Policies

You can create policies in Vault, and later use these policies in roles for the Kubernetes-based authentication. For details, see Policies in the official Vault documentation.

policies:
  - name: allow_secrets
    rules: path "secret/*" {
             capabilities = ["create", "read", "update", "delete", "list"]
           }
  - name: readonly_secrets
    rules: path "secret/*" {
             capabilities = ["read", "list"]
           }

Last modified February 25, 2025: docs: Add DEFAULT_IMAGE_PULL_SECRET_SERVICE_ACCOUNT to the docs (#247) (1461c21)