Use of OpenTofu
Terraform / OpenTofu allows to provision virtually every aspect
of Vault / OpenBao, where Vault state module for Salt only handle
policies.
Last Friday, we devised how to integrate Terraform to our repository
to provision virtual machines to VMware ESXi. This provider follows
the same structure.
The README is short, as it's actually intended as sections to be added
to the upcoming VMWare ESXi change, written last Friday evening too.
Rhyne-Wyse access
The policy allows to connect to Agora and to the db-B cluster for
reports purpose. Access to db is strictly limited, see D3667.
Instead of storing that policy in Salt and only create AppRole
with OpenTofu, both are consolidated in one source.
Ref T2124