Implement kubernetes auth / Add customizable auth path (#218)

* Implement kubernetes auth / Add customizable auth path * Fix typo * Apply suggestions from code review Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com> Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>
2026-04-15 16:25:43 +00:00 · 2021-06-03 10:59:51 -04:00 · 2021-06-03 10:59:51 -04:00 · 72c7a899ca
commit 72c7a899ca
parent 0cf3bd6a39
5 changed files with 139 additions and 23 deletions
--- a/action.yml
+++ b/action.yml
@ -14,6 +14,12 @@ inputs:
    description: 'The method to use to authenticate with Vault.'
    default: 'token'
    required: false
+  role:
+    description: 'Vault role for specified auth method'
+    required: false
+  path:
+    description: 'Custom Vault path, if the auth method was mounted at a different path'
+    required: false
  token:
    description: 'The Vault Token to be used to authenticate with Vault'
    required: false
@ -26,6 +32,10 @@ inputs:
  githubToken:
    description: 'The Github Token to be used to authenticate with Vault'
    required: false
+  kubernetesTokenPath:
+    description: 'The path to the Kubernetes service account secret'
+    required: false
+    default: '/var/run/secrets/kubernetes.io/serviceaccount/token'
  authPayload:
    description: 'The JSON payload to be sent to Vault when using a custom authentication method.'
    required: false
@ -52,10 +62,7 @@ inputs:
  tlsSkipVerify:
    description: 'When set to true, disables verification of the Vault server certificate.  Setting this to true in production is not recommended.'
    required: false
-    default: "false"
-  role:
-    description: 'Vault role for specified auth method'
-    required: false
+    default: 'false'
  jwtPrivateKey:
    description: 'Base64 encoded Private key to sign JWT'
    required: false