| Name | Type | Description | Notes |
|---|---|---|---|
| Audience | string | The audience in the JWT | [optional] [default to "akeyless.io"] |
| BoundLabels | Dictionary<string, string> | A map of GCP labels formatted as "key:value" strings that must be set on authorized GCE instances. TODO: Because GCP labels are not currently ACL'd .... | [optional] |
| BoundProjects | List<string> | Human and Machine authentication section Array of GCP project IDs. Only entities belonging to any of the provided projects can authenticate. | [optional] |
| BoundRegions | List<string> | List of regions that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a regional group and the group must belong to this region. If bound_zones are provided, this attribute is ignored. | [optional] |
| BoundServiceAccounts | List<string> | List of service accounts the service account must be part of in order to be authenticated | [optional] |
| BoundZones | List<string> | === Machine authentication section === List of zones that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a zonal group and the group must belong to this zone. | [optional] |
| ServiceAccount | string | ServiceAccount holds the credentials file contents to be used by Akeyless to validate IAM (Human) and GCE (Machine) logins against GCP base64 encoded string | [optional] |
| Type | string | [optional] | |
| UniqueIdentifier | string | A unique identifier to distinguish different users | [optional] |