This version is still in development and is not considered stable yet. For the latest stable version, please use Spring Vault 3.1.2!

New & Noteworthy

What’s new in Spring Vault 3.0

  • Upgrade to Spring Framework 6 and Java 17 baseline

  • Upgrade to AWS SDK 2.

What’s new in Spring Vault 2.4

What’s new in Spring Vault 2.3

  • Support for PEM-encoded certificates for keystore and truststore usage.

  • ReactiveVaultEndpointProvider for non-blocking lookup of VaultEndpoint.

  • VaultKeyValueMetadataOperations for Key-Value metadata interaction.

  • Support for transform secrets engine (Enterprise Feature).

  • Documentation of how to use Vault secret backends.

  • Login credentials for Kubernetes and PCF authentication are reloaded for each login attempt.

  • SecretLeaseContainer publishes SecretLeaseRotatedEvent instead of SecretLeaseExpiredEvent and SecretLeaseCreatedEvent on successful secret rotation.

  • AbstractVaultConfiguration.threadPoolTaskScheduler() bean type changed to TaskSchedulerWrapper instead of ThreadPoolTaskScheduler.

  • Since 2.3.2: GcpIamCredentialsAuthentication

What’s new in Spring Vault 2.2

  • Support for Key-Value v2 (versioned secrets engine) secrets through @VaultPropertySource.

  • SpEL support in @Secret.

  • Add support for Jetty as reactive HttpClient.

  • LifecycleAwareSessionManager and ReactiveLifecycleAwareSessionManager emit now AuthenticationEvents.

  • PCF Authentication.

  • Deprecation of AppIdAuthentication. Use AppRoleAuthentication instead as recommended by HashiCorp Vault.

  • CubbyholeAuthentication and wrapped AppRoleAuthentication now use sys/wrapping/unwrap endpoints by default.

  • Kotlin Coroutines support for ReactiveVaultOperations.

What’s new in Spring Vault 2.1

  • GCP Compute, GCP IAM, and Azure authentication.

  • Template API support for versioned and unversioned Key/Value secrets engines and for Vault wrapping operations.

  • Support full pull mode in reactive AppRole authentication.

  • Improved Exception hierarchy for Vault login failures.

What’s new in Spring Vault 2.0

What’s new in Spring Vault 1.1.0

  • AWS IAM authentication.

  • Configuration of encryption/decryption versions for transit keys.

  • Pull mode for AppRole authentication.

  • Transit batch encrypt and decrypt support.

  • TTL-based generic secret rotation.

What’s new in Spring Vault 1.0

  • Initial Vault support.