Files
terraform-vault/policies/kv/service/gitea/webhook.yaml
T
unkinben 132e5ea4d9
ci/woodpecker/pr/plan Pipeline failed
ci/woodpecker/pr/pre-commit Pipeline failed
feat: add vault policy for terraform-git webhook secrets
Allow terraform-git to read webhook URLs stored in
kv/data/service/gitea/webhook/* via approle and k8s auth.
2026-06-08 16:11:58 +10:00

12 lines
170 B
YAML

---
rules:
- path: "kv/data/service/gitea/webhook/*"
capabilities:
- read
auth:
approle:
- terraform_git
k8s/au/syd1:
- woodpecker_terraform_git