disinto-admin/disinto
1
0
Fork 0
Code Issues 19 Pull requests 1 Projects Releases Packages Wiki Activity Actions

fix: [nomad-step-2] S2-fix-G — strip trailing /* from all vault policy paths (systemic 403) (#951)
All checks were successful
ci/woodpecker/push/ci Pipeline was successful
Details
ci/woodpecker/push/nomad-validate Pipeline was successful
Details
ci/woodpecker/pr/ci Pipeline was successful
Details
ci/woodpecker/pr/nomad-validate Pipeline was successful
Details
ci/woodpecker/pr/secret-scan Pipeline was successful
Details

Browse source
This commit is contained in:
Agent 2026-04-17 08:57:39 +00:00
parent c47c6e71bd
commit 2ab95cd326
11 changed files with 33 additions and 33 deletions
Download patch file Download diff file Expand all files Collapse all files

8
vault/policies/dispatcher.hcl
View file

@ -12,18 +12,18 @@
# narrow runner-<NAME> policies, NOT this one. This policy stays bound
# to the long-running dispatcher only.
path "kv/data/disinto/runner/*" {
path "kv/data/disinto/runner" {
capabilities = ["read"]
}
path "kv/metadata/disinto/runner/*" {
path "kv/metadata/disinto/runner" {
capabilities = ["list", "read"]
}
path "kv/data/disinto/shared/ops-repo/*" {
path "kv/data/disinto/shared/ops-repo" {
capabilities = ["read"]
}
path "kv/metadata/disinto/shared/ops-repo/*" {
path "kv/metadata/disinto/shared/ops-repo" {
capabilities = ["list", "read"]
}