...
Command for starting a vault server (for development) : `docker run --rm --name vault -d --cap-add=IPC_LOCK -p 8200:8200 -e 'VAULT_DEV_ROOT_TOKEN_ID=tokenId' -e 'VAULT_DEV_LISTEN_ADDRESS=0.0.0.0:8200' vault:1.8.1`
Files :
client-tmpl.hcl :
```
# For creating key
path "transit/keys/{{identity.entity.name}}"{
capabilities= [ "create", "update", "read", "delete", "list" ]
}
# For signing
path "transit/sign/{{identity.entity.name}}"{
capabilities= [ "update" ]
}
# For key Rotate
path "transit/keys/{{identity.entity.name}}/rotate"{
capabilities= [ "update" ]
}
# For changing password
path "auth/userpass/users/{{identity.entity.name}}/password"{
capabilities= [ "update" ]
}
# For UI
path "transit/keys/*"{
capabilities= [ "list" ]
}
```
manager.hcl :
```
# For changing password
path "auth/userpass/users/{{identity.entity.name}}/password"{
capabilities= [ "update" ]
}
# for creating user pass auth for client
path "auth/userpass/users/*"{
capabilities= [ "create","list" ]
}
# for creating entity for client
path "identity/entity"{
capabilities= [ "update","list" ]
}
# for creating entity alias for client
path "identity/entity-alias"{
capabilities= [ "update","list" ]
}
# for UI
path "*" {
capabilities= [ "list","read" ]
}
```
|
Hyperledger is committed to creating a safe and welcoming community for all. For more information please visit the Hyperledger Code of Conduct. |
|---|
...