Allow access to specific key inside the secret

I have path with it-dba/secrets which contains all db passwords.



apps : xxxxx

soa_infra: xxxxx

osb: xxx


how to create policy to restrict to access only only key like “apps” .

Is it possible in vault.

will this work.?

path “it-dba/secrets”


capabilities = [“read”,“list”]

allowed_parameters = {

"apps" = []



Please help.

My request is on access the existing key. Not writing the new data to the secret.

Also would like to know if this is possible

Yes please let me know will try.