Token Management [2]

The first request made to the vault will be an authorisation request using the credentials given in the secrets.cfg file. The token retrieved when authenticating will be stored in memory and used to make requests to the vault.

If the token expires, mfsecretshashicorp will try to re-authenticate using the same credentials as before.

At the end of the transaction, mfsecretshashicorp attempts to revoke the token using the token itself. The transaction will be successful even if the token is unable to be revoked, providing only a warning message in the log. Micro Focus does not recommended that you give a token permissions to revoke itself. Micro Focus recommends that authentication is set up on the HashiCorp server to provide tokens with a short Time To Live (TTL).