Closed xiujiao closed 3 years ago
genesis nor the kits use secret/data/exodus or secret/metadata/exodus -- where does this come from?
I believe secret/data
is Vault kv2-speak for "the data under secret/
", whereas secret/metadata
is kv2-ese for "version information and other metadata about stuff under secret/
".
Fixed in v3.21.3
The policy bound with app-role used for deployment pipelines is this
That works for v2, but for v1, after deployment, it writes the metadata to
secret/exodus/env/deploymenttype
When we deploy through concourse using this app-role, we get the following errorWe should support both v1 and v2