This seems to me to solve a problem we didn't have. In JBoss 7.0.2, I was able to encrypt the database password with this:
java -cp %JBOSS_HOME%\modules\org\picketbox\main\picketbox-4.0.1.jar;%JBOSS_HOME%\modules\org\jboss\logging\main\jboss-logging-3.0.1.GA.jar org.picketbox.datasource.security.SecureIdentityLoginModule password-to-encrypt
I don't need a "Vault" to hold the database password. Why would I?
What I do need is a way to encrypt the password into the Java keystore that holds the site certifcate used to enable https connections. I could do this in JBoss 4.2.3, but that mechanism no longer exists in JBoss 7. It's not at all clear to me from this article that the Vault helps me do this, or how I would make it work.