mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-17 03:57:01 +02:00
baac2642a2
* Simplify Run(): the function that was being sent over a channel doesn't need to close over anything except latestToken, and we don't need to create a new one each iteration. Instead just pass the relevant items, namely the token and sink to work on. * Disallow the following config combinations: 1. auto_auth.method.wrap_ttl > 0 and multiple file sinks 2. auto_auth.method.wrap_ttl > 0 and single file sink with wrap_ttl > 0 3. auto_auth.method.wrap_ttl > 0 and cache.use_auto_auth_token = true * Expose errors that occur when APIProxy is forwarding request to Vault. * Fix merge issues.
32 lines
432 B
HCL
32 lines
432 B
HCL
pid_file = "./pidfile"
|
|
|
|
auto_auth {
|
|
method {
|
|
type = "aws"
|
|
config = {
|
|
role = "foobar"
|
|
}
|
|
}
|
|
|
|
sink {
|
|
type = "file"
|
|
config = {
|
|
path = "/tmp/file-foo"
|
|
}
|
|
aad = "foobar"
|
|
dh_type = "curve25519"
|
|
dh_path = "/tmp/file-foo-dhpath"
|
|
}
|
|
|
|
sink {
|
|
type = "file"
|
|
wrap_ttl = "5m"
|
|
aad_env_var = "TEST_AAD_ENV"
|
|
dh_type = "curve25519"
|
|
dh_path = "/tmp/file-foo-dhpath2"
|
|
config = {
|
|
path = "/tmp/file-bar"
|
|
}
|
|
}
|
|
}
|