github.com/anth0d/nomad@v0.0.0-20221214183521-ae3a0a2cad06/e2e/terraform/etc/acls/consul/nomad-server-policy.hcl

github.com/anth0d/nomad@v0.0.0-20221214183521-ae3a0a2cad06/e2e/terraform/etc/acls/consul/nomad-server-policy.hcl (about)

     1  // The operator=write permission is required for creating config entries for
     2  // connect ingress gateways. operator ACLs are not namespaced, though the
     3  // config entries they can generate are.
     4  operator = "write"
     5  
     6  agent_prefix "" {
     7    policy = "read"
     8  }
     9  
    10  namespace_prefix "" {
    11    // The acl=write permission is required for generating Consul Service Identity
    12    // tokens for consul connect services. Those services could be configured for
    13    // any Consul namespace the job-submitter has access to.
    14    acl = "write"
    15  }
    16  
    17  service_prefix "" {
    18    policy = "write"
    19  }
    20  
    21  agent_prefix "" {
    22    policy = "read"
    23  }
    24  
    25  node_prefix "" {
    26    policy = "read"
    27  }