8 lines
229 B
HCL
8 lines
229 B
HCL
path "test-kv/{{identity.entity.service_account_namespace}}/*" {
|
|
capabilities = ["read"]
|
|
}
|
|
|
|
# Allow a token to manage its own cubbyhole
|
|
path "cubbyhole/*" {
|
|
capabilities = ["create", "read", "update", "delete", "list"]
|
|
}
|