From 7b216bab3d6325212bfc15aa8492242b2cb6f300 Mon Sep 17 00:00:00 2001
From: Sergio de Carvalho <scarvalhojr@gmail.com>
Date: Fri, 4 Oct 2019 15:55:51 +0100
Subject: [PATCH] rgw: add SSE-KMS with Vault using token auth

Clarify supported secret engine in the Vault documentation.

Signed-off-by: Andrea Baglioni <andrea.baglioni@workday.com>
Signed-off-by: Sergio de Carvalho <sergio.carvalho@workday.com>
---
 doc/radosgw/vault.rst | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/doc/radosgw/vault.rst b/doc/radosgw/vault.rst
index 0cbae34077556..d14b455c7e79c 100644
--- a/doc/radosgw/vault.rst
+++ b/doc/radosgw/vault.rst
@@ -25,8 +25,11 @@ Create a key in Vault
 =====================
 
 Generate and save a 256-bit key in Vault. Vault provides several Secret
-Engines, which store, generate, and encrypt data. For instance, create a key
-in the `KV Secrets engine`_ using Vault's command line client::
+Engines, which store, generate, and encrypt data. Currently, the only secret
+engine supported is the `KV Secrets engine`_ version 2.
+
+To create a key in the KV version 2 engine using Vault's command line client,
+use the commands below::
 
   export VAULT_ADDR='http://vaultserver:8200'
   vault kv put secret/myproject/mybucketkey key=$(dd bs=32 count=1 if=/dev/urandom of=/dev/stdout 2>/dev/null | base64)
-- 
2.39.5