vftaylor

+1 for this request. This feature is a must IMO. Currently, we have to create a distinct policy for each Nomad job and it needs to be manually attached to...

> @vftaylor you should look at implementing a Sentinel policy that limits the policies that are associated to a job. For example, you could enforce one policy per job, and...

@ddaws perhaps at the Nomad server config level, you'd be able to specify that all Nomad jobs get that generic Vault policy assigned by default. And then you could have...

Having this exact issue.

Hello lovely people. Awaiting this to be implemented on Linux, but in the meantime @the-maldridge @jkirschner-hashicorp for anyone that comes across this you can simply use a script check e.g.:...

+1 for this bug. Defaulting to the first scrape pool when there are more than 20 pools is confusing behaviour and just took me a decent while to figure out...

> The main thing that looks tricky with this is making sure that job submitters can't use this to escalate privileges in a way the cluster administrator doesn't expect. @tgross...