»Vault Agent Auto-Auth GCP Method
gcp method performs authentication against the GCP Auth
authentication types are supported.
Vault will use the GCP SDK's normal credential chain behavior. You can set a
credentials value, but it is usually not needed. If running on GCE
using Application Default Credentials, you may need to specify the service
account and project since ADC does not provide metadata used to automatically
(string: required)- The type of authentication; must be
(string: required)- The role to authenticate against on Vault
(string: optional)- When using static credentials, the contents of the JSON credentials file
(string: optional)- The service account to use, if it cannot be automatically determined
(string or int: optional)- The number of minutes a generated JWT should be valid for when using the
iammethod; defaults to 15 minutes
project parameter has been removed in Vault 1.5.9+, 1.6.5+, and 1.7.2+.
It is no longer needed for configuration and will be ignored if provided.