From c44012ff91cbcec3cfcf3d552887e6325a6f098a Mon Sep 17 00:00:00 2001
From: kaffa <kappa@inouter.com>
Date: Thu, 12 Mar 2026 02:22:40 -0700
Subject: [PATCH] =?UTF-8?q?vault:=20=EC=8B=9C=ED=81=AC=EB=A6=BF=20?=
 =?UTF-8?q?=EC=9D=B4=EA=B4=80=20=EC=99=84=EB=A3=8C,=20=EC=B9=B4=ED=85=8C?=
 =?UTF-8?q?=EA=B3=A0=EB=A6=AC=EB=B3=84=20=EA=B5=AC=EC=A1=B0=20=EC=A0=95?=
 =?UTF-8?q?=EB=A6=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 infra/vault.md | 17 +++++++++++++++--
 1 file changed, 15 insertions(+), 2 deletions(-)

diff --git a/infra/vault.md b/infra/vault.md
index 93ef6bf..06d5d15 100644
--- a/infra/vault.md
+++ b/infra/vault.md
@@ -22,9 +22,22 @@ Vault root token은 만료 없음 (TTL: 0s)
 
 접근 정책: infra-read(읽기 전용), infra-admin(읽기/쓰기)
 
-## NocoDB
+## 시크릿 구조 (KV v2)
 
-NocoDB API 토큰: Vault secret/nocodb/api-token (필드: token, url, user)
+vault.inouter.com(Synology)에서 hcv.inouter.com(K3s)으로 이관 완료 (2026-03-12). 카테고리별 정리:
+
+| 카테고리 | 경로 | 내용 |
+|----------|------|------|
+| infra/ | apisix, argocd, cert-manager, cf-tunnel-manager, google/eab, k8s/infra-tool, safeline, ssh, ssh/id_ed25519, tailscale | 인프라 서비스 |
+| cloud/ | alibaba, aws, backblaze, backblaze/restic, bunnycdn, cloudflare, cloudflare/r2, linode, vultr, zenlayer | 클라우드 프로바이더 |
+| database/ | postgres, redis, bunnydb/cs-blocklist | DB |
+| apps/ | gitea, gitea/registry, myapp, n8n, nocodb, telegram-ai-support, waf-saas | 자체 앱/서비스 |
+| ai/ | brave, context7, google/drive-mcp, openai, openrouter, pinecone, testsprite, vertex | AI/LLM API |
+| messaging/ | discord/bot, discord/nocodb-webhook, mailgun/api-key, mailgun/smtp, telegram | 메시징/알림 |
+| company/ | bank, info, ironclad, korbit, koreaexim, popbill | 회사/비즈니스 |
+| product/ | irondesk/ton-wallet, irondesk/tron | 제품 관련 |
+| domain/ | globalping, maxmind, namecheap, namecheap/api, namecheap/api-server, namecheap/deposit-api, namecheap/registrant | 도메인/DNS |
+| auth/ | api-keys/openai, api-keys/stripe, google/ca/external-account-key, google/ca/service-account | 인증 |
 
 ## MCP 서버