Fix string

2025-05-18 23:37:39 +03:00 · 2025-05-18 23:37:39 +03:00 · e57b323bb2
commit e57b323bb2
parent 18dbeac028
1 changed files with 1 additions and 2 deletions
--- a/manifests/vault/oidc-job.yaml
+++ b/manifests/vault/oidc-job.yaml
@ -47,14 +47,13 @@ spec:
              echo 'path "*" { capabilities = ["create", "read", "update", "delete", "list", "sudo"] }' > /tmp/vault-admin.hcl &&
              vault policy write vault-admin /tmp/vault-admin.hcl &&

-              echo '{"groups": "vault-admins"}' > /tmp/bound-claims.json &&
              echo "🎯 Creating OIDC role named 'vault-admins'..." &&
              vault write auth/oidc/role/vault-admins \
                bound_audiences="vault" \
                allowed_redirect_uris="https://vault.dvirlabs.com/ui/vault/auth/oidc/oidc/callback" \
                user_claim="sub" \
                groups_claim="groups" \
-                bound_claims=@/tmp/bound-claims.json \
+                bound_claims='{"groups":["vault-admins"]}' \
                oidc_scopes="profile email groups" \
                policies="vault-admin" \
                ttl="1h" &&