Ben Vincent
f78416361b
- add approle for terraform, tf_vault - add policices to manage terraform access to vault - add policices for default access to vault from ldap users
15 lines
295 B
HCL
15 lines
295 B
HCL
# Allow tokens to query themselves
|
|
path "auth/token/lookup-self" {
|
|
capabilities = ["read"]
|
|
}
|
|
|
|
# Allow tokens to renew themselves
|
|
path "auth/token/renew-self" {
|
|
capabilities = ["update"]
|
|
}
|
|
|
|
# Allow tokens to revoke themselves
|
|
path "auth/token/revoke-self" {
|
|
capabilities = ["update"]
|
|
}
|