Inputs

The following input variables are supported:

audience

Description: The audience claim in the ServiceAccount JWT

Type: string

Default: null

service_account

Description: The name of the service account that should be able to assume the AWS permissions.

Type: string

Default: n/a

service_account_namespace

Description: The namespace of the service account.

Type: string

Default: n/a

token_ttl_seconds

Description: The maximum token lifetime in seconds

Type: number

Default: 28800

vault_policy_hcl

Description: The HCL of the policy document to assign to this Vault role.

Type: string

Default: n/a

Outputs

The following outputs are exported:

role_name

Description: The name of the Vault auth role

Providers

The following providers are needed by this module:

• vault (4.8.0)