I would expect sidekick to notice that and create a new secret at the max_ttl expire
the first renewal works as expected , the second one though will set a threshold of roughly 55 minutes while the actual TTL for the renewed lease is just 5m left since the MAX_TTL was set to 2h
I have Google Secret backend configured as :
and vault-sidekick configured to
Sidekick will correctly fetch the secret and set a renewal :
I would expect sidekick to notice that and create a new secret at the max_ttl expire the first renewal works as expected , the second one though will set a threshold of roughly 55 minutes while the actual TTL for the renewed lease is just 5m left since the MAX_TTL was set to 2h