Allow all servers to read IPsec in Vault
7a20ee8b442c
Actions

Description

Allow all servers to read IPsec in Vault

Summary:
Allow to add to every node policy keys from the new pillar entry
vault_secrets_ubiquity.

Ref T2268

Test Plan: salt complector state.sls_id salt-node-cloudhugger roles/vault/policies test=True

Reviewers: dereckson

Reviewed By: dereckson

Tags: User-Duranzed

Maniphest Tasks: T2268

Differential Revision: https://devcentral.nasqueron.org/D3987

Details

Provenance

Duranzed	Authored on Thu, Mar 5, 12:49
yousra	Committed on Thu, Mar 5, 12:52
yousra	Pushed on Thu, Mar 5, 12:52

Reviewer

dereckson

Differential Revision

D3987: Allow all servers to read IPsec in Vault

Parents

rOPS8d181d757dcb: Change db-A-001 to db-a-001 and db-B-001 to db-b-001 on all files

Branches

Unknown

Tags

Unknown

Tasks

T2268: Configure IPsec tunnels on Saltstack

Event Timeline

yousra committed rOPS7a20ee8b442c: Allow all servers to read IPsec in Vault (authored by Duranzed).Thu, Mar 5, 12:52

yousra added a task: T2268: Configure IPsec tunnels on Saltstack .

yousra added an edge: D3987: Allow all servers to read IPsec in Vault.

Changes (2)

Path

Size

_modules/

credentials.py

pillar/

credentials/

vault.sls

rOPS7a20ee8b442c

View Options

_modules/credentials.py