in all documentation we found around approle we found the following policy entry:
# Login with AppRole
path "auth/approle/login" {
capabilities = [ "create", "read" ]
}
Could someone please shade some light what this policy does?
Because one can login without this policy…
ref: https://learn.hashicorp.com/vault/identity-access-management/iam-authentication