mirror of
https://github.com/optim-enterprises-bv/vault.git
synced 2025-10-30 02:02:43 +00:00
30 lines
718 B
Bash
30 lines
718 B
Bash
#!/usr/bin/env bash
|
|
# Copyright (c) HashiCorp, Inc.
|
|
# SPDX-License-Identifier: BUSL-1.1
|
|
|
|
set -e
|
|
|
|
binpath=${VAULT_INSTALL_DIR}/vault
|
|
|
|
fail() {
|
|
echo "$1" 1>&2
|
|
return 1
|
|
}
|
|
|
|
test -x "$binpath" || fail "unable to locate vault binary at $binpath"
|
|
|
|
# Create superuser policy
|
|
$binpath policy write superuser - << EOF
|
|
path "*" {
|
|
capabilities = ["create", "read", "update", "delete", "list", "sudo"]
|
|
}
|
|
EOF
|
|
|
|
# The userpass auth method is enabled with the `vault_verify_write_data`,
|
|
# so we do not enable here.
|
|
# Create new user and attach superuser policy
|
|
$binpath write auth/userpass/users/tester password="changeme" policies="superuser"
|
|
|
|
# Activate the primary
|
|
$binpath write -f sys/replication/performance/primary/enable
|