| Name | Type | Description | Notes |
|---|---|---|---|
| audience | str | The audience in the JWT | [optional] [default to 'akeyless.io'] |
| bound_labels | dict(str, str) | A map of GCP labels formatted as "key:value" strings that must be set on authorized GCE instances. TODO: Because GCP labels are not currently ACL'd .... | [optional] |
| bound_projects | list[str] | Human and Machine authentication section Array of GCP project IDs. Only entities belonging to any of the provided projects can authenticate. | [optional] |
| bound_regions | list[str] | List of regions that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a regional group and the group must belong to this region. If bound_zones are provided, this attribute is ignored. | [optional] |
| bound_service_accounts | list[str] | List of service accounts the service account must be part of in order to be authenticated | [optional] |
| bound_zones | list[str] | === Machine authentication section === List of zones that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a zonal group and the group must belong to this zone. | [optional] |
| service_account | str | ServiceAccount holds the credentials file contents to be used by Akeyless to validate IAM (Human) and GCE (Machine) logins against GCP base64 encoded string | [optional] |
| type | str | [optional] | |
| unique_identifier | str | A unique identifier to distinguish different users | [optional] |