authn-jwt-hosts.yaml

- !group
  id: jenkins-admins
  owner: !policy root
- !policy
  id: jwt-apps/jenkins
  owner: !group jenkins-admins
  body:
  - !layer
  - &jenkins-hosts
    - !host
      id: vxlab-AWS-Access-Key-Demo
      annotations:
        authn-jwt/jenkins/jenkins_full_name: AWS-Access-Key-Demo
        authn-jwt/jenkins/jenkins_task_noun: Build
        authn-jwt/jenkins/jenkins_pronoun: Pipeline
    - !host
      id: vxlab-MySQL-Demo
      annotations:
        authn-jwt/jenkins/jenkins_full_name: MySQL-Demo
        authn-jwt/jenkins/jenkins_task_noun: Build
        authn-jwt/jenkins/jenkins_pronoun: Pipeline
  - !grant 
    role: !layer
    members: *jenkins-hosts
- !grant
  role: !group conjur/authn-jwt/jenkins/consumers
  member: !layer jwt-apps/jenkins
- !grant
  role: !group aws_api/consumers
  member: !host jwt-apps/jenkins/vxlab-AWS-Access-Key-Demo
- !grant
  role: !group world_db/consumers
  member: !host jwt-apps/jenkins/vxlab-MySQL-Demo