fix(jupyterhub): fix vault policy

jupyterhub/vault-policy.hcl

@@ -5,6 +5,11 @@ path "secret/data/jupyter/shared/*" {
     capabilities = ["read", "list"]
 }
 
+# Allow users to list shared directory
+path "secret/metadata/jupyter/shared" {
+    capabilities = ["list"]
+}
+
 # Full access to user-specific paths
 path "secret/data/jupyter/users/{{identity.entity.aliases.auth_jwt_*.metadata.username}}/*" {
     capabilities = ["create", "update", "read", "delete", "list"]
@@ -15,7 +20,7 @@ path "secret/metadata/jupyter/users/{{identity.entity.aliases.auth_jwt_*.metadat
     capabilities = ["list", "read", "delete"]
 }
 
-# Allow users to list jupyter root to navigate
-path "secret/metadata/jupyter/*" {
+# Allow users to list only their own user directory for navigation
+path "secret/metadata/jupyter/users/{{identity.entity.aliases.auth_jwt_*.metadata.username}}" {
     capabilities = ["list"]
 }