|
|
@@ -385,7 +385,7 @@ This approach assumes that appropriate IRSA setup is done controller's pod (i.e.
|
|
|
### PushSecret
|
|
|
Vault supports PushSecret features which allow you to sync a given kubernetes secret key into a hashicorp vault secret. In order to do so, it is expected that the secret key is a valid JSON object.
|
|
|
|
|
|
-In order to use PushSecret, you need to give `create`, `read` and `update` permissions to the path where you want to push secrets to. Use it with care!
|
|
|
+In order to use PushSecret, you need to give `create`, `read` and `update` permissions to the path where you want to push secrets to for both `data` and `metadata` of the secret. Use it with care!
|
|
|
|
|
|
Here is an example on how to set it up:
|
|
|
```yaml
|
Dylan Shepard