Spring Vault3.1.1


Spring Vault provides familiar Spring abstractions and client-side support for accessing, storing and revoking secrets. It offers both low-level and high-level abstractions for interacting with Vault, freeing the user from infrastructural concerns.

With HashiCorp’s Vault you have a central place to manage external secret data for applications across all environments. Vault can manage static and dynamic secrets such as application data, username/password for remote applications/resources and provide credentials for external services such as MySQL, PostgreSQL, Apache Cassandra, Consul, AWS and more.


  • Spring configuration support using Java based @Configuration classes.

  • VaultTemplate helper class that increases productivity performing common Vault operations. Includes integrated object mapping between documents and POJOs.

  • Supported authentication mechanisms:

    • Token
    • AppRole
    • AWS EC2 and IAM
    • AWS-IAM
    • Azure MSI
    • Client Certificates (PKI)
    • Cubbyhole
    • GCP GCE and IAM
    • JWT
    • Kubernetes
    • Pivotal CloudFoundry
    • Username/Password
  • Annotation-based @VaultPropertySource integration

  • Support for Vault's Secret Engines: Support for renewable and rotating secrets

  • Feature Rich Object Mapping integrated with Spring’s Conversion Service

  • Annotation-based mapping metadata but extensible to support other metadata formats

  • Repositories: Automatic implementation of Repository interfaces including support for custom query methods.

Spring Initializr

Quickstart Your Project

Get ahead

VMware offers training and certification to turbo-charge your progress.

Learn more

Get support

Tanzu Spring offers support and binaries for OpenJDK™, Spring, and Apache Tomcat® in one simple subscription.

Learn more

Upcoming events

Check out all the upcoming events in the Spring community.

View all