Auto_auth configuration fails with non-default path

hashicorp / vault-k8s

First-class support for Vault and Kubernetes.

Mozilla Public License 2.0

789 stars 170 forks source link

Auto_auth configuration fails with non-default path #48

Open herrbpl opened 4 years ago

herrbpl commented 4 years ago

Injector generates vault config with

{
 "auto_auth": {
    "method": {
      "type": "kubernetes",
      "config": {
        "role": "demoservice-role"
      }
    }
...
}

Authentication fails when kubernetes plugin was mounted on anything else than "kubernetes" path. There seem to be no option to define path on which kubernetes auth plugin was mounted.

Kindly requesting that configuration option as we have more than 1 kubernetes environment connected to vault installation.

Thanks,

Siim

jasonodonnell commented 4 years ago

Feature implemented here: https://github.com/hashicorp/vault-k8s/pull/23.

You can mount a configuration file as a workaround until this is merged: https://www.vaultproject.io/docs/platform/k8s/injector/examples.html#configmap-example