Add basic logic for managing vaults

2021-04-15 15:34:13 -05:00
parent 5391c7c6d6
commit 3730ddc2f2
11 changed files with 399 additions and 8 deletions
--- a/config/auth.config.js
+++ b/config/auth.config.js
@@ -3,6 +3,35 @@ const auth_config = {
    default_provider: env('AUTH_DEFAULT_PROVIDER', 'flitter'),
    default_login_route: '/dash',

+    iam: {
+        default_permissions: [
+            {
+                target_type: 'machine',
+                permission: 'sudo',
+            },
+            {
+                target_type: 'machine_group',
+                permission: 'sudo',
+            },
+            {
+                target_type: 'vault',
+                permission: 'view',
+            },
+            {
+                target_type: 'vault',
+                permission: 'read',
+            },
+            {
+                target_type: 'vault',
+                permission: 'update',
+            },
+            {
+                target_type: 'vault',
+                permission: 'delete',
+            },
+        ],
+    },
+
    mfa: {
        secret_length: env('MFA_SECRET_LENGTH', 20)
    },