Accessing BOSH, CredHub, and Vault via magic tunnels
It is not a good idea to allow your BOSH/CredHub/Vault to be accessible on the public internet. Yes, they both require credentials and certificates to access, but there is just no good reason…
You can become a superhero of automation and development by learning and practicing. This is our blog from our learnings and practice.
We are consultants and trainers in Cloud Foundry, devops automation and continous delivery. We have the best jobs in the world helping you have the best job in the world.
Simple secure credentials into YAML with Vault and Spruce
We use YAML for configuration of many things - Concourse pipelines, BOSH deployments, Cloud Foundry applications, and more. And we continually want to be more secure with how we handle our secrets. Two tools can…
Safely Hiding Sensitive Data in your Concourse Pipelines
At Stark & Wayne, we love Concourse pipelines! We use them for testing/releasing CLI utilities, deploying Cloud Foundry apps, building docker images, creating and testing BOSH releases, and vetting changes to BOSH deployments in…
Standing up Vault using Genesis
A few of our recent posts related to standing up BOSH deployments using Genesis have all revolved around needing Vault to store your credentials safely. The vault-boshrelease makes this fairly straightforward, but there's now a…