scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-11-02 03:27:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

website: Adding CIDR block config to app-id

Browse Source
This commit is contained in:
Armon Dadgar
2015-04-27 12:38:04 -07:00
parent b80f3e4e06
commit dd1ba4a79e
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
website/source/docs/auth/app-id.html.md
View File

@@ -79,14 +79,15 @@ example is shown below, use `vault help` for more details.
$ vault write auth/app-id/map/app-id/foo value=root display_name=foo $ vault write auth/app-id/map/app-id/foo value=root display_name=foo
... ...
$ vault write auth/app-id/map/user-id/bar value=foo $ vault write auth/app-id/map/user-id/bar value=foo cidr_block=10.0.0.0/16
... ...
``` ```
The above creates an App ID "foo" that associates with the policy "root". The above creates an App ID "foo" that associates with the policy "root".
The `display_name` sets the display name for audit logs and secrets. The `display_name` sets the display name for audit logs and secrets.
Next, we configure the user ID "bar" and say that the user ID bar Next, we configure the user ID "bar" and say that the user ID bar
can be paired with "foo". can be paired with "foo" but only in client is in the "10.0.0.0/16" CIDR block.
The `cidr_block` configuration is optional.
This means that if a client authenticates and provide both "foo" and "bar", This means that if a client authenticates and provide both "foo" and "bar",
then the app ID will authenticate that client with the policy "root". then the app ID will authenticate that client with the policy "root".