3ce9615992
For situations where you want the Vault agent to handle one or more templates but do not require the acquired credentials elsewhere. Modify the logic in SyncServer so that if there are no sinks, ignore any new credentials. Since SyncServer is responsible for shutting down the agent, make sure it still properly shuts down in this new situation. Solves #7988
39 lines
609 B
HCL
39 lines
609 B
HCL
pid_file = "./pidfile"
|
|
|
|
auto_auth {
|
|
method {
|
|
type = "aws"
|
|
namespace = "/my-namespace"
|
|
|
|
config = {
|
|
role = "foobar"
|
|
}
|
|
}
|
|
}
|
|
|
|
template {
|
|
source = "/path/on/disk/to/template.ctmpl"
|
|
destination = "/path/on/disk/where/template/will/render.txt"
|
|
|
|
create_dest_dirs = true
|
|
|
|
command = "restart service foo"
|
|
|
|
error_on_missing_key = false
|
|
perms = 0600
|
|
}
|
|
|
|
template {
|
|
source = "/path/on/disk/to/template2.ctmpl"
|
|
destination = "/path/on/disk/where/template/will/render2.txt"
|
|
|
|
perms = 0755
|
|
|
|
backup = true
|
|
|
|
wait {
|
|
min = "2s"
|
|
max = "10s"
|
|
}
|
|
}
|