bstein/titan-iac
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

vault: allow oidc tuning

Browse Source
This commit is contained in:
Brad Stein 2026-01-15 02:16:55 -03:00
parent 74a2b3e28d
commit 756a1af2e6
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
services/vault/scripts/vault_k8s_auth_configure.sh
View File

@ -124,6 +124,9 @@ path "sys/policies/acl" {
path "sys/policies/acl/*" { path "sys/policies/acl/*" {
capabilities = ["create", "update", "read"] capabilities = ["create", "update", "read"]
} }
path "sys/mounts/auth/*" {
capabilities = ["read", "update", "sudo"]
}
path "kv/data/atlas/vault/*" { path "kv/data/atlas/vault/*" {
capabilities = ["read"] capabilities = ["read"]
} }