remove access-table policy
This commit is contained in:
parent
bb1bb51b4a
commit
4b2fc3b11d
@ -38,25 +38,6 @@ resource "vault_policy" "nomad-server-policy" {
|
|||||||
policy = data.vault_policy_document.nomad_server_policy.hcl
|
policy = data.vault_policy_document.nomad_server_policy.hcl
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
data "vault_policy_document" "access-tables" {
|
|
||||||
|
|
||||||
rule {
|
|
||||||
path = "secrets/*"
|
|
||||||
capabilities= ["read","list"]
|
|
||||||
}
|
|
||||||
|
|
||||||
rule {
|
|
||||||
path = "secrets/ansible"
|
|
||||||
capabilities = ["deny"]
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
resource "vault_policy" "access-tables" {
|
|
||||||
name = "access-tables"
|
|
||||||
policy = data.vault_policy_document.access-tables.hcl
|
|
||||||
}
|
|
||||||
|
|
||||||
data "vault_policy_document" "ansible" {
|
data "vault_policy_document" "ansible" {
|
||||||
rule {
|
rule {
|
||||||
path = "secrets/data/ansible/*"
|
path = "secrets/data/ansible/*"
|
||||||
|
Loading…
Reference in New Issue
Block a user