terraform-provider-vault disable_iss_validation should default to true

disable_iss_validation should default to true

Open kenske opened this issue 2 years ago • 0 comments

According to the documentation, disable_iss_validation is now deprecated. Additionally:

disable_iss_validation=true is the new recommended value for all versions of Vault

However, omitting this parameter from vault_kubernetes_auth_backend_config sets the value to false. It should be true by default.

Affected Resource(s)

vault_kubernetes_auth_backend_config

Terraform Configuration Files

resource "vault_auth_backend" "kubernetes" {
  type = "kubernetes"
}

resource "vault_kubernetes_auth_backend_config" "k8s" {
  backend                = vault_auth_backend.kubernetes.path
  kubernetes_host        = module.eks.cluster_endpoint
}

Expected Behavior

disable_iss_validation should be set to true

Actual Behavior

disable_iss_validation is false

Aug 09 '22 20:08 kenske

terraform-provider-vault terraform-provider-vault copied to clipboard

disable_iss_validation should default to true

Affected Resource(s)

Terraform Configuration Files

Expected Behavior

Actual Behavior

terraform-provider-vault
terraform-provider-vault copied to clipboard