terraform-registry/terraform-vault-tenant
terraform-registry/terraform-vault-tenant
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
8a5a85f33f
terraform-vault-tenant/policies/tenant-admins.policy.hcl

15 lines
372 B
HCL
Raw Normal View History

fix: wrong permissions on token policy for tenant admin
2024-05-25 16:05:49 +00:00
path "${tenant_prefix}/*" {
feat: add default admin policy
2024-05-25 10:59:54 +00:00
capabilities = ["create", "update", "read", "delete", "list"]
}
fix: wrong permissions on token policy for tenant admin
2024-05-25 16:05:49 +00:00
path "sys/mounts/${tenant_prefix}/*" {
feat: add default admin policy
2024-05-25 10:59:54 +00:00
capabilities = ["create", "update", "read", "delete", "list"]
}
feat: only allow tenant admin to create tokens with its own policies
2024-05-25 16:24:24 +00:00
path "auth/token/create" {
capabilities = ["create", "update", "delete"]
allowed_parameters = {
"policies" = [${admin_policies}, ${reverse(admin_policies)}]
}
}
Reference in New Issue Copy Permalink