diff --git a/acls/vault_login.tf b/acls/vault_login.tf new file mode 100644 index 0000000..149bf4e --- /dev/null +++ b/acls/vault_login.tf @@ -0,0 +1,8 @@ +resource "vault_auth_backend" "userpass" { + type = "userpass" + + tune { + max_lease_ttl = "1h" + listing_visibility = "unauth" + } +} diff --git a/acls/vault_policies.tf b/acls/vault_policies.tf new file mode 100644 index 0000000..77ff7f4 --- /dev/null +++ b/acls/vault_policies.tf @@ -0,0 +1,9 @@ +resource "vault_policy" "admin" { + name = "admin" + + policy = <