From ed6110f7ef96e53cf973e87a084e4b603b357d09 Mon Sep 17 00:00:00 2001
From: igor <igordudnek@gmail.com>
Date: Mon, 16 Mar 2026 23:01:16 +0000
Subject: [PATCH] Add Vault integration test pipeline

---
 .woodpecker.yml | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 .woodpecker.yml

diff --git a/.woodpecker.yml b/.woodpecker.yml
new file mode 100644
index 0000000..76ebfd0
--- /dev/null
+++ b/.woodpecker.yml
@@ -0,0 +1,19 @@
+steps:
+  - name: test-vault
+    image: hashicorp/vault:latest
+    environment:
+      VAULT_ADDR:
+        from_secret: vault_addr
+      VAULT_ROLE_ID:
+        from_secret: vault_role_id
+      VAULT_SECRET_ID:
+        from_secret: vault_secret_id
+    commands:
+      - echo "=== Authenticating with Vault via AppRole ==="
+      - export VAULT_TOKEN=$(vault write -field=token auth/approle/login role_id=$VAULT_ROLE_ID secret_id=$VAULT_SECRET_ID)
+      - echo "Auth successful, got token"
+      - echo "=== Reading secrets from projects/test/demo ==="
+      - vault kv get projects/test/demo
+      - echo "=== As env vars ==="
+      - vault kv get -format=json projects/test/demo | sed -n 's/.*"\([^"]*\)": "\([^"]*\)".*/\1=\2/p'
+      - echo "=== Vault integration works! ==="