MySQL security is an interesting subject. In this session we'll show how to use Vault (https://www.vaultproject.io) to create a secrets store we can authenticate against using GitHub. On the other side, we'll demonstrate how we can use Vault to dynamically grant and revoke rights on a running MySQL Server. The end result allows us to not have to have a real MySQL user, but instead we first authenticate against Vault and then ask Vault for temporary access credentials to the MySQL instance of choice.