Ben Vincent
7cafafd483
found kubernetes vaultauth resources never picking up new policies, because they would infinitely renew their token. - set default max token length for roles to 1 day - changed all existing role token_max_ttl to match their token_ttl
10 lines
224 B
YAML
10 lines
224 B
YAML
bound_service_account_names:
|
|
- ceph-csi-rbd-csi-rbd-provisioner
|
|
- ceph-csi-cephfs-csi-cephfs-provisioner
|
|
bound_service_account_namespaces:
|
|
- csi-cephrbd
|
|
- csi-cephfs
|
|
token_ttl: 600
|
|
token_max_ttl: 600
|
|
audience: vault
|