From 56358bec46b14197c0df8bfb3c7400b47023964a Mon Sep 17 00:00:00 2001
From: Asara <amarpreet@minhas.io>
Date: Sat, 6 Aug 2022 14:55:06 -0400
Subject: [PATCH] Add the ability to sign certs to cert-manager vault policy

---
 vault/policies/cert-manager.hcl | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/vault/policies/cert-manager.hcl b/vault/policies/cert-manager.hcl
index 778f5b6..7bed5a5 100644
--- a/vault/policies/cert-manager.hcl
+++ b/vault/policies/cert-manager.hcl
@@ -7,3 +7,6 @@ path "kv/data/namecheap" {
 path "kv/data/aws" {
   capabilities = ["read"]
 }
+path "pki_int/sign/masked-dot-name" {
+  capabilities = [ "create", "read", "list", "update" ]
+}