Simple Hashicorp Vault policy path generator

Usage

cat ./policy.yml | ./vaultPG.py

Source

#  vim: set et fenc=utf-8 ff=unix sts=2 sw=2 ts=2
# policy
#   c = create
#   r = read
#   u = update
#   d = delete
#   l = list
#   s = sudo
#   x = deny
#   UPPERCASE = recurse mode
path:
  - path: "secret/data/dc1/shared*"
    capabilities: Lcrud
  - path: "secret/data/dc1/read"
    capabilities: Lr

Policy

{
  "path": {
    "secret": {
      "capabilities": [
        "list"
      ]
    },
    "secret/data": {
      "capabilities": [
        "list"
      ]
    },
    "secret/data/dc1": {
      "capabilities": [
        "list"
      ]
    },
    "secret/data/dc1/read": {
      "capabilities": [
        "read",
        "list"
      ]
    },
    "secret/data/dc1/shared*": {
      "capabilities": [
        "delete",
        "create",
        "read",
        "update",
        "list"
      ]
    }
  }
}

License

Author

Blinov Evgeniy (http://blinov.in.ua/)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

Simple Hashicorp Vault policy path generator

Usage

License

Author

Files

README.md

Latest commit

History

README.md

File metadata and controls

Simple Hashicorp Vault policy path generator

Usage

License

Author