From 1e281a0c724826c3a83d50bddc91e2aa5c456788 Mon Sep 17 00:00:00 2001
From: Bill Maxwell <cloudnautique@users.noreply.github.com>
Date: Thu, 28 Jul 2016 17:35:44 -0700
Subject: [PATCH] updating to v0.0.3 (#233)

The new version of the agent, can be launched via cattle and run in a k8s environment.
---
 templates/secrets-bridge-agents/0/docker-compose.yml | 2 +-
 templates/secrets-bridge-server/0/README.md          | 2 +-
 templates/secrets-bridge-server/0/docker-compose.yml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/templates/secrets-bridge-agents/0/docker-compose.yml b/templates/secrets-bridge-agents/0/docker-compose.yml
index 9a4b921..35de23f 100644
--- a/templates/secrets-bridge-agents/0/docker-compose.yml
+++ b/templates/secrets-bridge-agents/0/docker-compose.yml
@@ -1,5 +1,5 @@
 secrets-bridge:
-    image: rancher/secrets-bridge:v0.0.2
+    image: rancher/secrets-bridge:v0.0.3
     command: agent --bridge-url ${BRIDGE_URL}
     volumes:
         - /var/run/docker.sock:/var/run/docker.sock
diff --git a/templates/secrets-bridge-server/0/README.md b/templates/secrets-bridge-server/0/README.md
index b35e541..78cc9b5 100644
--- a/templates/secrets-bridge-server/0/README.md
+++ b/templates/secrets-bridge-server/0/README.md
@@ -7,7 +7,7 @@ Only works with Hashicorp Vault server in dev mode currently.
 #### Description: 
   This is the server side component for the Vault Secrets bridge with Rancher. This service should *NOT* be deployed in the same environment as user applications. It will have access to Vault, and compromising it will give the person access to *ALL* secrets available in that environment. It should instead be run in an environment reserved for the team operating Rancher.
   
-  The reason this uses a temporary Cubbyhole token to start the service is that ENV variables do show up in the Rancher API and Docker inspect commands.
+  The reason this uses a temporary Cubbyhole token to start the service is that ENV variables do show up in the Rancher API and Docker inspect commands. That said, if this service fails, the issuing token will expire and all app tokens will also expire.
   
 #### Pre-reqs:
 
diff --git a/templates/secrets-bridge-server/0/docker-compose.yml b/templates/secrets-bridge-server/0/docker-compose.yml
index 5183e49..2b6b70f 100644
--- a/templates/secrets-bridge-server/0/docker-compose.yml
+++ b/templates/secrets-bridge-server/0/docker-compose.yml
@@ -1,5 +1,5 @@
 secrets-bridge:
-    image: rancher/secrets-bridge:v0.0.2
+    image: rancher/secrets-bridge:v0.0.3
     environment:
         CATTLE_ACCESS_KEY: ${CATTLE_ACCESS_KEY}
         CATTLE_SECRET_KEY: ${CATTLE_SECRET_KEY}