terraform-registry/terraform-vault-tenant
terraform-registry/terraform-vault-tenant
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: wrong permissions on token policy for tenant admin
All checks were successful
development / Check commit compliance (push) Successful in 5s
Details
pull-requests-open / Check commit compliance (pull_request) Successful in 5s
Details

Browse Source
This commit is contained in:
Bertrand Lanson 2024-05-25 18:05:49 +02:00
parent a1a7818c15
commit 61481d808d
Signed by: lanson
SSH Key Fingerprint: SHA256:/nqc6HGqld/PS208F6FUOvZlUzTS0rGpNNwR5O2bQBw
1 changed files with 2 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
policies/tenant-admins.policy.hcl
View File

@ -1,11 +1,7 @@
path "{{identity.entity.metadata.prefix}}/*" { path "${tenant_prefix}/*" {
capabilities = ["create", "update", "read", "delete", "list"] capabilities = ["create", "update", "read", "delete", "list"]
} }
path "sys/mounts/{{identity.entity.metadata.prefix}}/*" { path "sys/mounts/${tenant_prefix}/*" {
capabilities = ["create", "update", "read", "delete", "list"] capabilities = ["create", "update", "read", "delete", "list"]
} }
path "auth/token/create" {
capabilities = ["create", "update", "sudo"]
}