From ddf50d483744ed1194d1996a0edde8b22d33e92d Mon Sep 17 00:00:00 2001 From: vincent Date: Sat, 26 Aug 2023 17:31:08 +0200 Subject: [PATCH] create new vault snapshot policy --- vault/policy.tf | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/vault/policy.tf b/vault/policy.tf index 8b7c90f..b0166ef 100644 --- a/vault/policy.tf +++ b/vault/policy.tf @@ -1,4 +1,13 @@ - +data "vault_policy_document" "snapshot" { + rule { + path= "sys/storage/raft/snapshot" + capabilities = ["read"] + } +} +resource "vault_policy" "snapshot" { + name = "snapshot" + policy = data.vault_policy_document.snapshot.hcl +} data "vault_policy_document" "nomad_server_policy" { rule { path = "auth/token/create/nomad-cluster"