feat: move k8s secrets into vault

- update kubernetes_host to match value in jwt
- regenerate jwt token and store in vault
- add policy to enable access to jwt token
- update tf_deploy user with access to token
This commit is contained in:
2025-11-16 12:42:18 +11:00
parent 8e1d242dba
commit cbee19b5f9
4 changed files with 29 additions and 3 deletions
@@ -0,0 +1,3 @@
path "kv/data/service/kubernetes/au/syd1/token_reviewer_jwt" {
capabilities = ["read"]
}