New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Display vault approle name and policies in case of a failure #628
Comments
This issue is stale because it has been open for 60 days with no If it's still relevant, one of the following will remove the stale
|
Sorry for the delay on this. It may be possible to provide debug logs with this information - This'll need to go into https://github.com/hairyhenderson/go-fsimpl however, as the next major release of gomplate will use that module for the Vault datasource (and authentication). |
Given that this is work that needs to be done in go-fsimpl, I'll transfer it there! |
Hii,
First of all thanks for all of your efforts and the great tool you have implemented
I have a specific use case that I would like to share:
We are using gomplate to fetch data from vault across many CI/CD pipelines and sometimes the vault approle in-use does not have permissions to access the specified vault path
At that point, we cannot quickly identify which method was used to authenticate, and what are the enabled policies.
Example
It would be really nice to additionally display some information about the authentication method as well as the policies
It might be possible to simply lookup the generated token and retrieve its meta information:
e.g
My request is mainly about the approle but if it makes sense to apply it to all auth methods, it would be better
Additionally, this does not have to be only in case of a failure, if you prefer to provide a flag that allows the display of such information before reading any values, it could work as well ^^
The text was updated successfully, but these errors were encountered: