# Allow administration of Kubernetes secret backend roles
---
rules:
  - path: "kubernetes/au/+/roles"
    capabilities:
      - list
  - path: "kubernetes/au/+/roles/*"
    capabilities:
      - create
      - update
      - read
      - delete
      - list

auth:
  approle:
    - tf_vault