Adding custom fields into a service account token

pdewan · March 6, 2023, 4:35am

I am looking for a way to add custom fields in a service account token. I tried to add annotations to the service account but they did not show up in the token. I also tried adding annotations to the TokenReview object but that also does not show up in the token. Is there an easy way to do that? Any help guidance is really appreciated.

dcarrion87 · March 15, 2023, 11:51am

@pdewan we’re also running into this issue. We need to be able to inject tags as per AWS Docs and unable to find a way around this. E.g. adding something like this in:

    "https://aws.amazon.com/tags": {
        "principal_tags": {
            "User": ["service-account"],
        },
        "transitive_tag_keys": [
            "User",
        ]
    }