vault_identity_group_policies

Manages policies for an Identity Group for Vault. The Identity secrets engine is the identity management solution for Vault.

Example Usage

Exclusive Policies

resource "vault_identity_group" "internal" {
  name     = "internal"
  type     = "internal"

  external_policies = true

  metadata = {
    version = "2"
  }
}

resource "vault_identity_group_policies" "policies" {
  policies = [
    "default",
    "test",
  ]

  exclusive = true

  group_id = vault_identity_group.internal.id
}

Non-exclusive Policies

resource "vault_identity_group" "internal" {
  name     = "internal"
  type     = "internal"

  external_policies = true

  metadata = {
    version = "2"
  }
}

resource "vault_identity_group_policies" "default" {
  policies = [
    "default",
    "test",
  ]

  exclusive = false

  group_id = vault_identity_group.internal.id
}

resource "vault_identity_group_policies" "others" {
  policies = [
    "others",
  ]

  exclusive = false

  group_id = vault_identity_group.internal.id
}

Argument Reference

The following arguments are supported:

Attributes Reference

In addition to all arguments above, the following attributes are exported: