restrict token roles

Signed-off-by: Kiara Grouwstra <kiara@procolix.eu>
2025-10-22 13:01:25 +02:00 · 2025-10-22 13:01:25 +02:00 · 1eb570c42a
commit 1eb570c42a
parent 0e22347713
1 changed files with 1 additions and 1 deletions
--- a/deployment/check/data-model-tf-proxmox/nixosTest.nix
+++ b/deployment/check/data-model-tf-proxmox/nixosTest.nix
@ -160,7 +160,7 @@ in
      pvesh create /pools --poolid Fediversity
      pvesh set /storage/local --content "vztmpl,rootdir,backup,snippets,import,iso,images" 1>/dev/null
      pvesh create /access/users/root@pam/token/mytoken --output-format json | jq -r .value
-      pvesh set /access/acl --path "/" --token "root@pam!mytoken" --roles "Administrator"
+      pvesh set /access/acl --path "/" --token "root@pam!mytoken" --roles "PVEVMAdmin PVEDatastoreAdmin PVESDNUser PVETemplateUser"
    """).strip()

    # skip indent for EOF