orchestration-tests/nomad/acls/nomad_policies.tf
Ian Fijolek 25ec582eaf Update Nomad and Vault ACLs
Now nomad is read only and tokens can be retrieved from Vault
2022-07-27 13:13:11 -07:00

19 lines
511 B
HCL

resource "nomad_acl_policy" "anon_policy" {
name = "anonymous"
description = "Anon RO"
rules_hcl = file("${path.module}/nomad-anon-bootstrap.hcl")
}
resource "nomad_acl_policy" "admin" {
name = "admin"
description = "Admin RW for admins"
rules_hcl = file("${path.module}/nomad-admin-policy.hcl")
}
# TODO: Limit this scope
resource "nomad_acl_policy" "deploy" {
name = "deploy"
description = "Admin RW"
rules_hcl = file("${path.module}/nomad-deploy-policy.hcl")
}