Issue front proxy certs for vault

2026-03-09 03:37:36 +03:00 · 2018-02-07 11:03:07 +01:00
parent f193b12059
commit f9df692056
2 changed files with 34 additions and 0 deletions
--- a/roles/vault/defaults/main.yml
+++ b/roles/vault/defaults/main.yml
@@ -162,3 +162,11 @@ vault_pki_mounts:
          allow_any_name: true
          enforce_hostnames: false
          organization: "system:node-proxier"
+      - name: front-proxy-client
+        group: k8s-cluster
+        password: "{{ lookup('password', 'credentials/vault/kube-proxy length=15') }}"
+        policy_rules: default
+        role_options:
+          allow_any_name: true
+          enforce_hostnames: false
+          organization: "system:front-proxy"