Ben Vincent
85d81fef72
- add transit engine - add policies to manage keys, encryption and decryption - add ability to create keys to tf_vault approle
9 lines
250 B
HCL
9 lines
250 B
HCL
# Allow management of keys (create, update, delete, list, and read)
|
|
path "transit/keys/*" {
|
|
capabilities = ["create", "update", "delete", "read", "list"]
|
|
}
|
|
# Allow listing of available keys
|
|
path "transit/keys" {
|
|
capabilities = ["read", "list"]
|
|
}
|