Skip to content

Instantly share code, notes, and snippets.

@infamousjoeg

infamousjoeg/GrantHostID.yaml

Created May 5, 2023 17:17
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save infamousjoeg/3e1f93ddf0e5809789eb25617f46798d to your computer and use it in GitHub Desktop.
Save infamousjoeg/3e1f93ddf0e5809789eb25617f46798d to your computer and use it in GitHub Desktop.
Download ZIP
Grant OpenShift App authz to PAM Vault secrets and push to K8s Secrets
Raw
GrantHostID.yaml
# Load into root branch
- !grant
role: !group SyncVault/LOB_POC/SafeName/delegation/consumers
member: !host data/cd/kubernetes/dev-team-1/applications/k8s-secrets-app1
Raw
K8sSecretFromVault.yaml
apiVersion: v1
kind: Secret
metadata:
name: vault-sync-credentials
namespace: conjurpoc
type: Opaque
stringData:
conjur-map: |-
username: SyncVault/LOB_POC/SafeName/AccountName/username
password: SyncVault/LOB_POC/SafeName/AccountName/password
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment