Hi merlin,
JBoss vault is not safe. Please keep it in mind. The vault gives you false feeling of safety. You disclose the password to access the vault via KEYSTORE_PASSWORD. Everyone can easily decrypt all the passwords you have encrypted.