External Vault Configuration policy file uses wildcard matching instead of specific API paths

Question

External Vault Configuration policy file uses wildcard matching instead of specific API paths

karvounis-form3 opened this issue 2 years ago · 1 comments

Context

In TFE version v202207-2, there is the following known issue:

You must update your External Vault policy to use specific API paths instead of wildcard matching. Skipping this step prevents Terraform Enterprise from starting.

In my opinion, this is considered a breaking change and should be treated with high caution. However, the documentation for the external Vault Configuration tfe-policy.hcl file still uses wildcard matching. Documentation must be updated to use specific API paths because wildcard matching will prevent TFE from starting!

Answer 1 · 2022-09-19T06:52:43.000Z

@sudomateo any thoughts on this?