Vault security hardening and role isolation

2026-02-01 17:48:12 -03:30 · 2017-02-08 21:41:36 +00:00
parent f4ec2d18e5
commit 245e05ce61
78 changed files with 1408 additions and 706 deletions
--- a/tests/templates/inventory-aws.j2
+++ b/tests/templates/inventory-aws.j2
@@ -15,6 +15,10 @@ node3
 node1
 node2

+[vault]
+node1
+node2
+
 [k8s-cluster:children]
 kube-node
 kube-master
--- a/tests/templates/inventory-gce.j2
+++ b/tests/templates/inventory-gce.j2
@@ -13,6 +13,9 @@ node2

 [etcd]
 node3
+
+[vault]
+node3
 {% elif mode is defined and mode == "ha" %}
 [kube-master]
 node1
@@ -24,6 +27,10 @@ node3
 [etcd]
 node2
 node3
+
+[vault]
+node2
+node3
 {% else %}
 [kube-master]
 node1
@@ -33,6 +40,9 @@ node2

 [etcd]
 node1
+
+[vault]
+node1
 {% endif %}

 [k8s-cluster:children]