Dear Gitlab,
I have a local gitlab (mygitlab.local) and vault (myvault.local) community/free instances. I have followed the gitlab documentation to enable jwt authentication method. Also, I have created my test secrets and my role (see below). I am currently facing an issue where my gitlab runner can’t authenticate against vault. Error message says:
* error validating claims: aud claim does not match any bound audience
This is my role:
vault write auth/jwt/role/my-role -<<EOF
{
"role_type": "jwt",
"policies": "my-policy",
"token_explicit_max_ttl": 60,
"user_claim": "myuser",
"bound_audiences": ["myvault.local", "mygitlab.local", "https://myvault.local", "https://mygitlab.local"],
"bound_claims": {
"project_id": "1158",
"ref_protected": "true",
"ref_type": "branch"
}
}
EOF
Which value should I put in bound_audiences?
thank you very much