Cloud Account Types

These Cloud Account Types are available in the Platform Orchestrator.

aiven

Static Aiven credentials

Inputs

Property Type Description
token string The authentication token

Outputs

Property Type Description
token string The authentication token

aws

Static AWS credentials

Inputs

Property Type Description
aws_access_key_id string The access key ID that identifies AWS account
aws_secret_access_key string The secret access key

Outputs

Property Type Description
AccessKeyId string The access key ID that identifies AWS account
SecretAccessKey string The secret access key

aws-role

Dynamic AWS credentials via AWS Role Assumption

Inputs

Property Type Description
aws_role string The Amazon Resource Name (ARN) of the role to assume
external_id string A unique identifier used to assume a role in another account
sts_region string The region of the STS endpoint used to obtain the credentials. Optional, default region is us-east-1

Outputs

Property Type Description
AccessKeyId string The access key ID that identifies the temporary credentials
Expiration string The credentials expiration date
SecretAccessKey string The secret access key
SessionToken string The session token that must be passed to the service API to use the temporary credentials

azure

Static Azure credentials

Inputs

Property Type Description
appId string The service principle client ID
password string The service principle password
tenant string The Azure tenant ID

Outputs

Property Type Description
appId string The service principle client ID
password string The service principle password
tenant string The Azure tenant ID

azure-identity

Dynamic Azure credentials via Workload Identity Federation

Inputs

Property Type Description
azure_identity_client_id string The client ID of the managed identity on which federated credentials are configured
azure_identity_tenant_id string The Azure tenant ID

Outputs

Property Type Description
access_token string The temporary access token to access Azure services
expires_on string The access token expiration date
oidc_token string The Humanitec OIDC token used to obtain the access token

cloudflare

Static Cloudflare credentials

Inputs

Property Type Description
token string The authentication token

Outputs

Property Type Description
token string The authentication token

gcp

Static GCP credentials (service account JSON key)

Inputs

Property Type Description
auth_provider_x509_cert_url string None
auth_uri string None
client_email string None
client_id string None
client_x509_cert_url string None
private_key string None
private_key_id string None
project_id string None
token_uri string None
type string None

Outputs

Property Type Description
auth_provider_x509_cert_url string None
auth_uri string None
client_email string None
client_id string None
client_x509_cert_url string None
private_key string None
private_key_id string None
project_id string None
token_uri string None
type string None

gcp-identity

Dynamic GCP credentials via Workload Identity Federation and Service account impersonation

Inputs

Property Type Description
gcp_audience string The URL of the workload identity pool provider used as an audience for OIDC token
gcp_service_account string The Google service account to impersonate

Outputs

Property Type Description
access_token string The temporary access token to access GCP services
expiry string The access token expiration date
Top