Skip to content

Commit

Permalink
update example policy (#68)
Browse files Browse the repository at this point in the history 
The vault client uses `sys/policies/acl` instead of `sys/policy` now.
  • Loading branch information
@tvoran
tvoran authored Aug 12, 2022
1 parent 18363f1 commit 8e8b523
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -397,7 +397,7 @@ path "sys/mounts/cf/*" {
}
# Create policies with the "cf-*" prefix
path "sys/policy/cf-*" {
path "sys/policies/acl/cf-*" {
capabilities = ["create", "update", "delete"]
}
Expand Down Expand Up @@ -430,7 +430,7 @@ Cloud Foundry Vault Broker will renew this periodic token automatically.
1. Create the policy specific for the broker:

```shell
$ vault write sys/policy/cf-broker rules=@cf-broker.hcl
$ vault write cf-broker cf-broker.hcl
```

1. Create a periodic token
Expand Down Expand Up @@ -530,7 +530,7 @@ policy may be modified by a user with permissions in Vault to add additional
capabilities. The default policy can be discovered by reading it:

```sh
$ vault read -field=rules sys/policy/cf-<instance_id>
$ vault policy read cf-<instance_id>
# ...
```

Expand Down

0 comments on commit 8e8b523

Please sign in to comment.