kv/secret  
  1. Convert the secret to the original format:
base64 -d <<<  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 > muyservice.jks 

Retrieve secrets using Annotations:

You can apply the below annotation to retrieve and decode the secret

annotations:
  vault.hashicorp.com/agent-inject: "true"
  vault.hashicorp.com/agent-inject-secret-sec: "kv/secret"
  vault.hashicorp.com/tls-skip-verify: "true"
  vault.hashicorp.com/role: "webapp"
  vault.hashicorp.com/agent-inject-file-sec: "myservice.jks"
  vault.hashicorp.com/agent-pre-populate-only: "true"
  vault.hashicorp.com/agent-inject-template-sec:"{{- with secret \"kv/secret\" -}}{{ base64Decode .Data.data.apigeeenvcertificate }}{{- end }}"

 

Reference:

Articles in this section

See more

Related articles