Starting the Customization server Docker container by retrieving parameters from Vault

Learn about how to start Customization server Docker container by specifying CONFIGURE_MODE=Vault.

Mandatory environment variables

These are the mandatory environment variables that you must specify to configure the Customization server Docker container to retrieve additional parameters from Vault.


Environment variable name	Description	Comments
TENANT	The name of the group that contains your set of environments. For example, `MyCompany`.	Container environment variable. This can be specified in the values.yaml configuration file under `common.tenant`.
ENVIRONMENT	The name of the environment. For example, `Non-production`.	Container environment variable. This can be specified in the values.yaml configuration file under `common.environmentName`.
ENVTYPE	The environment type. Accepted values are `auth` and `live`.	Container environment variable. This can be specified in the values.yaml configuration file under `common.environmentType`.
VAULT_TOKEN	The Vault token to use to connect to Vault and request certification from Vault PKI.	Container environment variable. This can be specified in the values.yaml configuration file under `common.vaultToken`.
VAULT_URL	The Vault URL to use to connect to Vault and request certification from Vault PKI.	Container environment variable. This can be specified in the values.yaml configuration file under `common.vaultUrl`.
CONFIGURE_MODE	The configure mode. Accepted values are: `Vault` for Vault configuration. `EnvVariables` for environment variables configuration. Set this value to `Vault` to use Vault configuration, and the configurations present within this reference.	Container environment variable. This can be specified in the values.yaml configuration file under `common.configureMode`.

Mandatory Vault configuration variables

These are the mandatory Vault key values that you must specify within Vault to configure the Transaction server Docker container to use the Vault configuration mode.


Vault path	Description	Reference Environment Variable
`${VAULT_URL}/${TENANT}/${ENVIRONMENT}/${ENVTYPE}/adminSpiUserPwd`	The plain text spiuser user password. The ADMIN_SPIUSER_PWD must be the same value as SPIUSER_PWD but kept as plain text. To set the password in your custom Docker containers, see Setting the spiuser password in your Docker images.	ADMIN_SPIUSER_PWD

Optional Vault configuration variables

These are the optional Vault key values that you can specify within Vault to configure the Customization server Docker container when used with the Vault configuration mode.


Vault path	Description	Reference Environment Variable
`${VAULT_URL}/${TENANT}/${ENVIRONMENT}/domainName`	Specify the internal service domain name. If the deployed environment is on a special namespace on Kubernetes, then the domain name should be .svc.cluster.local. If no value is specified, then the default, `default.svc.cluster.local`, is used.	DOMAIN_NAME
`${VAULT_URL}/${TENANT}/${ENVIRONMENT}/${ENVTYPE}/txHost`	The Transaction server host name. The default value is `app`.	TX_HOST
`${VAULT_URL}/${TENANT}/${ENVIRONMENT}/${ENVTYPE}/txPort`	The Transaction server port number. The default value is `5443`.	TX_PORT
`${VAULT_URL}/${TENANT}/${ENVIRONMENT}/${ENVTYPE}/searchMasterHost` (For the authoring environment) `${VAULT_URL}/${TENANT}/${ENVIRONMENT}/${ENVTYPE}/searchSlaveHost` (For the live environment)	The Search server hostname. The value in Vault that you set depends on the environment type that you are configuring.	SEARCH_HOST
`${VAULT_URL}/${TENANT}/${ENVIRONMENT}/${ENVTYPE}/redisPasswordEncrypt`	The encrypted Redis password.	REDIS_PASSWORD_ENCRYPT