Cloud Account Types
These Cloud Account Types are available in the Platform Orchestrator.
Not seeing the Cloud Account Type you need? You can request additional types via
Humanitec Support.
aiven #
Static Aiven credentials
Property |
Type |
Description |
token |
string |
The authentication token |
Outputs #
Property |
Type |
Description |
token |
string |
The authentication token |
aws #
Static AWS credentials
Property |
Type |
Description |
aws_access_key_id |
string |
The access key ID that identifies AWS account |
aws_secret_access_key |
string |
The secret access key |
Outputs #
Property |
Type |
Description |
AccessKeyId |
string |
The access key ID that identifies AWS account |
SecretAccessKey |
string |
The secret access key |
aws_access_key_id |
string |
A deprecated field holding the same data as AccessKeyId. |
aws_secret_access_key |
string |
A deprecated field holding the same data as SecretAccessKey. |
aws-role #
Temporary AWS credentials via AWS Role Assumption
Property |
Type |
Description |
aws_role |
string |
The Amazon Resource Name (ARN) of the role to assume |
external_id |
string |
A unique identifier used to assume a role in another account |
sts_region |
string |
The region of the STS endpoint used to obtain the credentials. Optional, default region is us-east-1 |
Outputs #
Property |
Type |
Description |
AccessKeyId |
string |
The access key ID that identifies the temporary credentials |
Expiration |
string |
The credentials expiration date |
SecretAccessKey |
string |
The secret access key |
SessionToken |
string |
The session token that must be passed to the service API to use the temporary credentials |
azure #
Static Azure credentials
Property |
Type |
Description |
appId |
string |
The service principle client ID |
password |
string |
The service principle password |
tenant |
string |
The Azure tenant ID |
Outputs #
Property |
Type |
Description |
appId |
string |
The service principle client ID |
password |
string |
The service principle password |
tenant |
string |
The Azure tenant ID |
azure-identity #
Temporary Azure credentials via Workload Identity Federation
Property |
Type |
Description |
azure_identity_client_id |
string |
The client ID of the managed identity on which federated credentials are configured |
azure_identity_tenant_id |
string |
The Azure tenant ID |
Outputs #
Property |
Type |
Description |
access_token |
string |
The temporary access token to access Azure services |
expires_on |
string |
The access token expiration date |
oidc_token |
string |
The Humanitec OIDC token used to obtain the access token |
cloudflare #
Static Cloudflare credentials
Property |
Type |
Description |
token |
string |
The authentication token |
Outputs #
Property |
Type |
Description |
token |
string |
The authentication token |
gcp #
Static GCP credentials (service account JSON key)
Property |
Type |
Description |
auth_provider_x509_cert_url |
string |
None |
auth_uri |
string |
None |
client_email |
string |
None |
client_id |
string |
None |
client_x509_cert_url |
string |
None |
private_key |
string |
None |
private_key_id |
string |
None |
project_id |
string |
None |
token_uri |
string |
None |
type |
string |
None |
Outputs #
Property |
Type |
Description |
auth_provider_x509_cert_url |
string |
None |
auth_uri |
string |
None |
client_email |
string |
None |
client_id |
string |
None |
client_x509_cert_url |
string |
None |
private_key |
string |
None |
private_key_id |
string |
None |
project_id |
string |
None |
token_uri |
string |
None |
type |
string |
None |
gcp-identity #
Temporary GCP credentials via Workload Identity Federation and Service account impersonation
Property |
Type |
Description |
gcp_audience |
string |
The URL of the workload identity pool provider used as an audience for OIDC token |
gcp_service_account |
string |
The Google service account to impersonate |
Outputs #
Property |
Type |
Description |
access_token |
string |
The temporary access token to access GCP services |
expiry |
string |
The access token expiration date |