From 24af690ac5877c31d3ce83453eeca081fe143eb1 Mon Sep 17 00:00:00 2001
From: Sarah Brofeldt <sarah@qtr.dk>
Date: Fri, 18 Oct 2024 10:50:28 +0200
Subject: [PATCH] vault test: enable secondary vaultmonitorconfig

---
 nixos/vault-test.nix | 24 +++++++++++-------------
 1 file changed, 11 insertions(+), 13 deletions(-)

diff --git a/nixos/vault-test.nix b/nixos/vault-test.nix
index 0a8de05..4286104 100644
--- a/nixos/vault-test.nix
+++ b/nixos/vault-test.nix
@@ -92,17 +92,16 @@ nixos-lib.runTest (
                   }
                 ];
               }
-              # Multiple vaultmonitorconfigs break faythe currently, commented out
-              # {
-              #   inherit role_id_path secret_id_path vault_addr;
-              #   key_prefix = "path2";
-              #   specs = [
-              #     {
-              #       name = "path2-test";
-              #       cn = "path2.${domain}";
-              #     }
-              #   ];
-              # }
+              {
+                inherit role_id_path secret_id_path vault_addr;
+                key_prefix = "path2";
+                specs = [
+                  {
+                    name = "path2-test";
+                    cn = "path2.${domain}";
+                  }
+                ];
+              }
             ];
             lets_encrypt_url = "https://${nodes.acme.test-support.acme.caDomain}/dir";
             lets_encrypt_email = "test_mail@${domain}";
@@ -242,8 +241,7 @@ nixos-lib.runTest (
 
       with subtest("Can get certs"):
           client.wait_until_succeeds("""
-            vault kv get kv/path1/path1-test/cert
-            # vault kv get kv/path2/path2-test/cert
+            vault kv get kv/path1/path1-test/cert && vault kv get kv/path2/path2-test/cert
           """)
 
       with subtest("No failed dispatch in vaultrs"):