feat: manage k8s auth role integration

- add policies to sign/issue certificates
- manage auth roles for ceph-csi, certmanager, externaldns, huntarr
This commit is contained in:
2025-11-22 23:21:43 +11:00
parent 85cda88a3b
commit 7814551084
6 changed files with 101 additions and 10 deletions
@@ -0,0 +1,3 @@
path "kv/data/service/kubernetes/au/syd1/csi/ceph-rbd-secret" {
capabilities = ["read"]
}
@@ -0,0 +1,3 @@
path "kv/data/service/kubernetes/au/syd1/externaldns/tsig" {
capabilities = ["read"]
}
@@ -0,0 +1,3 @@
path "pki_int/issue/servers_default" {
capabilities = ["update"]
}
@@ -0,0 +1,3 @@
path "pki_int/sign/servers_default" {
capabilities = ["update"]
}