luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity

[auth/gcp] Add missing permission to documentation (#8689) 

* [auth/gcp] Add missing permission to documentation

Signed-off-by: Yong Wen Chua <lawliet89@users.noreply.github.com>

* Clarified group aliases
This commit is contained in:
Yong Wen Chua 2020-04-30 00:42:59 +08:00 committed by GitHub
parent 405fbaface
commit f0720205c3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
website/pages/docs/auth/gcp.mdx
View File

@ -177,6 +177,9 @@ These allow Vault to:
- compare bound fields for GCE roles (zone/region, labels, or membership
in given instance groups)
If you are using Group Aliases as described below, you will also need to add the
`resourcemanager.projects.get` permission.
#### Permissions For Authenticating Against Vault
Note that the previously mentioned permissions are given to the _Vault servers_.
@ -204,6 +207,9 @@ will include the following aliases:
]
```
If you are using a custom role for Vault server, you will need to add the
`resourcemanager.projects.get` permission to your custom role.
## Implementation Details
This section describes the implementation details for how Vault communicates