OpenBao Operator

Welcome to the documentation for the OpenBao Operator, a Kubernetes native operator for managing OpenBao clusters.

Experimental Status

This operator is currently in an experimental phase and is actively seeking feedback. It is not recommended for production environments at this time.

• User Guide

  ---

  Step-by-step guides to deploy, configure, and operate OpenBao clusters on Kubernetes.

  Getting Started

• Security

  ---

  Threat modeling, RBAC design, admission policies, and security hardening guidelines.

  Explore Security

• Architecture

  ---

  Deep dive into the controller design, reconciliation loops, and key lifecycle flows.

  View Ecosystem

• Contributing

  ---

  Setup your development environment, build targets, and testing strategies.

  Start Contributing

Why OpenBao Operator?

• Automated Lifecycle

  ---

  Seamlessly provision, scale, and upgrade clusters with zero downtime using advanced state management.

• Security First

  ---

  Secure-by-default configuration with automated TLS rotation, sealed unsealing, and strict RBAC profiles.

• Day 2 Operations

  ---

  Built-in backup/restore controllers, automated snapshots, and detailed metrics for production reliability.

• Kubernetes Native

  ---

  Designed with standard CRDs, detailed Status conditions, and full integration with the Kubernetes ecosystem.

Community

Connect with other users and contributors:

• GitHub

  ---

  Report bugs, request features, and contribute code.

  Go to Repository

Reference

• Compatibility Matrix — Supported Kubernetes and OpenBao versions.