Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

validate aws STS policy after creation #7042

Open
camerondavison opened this issue Jul 2, 2019 · 0 comments
Open

validate aws STS policy after creation #7042

camerondavison opened this issue Jul 2, 2019 · 0 comments
Labels
enhancement secret/aws

Comments

@camerondavison
Copy link

I update an STS policy in vault that uses a federation_token and the AWS secrets backend. Unknown at the time the policy was too large for the PackedPolicySize.

I think that it would be nice if vault did not allow creating bad policies, because then it started erroring out in my clients when they tried to get the policy instead of erroring when I created it. It would be nice to have vault validate the policy, maybe by just issuing a token from AWS before it saved the update.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement secret/aws
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@camerondavison @michelvocks