luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity

Lease count quotas does not apply to root tokens (#12405)

This commit is contained in:
hghaf099 2021-08-23 17:22:28 -04:00 committed by GitHub
parent 3f4a381f1b
commit 94ece6fd38
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
website/content/docs/enterprise/lease-count-quotas.mdx
View File

@ -13,6 +13,10 @@ number of leases in the cluster hits the configured limit, `max_leases`, additio
lease creations will be forbidden for all clients until a lease has been revoked
or has expired.
It is important to note that lease count quotas do not apply to the root tokens.
If the number of leases in the cluster hits the configured limit, `max_leases`,
an operator could still create a root token and access the cluster to try to recover.
All the nodes in the Vault cluster will share the lease quota rules, meaning that
the lease counters will be shared, regardless of which node in the Vault cluster
receives lease generation requests. Lease quotas can be imposed across Vault's API,