acme-to-vault/example/vault/policies/acme-to-vault.hcl

path "/kv/data/service/+/certs/*" {
  capabilities = ["read","create","update"]
}
path "/kv/metadata/service/+/certs" {
  capabilities = ["list","read"]
}

path "/kv/data/service/acme-to-vault/account/*" {
  capabilities = ["read","create","update"]
}
path "/kv/metadata/service/acme-to-vault/account/*" {
  capabilities = ["list","read"]
}

path "/kv/data/service/acme-to-vault" {
  capabilities = ["read"]
}
Adapt vault.prefix -> vault.root 2024-01-31 11:55:24 +01:00			`path "/kv/data/service/+/certs/*" {`
Add rendered example 2024-01-05 12:12:47 +01:00			`capabilities = ["read","create","update"]`
			`}`
Adapt vault.prefix -> vault.root 2024-01-31 11:55:24 +01:00			`path "/kv/metadata/service/+/certs" {`
Add rendered example 2024-01-05 12:12:47 +01:00			`capabilities = ["list","read"]`
			`}`

Adapt vault.prefix -> vault.root 2024-01-31 11:55:24 +01:00			`path "/kv/data/service/acme-to-vault/account/*" {`
Add rendered example 2024-01-05 12:12:47 +01:00			`capabilities = ["read","create","update"]`
			`}`
Adapt vault.prefix -> vault.root 2024-01-31 11:55:24 +01:00			`path "/kv/metadata/service/acme-to-vault/account/*" {`
Add rendered example 2024-01-05 12:12:47 +01:00			`capabilities = ["list","read"]`
			`}`

Adapt vault.prefix -> vault.root 2024-01-31 11:55:24 +01:00			`path "/kv/data/service/acme-to-vault" {`
Add rendered example 2024-01-05 12:12:47 +01:00			`capabilities = ["read"]`
			`}`