Vault-Agent: generate dependent files (certificates) with templates?


is it possible to configure templates with vault-agent to depend on each other?

Idea: generate key + certificate for some webserver, in separate files.
certificate is belonging to the current key-file.

A current experiment shows that the certificate isn’t signed by the correct key.

How could I solve this?

Okay, of course I now solved this on my own :wink:

I just found out the metadata of the requested secrets has to be identical.

The two template-files should just differ in the output-blocks:

.Data.private_key vs. .Data.certificate