Closed mlec1 closed 11 months ago
Hi, thank you for this contribution, we appreciate it!
If you could also add a line to the changelog, that would be great.
Sorry I initially made this Pull Request because I didn't see the line 16.
I have updated the doc based on your comments.
Just for the get-operation
operation, I tested just with lego
which was successful without it, but I was surprised too. I added it in the list of operation and remove the update-dns-records
.
Description
Add the minimum required permission for the Exoscale Key. I think that might be useful to other people who don't want to set unnecessary permissions.
Please don't hesitate to correct if some of the
operation
are not needed or some are missing. Please don't hesitate to modify the policy if you have a way to make it more secure.Checklist
(For exoscale contributors)
Testing
Tested the permissions with
lego
. They are enough to get a certificate.