fixup! vault: implement bootstrap integration

2026-02-03 00:36:58 +01:00
parent 092f02b2ba
commit 54e522038c
2 changed files with 58 additions and 4 deletions
--- a/docs/vault-bootstrap-testing.md
+++ b/docs/vault-bootstrap-testing.md
@@ -307,13 +307,24 @@ tofu apply
 ```
 ❌ **Expected**: Bootstrap fails with message about expired token

-**Fix:**
+**Fix (Option 1 - Regenerate token only):**
 ```bash
+# Only regenerates the wrapped token, preserves all other configuration
+nix run .#create-host -- --hostname vaulttest01 --regenerate-token
+cd terraform
+tofu apply
+```
+
+**Fix (Option 2 - Full regeneration with --force):**
+```bash
+# Overwrites entire host configuration (including any manual changes)
 nix run .#create-host -- --hostname vaulttest01 --force
 cd terraform
 tofu apply
 ```

+**Recommendation**: Use `--regenerate-token` to avoid losing manual configuration changes.
+
 ### Scenario 6: Already-Used Wrapped Token
 Try to deploy the same VM twice without regenerating token.