Add ESO OpenBao GitOps add-ons
This commit is contained in:
@@ -188,8 +188,7 @@ enable_optional "$token" "kubernetes/ auth method is already enabled." auth enab
|
||||
|
||||
remote_sh "$token" 'bao write auth/kubernetes/config \
|
||||
kubernetes_host="https://${KUBERNETES_SERVICE_HOST}:${KUBERNETES_SERVICE_PORT}" \
|
||||
token_reviewer_jwt=@/var/run/secrets/kubernetes.io/serviceaccount/token \
|
||||
kubernetes_ca_cert=@/var/run/secrets/kubernetes.io/serviceaccount/ca.crt'
|
||||
disable_iss_validation=true'
|
||||
|
||||
write_policy "$token" platform-admin "$POLICY_DIR/platform-admin.hcl"
|
||||
write_policy "$token" platform-readonly "$POLICY_DIR/platform-readonly.hcl"
|
||||
|
||||
Reference in New Issue
Block a user