SaltStack
new
all
Runner functions supporting the Vault modules. Configuration instructions are documented in the execution module docs.
salt.runners.vault.
generate_token
(minion_id, signature, impersonated_by_master=False)¶Generate a Vault token for minion minion_id
The id of the minion that requests a token
Cryptographic signature which validates that the request is indeed sent by the minion (or the master, see impersonated_by_master).
If the master needs to create a token on behalf of the minion, this is True. This happens when the master generates minion pillars.
salt.runners.vault.
show_policies
(minion_id)¶Show the Vault policies that are applied to tokens for the given minion
The minions id
CLI Example:
salt-run vault.show_policies myminion