Ben Vincent
fd03727ec2
move management of Vault back to tf_vault approle. for this, we need to create a number of policies that are missing. - add policies to manage consul secret engines - add policies to manage pki secret engines - add policies to manage kv secret engines - add policies to manage ssh secret engines
15 lines
213 B
YAML
15 lines
213 B
YAML
# Allow access to configure pki_int secret backend
|
|
---
|
|
rules:
|
|
- path: "pki_int/config/*"
|
|
capabilities:
|
|
- create
|
|
- update
|
|
- delete
|
|
- read
|
|
- list
|
|
|
|
auth:
|
|
approle:
|
|
- tf_vault
|