From: Sergio de Carvalho <scarvalhojr@gmail.com>
Date: Fri, 4 Oct 2019 14:55:51 +0000 (+0100)
Subject: rgw: add SSE-KMS with Vault using token auth
X-Git-Tag: v15.1.0~1322^2
X-Git-Url: http://git.apps.os.sepia.ceph.com/?a=commitdiff_plain;h=7b216bab3d6325212bfc15aa8492242b2cb6f300;p=ceph-ci.git

rgw: add SSE-KMS with Vault using token auth

Clarify supported secret engine in the Vault documentation.

Signed-off-by: Andrea Baglioni <andrea.baglioni@workday.com>
Signed-off-by: Sergio de Carvalho <sergio.carvalho@workday.com>
---

diff --git a/doc/radosgw/vault.rst b/doc/radosgw/vault.rst
index 0cbae340775..d14b455c7e7 100644
--- a/doc/radosgw/vault.rst
+++ b/doc/radosgw/vault.rst
@@ -25,8 +25,11 @@ Create a key in Vault
 =====================
 
 Generate and save a 256-bit key in Vault. Vault provides several Secret
-Engines, which store, generate, and encrypt data. For instance, create a key
-in the `KV Secrets engine`_ using Vault's command line client::
+Engines, which store, generate, and encrypt data. Currently, the only secret
+engine supported is the `KV Secrets engine`_ version 2.
+
+To create a key in the KV version 2 engine using Vault's command line client,
+use the commands below::
 
   export VAULT_ADDR='http://vaultserver:8200'
   vault kv put secret/myproject/mybucketkey key=$(dd bs=32 count=1 if=/dev/urandom of=/dev/stdout 2>/dev/null | base64)