update init script samples

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

yume-mods/podman_init.sh

@@ -12,7 +12,7 @@ podman pod create \
 # add no-new-privileges if you don't use apparmor
 podman pod create \
     --cpus 1.5 \
-    --memory 4g \
+    --memory 6g \
     misskey-web
 
 mkdir -p ../var/db
@@ -56,11 +56,26 @@ vault write misskey-db/config/test0 \
     plugin_name="postgresql-database-plugin" \
     allowed_roles="misskey-admin" \
     allowed_roles="misskey-test0-runtime" \
+    username="misskey" \
+    password="dummy" \
     connection_url="postgresql://misskey@/misskey?host=/var/lib/misskey/test0/run/db/17/"
 
 # rotate root credentials so it is no longer the same as .docker.env
 vault write -force misskey-db/rotate-root/test0
 
+
+vault write sys/policy/misskey-test0-runtime policy=- <<EOF
+path "misskey-db/creds/misskey-test0-runtime" {
+  capabilities = ["read", "list"]
+}
+
+path "sys/leases/revoke-prefix/misskey-db/creds/misskey-test0-runtime" {
+  capabilities = ["create", "update", "list", "delete", "sudo"]
+}
+EOF
+
+vault token create -policy=misskey-test0-runtime --ttl=0 -period=768h -orphan
+
 vault write misskey-db/roles/misskey-admin \
     db_name=misskey \
     default_ttl=4h \