feat: add identity secrets
- add kubernetes auth role for identity namespace - add policy to access openldap bootstrap credentials
This commit is contained in:
@@ -0,0 +1,6 @@
|
||||
bound_service_account_names:
|
||||
- default
|
||||
bound_service_account_namespaces:
|
||||
- identity
|
||||
token_ttl: 60
|
||||
audience: vault
|
||||
@@ -0,0 +1,10 @@
|
||||
# Allow reading Radarr configuration
|
||||
---
|
||||
rules:
|
||||
- path: "kv/data/service/openldap/ldap_admin_password"
|
||||
capabilities:
|
||||
- read
|
||||
|
||||
auth:
|
||||
k8s/au/syd1:
|
||||
- identity
|
||||
Reference in New Issue
Block a user