The documentation for using PG as a storage backend doesn’t indicate what permissions the role you provide in the connection_url parameter requires for vault to function. I am assuming that all it needs is r/w rights on the one or two tables in the database, but is this assumption correct?
It would be great if someone more knowledgeable could add this bit of trivia to the install instructions @ PostgreSQL - Storage Backends - Configuration | Vault by HashiCorp