ectica/laravel_vault 问题修复 & 功能扩展

解决BUG、新增功能、兼容多环境部署,快速响应你的开发需求

邮箱:yvsm@zunyunkeji.com | QQ:316430983 | 微信:yvsm316

ectica/laravel_vault

Composer 安装命令:

composer require ectica/laravel_vault

包简介

A Laravel package that helps you easily integrate and manage secrets from HashiCorp Vault, with caching and env/config-style access.

README 文档

README

Easily integrate HashiCorp Vault secrets into your Laravel project with zero friction. This package allows you to manage secrets via Vault while maintaining Laravel's native config('...') access style — just like you would with .env files.

What is HashiCorp Vault?

HashiCorp Vault is a tool for securely storing and accessing tokens, passwords, certificates, encryption keys, and other sensitive data. Kindly see More Here: https://github.com/hashicorp/vault-guides

🚀 Why Use This Package?

Managing secrets in Laravel shouldn't require rewriting your entire application just to integrate with HashiCorp Vault. This package was built to solve one simple but powerful problem:

Seamlessly upgrade from .env-based config to Vault-based secret management — without touching how your app reads secrets.

If you're using Laravel’s config('app.secret_key') or similar patterns, this package lets you continue doing that while the underlying secrets are pulled from Vault securely.

🔍 What Makes This Package Different?

🧩 1. Plug-and-Play with Laravel’s Config System

You don't need to rewrite your codebase. Just map your Vault keys to Laravel config keys, and call them as you always have:

config('app.my_api_key')

⚙️ 2. Two Powerful Modes of Integration

Mode Description
File Mode Read secrets from one or more Vault-agent-generated files (supporting .env, .txt, .json, and more) — perfect for agent setups or Docker environments.
Token Mode Pull secrets directly from the Vault server using a token, supporting multiple paths and tokens. Great for dynamic secret retrieval.

🧠 3. Configurable, Flexible, and Cache-Aware

  • Supports multiple file paths or multiple Vault token sources
  • Maps secrets to Laravel config effortlessly
  • Uses Laravel's cache system to improve performance

🪄 4. Transition-First Design

Unlike other packages that require rigid integration styles or special syntax, this one was designed with real-world Laravel projects in mind — allowing teams to migrate without friction, allowing keys to be called using the default Laravel config() mechanism.

📦 Installation

composer require thetribeofdan/laravel_vault

If you want to publish the config file:

php artisan vendor:publish --tag=vault-config

You'll now see a config/vault.php file. This is your main control centre 🧠

🛠️ Configuration

1. Choose your mode

Set the mode in .env or directly in config/vault.php:

VAULT_MODE=file     # or 'token'

2. File Mode (📁 Local Files)

Use this when you want to load secrets from one or more files generated by the Vault Agent or by yourself on your Server (e.g. .env, .json):

'file_paths' => [
    base_path('.vault/secrets.env'),
    base_path('.vault/extra.json'),
],

✅ Supported formats:

  • .env-style: KEY=value
  • .json-style: { "KEY": "value" }

3. Token Mode (🔐 Live HashiCorp Vault)

Use this when you want to connect to a live Vault instance using the Auth token:

'token_sources' => [
    [
        'token' => env('VAULT_TOKEN'),
        'path'  => '/v1/secret/data/app',
        'url'   => env('VAULT_URL'),
    ],
    [
        'token' => env('VAULT_ALT_TOKEN'),
        'path'  => '/v1/secret/data/billing',
        'url'   => env('VAULT_URL'),
    ],
],

📌 Supports multiple tokens, engine paths and URLs.

4. Mapping Secrets to Config 🗺️

Map secrets from your files or Vault into Laravel config using the map array in your config/vault.php file:

'app.app_key' => 'APP_KEY',
'app.mailgun.secret' => 'MAILGUN_SECRET',

Usage in your Project’s code:

config('app.app_key');
config('app.mailgun.secret');

🔁 Refreshing Secrets at Runtime

Need to reload your secrets on the fly (e.g. after token rotation or file update)? Just call:

Vault::refresh();

To force a reload and cache refresh of Vault secrets.

⚠️ Laravel Cache Warning

If you're using database cache driver, make sure to run the default cache migration:

php artisan cache:table
php artisan migrate

Or switch to file or redis temporarily.

💡 Tips

  • Make sure you run Laravel's php artisan cache:table & migrate if using database cache
  • All secrets are cached for 1 hour by default (configurable)
  • This package is best used for secure, centralized secrets

Tutorials/Video Walkthrough

🙌 Credits

Built with 🖤 by Daniel Fiyinfoluwa Egbeleke aka The Bad Guy™. Inspired by a personal need to make secure secret integration feel effortless for my Future Projects...Hope You Like It 🔐

💖 Support the Project

If this package saved you hours or helped secure your Laravel app, consider sponsoring the project:

👉 Donate via Flutterwave
🫶 Every contribution goes towards maintaining, improving, and supporting this tool for the community.

Massive Help by @imambash6

📄 License

MIT © 2025 Daniel Fiyinfoluwa Egbeleke

ectica/laravel_vault 适用场景与选型建议

ectica/laravel_vault 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 2 次下载、GitHub Stars 达 0, 最近一次更新时间为 2026 年 01 月 30 日, 在 PHP 生态内属于活跃度较高的组件。

它主要适用于以下技术方向: 「security」 「config」 「hash」 「encryption」 「laravel」 「env」 等业务场景。在实际项目中,围绕这些方向常见需要落地的问题包括:接口对接、性能调优、并发安全、与既有框架(Laravel / ThinkPHP / Yii / Webman 等)的兼容适配,以及生产环境的日志埋点与稳定性保障。

我们在过去多个企业项目中使用过 ectica/laravel_vault 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。

围绕 ectica/laravel_vault 我们能提供哪些服务?
定制开发 / 二次开发

基于 ectica/laravel_vault 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。

BUG 修复 & 性能优化

线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。

项目外包 & 长期维护

承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。

yvsm@zunyunkeji.com QQ:316430983 微信:yvsm316 西安尊云信息科技 · 专注 PHP / Go / 分布式系统研发

统计信息

  • 总下载量: 2
  • 月度下载量: 0
  • 日度下载量: 0
  • 收藏数: 0
  • 点击次数: 27
  • 依赖项目数: 0
  • 推荐数: 0

GitHub 信息

  • Stars: 0
  • Watchers: 0
  • Forks: 2
  • 开发语言: PHP

其他信息

  • 授权协议: MIT
  • 更新时间: 2026-01-30