You have been tasked with writing a policy that will allow read permissions for all secrets at path secret/bar. The users that are assigned this policy should also be able to list the secrets. What should this policy look like?
You have been tasked with writing a policy that will allow read permissions for all secrets at path secret/bar. The users that are assigned this policy should also be able to list the secrets. What should this policy look like?
The policy needed should grant read and list permissions for all secrets at path secret/bar. To correctly grant these permissions, the policy needs to include 'read' and 'list' capabilities, and it should target the path 'secret/bar/*' to encompass all secrets under the specified path. Option A illustrates this by specifying both 'read' and 'list' capabilities for 'secret/bar/*', thereby satisfying all the requirements of the question.
"secret/bar/*" indicates every path after /bar/ and Read & List are being granted.